December 2013 - richfaces-issues - Jboss List Archives

[JBoss JIRA] (RF-13298) Richfaces BOM manages a non Maven Central dependency

by Brian Leathem (JIRA)

[ https://issues.jboss.org/browse/RF-13298?page=com.atlassian.jira.plugin.s... ] Brian Leathem updated RF-13298: ------------------------------- Original Estimate: 30 minutes Remaining Estimate: 30 minutes > Richfaces BOM manages a non Maven Central dependency > ---------------------------------------------------- > > Key: RF-13298 > URL: https://issues.jboss.org/browse/RF-13298 > Project: RichFaces > Issue Type: Bug > Security Level: Public(Everyone can see) > Components: build/distribution > Affects Versions: 4.3.2, 4.3.3, 4.3.4 > Reporter: Rafael Benevides > Fix For: 4.3.5 > > Original Estimate: 30 minutes > Remaining Estimate: 30 minutes > > Richfaces BOMs http://repo1.maven.org/maven2/org/richfaces/richfaces-bom/4.3.4.Final/ric... manages the following GAV: > org.richfaces.ui.common:richfaces-ui-common-api:${version.richfaces} which is not present on Maven Central ( http://search.maven.org/#search%7Cga%7C1%7Crichfaces-ui-common-api ) > BOM should have this scope changed or declare a https://repository.jboss.org/nexus repository -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira

11 years, 2 months

1
0
0 / 0

[JBoss JIRA] (RF-13358) rich:panelMenuGroup allowing actions executions even if originally disabled

by Brian Leathem (JIRA)

[ https://issues.jboss.org/browse/RF-13358?page=com.atlassian.jira.plugin.s... ] Brian Leathem updated RF-13358: ------------------------------- Original Estimate: 1 hour (was: 30 minutes) Remaining Estimate: 1 hour (was: 30 minutes) > rich:panelMenuGroup allowing actions executions even if originally disabled > --------------------------------------------------------------------------- > > Key: RF-13358 > URL: https://issues.jboss.org/browse/RF-13358 > Project: RichFaces > Issue Type: Bug > Security Level: Public(Everyone can see) > Components: component-menu > Affects Versions: 4.3.4 > Environment: Linux, AS 7.1.1 Brontes, FF 25 with FireBug addOn > Reporter: Pavel Slegr > Assignee: Pavel Slegr > Priority: Critical > Fix For: 4.3.5 > > Original Estimate: 1 hour > Remaining Estimate: 1 hour > > related to https://issues.jboss.org/browse/RF-12813 > This can be possibly a security hole, as the second component piece is discovered to allow tampering actions through JS. > I suggest to try out on other components as well !!! > with following example > {code} > { > <rich:panelMenuGroup id="group4" label="Group 4" expanded="false"> > <rich:panelMenuItem id="item41" label="Item 4.1" /> > <rich:panelMenuItem id="item42" label="Item 4.2" disabled="true" /> > <rich:panelMenuGroup id="group43" label="Group 4.1" disabled="true"> > <rich:panelMenuItem id="item431" label="Item 4.1.1" /> > </rich:panelMenuGroup> > </rich:panelMenuGroup> > } > {code} > the group43 element is intended to be disabled and thus not allowing any actions execution on it > Once tampered with > {code} > { > new RichFaces.ui.PanelMenuGroup("f:group43",{"collapseEvent":"click","unselectable":false,"selectable":false,"name":"group43","ajax":{"incId":"1"} ,"stylePrefix":"rf\u002Dpm\u002Dgr","expanded":false,"expandEvent":"click","disabled":false,"mode":"client"} ) > } > {code} > It is possible to expand the group and execute further actions on its children elements -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira

11 years, 2 months

1
0
0 / 0

[JBoss JIRA] (RF-13317) ExtendedPartialViewContextImpl should specify correct javax.faces.ViewState id in startUpdate()

by Brian Leathem (JIRA)

