Commit Graph

209 Commits

Author SHA1 Message Date
Martin Stockhammer 1b13cbd019 Changing to list based request validation configuration 2017-04-28 00:29:50 +02:00
olivier lamy c46c26948d a bit more details for debug
Signed-off-by: olivier lamy <olamy@apache.org>
2017-04-25 21:43:37 +10:00
Martin Stockhammer 53d0ccaaf3 [maven-release-plugin] prepare for next development iteration 2017-04-20 21:04:30 +02:00
Martin Stockhammer 966bb86695 [maven-release-plugin] prepare release redback-2.5 2017-04-20 21:04:21 +02:00
Martin Stockhammer a3ee32699b [MRM-1937] Prevent creation of wrong initial admin
Throws a error, if the admin user has the wrong name.
2017-04-14 21:01:39 +02:00
Martin Stockhammer a6ee0f8770 Fixing tests for rest services 2017-03-11 11:12:59 +01:00
Martin Stockhammer 6a6b7bb939 Adding token validation to interceptor 2017-02-12 20:47:14 +01:00
Martin Stockhammer 98c98b3979 Adding log statements 2017-02-12 18:44:55 +01:00
Martin Stockhammer 461b7e98f8 Adding validationToken to toString method 2017-02-12 17:12:41 +01:00
Martin Stockhammer de5816adf0 Adding validation token generator got login 2017-02-12 14:02:01 +01:00
Martin Stockhammer e9bc481884 Adding port check for Referer header 2017-01-30 22:42:33 +01:00
Martin Stockhammer 95f1b3e430 Implementing Header verification for REST API calls
Implementing header verification techniques mentioned in:
https://www.owasp.org/index.php/Cross-Site_Request_Forgery_(CSRF)_Prevention_Cheat_Sheet#Verifying_Same_Origin_with_Standard_Headers
2017-01-30 20:37:15 +01:00
Martin Stockhammer 2add792524 Set JPA as default and only database backend
Remove JDO dependencies and set the JPA implementations as only implementation
for database backend providers. Uses the same database as JDO before.
2016-12-30 15:33:17 +01:00
Martin Stockhammer 45b429e778 Add jpa config to test spring contexts 2016-10-25 15:52:26 +02:00
Martin Stockhammer 796af57be2 Adding parameter references in authorization resource
In certain cases the resource must be dynamically set by parameter values.
This patch allows to add a reference into the resource field of the redback
annotation '{parameterName}' that fills the resource of the permission dynamically
with the parameter value, if found.
2016-09-09 09:40:29 +02:00
olivier lamy 3d266df48d [maven-release-plugin] prepare for next development iteration 2016-05-20 12:55:38 +10:00
olivier lamy 530fa8a468 [maven-release-plugin] prepare release redback-2.4 2016-05-20 12:55:09 +10:00
olivier lamy f012c5608a fix javadoc error
Signed-off-by: olivier lamy <olamy@apache.org>
2016-05-20 12:44:56 +10:00
Eric Barboni 4e378769a8 change style and template to have a kind of enunciate 1.x style that we can use 2015-11-13 18:25:40 +01:00
Olivier Lamy 80931e6476 [maven-release-plugin] prepare for next development iteration 2015-02-22 22:20:24 +11:00
Olivier Lamy 7cc90a66af [maven-release-plugin] prepare release redback-2.3 2015-02-22 22:20:15 +11:00
Olivier Lamy 458bcde3c7 upgrade javax ws rs dependency 2015-02-07 22:57:11 +11:00
Olivier Lamy 47cd662af7 add @since 2015-02-06 23:10:16 +11:00
Olivier Lamy f77d21b589 fix unit test 2015-02-06 23:09:37 +11:00
Olivier Lamy 8edcb36b95 formatting 2015-02-05 21:35:04 +11:00
Olivier Lamy 88a2ef7a1c fix unit test 2015-02-05 21:35:04 +11:00
Olivier Lamy 0e1a45a716 make test logging working 2015-02-05 21:35:04 +11:00
Olivier Lamy 8bdcfbb8a0 fix unit test 2015-02-05 21:35:04 +11:00
Olivier Lamy 5bf9065c2f cxf upgrade to 3.0.3 2015-02-05 21:35:03 +11:00
Olivier Lamy 6ed720b192 this class is abstract 2015-01-05 22:50:37 +11:00
Olivier Lamy 4a87102292 tomcat 7.0.54 2014-07-16 09:50:05 +10:00
Olivier Lamy 2205dfe91d tomcat 7.0.53
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1583820 13f79535-47bb-0310-9956-ffa450edef68
2014-04-01 23:08:12 +00:00
Olivier Lamy 4cb59feb27 use assertj as fest-assert is not maintained anymore
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1581245 13f79535-47bb-0310-9956-ffa450edef68
2014-03-25 05:59:39 +00:00
Olivier Lamy b524b55203 [maven-release-plugin] prepare for next development iteration
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1558685 13f79535-47bb-0310-9956-ffa450edef68
2014-01-16 03:25:47 +00:00
