Re: OGNL expressions in headers and parameters

Hi Thomás, aren't you testing old voulnerable version? If so, try the new one. -- Pozdrawiam, Paweł Wielgus. tel: +48 604 603 546 2017-03-13 10:54 GMT+01:00 Tamás Barta : > Lukasz, I don't write it to blame you. I very appreciate your work. > > I just write to this list because it seems to me

Re: OGNL expressions in headers and parameters

2017-03-13 10:54 GMT+01:00 Tamás Barta : > Lukasz, I don't write it to blame you. I very appreciate your work. > > I just write to this list because it seems to me that these OGNL > expressions are evaluated before my code is executed and I wonder if it can > be disabled anyhow. > Can I turn off th

Re: OGNL expressions in headers and parameters

Lukasz, I don't write it to blame you. I very appreciate your work. I just write to this list because it seems to me that these OGNL expressions are evaluated before my code is executed and I wonder if it can be disabled anyhow. Can I turn off these auto-evaluated thinks if I don't need them at al

Re: OGNL expressions in headers and parameters

2017-03-13 10:43 GMT+01:00 Tamás Barta : > Interesting, I don't do such things. I write down the stack trace from > where it is executed (in 2.5.2). > This is the interesting part, there is no my code there. > > StrutsPrepareAndExecuteFilter:100 // boolean handled > = execute.

Re: OGNL expressions in headers and parameters

Interesting, I don't do such things. I write down the stack trace from where it is executed (in 2.5.2). This is the interesting part, there is no my code there. StrutsPrepareAndExecuteFilter:100 // boolean handled = execute.executeStaticResourceRequest(request, response); ->

Re: OGNL expressions in headers and parameters

2017-03-13 9:50 GMT+01:00 Tamás Barta : > I mean I never want a http header or parameter be handled as OGNL > expression and got evaluated. I would like it to be retrieved as it is. For > security purpose. As I said, Struts doesn't evaluate incoming params as OGNL expressions, but when you use suc

Re: OGNL expressions in headers and parameters

I mean I never want a http header or parameter be handled as OGNL expression and got evaluated. I would like it to be retrieved as it is. For security purpose. On Mon, Mar 13, 2017 at 9:44 AM, Lukasz Lenart wrote: > 2017-03-13 9:41 GMT+01:00 Tamás Barta : > > Hi, > > > > Is there any way to disa

Re: OGNL expressions in headers and parameters

2017-03-13 9:41 GMT+01:00 Tamás Barta : > Hi, > > Is there any way to disable evaluating OGNL expressions in HTTP headers and > request parameters? There is no direct evaluation of request parameters nor headers. The problem is that those values are often used by developers in JSPs or in some othe

OGNL expressions in headers and parameters

Hi, Is there any way to disable evaluating OGNL expressions in HTTP headers and request parameters? Thanks, Tamás

Property Tag and Parameters

View this message in context: http://old.nabble.com/Property-Tag-and-Parameters-tp27400677p27400677.html Sent from the Struts - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: user-unsubscr...@struts.apache.or

and parameters

Hi all, How can I use parameters passed in to a jsp file with in a Struts2 tag within that JSP? So for example, I want to include a big chunk of boilerplate HTML and pass in an image name, then use that passed-in name in an tag to reference it. Include: prettything.jpg The

Re: Struts2 2.0.11 problem with url and parameters

g's >>>> "action" >>>> attribute w/o the ".action" extension? Is the link rendering properly? >>>> >>>> In general we don't use the tag for non-Ajax URLs, too--what >>>> if >>>> you use a plain HT

Re: Struts2 2.0.11 problem with url and parameters

7;t use the tag for non-Ajax URLs, too--what if >>> you use a plain HTML tag with the generated URL? >>> >>> Dave >>> >>> >>> - >>> To unsubscribe, e-mail:

Re: Struts2 2.0.11 problem with url and parameters

se the tag for non-Ajax URLs, too--what if >> you use a plain HTML tag with the generated URL? >> >> Dave >> >> >> - >> To

Re: Struts2 2.0.11 problem with url and parameters

gt; - > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > > -- View this message in context: http://www.nabble.com/Struts2-2.0.11-problem-with-url-and-parameters

Re: Struts2 2.0.11 problem with url and parameters

--- On Wed, 11/26/08, Tomi21 <[EMAIL PROTECTED]> wrote: > What I've done next is changing 'struts.xml' so > there are no interceptors configured. > The packagedoes not extend struts-default anymore. > The action is still being executed but the parameter is not > being set anyway.:( Well that's har

Re: Struts2 2.0.11 problem with url and parameters

g4j.category.com.opensymphony=DEBUG > > BR, Andras > > > - > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > > -- View this message in conte

Re: Struts2 2.0.11 problem with url and parameters

Hi, Can you set the log level to DEBUG to see what the interceptors say? Something like: log4j.category.com.opensymphony=DEBUG BR, Andras - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTE

