summaryrefslogtreecommitdiffstats
path: root/ecomp-portal-BE-common
AgeCommit message (Collapse)AuthorFilesLines
2019-07-31Merge "Fix null pointer exception"Manoop Talasila1-3/+3
2019-07-31Merge "General sonar fixes"Manoop Talasila2-26/+16
2019-07-23Fix null pointer exceptionArindam Mondal1-3/+3
+) Fix NPE ++) implement equals instead of == Issue-ID: PORTAL-680 Change-Id: I3a0df60b6171b114afc841b40838f6a4484370ee Signed-off-by: arind.mondal <arind.mondal@samsung.com>
2019-07-22Merge "XSS Vulnerability fix in DashboardController"Manoop Talasila4-77/+161
2019-07-22Merge "XSS Vulnerability fix in ↵Manoop Talasila5-212/+436
ExternalAccessRolesControllerDashboardController"
2019-07-22Merge "XSS Vulnerability fix in AuxApiRequestMapperController"Manoop Talasila5-22/+352
2019-07-22Merge "XSS Vulnerability fix in SharedContextRestController"Manoop Talasila3-70/+200
2019-07-22Merge "XSS Vulnerability fix in WidgetsController"Manoop Talasila3-25/+106
2019-07-22Merge "XSS Vulnerability fix in AuditLogController"Manoop Talasila2-20/+42
2019-07-22Merge "XSS Vulnerability fix in AppContactUsController"Manoop Talasila3-52/+101
2019-07-22Merge "XSS Vulnerability fix in AppsController"Manoop Talasila6-106/+197
2019-07-22General sonar fixesArindam Mondal2-26/+16
+) removed unused imports and done formatting Issue-ID: PORTAL-680 Change-Id: I1f6ceca61dfc59726cc9e5f7ad802e5c9b0f4d6e Signed-off-by: arindamm <arind.mondal@samsung.com>
2019-07-15XSS Vulnerability fix in DashboardControllerDominik Mizyn4-77/+161
Custom data validator used to fix this issue. Issue-ID: OJSI-15 Change-Id: I84bfb81e5d87f80211d46d1141cbf8e4075660fe Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-07-15XSS Vulnerability fix in ExternalAccessRolesControllerDashboardControllerDominik Mizyn5-212/+436
Custom data validator used to fix this issue. Issue-ID: OJSI-15 Change-Id: I9a978846ffc50d840a676b994aa4fb89248b5372 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-07-15XSS Vulnerability fix in AuxApiRequestMapperControllerDominik Mizyn5-22/+352
Custom data validotor is used to valid incoming data. Issue-ID: OJSI-15 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com> Change-Id: I1b2a1fe0fcb6278a7b12017479243009142c2cbd
2019-07-12NoClassDefFoundError javax/xml/bind/ValidationExceptionDominik Mizyn1-0/+5
Add dependency to pom.xml file Issue-ID: PORTAL-660 Change-Id: I02e21024d10cca71b2f090117fb0afdf0b29578b Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-07-12XSS Vulnerability fix in SharedContextRestControllerDominik Mizyn3-70/+200
Custom data validator used to secure this class Issue-ID: OJSI-15 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com> Change-Id: I231731b9deb60310b698d70179cddd471cffd7fb
2019-07-12XSS Vulnerability fix in WidgetsControllerDominik Mizyn3-25/+106
Custom data validator used to fix this issue. Issue-ID: OJSI-15 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com> Change-Id: I0113097b2118656780f4f9bca8b4ee99e85b6f6d
2019-07-12XSS Vulnerability fix in AuditLogControllerDominik Mizyn2-20/+42
Custom data validator used to fix this issue. Issue-ID: OJSI-15 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com> Change-Id: Iafaca1806cf7106b91efdfd9cb40132020b114f2
2019-07-12XSS Vulnerability fix in AppContactUsControllerDominik Mizyn3-52/+101
Custom data validator used to fix this issue. Issue-ID: OJSI-15 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com> Change-Id: Ie8df4df552cfe53e3839c7021284f0226ea56a39
2019-07-12XSS Vulnerability fix in AppsControllerDominik Mizyn6-106/+197
Custom XSS filter used to fix thisa issue. DataValidator upgrade to single instance of ValidatorFactory; Issue-ID: OJSI-15 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com> Change-Id: I7222cfb84e1e5bb240619aac9c7bca85d215229a
2019-07-10Revert "Fix sql injection vulnerability"Krzysztof Opasiak2-6/+3
This reverts commit 941133a42bad6a1d73c63913a950d1e4bc814fde. This is required because this commit breaks the portal unit test due to some other changes that happen between verify job and merge of that commit. Issue-ID: OJSI-174 Change-Id: Ieb53f8ba23e2b1b05c67ec4d7d51c6d5107cfb87 Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com>
2019-07-10Merge "LanguageServiceImpl logging vulnerability fix"Sunder Tattavarada1-14/+20
2019-07-09Merge "SharedContext class DB constraints"Manoop Talasila1-116/+25
2019-07-09Merge "FunctionalMenuRole class DB constraints"Manoop Talasila2-78/+29
2019-07-09Merge "PortalAdmin class DB constraints"Manoop Talasila1-32/+14
