Strolch
/
strolch
mirror of https://github.com/strolch-li/strolch.git
1
1
Fork 0
Code Issues Packages Projects Releases Wiki Activity
2,032 Commits 11 Branches 174 Tags 63 MiB
Commit Graph

49 Commits

Author SHA1 Message Date
Robert von Burg 574f8fc058 [Fix] fix broken test 2018-02-21 16:20:54 +01:00
Robert von Burg 4682689a81 [Minor] Show privilegeValue in AccessDeniedException 2018-02-21 10:40:14 +01:00
Robert von Burg 17aeff6672 [Major] Implemented soft migration to salt based privilege persistence 2018-02-08 12:51:01 +01:00
Robert von Burg e2aea114d3 [New] Added Crypt, to generate crypt like strings for salt and pw 2017-10-25 09:41:47 +02:00
Robert von Burg adf53dd49f [Major] Implemented SingleSignOn facility for Privilege 2017-10-06 16:59:22 +02:00
Robert von Burg 484d0a9e92 [Minor] Removed unnecessary class 2017-10-06 10:41:08 +02:00
Robert von Burg ac6af405f0 [Minor] set debug log for system user logged in 2017-10-03 11:29:50 +02:00
Robert von Burg 84d3ca4666 [Minor] Some code cleanup for JDK 9 2017-09-29 16:21:21 +02:00
Robert von Burg 2cb799dfb4 [Major] Removed the need for javax.xml.bind.* imports. Using gson 2017-09-29 15:57:21 +02:00
Robert von Burg 76e7403974 [Project] Update all dependencies and plugin dependencies in pom.xml 2017-09-28 19:11:34 +02:00
Robert von Burg c11f01afeb [Fix] Fixed Session TTL not being respected in some cases 2017-09-19 13:45:29 +02:00
Robert von Burg a27e9a2999 [Project] Set new snapshot version 1.6.0-SNAPSHOT 2017-08-24 14:11:29 +02:00
Robert von Burg 2863a5746b [Fix] Fixed wrong filtering of resources 2017-08-18 09:46:54 +02:00
Robert von Burg c79f1d6ae6 [Fix] Returning 401 if session is invalid, 403 for privilege 2017-07-26 15:15:20 +02:00
Robert von Burg e71b7b018b [Major] Now exposing StrolchTransaction.assertHasPrivilege() 
Enforcing privilege checking was a bad idea
 2017-07-25 14:12:51 +02:00
Robert von Burg 1183000520 [Major] Implemented privilege checking for DAO 
Now the PrivilegeConfig.xml must include:

	<Policies>
		<Policy name="ModelPrivilege"
class="li.strolch.runtime.privilege.ModelPrivilege" />
	</Policies>

And PrivilegeRoles.xml must include:

