diff options
| -rw-r--r-- | deliveries/.env | 4 | ||||
| -rw-r--r-- | docs/release-notes.rst | 72 | ||||
| -rw-r--r-- | ecomp-portal-BE-common/src/main/java/org/onap/portalapp/portal/utils/EcompPortalUtils.java | 8 | ||||
| -rw-r--r-- | ecomp-portal-DB-os/PortalDMLMySql_3_2_OS.sql | 5 |
4 files changed, 86 insertions, 3 deletions
diff --git a/deliveries/.env b/deliveries/.env index 4910d24e..665f33b5 100644 --- a/deliveries/.env +++ b/deliveries/.env @@ -6,8 +6,8 @@ # change dockerfile name to "skip" PORTAL_DOCKERFILE=Dockerfile.portal SDK_DOCKERFILE=skip -DB_DOCKERFILE=skip -WMS_DOCKERFILE=skip +DB_DOCKERFILE=Dockerfile.mariadb +WMS_DOCKERFILE=Dockerfile.wms # These are FE only and BE only docker images. Change to Dockerfile.fe and Dockerfile.be to enable. FE_DOCKERFILE=skip BE_DOCKERFILE=skip diff --git a/docs/release-notes.rst b/docs/release-notes.rst index 59e17344..a691376c 100644 --- a/docs/release-notes.rst +++ b/docs/release-notes.rst @@ -1,10 +1,82 @@ .. This work is licensed under a Creative Commons Attribution 4.0 International License. .. http://creativecommons.org/licenses/by/4.0 +<<<<<<< HEAD (1b5673 Skiping SDK DB and WMS Dockerfile) .. Copyright 2017-2019 AT&T Intellectual Property. All rights reserved +======= +.. Copyright 2017-2020 AT&T Intellectual Property. All rights reserved +.. _release_notes: +>>>>>>> CHANGE (f8a5f0 Added Frankfurt Release Notes) Portal Platform Release Notes ============================= +Version: 3.2.0 +-------------- +:Release Date: 2020-05-21 + +.. toctree:: + :maxdepth: 1 + +This release contains an Angular upgrade, bug fixes and security enhancements. + +**New Features** + + * Angular Upgrade from 1.X to 7.0 - Portal and SDK (Backward Compatible) + * OParent 2.0 Migration & Self Release Jobs + * UI/TypeScript Test Coverage - (Portal Coverage 60% and SDK Coverage 63%) + * Spring Boot Migration (Portal only/ Partially Completed) + +**Bug Fixes** + + * License scan issues addressed + * Fixed Sonar reported critical issues. + +**Known Issues** + +**Security Notes** + + * Closed HTTP Ports (Portal, SDK) + * Address Security Vulnerabilities from Nexus-IQ (Jars and Javascript libraries) + * Containers to run as Non-Root user: portal, portal-sdk, portal-widget + +*Fixed Security Issues* + + * OJSI-97 - portal-app exposes plain text HTTP endpoint using port 8989 [`OJSI-97 <https://jira.onap.org/browse/OJSI-97>`_] + * OJSI-105 - portal-sdk exposes plain text HTTP endpoint using port 30212 [`OJSI-105 <https://jira.onap.org/browse/OJSI-105>`_] + * OJSI-106 - portal-app exposes plain text HTTP endpoint using port 30215 [`OJSI-106 <https://jira.onap.org/browse/OJSI-106>`_] + +*Known Security Issues* + +*Known Vulnerabilities in Used Modules* + * Portal was granted a waiver by SECCOM for OJSI-190. Portal stores users passwords encrypted instead of hashed. This was not fixed for Frankfurt. + +Quick Links: + - `PORTAL project page <https://wiki.onap.org/display/DW/Portal+Platform+Project>`_ + + - `Passing Badge information for PORTAL <https://bestpractices.coreinfrastructure.org/en/projects/1441>`_ + + - `Project Vulnerability Review Table for PORTAL <https://wiki.onap.org/pages/viewpage.action?pageId=68542388>`_ + +**Upgrade Notes** + * These still apply: + 1. For https Apps onboarded to portal, a certificate has to be downloaded in the browser when first trying to access the landing page of the App. + 2. For onboarded Apps using http (since Portal is using https) the browser asks the user to click to Proceed to the unsafe URL. + 3. For onboarded Apps using http the icon in the URL bar will appear red, click on it and allow unsafe scripts. Different browsers use different methods to accomplish this, Firefox has a security icon near the URL that you can