Merge "Upgrade sanitize for security"

author Christophe Closset <cc697w@intl.att.com>

Thu, 5 Jul 2018 16:10:51 +0000 (16:10 +0000)

committer Gerrit Code Review <gerrit@onap.org>

Thu, 5 Jul 2018 16:10:51 +0000 (16:10 +0000)
author Christophe Closset <cc697w@intl.att.com>
Thu, 5 Jul 2018 16:10:51 +0000 (16:10 +0000)
committer Gerrit Code Review <gerrit@onap.org>
Thu, 5 Jul 2018 16:10:51 +0000 (16:10 +0000)
diff --git a/extra/docker/clamp/config/org.onap.clamp.keyfile b/extra/docker/clamp/config/org.onap.clamp.keyfile

new file mode 100644 (file)

index 0000000..3e131ee
--- /dev/null
+++ b/extra/docker/clamp/config/org.onap.clamp.keyfile
@@ -0,0 +1,32 @@
+Bag Attributes
+    friendlyName: clamp@clamp.onap.org
+    localKeyID: 54 69 6D 65 20 31 35 33 30 36 32 36 36 37 38 32 30 31 
+Key Attributes: <No Attributes>
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----
diff --git a/extra/docker/clamp/config/org.onap.clamp.p12 b/extra/docker/clamp/config/org.onap.clamp.p12

new file mode 100644 (file)

index 0000000..fd151a9

Binary files /dev/null and b/extra/docker/clamp/config/org.onap.clamp.p12 differ
diff --git a/extra/docker/clamp/config/truststoreONAPall.jks b/extra/docker/clamp/config/truststoreONAPall.jks

new file mode 100644 (file)

index 0000000..910f9b1

Binary files /dev/null and b/extra/docker/clamp/config/truststoreONAPall.jks differ
diff --git a/extra/docker/clamp/docker-compose.yml b/extra/docker/clamp/docker-compose.yml

index 69e4715..0821fff 100644 (file)
--- a/extra/docker/clamp/docker-compose.yml
+++ b/extra/docker/clamp/docker-compose.yml
@@ -22,6 +22,7 @@ services:
        - clamp.env
      ports:
        - "8080:8080"
+      - "8443:8443"
  
    third_party_proxy:
      image: python:2-slim
diff --git a/src/main/java/org/onap/clamp/clds/client/req/sdc/SdcCatalogServices.java b/src/main/java/org/onap/clamp/clds/client/req/sdc/SdcCatalogServices.java

index 9c94021..240094e 100644 (file)
--- a/src/main/java/org/onap/clamp/clds/client/req/sdc/SdcCatalogServices.java
+++ b/src/main/java/org/onap/clamp/clds/client/req/sdc/SdcCatalogServices.java
@@ -17,6 +17,7 @@
   * See the License for the specific language governing permissions and\r
   * limitations under the License.\r
   * ============LICENSE_END============================================\r
+ * Modifications copyright (c) 2018 Nokia\r
   * ===================================================================\r
   * \r
   */\r
@@ -227,13 +228,12 @@ public class SdcCatalogServices {
       */\r
      public List<SdcResourceBasicInfo> removeDuplicateSdcResourceBasicInfo(\r
              List<SdcResourceBasicInfo> rawCldsSdcResourceListBasicList) {\r
-        List<SdcResourceBasicInfo> cldsSdcResourceBasicInfoList = null;\r
+        List<SdcResourceBasicInfo> cldsSdcResourceBasicInfoList = new ArrayList<>();\r
          if (rawCldsSdcResourceListBasicList != null && !rawCldsSdcResourceListBasicList.isEmpty()) {\r
              // sort list\r
              Collections.sort(rawCldsSdcResourceListBasicList);\r
              // and then take only the resources with the max version (last in\r
              // the list with the same name)\r
-            cldsSdcResourceBasicInfoList = new ArrayList<>();\r
              for (int i = 1; i < rawCldsSdcResourceListBasicList.size(); i++) {\r
                  // compare name with previous - if not equal, then keep the\r
                  // previous (it's the last with that name)\r
diff --git a/src/test/java/org/onap/clamp/clds/it/SdcCatalogServicesItCase.java b/src/test/java/org/onap/clamp/clds/it/SdcCatalogServicesItCase.java

index 4a13c62..330ee60 100644 (file)
--- a/src/test/java/org/onap/clamp/clds/it/SdcCatalogServicesItCase.java
+++ b/src/test/java/org/onap/clamp/clds/it/SdcCatalogServicesItCase.java
@@ -17,14 +17,17 @@
   * See the License for the specific language governing permissions and 
   * limitations under the License.
   * ============LICENSE_END============================================
+ * Modifications copyright (c) 2018 Nokia
   * ===================================================================
   * 
   */
  
  package org.onap.clamp.clds.it;
  
+import static org.assertj.core.api.Assertions.assertThat;
  import static org.junit.Assert.assertTrue;
  
+import java.util.ArrayList;
  import java.util.LinkedList;
  import java.util.List;
  
@@ -170,6 +173,23 @@ public class SdcCatalogServicesItCase {
          assertTrue("1.0".equals(res2.getVersion()));
      }
  
+
+    @Test
+    public void removeDuplicateSdcFunctionShouldNotReturnNull(){
+        // given
+        SdcCatalogServices catalogServices = new SdcCatalogServices();
+
+        // when
+        List<SdcResourceBasicInfo> firstResult = catalogServices
+            .removeDuplicateSdcResourceBasicInfo(null);
+        List<SdcResourceBasicInfo> secondResult = catalogServices
+            .removeDuplicateSdcResourceBasicInfo(new ArrayList<>());
+
+        // then
+        assertThat(firstResult).isEmpty();
+        assertThat(secondResult).isEmpty();
+    }
+
      @Test
      public void getServiceUuidFromServiceInvariantIdTest() throws Exception {
          SdcCatalogServices spy = Mockito.spy(sdcCatalogWired);
author	Christophe Closset <cc697w@intl.att.com>
	Thu, 5 Jul 2018 16:10:51 +0000 (16:10 +0000)
committer	Gerrit Code Review <gerrit@onap.org>
	Thu, 5 Jul 2018 16:10:51 +0000 (16:10 +0000)
extra/docker/clamp/config/org.onap.clamp.keyfile	[new file with mode: 0644]	patch \| blob
extra/docker/clamp/config/org.onap.clamp.p12	[new file with mode: 0644]	patch \| blob
extra/docker/clamp/config/truststoreONAPall.jks	[new file with mode: 0644]	patch \| blob
extra/docker/clamp/docker-compose.yml		patch \| blob \| history
src/main/java/org/onap/clamp/clds/client/req/sdc/SdcCatalogServices.java		patch \| blob \| history
src/test/java/org/onap/clamp/clds/it/SdcCatalogServicesItCase.java		patch \| blob \| history