Hi Ashish, Comment inline:
> On Jul 25, 2015, at 5:01 PM, Ashish Repal <[email protected]> wrote: > > Actually this is a listing screen where i have provided hyperlinks using > href. > Eg. in ftl > <td><a > href="/facility/control/ModifyShipmentStatus?shipId=${tripShipmentData.shipId?if_exists}&status=Delivered" > class="buttontext">Delivered</a></td> Here you can create a html form element; <form action=“<@ofbizUrl>ModifyShipmentStatus</@ofbizUrl>” method=“post”> <input type=“hidden” name=“shipId” value=“${tripShipmentData.shipId!}” /> <input type=“submit” value=“ Delivered” /> </form> > > and in Form.xml > > <field name="start" position="2" title="" widget-style="buttontext" > use-when=""N".equals(isStarted)" > > <hyperlink target="/startShip" description="start Ship" > > <parameter param-name="tripId" value="${shipId}" > /> > </hyperlink> > </field> You can use link-type="hidden-form” in form widget to render link as form. Thanks & Regards — Deepak Dixit > > > Regards, > Aashish Repal > 09623381664 > > On Sat, Jul 25, 2015 at 1:00 PM, Adrian Crum < > [email protected]> wrote: > >> Basically, you need to invoke the URL with an HTTP POST instead of an HTTP >> GET. >> >> Adrian Crum >> Sandglass Software >> www.sandglass-software.com >> >> >> On 7/24/2015 11:04 PM, Ashish Repal wrote: >> >>> Hi All, >>> I am getting below exception when calling the service from controller. >>> >>> [ServiceEventHandler.java:408:ERROR] =============== Found URL parameter >>> [shipId] passed to secure (https) request-map with uri >>> [ModifyShipmentStatus] with an event that calls service >>> [ModifyShipmentStatus]; this is not allowed for security reasons! The data >>> should be encrypted by making it part of the request body (a form field) >>> instead of the request URL. >>> >>> anyone has idea about this? >>> >>> controller.xml: >>> >>> <request-map uri="ModifyShipmentStatus"> >>> <security https="true" auth="true" /> >>> <event type="service" path="" invoke="ModifyShipmentStatus"/> >>> <response name="success" type="view" value="EditTrip"/> >>> <response name="error" type="view" value="EditTrip"/> >>> </request-map> >>> >>> If I comment the security tag in controller it works but later it fails >>> saying >>> >>> org.ofbiz.webapp.control.RequestHandlerException: Not accepting insecure >>> form data posted to a secure request >>> >>> >>> >>> Regards, >>> Aashish Repal >>> 09623381664 >>> >>>
