summaryrefslogtreecommitdiffstats
AgeCommit message (Collapse)AuthorFilesLines
2018-09-25CADI AAF changes for policy/engineMichael Mokry5-225/+267
Added cadi properties and modified policy aaf client code. Fixed issue with namespace and modified code to reverse it for structuring the username sent in AAF API call Added properties for keystore and keystore password after getting error response from AAF when setting up the connection to AAF Missed a fix for one of Jorge's comments in last patch, here it is. Change-Id: Ic164ade8aa34da95a560c1592656e0caf990a595 Issue-ID: POLICY-913 Signed-off-by: Michael Mokry <mm117s@att.com>
2018-09-20BRMSGW HTTPS support for DMaaP/UEB interfacesMichael Mokry1-1/+1
Modified BrmsPush UEB interface implementation to use HTTPS Change-Id: Id8ae68f23ee371142da3f9d8aa0a2b2e7988ff36 Issue-ID: POLICY-942 Signed-off-by: Michael Mokry <mm117s@att.com>
2018-09-20Upgrade javax.mail to 1.6.2Pamela Dragosh1-3/+3
The former version was frozen in github. It looks like they moved to another website and the changes were transparent codewise. So let's see what the CLM results are for this. I believe this does remove the security vulnerability. Issue-ID: POLICY-1127 Change-Id: Ib659eddc2808131c8dded3782fcf1d382060fc29 Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-09-18Fixes for oparent upgradePamela Dragosh7-7/+2
Clean up mariadb so that it is consistent, allow jetty to be defined by oparent, and fixes to fully support google guava upgrade. Issue-ID: POLICY-1126 Change-Id: Ic0c2fba5f6f5f1a41e53770b95861606a5b4bbe6 Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-09-18Merge "Fixing issue with validation errors"Pamela Dragosh2-500/+736
2018-09-18Merge "Remove override of parent aaf version"Liam Fallon2-2/+5
2018-09-18Merge "Fix Policy GUI Template Issue"Pamela Dragosh1-1/+1
2018-09-18Fixing issue with validation errorsMichael Mokry2-500/+736
I found this change internally that was committed to fix an issue with validating required fields when creating some Config MS policies. This should fix the CSIT tests and the pre-loaded policies for SDNC Naming policies Change-Id: I04406b8efbef173a6ab967a32cfbd86e17b7c59e Issue-ID: POLICY-983 Signed-off-by: Michael Mokry <mm117s@att.com>
2018-09-18Fix Policy GUI Template IssueWang, Frank(gw1218)1-1/+1
Fix the a bug in this html file by adding msPolicyloader Issue-ID: POLICY-1118 Change-Id: I7a45b232ed0680f1c8233b8ed71fdde685fbb9c9 Signed-off-by: Wang, Frank(gw1218) <gw1218@att.com>
2018-09-18Remove override of parent aaf versionPamela Dragosh2-2/+5
policy/parent now declares the aaf dependency so consistency is maintained in all the repositories. Removing the version declaration in order to pull in the declared version. The constructor changes to add a namespace. A null value is still possible to be used. If we are given a namespace then we will have to add that in. Preferrably via a properties file. I also noticed there is a hard-coded URL in here in the setupAAF() method on line 212. That should be moved to a property file. Issue-ID: POLICY-1119 Change-Id: I97dcd7d669d3d05db7c6597be6f3038183fa4e17 Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-09-18Merge "Added validation on matching required fields"Jorge Hernandez2-436/+777
2018-09-18Merge "AAF integration in Policy SDK"Pamela Dragosh7-1005/+1186
2018-09-17Added validation on matching required fieldsWang,Frank(gw1218)2-436/+777
Import policy should report to end users if there are missing required matching fields in policy template. Issue-ID: POLICY-1117 Change-Id: Iac4485259b73784e641f42a22d5a12c524f4b8e2 Signed-off-by: Wang,Frank(gw1218) <gw1218@att.com> Signed-off-by: Wang, Frank(gw1218) <gw1218@att.com>
2018-09-17AAF integration in Policy SDKrb71477-1005/+1186
Upgraded SDK version. Added SQL script with encrypt key. Added a function to save role on reading from session in PolicyController.java Addressed Check Style warnings in PolicyController.java Issue-ID: POLICY-1088 Change-Id: I446b6c1a0db2a989ad3f4e982e5cdba845f81045 Signed-off-by: rb7147 <rb7147@att.com>
2018-09-17Upgrade elasticsearch v6.3.0Pamela Dragosh3-3/+4
