You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@tapestry.apache.org by "Andy Pahne (JIRA)" <ji...@apache.org> on 2010/08/27 12:17:24 UTC
[jira] Created: (TAP5-1260) Document "Assets", Section "Securing
Assets" is outdated
Document "Assets", Section "Securing Assets" is outdated
--------------------------------------------------------
Key: TAP5-1260
URL: https://issues.apache.org/jira/browse/TAP5-1260
Project: Tapestry 5
Issue Type: Bug
Components: documentation
Affects Versions: 5.2.0
Reporter: Andy Pahne
Priority: Minor
The Tapestry 5.2 documentation about assets is inaccurate, see
http://tapestry.apache.org/tapestry5.2-dev/guide/assets.html
In section "Securing Assets" a code fragment is shown:
public void contributeRegexAuthorizer(final Configuration<String> configuration)
{
String pattern = "([^/.]+/)*[^/.]+\\.((css)|(js)|(jpg)|(jpeg)|(png)|(gif))$";
configuration.add("^org/resources/" + pattern);
}
However, if one adds this method to a tapestry AppModule class, the application won't start. The reason is that the current Tapestry source does not contain a class RegexAuthorizer anymore. It use to, but not anymore.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Closed: (TAP5-1260) Document "Assets", Section "Securing
Assets" is outdated
Posted by "Howard M. Lewis Ship (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/TAP5-1260?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Howard M. Lewis Ship closed TAP5-1260.
--------------------------------------
Assignee: Howard M. Lewis Ship
Fix Version/s: 5.2.1
Resolution: Fixed
Updated on the Conflucence wiki.
> Document "Assets", Section "Securing Assets" is outdated
> --------------------------------------------------------
>
> Key: TAP5-1260
> URL: https://issues.apache.org/jira/browse/TAP5-1260
> Project: Tapestry 5
> Issue Type: Bug
> Components: documentation
> Affects Versions: 5.2.0
> Reporter: Andy Pahne
> Assignee: Howard M. Lewis Ship
> Priority: Minor
> Fix For: 5.2.1
>
>
> The Tapestry 5.2 documentation about assets is inaccurate, see
> http://tapestry.apache.org/tapestry5.2-dev/guide/assets.html
> In section "Securing Assets" a code fragment is shown:
> public void contributeRegexAuthorizer(final Configuration<String> configuration)
> {
> String pattern = "([^/.]+/)*[^/.]+\\.((css)|(js)|(jpg)|(jpeg)|(png)|(gif))$";
> configuration.add("^org/resources/" + pattern);
> }
> However, if one adds this method to a tapestry AppModule class, the application won't start. The reason is that the current Tapestry source does not contain a class RegexAuthorizer anymore. It use to, but not anymore.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Commented: (TAP5-1260) Document "Assets", Section "Securing
Assets" is outdated
Posted by "Howard M. Lewis Ship (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/TAP5-1260?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12906164#action_12906164 ]
Howard M. Lewis Ship commented on TAP5-1260:
--------------------------------------------
Stripped out the old RegexAuthorizer stuff and discussed MD5 checksums for protection.
> Document "Assets", Section "Securing Assets" is outdated
> --------------------------------------------------------
>
> Key: TAP5-1260
> URL: https://issues.apache.org/jira/browse/TAP5-1260
> Project: Tapestry 5
> Issue Type: Bug
> Components: documentation
> Affects Versions: 5.2.0
> Reporter: Andy Pahne
> Assignee: Howard M. Lewis Ship
> Priority: Minor
> Fix For: 5.2.1
>
>
> The Tapestry 5.2 documentation about assets is inaccurate, see
> http://tapestry.apache.org/tapestry5.2-dev/guide/assets.html
> In section "Securing Assets" a code fragment is shown:
> public void contributeRegexAuthorizer(final Configuration<String> configuration)
> {
> String pattern = "([^/.]+/)*[^/.]+\\.((css)|(js)|(jpg)|(jpeg)|(png)|(gif))$";
> configuration.add("^org/resources/" + pattern);
> }
> However, if one adds this method to a tapestry AppModule class, the application won't start. The reason is that the current Tapestry source does not contain a class RegexAuthorizer anymore. It use to, but not anymore.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Commented: (TAP5-1260) Document "Assets", Section "Securing
Assets" is outdated
Posted by "Howard M. Lewis Ship (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/TAP5-1260?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12906164#action_12906164 ]
Howard M. Lewis Ship commented on TAP5-1260:
--------------------------------------------
Stripped out the old RegexAuthorizer stuff and discussed MD5 checksums for protection.
> Document "Assets", Section "Securing Assets" is outdated
> --------------------------------------------------------
>
> Key: TAP5-1260
> URL: https://issues.apache.org/jira/browse/TAP5-1260
> Project: Tapestry 5
> Issue Type: Bug
> Components: documentation
> Affects Versions: 5.2.0
> Reporter: Andy Pahne
> Assignee: Howard M. Lewis Ship
> Priority: Minor
> Fix For: 5.2.1
>
>
> The Tapestry 5.2 documentation about assets is inaccurate, see
> http://tapestry.apache.org/tapestry5.2-dev/guide/assets.html
> In section "Securing Assets" a code fragment is shown:
> public void contributeRegexAuthorizer(final Configuration<String> configuration)
> {
> String pattern = "([^/.]+/)*[^/.]+\\.((css)|(js)|(jpg)|(jpeg)|(png)|(gif))$";
> configuration.add("^org/resources/" + pattern);
> }
> However, if one adds this method to a tapestry AppModule class, the application won't start. The reason is that the current Tapestry source does not contain a class RegexAuthorizer anymore. It use to, but not anymore.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Closed: (TAP5-1260) Document "Assets", Section "Securing
Assets" is outdated
Posted by "Howard M. Lewis Ship (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/TAP5-1260?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Howard M. Lewis Ship closed TAP5-1260.
--------------------------------------
Assignee: Howard M. Lewis Ship
Fix Version/s: 5.2.1
Resolution: Fixed
Updated on the Conflucence wiki.
> Document "Assets", Section "Securing Assets" is outdated
> --------------------------------------------------------
>
> Key: TAP5-1260
> URL: https://issues.apache.org/jira/browse/TAP5-1260
> Project: Tapestry 5
> Issue Type: Bug
> Components: documentation
> Affects Versions: 5.2.0
> Reporter: Andy Pahne
> Assignee: Howard M. Lewis Ship
> Priority: Minor
> Fix For: 5.2.1
>
>
> The Tapestry 5.2 documentation about assets is inaccurate, see
> http://tapestry.apache.org/tapestry5.2-dev/guide/assets.html
> In section "Securing Assets" a code fragment is shown:
> public void contributeRegexAuthorizer(final Configuration<String> configuration)
> {
> String pattern = "([^/.]+/)*[^/.]+\\.((css)|(js)|(jpg)|(jpeg)|(png)|(gif))$";
> configuration.add("^org/resources/" + pattern);
> }
> However, if one adds this method to a tapestry AppModule class, the application won't start. The reason is that the current Tapestry source does not contain a class RegexAuthorizer anymore. It use to, but not anymore.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.