summaryrefslogtreecommitdiffstats
path: root/ecomp-sdk/epsdk-app-os
AgeCommit message (Collapse)AuthorFilesLines
2019-08-06Fix sonar issues in SecurityXssFilterburdziak1-2/+3
Change-Id: Ibb4bbb1197aed3208835a82b4dbabe2cbd2eb93a Issue-ID: PORTAL-523 Signed-off-by: burdziak <olaf.burdziakowski@nokia.com>
2019-07-23Blackduck scan fixes and PenTestst398c2-12/+12
Issue-ID: PORTAL-631 Change-Id: I606837e3aefd0bbb7ff45ac2e597d214da06e7ed Signed-off-by: st398c <st398c@research.att.com>
2019-05-29AtomicPutWithDeleteLockst398c1-1/+4
Copy Report, SQL Injection Issue-ID: PORTAL-581, PORTAL-582,PORTAL-583, PORTAL-594 Change-Id: Ibbd7a2a63f41a75109fb3916a5de1ab6a0bacfe2 Signed-off-by: st398c <st398c@research.att.com>
2019-03-28Fortify, version, Junitst398c5-1/+59
Issue-ID: PORTAL-543, PORTAL-273, PORTAL-544 Change-Id: Ib864ef78bbd534170cab90d9314f2d8943f78872 Signed-off-by: Thota, Saisree <st398c@research.att.com>
2019-02-07Merge "Remove dupe deps to silence maven warnings"2.0.5Manoop Talasila1-23/+15
2019-02-01pom, upgrade script changesKotta, Shireesha (sk434m)4-25/+24
Issue-ID: PORTAL-356 portal/SDK release 2.5.0, POM, upgrade script Change-Id: I18a2601ef4b2e4651b93cc0656185b7b88191fb7 Signed-off-by: Kotta, Shireesha (sk434m) <sk434m@att.com>
2019-01-17Remove dupe deps to silence maven warningsLott, Christopher (cl778h)1-23/+15
Issue-ID: PORTAL-502 Change-Id: Iec64281825405edb4ca404aa6275d90fc7d73613 Signed-off-by: Lott, Christopher (cl778h) <cl778h@att.com>
2018-12-28CADI Integration POM changeKotta, Shireesha (sk434m)2-2/+25
Issue-ID: PORTAL-474 Changed POM version to 2.5.0 Change-Id: Ibd72c1c4977f63b5123f76ff6bbb36f2e74172ab Signed-off-by: Kotta, Shireesha (sk434m) <sk434m@att.com>
2018-11-20CADI Integrationst782s8-6/+64
Issue-ID: PORTAL-474 System to system authorization using CADI Change-Id: I76487f8155a36fca8283669fe5e28ec7d5aec91d Signed-off-by: st782s <statta@research.att.com>
2018-11-07Bootstrapping hybrid app (Angular v1 and v6)Saravanan, Madheswaran3-2/+194
Issue-ID: PORTAL-356 Change-Id: I1ee7f6a51eb71dff2128a112afdefff5776f2ffe Change-Id: I1ee7f6a51eb71dff2128a112afdefff5776f2ffe Signed-off-by: Saravanan, Madheswaran <msaravanan@in.ibm.com>
2018-10-09Changed ecomp and AT&T referencesWelch, Lorraine (lb2391)4-19/+41
Issue-ID: PORTAL-302 Change-Id: Iec2ed9ba78ceb81f3d5dff84837697482415937d Signed-off-by: Welch, Lorraine (lb2391) <lb2391@att.com>
2018-08-27Use managed guava versionGary Wu1-6/+5
Use centrally managed guava version specified in oparent. Includes upgrade to oparent 1.2.0. This change was submitted by script and may include additional whitespace or formatting changes. Change-Id: I783c19757222675da88e4dbc655ba9042df56705 Issue-ID: INT-619 Signed-off-by: Gary Wu <gary.i.wu@huawei.com>
2018-07-11Adding User Auth and permission aaf servicesKishore Reddy, Gujja (kg811t)3-0/+61
Issue-ID: PORTAL-334 Change-Id: I2826f2a06f7d818d918ae5f45b500a8da78cec42 Signed-off-by: Kishore Reddy, Gujja (kg811t) <kg811t@research.att.com>
2018-06-26Adding Junit test filesNaveen Kumar Pitchai8-0/+874
WizardSequenceTest.java ConfigLoaderTest.java PortalAPIResponseTest.java PortalRestAPIProxyTest.java PortalTimeoutBindingListenerTest.java PortalTimeoutHandlerTest.java UserContextListenerTest.java UserSessionListenerTest.java SessionCommunicationServiceTest.java RestWebServiceClientTest.java FavoritesClientTest.java FunctionalMenuClientTest.java ExternalAppConfigTest.java ExternalAppInitializerTest.java HibernateMappingLocationsTest.java SecurityXssFilterTest.java LoginStrategyImplTest.java RegisterTest.java RegistryAdapterTest.java AdminAuthExtensionTest.java Change-Id: If4c553aea9e7f3662d13e369d818073943fbaf54 Issue-ID: PORTAL-328 Signed-off-by: Naveen Kumar Pitchai <naveenk89@in.ibm.com>
