summaryrefslogtreecommitdiffstats
AgeCommit message (Collapse)AuthorFilesLines
2018-02-08Upgrade jackson-databind to fix securityPamela Dragosh1-1/+1
Missed this, I should have earlier upgraded to 2.9.4 Issue-ID: POLICY-507 Change-Id: Ic75cfd2d5a265f4a728e59777eac287a3d0894d1 Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-02-08Merge "Upgrade dependencies to clear security issues"Jorge Hernandez11-39/+72
2018-02-07Upgrade dependencies to clear security issuesPamela Dragosh11-39/+72
A bit of consolidation too - which could use a lot more work. These were simple security upgrades for fixes identified by LF weekly LCM job. Added some missing license headers. Issue-ID: POLICY-507 Change-Id: If285b0f95d30a1084c9363bf6a41b48d52fb3aff Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-02-07Fixed the sonar issues in ONAP-REST.Ankitkumar Patel8-36/+31
Minor Sonar issues are fixed in the ONAP_REST module. The copyright headers of the changed files are also updated. Issue-ID: POLICY-476 Change-Id: I920d8bcdd7b855e3e1660a002fb0e4e8d1674e44 Signed-off-by: Ankitkumar Patel <ankit@research.att.com>
2018-02-07Merge "Implement Encryption on Passwords"Jorge Hernandez3-3/+3
2018-02-07Merge "Adding JUNITs for ONAP-PAP-REST"Pamela Dragosh2-1/+272
2018-02-07Merge "Continue addressing technical debt for ONAP-XACML"Pamela Dragosh15-155/+122
2018-02-06Merge "Implement Encryption on Passwords"Jorge Hernandez3-7/+38
2018-02-06Adding JUNITs for ONAP-PAP-RESTuj426b2-1/+272
Issue-ID: POLICY-338 Change-Id: I123a92872a236b23144c59e87ea2dffc9ee7fc48 Signed-off-by: uj426b <uj426b@att.com>
2018-02-06Continue addressing technical debt for ONAP-XACMLGao, Chenfei (cg287m)15-155/+122
Fix all sonar issues that do not require code refactoring Issue-ID: POLICY-475 Change-Id: Iefa91e0048b7041c96d47bce7ec99034d6fcc427 Signed-off-by: Gao, Chenfei (cg287m) <cgao@research.att.com>
2018-02-06Implement Encryption on Passwordsguangxingwang3-3/+3
Fix Fortify scan issue - hardcoded password in properties file Issue-ID: POLICY-542 Change-Id: Iea7b292c4dccf5f400320cd3f63309e955953f2d Signed-off-by: guangxingwang <gw1218@att.com>
2018-02-06Policy Resiliency Code Fixesrb71478-204/+773
Resolved the issue on updating the configuration files when rename/clone/export/move actions are done through GUI. Fixed the PolicyManagerServlet code. Added test cases for newly added files. Issue-ID: POLICY-609 Change-Id: I9d14f19fe20bbc0e3b3844f85d81f26e34bb26ec Signed-off-by: rb7147 <rb7147@att.com>
2018-02-06Implement Encryption on Passwordsguangxingwang3-7/+38
Fix Fortify scan issue - hardcoded password in properties file Issue-ID: POLICY-542 Change-Id: Icefd4097dc2e20c0ec2b78c002599defb6034267 Signed-off-by: guangxingwang <gw1218@att.com>
2018-02-05Merge "Fix last technical debt"Jorge Hernandez1-1/+1
2018-02-05Merge "Technical debt and fix JUnit test"Jorge Hernandez3-15/+4
2018-02-05Merge "Remove technical debt"Jorge Hernandez4-16/+22
2018-02-05Fix last technical debtPamela Dragosh1-1/+1
Last one that I dare to fix. Issue-ID: POLICY-477 Change-Id: Ieb1c159b781fa2f0dd80f7dea92dcbf72c3e8364 Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-02-05Technical debt and fix JUnit testPamela Dragosh3-15/+4
* One statement per line * private constructor for class with statics * Fix silly JUnit test Issue-ID: POLICY-474 Change-Id: Ie760826879febbbc4db4f03079ae1f847f2194dd Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-02-05Implement Encryption on Passwordsguangxingwang2-0/+384
Fix Fortify scan issue - hardcoded password Issue-ID: POLICY-542 Change-Id: I722b9143fbddc48b67592bb35a44f36ed8b38aad Signed-off-by: guangxingwang <gw1218@att.com>
2018-02-05Remove technical debtPamela Dragosh4-16/+22
* String literals on the left * Unnecessary initialization of variables * Change ArrayList to using List * Remove extra semicolons * Empty Constructor comments * Useless parenthesis I also added a comment on some code that is suspicious. Not comfortable with changing that code. Issue-ID: POLICY-482 Change-Id: I89d889737d398d047fab4b25cb5d962ee1ecdd03 Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-02-02Merge "Technical debt reduction"Jorge Hernandez7-19/+20
