svn commit: r5769 - /release/syncope/1.1.8/
Author: ilgrosso Date: Mon Jul 7 06:39:39 2014 New Revision: 5769 Log: Creating root dir for new release Added: release/syncope/1.1.8/
svn commit: r5770 - /dev/syncope/1.1.8/ /release/syncope/1.1.8/
Author: ilgrosso Date: Mon Jul 7 06:40:38 2014 New Revision: 5770 Log: Moving the voted release artifacts to dist/release (source) Added: release/syncope/1.1.8/syncope-1.1.8-source-release.zip - copied unchanged from r5769, dev/syncope/1.1.8/syncope-1.1.8-source-release.zip release/syncope/1.1.8/syncope-1.1.8-source-release.zip.asc - copied unchanged from r5769, dev/syncope/1.1.8/syncope-1.1.8-source-release.zip.asc release/syncope/1.1.8/syncope-1.1.8-source-release.zip.md5 - copied unchanged from r5769, dev/syncope/1.1.8/syncope-1.1.8-source-release.zip.md5 release/syncope/1.1.8/syncope-1.1.8-source-release.zip.sha1 - copied unchanged from r5769, dev/syncope/1.1.8/syncope-1.1.8-source-release.zip.sha1 Removed: dev/syncope/1.1.8/syncope-1.1.8-source-release.zip dev/syncope/1.1.8/syncope-1.1.8-source-release.zip.asc dev/syncope/1.1.8/syncope-1.1.8-source-release.zip.md5 dev/syncope/1.1.8/syncope-1.1.8-source-release.zip.sha1
svn commit: r5771 - /dev/syncope/1.1.8/ /release/syncope/1.1.8/
Author: ilgrosso Date: Mon Jul 7 06:40:49 2014 New Revision: 5771 Log: Moving the voted release artifacts to dist/release (standalone) Added: release/syncope/1.1.8/syncope-standalone-1.1.8-distribution.zip - copied unchanged from r5770, dev/syncope/1.1.8/syncope-standalone-1.1.8-distribution.zip release/syncope/1.1.8/syncope-standalone-1.1.8-distribution.zip.asc - copied unchanged from r5770, dev/syncope/1.1.8/syncope-standalone-1.1.8-distribution.zip.asc release/syncope/1.1.8/syncope-standalone-1.1.8-distribution.zip.md5 - copied unchanged from r5770, dev/syncope/1.1.8/syncope-standalone-1.1.8-distribution.zip.md5 release/syncope/1.1.8/syncope-standalone-1.1.8-distribution.zip.sha1 - copied unchanged from r5770, dev/syncope/1.1.8/syncope-standalone-1.1.8-distribution.zip.sha1 Removed: dev/syncope/1.1.8/syncope-standalone-1.1.8-distribution.zip dev/syncope/1.1.8/syncope-standalone-1.1.8-distribution.zip.asc dev/syncope/1.1.8/syncope-standalone-1.1.8-distribution.zip.md5 dev/syncope/1.1.8/syncope-standalone-1.1.8-distribution.zip.sha1
svn commit: r5772 - /dev/syncope/1.1.8/
Author: ilgrosso Date: Mon Jul 7 06:41:23 2014 New Revision: 5772 Log: Cleaning up older releases Removed: dev/syncope/1.1.8/
svn commit: r5773 - /release/syncope/1.1.7/
Author: ilgrosso Date: Mon Jul 7 06:42:37 2014 New Revision: 5773 Log: Cleaning up older releases Removed: release/syncope/1.1.7/
svn commit: r1608346 - in /syncope/site: ./ 1.1.8/ apidocs/ css/ images/ img/ js/
Author: ilgrosso Date: Mon Jul 7 06:45:27 2014 New Revision: 1608346 URL: http://svn.apache.org/r1608346 Log: Promoting the staging site Added: syncope/site/apidocs/ - copied from r1608345, syncope/site/1.1.8/apidocs/ syncope/site/architecture.html - copied unchanged from r1608345, syncope/site/1.1.8/architecture.html syncope/site/building.html - copied unchanged from r1608345, syncope/site/1.1.8/building.html syncope/site/contributing.html - copied unchanged from r1608345, syncope/site/1.1.8/contributing.html syncope/site/css/ - copied from r1608345, syncope/site/1.1.8/css/ syncope/site/downloads.html - copied unchanged from r1608345, syncope/site/1.1.8/downloads.html syncope/site/features.html - copied unchanged from r1608345, syncope/site/1.1.8/features.html syncope/site/images/ - copied from r1608345, syncope/site/1.1.8/images/ syncope/site/img/ - copied from r1608345, syncope/site/1.1.8/img/ syncope/site/index.html - copied unchanged from r1608345, syncope/site/1.1.8/index.html syncope/site/integration.html - copied unchanged from r1608345, syncope/site/1.1.8/integration.html syncope/site/issue-tracking.html - copied unchanged from r1608345, syncope/site/1.1.8/issue-tracking.html syncope/site/js/ - copied from r1608345, syncope/site/1.1.8/js/ syncope/site/license.html - copied unchanged from r1608345, syncope/site/1.1.8/license.html syncope/site/mail-lists.html - copied unchanged from r1608345, syncope/site/1.1.8/mail-lists.html syncope/site/professional-services.html - copied unchanged from r1608345, syncope/site/1.1.8/professional-services.html syncope/site/release-process.html - copied unchanged from r1608345, syncope/site/1.1.8/release-process.html syncope/site/security.html - copied unchanged from r1608345, syncope/site/1.1.8/security.html syncope/site/source-repository.html - copied unchanged from r1608345, syncope/site/1.1.8/source-repository.html syncope/site/team-list.html - copied unchanged from r1608345, syncope/site/1.1.8/team-list.html Removed: syncope/site/1.1.8/
[CONF] Apache Syncope Upgrade from 1.1.7 to 1.1.8
Francesco Chicchiricco created a page: Upgrade from 1.1.7 to 1.1.8 Source changes POM Internal storage changes Source changes POM In the rootpom.xml: changeparent/versionfrom1.1.7to1.1.8 changeproperties/syncope.versionfrom1.1.7to1.1.8 In console/pom.xml: find and remove dependency groupIdorg.seleniumhq.selenium.client-drivers/groupId artifactIdselenium-java-client-driver/artifactId scopetest/scope /dependency Internal storage changes If not starting with an empty database, the following changes are needed: SYNCOPE-507 Create a new general configuration parameterlog.lastlogindate with value: true - if you want to keep the current behavior, e.g. update the last login date for each user upon successful authentication false - if you want to ignore such information (speeds up authentication performance) View Online Like Stop watching space Manage Notifications This message was sent by Atlassian Confluence 5.0.3, Team Collaboration Software
