summaryrefslogtreecommitdiffstats
path: root/ecomp-portal-BE-os
AgeCommit message (Collapse)AuthorFilesLines
2020-06-05removed some unused importsRupinder5-9/+1
Issue-ID: PORTAL-865 Change-Id: I5a6e0bcab1a9854d9451b02870a41f738edae7ef Signed-off-by: Rupinder <rupinsi1@in.ibm.com>
2020-05-26Merge "added annotations for api's"Sunder Tattavarada1-3/+4
2020-05-26Update Docker and Propsstatta1-4/+4
Issue-ID: PORTAL-911 Change-Id: I85c6a63f8f3608b53b2d28951d9bfef76bbef6d2 Signed-off-by: statta <statta@research.att.com>
2020-05-14Merge "property changed to enable role sync"Lorraine Welch1-1/+1
2020-04-28Upgraded SDK and CXF versionsjz385p1-10/+0
Added application security fixes Issue-ID: PORTAL-888 Change-Id: I4a3ce8e78a059abd661571eb54857dccb7b8fa6d Signed-off-by: jz385p <jegadeesh.babu@att.com>
2020-04-27property changed to enable role syncSudarshan Kumar1-1/+1
property changed to enable role sync Issue-ID: PORTAL-875 Change-Id: I955b5e8dcc8863eafdd22f2ef6627184ee31a893 Signed-off-by: Sudarshan Kumar <sudarshan.kumar@att.com>
2020-04-23added annotations for api'sRupinder1-3/+4
Issue-ID: PORTAL-865 Change-Id: Ied1d101cb246b9e433c7cc968fa95ca4bcdbfcb5 Signed-off-by: Rupinder <rupinsi1@in.ibm.com>
2020-04-20Merge "Fixed Duplicate Search Result - User Search"Lorraine Welch1-1/+1
2020-04-20Merge "Junit for SessionMgtRegistry"Lorraine Welch1-0/+60
2020-04-20Fixed Duplicate Search Result - User SearchSudarshan Kumar1-1/+1
Fixed Duplicate Search Result - User Search Issue-ID: PORTAL-859 Change-Id: Id4efa3261b23ea725040ec6c5cee2c0c300e1606 Signed-off-by: Sudarshan Kumar <sudarshan.kumar@att.com>
2020-04-17removed unused importsRupinder4-12/+0
Issue-ID: PORTAL-865 Change-Id: I6c2709376ad49dfd0f9e804107b1182daff85bf1 Signed-off-by: Rupinder<rupinsi1@in.ibm.com>
2020-04-15Junit for SessionMgtRegistryezhil1-0/+60
Issue-ID: PORTAL-814 Change-Id: I1aab4e26619a5fb24187d106df5e3932ad038bd6 Signed-off-by: ezhil <ezhrajam@in.ibm.com>
2020-04-14Fixed Role Sync and changed pom versionSudarshan Kumar1-1/+1
Fixed Role Sync and changed pom version Issue-ID: PORTAL-875 Change-Id: I95f25a310601d1fba37f76663046e3af3223a040 Signed-off-by: Sudarshan Kumar <sudarshan.kumar@att.com>
2020-03-17Portal GUI Stuck in "Loading..." Screenstatta1-1/+1
Issue-ID: PORTAL-857 Change-Id: I019fa686efa838e74b6accbf4602e70a0783b245 Signed-off-by: statta <statta@research.att.com>
2020-03-12Changes made to fix login errorSudarshan Kumar2-59/+42
Changes made for fix login error and checking condition inside footer.html Issue-ID: PORTAL-852 Change-Id: I4801f73e9e25b6e4ab3b6e9b4e9228d46a8f56a8 Signed-off-by: Sudarshan Kumar <sudarshan.kumar@att.com>
2020-02-18Changes made to upgrade pom versionSudarshan Kumar12-3923/+52
Upgraded pom version Issue-ID: PORTAL-769 Change-Id: I65ae68acda464531d699dcb459d328de19a3c7c7 Signed-off-by: Sudarshan Kumar <sudarshan.kumar@att.com>
2020-02-10Changes made to fix left menu routingSudarshan Kumar1-0/+2
Changes made to fix left menu routing issue with ONAP-PORTAL Issue-ID: PORTAL-795 Change-Id: I0278049c9d9e95b9a64674fa3f99aff0e9d24a06 Signed-off-by: Sudarshan Kumar <sudarshan.kumar@att.com>
2019-10-24Persistent XSS vulnerability in saveNewUser form fixDominik Mizyn1-7/+7
javax.validation.Validator used to fix this vulnerability issue. Issue-ID: OJSI-16 Change-Id: I50a7acc4f7e9294170628fd5b2894ee6cbdba8f0 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-10-03pom.xml fixDominik Mizyn1-1/+1
