Strolch
/
strolch
mirror of https://github.com/strolch-li/strolch.git
1
1
Fork 0
Code Issues Packages Projects Releases Wiki Activity
3,342 Commits 11 Branches 174 Tags 63 MiB
Commit Graph

149 Commits

Author SHA1 Message Date
Robert von Burg 47dd0ec813 [Minor] handle NPE for missing role on user 2019-10-29 15:21:54 +01:00
Robert von Burg 785616428a [New] Added openSystemUserContext() and validateSystemSession() 2019-09-25 11:11:46 +02:00
Robert von Burg 4ef3ae0869 [Fix] Fixed Certificate locale not restored on reboot 2019-08-30 16:01:28 +02:00
Robert von Burg 48421bc49f [New] Added sorting of privilege persisted files (Roles, Users, internals) 2019-06-05 09:24:10 +02:00
Robert von Burg d8b4df4ca0 [Major] renamed defaultLocation to primaryLocation, added secondaryLocation 2019-05-30 15:34:59 +02:00
Robert von Burg 546c9b44bd [Fix] Fixed reading json config with new data structure 2019-04-16 11:42:44 +02:00
Robert von Burg 79ad9d3423 [New] Added an override for users to LDAP groups 2019-04-15 17:48:27 +02:00
Robert von Burg 384db5e23e [Minor] Log LDAP groups for user 2019-04-15 13:43:20 +02:00
Robert von Burg 98a45863d5 [Fix] Fixed wrong import 2019-04-15 12:23:58 +02:00
Robert von Burg d856f55eff [Fix] Fixed wrong import 2019-04-15 12:17:30 +02:00
Robert von Burg 223f7fa79e [New] Refactored LdapPrivilegeHandler to create JsonConfigLdapPrivilegeHandler 2019-04-11 15:40:26 +02:00
Robert von Burg 4b673e58e6 [Fix] Fixed broken tests 2019-04-10 17:15:38 +02:00
Robert von Burg 78c96d4351 [Fix] Fixed parsing and formatting of Locale 2019-04-10 16:44:52 +02:00
Robert von Burg 0d3acc13ff [Fix] invalidate sessions when user is removed 2019-04-04 19:27:28 +02:00
Robert von Burg 05a1b8ab22 [New] Added .getRealm(), .getEmail(), .getLocator() on Certificate, User, UserRep 2019-03-11 13:11:53 +01:00
Robert von Burg 33cfc9b9d7 [Project] Added missing secret keys 2019-03-09 20:05:41 +01:00
Robert von Burg 04c5263eeb [Major] Added request source for REST calls 2019-03-09 19:38:30 +01:00
Robert von Burg 5520180254 [New] New PrivilegeModelException sub class of PrivilegeException for REST 2019-03-07 14:27:42 +01:00
Robert von Burg 5267ff1e1c [Minor] Code cleanup in UserRep 2019-03-05 17:59:36 +01:00
Robert von Burg a3264fb99c [Minor] change logger in DefaultPrivilegeHandler 2019-02-22 17:09:17 +01:00
Robert von Burg e1326bdc95 [New] Persisting of SSO Users, enforcing SSO users have state REMOTE 2019-02-22 16:35:32 +01:00
Robert von Burg e1a1a7410e [Fix] Fixed broken test 2019-01-10 16:34:26 +01:00
Robert von Burg 292db1b4f0 [Major] Added has* methods in privilege validation 2019-01-10 16:20:40 +01:00
Robert von Burg c67858ce5e [New] Added PrivilegeContext.assertHasRole() and .assertHasAnyRole() 2019-01-07 13:55:25 +01:00
Robert von Burg 21c414ab00 [Major] runAs*() now throws Exception 2018-12-18 14:30:37 +01:00
Robert von Burg fed452c52f [Minor] Nice logging in LdapPrivilegeHandler 2018-11-20 08:21:58 +01:00
Robert von Burg fefa23b62c [Minor] log authentication failed exception 2018-11-14 15:42:45 +01:00
Robert von Burg b956c6edcd [Fix] Fixed DefaultPrivilegeHandler.detectPrivilegeConflicts for same roles 2018-10-16 18:40:45 +02:00
Robert von Burg ed1df7bc16 [Fix] Don't use locale to compare Certificate 2018-10-16 18:39:52 +02:00
Robert von Burg de8f8d7013 [New] Update existing sessions when modifying roles and users 2018-10-16 13:47:10 +02:00
Robert von Burg 038dc62d8d [New] Update existing sessions when modifying roles and users 2018-10-16 13:34:43 +02:00
Robert von Burg b6819c4b47 [Major] Removed serializable and reformatted all code 2018-10-05 09:17:13 +02:00
