Code Review / portal / sdk.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: ddd8720) | patch
Role management; security vulnerabilities. 87/19887/2
authorChristopher Lott (cl778h) <clott@research.att.com>
Fri, 20 Oct 2017 12:22:19 +0000 (08:22 -0400)
committerChristopher Lott (cl778h) <clott@research.att.com>
Fri, 20 Oct 2017 12:44:33 +0000 (08:44 -0400)
commite3982f6c2a13c903947a66d89e1af1ccbb161e5f
tree07db289541228dfaef258c267dd33635c33ebb34tree | snapshot
parentddd8720d597fc9053a455b10445fb253adbc4bf7commit | diff
Role management; security vulnerabilities.

Extend user/role management interface to allow role deletion.
Add filters to defend against common web Javascript attacks.
Drop Greensock code with unusable license.
Use OParent in EPSDK web application.

Issue: US324470, US342324, PORTAL-127
Change-Id: I3a10744fbbbdbda7c88d2b2e542e72e779c9b142
Signed-off-by: Christopher Lott (cl778h) <clott@research.att.com>
34 files changed:
ecomp-sdk/epsdk-analytics/src/main/java/org/onap/portalsdk/analytics/controller/ActionHandler.java diff | blob | history
ecomp-sdk/epsdk-analytics/src/main/java/org/onap/portalsdk/analytics/model/ReportHandler.java diff | blob | history
ecomp-sdk/epsdk-analytics/src/main/java/org/onap/portalsdk/analytics/model/ReportLoader.java diff | blob | history
ecomp-sdk/epsdk-analytics/src/main/java/org/onap/portalsdk/analytics/model/SearchHandler.java diff | blob | history
ecomp-sdk/epsdk-analytics/src/main/java/org/onap/portalsdk/analytics/model/base/ReportWrapper.java diff | blob | history
ecomp-sdk/epsdk-analytics/src/main/java/org/onap/portalsdk/analytics/model/definition/ReportSchedule.java diff | blob | history
ecomp-sdk/epsdk-analytics/src/main/java/org/onap/portalsdk/analytics/model/runtime/ReportFormFields.java diff | blob | history
ecomp-sdk/epsdk-analytics/src/main/java/org/onap/portalsdk/analytics/model/runtime/ReportParamValuesForPDFExcel.java diff | blob | history
ecomp-sdk/epsdk-analytics/src/main/java/org/onap/portalsdk/analytics/model/runtime/ReportRuntime.java diff | blob | history
ecomp-sdk/epsdk-analytics/src/main/java/org/onap/portalsdk/analytics/system/AppUtils.java diff | blob | history
ecomp-sdk/epsdk-analytics/src/main/java/org/onap/portalsdk/analytics/system/fusion/controller/FileServletController.java diff | blob | history
ecomp-sdk/epsdk-analytics/src/main/java/org/onap/portalsdk/analytics/system/fusion/web/RaptorControllerAsync.java diff | blob | history
ecomp-sdk/epsdk-app-common/pom.xml diff | blob | history
ecomp-sdk/epsdk-app-common/src/main/java/org/onap/portalapp/controller/core/RoleListController.java diff | blob | history
ecomp-sdk/epsdk-app-common/src/main/java/org/onap/portalapp/controller/sample/ElementModelController.java diff | blob | history
ecomp-sdk/epsdk-app-common/src/main/java/org/onap/portalapp/util/SecurityXssValidator.java [new file with mode: 0644] blob
ecomp-sdk/epsdk-app-os/README.md diff | blob | history
ecomp-sdk/epsdk-app-os/pom.xml diff | blob | history
ecomp-sdk/epsdk-app-os/src/main/java/org/onap/portalapp/filter/SecurityXssFilter.java [new file with mode: 0644] blob
ecomp-sdk/epsdk-app-os/src/main/webapp/WEB-INF/web.xml diff | blob | history
ecomp-sdk/epsdk-app-overlay/src/main/resources/ESAPI.properties [new file with mode: 0644] blob
ecomp-sdk/epsdk-app-overlay/src/main/resources/validation.properties [new file with mode: 0644] blob
ecomp-sdk/epsdk-app-overlay/src/main/webapp/app/fusion/external/b2b/js/b2b-angular/b2b-library.min.js diff | blob | history
ecomp-sdk/epsdk-core/pom.xml diff | blob | history
ecomp-sdk/epsdk-core/src/main/java/org/onap/portalsdk/core/service/ElementLinkService.java diff | blob | history
ecomp-sdk/epsdk-core/src/main/java/org/onap/portalsdk/core/service/ElementMapService.java diff | blob | history
ecomp-sdk/epsdk-core/src/main/java/org/onap/portalsdk/core/service/RoleServiceCentralizedAccess.java diff | blob | history
ecomp-sdk/epsdk-core/src/main/java/org/onap/portalsdk/core/util/SecurityCodecUtil.java [new file with mode: 0644] blob
ecomp-sdk/epsdk-core/src/main/java/org/onap/portalsdk/core/util/YamlUtils.java diff | blob | history
ecomp-sdk/epsdk-core/src/main/java/org/onap/portalsdk/core/web/support/UserUtils.java diff | blob | history
ecomp-sdk/epsdk-fw/pom.xml diff | blob | history
ecomp-sdk/epsdk-fw/src/main/java/org/onap/portalsdk/core/onboarding/rest/RestWebServiceClient.java diff | blob | history
ecomp-sdk/epsdk-fw/src/main/java/org/onap/portalsdk/core/onboarding/util/CipherUtil.java diff | blob | history
ecomp-sdk/pom.xml diff | blob | history
ARCHIVED- 2022-02-15 at the request of the project