struts-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Lukasz Lenart (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (WW-4348) Remove access to static methods
Date Tue, 10 Jan 2017 19:39:58 GMT

    [ https://issues.apache.org/jira/browse/WW-4348?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15815957#comment-15815957
] 

Lukasz Lenart commented on WW-4348:
-----------------------------------

[~mwulftange] but this doesn't work since Struts 2.3.20 as the new Internal Security Mechanism
blocks access to particular classes, in this case to {{ClassLoader}}

http://struts.apache.org/docs/security.html#Security-Internalsecuritymechanism

> Remove access to static methods
> -------------------------------
>
>                 Key: WW-4348
>                 URL: https://issues.apache.org/jira/browse/WW-4348
>             Project: Struts 2
>          Issue Type: Improvement
>          Components: Core Actions
>    Affects Versions: 2.3.16.3
>            Reporter: Lukasz Lenart
>            Priority: Critical
>             Fix For: 2.5.x
>
>




--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message