You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@ofbiz.apache.org by jl...@apache.org on 2011/02/10 23:40:04 UTC

svn commit: r1069597 - /ofbiz/trunk/applications/accounting/webapp/accounting/WEB-INF/controller.xml

Author: jleroux
Date: Thu Feb 10 22:40:04 2011
New Revision: 1069597

URL: http://svn.apache.org/viewvc?rev=1069597&view=rev
Log:
Fix "Pagination Problem in Accounting Module" reported by Naveen Kumar N at https://issues.apache.org/jira/browse/OFBIZ-4158 - OFBIZ-4158

The getInvoicePaymentInfoListByDueDateOffset service called for the pagination is only reading data (it likes a performFind). So no security issues is to be feared. Hence using <security https="false" in the controller is an acceptable solution. I have tried others keeping security but none worked

Modified:
    ofbiz/trunk/applications/accounting/webapp/accounting/WEB-INF/controller.xml

Modified: ofbiz/trunk/applications/accounting/webapp/accounting/WEB-INF/controller.xml
URL: http://svn.apache.org/viewvc/ofbiz/trunk/applications/accounting/webapp/accounting/WEB-INF/controller.xml?rev=1069597&r1=1069596&r2=1069597&view=diff
==============================================================================
--- ofbiz/trunk/applications/accounting/webapp/accounting/WEB-INF/controller.xml (original)
+++ ofbiz/trunk/applications/accounting/webapp/accounting/WEB-INF/controller.xml Thu Feb 10 22:40:04 2011
@@ -363,7 +363,7 @@ under the License.
         <response name="success" type="view" value="FindSalesInvoicesByDueDate"/>
     </request-map>
     <request-map uri="findSalesInvoicesByDueDate">
-        <security https="true" auth="true"/>
+        <security https="false" auth="true"/>
         <event type="service" invoke="getInvoicePaymentInfoListByDueDateOffset"/>
         <response name="success" type="view" value="FindSalesInvoicesByDueDate"/>
         <response name="error" type="view" value="FindSalesInvoicesByDueDate"/>
@@ -373,7 +373,7 @@ under the License.
         <response name="success" type="view" value="FindPurchaseInvoicesByDueDate"/>
     </request-map>
     <request-map uri="findPurchaseInvoicesByDueDate">
-        <security https="true" auth="true"/>
+        <security https="false" auth="true"/>
         <event type="service" invoke="getInvoicePaymentInfoListByDueDateOffset"/>
         <response name="success" type="view" value="FindPurchaseInvoicesByDueDate"/>
         <response name="error" type="view" value="FindPurchaseInvoicesByDueDate"/>