2018-06-14Junit Test Cases & RaptorsKishore Reddy, Gujja (kg811t)2-1/+2
Issue-ID: PORTAL-273. PORTAL-301 Covered JUNITS for sdk modules and RAPTOR reports fixes Change-Id: Ifaf3bf06f0ec123051a791cc8e7f10662f97a525 Signed-off-by: Kishore Reddy, Gujja (kg811t) <kg811t@research.att.com>
2018-05-29Music ver upgradeLo, WEI-TING(wl849v)1-0/+1
Issue-ID: PORTAL-293 Music toggle enable Change-Id: I72986134afaf533a086307f82d9f925db793423c Signed-off-by: Lo, WEI-TING(wl849v) <wl849v@att.com>
2018-05-04Music version upgradeLo, WEI-TING(wl849v)1-1/+1
Issue-ID: PORTAL-210 Music version upgrade Change-Id: I78e2091d132922413c704c015aad81d70e244a64 Signed-off-by: Lo, WEI-TING(wl849v) <wl849v@att.com>
2018-05-02Changes for 2.4.0-SNAPSHOTsa282w4-17/+26
Issue-ID: PORTAL-210 Included the pom changes for 2.4.0-SNAPSHOT, music and AAF changes. Change-Id: Ib1e1c2679271aa40eb3b50397724e8cdc5ffe01c Signed-off-by: sa282w <sa282w@att.com>
2018-04-24Music Pom dependencyLo, WEI-TING(wl849v)2-9/+2
Issue-ID: PORTAL-210 Music Pom dependency Change-Id: Ic4c30c9c72181cd3ff2559a90f807a6313caee7a Signed-off-by: Lo, WEI-TING(wl849v) <wl849v@att.com>
2018-04-20Replace ecomp referenceHima Elisetty18-17/+18
Issue-ID: PORTAL-19 Remove ecomp trademark Change-Id: Ic864f6cfdeeddad1e7d384abd3419ae21b832062 Signed-off-by: Hima Elisetty <hb123f@att.com>
2018-04-12Change decryption algorithmst782s1-1/+1
Issue-ID: PORTAL-252 Change-Id: I6d6c3aa976c5548ab3c37b2e14dfe004e222a456 Signed-off-by: st782s <statta@research.att.com> (cherry picked from commit 3fa57a0595442f9d17d85ad50222770db397c834)
2018-04-02Security Vunerabilitiessa282w1-5/+5
Issue-ID: PORTAL-155 Excluded beanshell dependency from epsdk-common, epsdk-core and epsdk-fw pom.xml. Change-Id: I068bd1134269a162a64710abc92aacf9cbba32d3 Signed-off-by: sa282w <sa282w@att.com>
2018-03-28Merge "2_2 DB scripts"Sunder Tattavarada3-1/+74
2018-03-27Security VulnerabilitiesLo, WEI-TING(wl849v)1-0/+6
Issue-ID: PORTAL-155 Includes Security Vulnerabilities and music jar Change-Id: Id85471555461adf2127db66ed3d4f4a3d5a06fe4 Signed-off-by: Lo, WEI-TING(wl849v) <wl849v@att.com>
2018-03-272_2 DB scriptsKotta, Shireesha (sk434m)3-1/+74
Issue-ID: PORTAL-217 Change-Id: Ib24e1fc346720a5f0fda4c0393c1861fb9f9ecc2 Signed-off-by: Kotta, Shireesha (sk434m) <sk434m@att.com>
2018-03-23Exclude Music Jar dependencyst782s1-0/+6
Issue-ID: PORTAL-210 Modified POM to include epsdk-music-jar with dependency and exclude music jar dependency Change-Id: I212284cd2081e922aaeac46031b616340d35ec06 Signed-off-by: st782s <statta@research.att.com>
2018-03-22Music Jar dependencyst782s1-1/+1
Issue-ID: PORTAL-210 Modified POM to include epsdk-music-jar with dependency Change-Id: I2b5fd64d40be3ebb95dcefae82bbd877c0c4ad2d Signed-off-by: st782s <statta@research.att.com>
2018-03-20Effort to make portal resilientLo, WEI-TING(wl849v)1-2/+2
Issue-ID: PORTAL-210 Includes music library that contatins session management Change-Id: I62da87a75a4e0aa7a94e1b5818c88993070431a4 Signed-off-by: Lo, WEI-TING(wl849v) <wl849v@att.com>
2018-03-19Effort to make portal resilientLo, WEI-TING(wl849v)5-3/+66
