Robert von Burg
adf53dd49f
[Major] Implemented SingleSignOn facility for Privilege
2017-10-06 16:59:22 +02:00
Robert von Burg
484d0a9e92
[Minor] Removed unnecessary class
2017-10-06 10:41:08 +02:00
Robert von Burg
ac6af405f0
[Minor] set debug log for system user logged in
2017-10-03 11:29:50 +02:00
Robert von Burg
84d3ca4666
[Minor] Some code cleanup for JDK 9
2017-09-29 16:21:21 +02:00
Robert von Burg
2cb799dfb4
[Major] Removed the need for javax.xml.bind.* imports. Using gson
2017-09-29 15:57:21 +02:00
Robert von Burg
c11f01afeb
[Fix] Fixed Session TTL not being respected in some cases
2017-09-19 13:45:29 +02:00
Robert von Burg
c79f1d6ae6
[Fix] Returning 401 if session is invalid, 403 for privilege
2017-07-26 15:15:20 +02:00
Robert von Burg
e71b7b018b
[Major] Now exposing StrolchTransaction.assertHasPrivilege()
...
Enforcing privilege checking was a bad idea
2017-07-25 14:12:51 +02:00
Robert von Burg
1183000520
[Major] Implemented privilege checking for DAO
...
Now the PrivilegeConfig.xml must include:
<Policies>
<Policy name="ModelPrivilege"
class="li.strolch.runtime.privilege.ModelPrivilege" />
</Policies>
And PrivilegeRoles.xml must include:
<Role>
<Privilege name="GetResource" policy="ModelPrivilege">
<AllAllowed>true</AllAllowed>
</Privilege>
<Privilege name="GetOrder" policy="ModelPrivilege">
<AllAllowed>true</AllAllowed>
</Privilege>
<Privilege name="GetActivity" policy="ModelPrivilege">
<AllAllowed>true</AllAllowed>
</Privilege>
<Privilege name="AddResource" policy="ModelPrivilege">
<AllAllowed>true</AllAllowed>
</Privilege>
<Privilege name="AddOrder" policy="ModelPrivilege">
<AllAllowed>true</AllAllowed>
</Privilege>
<Privilege name="AddActivity" policy="ModelPrivilege">
<AllAllowed>true</AllAllowed>
</Privilege>
<Privilege name="UpdateResource" policy="ModelPrivilege">
<AllAllowed>true</AllAllowed>
</Privilege>
<Privilege name="UpdateOrder" policy="ModelPrivilege">
<AllAllowed>true</AllAllowed>
</Privilege>
<Privilege name="UpdateActivity" policy="ModelPrivilege">
<AllAllowed>true</AllAllowed>
</Privilege>
<Privilege name="RemoveResource" policy="ModelPrivilege">
<AllAllowed>true</AllAllowed>
</Privilege>
<Privilege name="RemoveOrder" policy="ModelPrivilege">
<AllAllowed>true</AllAllowed>
</Privilege>
<Privilege name="RemoveActivity" policy="ModelPrivilege">
<AllAllowed>true</AllAllowed>
</Privilege>
</Role>
2017-07-24 20:07:10 +02:00
Robert von Burg
b0e623384b
[Major] Refactored StringHelper.as* methods to .to* methods
2017-07-11 11:27:56 +02:00
Robert von Burg
3905a38a32
[Minor] looping in PasswordCreator
2017-05-25 22:19:08 +02:00
Robert von Burg
c67025761f
[Minor] Fixing broken tests
2017-05-22 14:56:45 +02:00
Robert von Burg
22b326de80
[Minor] PasswordCreator can generate random salt
2017-05-22 14:43:02 +02:00
Robert von Burg
4c9e66876a
[Major] Privilege passwords are now salted!
2017-05-22 14:37:48 +02:00
Robert von Burg
f87c42f399
[Project] switched tests to use logback-classic
2017-05-22 09:50:48 +02:00
Robert von Burg
c0636deff2
[Fix] Fixed a concurrent modification in DefaultPrivilegeHandler
2017-05-12 16:09:58 +02:00
Robert von Burg
5eda6e57e7
[Minor] Added UserRep.hasRole()
2017-04-24 16:59:39 +02:00
Robert von Burg
c835ef2735
[Minor] Cleaned up use of new FileInputStream
2017-04-11 11:04:46 +02:00
Robert von Burg
40077c5b62
[Fix broken tests]
2017-03-09 11:21:11 +01:00
Robert von Burg
8e06ccb7e1
[Minor] Don't log exceptions if user fails to auth
2017-03-09 11:07:39 +01:00
Robert von Burg
37562fdc27
[Minor] Log the different actions in DefaultPrivilegeHandler
2017-03-01 01:38:49 +01:00
Robert von Burg
061436e7ee
[Project] Refactoring tests
2017-01-31 14:20:47 +01:00
Robert von Burg
d7931f101e
[Minor] Fixed tests
2016-09-29 17:04:46 +02:00
Robert von Burg
c6506de3ab
[Major] Fixed starting of all test applications
2016-09-29 16:54:48 +02:00
Robert von Burg
dd227c65d0
[Major] Refactored SystemAction in privileges
...
Simplified the API, removed the privileged user - now always use the
agent system user for running system actions. One method has no return
value and one has a return value. Now it is easy to perform a system
action using:
runAsAgent(ctx -> {
// do work
});
String result = runAsAgentWithResult(ctx -> {
// do work
return "done";
});
// execute a SystemAction
runAsAgent(action);
// execute a SystemActionWithResult
String result = runAsAgentWithResult(actionWithResult);
2016-09-29 12:26:27 +02:00
Robert von Burg
b8834b9b82
[Major] Refactored to not use JAXB in PrivilegeUsersService
2016-09-08 20:06:38 +02:00
Robert von Burg
5fbfbdc731
[New] Added MailUserChallengeHandler
2016-09-08 11:20:45 +02:00
Robert von Burg
bcc0bf4a10
[Major] Now users can reset their own passwords
...
- built in User Challenge feature (currently only console)
- extended REST API to allow user to initiate a challenge and then use
the challenge to authenticate for a one time change password session
2016-09-07 14:41:16 +02:00
Robert von Burg
b044d9a64b
[Major] Moved ch.eitchnet to li.strolch
2016-06-26 11:40:35 +02:00
Robert von Burg
11ba7eb1de
[Major] Moved ch.eitchnet to li.strolch
2016-06-26 11:38:41 +02:00
Robert von Burg
12d8a71e80
[Major] Move ch.eitchnet projects to li.strolch
2016-06-24 17:42:16 +02:00