Author: markt
Date: Thu Mar 3 11:16:51 2011
New Revision: 1076586
URL: http://svn.apache.org/viewvc?rev=1076586&view=rev
Log:
[SECURITY]
Start of fix for issue reported on users list that @ServletSecurity annotations
were ignored.
This fix is not yet complete. This first part:
- Triggers the loa
Author: markt
Date: Thu Mar 3 11:24:35 2011
New Revision: 1076587
URL: http://svn.apache.org/viewvc?rev=1076587&view=rev
Log:
Fix typo
Modified:
tomcat/trunk/java/org/apache/catalina/authenticator/AuthenticatorBase.java
Modified:
tomcat/trunk/java/org/apache/catalina/authenticator/Authenti
Author: markt
Date: Thu Mar 3 11:31:56 2011
New Revision: 1076589
URL: http://svn.apache.org/viewvc?rev=1076589&view=rev
Log:
@ServletSecurity support
Add tests for subclasses
Modified:
tomcat/trunk/test/org/apache/catalina/core/TestStandardWrapper.java
Modified: tomcat/trunk/test/org/apach
https://issues.apache.org/bugzilla/show_bug.cgi?id=50860
Summary: In case of invalid or empty slqQuery connection are
always invalidated without usefull information
Product: Tomcat Modules
Version: unspecified
Platform: All
OS/
https://issues.apache.org/bugzilla/show_bug.cgi?id=43497
Mark Thomas changed:
What|Removed |Added
Status|NEW |RESOLVED
Resolution|
https://issues.apache.org/bugzilla/show_bug.cgi?id=43497
--- Comment #6 from Nacho Coloma 2011-03-03 07:46:15 EST ---
I disagree. 99% of the XSS injection cases are described in the mentioned link
as RULE #1: escape HTML. Even worse, 99% of these cases could be implemented by
simply escaping < or
Author: markt
Date: Thu Mar 3 12:56:07 2011
New Revision: 1076606
URL: http://svn.apache.org/viewvc?rev=1076606&view=rev
Log:
@ServletSecurity
Refactor to reduce duplication in test code
Add tests for method constraints
Modified:
tomcat/trunk/test/org/apache/catalina/core/TestStandardWrapper
On 17.02.2011 11:58, Mark Thomas wrote:
Given this, I am leaning even more towards just fixing the original
issue that the connection is not dropped when the request exceeds the
upload limit and leaving the rest of the behaviour unchanged.
Getting back to this (and sorry for the pause): What's
https://issues.apache.org/bugzilla/show_bug.cgi?id=50863
Summary: Memory usage increase after JSP compilation
Product: Tomcat 6
Version: 6.0.32
Platform: PC
Status: NEW
Severity: normal
Priority: P2
Component: Jasp
Thanks, I will get this taken care of, and reroll.
Filip
On 3/2/2011 8:21 PM, sebb wrote:
On 2 March 2011 22:09, Filip Hanik - Dev Lists wrote:
Source and Binary Packages
http://people.apache.org/~fhanik/jdbc-pool/v1.1.0.0/
tomcat-juli.jar has NOTICE and LICENSE files, but none of the pool j
https://issues.apache.org/bugzilla/show_bug.cgi?id=50864
Summary: Reconfigure pool on the fly using JMX
Product: Tomcat Modules
Version: unspecified
Platform: PC
Status: NEW
Severity: normal
Priority: P2
Component:
I'll cancel this vote, get all the NOTICE and LICENSE files correct, as well as
the tag matching the jars.
best
Filip
On 3/2/2011 3:09 PM, Filip Hanik - Dev Lists wrote:
Source and Binary Packages
http://people.apache.org/~fhanik/jdbc-pool/v1.1.0.0/
Tag
http://svn.apache.org/repos/asf/tomcat/t
https://issues.apache.org/bugzilla/show_bug.cgi?id=50863
Mark Thomas changed:
What|Removed |Added
Status|NEW |RESOLVED
Resolution|
Author: markt
Date: Thu Mar 3 19:13:52 2011
New Revision: 1076731
URL: http://svn.apache.org/viewvc?rev=1076731&view=rev
Log:
Test that individual roles are correctly handled
Modified:
tomcat/trunk/test/org/apache/catalina/core/TestStandardWrapper.java
tomcat/trunk/test/org/apache/catali
Author: fhanik
Date: Thu Mar 3 19:20:38 2011
New Revision: 1076736
URL: http://svn.apache.org/viewvc?rev=1076736&view=rev
Log:
Add missing files and license header
Add NOTICE/LICENSE to all JAR files
Added:
tomcat/trunk/modules/jdbc-pool/test/org/apache/tomcat/jdbc/test/Bug50571.java
Modifi
Author: fhanik
Date: Thu Mar 3 19:22:19 2011
New Revision: 1076740
URL: http://svn.apache.org/viewvc?rev=1076740&view=rev
Log:
New tag with same code as 1.1.0.0 but corrected license files and added missing
test
Added:
tomcat/tags/JDBC_POOL_1_1_0_1/ (props changed)
- copied from r10
Source and Binary Packages
http://people.apache.org/~fhanik/jdbc-pool/v1.1.0.1/
Tag
http://svn.apache.org/repos/asf/tomcat/tags/JDBC_POOL_1_1_0_1/
Documentation
http://people.apache.org/~fhanik/jdbc-pool/jdbc-pool.html
The proposed 1.1.0.1 release is:
[ ] Broken - do not release
[ ] Alpha - g
2011/3/3 :
> Author: fhanik
> Date: Thu Mar 3 19:20:38 2011
> New Revision: 1076736
>
> URL: http://svn.apache.org/viewvc?rev=1076736&view=rev
> Log:
> Add missing files and license header
> Add NOTICE/LICENSE to all JAR files
>
> Added:
>
> tomcat/trunk/modules/jdbc-pool/test/org/apache/tomc
On 3 March 2011 19:24, Filip Hanik - Dev Lists wrote:
> Source and Binary Packages
> http://people.apache.org/~fhanik/jdbc-pool/v1.1.0.1/
>
> Tag
> http://svn.apache.org/repos/asf/tomcat/tags/JDBC_POOL_1_1_0_1/
>
> Documentation
> http://people.apache.org/~fhanik/jdbc-pool/jdbc-pool.html
Top of t
Where do we stand with publishing Tomcat jars/artifacts to a Maven repository.
I see that the mvn-pub.xml has been updated, but I don't see where the source
JARs are generated from.
best
Filip
-
To unsubscribe, e-mail: dev-un
On 3/3/2011 1:25 PM, Konstantin Kolinko wrote:
2011/3/3:
Author: fhanik
Date: Thu Mar 3 19:20:38 2011
New Revision: 1076736
URL: http://svn.apache.org/viewvc?rev=1076736&view=rev
Log:
Add missing files and license header
Add NOTICE/LICENSE to all JAR files
Added:
tomcat/trunk/modules/jdb
2011/3/4 Filip Hanik - Dev Lists :
> Where do we stand with publishing Tomcat jars/artifacts to a Maven
> repository.
> I see that the mvn-pub.xml has been updated, but I don't see where the
> source JARs are generated from.
Are you talking about Tomcat 7?
res/maven/mvn.properties.default has:
#
On 3/3/2011 5:25 PM, Konstantin Kolinko wrote:
2011/3/4 Filip Hanik - Dev Lists:
Where do we stand with publishing Tomcat jars/artifacts to a Maven
repository.
I see that the mvn-pub.xml has been updated, but I don't see where the
source JARs are generated from.
Are you talking about Tomcat 7?
23 matches
Mail list logo
