summaryrefslogtreecommitdiffstats
AgeCommit message (Collapse)AuthorFilesLines
2018-01-03Harden codest782s26-115/+350
Issue-ID: PORTAL-145,PORTAL-119,PORTAL-118 Harden code to address SQL injecton, XSS vulnerabilities; Separate docker images for portal, sdk app and DMaaPBC ui; Missing error page Change-Id: I1818fbf86c601dd41b274729038e731fb2ec8f7d Signed-off-by: st782s <statta@research.att.com>
2017-11-28Harden codest782s42-6322/+8062
Issue-ID: PORTAL-145,PORTAL-119 Harden code to address SQL injecton, XSS vulnerabilities; Separate docker images for portal, sdk app and DMaaPBC ui Change-Id: I85fad4d3fcee3243207b8f0dfe21beaa41602204 Signed-off-by: st782s <statta@research.att.com>
2017-11-07Release new SDK Versionst782s19-12/+93
Issue: PORTAL-19, PORTAL-135 Includes SDK 2.1 release updates deprecating certain methods to address vulnerabilities Change-Id: Ibf105a0cf3c7d7e89eb05862c54aadfacf575d97 Signed-off-by: st782s <statta@research.att.com>
2017-10-27Additional security fixesChristopher Lott (cl778h)3-75/+48
Issue: PORTAL-135 Change-Id: I8574fbcd73d9a053e8a19d5a8e4219a4034b751e Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-10-25Repair security filtersChristopher Lott (cl778h)6-122/+27
Revise app web.xml to remove typo in Java package name. Also drop unneeded test class. Issue: PORTAL-135 Change-Id: I49662928c5eed38520e9a9c5f839385148aef0fa Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-10-20Role management; security vulnerabilities.Christopher Lott (cl778h)34-7141/+969
Extend user/role management interface to allow role deletion. Add filters to defend against common web Javascript attacks. Drop Greensock code with unusable license. Use OParent in EPSDK web application. Issue: US324470, US342324, PORTAL-127 Change-Id: I3a10744fbbbdbda7c88d2b2e542e72e779c9b142 Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-10-12Switch to Mariadb connector.Christopher Lott (cl778h)3-5/+7
Issue: PORTAL-104 Change-Id: I71651b5dbbbe397d91168d59dfbc37d4da5778ea Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-10-04Add missing POM property nexusproxyChristopher Lott (cl778h)1-47/+52
Issue: PORTAL-53 Change-Id: I87d995c734e1ec101c560d6d3eff68335ed0afeb Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-10-04Repair redirect; correct javadoc site pathChristopher Lott (cl778h)28-703/+644
[PORTAL-53] Correct path for deployment of javadoc web site [PORTAL-78] Prevent SDJ from redirecting multiples times during single signon [St164634] Tone down the logging when communicating with the Partnering Applications Add missing license headers; drop FusionLicenseImpl. Issue: PORTAL-53 PORTAL-78 Change-Id: I3f8200d8e41754ade05e3f7b38d0db6bdd5e59e8 Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-09-25Sonar Scans and Role Centralization; clean nlChristopher Lott (cl778h)46-1551/+453
PORTAL-21: centralized user role management PORTAL-72: Address Sonar Scan code issues for ONAP - mostly on raptor PORTAL-86: ONAP - Remove internal att.com usages from tests and otherfiles PORTAL-90: Add debug statements to demo app's class; no functional change Issue: PORTAL-21 PORTAL-72 PORTAL-86 PORTAL-90 Change-Id: I72a6c812009f51446330bf42bab6d3338d053805 Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-09-18Cleanup project's name in SonarJessica Wagantall1-1/+1
The name parameter in the root pom.xml should match the project name in gerrit to reflect consistency in Sonar. Change-Id: I7c6830cd059f50803713719e77f3019ed40263db Issue-id: CIMAN-65 Signed-off-by: Jessica Wagantall <jwagantall@linuxfoundation.org>
2017-09-07Adjust code for Sonar issuesChristopher Lott (cl778h)468-9701/+8317
Made non-functional updates to address static code analysis issues. Update license header with simple double-quote characters. Issue: PORTAL-72, PORTAL-90 Change-Id: Ic2c330daea07d721f0e6b350ebf03da97073f7ce Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-08-31Correct distribution management site IDs.Christopher Lott (cl778h)1-2/+2
Issue: PORTAL-90 Change-Id: I8fede5b562af873cc8fb246051117ea89d758598 Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-08-31Rename packages to org.onap in 1.4.0-SNAPSHOTChristopher Lott (cl778h)692-13727/+22818
19 - remove openecomp 72 - remediate Sonar scan issues 79 - removed unwanted left menu under Report 90 - apply approved license text Issue: PORTAL-19, PORTAL-72, PORTAL-79, PORTAL-90 Change-Id: I41a0ef5fba623d2242574bd15f2d9fb8029a496c Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-08-24Clean files of internal company web site URLs.Christopher Lott (cl778h)7-260/+12
