Re: Two WebPages one Site
Hi Igor, I use Wicket 1.4-rc4. Regards, Enes On Thu, Jul 2, 2009 at 5:33 PM, Igor Vaynberg wrote: > what version of wicket are you using? > > -igor > > On Thu, Jul 2, 2009 at 12:25 AM, Enes Fazli > wrote: > > Hello everybody, > > > > I have a requirement where I need to have two or more styles for a > website. > > Since layout and content can be different between the two variations I > went > > for a two Webpage classes solution. I created base and base2 which are > both > > abstract and extend webpage. > > > > Each page inherits either from base or base2. The homepage of base is > > mounted on / while the homepage of base2 is mounted on /base2. This works > > fine. But oddly all the form submits (stateless forms) on base2 pages do > not > > work. It seems that the action url is wrong because I get an 404 not > found > > error. > > > > Could someone give me a hint to where I have to look to debug this issue. > > > > Regards, > > Enes > > > > - > To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org > For additional commands, e-mail: users-h...@wicket.apache.org > >
Two WebPages one Site
Hello everybody, I have a requirement where I need to have two or more styles for a website. Since layout and content can be different between the two variations I went for a two Webpage classes solution. I created base and base2 which are both abstract and extend webpage. Each page inherits either from base or base2. The homepage of base is mounted on / while the homepage of base2 is mounted on /base2. This works fine. But oddly all the form submits (stateless forms) on base2 pages do not work. It seems that the action url is wrong because I get an 404 not found error. Could someone give me a hint to where I have to look to debug this issue. Regards, Enes
Loosing page parameters after submit
Hello everybody, following situation: I have a comment panel with a form and a paging navigator to show the comments. I implemented a own version of the PagingNavigator which uses BookmarkablePageLinks for navigation links. Now, if i use this panel in a page that has this url *http://localhost/sample//test/* the link to the second page of the PagingNavigator has a url according to that * http://localhost/sample//test/?commentspage=2* If I now submit a comment the url to the second page of the PagingNavigator changes to: *https://localhost:8443/sample/?commentspage=2 *My workaround at the moment is to set the response page in the form's submit to the sample page with it's parameters. But I would have to do it for every submitting panel in that page. I hope someone can give me a hint on to why I lose the page parameters on submit.* * *For the sake of completeness:* The page in which the Panel is embedded is mounted with a custom UrlCodingStrategy which is a non versioned HybridUrlCodingStrategy extended with the possibility to add mixed parameters. I already tried other UrlCodingStrategies but that changed nothing. Thanks, Enes
[Wicket Formtester] Problem with Statelessform
Hello everybody, I changed my forms to statelessforms, which works perfectly fine in the actual app, only the test don't work anymore. I'm confronted with folowing exception: *org.apache.wicket.WicketRuntimeException: Internal error parsing wicket:interface = :0:registerForm::IFormSubmitListener::/; wrong format for url depth argument. Expected a number but was '/'* Any hint on how to solve this problem?
Re: How to protect against Session Fixation attacks?
We've invested some more research on this topic because session.invalidate didn't work and came up with a solution. We've created a JIRA-Ticket regarding this topic to document our solution. https://issues.apache.org/jira/browse/WICKET-1767 Regards Enes F. On Wed, Jul 30, 2008 at 5:59 PM, Igor Vaynberg <[EMAIL PROTECTED]>wrote: > doing that should be fine, just make sure that after login you > redirect to a bookmarkable url which will then create a new session. > > so > session.invalidate(); > loginuser(); > setrequesttarget(new bookmarkablepagetarget(...)); > getrequest().setredirect(true); > > -igor > > On Wed, Jul 30, 2008 at 7:15 AM, Enes Fazli <[EMAIL PROTECTED]> > wrote: > > Hi wicket users, > > > > we are currently in the process of securing our Wicket-powered > > application against various attack vectors. One of them is Session > > Fixation, as described here: > > http://www.owasp.org/index.php/Session_Fixation > > > > The recommended protection in Java is to invalidate the Session before > > authenticating the user, with something like this: > > > > HttpSession s = request.getSession(false); > > if (s != null) s.invalidate(); > > s = request.getSession(true); > > > > Invalidating the session can be done with Session.get().invalidate() > > or invalidateNow(), but that leaves, as far as I can tell, Wicket's > > Session in a broken state, preventing the login alltogether. > > > > Instead of continuing to tamper with Wicket internals, is there a > > solution available? > > > > Regards, > > > > Enes F. > > > > - > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > >
How to protect against Session Fixation attacks?
Hi wicket users, we are currently in the process of securing our Wicket-powered application against various attack vectors. One of them is Session Fixation, as described here: http://www.owasp.org/index.php/Session_Fixation The recommended protection in Java is to invalidate the Session before authenticating the user, with something like this: HttpSession s = request.getSession(false); if (s != null) s.invalidate(); s = request.getSession(true); Invalidating the session can be done with Session.get().invalidate() or invalidateNow(), but that leaves, as far as I can tell, Wicket's Session in a broken state, preventing the login alltogether. Instead of continuing to tamper with Wicket internals, is there a solution available? Regards, Enes F.
Re: How to render component markup to string?
