2018-04-29 11:24 GMT+02:00 Yasser Zamani <yasserzam...@apache.org>: > I couldn't understand what's the user expected behavior and what we > should try to fix. Because of security, SMI is enabled by default and > user has to annotate or define allowed methods. right? I think there are > no other solution to keep both security and all methods allowed.
The problem is that we should support existing configurations (like automatically define allowed methods for those used in struts.xml). The same should happen with the REST plugin but the problem is that i tries to guess the method name based on url. I do not see a good solution for now. Regards -- Ćukasz + 48 606 323 122 http://www.lenart.org.pl/ --------------------------------------------------------------------- To unsubscribe, e-mail: user-unsubscr...@struts.apache.org For additional commands, e-mail: user-h...@struts.apache.org
