The comments say: * This session validator does nothing and allows a view that * doesn't require any security.
which doesn't match what the code actually does. Here's a patch that makes it do nothing.
Index: src/java/org/apache/turbine/modules/actions/NullSessionValidator.java =================================================================== RCS file: /home/cvspublic/jakarta-turbine-3/src/java/org/apache/turbine/modules/actions/NullSessionValidator.java,v retrieving revision 1.2 diff -r1.2 NullSessionValidator.java 79,80c79 < data.setTarget(Turbine.getConfiguration().getString( < Turbine.TEMPLATE_HOMEPAGE)); --- > ;
-bl
-- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
