summaryrefslogtreecommitdiffstats
AgeCommit message (Collapse)AuthorFilesLines
2019-07-31Merge "Fix typo in isCssReady()"Manoop Talasila1-1/+1
2019-07-31Merge "Fix null pointer exception"Manoop Talasila1-3/+3
2019-07-31Merge "General sonar fixes"Manoop Talasila2-26/+16
2019-07-30Fix typo in isCssReady()Artem Naluzhnyy1-1/+1
Coverity-scan: CID-192115 Issue-ID: PORTAL-16 Signed-off-by: Artem Naluzhnyy <A.Naluzhnyy@samsung.com> Change-Id: If4aacbb6e7f2cdf6895a1ca6130247b8238414ef
2019-07-23Fix null pointer exceptionArindam Mondal1-3/+3
+) Fix NPE ++) implement equals instead of == Issue-ID: PORTAL-680 Change-Id: I3a0df60b6171b114afc841b40838f6a4484370ee Signed-off-by: arind.mondal <arind.mondal@samsung.com>
2019-07-22Merge "XSS Vulnerability fix in DashboardController"Manoop Talasila4-77/+161
2019-07-22Merge "XSS Vulnerability fix in ↵Manoop Talasila5-212/+436
ExternalAccessRolesControllerDashboardController"
2019-07-22Merge "XSS Vulnerability fix in AuxApiRequestMapperController"Manoop Talasila5-22/+352
2019-07-22Merge "XSS Vulnerability fix in SharedContextRestController"Manoop Talasila3-70/+200
2019-07-22Merge "XSS Vulnerability fix in WidgetsController"Manoop Talasila3-25/+106
2019-07-22Merge "XSS Vulnerability fix in AuditLogController"Manoop Talasila2-20/+42
2019-07-22Merge "XSS Vulnerability fix in AppContactUsController"Manoop Talasila3-52/+101
2019-07-22Merge "XSS Vulnerability fix in AppsController"Manoop Talasila8-127/+209
2019-07-22General sonar fixesArindam Mondal2-26/+16
+) removed unused imports and done formatting Issue-ID: PORTAL-680 Change-Id: I1f6ceca61dfc59726cc9e5f7ad802e5c9b0f4d6e Signed-off-by: arindamm <arind.mondal@samsung.com>
2019-07-19Merge "NoClassDefFoundError javax/xml/bind/ValidationException"Lorraine Welch1-0/+5
2019-07-15XSS Vulnerability fix in DashboardControllerDominik Mizyn4-77/+161
Custom data validator used to fix this issue. Issue-ID: OJSI-15 Change-Id: I84bfb81e5d87f80211d46d1141cbf8e4075660fe Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-07-15XSS Vulnerability fix in ExternalAccessRolesControllerDashboardControllerDominik Mizyn5-212/+436
Custom data validator used to fix this issue. Issue-ID: OJSI-15 Change-Id: I9a978846ffc50d840a676b994aa4fb89248b5372 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-07-15XSS Vulnerability fix in AuxApiRequestMapperControllerDominik Mizyn5-22/+352
Custom data validotor is used to valid incoming data. Issue-ID: OJSI-15 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com> Change-Id: I1b2a1fe0fcb6278a7b12017479243009142c2cbd
2019-07-12NoClassDefFoundError javax/xml/bind/ValidationExceptionDominik Mizyn1-0/+5
Add dependency to pom.xml file Issue-ID: PORTAL-660 Change-Id: I02e21024d10cca71b2f090117fb0afdf0b29578b Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-07-12Unused classes delete from PortalDominik Mizyn3-514/+0
These classes are unused anywhere in the Portal project. Issue-ID: PORTAL-655 Change-Id: If92d0df0efb0b5120190a44c46b2fed31ba32b89 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-07-12XSS Vulnerability fix in SharedContextRestControllerDominik Mizyn3-70/+200
Custom data validator used to secure this class Issue-ID: OJSI-15 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com> Change-Id: I231731b9deb60310b698d70179cddd471cffd7fb
2019-07-12XSS Vulnerability fix in WidgetsControllerDominik Mizyn3-25/+106
Custom data validator used to fix this issue. Issue-ID: OJSI-15 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com> Change-Id: I0113097b2118656780f4f9bca8b4ee99e85b6f6d
2019-07-12XSS Vulnerability fix in AuditLogControllerDominik Mizyn2-20/+42
Custom data validator used to fix this issue. Issue-ID: OJSI-15 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com> Change-Id: Iafaca1806cf7106b91efdfd9cb40132020b114f2
2019-07-12XSS Vulnerability fix in AppContactUsControllerDominik Mizyn3-52/+101
Custom data validator used to fix this issue. Issue-ID: OJSI-15 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com> Change-Id: Ie8df4df552cfe53e3839c7021284f0226ea56a39