[ https://issues.jboss.org/browse/RF-13317?page=com.atlassian.jira.plugin.s... ] Brian Leathem updated RF-13317: ------------------------------- Fix Version/s: (was: 4.3.5) > ExtendedPartialViewContextImpl should specify correct javax.faces.ViewState id in startUpdate() > ----------------------------------------------------------------------------------------------- > > Key: RF-13317 > URL: https://issues.jboss.org/browse/RF-13317 > Project: RichFaces > Issue Type: Bug > Security Level: Public(Everyone can see) > Affects Versions: 4.3.4 > Environment: Wildfly-8.0.0.Beta1, jsf-impl-2.2.3-jbossorg-1 > Reporter: Matti Bickel > Assignee: Lukáš Fryč > Priority: Critical > Labels: jsf22 > Fix For: 5.0.0.Alpha3 > > > I'm using several {{<rich:autocomplete>}} fields in a {{<h:form>}}, but have noticed the issue with several other AJAX requests: > When the response comes back, the data is fine but I get a JSF error saying > bq. During update: javax.faces.ViewState not found > Following that, no componentData is available to the Autocomplete component and no suggestions get displayed. > For reference the [javadoc for ResponseStateManager.VIEW_STATE_PARAM|https://javaserverfaces.java.net/no...] says: > {quote} > Implementations must use this constant field value as the name of the client parameter in which to save the state between requests. The id attribute must be a concatenation of the return from UIComponent.getContainerClientId(javax.faces.context.FacesContext), the return from UINamingContainer.getSeparatorChar(javax.faces.context.FacesContext), this constant field value, the separator char, and a number that is guaranteed to be unique with respect to all the other instances of this kind of client parameter in the view. > {quote} -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira

11 years, 2 months

1
0
0 / 0

[JBoss JIRA] (RF-13440) Photoalbum - fix packing of resources

by Brian Leathem (JIRA)

[ https://issues.jboss.org/browse/RF-13440?page=com.atlassian.jira.plugin.s... ] Brian Leathem commented on RF-13440: ------------------------------------ {quote} (It's @michpetrov) {quote} lol - thanks! {quote} I'm working on RF4, I was just comparing the two versions after merge and found this. {quote} +1 - just making sure. > Photoalbum - fix packing of resources > ------------------------------------- > > Key: RF-13440 > URL: https://issues.jboss.org/browse/RF-13440 > Project: RichFaces > Issue Type: Bug > Security Level: Public(Everyone can see) > Affects Versions: 5.0.0.Alpha1 > Reporter: Michal Petrov > > The resource plugin configuration needs to be updated to work with the changes done to RF 5 resources. -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira

11 years, 2 months

1
0
0 / 0

[JBoss JIRA] (RF-13440) Photoalbum - fix packing of resources

by Michal Petrov (JIRA)

[ https://issues.jboss.org/browse/RF-13440?page=com.atlassian.jira.plugin.s... ] Michal Petrov commented on RF-13440: ------------------------------------ (It's @michpetrov) I'm working on RF4, I was just comparing the two versions after merge and found this. > Photoalbum - fix packing of resources > ------------------------------------- > > Key: RF-13440 > URL: https://issues.jboss.org/browse/RF-13440 > Project: RichFaces > Issue Type: Bug > Security Level: Public(Everyone can see) > Affects Versions: 5.0.0.Alpha1 > Reporter: Michal Petrov > > The resource plugin configuration needs to be updated to work with the changes done to RF 5 resources. -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira

11 years, 2 months

1
0
0 / 0

[JBoss JIRA] (RF-13439) Photoalbum - update help section

by Michal Petrov (JIRA)