Issue: PORTAL-86 Change-Id: I3f735ca981065af2f18dba1b07ec9d3b2cd243c5 Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-08-23Repair role-centralization features in EPSDKChristopher Lott (cl778h)14-250/+236
Issue: PORTAL-21 Change-Id: Icf276482609734d3aa24f04ae0a8135021a3d305 Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-08-18Repair centralized-role feature.Christopher Lott (cl778h)19-278/+317
Also show ONAP logo in EPSDK-app header top left. Issue: PORTAL-21, PORTAL-81 Change-Id: I46953123219d4f7a239ca6c5a05890a3769ed2ea Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-08-15DDL updates and cleanupst782s115-18692/+4369
- remove unused javascript libraries - remove contentious icons and images - Remove constraints to support Role Centralization Issue: PORTAL-21, Portal-17 Change-Id: I347accb04343d1c866c075ee716c46fea9e0d036 Signed-off-by: st782s <statta@research.att.com>
2017-08-08Revise open-source login strategy implChristopher Lott (cl778h)7-44/+105
- Get required decryption key from system.properties, not portal.properties - Add icon mapping for ION icons - Add license header on a few fiels Issue: PORTAL-64 Change-Id: I0da14178a331c3926bc4c51425f8d9a6877685bc Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-08-07Repair logback.xml config for impl prefixChristopher Lott (cl778h)1-30/+15
Prefix com.att must be used to match EELF implementation packages which use com.att.* Change-Id: Ieea6a5b48fbcf0529c980d25442194fbe8eca0cb Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-08-07Correct user/role REST API passwordChristopher Lott (cl778h)1-2/+2
Value in the database must be encrypted. The DML file had a clear-text value. Change-Id: Ia9b3070740c82a6608562e81464ba4362d4c2b42 Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-08-07Remove icons; revise role centralization.Christopher Lott (cl778h)161-2170/+76
Some icons & images are being removed due to restricted use. Made enhancements to the Role centralization code to allow multiple urls for one function code. This replaces the previous commit by Sunder Tattavarada. Issue: PORTAL-17, PORTAL-21 Change-Id: I1d9dc4f1ae20aeb26af00bb0d6384cca926f2115 Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-07-27Role centralizationst782s9-42/+46
Adding functionality to account for global roles across all applications which will be added at portal level Issue: [PORTAL-21] Change-Id: I4cdee652aaaa124abddb63410e1e45257b5bb6e0 Signed-off-by: st782s <statta@research.att.com>
2017-07-21Rename maven group ID to org.onap.portal.sdkChristopher Lott (cl778h)12-34/+38
Libraries previously used group ID org.openecomp.ecompsdkos. Also adds properties to an app property file to patch around a code problem. Issue: PORTAL-19 Change-Id: Ic2f62b1127ad3d66e24448fdb9760d0c3d023bd0 Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-07-19Add properties required by core controllers.Christopher Lott (cl778h)3-1/+4
These properties were expunged for 1610 but reappeared during the 1702 code rebasing. Code will be cleaned; restoring the properties as a stopgap fix. Issue: Portal-34 Change-Id: If39d82e7c44bd7beedad7ae3ed5a6e9a9dfa00e1 Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-07-14[Portal 21] Role management st782s29-251/+262
This push includes continuation of the changes required to handle cetralized roles,user management Change-Id: I38e9dc946ff53ac61dd3b580c335f4ad52b372f7 Signed-off-by: st782s <statta@research.att.com>
2017-07-12Revert to org.openecomp.ecompsdkos librariesChristopher Lott (cl778h)8-20/+20
The LF is awaiting TSC approval to rename repository from ecompsdkos to portal.sdk, and that blocks deployment of libraries with Maven group id org.onap.portal.sdk. Until that is approved, revert to using Maven group id org.openecomp.ecompsdkos Change-Id: I9e03b9f71562393493ce9eea41e2a6a4df921c99 Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-07-12Drop version number suffix from sdk-app war.Christopher Lott (cl778h)1-0/+2
A partial step in repairing the portal deployment process. Change-Id: I01afa08a5bfbb49013327f9b2f20358b81fee7f7 Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-07-07[PORTAL-19] Rename maven groupId to org.onapChristopher Lott (cl778h)15-25/+47