svn commit: r1608353 - in /syncope/trunk: archetype/pom.xml build-tools/pom.xml client/pom.xml common/pom.xml console/pom.xml core/pom.xml installer/pom.xml pom.xml standalone/pom.xml
Author: ilgrosso Date: Mon Jul 7 07:09:24 2014 New Revision: 1608353 URL: http://svn.apache.org/r1608353 Log: [maven-release-plugin] prepare for next development iteration Modified: syncope/trunk/archetype/pom.xml syncope/trunk/build-tools/pom.xml syncope/trunk/client/pom.xml syncope/trunk/common/pom.xml syncope/trunk/console/pom.xml syncope/trunk/core/pom.xml syncope/trunk/installer/pom.xml syncope/trunk/pom.xml syncope/trunk/standalone/pom.xml Modified: syncope/trunk/archetype/pom.xml URL: http://svn.apache.org/viewvc/syncope/trunk/archetype/pom.xml?rev=1608353r1=1608352r2=1608353view=diff == --- syncope/trunk/archetype/pom.xml (original) +++ syncope/trunk/archetype/pom.xml Mon Jul 7 07:09:24 2014 @@ -24,7 +24,7 @@ under the License. parent groupIdorg.apache.syncope/groupId artifactIdsyncope/artifactId -version1.2.0-SNAPSHOT/version +version1.3.0-SNAPSHOT/version /parent nameApache Syncope Archetype/name Modified: syncope/trunk/build-tools/pom.xml URL: http://svn.apache.org/viewvc/syncope/trunk/build-tools/pom.xml?rev=1608353r1=1608352r2=1608353view=diff == --- syncope/trunk/build-tools/pom.xml (original) +++ syncope/trunk/build-tools/pom.xml Mon Jul 7 07:09:24 2014 @@ -24,7 +24,7 @@ under the License. parent groupIdorg.apache.syncope/groupId artifactIdsyncope/artifactId -version1.2.0-SNAPSHOT/version +version1.3.0-SNAPSHOT/version /parent nameApache Syncope Build Tools/name Modified: syncope/trunk/client/pom.xml URL: http://svn.apache.org/viewvc/syncope/trunk/client/pom.xml?rev=1608353r1=1608352r2=1608353view=diff == --- syncope/trunk/client/pom.xml (original) +++ syncope/trunk/client/pom.xml Mon Jul 7 07:09:24 2014 @@ -24,7 +24,7 @@ under the License. parent groupIdorg.apache.syncope/groupId artifactIdsyncope/artifactId -version1.2.0-SNAPSHOT/version +version1.3.0-SNAPSHOT/version /parent nameApache Syncope Client/name Modified: syncope/trunk/common/pom.xml URL: http://svn.apache.org/viewvc/syncope/trunk/common/pom.xml?rev=1608353r1=1608352r2=1608353view=diff == --- syncope/trunk/common/pom.xml (original) +++ syncope/trunk/common/pom.xml Mon Jul 7 07:09:24 2014 @@ -24,7 +24,7 @@ under the License. parent groupIdorg.apache.syncope/groupId artifactIdsyncope/artifactId -version1.2.0-SNAPSHOT/version +version1.3.0-SNAPSHOT/version /parent nameApache Syncope Common/name Modified: syncope/trunk/console/pom.xml URL: http://svn.apache.org/viewvc/syncope/trunk/console/pom.xml?rev=1608353r1=1608352r2=1608353view=diff == --- syncope/trunk/console/pom.xml (original) +++ syncope/trunk/console/pom.xml Mon Jul 7 07:09:24 2014 @@ -24,7 +24,7 @@ under the License. parent groupIdorg.apache.syncope/groupId artifactIdsyncope/artifactId -version1.2.0-SNAPSHOT/version +version1.3.0-SNAPSHOT/version /parent nameApache Syncope Console/name Modified: syncope/trunk/core/pom.xml URL: http://svn.apache.org/viewvc/syncope/trunk/core/pom.xml?rev=1608353r1=1608352r2=1608353view=diff == --- syncope/trunk/core/pom.xml (original) +++ syncope/trunk/core/pom.xml Mon Jul 7 07:09:24 2014 @@ -24,7 +24,7 @@ under the License. parent groupIdorg.apache.syncope/groupId artifactIdsyncope/artifactId -version1.2.0-SNAPSHOT/version +version1.3.0-SNAPSHOT/version /parent nameApache Syncope Core/name Modified: syncope/trunk/installer/pom.xml URL: http://svn.apache.org/viewvc/syncope/trunk/installer/pom.xml?rev=1608353r1=1608352r2=1608353view=diff == --- syncope/trunk/installer/pom.xml (original) +++ syncope/trunk/installer/pom.xml Mon Jul 7 07:09:24 2014 @@ -24,7 +24,7 @@ under the License. parent groupIdorg.apache.syncope/groupId artifactIdsyncope/artifactId -version1.2.0-SNAPSHOT/version +version1.3.0-SNAPSHOT/version /parent nameApache Syncope Installer/name Modified: syncope/trunk/pom.xml URL: http://svn.apache.org/viewvc/syncope/trunk/pom.xml?rev=1608353r1=1608352r2=1608353view=diff == --- syncope/trunk/pom.xml (original) +++ syncope/trunk/pom.xml Mon Jul 7 07:09:24 2014 @@ -26,7 +26,7 @@ under the License. groupIdorg.apache.syncope/groupId artifactIdsyncope/artifactId - version1.2.0-SNAPSHOT/version + version1.3.0-SNAPSHOT/version packagingpom/packaging parent
svn commit: r1608351 - in /syncope/trunk: common/pom.xml console/pom.xml core/pom.xml pom.xml
Author: ilgrosso
Date: Mon Jul 7 07:09:13 2014
New Revision: 1608351
URL: http://svn.apache.org/r1608351
Log:
[maven-release-plugin] prepare branch 1_2_X
Modified:
syncope/trunk/common/pom.xml
syncope/trunk/console/pom.xml
syncope/trunk/core/pom.xml
syncope/trunk/pom.xml
Modified: syncope/trunk/common/pom.xml
URL:
http://svn.apache.org/viewvc/syncope/trunk/common/pom.xml?rev=1608351r1=1608350r2=1608351view=diff
==
--- syncope/trunk/common/pom.xml (original)
+++ syncope/trunk/common/pom.xml Mon Jul 7 07:09:13 2014
@@ -183,7 +183,7 @@ under the License.