Resolves a security issue around information disclosure. The recommendation is to upgrade to this version for the fix. Issue-ID: POLICY-1063 Change-Id: Idebb19d2c530b716a25aa91832c053e6b2d0ffce Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-09-17Merge "Upgrade commons-compress v1.18"Liam Fallon3-2/+3
2018-09-14Fixed incorrect model nameMichael Mokry1-1/+1
Changed the model name of the script to be the correct SDNC-GenerateName version CSIT to fix the failed CSIT test cases Change-Id: I8974202cfc8cea3a19e102813fbf2a4f449cd11b Issue-ID: POLICY-983 Signed-off-by: Michael Mokry <mm117s@att.com>
2018-09-14Upgrade commons-compress v1.18Pamela Dragosh3-2/+3
Fixes 2 security issues and brings the common property value to the root pom.xml for easier management. Issue-ID: POLICY-1063 Change-Id: I56e3318bdfae2d205c61a5ad7af70a79bd70dada Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-09-14Upgrade springframework 4.3.18.RELEASEPamela Dragosh6-6/+3
To resolve security issue for 4.3.15.RELEASE and also have a single place where the dependency is defined for the sub-modules. NOTE: 4.2.0.RELEASE is left alone in Policy SDK App due to Portal SDK dependency. Issue-ID: POLICY-1063 Change-Id: Ibdc464b16b4771faccb2c8c472efa7fbcbf3352c Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-09-12Merge "Upgrade dmaap client"Jorge Hernandez3-3/+4
2018-09-12Upgrade dmaap clientPamela Dragosh3-3/+4
Upgrading to dmaap 1.1.8 for Casablanca. Hoping they have removed some license issues. Also, policy/parent has the version property definition now because this dependency is shared across multiple repos. Issue-ID: POLICY-1116 Change-Id: I6ffe7b7cf4b46b12b3ec8d534a58f0be40bb97b9 Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-09-12Added SQL to import SDNC naming modelMichael Mokry1-0/+3
Modified the script to inlcude an insert statement to add the SDNCGenerate Naming model to the microservicemodels table during installation This will need to be merged before I add the CSIT test to Integration Change-Id: I1620ce3f1097d45111bddb08c12b5b8c12bb1b2e Issue-ID: POLICY-983 Signed-off-by: Michael Mokry <mm117s@att.com>
2018-09-11Modified Min Max Guard xacml templateMichael Mokry1-36/+32
Changed the condition to remove not from permit and have only one not for deny Change-Id: Ie4563aba000fa5366095fe23d23c37019b5224d4 Issue-ID: POLICY-1038 Signed-off-by: Michael Mokry <mm117s@att.com>
2018-09-11Merge "New min/max Guard Policy"Pamela Dragosh13-50/+468
2018-09-11New min/max Guard PolicyMichael Mokry13-50/+468
Made changes to support Guard policy create/update and other policy manager functions including deletePolicy and pushPolicy. Includes changes for new Guard policy support using GUI and API (Rest and Java Client) Made changes to address Jim's comments Made changes to address Liam's comments Change-Id: I133fe1fd9287ea77ea41a2788de90c7642c36b6a Issue-ID: POLICY-1038 Signed-off-by: Mike Mokry <mm117s@att.com>
2018-09-11Change websockets to managed versionliamfallon1-1/+0
Change-Id: Iff8f9053640752f86e6f5aa94c1f16f6d3e01d6a Issue-ID: POLICY-884 Signed-off-by: liamfallon <liam.fallon@ericsson.com>
2018-09-10Resolved XACML Platform Sonar issuesrb71476-163/+128
Issue-ID: POLICY-902 Change-Id: If22627dfe7df993b5c725ddf3a66c10ebbaa73ca Signed-off-by: rb7147 <rb7147@att.com>
2018-09-06Merge "XACML Platform Enhancements"Jorge Hernandez20-2557/+3352
2018-09-06Merge "TOSCA model enhancements"Pamela Dragosh2-423/+653
2018-09-05XACML Platform Enhancementsrb714720-2557/+3352
To Support Raw Policy Creation from GUI and API. GetDecision on combining algorithim with Policy Set. Issue-ID: POLICY-902 Change-Id: Ie3189f8ded2e03366bc7d65d15b95b88c89b0acd Signed-off-by: rb7147 <rb7147@att.com>
2018-08-30TOSCA model enhancementsWang,Frank(gw1218)2-423/+653
Add those features below to existing TOSCA Policy model: 1. Set default value to HTML element 2. Set description of a property as a tooltip 3. Support Boolean type 4. User defined object can be re-used by different properties in the same yaml file Issue-ID: POLICY-900 Change-Id: I337107828ce8130b9a68a2ba000ee719bbcb923e Signed-off-by: Wang,Frank(gw1218) <gw1218@att.com>
