You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@cxf.apache.org by "Akitoshi Yoshida (JIRA)" <ji...@apache.org> on 2016/02/03 19:09:39 UTC

[jira] [Commented] (CXF-6766) Option to disable XMLConstants.FEATURE_SECURE_PROCESSING in XSLTJaxbProvider

    [ https://issues.apache.org/jira/browse/CXF-6766?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15130789#comment-15130789 ] 

Akitoshi Yoshida commented on CXF-6766:
---------------------------------------

Hi Sergey,
shouldn't this be done in a consistent manner in all the parser usages in cxf, maybe then using a combination of a system property and a bus property?
regards, aki

> Option to disable XMLConstants.FEATURE_SECURE_PROCESSING in XSLTJaxbProvider
> ----------------------------------------------------------------------------
>
>                 Key: CXF-6766
>                 URL: https://issues.apache.org/jira/browse/CXF-6766
>             Project: CXF
>          Issue Type: Improvement
>          Components: JAX-RS
>    Affects Versions: 3.1.4
>            Reporter: Vjacheslav Borisov
>            Assignee: Sergey Beryozkin
>            Priority: Trivial
>             Fix For: 3.1.5, 3.0.8, 3.2.0
>
>         Attachments: XSLTJaxbProvider.java.patch
>
>
> XSLTJaxbProvider configures  
> factory.setFeature(XMLConstants.FEATURE_SECURE_PROCESSING, Boolean.TRUE);
> We need option to disable this feature in some projects, e.g. to call xslt extension.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)