You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@wicket.apache.org by "Martin Grigorov (JIRA)" <ji...@apache.org> on 2014/09/03 17:30:53 UTC

[jira] [Comment Edited] (WICKET-5326) Wicket doesn't encrypt links and Ajax URLs when CryptoMapper is used

    [ https://issues.apache.org/jira/browse/WICKET-5326?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14119962#comment-14119962 ] 

Martin Grigorov edited comment on WICKET-5326 at 9/3/14 3:29 PM:
-----------------------------------------------------------------

[~dantehicks42] could you please explain what exactly is the issue when using KeyInSessionSunJceCryptFactory ?


was (Author: mgrigorov):
[~dantehicks42] could you please provide what exactly is the issue when using KeyInSessionSunJceCryptFactory ?

> Wicket doesn't encrypt links and Ajax URLs when CryptoMapper is used
> --------------------------------------------------------------------
>
>                 Key: WICKET-5326
>                 URL: https://issues.apache.org/jira/browse/WICKET-5326
>             Project: Wicket
>          Issue Type: Bug
>    Affects Versions: 6.10.0
>         Environment: Linux
>            Reporter: Walter B. Rasmann
>            Assignee: Martin Grigorov
>              Labels: security
>         Attachments: 5326.tar.gz
>
>
> URL encryption does not work in Wicket links and Ajax URLs.
> For links the URL appears unencrypted in the href attribute value and is only later forwarded to the encrypted URL using a 302 response.
> I am uploading a quickstart.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)