Re: Struts2 2.0.11 problem with url and parameters

;>> I noticed two custom interceptors, maybe that's the source of problem >>> existeUserName >>> validadorFechas >>> >>> >>> Regards >>> -- >>> Lukasz >>> http://www.lenart.org.pl/ >>> >>> --

Re: Struts2 2.0.11 problem with url and parameters

ones >> defined >> in the default stack >> are concerned. > > Yes, but I must look in to the Struts2 source to check how the > interceptors are created. Maybe that can be somehow related to your > problem. > > > Regards > -- > Lukasz > http://www.lenart.o

Re: Struts2 2.0.11 problem with url and parameters

2008/11/25 Tomi21 <[EMAIL PROTECTED]>: > These interceptors are not configured for 'EliminarSuscripcion' action. > If interceptors have something to do with this issue only the ones defined > in the default stack > are concerned. Yes, but I must look in to the Struts2 source to check how the inter

Re: Struts2 2.0.11 problem with url and parameters

>> http://www.lenart.org.pl/ >> >> - >> To unsubscribe, e-mail: [EMAIL PROTECTED] >> For additional commands, e-mail: [EMAIL PROTECTED] >> >> >> > > -- > View this mes

Re: Struts2 2.0.11 problem with url and parameters

ail: [EMAIL PROTECTED] > > > -- View this message in context: http://www.nabble.com/Struts2-2.0.11-problem-with-url-and-parameters-tp20577582p20678768.html Sent from the Struts - User mailing list archive at Nabble.com.

Re: Struts2 2.0.11 problem with url and parameters

Yeah, that's what I was thinking also, but from the struts.xml it looks like it's not associated with the action in question. Nils-H On Tue, Nov 25, 2008 at 11:04 AM, Lukasz Lenart <[EMAIL PROTECTED]> wrote: > I noticed two custom interceptors, maybe that's the source of problem > existeUserName

Re: Struts2 2.0.11 problem with url and parameters

I noticed two custom interceptors, maybe that's the source of problem existeUserName validadorFechas Regards -- Lukasz http://www.lenart.org.pl/ - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL

Re: Struts2 2.0.11 problem with url and parameters

try to use Integer instead of int? For me it works with >>>> Integer. >>>> >>>> Best regards, >>>> Andras. >>>> >>>> - >>>> To unsubscribe, e-mail: [EMAIL PROTECTED] >>>

Re: Struts2 2.0.11 problem with url and parameters

t; the parameters (in other actions) are set? >>> Can you try to use Integer instead of int? For me it works with Integer. >>> >>> Best regards, >>> Andras. >>> >>> - >>> To unsu

Re: Struts2 2.0.11 problem with url and parameters

L PROTECTED] >> For additional commands, e-mail: [EMAIL PROTECTED] >> >> >> > > -- View this message in context: http://www.nabble.com/Struts2-2.0.11-problem-with-url-and-parameters-tp20577582p20677399.html Sent from the Struts - User mailing list archive at Na

Re: Struts2 2.0.11 problem with url and parameters

h Integer. > > Best regards, > Andras. > > - > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > > -- View this message in context: http://www.nabble.com/Struts2-2.0.11-problem-with-url

Re: Struts2 2.0.11 problem with url and parameters

Hi, Only in this case is not working with the parameter "indice" or none of the parameters (in other actions) are set? Can you try to use Integer instead of int? For me it works with Integer. Best regards, Andras. - To unsubs

Re: Struts2 2.0.11 problem with url and parameters

your setter-method. (In this case setId) >>>>> >>>>> Regards >>>>> >>>>> Volker >>>>> >>>>> >>>>> >>>>> >>>>> Hi all, >>>>> >>>>> I h

Re: Struts2 2.0.11 problem with url and parameters

gt;>>> I have a url with a parameter. This parameter is sent to the action via >>>> HTTP >>>> Get Method(i.e appended at the end of the url --> ?parameter_value). My >>>> problem is that I can't reach the parameter value in the action beca

Re: Struts2 2.0.11 problem with url and parameters

parameter is sent to the action via >>> HTTP >>> Get Method(i.e appended at the end of the url --> ?parameter_value). My >>> problem is that I can't reach the parameter value in the action because >>> the >>> setter method is not being called. I can't ge

Re: Struts2 2.0.11 problem with url and parameters

ng called. I can't get the value throught >> >> 'ActionContext.getContext().getParameters();' neither. >> >> This is my code. What I'm doing wrong?. >> >> >> >> >> Eliminar >> >> Thanks in advance. >>

Re: Struts2 2.0.11 problem with url and parameters

alue throught 'ActionContext.getContext().getParameters();' neither. This is my code. What I'm doing wrong?. Eliminar Thanks in advance. -- View this message in context: http://www.nabble.com/Struts2-2.0.11-problem-with-url-and-parameters-tp20577582p 20577582.html Sent from th

RE: Struts2 2.0.11 problem with url and parameters

t; 'ActionContext.getContext().getParameters();' neither. > > This is my code. What I'm doing wrong?. > > > > > Eliminar > > Thanks in advance. > -- > View this message in context: > http://www

RE: Struts2 2.0.11 problem with url and parameters

ing wrong?. Eliminar Thanks in advance. -- View this message in context: http://www.nabble.com/Struts2-2.0.11-problem-with-url-and-parameters-tp20577582p 20577582.html Sent from the Struts - User mailing list archive at Nabble.com.

