From 3ee69f1af0acddd1e06060ad88c0029fe7ceeaaf Mon Sep 17 00:00:00 2001 From: Michael Mokry Date: Wed, 11 Jul 2018 16:13:13 -0500 Subject: [PATCH] Upgrade Portal SDK to resolve Security Issues Upgraded version in pom to 2.3.1 Added SQL scripts from Portal to Upgrade Portal related db tables Added SQL downgrade script and license header Sorted SQL commands in upgrade script by function_cd per Jim Change-Id: Id6bef295956b6ec5b13d8fbd0006bbfe98c1c0ac Issue-ID: POLICY-918 Signed-off-by: Mike Mokry --- ONAP-SDK-APP/pom.xml | 2 +- POLICY-SDK-APP/pom.xml | 2 +- .../install/mysql/data/181002_downgrade_script.sql | 28 +++++++++ .../install/mysql/data/181002_upgrade_script.sql | 72 ++++++++++++++++++++++ 4 files changed, 102 insertions(+), 2 deletions(-) create mode 100644 packages/base/src/files/install/mysql/data/181002_downgrade_script.sql create mode 100644 packages/base/src/files/install/mysql/data/181002_upgrade_script.sql diff --git a/ONAP-SDK-APP/pom.xml b/ONAP-SDK-APP/pom.xml index d246de926..ec9bfc22d 100644 --- a/ONAP-SDK-APP/pom.xml +++ b/ONAP-SDK-APP/pom.xml @@ -29,7 +29,7 @@ war UTF-8 - 2.1.0 + 2.3.1 4.2.0.RELEASE 4.3.11.Final diff --git a/POLICY-SDK-APP/pom.xml b/POLICY-SDK-APP/pom.xml index 9af91f0f6..7017017ce 100644 --- a/POLICY-SDK-APP/pom.xml +++ b/POLICY-SDK-APP/pom.xml @@ -68,7 +68,7 @@ UTF-8 - 2.1.0 + 2.3.1 4.2.0.RELEASE 4.3.11.Final 1.2.3 diff --git a/packages/base/src/files/install/mysql/data/181002_downgrade_script.sql b/packages/base/src/files/install/mysql/data/181002_downgrade_script.sql new file mode 100644 index 000000000..a2488afd3 --- /dev/null +++ b/packages/base/src/files/install/mysql/data/181002_downgrade_script.sql @@ -0,0 +1,28 @@ +-- ============LICENSE_START======================================================= +-- ONAP Policy Engine +-- ================================================================================ +-- Copyright (C) 2018 AT&T Intellectual Property. All rights reserved. +-- ================================================================================ +-- Licensed under the Apache License, Version 2.0 (the "License"); +-- you may not use this file except in compliance with the License. +-- You may obtain a copy of the License at +-- +-- http://www.apache.org/licenses/LICENSE-2.0 +-- +-- Unless required by applicable law or agreed to in writing, software +-- distributed under the License is distributed on an "AS IS" BASIS, +-- WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +-- See the License for the specific language governing permissions and +-- limitations under the License. +-- ============LICENSE_END========================================================= +use onap_sdk; + +ALTER TABLE fn_function DROP INDEX function; + +ALTER TABLE fn_function +DROP COLUMN type; + +ALTER TABLE fn_function +DROP COLUMN action; + +commit; \ No newline at end of file diff --git a/packages/base/src/files/install/mysql/data/181002_upgrade_script.sql b/packages/base/src/files/install/mysql/data/181002_upgrade_script.sql new file mode 100644 index 000000000..022a31132 --- /dev/null +++ b/packages/base/src/files/install/mysql/data/181002_upgrade_script.sql @@ -0,0 +1,72 @@ +-- ============LICENSE_START======================================================= +-- ONAP Policy Engine +-- ================================================================================ +-- Copyright (C) 2018 AT&T Intellectual Property. All rights reserved. +-- ================================================================================ +-- Licensed under the Apache License, Version 2.0 (the "License"); +-- you may not use this file except in compliance with the License. +-- You may obtain a copy of the License at +-- +-- http://www.apache.org/licenses/LICENSE-2.0 +-- +-- Unless required by applicable law or agreed to in writing, software +-- distributed under the License is distributed on an "AS IS" BASIS, +-- WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +-- See the License for the specific language governing permissions and +-- limitations under the License. +-- ============LICENSE_END========================================================= +use onap_sdk; + +SET FOREIGN_KEY_CHECKS=0; + +alter table fn_function +add type VARCHAR(20) NOT NULL; + +alter table fn_function +add action VARCHAR(20) NOT NULL; + +ALTER TABLE fn_function +ADD CONSTRAINT function UNIQUE (FUNCTION_CD,TYPE,ACTION); + +delete from fn_function where function_cd='1'; + +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_process'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_map'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_sample'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_home'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_customer'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_reports'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_admin'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_feedback'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_help'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_logout'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_notes'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_ajax'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_customer_create'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_tab'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_test'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_task'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_task_search'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_profile'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_profile_create'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_profile_import'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_hiveconfig'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_hiveconfig_search'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_hiveconfig_create'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_doclib'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'doclib'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'doclib_admin'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_concept'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_itracker'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_itracker_admin'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_job'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_job_create'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_job_designer'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_mapreduce'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_mapreduce_create'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'menu_mapreduce_search'; +update fn_function set type = 'menu' , action = '*' where function_cd = 'view_reports'; +update fn_function set type = 'url' , action = '*' where function_cd = 'login'; +update fn_function set type = 'url' , action = '*' where function_cd = 'quantum_bd'; + +commit; \ No newline at end of file -- 2.16.6