[ https://issues.jboss.org/browse/RF-13439?page=com.atlassian.jira.plugin.s... ] Michal Petrov commented on RF-13439: ------------------------------------ There are some images missing, like [here|https://github.com/richfaces4/dev-examples/blob/master/photoalbum/sr...]. But I've looked at the RF3 demo and the image isn't there either so I don't really know where it was supposed to come from. > Photoalbum - update help section > -------------------------------- > > Key: RF-13439 > URL: https://issues.jboss.org/browse/RF-13439 > Project: RichFaces > Issue Type: Enhancement > Security Level: Public(Everyone can see) > Affects Versions: 4.3.4 > Reporter: Michal Petrov > Assignee: Michal Petrov > Fix For: 4.3.5 > > > * The help stylesheets link to docbook resources that were removed from RF. > * The help popups need updating > ** The code and the pictures may not display the current state of the app > ** New popups for the social integration should probably be added. -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira

11 years, 2 months

1
0
0 / 0

[JBoss JIRA] (RF-13440) Photoalbum - fix packing of resources

by Brian Leathem (JIRA)

[ https://issues.jboss.org/browse/RF-13440?page=com.atlassian.jira.plugin.s... ] Brian Leathem commented on RF-13440: ------------------------------------ Thanks for reporting this [~mpetrov]. Just to make sure we are on the same page: let's hold off on the RF 5 photoalbum fixes for now and focus on the RF 4 version. > Photoalbum - fix packing of resources > ------------------------------------- > > Key: RF-13440 > URL: https://issues.jboss.org/browse/RF-13440 > Project: RichFaces > Issue Type: Bug > Security Level: Public(Everyone can see) > Affects Versions: 5.0.0.Alpha1 > Reporter: Michal Petrov > > The resource plugin configuration needs to be updated to work with the changes done to RF 5 resources. -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira

11 years, 2 months

1
0
0 / 0

[JBoss JIRA] (RF-13439) Photoalbum - update help section

by Brian Leathem (JIRA)

[ https://issues.jboss.org/browse/RF-13439?page=com.atlassian.jira.plugin.s... ] Brian Leathem commented on RF-13439: ------------------------------------ {quote} The help stylesheets link to docbook resources that were removed from RF {quote} What's the consequence of this? Are we missing content, or just images? As we resolve this, we should have the goal of making the photoalbum examples self-contained. > Photoalbum - update help section > -------------------------------- > > Key: RF-13439 > URL: https://issues.jboss.org/browse/RF-13439 > Project: RichFaces > Issue Type: Enhancement > Security Level: Public(Everyone can see) > Affects Versions: 4.3.4 > Reporter: Michal Petrov > Assignee: Michal Petrov > Fix For: 4.3.5 > > > * The help stylesheets link to docbook resources that were removed from RF. > * The help popups need updating > ** The code and the pictures may not display the current state of the app > ** New popups for the social integration should probably be added. -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira

11 years, 2 months

1
0
0 / 0

[JBoss JIRA] (RF-13440) Photoalbum - fix packing of resources

by Michal Petrov (JIRA)

Michal Petrov created RF-13440: ---------------------------------- Summary: Photoalbum - fix packing of resources Key: RF-13440 URL: https://issues.jboss.org/browse/RF-13440 Project: RichFaces Issue Type: Bug Security Level: Public (Everyone can see) Affects Versions: 5.0.0.Alpha1 Reporter: Michal Petrov The resource plugin configuration needs to be updated to work with the changes done to RF 5 resources. -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira

11 years, 2 months

1
0
0 / 0

[JBoss JIRA] (RF-13439) Photoalbum - update help section

by Michal Petrov (JIRA)

Michal Petrov created RF-13439: ---------------------------------- Summary: Photoalbum - update help section Key: RF-13439 URL: https://issues.jboss.org/browse/RF-13439 Project: RichFaces Issue Type: Enhancement Security Level: Public (Everyone can see) Affects Versions: 4.3.4 Reporter: Michal Petrov Assignee: Michal Petrov * The help stylesheets link to docbook resources that were removed from RF. * The help popups need updating ** The code and the pictures may not display the current state of the app ** New popups for the social integration should probably be added. -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira

11 years, 2 months

1
0
0 / 0

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

richfaces-issues December 2013