Robert von Burg 4f73506215 [Minor] if no LDAP data for userPrincipalName, then try with sAMAccountName 2018-10-04 15:34:30 +02:00
Robert von Burg b6d1c045ae [Minor] Log how long persistence of users takes 2018-09-28 13:29:03 +02:00
Robert von Burg 30536cb11c [New] Allow to reload sessions for LDAP users 2018-09-28 13:28:08 +02:00
Robert von Burg 9a79345e9c [New] Updated maintenance view: more info, filter by current location 2018-08-15 16:59:13 +02:00
Robert von Burg 55ff923951 [Minor] Catch all exceptions and log them in LdapPrivilegeHandler 2018-08-15 16:58:01 +02:00
Robert von Burg 27cdabae5c [Minor] fixed typo 2018-08-08 18:42:51 +02:00
Robert von Burg f4aa50b1dd [Fix] Fixed test in XmlTest 2018-07-12 14:05:29 +02:00
Robert von Burg 2eeb1518d7 [Fix] Allow local users in LdapPrivilegeHandler 2018-07-11 10:50:41 +02:00
Reto Breitenmoser 65ad19bffe [Fix] read all group names 2018-07-09 12:38:51 +02:00
Reto Breitenmoser 6deafccb33 [New] added config for privilege handler, add ldap handler 2018-07-08 13:58:37 +02:00
Robert von Burg d3375455d6 [Minor] catch exception on stop in StrolchComponents 2018-06-21 17:54:02 +02:00
Robert von Burg 710a989ce5 [Fix] throw exception after logging in StrolchSystemAction 2018-05-16 17:52:44 +02:00
Robert von Burg f8ea8998b1 [Minor] Fixed JavaDoc due to doclint errors 2018-04-04 16:02:45 +02:00
Robert von Burg 6faebf278d [Fix] Fixed broken tests 2018-03-20 13:02:35 +01:00
Robert von Burg 66ee65101a [Major] Fixed Roles REST API 2018-03-19 22:29:27 +01:00
Robert von Burg e729d16556 [Minor] Allow to change user state and roles in update of user 2018-03-19 10:44:14 +01:00
Reto Breitenmoser 208ecb6cd8 [BugFix] print out correct salt 2018-03-18 15:45:40 +01:00
Robert von Burg 7432f71d31 [Fix] synchronized DefaultPrivilegeHandler.checkCredentialsAndUserState() 2018-03-08 08:22:45 +01:00
Robert von Burg 574f8fc058 [Fix] fix broken test 2018-02-21 16:20:54 +01:00
Robert von Burg 4682689a81 [Minor] Show privilegeValue in AccessDeniedException 2018-02-21 10:40:14 +01:00
Robert von Burg 17aeff6672 [Major] Implemented soft migration to salt based privilege persistence 2018-02-08 12:51:01 +01:00
Robert von Burg e2aea114d3 [New] Added Crypt, to generate crypt like strings for salt and pw 2017-10-25 09:41:47 +02:00
Robert von Burg adf53dd49f [Major] Implemented SingleSignOn facility for Privilege 2017-10-06 16:59:22 +02:00
Robert von Burg 484d0a9e92 [Minor] Removed unnecessary class 2017-10-06 10:41:08 +02:00
Robert von Burg ac6af405f0 [Minor] set debug log for system user logged in 2017-10-03 11:29:50 +02:00
Robert von Burg 84d3ca4666 [Minor] Some code cleanup for JDK 9 2017-09-29 16:21:21 +02:00
Robert von Burg 2cb799dfb4 [Major] Removed the need for javax.xml.bind.* imports. Using gson 2017-09-29 15:57:21 +02:00
Robert von Burg 76e7403974 [Project] Update all dependencies and plugin dependencies in pom.xml 2017-09-28 19:11:34 +02:00
Robert von Burg c11f01afeb [Fix] Fixed Session TTL not being respected in some cases 2017-09-19 13:45:29 +02:00
Robert von Burg a27e9a2999 [Project] Set new snapshot version 1.6.0-SNAPSHOT 2017-08-24 14:11:29 +02:00
Robert von Burg 2863a5746b [Fix] Fixed wrong filtering of resources 2017-08-18 09:46:54 +02:00
Robert von Burg c79f1d6ae6 [Fix] Returning 401 if session is invalid, 403 for privilege 2017-07-26 15:15:20 +02:00
Robert von Burg e71b7b018b [Major] Now exposing StrolchTransaction.assertHasPrivilege() 
Enforcing privilege checking was a bad idea
 2017-07-25 14:12:51 +02:00
Robert von Burg 1183000520 [Major] Implemented privilege checking for DAO 
Now the PrivilegeConfig.xml must include:

