Uploaded image for project: 'Struts 2'
  1. Struts 2
  2. WW-4645

SecurityMemberAccess exclude class design issue

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Not A Bug
    • Affects Version/s: 2.3.20
    • Fix Version/s: 2.3.30, 2.5.2
    • Component/s: Core Actions
    • Labels:
      None

      Description

      In the isClassExcluded method invoke targetClass.isAssignableFrom(excludedClass), that mean targetClass must be parent class of excludedClass or same as excludedClass.
      How can enumerate all son classes in the excluded classes?
      Why not opposite? I only prevent the parent class, all son classes also be prevented.
      The EX: excludedClass.isAssignableFrom(targetClass)

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              raintung.li Raintung Li
            • Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: