Hi Yasser,
Replacing .UserID with lowercase u .userId didn't work either.
I've got the following warning message:
250917 [http-nio-8080-exec-8] WARN
com.opensymphony.xwork2.interceptor.ParametersInterceptor - Parameter
[#session['userList'][0].UserId] matches excluded pattern
[(^|\%\{)((#?)(top(\.|\['|\[")|\[\d\]\.)?)(dojo|struts|session|request|response|application|servlet(Request|Response|Context)|parameters|context|_memberAccess)(\.|\[).*]!
Thanks,
Lana.
-----Original Message-----
From: Yasser Zamani [mailto:yasser.zam...@live.com]
Sent: Wednesday, September 27, 2017 1:24 AM
To: user@struts.apache.org
Subject: Re: Question about upgrade to struts2 2.3.34 and session variables
On 9/26/2017 10:47 PM, Roslyakova, Svetlana wrote:
> Hi Yasser,
>
> Unfortunately it didn't work either.
>
> Thanks,
>
> Lana.
>
I also think all .UserId should be replaced with .userId (lowercase u).
Also, please set devMode to true [1] and examine output for any related WARN.
[1] https://struts.apache.org/docs/devmode.html
> -----Original Message-----
> From: Yasser Zamani [mailto:yasser.zam...@live.com]
> Sent: Tuesday, September 26, 2017 1:49 PM
> To: user@struts.apache.org
> Subject: Re: Question about upgrade to struts2 2.3.34 and session
> variables
>
>
>
> On 9/26/2017 9:14 PM, Roslyakova, Svetlana wrote:
>> Hi Yasser,
>>
>> Here is my Session getters/setters:
>>
>> public void setSession(Map<String, Object> arg0) {
>> this.Session = arg0;
>> }
>>
>> public Map<String, Object> getSession() {
>> return Session;
>> }
>>
>
> Thank you! So could you please also check if replacing all session.userList
> with session['userList'] resolves this issue?
>
>> Adding # before session didn't solve the issue.
>>
>> Thanks,
>>
>> Lana
>>
>> -----Original Message-----
>> From: Yasser Zamani [mailto:yasser.zam...@live.com]
>> Sent: Tuesday, September 26, 2017 1:12 PM
>> To: user@struts.apache.org
>> Subject: Re: Question about upgrade to struts2 2.3.34 and session
>> variables
>>
>>
>>
>> On 9/26/2017 7:41 PM, Roslyakova, Svetlana wrote:
>>> Here is the full example:
>>>
>>> <s:iterator var="UserRow" status="stat" value="session.userList">
>>>
>>
>> Does your action have getSession() method? As I remember, to access
>> session we should use #session e.g. #session.userList or
>> #session['userList']
>>
>>> <s:set var="index" value="%{#stat.index}" />
>>> <tr>
>>>
>>> <td><div id="commitdiv<s:property
>>> value="#index"/>"><s:textfield type="text" id="userId"
>>> theme="simple" name="session. userList [%{#stat.index}].UserId"
>>> value="%{top.UserId}" /></div></td> </tr>
>>>
>>
>> Same as above, I guess it should be #session.userList
>> [%{#stat.index}].UserId
>>
>> Regards,
>> Yasser.
>>
>>> The UserList is the business class and getters/setters for UserId in that
>>> class are as follows:
>>>
>>> public String getUserId() {
>>> return UserId;
>>> }
>>> public void setUserId(String userId) {
>>> UserId = userId;
>>> }
>>>
>>> It all worked before the upgrade.
>>>
>>> Thanks,
>>>
>>> Lana.
>>>
>>>
>>>
>>> -----Original Message-----
>>> From: Lukasz Lenart [mailto:lukaszlen...@apache.org]
>>> Sent: Tuesday, September 26, 2017 11:39 AM
>>> To: Struts Users Mailing List <user@struts.apache.org>
>>> Subject: Re: Question about upgrade to struts2 2.3.34 and session
>>> variables
>>>
>>> 2017-09-26 17:27 GMT+02:00 Roslyakova, Svetlana
>>> <svetlana.roslyak...@bnymellon.com>:
>>>> Hi Lukasz,
>>>>
>>>> I have another issue with struts2 2.3.34 upgrade.
>>>> We are using session variables throughout the application:
>>>>
>>>> <s:textfield type="text" id="userId" theme="simple"
>>>> name="session.user.UserId" value="%{top.UserId}" />
>>>
>>> What getters/setters do you have for UserId? And why do you use
>>> %{top.UserId}?
>>>
>>>
>>> Regards
>>>
>> �B KKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKCB �
>> �[ X ܚX K��K[XZ[
>> �\ \ ][ X ܚX P� � ]�˘\�X �K ܙ B ܈�Y��]�[ۘ[�� [X[ � ��K[XZ[
>> �\ \ Z�[��� � ]�˘\�X �K ܙ B
>>
>> The information contained in this e-mail, and any attachment, is
>> confidential and is intended solely for the use of the intended recipient.
>> Access, copying or re-use of the e-mail or any attachment, or any
>> information contained therein, by any other person is not authorized. If you
>> are not the intended recipient please return the e-mail to the sender and
>> delete it from your computer. Although we attempt to sweep e-mail and
>> attachments for viruses, we do not guarantee that either are virus-free and
>> accept no liability for any damage sustained as a result of viruses.
>>
>> Please refer to http://disclaimer.bnymellon.com/eu.htm for certain
>> disclosures relating to European legal entities.
>> �B
>> KKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKK
>> KCB � �[ X ܚX K��K[XZ[
> �\ \ ][ X ܚX P� � ]�˘\�X �K ܙ B ܈�Y��]�[ۘ
>> [�� [X[ � ��K[XZ[
> �\ \ Z�[��� � ]�˘\�X �K ܙ B
>>
> �B KKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKCB �
> �[ X ܚX K��K[XZ[
> �\ \ ][ X ܚX P� � ]�˘\�X �K ܙ B ܈�Y��]�[ۘ[�� [X[ � ��K[XZ[
> �\ \ Z�[��� � ]�˘\�X �K ܙ B
>
> The information contained in this e-mail, and any attachment, is confidential
> and is intended solely for the use of the intended recipient. Access, copying
> or re-use of the e-mail or any attachment, or any information contained
> therein, by any other person is not authorized. If you are not the intended
> recipient please return the e-mail to the sender and delete it from your
> computer. Although we attempt to sweep e-mail and attachments for viruses, we
> do not guarantee that either are virus-free and accept no liability for any
> damage sustained as a result of viruses.
>
> Please refer to http://disclaimer.bnymellon.com/eu.htm for certain
> disclosures relating to European legal entities.
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: user-unsubscr...@struts.apache.org
> For additional commands, e-mail: user-h...@struts.apache.org
>
�B KKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKCB � �[
X ܚX K��K[XZ[
�\ \ ][ X ܚX P� � ]�˘\�X �K ܙ B ܈�Y��]�[ۘ[�� [X[ � ��K[XZ[
�\ \ Z�[��� � ]�˘\�X �K ܙ B
The information contained in this e-mail, and any attachment, is confidential
and is intended solely for the use of the intended recipient. Access, copying
or re-use of the e-mail or any attachment, or any information contained
therein, by any other person is not authorized. If you are not the intended
recipient please return the e-mail to the sender and delete it from your
computer. Although we attempt to sweep e-mail and attachments for viruses, we
do not guarantee that either are virus-free and accept no liability for any
damage sustained as a result of viruses.
Please refer to http://disclaimer.bnymellon.com/eu.htm for certain disclosures
relating to European legal entities.