	<Policies>
		<Policy name="ModelPrivilege"
class="li.strolch.runtime.privilege.ModelPrivilege" />
	</Policies>

And PrivilegeRoles.xml must include:

	<Role>
		<Privilege name="GetResource" policy="ModelPrivilege">
			<AllAllowed>true</AllAllowed>
		</Privilege>
		<Privilege name="GetOrder" policy="ModelPrivilege">
			<AllAllowed>true</AllAllowed>
		</Privilege>
		<Privilege name="GetActivity" policy="ModelPrivilege">
			<AllAllowed>true</AllAllowed>
		</Privilege>
		<Privilege name="AddResource" policy="ModelPrivilege">
			<AllAllowed>true</AllAllowed>
		</Privilege>
		<Privilege name="AddOrder" policy="ModelPrivilege">
			<AllAllowed>true</AllAllowed>
		</Privilege>
		<Privilege name="AddActivity" policy="ModelPrivilege">
			<AllAllowed>true</AllAllowed>
		</Privilege>
		<Privilege name="UpdateResource" policy="ModelPrivilege">
			<AllAllowed>true</AllAllowed>
		</Privilege>
		<Privilege name="UpdateOrder" policy="ModelPrivilege">
			<AllAllowed>true</AllAllowed>
		</Privilege>
		<Privilege name="UpdateActivity" policy="ModelPrivilege">
			<AllAllowed>true</AllAllowed>
		</Privilege>
		<Privilege name="RemoveResource" policy="ModelPrivilege">
			<AllAllowed>true</AllAllowed>
		</Privilege>
		<Privilege name="RemoveOrder" policy="ModelPrivilege">
			<AllAllowed>true</AllAllowed>
		</Privilege>
		<Privilege name="RemoveActivity" policy="ModelPrivilege">
			<AllAllowed>true</AllAllowed>
		</Privilege>
	</Role>
 2017-07-24 20:07:10 +02:00
Robert von Burg b0e623384b [Major] Refactored StringHelper.as* methods to .to* methods 2017-07-11 11:27:56 +02:00
Robert von Burg 3905a38a32 [Minor] looping in PasswordCreator 2017-05-25 22:19:08 +02:00
Robert von Burg c67025761f [Minor] Fixing broken tests 2017-05-22 14:56:45 +02:00
Robert von Burg 22b326de80 [Minor] PasswordCreator can generate random salt 2017-05-22 14:43:02 +02:00
Robert von Burg 4c9e66876a [Major] Privilege passwords are now salted! 2017-05-22 14:37:48 +02:00
Robert von Burg f87c42f399 [Project] switched tests to use logback-classic 2017-05-22 09:50:48 +02:00
Robert von Burg c0636deff2 [Fix] Fixed a concurrent modification in DefaultPrivilegeHandler 2017-05-12 16:09:58 +02:00
Robert von Burg 5eda6e57e7 [Minor] Added UserRep.hasRole() 2017-04-24 16:59:39 +02:00
Robert von Burg c835ef2735 [Minor] Cleaned up use of new FileInputStream 2017-04-11 11:04:46 +02:00
Robert von Burg 40077c5b62 [Fix broken tests] 2017-03-09 11:21:11 +01:00
Robert von Burg 8e06ccb7e1 [Minor] Don't log exceptions if user fails to auth 2017-03-09 11:07:39 +01:00
Robert von Burg 37562fdc27 [Minor] Log the different actions in DefaultPrivilegeHandler 2017-03-01 01:38:49 +01:00
Robert von Burg 061436e7ee [Project] Refactoring tests 2017-01-31 14:20:47 +01:00
Robert von Burg 905db8c297 [Project] Set new version 1.5.0-SNAPSHOT 2016-11-03 12:07:38 +01:00
Robert von Burg d7931f101e [Minor] Fixed tests 2016-09-29 17:04:46 +02:00
Robert von Burg c6506de3ab [Major] Fixed starting of all test applications 2016-09-29 16:54:48 +02:00
Robert von Burg dd227c65d0 [Major] Refactored SystemAction in privileges 
Simplified the API, removed the privileged user - now always use the
agent system user for running system actions. One method has no return
value and one has a return value. Now it is easy to perform a system
action using:

