[WW-4257] ParametersInterceptor uses same method on ParameterNameAware interface to validate parameters and properties - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 2.3.16
Fix Version/s: 2.3.20
Component/s: None
Labels:
None

Description

With version 2.3.16, the ParametersInterceptor uses the same method to validate parameter names and property names.
As we use the ParameterNameAware interface to implement parameter whitelisting on action level, this breaks our case.

It might not be how it is intended, but validating a property independent of the actual bean breaks our current implementation.

Possible fixes would be:

alter ParameterNameAware to have an additional separate method to validate properties
introduce a new PropertyNameAware interface
introduce a new ParameterAndPropertyNameAware interface

One could also consider to ignore the ParameterNameAware interface when validating properties, as for a parameter foo.bar, the values foo.bar, foo, and bar are passed to the ParameterNameAware interface, which one could see as a bit redundant. Especially given the fact that a context in the case of property validation is not provided. Therefore, it is impossible for the implementation to distinguish between a parameter and a property.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

ww-4257.patch
16/Dec/13 09:59
5 kB
Christoph Lenggenhager

Activity

People

Assignee:: Lukasz Lenart

Reporter:: Christoph Lenggenhager

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 13/Dec/13 12:22

Updated:: 13/Jan/15 11:58

Resolved:: 25/Feb/14 10:11