Release 1.3.0 of EP SDK uses org.onap.portal.sdk Change-Id: I5cf8e9d4382ab474267063937c53c375bd250b2d Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-07-07[PORTAL-25] Role CentralizationChristopher Lott (cl778h)85-1645/+12098
Bump EP SDK version to 1.3.0-SNAPSHOT Support Role Centralization & Common Set of Roles across All ONAP On-Boarded Applications Change-Id: Icfc1bbfddaf2c7c7176b4cf7bb7017d853c63100 Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-06-28[PORTAL-23] Update EPSDK version to Release 1.1.0release-1.1.0Christopher Lott (cl778h)10-86/+13
from SNAPSHOT Change-Id: I2cd51f965fc081bbb0389c33832b22231831b963 Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-06-27[PORTAL-15] Repair RAPTOR and role defects.Christopher Lott (cl778h)12-53/+1190
Change-Id: I1fd4049f1253801021f97ef7bcb3ffb11d8b8c76 Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-06-13[PORTAL-18] Drop LF staging repositories.Christopher Lott (cl778h)3-36/+27
Add skip-deploy configuration to epsdk-app-os. Change-Id: I3825b3d57d187c495f78dbc0f19ba0062bbd32f4 Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-06-13[PORTAL-15] RAPTOR reporting fixesChristopher Lott (cl778h)14-97/+197
Also repairs a bug in the user-management overlay screen. Ticket number all caps this time. Restore epsdk-app-os pom -SNAPSHOT suffix Change-Id: I7ef620c4ebc52259bcf474908bc4810dfd7e41e7 Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-06-07[Portal 15] Also includes Portal 8st782s10-139/+573
This enhancement included changes pertaining to the the charting and search functions of Ecomp SDK Analytics and inclusion of os module in root POM Change-Id: I4a2db5588a311a1098ee67c7d352299afb7679a0 Signed-off-by: st782s <statta@research.att.com>
2017-06-01[PORTAL-13] Also [PORTAL-6]st782s16-8476/+8573
The fixes include adding additional connection parameters to the datasource class and adding licensing text at the root level Change-Id: Ib37739f1c3eb9253363bb1546679936007be6cbc Signed-off-by: st782s <statta@research.att.com>
2017-05-24[PORTAL-10] Enhancing Drill Downst782s17-821/+1784
Changes have been made to improve the stability of Drill down capabilities. Change-Id: I6d4831b69f19f9b33cf43b65acc6dd7c5deebb67 Signed-off-by: st782s <statta@research.att.com>
2017-05-11[PORTAL-7] Features and repairs from 1707Christopher Lott (cl778h)233-2270/+2617
This merges latest changes made to Raptor and other features. Change-Id: I3a58f88e988ddadf52e1c0c782cdccd2b2ecf5e9 Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-04-27[PORTAL-7] RebaseTATTAVARADA4202-176652/+333564
This rebasing includes common libraries and common overlays projects abstraction of components Change-Id: Ia1efa4deacdc5701e6205104ac021a6c80ed60ba Signed-off-by: st782s <statta@research.att.com>
2017-04-19[PORTAL-7] code rebaseManoop Talasila1-0/+1
Change-Id: I2c9a6720f773335275b5c04607e5615c1f645670 Signed-off-by: Manoop Talasila <talasila@research.att.com>
2017-04-04javadocs site addedManoop Talasila1-5/+6
Change-Id: Ia5d2451e994a3e870cdf2f151bfce8be070f7b82 Signed-off-by: Manoop Talasila <talasila@research.att.com>
2017-03-31Merge "Point Nexus proxy to new URL"Daniel Rose2-8/+16
2017-03-29Point Nexus proxy to new URLAndrew Grimberg2-8/+16
The nexus.openecomp.org domain has been deprecated for nexus.onap.org Change-Id: I74d65e254f5d3d0aafb4307a20192a1546ec63ce Signed-off-by: Andrew Grimberg <agrimberg@linuxfoundation.org>
2017-03-29Update .gitreview with onap URLAndrew Grimberg1-1/+1
Change-Id: I3c3e490e56cd19066a2de0c98126e6c147f0795e Signed-off-by: Andrew Grimberg <agrimberg@linuxfoundation.org>
2017-03-24staging repo addedtalasila1-0/+6
Change-Id: If6b8c8471a065071db16e92b23b661c08318e3d4 Signed-off-by: talasila <talasila@research.att.com>
2017-03-22gitignore addedtalasila3-845/+14
Change-Id: I4c7297282fb2e30fe6b83f1f4997325f6f48bcda Signed-off-by: talasila <talasila@research.att.com>
2017-03-101.1.0-SNAPSHOT is updated in pomstalasila7-30/+30
Change-Id: I421ba5299aa0b9f2ae470d2e030f3a8b3219d539 Signed-off-by: talasila <talasila@research.att.com>
2017-03-07staging release 1.0.0talasila7-32/+122
Change-Id: I57a66486f2dddba807b3df6083ce4ffcf0ff7e52 Signed-off-by: talasila <talasila@research.att.com>
2017-03-07snapshot release and added staging plugintalasila7-60/+250
Change-Id: Ia2b704f400c9bc5cfdc56791e0d9239e254b426a Signed-off-by: talasila <talasila@research.att.com>
2017-02-17fixed nexus urltalasila2-118/+91
Change-Id: I2c29bebbf426cc4c37e93f4cb9ef191533acb5b8 Signed-off-by: talasila <talasila@research.att.com>