Issue-ID: PORTAL-210 Includes music library that contatins session management Change-Id: Icacab904e1f948068348fcc19cd77965cb5b446e Signed-off-by: Lo, WEI-TING(wl849v) <wl849v@att.com>
2018-03-06Added Junits & AAF attributes SupportKotta, Shireesha (sk434m)4-5/+82
Issue-ID: PORTAL-136 Includes JUNITS, AAF attributes support Change-Id: Id4cc9f64268017665d7245d0a10369c9b498ba2f Signed-off-by: Kotta, Shireesha (sk434m) <sk434m@att.com>
2018-02-07Added JunitsHima Elisetty4-4/+5
Issue-ID: PORTAL-136, PORTAL-188 Includes FW mode central changes Change-Id: Iba6c0d48ed768e32d1fe4700d0044eb7f3fdc482 Signed-off-by: Hima Elisetty <hbindu@research.att.com>
2018-01-26Release of SDK 2.1.0st782s2-2/+2
Issue-ID: PORTAL-145 Additionally, pwd change due to encryption algorithm change Change-Id: I595bb54199370d4fca8723d01538f822993bc9b5 Signed-off-by: st782s <statta@research.att.com>
2018-01-17Introduce JUNIT PlumbingHima Elisetty5-19/+85
Issue-ID: PORTAL-161, PORTAL-160, PORTAL-159 Includes Change in encryption and decryption algorithm Change-Id: I5f379d6d9ac25536744152ac1d61223a52f1ce7f Signed-off-by: Hima Elisetty <hbindu@research.att.com>
2018-01-03Harden codest782s5-50/+117
Issue-ID: PORTAL-145,PORTAL-119,PORTAL-118 Harden code to address SQL injecton, XSS vulnerabilities; Separate docker images for portal, sdk app and DMaaPBC ui; Missing error page Change-Id: I1818fbf86c601dd41b274729038e731fb2ec8f7d Signed-off-by: st782s <statta@research.att.com>
2017-11-28Harden codest782s7-99/+217
Issue-ID: PORTAL-145,PORTAL-119 Harden code to address SQL injecton, XSS vulnerabilities; Separate docker images for portal, sdk app and DMaaPBC ui Change-Id: I85fad4d3fcee3243207b8f0dfe21beaa41602204 Signed-off-by: st782s <statta@research.att.com>
2017-11-07Release new SDK Versionst782s2-2/+2
Issue: PORTAL-19, PORTAL-135 Includes SDK 2.1 release updates deprecating certain methods to address vulnerabilities Change-Id: Ibf105a0cf3c7d7e89eb05862c54aadfacf575d97 Signed-off-by: st782s <statta@research.att.com>
2017-10-25Repair security filtersChristopher Lott (cl778h)1-1/+1
Revise app web.xml to remove typo in Java package name. Also drop unneeded test class. Issue: PORTAL-135 Change-Id: I49662928c5eed38520e9a9c5f839385148aef0fa Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-10-20Role management; security vulnerabilities.Christopher Lott (cl778h)4-119/+153
Extend user/role management interface to allow role deletion. Add filters to defend against common web Javascript attacks. Drop Greensock code with unusable license. Use OParent in EPSDK web application. Issue: US324470, US342324, PORTAL-127 Change-Id: I3a10744fbbbdbda7c88d2b2e542e72e779c9b142 Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-10-12Switch to Mariadb connector.Christopher Lott (cl778h)2-2/+3
Issue: PORTAL-104 Change-Id: I71651b5dbbbe397d91168d59dfbc37d4da5778ea Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-10-04Repair redirect; correct javadoc site pathChristopher Lott (cl778h)3-193/+1
[PORTAL-53] Correct path for deployment of javadoc web site [PORTAL-78] Prevent SDJ from redirecting multiples times during single signon [St164634] Tone down the logging when communicating with the Partnering Applications Add missing license headers; drop FusionLicenseImpl. Issue: PORTAL-53 PORTAL-78 Change-Id: I3f8200d8e41754ade05e3f7b38d0db6bdd5e59e8 Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-09-25Sonar Scans and Role Centralization; clean nlChristopher Lott (cl778h)4-31/+136
