This forum is now a read-only archive. All commenting, posting, registration services have been turned off. Those needing community support and/or wanting to ask questions should refer to the Tag/Forum map, and to http://spring.io/questions for a curated list of stackoverflow tags that Pivotal engineers, and the community, monitor.
No announcement yet.
Spring MVC resolution fro HTML tampering?Page Title Module
Thank you all for your answers, but there is one more problem about allowedFields property in DataBinder. Specifically, one can't react in controller if non allowed fields are submitted. All you can do is to look at warning log entry produced by DataBinder. There really should be an option to remember not allowed fields so that you can implement some logic (like session invalidation or/and logout) in controller in case when not allowed fields are submitted.
I raised JIRA issue about that so you can vote for it.