This is version . It is not the current version, and thus it cannot be edited.
[Back to current version]   [Restore this version]
TitleCode signing is unnecessary
Date25-Feb-2006 01:04:17 EET
Bug criticalityLightBug
Browser version
Bug statusOpenBug
PageProvider used
Servlet ContainerTomcat 5.5
Operating SystemWin32, Linux
Java version5.0

JSPWiki uses jspwiki.policy entries like ({) grant signedBy "jspwiki" principal com.ecyrd.jspwiki.auth.authorize.Role "Asserted" (})

The signedBy is unnecessary, it suffices to grant to principals.

I deleted all signedBy "jspwiki", the security code still works. I tested Sun JDK 5.0 with XP and Linux.

The signing makes development unnecessaryly difficult.

Add new attachment

Only authorized users are allowed to upload new attachments.
« This particular version was published on 27-Feb-2006 07:28 by