click on "Unblock" and "Disable protection for now" + 4. The first time some apps are selected in the Applications panel, an error stating the webpage might be temporarily down, copy the presented URL to a new browser; once that is done, the application will open in the Portal. + +**Deprecation Notes** + * 2.6.0 portal/sdk is the last version to support the old AngularJS UI versions. + * Expect upgrade on Angular frontend and SpringBoot backend in next releases: The components like Policy, VID, SDC, AAI, MSB, SO – if any of them use portal/sdk java libraries, then please anticipate MAJOR changes to portal/sdk with respect to technology stack upgrade which is pending for long time on Angular frontend and SpringBoot backend. + * The tech stack upgrade helps resolve many security vulnerabilities and also provides latest rich UI and microservices features that components can take advantage of, just by upgrading to latest portal/sdk. + +**Other** + * Below are the docker images released as part of Portal Platform project: + * onap/portal-app:3.2.0 + * onap/portal-db:3.2.0 + * onap/portal-sdk:3.0.0 + * onap/portal-wms:3.2.0 + * portal/sdk java artifacts - (Release branch: “release-3.0.0”) + Version: 2.6.0 -------------- :Release Date: 2019-10-03 diff --git a/ecomp-portal-BE-common/src/main/java/org/onap/portalapp/portal/utils/EcompPortalUtils.java b/ecomp-portal-BE-common/src/main/java/org/onap/portalapp/portal/utils/EcompPortalUtils.java index 7c9aa76b..db984a67 100644 --- a/ecomp-portal-BE-common/src/main/java/org/onap/portalapp/portal/utils/EcompPortalUtils.java +++ b/ecomp-portal-BE-common/src/main/java/org/onap/portalapp/portal/utils/EcompPortalUtils.java @@ -420,7 +420,13 @@ public class EcompPortalUtils { decryptedPass = SystemProperties.getProperty(EPCommonSystemProperties.EXTERNAL_CENTRAL_AUTH_PASSWORD); userName = SystemProperties.getProperty(EPCommonSystemProperties.EXTERNAL_CENTRAL_AUTH_USER_NAME); } - String decPass = decrypted(decryptedPass); + String decPass; + try { + decPass = decrypted(decryptedPass); + } catch (Exception e) { + logger.warn(EELFLoggerDelegate.errorLogger, "decryptedPassword failed using non decrypted pwd from the Properties file", e); + decPass = decryptedPass; + } String usernamePass = userName + ":" + decPass; String encToBase64 = String.valueOf((DatatypeConverter.printBase64Binary(usernamePass.getBytes()))); HttpHeaders headers = new HttpHeaders(); diff --git a/ecomp-portal-DB-os/PortalDMLMySql_3_2_OS.sql b/ecomp-portal-DB-os/PortalDMLMySql_3_2_OS.sql index ef687418..6d6e2435 100644 --- a/ecomp-portal-DB-os/PortalDMLMySql_3_2_OS.sql +++ b/ecomp-portal-DB-os/PortalDMLMySql_3_2_OS.sql @@ -15,6 +15,11 @@ UPDATE fn_menu SET function_cd = 'menu_acc_admin' WHERE label = 'Users'; +--- update fn_menu for Onboarding Page +UPDATE fn_menu +SET function_cd = 'menu_acc_admin' +WHERE label = 'Application Onboarding'; + -- fn_user Insert into fn_user (USER_ID, ORG_ID, MANAGER_ID,FIRST_NAME,MIDDLE_NAME,LAST_NAME,PHONE,FAX,CELLULAR,EMAIL,ADDRESS_ID,ALERT_METHOD_CD,HRID,ORG_USER_ID,ORG_CODE,LOGIN_ID,LOGIN_PWD,LAST_LOGIN_DATE,ACTIVE_YN,CREATED_ID,CREATED_DATE,MODIFIED_ID,MODIFIED_DATE,IS_INTERNAL_YN,ADDRESS_LINE_1,ADDRESS_LINE_2,CITY,STATE_CD,ZIP_CODE,COUNTRY_CD,LOCATION_CLLI,ORG_MANAGER_USERID,COMPANY,DEPARTMENT_NAME,JOB_TITLE,TIMEZONE,DEPARTMENT,BUSINESS_UNIT,BUSINESS_UNIT_NAME,COST_CENTER,FIN_LOC_CODE,SILO_STATUS,is_system_user,language_id) values (1,NULL,NULL,'Demo',NULL,'User',NULL,NULL,NULL,'demo@openecomp.org',NULL,NULL,NULL,'demo',NULL,'demo','4Gl6WL1bmwviYm+XZa6pS1vC0qKXWtn9wcZWdLx61L0=','2016-10-20 15:11:16','Y',NULL,'2016-10-14 21:00:00',1,'2016-10-20 15:11:16','N',NULL,NULL,NULL,'NJ',NULL,'US',NULL,NULL,NULL,NULL,NULL,10,NULL,NULL,NULL,NULL,NULL,NULL,'N',1); |