namespacePrefixsyncope/namespacePrefix
addResourceAndMethodIdstrue/addResourceAndMethodIds
linkAnyMediaTypeToXmlSchematrue/linkAnyMediaTypeToXmlSchema
- classResourceNames/
+ classResourceNames /
basePackagesorg.apache.syncope.common.services/basePackages
docProviderorg.apache.cxf.maven_plugin.javatowadl.ResourceMapJavaDocProvider/docProvider
attachWadltrue/attachWadl
Modified: syncope/trunk/console/pom.xml
URL:
http://svn.apache.org/viewvc/syncope/trunk/console/pom.xml?rev=1608351r1=1608350r2=1608351view=diff
==
--- syncope/trunk/console/pom.xml (original)
+++ syncope/trunk/console/pom.xml Mon Jul 7 07:09:13 2014
@@ -213,40 +213,33 @@ under the License.
phaseprocess-resources/phase
configuration
target
-unzip
src=${settings.localRepository}/org/activiti/activiti-webapp-explorer2/${activiti.version}/activiti-webapp-explorer2-${activiti.version}.war
-
dest=${project.build.directory}/activiti-webapp-explorer2/
+unzip
src=${settings.localRepository}/org/activiti/activiti-webapp-explorer2/${activiti.version}/activiti-webapp-explorer2-${activiti.version}.war
dest=${project.build.directory}/activiti-webapp-explorer2 /
-mkdir dir=${activiti-modeler.directory}/
+mkdir dir=${activiti-modeler.directory} /
-mkdir dir=${activiti-modeler.directory}/editor/
+mkdir dir=${activiti-modeler.directory}/editor /
copy todir=${activiti-modeler.directory}/editor
fileset
dir=${project.build.directory}/activiti-webapp-explorer2/editor
-exclude name=oryx.js/
+exclude name=oryx.js /
/fileset
/copy
-copy
file=${project.build.directory}/activiti-webapp-explorer2/WEB-INF/classes/plugins.xml
- todir=${activiti-modeler.directory}/editor/
-copy
file=${project.build.directory}/activiti-webapp-explorer2/WEB-INF/classes/stencilset.json
- todir=${activiti-modeler.directory}/editor/
+copy
file=${project.build.directory}/activiti-webapp-explorer2/WEB-INF/classes/plugins.xml
todir=${activiti-modeler.directory}/editor /
+copy
file=${project.build.directory}/activiti-webapp-explorer2/WEB-INF/classes/stencilset.json
todir=${activiti-modeler.directory}/editor /
-mkdir dir=${activiti-modeler.directory}/explorer/
+mkdir dir=${activiti-modeler.directory}/explorer /
copy todir=${activiti-modeler.directory}/explorer
- fileset
dir=${project.build.directory}/activiti-webapp-explorer2/explorer/
+ fileset
dir=${project.build.directory}/activiti-webapp-explorer2/explorer /
/copy
-mkdir dir=${activiti-modeler.directory}/libs/
+mkdir dir=${activiti-modeler.directory}/libs /
copy todir=${activiti-modeler.directory}/libs
- fileset
dir=${project.build.directory}/activiti-webapp-explorer2/libs/
+ fileset
dir=${project.build.directory}/activiti-webapp-explorer2/libs /
/copy
-fixcrlf
srcdir=${project.build.directory}/activiti-webapp-explorer2/editor/
- includes=oryx.debug.js
- eol=unix/
-patch
patchfile=${basedir}/src/main/resources/oryx.debug.js.patch
-
originalfile=${project.build.directory}/activiti-webapp-explorer2/editor/oryx.debug.js
-
destfile=${activiti-modeler.directory}/editor/oryx.debug.js/
+fixcrlf
srcdir=${project.build.directory}/activiti-webapp-explorer2/editor/
includes=oryx.debug.js eol=unix /
+patch
patchfile=${basedir}/src/main/resources/oryx.debug.js.patch
originalfile=${project.build.directory}/activiti-webapp-explorer2/editor/oryx.debug.js
svn commit: r1608352 - /syncope/branches/1_2_X/
Author: ilgrosso Date: Mon Jul 7 07:09:18 2014 New Revision: 1608352 URL: http://svn.apache.org/r1608352 Log: [maven-release-plugin] copy for branch 1_2_X Added: syncope/branches/1_2_X/ (props changed) - copied from r1608351, syncope/trunk/ Propchange: syncope/branches/1_2_X/ -- --- svn:ignore (added) +++ svn:ignore Mon Jul 7 07:09:18 2014 @@ -0,0 +1,6 @@ +target +.subversion +.settings +.project +.svn-prop.tmp.swp +.pom.xml.swp Propchange: syncope/branches/1_2_X/ -- --- svn:mergeinfo (added) +++ svn:mergeinfo Mon Jul 7 07:09:18 2014 @@ -0,0 +1,12 @@ +/incubator/syncope/branches/0_1_X:1246484-1246581 +/incubator/syncope/branches/0_2_X:1246657-1246688 +/incubator/syncope/branches/0_5_X:1246875-1246986 +/incubator/syncope/branches/0_6_X:1247008-1247042 +/incubator/syncope/branches/0_7_EA:1247056-1247077 +/incubator/syncope/branches/0_7_X:1247257-1247396 +/incubator/syncope/branches/1_0_X:1367153-1412627 +/incubator/syncope/tags/syncope-0.1:1246486-1246488 +/incubator/syncope/trunk:1247317-1247363,1405295-1412627 +/syncope/branches/1_0_X:1412628-1522793 +/syncope/branches/1_1_X:1464359-1607404 +/syncope/trunk:1412628-1420167
svn commit: r1608365 - /syncope/branches/1_1_X/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java
Author: ilgrosso
Date: Mon Jul 7 08:40:23 2014
New Revision: 1608365
URL: http://svn.apache.org/r1608365
Log:
[SYNCOPE-531] Changes are fine - provided small optimizations
Modified:
syncope/branches/1_1_X/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java
Modified:
syncope/branches/1_1_X/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java
URL:
http://svn.apache.org/viewvc/syncope/branches/1_1_X/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java?rev=1608365r1=1608364r2=1608365view=diff
==
---
syncope/branches/1_1_X/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java
(original)
+++
syncope/branches/1_1_X/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java
Mon Jul 7 08:40:23 2014
@@ -120,13 +120,12 @@ public class SyncopeAuthenticationProvid
authentication.getCredentials().toString(),
user.getCipherAlgorithm(),
user.getPassword());
+
+updateLoginAttributes(user, authenticated);
}
}
-updateLoginAttributes(user, authenticated);
-
UsernamePasswordAuthenticationToken token;
-
if (authenticated) {
token = new UsernamePasswordAuthenticationToken(
authentication.getPrincipal(),
@@ -148,7 +147,6 @@ public class SyncopeAuthenticationProvid
LOG.debug(User {} successfully authenticated, with roles {},
