Basically, you need to invoke the URL with an HTTP POST instead of an
HTTP GET.
Adrian Crum
Sandglass Software
www.sandglass-software.com
On 7/24/2015 11:04 PM, Ashish Repal wrote:
Hi All,
I am getting below exception when calling the service from controller.
[ServiceEventHandler.java:408:ERROR] =============== Found URL parameter
[shipId] passed to secure (https) request-map with uri
[ModifyShipmentStatus] with an event that calls service
[ModifyShipmentStatus]; this is not allowed for security reasons! The data
should be encrypted by making it part of the request body (a form field)
instead of the request URL.
anyone has idea about this?
controller.xml:
<request-map uri="ModifyShipmentStatus">
<security https="true" auth="true" />
<event type="service" path="" invoke="ModifyShipmentStatus"/>
<response name="success" type="view" value="EditTrip"/>
<response name="error" type="view" value="EditTrip"/>
</request-map>
If I comment the security tag in controller it works but later it fails
saying
org.ofbiz.webapp.control.RequestHandlerException: Not accepting insecure
form data posted to a secure request
Regards,
Aashish Repal
09623381664