	<Role>
		<Privilege name="GetResource" policy="ModelPrivilege">
			<AllAllowed>true</AllAllowed>
		</Privilege>
		<Privilege name="GetOrder" policy="ModelPrivilege">
			<AllAllowed>true</AllAllowed>
		</Privilege>
		<Privilege name="GetActivity" policy="ModelPrivilege">
			<AllAllowed>true</AllAllowed>
		</Privilege>
		<Privilege name="AddResource" policy="ModelPrivilege">
			<AllAllowed>true</AllAllowed>
		</Privilege>
		<Privilege name="AddOrder" policy="ModelPrivilege">
			<AllAllowed>true</AllAllowed>
		</Privilege>
		<Privilege name="AddActivity" policy="ModelPrivilege">
			<AllAllowed>true</AllAllowed>
		</Privilege>
		<Privilege name="UpdateResource" policy="ModelPrivilege">
			<AllAllowed>true</AllAllowed>
		</Privilege>
		<Privilege name="UpdateOrder" policy="ModelPrivilege">
			<AllAllowed>true</AllAllowed>
		</Privilege>
		<Privilege name="UpdateActivity" policy="ModelPrivilege">
			<AllAllowed>true</AllAllowed>
		</Privilege>
		<Privilege name="RemoveResource" policy="ModelPrivilege">
			<AllAllowed>true</AllAllowed>
		</Privilege>
		<Privilege name="RemoveOrder" policy="ModelPrivilege">
			<AllAllowed>true</AllAllowed>
		</Privilege>
		<Privilege name="RemoveActivity" policy="ModelPrivilege">
			<AllAllowed>true</AllAllowed>
		</Privilege>
	</Role>
 2017-07-24 20:07:10 +02:00
Robert von Burg b0e623384b [Major] Refactored StringHelper.as* methods to .to* methods 2017-07-11 11:27:56 +02:00
Robert von Burg 3905a38a32 [Minor] looping in PasswordCreator 2017-05-25 22:19:08 +02:00
Robert von Burg c67025761f [Minor] Fixing broken tests 2017-05-22 14:56:45 +02:00
Robert von Burg 22b326de80 [Minor] PasswordCreator can generate random salt 2017-05-22 14:43:02 +02:00
Robert von Burg 4c9e66876a [Major] Privilege passwords are now salted! 2017-05-22 14:37:48 +02:00
Robert von Burg f87c42f399 [Project] switched tests to use logback-classic 2017-05-22 09:50:48 +02:00
Robert von Burg c0636deff2 [Fix] Fixed a concurrent modification in DefaultPrivilegeHandler 2017-05-12 16:09:58 +02:00
Robert von Burg 5eda6e57e7 [Minor] Added UserRep.hasRole() 2017-04-24 16:59:39 +02:00
Robert von Burg c835ef2735 [Minor] Cleaned up use of new FileInputStream 2017-04-11 11:04:46 +02:00
Robert von Burg 40077c5b62 [Fix broken tests] 2017-03-09 11:21:11 +01:00
Robert von Burg 8e06ccb7e1 [Minor] Don't log exceptions if user fails to auth 2017-03-09 11:07:39 +01:00
Robert von Burg 37562fdc27 [Minor] Log the different actions in DefaultPrivilegeHandler 2017-03-01 01:38:49 +01:00
Robert von Burg 061436e7ee [Project] Refactoring tests 2017-01-31 14:20:47 +01:00
Robert von Burg 905db8c297 [Project] Set new version 1.5.0-SNAPSHOT 2016-11-03 12:07:38 +01:00
Robert von Burg d7931f101e [Minor] Fixed tests 2016-09-29 17:04:46 +02:00
Robert von Burg c6506de3ab [Major] Fixed starting of all test applications 2016-09-29 16:54:48 +02:00
Robert von Burg dd227c65d0 [Major] Refactored SystemAction in privileges 
Simplified the API, removed the privileged user - now always use the
agent system user for running system actions. One method has no return
value and one has a return value. Now it is easy to perform a system
action using:

    runAsAgent(ctx -> {
      // do work			
    });

    String result = runAsAgentWithResult(ctx -> {
      // do work
      return "done";
    });

    // execute a SystemAction
    runAsAgent(action);

    // execute a SystemActionWithResult
    String result = runAsAgentWithResult(actionWithResult);
 2016-09-29 12:26:27 +02:00
Robert von Burg dc0a34dc9d [Project] Set new snapshot version 1.4.0-SNAPSHOT 2016-09-22 11:33:15 +02:00
Robert von Burg bda16a0f80 [Project] Updated project for deployment to Maven Central 2016-09-22 09:37:55 +02:00
Robert von Burg b8834b9b82 [Major] Refactored to not use JAXB in PrivilegeUsersService 2016-09-08 20:06:38 +02:00
Robert von Burg 5fbfbdc731 [New] Added MailUserChallengeHandler 2016-09-08 11:20:45 +02:00
Robert von Burg bcc0bf4a10 [Major] Now users can reset their own passwords 
- built in User Challenge feature (currently only console)
- extended REST API to allow user to initiate a challenge and then use
the challenge to authenticate for a one time change password session
 2016-09-07 14:41:16 +02:00
Robert von Burg 880bb27abc [Project] pom.xml cleanup 2016-08-07 11:45:57 +02:00
Robert von Burg 612745098b [Project] Set new SNAPSHOT version 1.3.0-SNAPSHOT 2016-07-05 09:57:44 +02:00
Robert von Burg 611a7c670a [Project] Set new SNAPSHOT version 1.2.1-SNAPSHOT 2016-07-05 09:56:56 +02:00
Robert von Burg e15b93e690 [Project] Set version 1.2.0 2016-07-05 09:52:34 +02:00
Robert von Burg b044d9a64b [Major] Moved ch.eitchnet to li.strolch 2016-06-26 11:40:35 +02:00
Robert von Burg 11ba7eb1de [Major] Moved ch.eitchnet to li.strolch 2016-06-26 11:38:41 +02:00
Robert von Burg 364cbf2965 [Minor] Adding ignores 2016-06-26 11:20:09 +02:00
Robert von Burg 9139d3dd09 [Major] Moving eitchnet projects into Strolch 2016-06-24 18:14:43 +02:00
Robert von Burg 3774c987a6 [Major] Moving eitchnet projects into Strolch 2016-06-24 18:02:08 +02:00
Robert von Burg 14197ed644 [Major] Cleaning up parents 2016-06-24 18:00:44 +02:00
Robert von Burg 12d8a71e80 [Major] Move ch.eitchnet projects to li.strolch 2016-06-24 17:42:16 +02:00