Posted by
Nicolas Malin (Jira) on
Dec 20, 2020; 10:18am
URL: http://ofbiz.116.s1.nabble.com/jira-Commented-OFBIZ-12098-Make-ruleName-field-in-PriceForms-xml-AddPriceRules-safe-tp4762931.html
[
https://issues.apache.org/jira/browse/OFBIZ-12098?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17252389#comment-17252389 ]
ASF subversion and git services commented on OFBIZ-12098:
---------------------------------------------------------
Commit 72d3dd18ac47c381eee7c368febd25f3b6c1c101 in ofbiz-framework's branch refs/heads/trunk from Jacques Le Roux
[
https://gitbox.apache.org/repos/asf?p=ofbiz-framework.git;h=72d3dd1 ]
Fixed: Make ruleName field in PriceForms.xml#AddPriceRules safe (OFBIZ-12098)
I noticed an issue due to entity-auto. Unlike with a standard service you can't
protect fields using allow-html="safe" except by overriding fields. So in case
this must be done one by one...
An example is ruleName field in PriceForms.xml#AddPriceRules with
createProductPriceRule and updateProductPriceRule services
This fixes this only case...
Also removes trailing blanks and only that (by IDE setting)
> Make ruleName field in PriceForms.xml#AddPriceRules safe
> --------------------------------------------------------
>
> Key: OFBIZ-12098
> URL:
https://issues.apache.org/jira/browse/OFBIZ-12098> Project: OFBiz
> Issue Type: Sub-task
> Components: product/catalog
> Affects Versions: Trunk
> Reporter: Jacques Le Roux
> Assignee: Jacques Le Roux
> Priority: Major
>
> I noticed an issue due to entity-auto. Unlike with a standard service you can't protect fields using allow-html="safe" except by overriding fields. So in case this must be done one by one...
> An example is ruleName field in PriceForms.xml#AddPriceRules with createProductPriceRule and updateProductPriceRule services
> See
https://markmail.org/message/osdv2bfpyjuu4tol--
This message was sent by Atlassian Jira
(v8.3.4#803005)