Struts2 2.0.11 problem with url and parameters

get the value throught 'ActionContext.getContext().getParameters();' neither. This is my code. What I'm doing wrong?. Eliminar Thanks in advance. -- View this message in context: http://www.nabble.com/Struts2-2.0.11-problem-with-url-and-parameters-tp20577582p20577582.html

FW: using GET urls and parameters

Please excuse my stupidity I was separating parameters from url with "&" instead of ? duh!! Time for the pub Nick -Original Message- From: Nick Maunder | Oathouse [mailto:[EMAIL PROTECTED] Sent: 21 October 2008 17:18 To: 'Struts Users Mailing List' Sub

Re: using GET urls and parameters

The url is broken: < http://localhost:8080/ffRelease2/User_verifyEmail.action&user=1&otv=2d1afe2 118ae59288f3d79fb52abee >&user=1&otv=2d1afe2118ae59288f3d79fb52abee fix to this: http://localhost:80

using GET urls and parameters

Hi all My brain is fried Why won't my struts2 accept a GET URL with parameters?? What I am doing wrong? http://localhost:8080/ffRelease2/User_verifyEmail.action &user=1&otv=2d1afe21

Re: Result Annotations and parameters

efaultActionInvocation$1.doProfiling(DefaultActionInvocation.java:230) >> > at >> com.opensymphony.xwork2.DefaultActionInvocation$1.doProfiling(DefaultActionInvocation.java:229) >> > at >> com.opensymphony.xwork2.util.profiling.UtilTimerStack.profile(UtilTimerStack.java:455) >>

Re: Result Annotations and parameters

gt;> This looks similar to my code, why I become an Error Message, >> Is there a Bug with 2.1.0 and 2.0.11 ? Where I can get 2.1.1? >> >> Bye >> Johannes >> >> >> --------- >> To unsubscribe, e-mail: [EMAIL PROTECTED] >&

Re: Result Annotations and parameters

Just out of curiosity, does it work if you make the ID getter conformant to the JavaBean spec, getId() (with appropriate corrections to your annotations)? d. --- Johannes Geppert <[EMAIL PROTECTED]> wrote: > Hello Ted, > > thank you for reply. > > > Is the property actually "ID", as in "String

Re: Result Annotations and parameters

Hello Ted, thank you for reply. > Is the property actually "ID", as in "String getID()" ? > > Or is it getId() ? It's getID(), with XML-Configuration it works perfectly. So there can not be an error with misspelling. > In the JPA MailReader code (see the sandbox), @Results like this one > are

Re: Result Annotations and parameters

Is the property actually "ID", as in "String getID()" ? Or is it getId() ? In the JPA MailReader code (see the sandbox), @Results like this one are working: @Result(name = Index.SUCCESS, value = Index.INDEX, type =ServletActionRedirectResult.class, params = {Index.USER, Index.USER_USERNAME }) w

Re: Result Annotations and parameters

Does no one have a resolution for my problem? With XML-Configuration it works perfectly. But I like the Configuration with Annotations. I try it with Struts 2.1.0 and the codebehind plugin. Thank You Johannes > > Hello, > > i try to use the Result Annotations in my new Project, this works fin

Result Annotations and parameters

Hello, i try to use the Result Annotations in my new Project, this works fine for me. But when I try to use parameters I become an Exception. Config: @Namespace(value="/") @Results( { @Result(value = "myresult.action", type = ServletActionRedirectResult.class, params={"ID","${ID}"}), @R

Re: Request and parameters are null

--- Rusty Spoone <[EMAIL PROTECTED]> wrote: > How do I add the interceptors that handle setting > data into my action? http://struts.apache.org/2.x/docs/interceptors.html d. Yahoo! oneSearch: Finally,

Re: Request and parameters are null

Yes. There is only one interceptor which is the one I defined. So this must sound like a silly question. How do I add the interceptors that handle setting data into my action? On 6/13/07, Laurie Harper <[EMAIL PROTECTED]> wrote: Rusty Spoone wrote: > Hi all. I have a Login action that

Re: Request and parameters are null

Rusty Spoone wrote: Hi all. I have a Login action that gets intercepted by non other than LoginInterceptor. In the interceptor the username and password are checked. I can even print them in the logs to see that they are really there. The interceptor returns return invocation.invoke(); Then in

Request and parameters are null

Hi all. I have a Login action that gets intercepted by non other than LoginInterceptor. In the interceptor the username and password are checked. I can even print them in the logs to see that they are really there. The interceptor returns return invocation.invoke(); Then in the Login action us