1166720 – [QE] Add information about secure processing in Resteasy to release notes

Bug 1166720 - [QE] Add information about secure processing in Resteasy to release notes

Summary: [QE] Add information about secure processing in Resteasy to release notes

Keywords:
Status:	CLOSED NOTABUG
Alias:	None
Product:	JBoss Enterprise Application Platform 6
Classification:	JBoss
Component:	Documentation
Sub Component:
Version:	6.4.0
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	urgent
Target Milestone:	---
Target Release:	EAP 6.4.0
Assignee:	Russell Dickenson
QA Contact:	Katerina Odabasi
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2014-11-21 14:44 UTC by Katerina Odabasi
Modified:	2015-02-04 01:12 UTC (History)
CC List:	2 users (show)
Fixed In Version:
Clone Of:
Environment:	Build Name: 22702, 6.3.0 Release Notes-6.3-1 Build Date: 07-08-2014 07:34:03 Topic ID: 40915-682007 [Latest]
Last Closed:	2015-02-04 01:12:59 UTC
Type:	Bug
Embargoed:

Attachments	(Terms of Use)

Description Katerina Odabasi 2014-11-21 14:44:28 UTC

Title: Add Chapter about Resteasy default behaviour change

Describe the issue:
1) by default xml documents with DTD are not allowed -> setting resteasy.document.secure.disableDTDs to false in web.xml is needed to allow it.

2) by default secure processing is set to true -> setting resteasy.document.secure.processing.feature to false in web.xml is needed to disable it.

Xerces 2.9.1.redhat-6 included in EAP 6.4.0 doesn't support Max atributtes limit.

This needs to be mentioned in release notes.

Suggestions for improvement:


Additional information:

Note You need to log in before you can comment on or make changes to this bug.