Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Disable deserialization by default #3200

Closed
Tracked by #3158
tomas-langer opened this issue Jul 19, 2021 · 1 comment · Fixed by #4334
Closed
Tracked by #3158

Disable deserialization by default #3200

tomas-langer opened this issue Jul 19, 2021 · 1 comment · Fixed by #4334
Assignees
@tomas-langer
Labels
must-have P3 security
Milestone
3.0.0

Comments

@tomas-langer
Copy link
Member

No description provided.

@tomas-langer tomas-langer mentioned this issue Jul 19, 2021
Closed
4 tasks
@tomas-langer tomas-langer added this to the 3.0.0 milestone Jul 19, 2021
@tomas-langer
Copy link
Member Author

The default action on missing config should be CONFIGURE instead of WARN.
The default action on wrong config should be FAIL instead of WARN

See if we can support CONFIGURE action for wrong config through JEP-415 https://openjdk.java.net/jeps/415

tomas-langer added a commit to tomas-langer/helidon that referenced this issue Jul 19, 2021
@tomas-langer
Removed TODOs (created follow up issue helidon-io#3200)
ce903ef 
Signed-off-by: Tomas Langer <tomas.langer@oracle.com>
@tomas-langer tomas-langer mentioned this issue Jul 19, 2021
Merged
@tomas-langer tomas-langer changed the title Disable deserialization by default (this will be moved to a 3.0.0) Disable deserialization by default Jul 19, 2021
@tomas-langer tomas-langer self-assigned this Dec 14, 2021
@tomas-langer tomas-langer mentioned this issue Jun 3, 2022
Merged
@ljnelson ljnelson mentioned this issue Sep 7, 2022
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@tomas-langer tomas-langer

Labels
must-have P3 security
Projects
Backlog
Archived in project
Milestone
3.0.0
Development

Successfully merging a pull request may close this issue.

Deserialization disabled by default. tomas-langer/helidon
2 participants
@m0mus @tomas-langer