As I understand wicketstuff- rome it is just used to create a webresource from my feed and it provides a custom listmodel for consuming feeds. The Feed itself gets build by me. On Wed, Jul 23, 2008 at 4:43 PM, Martijn Dashorst < [EMAIL PROTECTED]> wrote: > Are you using wicketstuff-rome? Or building it yourself? > > Martijn > > On Wed, Jul 23, 2008 at 4:39 PM, Enes Fazli <[EMAIL PROTECTED]> > wrote: > > I use rome to create Atom feeds and my intention was to use wicket > generated > > markup for the feed entries content. > > > > On Wed, Jul 23, 2008 at 4:31 PM, Martijn Dashorst < > > [EMAIL PROTECTED]> wrote: > > > >> Why do you want to store it in a string? > >> > >> Martijn > >> > >> On Wed, Jul 23, 2008 at 4:27 PM, Enes Fazli <[EMAIL PROTECTED]> > >> wrote: > >> > Hello Martijn Dashorst, > >> > > >> > thank you for your fast response, but I cannot see how this could > solve > >> my > >> > problem as I do not want to send a String to the browser. I want to > store > >> > the Markup, which gets rendered by a panel for example, in a String. > >> > > >> > Thank you in advance for any advice to this topic. > >> > > >> > With regards, > >> > > >> > Enes F. > >> > > >> > On Wed, Jul 23, 2008 at 3:44 PM, Martijn Dashorst < > >> > [EMAIL PROTECTED]> wrote: > >> > > >> >> getRequestCycle().setRequestTarget(new StringRequestTarget()); > >> >> > >> >> On Wed, Jul 23, 2008 at 3:41 PM, Enes Fazli < > [EMAIL PROTECTED]> > >> >> wrote: > >> >> > Hello, > >> >> > > >> >> > I want to create markup with wicket components but I do not want to > >> send > >> >> it > >> >> > to a browser, I want to store it in a String. Is there a way to do > so? > >> >> > > >> >> > With regards, > >> >> > > >> >> > Enes F. > >> >> > > >> >> > >> >> > >> >> > >> >> -- > >> >> Become a Wicket expert, learn from the best: > http://wicketinaction.com > >> >> Apache Wicket 1.3.4 is released > >> >> Get it now: http://www.apache.org/dyn/closer.cgi/wicket/1.3. > >> >> > >> >> - > >> >> To unsubscribe, e-mail: [EMAIL PROTECTED] > >> >> For additional commands, e-mail: [EMAIL PROTECTED] > >> >> > >> >> > >> > > >> > >> > >> > >> -- > >> Become a Wicket expert, learn from the best: http://wicketinaction.com > >> Apache Wicket 1.3.4 is released > >> Get it now: http://www.apache.org/dyn/closer.cgi/wicket/1.3. > >> > >> - > >> To unsubscribe, e-mail: [EMAIL PROTECTED] > >> For additional commands, e-mail: [EMAIL PROTECTED] > >> > >> > > > > > > -- > Become a Wicket expert, learn from the best: http://wicketinaction.com > Apache Wicket 1.3.4 is released > Get it now: http://www.apache.org/dyn/closer.cgi/wicket/1.3. > > - > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > >
Re: How to render component markup to string?
I use rome to create Atom feeds and my intention was to use wicket generated markup for the feed entries content. On Wed, Jul 23, 2008 at 4:31 PM, Martijn Dashorst < [EMAIL PROTECTED]> wrote: > Why do you want to store it in a string? > > Martijn > > On Wed, Jul 23, 2008 at 4:27 PM, Enes Fazli <[EMAIL PROTECTED]> > wrote: > > Hello Martijn Dashorst, > > > > thank you for your fast response, but I cannot see how this could solve > my > > problem as I do not want to send a String to the browser. I want to store > > the Markup, which gets rendered by a panel for example, in a String. > > > > Thank you in advance for any advice to this topic. > > > > With regards, > > > > Enes F. > > > > On Wed, Jul 23, 2008 at 3:44 PM, Martijn Dashorst < > > [EMAIL PROTECTED]> wrote: > > > >> getRequestCycle().setRequestTarget(new StringRequestTarget()); > >> > >> On Wed, Jul 23, 2008 at 3:41 PM, Enes Fazli <[EMAIL PROTECTED]> > >> wrote: > >> > Hello, > >> > > >> > I want to create markup with wicket components but I do not want to > send > >> it > >> > to a browser, I want to store it in a String. Is there a way to do so? > >> > > >> > With regards, > >> > > >> > Enes F. > >> > > >> > >> > >> > >> -- > >> Become a Wicket expert, learn from the best: http://wicketinaction.com > >> Apache Wicket 1.3.4 is released > >> Get it now: http://www.apache.org/dyn/closer.cgi/wicket/1.3. > >> > >> - > >> To unsubscribe, e-mail: [EMAIL PROTECTED] > >> For additional commands, e-mail: [EMAIL PROTECTED] > >> > >> > > > > > > -- > Become a Wicket expert, learn from the best: http://wicketinaction.com > Apache Wicket 1.3.4 is released > Get it now: http://www.apache.org/dyn/closer.cgi/wicket/1.3. > > - > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > >
Re: How to render component markup to string?
Hello Martijn Dashorst, thank you for your fast response, but I cannot see how this could solve my problem as I do not want to send a String to the browser. I want to store the Markup, which gets rendered by a panel for example, in a String. Thank you in advance for any advice to this topic. With regards, Enes F. On Wed, Jul 23, 2008 at 3:44 PM, Martijn Dashorst < [EMAIL PROTECTED]> wrote: > getRequestCycle().setRequestTarget(new StringRequestTarget()); > > On Wed, Jul 23, 2008 at 3:41 PM, Enes Fazli <[EMAIL PROTECTED]> > wrote: > > Hello, > > > > I want to create markup with wicket components but I do not want to send > it > > to a browser, I want to store it in a String. Is there a way to do so? > > > > With regards, > > > > Enes F. > > > > > > -- > Become a Wicket expert, learn from the best: http://wicketinaction.com > Apache Wicket 1.3.4 is released > Get it now: http://www.apache.org/dyn/closer.cgi/wicket/1.3. > > - > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > >
How to render component markup to string?
Hello, I want to create markup with wicket components but I do not want to send it to a browser, I want to store it in a String. Is there a way to do so? With regards, Enes F.