[
https://issues.apache.org/jira/browse/MYFACES-3454?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13293896#comment-13293896
]
Mike Kienenberger commented on MYFACES-3454:
--------------------------------------------
Note that enabling "org.apache.myfaces.STRICT_JSF_2_ALLOW_SLASH_LIBRARY_NAME"
may expose you to a security hole:
http://mail-archives.apache.org/mod_mbox/www-announce/201202.mbox/%[email protected]%3E
> composite component is not rendered anymore with 2.1.6-SNAPSHOT
> ---------------------------------------------------------------
>
> Key: MYFACES-3454
> URL: https://issues.apache.org/jira/browse/MYFACES-3454
> Project: MyFaces Core
> Issue Type: Bug
> Affects Versions: 2.1.6-SNAPSHOT
> Reporter: Rene O
> Assignee: Leonardo Uribe
> Priority: Blocker
> Fix For: 2.0.12, 2.1.6
>
> Attachments: jsftest.war
>
>
> If you use myfaces 2.1.6-SNAPSHOT, a composite component is not rendered
> correctly anymore. With myfaces-2.1.5 everything is ok.
> A testcase to reproduce this issue is attached.
> http://localhost:8080/jsftest/componenttest.jsf
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