Olivier Lamy 6cdf2e135b [maven-release-plugin] prepare release redback-2.2
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1558683 13f79535-47bb-0310-9956-ffa450edef68
2014-01-16 03:25:16 +00:00
Olivier Lamy c83903b6ce tomcat 7.0.50 tests will run faster
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1556650 13f79535-47bb-0310-9956-ffa450edef68
2014-01-08 21:59:55 +00:00
Olivier Lamy 22bb1a093e do not use cache when updating user
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1551101 13f79535-47bb-0310-9956-ffa450edef68
2013-12-16 01:26:35 +00:00
Olivier Lamy eadb1849d7 add a method to find user without using caching: jdo update need the object detach from database not a cached one
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1551098 13f79535-47bb-0310-9956-ffa450edef68
2013-12-16 01:26:26 +00:00
Olivier Lamy 061a87c1c5 cleanup
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1551084 13f79535-47bb-0310-9956-ffa450edef68
2013-12-15 23:45:46 +00:00
Olivier Lamy 7c8d917eca use last fest-assert version
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1547789 13f79535-47bb-0310-9956-ffa450edef68
2013-12-04 12:37:19 +00:00
Olivier Lamy 771b752199 fix logging error level
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1546884 13f79535-47bb-0310-9956-ffa450edef68
2013-12-02 02:56:22 +00:00
Olivier Lamy cfcc2b4d8b fix logging warn level
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1546883 13f79535-47bb-0310-9956-ffa450edef68
2013-12-02 02:56:08 +00:00
Olivier Lamy 4c65d80ad5 fix logging info level
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1546882 13f79535-47bb-0310-9956-ffa450edef68
2013-12-02 02:55:43 +00:00
Olivier Lamy 2a538f9d58 [MRM-1764] #users > edit roles -- please sort repository list for ease of use
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1546261 13f79535-47bb-0310-9956-ffa450edef68
2013-11-28 03:03:52 +00:00
Olivier Lamy ddc1d53a74 [MRM-1765] #users > edit -- please sort effective roles
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1545917 13f79535-47bb-0310-9956-ffa450edef68
2013-11-27 03:42:00 +00:00
Olivier Lamy f67b16ab15 use last tomcat version
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1537759 13f79535-47bb-0310-9956-ffa450edef68
2013-10-31 23:20:56 +00:00
Olivier Lamy ecdceb980d fix osgi metadata
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1537755 13f79535-47bb-0310-9956-ffa450edef68
2013-10-31 23:01:37 +00:00
Olivier Lamy 250d903b72 use last jackson version
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1537753 13f79535-47bb-0310-9956-ffa450edef68
2013-10-31 23:01:23 +00:00
Olivier Lamy dde101ade9 use tomcat 7.0.40
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1480879 13f79535-47bb-0310-9956-ffa450edef68
2013-05-10 05:50:06 +00:00
Olivier Lamy 48c2af9ccd [maven-release-plugin] prepare for next development iteration
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1479458 13f79535-47bb-0310-9956-ffa450edef68
2013-05-06 02:31:43 +00:00
Olivier Lamy 2ed2373b1e [maven-release-plugin] prepare release redback-2.1
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1479456 13f79535-47bb-0310-9956-ffa450edef68
2013-05-06 02:30:46 +00:00
Olivier Lamy 4a57b05074 move LdapConnection to an interface
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1477971 13f79535-47bb-0310-9956-ffa450edef68
2013-05-01 12:19:20 +00:00
Olivier Lamy 4ecba94f20 rename to default to have an interface
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1477968 13f79535-47bb-0310-9956-ffa450edef68
2013-05-01 12:17:23 +00:00
Olivier Lamy 99c3321358 add the bulk update bean
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1476987 13f79535-47bb-0310-9956-ffa450edef68
2013-04-29 12:21:28 +00:00
Olivier Lamy 3d0d471254 use a bulk update mode with passing a list of update
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1476986 13f79535-47bb-0310-9956-ffa450edef68
2013-04-29 12:21:03 +00:00
Olivier Lamy 85ea600465 log4j 2.0-beta5
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1471349 13f79535-47bb-0310-9956-ffa450edef68
2013-04-24 10:24:03 +00:00
Olivier Lamy 8d07c8bf70 as user managers are chain we must check the cause too
