t; > [mailto:[EMAIL PROTECTED]
> > > > Sent: Wednesday, September 08, 2004 9:48 AM
> > > > To: Struts Users Mailing List
> > > > Subject: RE: ActionForm with all application
> > > attributes
> > > >
> > > >
> > > >
> -Original Message-
> From: Leandro Melo [mailto:[EMAIL PROTECTED]
> Sent: Wednesday, September 08, 2004 10:25 AM
> To: Struts Users Mailing List
> Subject: RE: ActionForm with all application attributes
>
>
> --- Jim Barrows <
--- Jim Barrows <[EMAIL PROTECTED]> escreveu:
>
>
> > -Original Message-
> > From: Leandro Melo
> [mailto:[EMAIL PROTECTED]
> > Sent: Wednesday, September 08, 2004 9:48 AM
> > To: Struts Users Mailing List
> > Subject: RE: ActionForm with a
> -Original Message-
> From: Leandro Melo [mailto:[EMAIL PROTECTED]
> Sent: Wednesday, September 08, 2004 9:48 AM
> To: Struts Users Mailing List
> Subject: RE: ActionForm with all application attributes
>
>
> Jim, all the code i`m talking about is inside a Base
Jim, all the code i`m talking about is inside a Base
Action Form. It seems the you`re thinking that my code
is inside a action, aren`t you?? Maybe a
misundertanding, maybe mine, maybe yours.
So, i agree with some of your comments, but not on all
of thems. In fact, i`m gonna to take a look about th
> -Original Message-
> From: Leandro Melo [mailto:[EMAIL PROTECTED]
> Sent: Wednesday, September 08, 2004 5:40 AM
> To: Struts Users Mailing List
> Subject: Re: ActionForm with all application attributes
>
>
> Bill, wait a minute, i just thought on something.
> -Original Message-
> From: Leandro Melo [mailto:[EMAIL PROTECTED]
> Sent: Tuesday, September 07, 2004 5:48 PM
> To: struts jakarta
> Subject: ActionForm with all application attributes
>
>
> Hi,
> i sent this question yesterday, but as nowbody
> answered me, i trying it again with a
True -- some people use bulk property setters like those provided by
BeanUtils to move data from the ActionForm to the DTO -- I think that is
primarily where you would need to be careful. Personally, I am not fond
of the use of an uber form; it doesn't seem very object-oriented;
however, I can
Bill, wait a minute, i just thought on something.
I wouldn't matter if a hacker set a attributes in my
BaseActionFomr, if i don't use it to build my DTOs. I
mount my DTOs case specific, so i'd just ignore the
hacker set attribute.
But if this hacker set attribute is in my DTO, i agree
that i could
Bill, this is for sure a disadavantage. Do you see
others
Actually, we're suceptible to this avantage in all
forms, but i agree with you that if i have a base form
with all atributes the chances of things getting
messed up is a log bigger.
--- Bill Siggelkow <[EMAIL PROTECTED]> escreveu:
>
Are all of your getters and setters public? If so, (which I assume is
true), one disadavantage is that request parameters can be passed in
that set stuff on the form that you may not be expecting. For example,
suppose your uber form supports properties for 'foo' 'bar' and 'baz'.
Let's say one f
11 matches
Mail list logo