2018-02-02Resolved Fortify System Information Leak issuesrb714723-592/+777
Issue-ID: POLICY-550 Change-Id: I2145ecb6de43b69d6faf44c6395b119134a9904f Signed-off-by: rb7147 <rb7147@att.com>
2018-02-02Technical debt reductionPamela Dragosh7-19/+20
* empty constructor * Unnecessary imports * try-with-resources * missing @Override * useless parens * proper boolean detection * useless imports * Use Set vs HashSet * moving statements to separate lines Issue-ID: POLICY-477 Change-Id: I5fae9c5c8e7d30f731a1caefc8a5271cf382e0a0 Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-02-01Resolve LF license header issuePamela Dragosh7-73/+7
These were simple, we just forgot to remove the old license headers. Also needed to add a missed fix for a JUnit test. Not sure how this made it past verify. Issue-ID: POLICY-552 Change-Id: I30610ba4f8440ee16d0a5c372985f50429d60a34 Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-02-01Merge "Included Policy GUI Enhancements and validations"Jorge Hernandez49-737/+1230
2018-02-01Included Policy GUI Enhancements and validationsrb714749-737/+1230
Added hover messages for all policy templates. Resolved few sonar issues. Added fixes for Policy GUI Validations. Issue-ID: POLICY-597 Change-Id: I74abb92dd6ac8722d7869b6a316fad1d8db11d9c Signed-off-by: rb7147 <rb7147@att.com>
2018-02-01Reduce technical debt and add JUnitPamela Dragosh39-439/+921
* Addressed some very simple cyclic complexity * Added simple JUnit tests and finished others * Removed useless assignments Issue-ID: POLICY-477 Change-Id: Ic919bbf78ad2732a430c32f1feb3c88678be710d Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-02-01Merge "Reduce technical debt"Jorge Hernandez3-102/+87
2018-02-01Merge "Continue addressing technical debt for ONAP-XACML"Jorge Hernandez4-7/+5
2018-01-31Continue addressing technical debt for ONAP-XACMLGao, Chenfei (cg287m)4-7/+5
Follow the list of acceptable fixes in POLICY-336 description Issue-ID: POLICY-475 Change-Id: I67f46bb383db1ac4feecb0223df98d180733fc95 Signed-off-by: Gao, Chenfei (cg287m) <cgao@research.att.com>
2018-01-31Fixed the Sonar technical debt.Ankitkumar Patel91-486/+417
Fixed the sonar technical dept primarily for the POLICY-REST module, and accordingly updated the other policy-engine modules for successful built. Issue-ID: POLICY-476 Change-Id: I0e9bd7209a7f9af247fa409a1682683082f92698 Signed-off-by: Ankitkumar Patel <ankit@research.att.com>
2018-01-31Reduce technical debtPamela Dragosh3-102/+87
The last for technical debt I believe. The last try-with-resources I dare to fix. Useless import that I missed last time. Did a couple of minor reductions in cyclomatic complexity that I think are harmless. And lastly introduce a new variable instead of reusing a parameter. Issue-ID: POLICY-482 Change-Id: I5f2e5abbdd472496b48cf12e485fc9b4d903f35a Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-01-31Adding code coverage reduce duplicate linesPamela Dragosh11-126/+236
Removed some duplicate code across some of the classes. For CheckPDP, got the code coverage above 80%. Issue-ID: POLICY-482 Change-Id: I41495cf9f92e8fd248350bf33f5a183c876f38f2 Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-01-31Merge "Fix technical debt and reduce lines"Pamela Dragosh9-94/+83
2018-01-31Merge "Addressing Technical Debt for ONAP-XACML"Pamela Dragosh16-147/+143
2018-01-30Fix technical debt and reduce linesPamela Dragosh9-94/+83
Focused on iterating over entrySet along with more fixes for dead stores, unnecessary exceptions. I'm also starting to work on reducing the number of code lines. * Iterate using entrySet * Remove useless assignments * Unnecessary exceptions * Use StringBuilder instead of StringBuffer due to synchronization * Potential null exceptions being thrown * Returning a empty collection vs null Issue-ID: POLICY-482 Change-Id: If6ac8e812237f37b2b10c534535df4090a5073dd Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-01-29Addressing Technical Debt for ONAP-XACMLGao, Chenfei (cg287m)16-147/+143
