Details
-
Sub-task
-
Status: Closed
-
Major
-
Resolution: Fixed
-
Release Branch 09.04, Trunk
-
None
-
Bug Crush Event - 21/2/2015
Description
In Content Manager component Remove Survey question link of Edit survey question page is showing error.
Steps to reproduce this error:
1) Go to Content Manager Application.
https://demo.ofbiz.org/content/control/main
2) Select Survey tab.
https://demo.ofbiz.org/content/control/FindSurvey
3) Click on Find button it will give survey list.
4) Select a Survey from list it will show a EditSurvey page.
https://demo.ofbiz.org/content/control/EditSurvey?surveyId=1001
5) Select Questions tab it will show EditSurveyQuestions page.
https://demo.ofbiz.org/content/control/EditSurveyQuestions?surveyId=1001
6) On this page in "Edit Survey Questions Survey ID..." screenlet there is a Remove link with every survey Questions.
7) Click on the Remove link and the error would be visible.
Error log:
The Following Errors Occurred:
Error calling event: org.ofbiz.webapp.event.EventHandlerException: Found URL parameter [surveyId] passed to secure (https) request-map with uri [removeSurveyQuestionAppl] with an event that calls service [deleteSurveyQuestionAppl]; this is not allowed for security reasons! The data should be encrypted by making it part of the request body (a form field) instead of the request URL...