pom.xml fix Issue-ID: PORTAL-710 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com> Change-Id: Ifcd9923791dfe28282cccc4fd5afad77df7aa777 pom.xml fix pom.xml fix Issue-ID: PORTAL-710 Change-Id: I50600e2f9ab829479f787998879de13b183d33cf Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-09-17HealthCheck & Namespace Checkstatta1-2/+5
Issue-ID: PORTAL-723 Change-Id: I97ac3c592ae1f7a6142384d70ac6038ccee1d8fb Signed-off-by: statta <statta@research.att.com>
2019-09-09Set secure flag & log exceptionParshad Patel3-179/+179
Make sure creating this cookie without the "secure" flag is safe here Either log or rethrow this exception Change this instance-reference to a static reference Issue-ID: PORTAL-562 Change-Id: I4b6e07ec54ec038c0d584816791ed5169e618676 Signed-off-by: Parshad Patel <pars.patel@samsung.com>
2019-08-27Portal Setup - App issuestatta2-0/+392
Issue-ID: PORTAL-723 Change-Id: Iff1523b2a474f56a74c9fcb9fd850e0e38f6fc68 Signed-off-by: statta <statta@research.att.com>
2019-08-13Merge "Fix sonar issues in portal"Manoop Talasila1-0/+2
2019-08-13Merge "EPUserUtils class fix"Manoop Talasila3-6/+4
2019-08-06Fix sonar issues in portalParshad Patel1-0/+2
Use a logger to log this exception Make sure creating this cookie without the "secure" flag is safe here Either re-interrupt this method or rethrow the "InterruptedException" Issue-ID: PORTAL-562 Change-Id: I91d6adce835d9adec4328642e8445f074f7d2d57 Signed-off-by: Parshad Patel <pars.patel@samsung.com>
2019-07-22Merge "XSS Vulnerability fix in AppsController"Manoop Talasila2-21/+12
2019-07-16EPUserUtils class fixDominik Mizyn3-6/+4
Sonar errors EPUserUtils class fix Issue-ID: PORTAL-667 Change-Id: I7a8a39ac52ee2da5d2c2ab0016a8bbea0acb4d21 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-07-12Unused classes delete from PortalDominik Mizyn3-514/+0
These classes are unused anywhere in the Portal project. Issue-ID: PORTAL-655 Change-Id: If92d0df0efb0b5120190a44c46b2fed31ba32b89 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-07-12XSS Vulnerability fix in AppsControllerDominik Mizyn2-21/+12
Custom XSS filter used to fix thisa issue. DataValidator upgrade to single instance of ValidatorFactory; Issue-ID: OJSI-15 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com> Change-Id: I7222cfb84e1e5bb240619aac9c7bca85d215229a
2019-07-10Merge "EPAppServiceImpl class fix."Sunder Tattavarada1-35/+9
2019-07-09Merge "CommonWidget class DB constraints"Manoop Talasila1-4/+4
2019-07-01EPAppServiceImpl class fix.Dominik Mizyn1-35/+9
Sonar issues fix: Remove this unused "logger" private field. Remove this unused "syncRests" private field. unused imports delete and unneeded fields initialization fix. StringBuilder performance fix. Issue-ID: PORTAL-620 Change-Id: Ibd1cf732b216594b47801767d0a98e59b0aba200 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-06-21PeerBroadcastSocket sonar issues fix and code refactorDominik Mizyn1-39/+16
Sonar issues fix and code refactor. Session data save moved to another method. Rest of code don't really do anything. Issue-ID: PORTAL-624 Change-Id: I53b36377f2d2645d8c24ad2384959f0599e07303 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-06-21ONAPWelcomeController sonar issue fixDominik Mizyn1-11/+4
String viewName and getter/setter can be romoved from his class. ONAPWelcomeController Overrides this field 1 to 1. Issue-ID: PORTAL-652 Change-Id: Idbb41f52a63c6ea681f6ba7753991d766849e3a2 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-06-21ONAPLoginController sonar issues fix.Dominik Mizyn1-16/+21
Sonar issues fix plus @Autowired in constructor not in fields. Issue-ID: PORTAL-651 Change-Id: I99329b986877d040c6fdda9daf42a5c501a39605 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-06-21SimpleLoginStrategy sonar issues fixDominik Mizyn1-16/+18