2018-08-30Upgrade to policy/parentPamela Dragosh14-2349/+2361
Change from oparent to policy/parent which inherit from the latest oparent. The latest oparent has dependencyManagement recommendations from the ONAP Security sub committee that the policy team is adhering as part of the effort to consolidate security work across projects. Change-Id: I1a43fc5a04dbc8c4cb2b7bedbca67ad3e9dd120b Issue-ID: INT-619 Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-08-28Merge "Enhancement on Dashboard"Pamela Dragosh10-425/+1140
2018-08-27Modified Blacklist documentationSaryu Shah1-0/+0
Modified Blacklist documentation ------------------------------------------------------------- Issue-ID: POLICY-947 Change-Id: Ie31d45c302c51abc09705df8e714fb42d9ced1a6 Signed-off-by: Saryu Shah <ss3917@att.com>
2018-08-23Enhancement on DashboardWang,Frank(gw1218)10-425/+1140
Enhancement on dashboard by including more info related to CRUD actions on policies and also providing an advanced search feature. Issue-ID: POLICY-1042 Change-Id: I987e0ca13824413f90299a366fb4464fca7de06a Signed-off-by: Wang,Frank(gw1218) <gw1218@att.com>
2018-08-22policy/engine changes to support PE httpsMichael Mokry4-23/+22
Enabled https connector in server.xml and modified the docker-install.sh to fix the default variable name for policy truststore Change-Id: I6db6a6d2353130c91c1f344ea7927d187150adca Issue-ID: POLICY-781 Signed-off-by: Michael Mokry <mm117s@att.com>
2018-08-22Merge "Use builder for std pap policy"Pamela Dragosh10-139/+366
2018-08-20Merge "Updated guard blacklist documentation"Pamela Dragosh2-0/+4
2018-08-20Use builder for std pap policyKrishnajinka10-139/+366
Modify constructor in stdpappolicy to use builder this will fix the sonar issue related with more than 7 parameters method parameters Issue-ID: POLICY-1016 Change-Id: Id736a66e5ea48f0f233cffb640cdce8aaa8f2c0d Signed-off-by: Krishnajinka <kris.jinka@samsung.com>
2018-08-18Updated guard blacklist documentationSaryu Shah2-0/+4
Updated guard blacklist documentation ------------------------------------------------------------- Change-Id: Ib99fd83119994a59e9708e3585d0eafdababc8d5 Issue-ID: POLICY-947 Signed-off-by: Saryu Shah <ss3917@att.com>
2018-08-17https certs with aaf+pe containers compatibilityJorge Hernandez12-15/+75
Change-Id: I21ed7a0fea5ea7d62857a077fa2568da4af99d26 Issue-ID: POLICY-1057 Signed-off-by: Jorge Hernandez <jh1730@att.com>
2018-08-15Merge "Junit Coverage for Import Black List Entries"Jorge Hernandez1-68/+36
2018-08-14Junit Coverage for Import Black List Entriesrb71471-68/+36
Issue-ID: POLICY-901 Change-Id: I3776d3c4ed01bb27ed930c074c370361e33b100a Signed-off-by: rb7147 <rb7147@att.com>
2018-08-14Merge "Resolved the Sonar issues"Jorge Hernandez2-92/+92
2018-08-14Resolved the Sonar issuesrb71472-92/+92
Issue-ID: POLICY-901 Change-Id: I30e1d075dd8eb4739bcb5aa1f2503a016900ff75 Signed-off-by: rb7147 <rb7147@att.com>
2018-08-14Optimize PAP policy constructor with builderKrishnajinka10-353/+386
Fix sonar issue about constructor using more than 7 params. Use builder parameters object for setting the attributes of std pap policy.Recommit1 Issue-ID: POLICY-1016 Change-Id: Id9631a42813960baa78df4ab0c0f6706244c3180 Signed-off-by: Krishnajinka <kris.jinka@samsung.com>
2018-08-13Merge "Modify std pap policy to use builder in constr"Pamela Dragosh7-87/+255
2018-08-13Merge "Fix comparison issues in onap pap rest"Pamela Dragosh13-2067/+2461
2018-08-13Modify std pap policy to use builder in constrKrishnajinka7-87/+255
Fix sonar issue about constructor using more than 7 params. Use builder parameters object for setting the attributes of std pap policy.Rework2 Issue-ID: POLICY-1016 Change-Id: If26f7daa8d5b5d387238aad74daeddd49a8b95bb Signed-off-by: Krishnajinka <kris.jinka@samsung.com>
2018-08-11Fix comparison issues in onap pap restkrishnajinka13-2067/+2461
Fix issues about incorrect comparison in pap rest modules indicated by analysis tools.Rework to fix review comments1 Issue-ID: POLICY-1016 Change-Id: I7a0ee45a721307fc3ba89ab65e807613a3df2542 Signed-off-by: krisjinka <kris.jinka@samsung.com>