Skip navigation links
  • Overview
  • Package
  • Class
  • Use
  • Tree
  • Deprecated
  • Index
  • Help

Deprecated API

Contents

  • Terminally Deprecated
  • Interfaces
  • Classes
  • Fields
  • Methods
  • Terminally Deprecated Elements
    Element
    Description
    org.apache.struts2.components.UIBean.getTooltipConfig(UIBean)
    org.apache.struts2.components.UIBean.setJavascriptTooltip(String)
    org.apache.struts2.components.UIBean.setTooltip(String)
    org.apache.struts2.components.UIBean.setTooltipConfig(String)
    org.apache.struts2.components.UIBean.setTooltipCssClass(String)
    org.apache.struts2.components.UIBean.setTooltipDelay(String)
    org.apache.struts2.components.UIBean.setTooltipIconPath(String)
    org.apache.struts2.interceptor.I18nInterceptor.AcceptLanguageLocaleHandler
    Since 7.2.0, use AcceptLanguageLocaleHandler. Scheduled for removal in the next release cycle.
    org.apache.struts2.interceptor.I18nInterceptor.CookieLocaleHandler
    Since 7.2.0, use CookieLocaleHandler. Scheduled for removal in the next release cycle.
    org.apache.struts2.interceptor.I18nInterceptor.LocaleHandler
    org.apache.struts2.interceptor.I18nInterceptor.LocaleHandlerAdapter
    Since 7.2.0, use the top-level handler classes in org.apache.struts2.interceptor.i18n. Scheduled for removal in the next release cycle.
    org.apache.struts2.interceptor.I18nInterceptor.RequestLocaleHandler
    Since 7.2.0, use RequestLocaleHandler. Scheduled for removal in the next release cycle.
    org.apache.struts2.interceptor.I18nInterceptor.SessionLocaleHandler
    Since 7.2.0, use SessionLocaleHandler. Scheduled for removal in the next release cycle.
    org.apache.struts2.json.JSONUtil.deserialize(Reader)
    Use instance method JSONUtil.deserializeInput(Reader, int) with injected JSONUtil instead
    org.apache.struts2.json.JSONUtil.deserialize(String)
    Use instance method JSONUtil.deserializeInput(Reader, int) with injected JSONUtil instead
    org.apache.struts2.ognl.OgnlReflectionContextFactory
    since 6.8.0, to be removed, see ReflectionContextFactory
    org.apache.struts2.rest.handler.XStreamHandler
    since 7.2.0, scheduled for removal in a future major version. XStream has a long history of deserialization vulnerabilities and requires per-class allowlist maintenance. The default xml binding in struts-plugin.xml uses JacksonXmlHandler, which respects @StrutsParameter authorization via the AuthorizationAwareContentTypeHandler mechanism. Users who have explicitly overridden the xml handler to XStreamHandler should migrate to JacksonXmlHandler.
    org.apache.struts2.result.xslt.StringAdapter.getParseStringAsXML()
    This feature has been removed for security reasons (potential XML Entity Expansion attacks). This method now always returns false and will be removed in a future version.
    org.apache.struts2.result.xslt.StringAdapter.setParseStringAsXML(boolean)
    This feature has been removed for security reasons (potential XML Entity Expansion attacks). This method is now a no-op and will be removed in a future version.
    org.apache.struts2.util.reflection.ReflectionContextFactory
    since 6.8.0, avoid using this interface and any of its implementation, it's going to be removed soon
    org.apache.struts2.views.jsp.ui.AbstractUITag.setJavascriptTooltip(String)
    org.apache.struts2.views.jsp.ui.AbstractUITag.setTooltip(String)
    org.apache.struts2.views.jsp.ui.AbstractUITag.setTooltipConfig(String)
    org.apache.struts2.views.jsp.ui.AbstractUITag.setTooltipCssClass(String)
    org.apache.struts2.views.jsp.ui.AbstractUITag.setTooltipDelay(String)
    org.apache.struts2.views.jsp.ui.AbstractUITag.setTooltipIconPath(String)
  • Deprecated Interfaces
    Interface
    Description
    org.apache.struts2.interceptor.I18nInterceptor.LocaleHandler
    org.apache.struts2.util.reflection.ReflectionContextFactory
    since 6.8.0, avoid using this interface and any of its implementation, it's going to be removed soon
  • Deprecated Classes
    Class
    Description
    org.apache.struts2.interceptor.I18nInterceptor.AcceptLanguageLocaleHandler
    Since 7.2.0, use AcceptLanguageLocaleHandler. Scheduled for removal in the next release cycle.
    org.apache.struts2.interceptor.I18nInterceptor.CookieLocaleHandler
    Since 7.2.0, use CookieLocaleHandler. Scheduled for removal in the next release cycle.
    org.apache.struts2.interceptor.I18nInterceptor.LocaleHandlerAdapter
    Since 7.2.0, use the top-level handler classes in org.apache.struts2.interceptor.i18n. Scheduled for removal in the next release cycle.