PORTAL-21: centralized user role management PORTAL-72: Address Sonar Scan code issues for ONAP - mostly on raptor PORTAL-86: ONAP - Remove internal att.com usages from tests and otherfiles PORTAL-90: Add debug statements to demo app's class; no functional change Issue: PORTAL-21 PORTAL-72 PORTAL-86 PORTAL-90 Change-Id: I72a6c812009f51446330bf42bab6d3338d053805 Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-09-07Adjust code for Sonar issuesChristopher Lott (cl778h)9-61/+64
Made non-functional updates to address static code analysis issues. Update license header with simple double-quote characters. Issue: PORTAL-72, PORTAL-90 Change-Id: Ic2c330daea07d721f0e6b350ebf03da97073f7ce Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-08-31Rename packages to org.onap in 1.4.0-SNAPSHOTChristopher Lott (cl778h)25-447/+780
19 - remove openecomp 72 - remediate Sonar scan issues 79 - removed unwanted left menu under Report 90 - apply approved license text Issue: PORTAL-19, PORTAL-72, PORTAL-79, PORTAL-90 Change-Id: I41a0ef5fba623d2242574bd15f2d9fb8029a496c Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-08-18Repair centralized-role feature.Christopher Lott (cl778h)2-2/+4
Also show ONAP logo in EPSDK-app header top left. Issue: PORTAL-21, PORTAL-81 Change-Id: I46953123219d4f7a239ca6c5a05890a3769ed2ea Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-08-15DDL updates and cleanupst782s25-1065/+61
- remove unused javascript libraries - remove contentious icons and images - Remove constraints to support Role Centralization Issue: PORTAL-21, Portal-17 Change-Id: I347accb04343d1c866c075ee716c46fea9e0d036 Signed-off-by: st782s <statta@research.att.com>
2017-08-08Revise open-source login strategy implChristopher Lott (cl778h)5-38/+101
- Get required decryption key from system.properties, not portal.properties - Add icon mapping for ION icons - Add license header on a few fiels Issue: PORTAL-64 Change-Id: I0da14178a331c3926bc4c51425f8d9a6877685bc Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-08-07Repair logback.xml config for impl prefixChristopher Lott (cl778h)1-30/+15
Prefix com.att must be used to match EELF implementation packages which use com.att.* Change-Id: Ieea6a5b48fbcf0529c980d25442194fbe8eca0cb Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-08-07Correct user/role REST API passwordChristopher Lott (cl778h)1-2/+2
Value in the database must be encrypted. The DML file had a clear-text value. Change-Id: Ia9b3070740c82a6608562e81464ba4362d4c2b42 Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-08-07Remove icons; revise role centralization.Christopher Lott (cl778h)4-287/+16
Some icons & images are being removed due to restricted use. Made enhancements to the Role centralization code to allow multiple urls for one function code. This replaces the previous commit by Sunder Tattavarada. Issue: PORTAL-17, PORTAL-21 Change-Id: I1d9dc4f1ae20aeb26af00bb0d6384cca926f2115 Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
2017-07-21Rename maven group ID to org.onap.portal.sdkChristopher Lott (cl778h)2-7/+11
Libraries previously used group ID org.openecomp.ecompsdkos. Also adds properties to an app property file to patch around a code problem. Issue: PORTAL-19 Change-Id: Ic2f62b1127ad3d66e24448fdb9760d0c3d023bd0 Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>