Hi,
Yes, in 1.4.20 Wicket uses SecurePackageResourceGuard by default
because there was a security related issue. We will send an official
mail soon.
Many of the common extensions are allowed by default but .htm is not
one of them. You need to add this to YourApp#init():
IPackageResourceGuard packageResourceGuard =
getResourceSettings().getPackageResourceGuard();
if (packageResourceGuard instanceof SecurePackageResourceGuard)
{
SecurePackageResourceGuard guard =
(SecurePackageResourceGuard)
packageResourceGuard;
guard.addPattern("+*.htm");
}
On Wed, Mar 21, 2012 at 12:42 PM, Pierre Goiffon
<[email protected]> wrote:
> Hello,
>
> After upgrading from Wicket 1.4.19 to Wicket 1.4.20 I get exceptions in
> TinyMCE. We're using the Wicketstuff integration.
> When opening TinyMCE lightboxes I get exception like :
>
> org.apache.wicket.markup.html.PackageResource$PackageResourceBlockedException:
> Access denied to (static) package resource
> com/interview/tool/wicketstuff/tinymce/themes/advanced/image.htm. See
> IPackageResourceGuard
>
> It works perfectly in Wicket 1.4.18 or 1.4.19, but when updating in the
> pom to the 1.4.20 version we get that exception.
> I can't figure what ticket could be related in the 1.4.20 changelog
> (https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310561&version=12317570)
>
> Any idea ?
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [email protected]
> For additional commands, e-mail: [email protected]
>
--
Martin Grigorov
jWeekend
Training, Consulting, Development
http://jWeekend.com
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