    runAsAgent(ctx -> {
      // do work			
    });

    String result = runAsAgentWithResult(ctx -> {
      // do work
      return "done";
    });

    // execute a SystemAction
    runAsAgent(action);

    // execute a SystemActionWithResult
    String result = runAsAgentWithResult(actionWithResult);
 2016-09-29 12:26:27 +02:00
Robert von Burg dc0a34dc9d [Project] Set new snapshot version 1.4.0-SNAPSHOT 2016-09-22 11:33:15 +02:00
Robert von Burg bda16a0f80 [Project] Updated project for deployment to Maven Central 2016-09-22 09:37:55 +02:00
Robert von Burg b8834b9b82 [Major] Refactored to not use JAXB in PrivilegeUsersService 2016-09-08 20:06:38 +02:00
Robert von Burg 5fbfbdc731 [New] Added MailUserChallengeHandler 2016-09-08 11:20:45 +02:00
Robert von Burg bcc0bf4a10 [Major] Now users can reset their own passwords 
- built in User Challenge feature (currently only console)
- extended REST API to allow user to initiate a challenge and then use
the challenge to authenticate for a one time change password session
 2016-09-07 14:41:16 +02:00
Robert von Burg 880bb27abc [Project] pom.xml cleanup 2016-08-07 11:45:57 +02:00
Robert von Burg 612745098b [Project] Set new SNAPSHOT version 1.3.0-SNAPSHOT 2016-07-05 09:57:44 +02:00
Robert von Burg 611a7c670a [Project] Set new SNAPSHOT version 1.2.1-SNAPSHOT 2016-07-05 09:56:56 +02:00
Robert von Burg e15b93e690 [Project] Set version 1.2.0 2016-07-05 09:52:34 +02:00
Robert von Burg b044d9a64b [Major] Moved ch.eitchnet to li.strolch 2016-06-26 11:40:35 +02:00
Robert von Burg 11ba7eb1de [Major] Moved ch.eitchnet to li.strolch 2016-06-26 11:38:41 +02:00
Robert von Burg 364cbf2965 [Minor] Adding ignores 2016-06-26 11:20:09 +02:00
Robert von Burg 9139d3dd09 [Major] Moving eitchnet projects into Strolch 2016-06-24 18:14:43 +02:00
Robert von Burg 3774c987a6 [Major] Moving eitchnet projects into Strolch 2016-06-24 18:02:08 +02:00
Robert von Burg 14197ed644 [Major] Cleaning up parents 2016-06-24 18:00:44 +02:00
Robert von Burg 12d8a71e80 [Major] Move ch.eitchnet projects to li.strolch 2016-06-24 17:42:16 +02:00