authentication.getPrincipal(), token.getAuthorities());
-
} else {
auditManager.audit(
AuditElements.EventCategoryType.REST,
@@ -168,31 +166,28 @@ public class SyncopeAuthenticationProvid
return token;
}
-
+
private void updateLoginAttributes(SyncopeUser user, boolean
authenticated) {
-
- if (user != null) {
- boolean userModified = false;
-
- if (authenticated) {
- if (Boolean.valueOf(confDAO.find(log.lastlogindate,
Boolean.toString(true)).getValue())) {
- user.setLastLoginDate(new Date());
- userModified = true;
- }
-
- if (user.getFailedLogins() != 0) {
- user.setFailedLogins(0);
- userModified = true;
- }
- } else {
- user.setFailedLogins(user.getFailedLogins() + 1);
- userModified = true;
- }
-
- if (userModified) {
- userDAO.save(user);
- }
- }
+boolean userModified = false;
+
+if (authenticated) {
+if (Boolean.valueOf(confDAO.find(log.lastlogindate,
Boolean.toString(true)).getValue())) {
+user.setLastLoginDate(new Date());
+userModified = true;
+}
+
+if (user.getFailedLogins() != 0) {
+user.setFailedLogins(0);
+userModified = true;
+}
+} else {
+user.setFailedLogins(user.getFailedLogins() + 1);
+userModified = true;
+}
+
+if (userModified) {
+userDAO.save(user);
+}
}
protected boolean authenticate(final String password, final
CipherAlgorithm cipherAlgorithm,
svn commit: r1608371 - /syncope/branches/1_2_X/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java
Author: ilgrosso
Date: Mon Jul 7 08:54:30 2014
New Revision: 1608371
URL: http://svn.apache.org/r1608371
Log:
[SYNCOPE-137] Merge from 1_1_X
Modified:
syncope/branches/1_2_X/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java
Modified:
syncope/branches/1_2_X/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java
URL:
http://svn.apache.org/viewvc/syncope/branches/1_2_X/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java?rev=1608371r1=1608370r2=1608371view=diff
==
---
syncope/branches/1_2_X/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java
(original)
+++
syncope/branches/1_2_X/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java
Mon Jul 7 08:54:30 2014
@@ -22,9 +22,7 @@ import java.util.Collections;
import java.util.Date;
import java.util.Iterator;
import java.util.Set;
-
import javax.annotation.Resource;
-
import org.apache.syncope.common.types.AttributableType;
import org.apache.syncope.common.types.AuditElements;
import org.apache.syncope.common.types.AuditElements.Result;
@@ -144,18 +142,17 @@ public class SyncopeAuthenticationProvid
}
CAttr authStatuses = confDAO.find(authentication.statuses);
-if (authStatuses != null) {
-if
(!authStatuses.getValuesAsStrings().contains(user.getStatus())) {
-throw new DisabledException(User +
user.getUsername() + not allowed to authenticate);
-}
+if (authStatuses != null
!authStatuses.getValuesAsStrings().contains(user.getStatus())) {
+throw new DisabledException(User + user.getUsername() +
not allowed to authenticate);
}
authenticated = authenticate(user,
authentication.getCredentials().toString());
+
+updateLoginAttributes(user, authenticated);
}
}
UsernamePasswordAuthenticationToken token;
-
if (authenticated) {
token = new UsernamePasswordAuthenticationToken(
authentication.getPrincipal(),
@@ -177,20 +174,7 @@ public class SyncopeAuthenticationProvid
LOG.debug(User {} successfully authenticated, with roles {},
authentication.getPrincipal(), token.getAuthorities());
-
-if (user != null confDAO.find(log.lastlogindate,
Boolean.toString(true)).
-getValues().get(0).getBooleanValue()) {
-
-user.setLastLoginDate(new Date());
-user.setFailedLogins(0);
-userDAO.save(user);
-}
} else {
-if (user != null) {
-user.setFailedLogins(user.getFailedLogins() + 1);
-userDAO.save(user);
-}
-
auditManager.audit(
AuditElements.EventCategoryType.REST,
AuthenticationController,
@@ -210,6 +194,29 @@ public class SyncopeAuthenticationProvid
return token;
}
+private void updateLoginAttributes(SyncopeUser user, boolean
authenticated) {
+boolean userModified = false;
+
+if (authenticated) {
+if (confDAO.find(log.lastlogindate,
Boolean.toString(true)).getValues().get(0).getBooleanValue()) {
+user.setLastLoginDate(new Date());
+userModified = true;
+}
+
+if (user.getFailedLogins() != 0) {
+user.setFailedLogins(0);
+userModified = true;
+}
+} else {
+user.setFailedLogins(user.getFailedLogins() + 1);
+userModified = true;
+}
+
+if (userModified) {
+userDAO.save(user);
+}
+}
+
protected SetExternalResource getPassthroughResources(final SyncopeUser
user) {
SetExternalResource result = null;
@@ -244,7 +251,7 @@ public class SyncopeAuthenticationProvid
result.retainAll(global.getResources());
}
}
-
+
if (result == null) {
result = Collections.emptySet();
}
@@ -259,7 +266,7 @@ public class SyncopeAuthenticationProvid
final AttributableUtil attrUtil =
AttributableUtil.getInstance(AttributableType.USER);
for (IteratorExternalResource itor =
getPassthroughResources(user).iterator();
itor.hasNext() !authenticated;) {
-
+
ExternalResource resource = itor.next();
String accountId = null;
try {
svn commit: r1608372 - in /syncope/branches/1_2_X: ./ CHANGES src/site/xdoc/downloads.xml