Follow the list of acceptable fixes in POLICY-336 description Issue-ID: POLICY-475 Change-Id: I45cfb55c571d32601049beb8e5be8676216dcf5c Signed-off-by: Gao, Chenfei (cg287m) <cgao@research.att.com>
2018-01-29Reduce technical debtPamela Dragosh17-218/+195
Focusing on easy try-with-resources changes. Plus some other minor items. I did not get all of them yet, as some have some heavy refactoring. These try-with-resources seem to be fairly harmless. * Utilize try-with-resources * Remove unnecessary parenthesis * Merging simple if statements * Remove useless assignment * Moving string literals to left hand side Issue-ID: POLICY-482 Change-Id: If519ec8ea96f6b90bf82ac2676ffea9cd0cd2daf Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-01-26Use try-with-resourcesPamela Dragosh2-26/+48
Also enhanced JUnit tests to ensure this will work. Reduced code. Issue-ID: POLICY-482 Change-Id: If07e17df274bdb709f7ca60078bd1fbd78d1aaaa Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-01-23Reduce technical debtPamela Dragosh10-100/+98
Mainly use StringBuilder() to improve speed * Use StringBuilder * Remove superflous exceptions in constructor * Remove unnecessary casts * Remove unnecessary toString() * Combine return into one statement * Move string literal to LHS Issue-ID: POLICY-482 Change-Id: Id196728d92dda7fab7e83d6eea07633c5be37f7c Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-01-23Addressing Technical Debt for POLICY-SDK-APPPamela Dragosh27-177/+161
* Using booleans true and false * Using already predefined static strings * Adding private constructors to hide implicit * Adding empty constructor comment to satisfy SONAR * Using single quotes for indexOf to use faster method * Preferred use of .isEmpty() * Ordering of public static synchronized syntax * Removing commented out code * Using an already defined constant * Unnecessary declaration of runtime exceptions * Unnecessary casts * Unused variables and imports * Unnecessary use of toString() * Just using return vs storing into a local var and returning that * Extra semicolons Issue-ID: POLICY-482 Change-Id: I6b9dcc5211dd52895a8787239b9df3059928fa45 Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-01-19Resolved the Critical issue reported by Sonarrb71471-2/+11
Issue-ID: POLICY-521 Change-Id: I2a7072076a1ed0924bfeacd6f3d2b6a910f30338 Signed-off-by: rb7147 <rb7147@att.com>
2018-01-17Resolved Security Vulnerability issuesrb71474-1/+69
Issue-ID: POLICY-553 Change-Id: I3e0e6a31226e561cef9ec578790659d57b2f65f4 Signed-off-by: rb7147 <rb7147@att.com>
2018-01-16Merge "Restrict file upload size in policy editor"Jorge Hernandez4-12/+36
2018-01-16Restrict file upload size in policy editorMagnusen, Drew (dm741q)4-12/+36
Restrict file upload size in Policy Editory using a configurable value (in bytes) set in xacml.admin.properties. Default value is 30MB. Issue-ID: POLICY-538 Change-Id: I4d8539ab33320446aed250ea4fdc51de585d5f2a Signed-off-by: Magnusen, Drew (dm741q) <dm741q@att.com>
2018-01-16PDPGroup Audit FixMichael Mokry2-1/+3
*This fix will add new group to GroupEntity table if no default exists during initialization and therefore provides a permanent solution to the initialization errors on the PAP Change-Id: Ie394d76b9cbc02cad15d62d6adea6fc17938f734 Issue-ID: POLICY-486 Signed-off-by: Michael Mokry <mm117s@att.com> (cherry picked from commit 676d7d8dc9985e93d7c9cbc0412a26f2b19c23cd)
2018-01-15Merge "Local and Class variable name conflict resolved"Jorge Hernandez1-3/+3
2018-01-15Merge "Fixed as per Java Code Conventions"Jorge Hernandez1-9/+9
2018-01-12Merge "Sonar cleanup for PolicyEngineUtils"Jorge Hernandez14-35/+63
2018-01-12Local and Class variable name conflict resolvedSRINIVAS V1-3/+3
*Renamed the local variable to othername Change-Id: I5f1e1b8b9140acf73de241f78b0437dc9e5805b5 Issue-ID: POLICY-336 Signed-off-by: SRINIVAS V <srinivasa.mohan@huawei.com>