OFBiz › OFBiz - Dev

[jira] Created: (OFBIZ-2452) Security error in Catalog. Trying to delete

_‹ Previous Topic Next Topic _›

Classic

List

Threaded

6 messages Options

Nicolas Malin (Jira)

[jira] Created: (OFBIZ-2452) Security error in Catalog. Trying to delete

Security error in Catalog. Trying to delete
-------------------------------------------

Key: OFBIZ-2452
URL: https://issues.apache.org/jira/browse/OFBIZ-2452
Project: OFBiz
Issue Type: Sub-task
Reporter: BJ Freeman

--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

Nicolas Malin (Jira)

[jira] Commented: (OFBIZ-2452) Security error in Catalog. Trying to delete

[ https://issues.apache.org/jira/browse/OFBIZ-2452?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12707710#action_12707710 ]

BJ Freeman commented on OFBIZ-2452:
-----------------------------------

I know this has been discussed on the dev list. I would love to provide
patches. I am guessing this has to be changed to a post, if I understand
right.

it seems most of the delete button in catalog section come up with
similar messages.
https://localhost:8443/catalog/control/promo_deleteProductStorePromoAppl?productStoreId=TestStore&productPromoId=9019&fromDate=2009-04-27%2015:11:56.0

Error calling event: org.ofbiz.webapp.event.EventHandlerException: Found
URL parameter [productStoreId] passed to secure (https) request-map with
uri [promo_deleteProductStorePromoAppl] with an event that calls service
[deleteProductStorePromoAppl]; this is not allowed for security reasons!
The data should be encrypted by making it part of the request body (a
form field) instead of the request URL.

> Security error in Catalog. Trying to delete
> -------------------------------------------
>
> Key: OFBIZ-2452
> URL: https://issues.apache.org/jira/browse/OFBIZ-2452
> Project: OFBiz
> Issue Type: Sub-task
> Reporter: BJ Freeman
>

--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

Nicolas Malin (Jira)

[jira] Commented: (OFBIZ-2452) Security error in Catalog. Trying to delete

In reply to this post by Nicolas Malin (Jira)

[ https://issues.apache.org/jira/browse/OFBIZ-2452?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12715984#action_12715984 ]

BJ Freeman commented on OFBIZ-2452:
-----------------------------------

url
https://localhost:8443/catalog/control/EditCategoryRollup?showProductCategoryId=CATALOG1
trying to delete categories

> Security error in Catalog. Trying to delete
> -------------------------------------------
>
> Key: OFBIZ-2452
> URL: https://issues.apache.org/jira/browse/OFBIZ-2452
> Project: OFBiz
> Issue Type: Sub-task
> Reporter: BJ Freeman
>

--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

Nicolas Malin (Jira)

[jira] Commented: (OFBIZ-2452) Security error in Catalog. Trying to delete

In reply to this post by Nicolas Malin (Jira)

[ https://issues.apache.org/jira/browse/OFBIZ-2452?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12732787#action_12732787 ]

BJ Freeman commented on OFBIZ-2452:
-----------------------------------

https://issues.apache.org/jira/browse/OFBIZ-2737
fixed the category delet in the catalog.
still a lot to do

> Security error in Catalog. Trying to delete
> -------------------------------------------
>
> Key: OFBIZ-2452
> URL: https://issues.apache.org/jira/browse/OFBIZ-2452
> Project: OFBiz
> Issue Type: Sub-task
> Reporter: BJ Freeman
>

--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

Nicolas Malin (Jira)

[jira] Commented: (OFBIZ-2452) Security error in Catalog. Trying to delete

In reply to this post by Nicolas Malin (Jira)

[ https://issues.apache.org/jira/browse/OFBIZ-2452?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12756265#action_12756265 ]

Jacques Le Roux commented on OFBIZ-2452:
----------------------------------------

Hi BJ,

OFBIZ-2737 and OFBIZ-2059 fixed 2 issues you reported here. Do you think the 1st one you reported is the only one to remain ?

Thanks

> Security error in Catalog. Trying to delete
> -------------------------------------------
>
> Key: OFBIZ-2452
> URL: https://issues.apache.org/jira/browse/OFBIZ-2452
> Project: OFBiz
> Issue Type: Sub-task
> Reporter: BJ Freeman
>

--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

Nicolas Malin (Jira)

[jira] Closed: (OFBIZ-2452) Security error in Catalog. Trying to delete

In reply to this post by Nicolas Malin (Jira)

[ https://issues.apache.org/jira/browse/OFBIZ-2452?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Jacques Le Roux closed OFBIZ-2452.
----------------------------------

Resolution: Fixed
Fix Version/s: SVN trunk
Release Branch 9.04

This has been fixed both in trunk and R9.04

> Security error in Catalog. Trying to delete
> -------------------------------------------
>
> Key: OFBIZ-2452
> URL: https://issues.apache.org/jira/browse/OFBIZ-2452
> Project: OFBiz
> Issue Type: Sub-task
> Reporter: BJ Freeman
> Fix For: Release Branch 9.04, SVN trunk
>
>

--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.