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1467971 13f79535-47bb-0310-9956-ffa450edef68
2013-04-15 12:37:12 +00:00
Olivier Lamy 5277876466 remove non used property
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1461875 13f79535-47bb-0310-9956-ffa450edef68
2013-03-27 22:07:47 +00:00
Olivier Lamy 63771b198c tomcat 7.0.39
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1461874 13f79535-47bb-0310-9956-ffa450edef68
2013-03-27 22:07:32 +00:00
Olivier Lamy 75b4882d44 use a more traditionnal naming convention with #default
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1452590 13f79535-47bb-0310-9956-ffa450edef68
2013-03-04 23:14:35 +00:00
Olivier Lamy b1238c6b87 a bit of debug to help debug was/Chris issue
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1450732 13f79535-47bb-0310-9956-ffa450edef68
2013-02-27 11:00:55 +00:00
Olivier Lamy 303be01cd0 tomcat 7.0.37
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1447293 13f79535-47bb-0310-9956-ffa450edef68
2013-02-18 15:07:38 +00:00
Olivier Lamy 8cdee9cde3 force bean name to prevent failure in case multiple implementations
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1442628 13f79535-47bb-0310-9956-ffa450edef68
2013-02-05 15:39:43 +00:00
Olivier Lamy b949895ed7 more unit tests
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1441488 13f79535-47bb-0310-9956-ffa450edef68
2013-02-01 15:30:59 +00:00
Olivier Lamy 75fa37a3de add more tests
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1441487 13f79535-47bb-0310-9956-ffa450edef68
2013-02-01 15:30:35 +00:00
Olivier Lamy 88be2c7375 really add test !
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1441486 13f79535-47bb-0310-9956-ffa450edef68
2013-02-01 15:30:18 +00:00
Olivier Lamy 181ce6f02c add unit test for LdapGroupMappingService
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1441485 13f79535-47bb-0310-9956-ffa450edef68
2013-02-01 15:29:58 +00:00
Olivier Lamy 39f67f0dc1 osgi metadatas
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1440669 13f79535-47bb-0310-9956-ffa450edef68
2013-01-30 21:07:12 +00:00
Olivier Lamy 93b6a7718d cleanup interface and add default implementation
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1440551 13f79535-47bb-0310-9956-ffa450edef68
2013-01-30 17:46:05 +00:00
Olivier Lamy 9086d2f5fc use a better name for the interface
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1440549 13f79535-47bb-0310-9956-ffa450edef68
2013-01-30 17:43:13 +00:00
Olivier Lamy 35533aa7fc add new services for ldap mapping via the ui
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1440548 13f79535-47bb-0310-9956-ffa450edef68
2013-01-30 17:42:45 +00:00
Olivier Lamy 51eeaee59e osgi my love
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1435206 13f79535-47bb-0310-9956-ffa450edef68
2013-01-18 15:55:17 +00:00
Olivier Lamy cf426b9c63 add timing here
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1435205 13f79535-47bb-0310-9956-ffa450edef68
2013-01-18 15:55:06 +00:00
Olivier Lamy 8ca421a01e tomcat 7.0.35
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1434043 13f79535-47bb-0310-9956-ffa450edef68
2013-01-16 17:12:20 +00:00
Olivier Lamy 17f4210d6c use userManager#configurable rather than userManager#cached
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1433462 13f79535-47bb-0310-9956-ffa450edef68
2013-01-15 15:40:02 +00:00
Olivier Lamy 843977e157 use a rbacManager#default rather than hardcoded impl to ease alias usage
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1433460 13f79535-47bb-0310-9956-ffa450edef68
2013-01-15 15:39:45 +00:00
Olivier Lamy 066e356045 [MRM-1736] map roles to ldap groups
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1430601 13f79535-47bb-0310-9956-ffa450edef68
2013-01-08 22:46:30 +00:00
Olivier Lamy 63956ea49a use a generic name to be able to override it using spring alias
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1429032 13f79535-47bb-0310-9956-ffa450edef68
2013-01-04 18:59:27 +00:00
Olivier Lamy e1c0623d31 snippet for get rest user service
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1428292 13f79535-47bb-0310-9956-ffa450edef68
2013-01-03 11:29:22 +00:00
Olivier Lamy 4dc5b15eee fix bean naming
