You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@ofbiz.apache.org by jl...@apache.org on 2011/02/10 23:40:04 UTC
svn commit: r1069597 -
/ofbiz/trunk/applications/accounting/webapp/accounting/WEB-INF/controller.xml
Author: jleroux
Date: Thu Feb 10 22:40:04 2011
New Revision: 1069597
URL: http://svn.apache.org/viewvc?rev=1069597&view=rev
Log:
Fix "Pagination Problem in Accounting Module" reported by Naveen Kumar N at https://issues.apache.org/jira/browse/OFBIZ-4158 - OFBIZ-4158
The getInvoicePaymentInfoListByDueDateOffset service called for the pagination is only reading data (it likes a performFind). So no security issues is to be feared. Hence using <security https="false" in the controller is an acceptable solution. I have tried others keeping security but none worked
Modified:
ofbiz/trunk/applications/accounting/webapp/accounting/WEB-INF/controller.xml
Modified: ofbiz/trunk/applications/accounting/webapp/accounting/WEB-INF/controller.xml
URL: http://svn.apache.org/viewvc/ofbiz/trunk/applications/accounting/webapp/accounting/WEB-INF/controller.xml?rev=1069597&r1=1069596&r2=1069597&view=diff
==============================================================================
--- ofbiz/trunk/applications/accounting/webapp/accounting/WEB-INF/controller.xml (original)
+++ ofbiz/trunk/applications/accounting/webapp/accounting/WEB-INF/controller.xml Thu Feb 10 22:40:04 2011
@@ -363,7 +363,7 @@ under the License.
<response name="success" type="view" value="FindSalesInvoicesByDueDate"/>
</request-map>
<request-map uri="findSalesInvoicesByDueDate">
- <security https="true" auth="true"/>
+ <security https="false" auth="true"/>
<event type="service" invoke="getInvoicePaymentInfoListByDueDateOffset"/>
<response name="success" type="view" value="FindSalesInvoicesByDueDate"/>
<response name="error" type="view" value="FindSalesInvoicesByDueDate"/>
@@ -373,7 +373,7 @@ under the License.
<response name="success" type="view" value="FindPurchaseInvoicesByDueDate"/>
</request-map>
<request-map uri="findPurchaseInvoicesByDueDate">
- <security https="true" auth="true"/>
+ <security https="false" auth="true"/>
<event type="service" invoke="getInvoicePaymentInfoListByDueDateOffset"/>
<response name="success" type="view" value="FindPurchaseInvoicesByDueDate"/>
<response name="error" type="view" value="FindPurchaseInvoicesByDueDate"/>