2019-07-12XSS Vulnerability fix in AppsControllerDominik Mizyn8-127/+209
Custom XSS filter used to fix thisa issue. DataValidator upgrade to single instance of ValidatorFactory; Issue-ID: OJSI-15 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com> Change-Id: I7222cfb84e1e5bb240619aac9c7bca85d215229a
2019-07-11CRLF fix in your-angular-app.rst fileDominik Mizyn1-55/+55
Fix CRLF Issue-ID: PORTAL-659 Change-Id: I562115ec29306e8a73b31f1f0e62e05b54cfdd9d Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-07-10Revert "Fix sql injection vulnerability"Krzysztof Opasiak2-6/+3
This reverts commit 941133a42bad6a1d73c63913a950d1e4bc814fde. This is required because this commit breaks the portal unit test due to some other changes that happen between verify job and merge of that commit. Issue-ID: OJSI-174 Change-Id: Ieb53f8ba23e2b1b05c67ec4d7d51c6d5107cfb87 Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com>
2019-07-10Merge "LanguageServiceImpl logging vulnerability fix"Sunder Tattavarada1-14/+20
2019-07-10Merge "EPAppServiceImpl class fix."Sunder Tattavarada1-35/+9
2019-07-09Merge "SharedContext class DB constraints"Manoop Talasila1-116/+25
2019-07-09Merge "FunctionalMenuRole class DB constraints"Manoop Talasila2-78/+29
2019-07-09Merge "PortalAdmin class DB constraints"Manoop Talasila1-32/+14
2019-07-09Merge "FavoritesFunctionalMenuItemJson class DB constraints"Manoop Talasila1-6/+8
2019-07-09Merge "EpNotificationItem class DB constraints"Manoop Talasila1-242/+38
2019-07-09Merge "EpRoleNotificationItem class DB constraints"Manoop Talasila1-41/+12
2019-07-09Merge "ExtractJar sonar issues fix"Manoop Talasila1-51/+41
2019-07-09Merge "CommonWidget class DB constraints"Manoop Talasila3-71/+22
2019-07-09Merge "XSS Vulnerability fix in PortalAdminController"Sunder Tattavarada2-17/+54
2019-07-08Merge "Fix sql injection vulnerability"Sunder Tattavarada1-2/+6
2019-07-08Merge "Fix sql injection vulnerability"Sunder Tattavarada1-1/+4
2019-07-08Merge "Fix sql injection vulnerability"Sunder Tattavarada1-1/+4
2019-07-08Merge "Fix sql injection vulnerability"Sunder Tattavarada2-3/+6
2019-07-08Merge "Fix sql injection vulnerability"Sunder Tattavarada1-6/+5
2019-07-05XSS Vulnerability fix in PortalAdminControllerDominik Mizyn2-17/+54
Custom data validator used to fix this issue. Issue-ID: OJSI-15 Change-Id: I224887d31e4e2d7301544194ef44ba38e66e047d Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-07-03AuthUtil method isAccessAllowed() argument changeDominik Mizyn1-1/+2
Change argument length to match argument length from to sdk version. Issue-ID: PORTAL-656 Change-Id: I6fe28800e0baccaab43419d3aa0d8c43b1ebe771 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-07-01LanguageServiceImpl logging vulnerability fixDominik Mizyn1-14/+20
Sonar issue: "Use a logger to log this exception" fix This patch also minor code issues Issue-ID: PORTAL-622 Change-Id: I304285ca7837bcf929249f7c6b93b6de9cf8fae5 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-07-01EPAppServiceImpl class fix.Dominik Mizyn1-35/+9
Sonar issues fix: Remove this unused "logger" private field. Remove this unused "syncRests" private field. unused imports delete and unneeded fields initialization fix. StringBuilder performance fix. Issue-ID: PORTAL-620 Change-Id: Ibd1cf732b216594b47801767d0a98e59b0aba200 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-06-25Fix sql injection vulnerabilityDominik Orliński1-1/+4
Use a variable binding instead of concatenation. Issue-ID: OJSI-174 Signed-off-by: Dominik Orliński <d.orlinski@samsung.com> Change-Id: Ia655ccf79800c132b3ac466016b8fdfd9f9c27bd
2019-06-25Fix sql injection vulnerabilityDominik Orliński1-2/+6
Use a variable binding instead of concatenation. Issue-ID: OJSI-174 Signed-off-by: Dominik Orliński <d.orlinski@samsung.com> Change-Id: I9dcec677ee9edd0d274a486af37eb950d8e828cf
2019-06-25Fix sql injection vulnerabilityDominik Orliński1-1/+4
Use a variable binding instead of concatenation. Issue-ID: OJSI-174 Signed-off-by: Dominik Orliński <d.orlinski@samsung.com> Change-Id: I8d72c819004f05fbbf464cde73b405f2028c7bb6