Author: markt
Date: Thu Mar 3 11:16:51 2011
New Revision: 1076586
URL: http://svn.apache.org/viewvc?rev=1076586view=rev
Log:
[SECURITY]
Start of fix for issue reported on users list that @ServletSecurity annotations
were ignored.
This fix is not yet complete. This first part:
- Triggers the
Author: markt
Date: Thu Mar 3 11:24:35 2011
New Revision: 1076587
URL: http://svn.apache.org/viewvc?rev=1076587view=rev
Log:
Fix typo
Modified:
tomcat/trunk/java/org/apache/catalina/authenticator/AuthenticatorBase.java
Modified:
Author: markt
Date: Thu Mar 3 11:31:56 2011
New Revision: 1076589
URL: http://svn.apache.org/viewvc?rev=1076589view=rev
Log:
@ServletSecurity support
Add tests for subclasses
Modified:
tomcat/trunk/test/org/apache/catalina/core/TestStandardWrapper.java
Modified:
https://issues.apache.org/bugzilla/show_bug.cgi?id=50860
Summary: In case of invalid or empty slqQuery connection are
always invalidated without usefull information
Product: Tomcat Modules
Version: unspecified
Platform: All
https://issues.apache.org/bugzilla/show_bug.cgi?id=43497
Mark Thomas ma...@apache.org changed:
What|Removed |Added
Status|NEW |RESOLVED
https://issues.apache.org/bugzilla/show_bug.cgi?id=43497
--- Comment #6 from Nacho Coloma icol...@gmail.com 2011-03-03 07:46:15 EST ---
I disagree. 99% of the XSS injection cases are described in the mentioned link
as RULE #1: escape HTML. Even worse, 99% of these cases could be implemented by
Author: markt
Date: Thu Mar 3 12:56:07 2011
New Revision: 1076606
URL: http://svn.apache.org/viewvc?rev=1076606view=rev
Log:
@ServletSecurity
Refactor to reduce duplication in test code
Add tests for method constraints
Modified:
On 17.02.2011 11:58, Mark Thomas wrote:
Given this, I am leaning even more towards just fixing the original
issue that the connection is not dropped when the request exceeds the
upload limit and leaving the rest of the behaviour unchanged.
Getting back to this (and sorry for the pause): What's
https://issues.apache.org/bugzilla/show_bug.cgi?id=50863
Summary: Memory usage increase after JSP compilation
Product: Tomcat 6
Version: 6.0.32
Platform: PC
Status: NEW
Severity: normal
Priority: P2
Component:
Thanks, I will get this taken care of, and reroll.
Filip
On 3/2/2011 8:21 PM, sebb wrote:
On 2 March 2011 22:09, Filip Hanik - Dev Listsdevli...@hanik.com wrote:
Source and Binary Packages
http://people.apache.org/~fhanik/jdbc-pool/v1.1.0.0/
tomcat-juli.jar has NOTICE and LICENSE files, but
https://issues.apache.org/bugzilla/show_bug.cgi?id=50864
Summary: Reconfigure pool on the fly using JMX
Product: Tomcat Modules
Version: unspecified
Platform: PC
Status: NEW
Severity: normal
Priority: P2
I'll cancel this vote, get all the NOTICE and LICENSE files correct, as well as
the tag matching the jars.
best
Filip
On 3/2/2011 3:09 PM, Filip Hanik - Dev Lists wrote:
Source and Binary Packages
http://people.apache.org/~fhanik/jdbc-pool/v1.1.0.0/
Tag
https://issues.apache.org/bugzilla/show_bug.cgi?id=50863
Mark Thomas ma...@apache.org changed:
What|Removed |Added
Status|NEW |RESOLVED
Author: markt
Date: Thu Mar 3 19:13:52 2011
New Revision: 1076731
URL: http://svn.apache.org/viewvc?rev=1076731view=rev
Log:
Test that individual roles are correctly handled
Modified:
tomcat/trunk/test/org/apache/catalina/core/TestStandardWrapper.java
Author: fhanik
Date: Thu Mar 3 19:20:38 2011
New Revision: 1076736
URL: http://svn.apache.org/viewvc?rev=1076736view=rev
Log:
Add missing files and license header
Add NOTICE/LICENSE to all JAR files
Added:
tomcat/trunk/modules/jdbc-pool/test/org/apache/tomcat/jdbc/test/Bug50571.java
Author: fhanik
Date: Thu Mar 3 19:22:19 2011
New Revision: 1076740
URL: http://svn.apache.org/viewvc?rev=1076740view=rev
Log:
New tag with same code as 1.1.0.0 but corrected license files and added missing
test
Added:
tomcat/tags/JDBC_POOL_1_1_0_1/ (props changed)
- copied from
Source and Binary Packages
http://people.apache.org/~fhanik/jdbc-pool/v1.1.0.1/
Tag
http://svn.apache.org/repos/asf/tomcat/tags/JDBC_POOL_1_1_0_1/
Documentation
http://people.apache.org/~fhanik/jdbc-pool/jdbc-pool.html
The proposed 1.1.0.1 release is:
[ ] Broken - do not release
[ ] Alpha -
2011/3/3 fha...@apache.org:
Author: fhanik
Date: Thu Mar 3 19:20:38 2011
New Revision: 1076736
URL: http://svn.apache.org/viewvc?rev=1076736view=rev
Log:
Add missing files and license header
Add NOTICE/LICENSE to all JAR files
Added:
On 3 March 2011 19:24, Filip Hanik - Dev Lists devli...@hanik.com wrote:
Source and Binary Packages
http://people.apache.org/~fhanik/jdbc-pool/v1.1.0.1/
Tag
http://svn.apache.org/repos/asf/tomcat/tags/JDBC_POOL_1_1_0_1/
Documentation
Where do we stand with publishing Tomcat jars/artifacts to a Maven repository.
I see that the mvn-pub.xml has been updated, but I don't see where the source
JARs are generated from.
best
Filip
-
To unsubscribe, e-mail:
On 3/3/2011 1:25 PM, Konstantin Kolinko wrote:
2011/3/3fha...@apache.org:
Author: fhanik
Date: Thu Mar 3 19:20:38 2011
New Revision: 1076736
URL: http://svn.apache.org/viewvc?rev=1076736view=rev
Log:
Add missing files and license header
Add NOTICE/LICENSE to all JAR files
Added:
2011/3/4 Filip Hanik - Dev Lists devli...@hanik.com:
Where do we stand with publishing Tomcat jars/artifacts to a Maven
repository.
I see that the mvn-pub.xml has been updated, but I don't see where the
source JARs are generated from.
Are you talking about Tomcat 7?
On 3/3/2011 5:25 PM, Konstantin Kolinko wrote:
2011/3/4 Filip Hanik - Dev Listsdevli...@hanik.com:
Where do we stand with publishing Tomcat jars/artifacts to a Maven
repository.
I see that the mvn-pub.xml has been updated, but I don't see where the
source JARs are generated from.
Are you
23 matches
Mail list logo