Author: ilgrosso Date: Mon Jul 7 08:54:56 2014 New Revision: 1608372 URL: http://svn.apache.org/r1608372 Log: Merge from 1_1_X Modified: syncope/branches/1_2_X/ (props changed) syncope/branches/1_2_X/CHANGES syncope/branches/1_2_X/src/site/xdoc/downloads.xml Propchange: syncope/branches/1_2_X/ -- Merged /syncope/branches/1_1_X:r1607405-1608365 Modified: syncope/branches/1_2_X/CHANGES URL: http://svn.apache.org/viewvc/syncope/branches/1_2_X/CHANGES?rev=1608372r1=1608371r2=1608372view=diff == --- syncope/branches/1_2_X/CHANGES (original) +++ syncope/branches/1_2_X/CHANGES Mon Jul 7 08:54:56 2014 @@ -2,10 +2,30 @@ Apache Syncope - CHANGES Licensed under Apache License 2.0 - http://www.apache.org/licenses/LICENSE-2.0 +Release Notes - Syncope - Version 1.1.8 + +** Bug +* [SYNCOPE-499] - Deletion of role set as parent role in template generates exception +* [SYNCOPE-500] - Wrong (unwanted) derived attribute insertion addition in membership modal page +* [SYNCOPE-501] - Virtual attribute propagation not working when updating only virtual attributes +* [SYNCOPE-504] - Sync/Push actions shouldn't be executed in dryrun +* [SYNCOPE-509] - In Task page after change of number of rows (to display) is erroneously added a column to tasks table +* [SYNCOPE-512] - If there are no roles in edit user modal page is possible to create membership between root (fake) role and user +* [SYNCOPE-515] - Bad integration test causes role ownership conflicts + +** Improvement +* [SYNCOPE-485] - Upgrade to Activiti 5.15.1 +* [SYNCOPE-486] - Update Selenium test configuration +* [SYNCOPE-507] - User login date conditional logging +* [SYNCOPE-511] - Enhance synchronization report information +* [SYNCOPE-519] - Report default values for connector properties +* [SYNCOPE-520] - Move reset sync token to resource actions + Release Notes - Syncope - Version 1.1.7 ** Bug * [SYNCOPE-484] - Reports and Content export fails over HTTPS connection + ** Improvement * [SYNCOPE-487] - make Velocity tools available in templates for notifications Modified: syncope/branches/1_2_X/src/site/xdoc/downloads.xml URL: http://svn.apache.org/viewvc/syncope/branches/1_2_X/src/site/xdoc/downloads.xml?rev=1608372r1=1608371r2=1608372view=diff == --- syncope/branches/1_2_X/src/site/xdoc/downloads.xml (original) +++ syncope/branches/1_2_X/src/site/xdoc/downloads.xml Mon Jul 7 08:54:56 2014 @@ -57,8 +57,8 @@ under the License. /section section name=Current Releases - subsection name=1.1.7 Ad libitum -pRelease date: Apr 11th, 2014/p + subsection name=1.1.8 Ad libitum +pRelease date: Jul 3rd, 2014/p p a href=https://cwiki.apache.org/confluence/display/SYNCOPE/Ad+libitum;Release notes/a /p @@ -72,22 +72,22 @@ under the License. tbody tr td -a href=http://www.apache.org/dyn/closer.cgi/syncope/1.1.7/syncope-1.1.7-source-release.zip;syncope-1.1.7-source-release.zip/a +a href=http://www.apache.org/dyn/closer.cgi/syncope/1.1.8/syncope-1.1.8-source-release.zip;syncope-1.1.8-source-release.zip/a /td td -a href=http://www.apache.org/dist/syncope/1.1.7/syncope-1.1.7-source-release.zip.asc;asc/a -a href=http://www.apache.org/dist/syncope/1.1.7/syncope-1.1.7-source-release.zip.md5;md5/a -a href=http://www.apache.org/dist/syncope/1.1.7/syncope-1.1.7-source-release.zip.sha1;sha1/a +a href=http://www.apache.org/dist/syncope/1.1.8/syncope-1.1.8-source-release.zip.asc;asc/a +a href=http://www.apache.org/dist/syncope/1.1.8/syncope-1.1.8-source-release.zip.md5;md5/a +a href=http://www.apache.org/dist/syncope/1.1.8/syncope-1.1.8-source-release.zip.sha1;sha1/a /td /tr tr td -a href=http://www.apache.org/dyn/closer.cgi/syncope/1.1.7/syncope-standalone-1.1.7-distribution.zip;syncope-standalone-1.1.7-distribution.zip/a +a href=http://www.apache.org/dyn/closer.cgi/syncope/1.1.8/syncope-standalone-1.1.8-distribution.zip;syncope-standalone-1.1.8-distribution.zip/a /td td -a href=http://www.apache.org/dist/syncope/1.1.7/syncope-standalone-1.1.7-distribution.zip.asc;asc/a -a
svn propchange: r1608371 - svn:log
Author: ilgrosso Revision: 1608371 Modified property: svn:log Modified: svn:log at Mon Jul 7 08:59:29 2014 -- --- svn:log (original) +++ svn:log Mon Jul 7 08:59:29 2014 @@ -1 +1 @@ -[SYNCOPE-137] Merge from 1_1_X +[SYNCOPE-531] Merge from 1_1_X
svn commit: r1608386 - in /syncope/trunk/installer/src/main: java/org/apache/syncope/installer/containers/ java/org/apache/syncope/installer/containers/jboss/ java/org/apache/syncope/installer/files/
Author: massi
Date: Mon Jul 7 09:38:18 2014
New Revision: 1608386
URL: http://svn.apache.org/r1608386
Log:
Fixed #SYNCOPE-532
Added:
syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/AbstractContainer.java
Modified:
syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/Glassfish.java
syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/Tomcat.java
syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/jboss/JBoss.java
syncope/trunk/installer/src/main/java/org/apache/syncope/installer/files/Pom.java
syncope/trunk/installer/src/main/java/org/apache/syncope/installer/processes/ArchetypeProcess.java
syncope/trunk/installer/src/main/java/org/apache/syncope/installer/processes/ContainerProcess.java
syncope/trunk/installer/src/main/resources/izpack/install.xml
syncope/trunk/installer/src/main/resources/izpack/userInputSpec.xml
Added:
syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/AbstractContainer.java
URL:
http://svn.apache.org/viewvc/syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/AbstractContainer.java?rev=1608386view=auto
==
---
syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/AbstractContainer.java
(added)
+++
syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/AbstractContainer.java
Mon Jul 7 09:38:18 2014
@@ -0,0 +1,27 @@
+/*
+ * Licensed to the Apache Software Foundation (ASF) under one
+ * or more contributor license agreements. See the NOTICE file
+ * distributed with this work for additional information
+ * regarding copyright ownership. The ASF licenses this file
+ * to you under the Apache License, Version 2.0 (the
+ * License); you may not use this file except in compliance
+ * with the License. You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing,
+ * software distributed under the License is distributed on an
+ * AS IS BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ * KIND, either express or implied. See the License for the
+ * specific language governing permissions and limitations
+ * under the License.