2019-07-09Merge "FavoritesFunctionalMenuItemJson class DB constraints"Manoop Talasila1-6/+8
2019-07-09Merge "EpNotificationItem class DB constraints"Manoop Talasila1-242/+38
2019-07-09Merge "EpRoleNotificationItem class DB constraints"Manoop Talasila1-41/+12
2019-07-09Merge "ExtractJar sonar issues fix"Manoop Talasila1-51/+41
2019-07-09Merge "CommonWidget class DB constraints"Manoop Talasila2-67/+18
2019-07-09Merge "XSS Vulnerability fix in PortalAdminController"Sunder Tattavarada2-17/+54
2019-07-08Merge "Fix sql injection vulnerability"Sunder Tattavarada1-2/+6
2019-07-08Merge "Fix sql injection vulnerability"Sunder Tattavarada1-1/+4
2019-07-08Merge "Fix sql injection vulnerability"Sunder Tattavarada1-1/+4
2019-07-08Merge "Fix sql injection vulnerability"Sunder Tattavarada2-3/+6
2019-07-05XSS Vulnerability fix in PortalAdminControllerDominik Mizyn2-17/+54
Custom data validator used to fix this issue. Issue-ID: OJSI-15 Change-Id: I224887d31e4e2d7301544194ef44ba38e66e047d Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-07-03AuthUtil method isAccessAllowed() argument changeDominik Mizyn1-1/+2
Change argument length to match argument length from to sdk version. Issue-ID: PORTAL-656 Change-Id: I6fe28800e0baccaab43419d3aa0d8c43b1ebe771 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-07-01LanguageServiceImpl logging vulnerability fixDominik Mizyn1-14/+20
Sonar issue: "Use a logger to log this exception" fix This patch also minor code issues Issue-ID: PORTAL-622 Change-Id: I304285ca7837bcf929249f7c6b93b6de9cf8fae5 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-06-25Fix sql injection vulnerabilityDominik Orliński1-1/+4
Use a variable binding instead of concatenation. Issue-ID: OJSI-174 Signed-off-by: Dominik Orliński <d.orlinski@samsung.com> Change-Id: Ia655ccf79800c132b3ac466016b8fdfd9f9c27bd
2019-06-25Fix sql injection vulnerabilityDominik Orliński1-2/+6
Use a variable binding instead of concatenation. Issue-ID: OJSI-174 Signed-off-by: Dominik Orliński <d.orlinski@samsung.com> Change-Id: I9dcec677ee9edd0d274a486af37eb950d8e828cf
2019-06-25Fix sql injection vulnerabilityDominik Orliński1-1/+4
Use a variable binding instead of concatenation. Issue-ID: OJSI-174 Signed-off-by: Dominik Orliński <d.orlinski@samsung.com> Change-Id: I8d72c819004f05fbbf464cde73b405f2028c7bb6
2019-06-19Fix sql injection vulnerabilityDominik Orliński2-3/+6
Use a variable binding instead of concatenation. Change test 'getAppRolesForNonCentralizedPartnerAppTest'. Issue-ID: OJSI-174 Signed-off-by: Dominik Orliński <d.orlinski@samsung.com> Change-Id: Ia75da49ed582836a47b5fdcddab62fbe02e36e72
2019-06-18Merge "Fix sql injection vulnerability"Sunder Tattavarada2-4/+12
2019-06-18Merge "Fix sql injection vulnerability"Sunder Tattavarada2-3/+8
2019-06-18Merge "Fix sql injection vulnerability"Sunder Tattavarada2-3/+12
2019-06-18WebAnalyticsExtAppController sonar issuesDominik Mizyn2-62/+32
- Rename this local variable to match the regular expression - Make this anonymous inner class a lambda. - Immediately return this expression instead of assigning it to the temporary variable "response". - Move the "" string literal on the left side of this string comparison. - Replace the type specification in this constructor call with the diamond operator ("<>"). Issue-ID: PORTAL-648 Change-Id: I1666d94dccbbe8aa835ea9a443a9973a245353f4 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-06-18HealthMonitor sonar issuesDominik Mizyn2-124/+85
Remove this unused "numIntervalsClusterNotHealthy" local variable. Use "Long.parseLong" for this string-to-long conversion. Make the enclosing method "static" or remove this set. Change this instance-reference to a static reference. Remove the literal "false" boolean value. This block of commented-out lines of code should be removed. Add the "@Override" annotation above this method signature Issue-ID: PORTAL-647 Change-Id: I1880177f0906e6267807bbb9c0b7a81651e3c020 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-06-18EPLdapService sonar issue fixDominik Mizyn1-1/+1
Annotate the interface with the @FunctionalInterface annotation. Issue-ID: PORTAL-646 Change-Id: Idc6c70b9edaed73024721a3bc8c91796a0df9183 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-06-18AppWithRolesForUser sonar security issueDominik Mizyn5-85/+45
I used Lombok annotation to provide accessors. Issue-ID: PORTAL-645 Change-Id: Iad852434f30b81535398913df162fa8f4bd1ecff Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>