You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@commons.apache.org by bu...@apache.org on 2006/03/08 19:00:50 UTC
DO NOT REPLY [Bug 38896] New: - minlength alert is broken and js function produces warnings under ff1.5
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG�
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=38896>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND�
INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=38896
Summary: minlength alert is broken and js function produces
warnings under ff1.5
Product: Commons
Version: Nightly Builds
Platform: Other
OS/Version: other
Status: NEW
Severity: normal
Priority: P2
Component: Validator
AssignedTo: commons-dev@jakarta.apache.org
ReportedBy: xavan18@hotmail.com
I use the following rule (It can give information to the hackers people).
<field property="password" depends="required,minlength">
<arg key="user.password"/>
<var>
<var-name>minlength</var-name>
<var-value>6</var-value>
</var>
</field>
This configuration produces the following alert :
Password can not be less than {1} characters.
-->Thus is does not replace the {1} by 6.
I receive also a warning in the javascript console of firefox :
Avertissement : reference to undefined property this[varName]
for these two lines :
this.a0 = new Array("password", "Password can not be less than {1} characters.",
new Function ("varName", "this.minlength='6'; return this[varName];"));
this.a1 = new Array("passwordbis", "Password confirmation can not be less
than {1} characters.", new Function ("varName", "this.test='(*this*==password)';
this.minlength='6'; return this[varName];"));
--
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
---------------------------------------------------------------------
To unsubscribe, e-mail: commons-dev-unsubscribe@jakarta.apache.org
For additional commands, e-mail: commons-dev-help@jakarta.apache.org
DO NOT REPLY [Bug 38896] - [validator] minlength alert is broken and js function produces warnings under ff1.5
Posted by bu...@apache.org.
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG�
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=38896>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND�
INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=38896
Sandy@McArthur.org changed:
What |Removed |Added
----------------------------------------------------------------------------
Summary|minlength alert is broken |[validator] minlength alert
|and js function produces |is broken and js function
|warnings under ff1.5 |produces warnings under
| |ff1.5
--
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
---------------------------------------------------------------------
To unsubscribe, e-mail: commons-dev-unsubscribe@jakarta.apache.org
For additional commands, e-mail: commons-dev-help@jakarta.apache.org
DO NOT REPLY [Bug 38896] - [validator] minlength alert is broken and js function produces warnings under ff1.5
Posted by bu...@apache.org.
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG�
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=38896>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND�
INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=38896
niallp@apache.org changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
Resolution| |INVALID
------- Additional Comments From niallp@apache.org 2006-03-09 01:56 -------
Please ask questions on the user list rather than opening a bugzilla ticket.
Even if you believe it to be a bug, asking on the mailing list first is better
for you since it may turn out not be a bug, it may already be fixed or you
could get details on workarounds. Since more people are on the mailing lists,
you're likely to get better help there.
http://jakarta.apache.org/site/mail2.html#Commons
http://struts.apache.org/mail.html
If you have sensitive information that you don't want revealed, such as
password validation - then its probably better to configure your own custom
validator.
The issue you raise regarding argument replacement in your error message is
because you haven't configured validator properly - so this is defintely a user
list question.
On the issue of the warning in FF1.5 - is the warning preventing validation
from working? Whether thats a bug or not, the script you shown is generated by
Struts and therefore isn't a commons validator issue anyway.
So IMO theres nothing here that relates to bugs in Commons Validator - closing
as INVALID.
--
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
---------------------------------------------------------------------
To unsubscribe, e-mail: commons-dev-unsubscribe@jakarta.apache.org
For additional commands, e-mail: commons-dev-help@jakarta.apache.org