+ */
+package org.apache.syncope.installer.containers;
+
+public abstract class AbstractContainer {
+
+protected static final String CORE_RELATIVE_PATH =
%s/%s/core/target/syncope.war;
+
+protected static final String CONSOLE_RELATIVE_PATH =
%s/%s/console/target/syncope-console.war;
+
+}
Modified:
syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/Glassfish.java
URL:
http://svn.apache.org/viewvc/syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/Glassfish.java?rev=1608386r1=1608385r2=1608386view=diff
==
---
syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/Glassfish.java
(original)
+++
syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/Glassfish.java
Mon Jul 7 09:38:18 2014
@@ -18,13 +18,28 @@
*/
package org.apache.syncope.installer.containers;
-public class Glassfish {
+public class Glassfish extends AbstractContainer {
-public static final String deploySyncopeCore
-= %s/%s/core/target/syncope.war;
+private final String installPath;
-public static final String deploySyncopeConsole
-= %s/%s/console/target/syncope-console.war;
+private final String artifactId;
+
+public Glassfish(final String installPath, final String artifactId) {
+this.installPath = installPath;
+this.artifactId = artifactId;
+}
+
+public String deployCore() {
+return deploy(CORE_RELATIVE_PATH);
+}
+
+public String deployConsole() {
+return deploy(CONSOLE_RELATIVE_PATH);
+}
+
+public String deploy(final String what) {
+return String.format(what, installPath, artifactId);
+}
public static final String CREATE_JAVA_OPT_COMMAND = /bin/asadmin
create-jvm-options
+
-Dcom.sun.enterprise.overrideablejavaxpackages=javax.ws.rs,javax.ws.rs.core,javax.ws.rs.ext;
Modified:
syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/Tomcat.java
URL:
http://svn.apache.org/viewvc/syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/Tomcat.java?rev=1608386r1=1608385r2=1608386view=diff
==
---
syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/Tomcat.java
(original)
+++
syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/Tomcat.java
Mon Jul 7 09:38:18 2014
@@ -23,16 +23,16 @@ import
svn commit: r1608387 - in /syncope/branches/1_2_X/installer: ./ src/main/java/org/apache/syncope/installer/containers/ src/main/java/org/apache/syncope/installer/containers/jboss/ src/main/java/org/ap
Author: massi
Date: Mon Jul 7 09:39:48 2014
New Revision: 1608387
URL: http://svn.apache.org/r1608387
Log:
Fixed #SYNCOPE-532
Added:
syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/containers/AbstractContainer.java
Modified:
syncope/branches/1_2_X/installer/pom.xml
syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/containers/Glassfish.java
syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/containers/Tomcat.java
syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/containers/jboss/JBoss.java
syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/files/Pom.java
syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/processes/ArchetypeProcess.java
syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/processes/ContainerProcess.java
syncope/branches/1_2_X/installer/src/main/resources/izpack/install.xml
syncope/branches/1_2_X/installer/src/main/resources/izpack/userInputSpec.xml
Modified: syncope/branches/1_2_X/installer/pom.xml
URL:
http://svn.apache.org/viewvc/syncope/branches/1_2_X/installer/pom.xml?rev=1608387r1=1608386r2=1608387view=diff
==
--- syncope/branches/1_2_X/installer/pom.xml (original)
+++ syncope/branches/1_2_X/installer/pom.xml Mon Jul 7 09:39:48 2014
@@ -24,7 +24,7 @@ under the License.
parent
groupIdorg.apache.syncope/groupId
artifactIdsyncope/artifactId
-version1.2.0-SNAPSHOT/version
+version1.3.0-SNAPSHOT/version
/parent
nameApache Syncope Installer/name
Added:
syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/containers/AbstractContainer.java
URL:
http://svn.apache.org/viewvc/syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/containers/AbstractContainer.java?rev=1608387view=auto
==
---
syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/containers/AbstractContainer.java
(added)
+++
syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/containers/AbstractContainer.java
Mon Jul 7 09:39:48 2014
@@ -0,0 +1,27 @@
+/*
+ * Licensed to the Apache Software Foundation (ASF) under one
+ * or more contributor license agreements. See the NOTICE file
+ * distributed with this work for additional information
+ * regarding copyright ownership. The ASF licenses this file
+ * to you under the Apache License, Version 2.0 (the
+ * License); you may not use this file except in compliance
+ * with the License. You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing,
+ * software distributed under the License is distributed on an
+ * AS IS BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ * KIND, either express or implied. See the License for the
+ * specific language governing permissions and limitations
+ * under the License.
+ */
+package org.apache.syncope.installer.containers;
+
+public abstract class AbstractContainer {
+
+protected static final String CORE_RELATIVE_PATH =
%s/%s/core/target/syncope.war;
+
+protected static final String CONSOLE_RELATIVE_PATH =
%s/%s/console/target/syncope-console.war;
+
+}
Modified:
syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/containers/Glassfish.java
URL:
http://svn.apache.org/viewvc/syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/containers/Glassfish.java?rev=1608387r1=1608386r2=1608387view=diff
==
---
syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/containers/Glassfish.java
(original)
+++
syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/containers/Glassfish.java
Mon Jul 7 09:39:48 2014
@@ -18,13 +18,28 @@
*/
package org.apache.syncope.installer.containers;
-public class Glassfish {
+public class Glassfish extends AbstractContainer {
-public static final String deploySyncopeCore
-= %s/%s/core/target/syncope.war;
+private final String installPath;
-public static final String deploySyncopeConsole
-= %s/%s/console/target/syncope-console.war;
+private final String artifactId;
+
+public Glassfish(final String installPath, final String artifactId) {
+this.installPath = installPath;
+this.artifactId = artifactId;
+}
+
+public String deployCore() {
+return deploy(CORE_RELATIVE_PATH);
+}
+
+public String deployConsole() {
+return deploy(CONSOLE_RELATIVE_PATH);
+}
+
+public String deploy(final String what) {
+return String.format(what, installPath,
svn commit: r1608388 - in /syncope/trunk: ./ CHANGES core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java src/site/xdoc/downloads.xml