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1427884 13f79535-47bb-0310-9956-ffa450edef68
2013-01-02 18:05:45 +00:00
Olivier Lamy 8b538cf1ad avoid toString of String
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1427139 13f79535-47bb-0310-9956-ffa450edef68
2012-12-31 14:34:21 +00:00
Olivier Lamy a522ed98fb NPE free
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1424973 13f79535-47bb-0310-9956-ffa450edef68
2012-12-21 15:32:24 +00:00
Olivier Lamy dc712ce923 isLogged return the user
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1424972 13f79535-47bb-0310-9956-ffa450edef68
2012-12-21 15:32:09 +00:00
Olivier Lamy 856e7d19ba for security reasons prevent displaying messages such "Password is Invalid for user admin"
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1423699 13f79535-47bb-0310-9956-ffa450edef68
2012-12-18 22:43:52 +00:00
Olivier Lamy 626a747eac fix javadoc due to https://jira.codehaus.org/browse/ENUNCIATE-723
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1421215 13f79535-47bb-0310-9956-ffa450edef68
2012-12-13 10:45:54 +00:00
Olivier Lamy 30c1cfa2a4 UserManagerException is now a checked Exception
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1419568 13f79535-47bb-0310-9956-ffa450edef68
2012-12-10 16:34:46 +00:00
Olivier Lamy 86a6ec5580 correctly map new field for rest services
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1418717 13f79535-47bb-0310-9956-ffa450edef68
2012-12-08 17:40:24 +00:00
Olivier Lamy 610002ab5f user now track userManagerImpl id they come from
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1418716 13f79535-47bb-0310-9956-ffa450edef68
2012-12-08 17:40:08 +00:00
Olivier Lamy 5c55300800 userConfiguration#default bean must be know declared tru an alias to avoid duplicate bean ids
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1417908 13f79535-47bb-0310-9956-ffa450edef68
2012-12-06 14:31:05 +00:00
Olivier Lamy 2907ffa101 use a more classic name for this bean userConfiguration#default
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1417782 13f79535-47bb-0310-9956-ffa450edef68
2012-12-06 09:09:45 +00:00
Olivier Lamy eef9c73382 start moving configuration keys to a constant class
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1417395 13f79535-47bb-0310-9956-ffa450edef68
2012-12-05 12:56:03 +00:00
Olivier Lamy 5d166ecce8 rid of plexus utils usage
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1417083 13f79535-47bb-0310-9956-ffa450edef68
2012-12-04 18:19:03 +00:00
Olivier Lamy 75af5e0fec authenticator do not return key so add a message field
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1416991 13f79535-47bb-0310-9956-ffa450edef68
2012-12-04 15:26:55 +00:00
Olivier Lamy dd93a29b34 if any exception must be returned in rest response
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1416990 13f79535-47bb-0310-9956-ffa450edef68
2012-12-04 15:26:25 +00:00
Olivier Lamy 86657b2894 force an implementation name to prevent issue when more than one available
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1416075 13f79535-47bb-0310-9956-ffa450edef68
2012-12-01 23:09:36 +00:00
Olivier Lamy 8bf7b14a83 extract an interface to be able to override the impl in archiva
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1414452 13f79535-47bb-0310-9956-ffa450edef68
2012-11-27 22:50:13 +00:00
Olivier Lamy b23cf34cc0 rename UserConfiguration to DefaultUserConfiguration to be able to extract an interface
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1414451 13f79535-47bb-0310-9956-ffa450edef68
2012-11-27 22:48:18 +00:00
Olivier Lamy daeecfa8a0 [MRM-1708] When using LDAP, users can still edit their details upon login.
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1412793 13f79535-47bb-0310-9956-ffa450edef68
2012-11-23 09:28:48 +00:00
Olivier Lamy 318e1f0ea6 remove this ugly Object getPrincipal
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1412684 13f79535-47bb-0310-9956-ffa450edef68
2012-11-22 21:55:21 +00:00
Olivier Lamy 663473b58d storing User in AuthenticationResult to avoid searching it again
git-svn-id: https://svn.apache.org/repos/asf/archiva/redback/redback-core/trunk@1412362 13f79535-47bb-0310-9956-ffa450edef68
2012-11-21 23:35:09 +00:00