    org.apache.struts2.interceptor.I18nInterceptor.RequestLocaleHandler
    Since 7.2.0, use RequestLocaleHandler. Scheduled for removal in the next release cycle.
    org.apache.struts2.interceptor.I18nInterceptor.SessionLocaleHandler
    Since 7.2.0, use SessionLocaleHandler. Scheduled for removal in the next release cycle.
    org.apache.struts2.ognl.OgnlReflectionContextFactory
    since 6.8.0, to be removed, see ReflectionContextFactory
    org.apache.struts2.rest.handler.XStreamHandler
    since 7.2.0, scheduled for removal in a future major version. XStream has a long history of deserialization vulnerabilities and requires per-class allowlist maintenance. The default xml binding in struts-plugin.xml uses JacksonXmlHandler, which respects @StrutsParameter authorization via the AuthorizationAwareContentTypeHandler mechanism. Users who have explicitly overridden the xml handler to XStreamHandler should migrate to JacksonXmlHandler.
    org.apache.struts2.util.ProxyUtil
    since 7.2, inject ProxyService instead. This class will be removed in a future version.
  • Deprecated Fields
    Field
    Description
    org.apache.struts2.StrutsConstants.STRUTS_OBJECTFACTORY_SPRING_ENABLE_AOP_SUPPORT
  • Deprecated Methods
    Method
    Description
    org.apache.struts2.components.UIBean.getTooltipConfig(UIBean)
    org.apache.struts2.components.UIBean.setJavascriptTooltip(String)
    org.apache.struts2.components.UIBean.setTooltip(String)
    org.apache.struts2.components.UIBean.setTooltipConfig(String)
    org.apache.struts2.components.UIBean.setTooltipCssClass(String)
    org.apache.struts2.components.UIBean.setTooltipDelay(String)
    org.apache.struts2.components.UIBean.setTooltipIconPath(String)
    org.apache.struts2.interceptor.CookieInterceptor.populateCookieValueIntoStack(String, String, Map<String, String>, ValueStack)
    since 7.2.0. Override CookieInterceptor.populateCookieValueIntoStack(String, String, Map, ValueStack, Object) instead so cookie writes are authorized by ParameterAuthorizer. The default 5-arg implementation calls this method after the authorization gate, so existing overrides continue to receive only authorized cookies.
    org.apache.struts2.json.JSONUtil.deserialize(Reader)
    Use instance method JSONUtil.deserializeInput(Reader, int) with injected JSONUtil instead
    org.apache.struts2.json.JSONUtil.deserialize(String)
    Use instance method JSONUtil.deserializeInput(Reader, int) with injected JSONUtil instead
    org.apache.struts2.result.xslt.StringAdapter.getParseStringAsXML()
    This feature has been removed for security reasons (potential XML Entity Expansion attacks). This method now always returns false and will be removed in a future version.
    org.apache.struts2.result.xslt.StringAdapter.setParseStringAsXML(boolean)
    This feature has been removed for security reasons (potential XML Entity Expansion attacks). This method is now a no-op and will be removed in a future version.
    org.apache.struts2.util.ProxyService.resolveTargetMember(Member, Object)
    since 7.1, use ProxyService.resolveTargetMember(Member, Class) instead.
    org.apache.struts2.util.ProxyUtil.getHibernateProxyTarget(Object)
    since 7.2, inject ProxyService instead
    org.apache.struts2.util.ProxyUtil.isHibernateProxy(Object)
    since 7.2, inject ProxyService instead
    org.apache.struts2.util.ProxyUtil.isHibernateProxyMember(Member)
    since 7.2, inject ProxyService instead
    org.apache.struts2.util.ProxyUtil.isProxy(Object)
    since 7.2, inject ProxyService instead
    org.apache.struts2.util.ProxyUtil.isProxyMember(Member, Object)
    since 7.2, inject ProxyService instead
    org.apache.struts2.util.ProxyUtil.resolveTargetMember(Member, Object)
    since 7.1, use ProxyUtil.resolveTargetMember(Member, Class) instead. Since 7.2, inject ProxyService instead.
    org.apache.struts2.util.ProxyUtil.ultimateTargetClass(Object)
    since 7.2, inject ProxyService instead
    org.apache.struts2.util.StrutsProxyService.resolveTargetMember(Member, Object)
    org.apache.struts2.views.jsp.ui.AbstractUITag.setJavascriptTooltip(String)
    org.apache.struts2.views.jsp.ui.AbstractUITag.setTooltip(String)
    org.apache.struts2.views.jsp.ui.AbstractUITag.setTooltipConfig(String)
    org.apache.struts2.views.jsp.ui.AbstractUITag.setTooltipCssClass(String)
    org.apache.struts2.views.jsp.ui.AbstractUITag.setTooltipDelay(String)
    org.apache.struts2.views.jsp.ui.AbstractUITag.setTooltipIconPath(String)

Copyright © 2000–2026 Apache Software Foundation. All rights reserved.