Author: ilgrosso
Date: Mon Jul 7 09:41:20 2014
New Revision: 1608388
URL: http://svn.apache.org/r1608388
Log:
Merge from 1_2_X
Modified:
syncope/trunk/ (props changed)
syncope/trunk/CHANGES
syncope/trunk/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java
syncope/trunk/src/site/xdoc/downloads.xml
Propchange: syncope/trunk/
--
Merged /syncope/branches/1_2_X:r1608352-1608387
Merged /syncope/branches/1_1_X:r1607405-1608365
Modified: syncope/trunk/CHANGES
URL:
http://svn.apache.org/viewvc/syncope/trunk/CHANGES?rev=1608388r1=1608387r2=1608388view=diff
==
--- syncope/trunk/CHANGES (original)
+++ syncope/trunk/CHANGES Mon Jul 7 09:41:20 2014
@@ -2,10 +2,30 @@ Apache Syncope - CHANGES
Licensed under Apache License 2.0 - http://www.apache.org/licenses/LICENSE-2.0
+Release Notes - Syncope - Version 1.1.8
+
+** Bug
+* [SYNCOPE-499] - Deletion of role set as parent role in template
generates exception
+* [SYNCOPE-500] - Wrong (unwanted) derived attribute insertion addition in
membership modal page
+* [SYNCOPE-501] - Virtual attribute propagation not working when updating
only virtual attributes
+* [SYNCOPE-504] - Sync/Push actions shouldn't be executed in dryrun
+* [SYNCOPE-509] - In Task page after change of number of rows (to display)
is erroneously added a column to tasks table
+* [SYNCOPE-512] - If there are no roles in edit user modal page is
possible to create membership between root (fake) role and user
+* [SYNCOPE-515] - Bad integration test causes role ownership conflicts
+
+** Improvement
+* [SYNCOPE-485] - Upgrade to Activiti 5.15.1
+* [SYNCOPE-486] - Update Selenium test configuration
+* [SYNCOPE-507] - User login date conditional logging
+* [SYNCOPE-511] - Enhance synchronization report information
+* [SYNCOPE-519] - Report default values for connector properties
+* [SYNCOPE-520] - Move reset sync token to resource actions
+
Release Notes - Syncope - Version 1.1.7
** Bug
* [SYNCOPE-484] - Reports and Content export fails over HTTPS connection
+
** Improvement
* [SYNCOPE-487] - make Velocity tools available in templates for
notifications
Modified:
syncope/trunk/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java
URL:
http://svn.apache.org/viewvc/syncope/trunk/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java?rev=1608388r1=1608387r2=1608388view=diff
==
---
syncope/trunk/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java
(original)
+++
syncope/trunk/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java
Mon Jul 7 09:41:20 2014
@@ -22,9 +22,7 @@ import java.util.Collections;
import java.util.Date;
import java.util.Iterator;
import java.util.Set;
-
import javax.annotation.Resource;
-
import org.apache.syncope.common.types.AttributableType;
import org.apache.syncope.common.types.AuditElements;
import org.apache.syncope.common.types.AuditElements.Result;
@@ -144,18 +142,17 @@ public class SyncopeAuthenticationProvid
}
CAttr authStatuses = confDAO.find(authentication.statuses);
-if (authStatuses != null) {
-if
(!authStatuses.getValuesAsStrings().contains(user.getStatus())) {
-throw new DisabledException(User +
user.getUsername() + not allowed to authenticate);
-}
+if (authStatuses != null
!authStatuses.getValuesAsStrings().contains(user.getStatus())) {
+throw new DisabledException(User + user.getUsername() +
not allowed to authenticate);
}
authenticated = authenticate(user,
authentication.getCredentials().toString());
+
+updateLoginAttributes(user, authenticated);
}
}
UsernamePasswordAuthenticationToken token;
-
if (authenticated) {
token = new UsernamePasswordAuthenticationToken(
authentication.getPrincipal(),
@@ -177,20 +174,7 @@ public class SyncopeAuthenticationProvid
LOG.debug(User {} successfully authenticated, with roles {},
authentication.getPrincipal(), token.getAuthorities());
-
-if (user != null confDAO.find(log.lastlogindate,
Boolean.toString(true)).
-getValues().get(0).getBooleanValue()) {
-
svn commit: r1608390 - in /syncope/branches/1_2_X/installer: ./ pom.xml
Author: ilgrosso Date: Mon Jul 7 10:02:21 2014 New Revision: 1608390 URL: http://svn.apache.org/r1608390 Log: [SYNCOPE-532] Fixing the build Modified: syncope/branches/1_2_X/installer/ (props changed) syncope/branches/1_2_X/installer/pom.xml Propchange: syncope/branches/1_2_X/installer/ -- --- svn:ignore (original) +++ svn:ignore Mon Jul 7 10:02:21 2014 @@ -1 +1,2 @@ target +.pom.xml.swp Modified: syncope/branches/1_2_X/installer/pom.xml URL: http://svn.apache.org/viewvc/syncope/branches/1_2_X/installer/pom.xml?rev=1608390r1=1608389r2=1608390view=diff == --- syncope/branches/1_2_X/installer/pom.xml (original) +++ syncope/branches/1_2_X/installer/pom.xml Mon Jul 7 10:02:21 2014 @@ -24,7 +24,7 @@ under the License. parent groupIdorg.apache.syncope/groupId artifactIdsyncope/artifactId -version1.3.0-SNAPSHOT/version +version1.2.0-SNAPSHOT/version /parent nameApache Syncope Installer/name
svn commit: r1608407 - /syncope/branches/1_1_X/src/site/xdoc/security.xml
Author: ilgrosso Date: Mon Jul 7 11:07:45 2014 New Revision: 1608407 URL: http://svn.apache.org/r1608407 Log: Adding report for CVE-2014-3503 Modified: syncope/branches/1_1_X/src/site/xdoc/security.xml Modified: syncope/branches/1_1_X/src/site/xdoc/security.xml URL: http://svn.apache.org/viewvc/syncope/branches/1_1_X/src/site/xdoc/security.xml?rev=1608407r1=1608406r2=1608407view=diff == --- syncope/branches/1_1_X/src/site/xdoc/security.xml (original) +++ syncope/branches/1_1_X/src/site/xdoc/security.xml Mon Jul 7 11:07:45 2014 @@ -34,27 +34,59 @@ under the License. pIf you want to report a vulnerability, please follow a href=http://www.apache.org/security/;the procedure/a./p - subsection name=CVE-2014-0111: Remote code execution by an authenticated administrator - pIn the various places in which Apache Commons JEXL expressions are allowed (derived schema definition, user / role templates, account links of resource mappings) a malicious administrator can inject Java code that can be executed remotely by the JEE container running the Apache Syncope core./p + subsection name=CVE-2014-3503: Insecure Random implementations used to generate passwords +pA password is generated for a user in Apache Syncope under certain circumstances, when no existing password + is found. However, the password generation code is relying on insecure Random implementations, which means + that an attacker could attempt to guess a generated password./p + +p + bAffects/b +/p +p + ul +liReleases 1.1.0 to 1.1.7/li + /ul +/p + +p + bFixed in/b +/p +p + ul +liRevision