"Either remove or fill this block of code." "Move the "" string literal on the left side of this string comparison." "Define and throw a dedicated exception instead of using a generic one." Issue-ID: PORTAL-650 Change-Id: I92018287a6f585020f0ae6f042b1bb1de84a5e14 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-06-21OpenIdConnectLoginStrategy sonar issues fixDominik Mizyn1-7/+4
Redundant suppression("rawtypes") removed. Sonar issue: Move the "" string literal on the left side of this string comparison. Define and throw a dedicated exception instead of using a generic one. Issue-ID: PORTAL-649 Change-Id: Ia2c80ad4848c22c94a2db731425250784d382841 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-06-18CommonWidget class DB constraintsDominik Mizyn1-4/+4
Java Bean Validation SR 380 annotations added to classes Issue-ID: PORTAL-637 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com> Change-Id: I64741f835deb8aed14ad8d716d21bb4c1901b55f
2019-06-17Application Onboarding page changes Kotta, Shireesha (sk434m)4-41/+80
Issue-ID: PORTAL-644 Application Onboarding page changes , DB scripts Change-Id: Id689e15f5abd56192420e6761440659531108ab4 Signed-off-by: Kotta, Shireesha (sk434m) <sk434m@att.com>
2019-06-14Merge "XSS Vulnerability fix in DashboardSearchResultController"Sunder Tattavarada2-11/+143
2019-06-14Merge "XSS Vulnerability fix in AppsOSController"Sunder Tattavarada2-3/+32
2019-06-05XSS Vulnerability fix in DashboardSearchResultControllerDominik Mizyn2-11/+143
Custom Validator is used to secure this endpoints. Issue-ID: OJSI-15 Change-Id: Idf523a53bc5fe9e1df8110526d56336953759c86 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-05-31XSS Vulnerability fix in AppsOSControllerDominik Mizyn2-3/+32
SecureString class used to secure PathVariable. Issue-ID: OJSI-207 Change-Id: I6275c5db4d8d97dc60ef1676b651e3d8802ad9f7 Signed-off-by: Dominik Mizyn <d.mizyn@samsung.com>
2019-05-30Merge "Don't give the user the exact stack trace of the exception"Manoop Talasila1-20/+26
2019-05-29Don't give the user the exact stack trace of the exceptionPiotr Borelowski1-20/+26
Catching the exception in the SecurityXssFilter class. Issue-ID: OJSI-192 Change-Id: I8d9d7a3032f98afcb58285b13b13d5ce35fddadd Signed-off-by: Piotr Borelowski <p.borelowski@partner.samsung.com>
2019-05-28Don't give user the exact exception descriptionPiotr Borelowski1-0/+8
The exact description of the exception especially if related to cryptography cannot be given to the user as it may be abused by the attacker. To fix that, we started to use @ExceptionHandler for all exceptions in the LoginController as well. CVE: CVE-2019-12121 Issue-ID: OJSI-92 Change-Id: I100b37ff33d28ebccc2411c3acc62bdb7ce11ca8 Signed-off-by: Piotr Borelowski <p.borelowski@partner.samsung.com> Reviewed-by: Krzysztof Opasiak <k.opasiak@samsung.com> Acked-by: Manoop Talasila <talasila@research.att.com>
2019-04-29Fix no reaction bug about changing language optionguochuyicmri1-1/+2
Change-Id: Ie1f75224d0cc70a87e77f5c357ed6e34b0cb3220 Issue-ID: PORTAL-565 Signed-off-by: shentao999 <shentao@chinamobile.com>
2019-03-20CADI AAF Integration and merging the codehb123f8-22/+82
Issue-ID: PORTAL-319 CADI AAF Integration and code merge Change-Id: I6e44f3b2741858d8d403b77a49ec9a0153084801 Signed-off-by: hb123f <hbindu@research.att.com>
2019-02-07Merge "PeerBroadcastSocket(Make "channelMap" field final)"Manoop Talasila1-1/+3
2019-02-07Merge "Sonar issue-fix -- (ExternalAppConfig.java)"Manoop Talasila1-4/+2