a href=http://svn.apache.org/viewvc?view=revisionamp;revision=r1596537;1596537/a/li +liRelease 1.1.8/li + /ul +/p +pRead the a href=http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3503;full CVE advisory/a./p + /subsection - pbAffects/b/p - p - ul - liReleases 1.0.0 to 1.0.8/li - liReleases 1.1.0 to 1.1.6/li - /ul - /p - - pbFixed in/b/p - p - ul - liRevisions a href=http://svn.apache.org/viewvc?view=revisionamp;revision=r1586349;1586349/a / a href=http://svn.apache.org/viewvc?view=revisionamp;revision=r1586317;1586317/a/li - liReleases 1.0.9 / 1.1.7/li - /ul - /p + subsection name=CVE-2014-0111: Remote code execution by an authenticated administrator +pIn the various places in which Apache Commons JEXL expressions are allowed (derived schema definition, + user / role templates, account links of resource mappings) a malicious administrator can inject Java code + that can be executed remotely by the JEE container running the Apache Syncope core./p + +p + bAffects/b +/p +p + ul +liReleases 1.0.0 to 1.0.8/li +liReleases 1.1.0 to 1.1.6/li + /ul +/p + +p + bFixed in/b +/p +p + ul +liRevisions a href=http://svn.apache.org/viewvc?view=revisionamp;revision=r1586349;1586349/a / a href=http://svn.apache.org/viewvc?view=revisionamp;revision=r1586317;1586317/a/li +liReleases 1.0.9 / 1.1.7/li + /ul +/p - pRead the a href=http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0111;full CVE advisory/a./p +pRead the a href=http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0111;full CVE advisory/a./p /subsection /section
svn commit: r1608410 - /syncope/site/security.html
Author: ilgrosso Date: Mon Jul 7 11:09:33 2014 New Revision: 1608410 URL: http://svn.apache.org/r1608410 Log: Publising updated security page Modified: syncope/site/security.html Modified: syncope/site/security.html URL: http://svn.apache.org/viewvc/syncope/site/security.html?rev=1608410r1=1608409r2=1608410view=diff == --- syncope/site/security.html (original) +++ syncope/site/security.html Mon Jul 7 11:09:33 2014 @@ -8,7 +8,7 @@ meta charset=UTF-8 / meta name=viewport content=width=device-width, initial-scale=1.0 / meta name=author content=Apache Syncope Documentation Team / -meta name=Date-Revision-mmdd content=20140703 / +meta name=Date-Revision-mmdd content=20140707 / meta http-equiv=Content-Language content=en / titleApache Syncope - Security Advisories/title @@ -143,7 +143,7 @@ iframe src=http://www.facebook.com/plugins/like.php?href=http://syncope.apache.org/send=falselayout=button_countshow-faces=falseaction=likecolorscheme=dark; scrolling=no frameborder=0 -style=border:none; width:100px; height:20px; margin-top: 10px; class=pull-right /iframe +style=border:none; width:80px; height:20px; margin-top: 10px; class=pull-right /iframe script type=text/javascript src=https://apis.google.com/js/plusone.js;/script @@ -238,38 +238,83 @@ under the License. -- div class=section -h3CVE-2014-0111: Remote code execution by an authenticated administratora name=CVE-2014-0111:_Remote_code_execution_by_an_authenticated_administrator/a/h3 - -pIn the various places in which Apache Commons JEXL expressions are allowed (derived schema definition, user / role templates, account links of resource mappings) a malicious administrator can inject Java code that can be executed remotely by the JEE container running the Apache Syncope core./p +h3CVE-2014-3503: Insecure Random implementations used to generate passwordsa name=CVE-2014-3503:_Insecure_Random_implementations_used_to_generate_passwords/a/h3 + +pA password is generated for a user in Apache Syncope under certain circumstances, when no existing password + is found. However, the password generation code is relying on insecure Random implementations, which means + that an attacker could attempt to guess a generated password./p + +p + bAffects/b +/p + +p + /p +ul + +liReleases 1.1.0 to 1.1.7/li + /ul + - -pbAffects/b/p - + p - /p + bFixed in/b +/p + +p + /p ul - + +liRevision a class=externalLink href=http://svn.apache.org/viewvc?view=revisionamp;revision=r1596537;1596537/a/li + +liRelease 1.1.8/li + /ul + + + +pRead the a class=externalLink href=http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3503;full CVE advisory/a./p + /div + + +div class=section +h3CVE-2014-0111: Remote code execution by an authenticated administratora name=CVE-2014-0111:_Remote_code_execution_by_an_authenticated_administrator/a/h3 + +pIn the various places in which Apache Commons JEXL expressions are allowed (derived schema definition, + user / role templates, account links of resource mappings) a malicious administrator can inject Java code + that can be executed remotely by the JEE container running the Apache Syncope core./p + + +p + bAffects/b +/p + +p + /p +ul + liReleases 1.0.0 to 1.0.8/li - + liReleases 1.1.0 to 1.1.6/li - /ul - + /ul + - -pbFixed in/b/p - + +p + bFixed in/b +/p + p - /p + /p ul - + liRevisions a class=externalLink href=http://svn.apache.org/viewvc?view=revisionamp;revision=r1586349;1586349/a / a class=externalLink href=http://svn.apache.org/viewvc?view=revisionamp;revision=r1586317;1586317/a/li - + liReleases 1.0.9 / 1.1.7/li - /ul - + /ul + - + pRead the a class=externalLink href=http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0111;full CVE advisory/a./p /div /div
svn commit: r1608411 - /syncope/site/security.html
Author: ilgrosso Date: Mon Jul 7 11:11:01 2014 New Revision: 1608411 URL: http://svn.apache.org/r1608411 Log: Forgot workaround for MSKINS-92 Modified: syncope/site/security.html Modified: syncope/site/security.html URL: http://svn.apache.org/viewvc/syncope/site/security.html?rev=1608411r1=1608410r2=1608411view=diff == --- syncope/site/security.html (original) +++ syncope/site/security.html Mon Jul 7 11:11:01 2014 @@ -143,7 +143,7 @@ iframe src=http://www.facebook.com/plugins/like.php?href=http://syncope.apache.org/send=falselayout=button_countshow-faces=falseaction=likecolorscheme=dark; scrolling=no frameborder=0 -style=border:none; width:80px; height:20px; margin-top: 10px; class=pull-right /iframe +style=border:none; width:100px; height:20px; margin-top: 10px; class=pull-right /iframe script type=text/javascript src=https://apis.google.com/js/plusone.js;/script
[CONF] Apache Syncope Ad libitum
Francesco Chicchiricco edited the page: Ad libitum Table of Contents maxLevel 1 style decimal 1.1.8 (July 3rd, 2014) This release contains a security fix forCVE-2014-3503, upgrade from previous 1.1.X versions is strongly suggested. Please followthese instructionsif you are upgrading from 1.1.7. ... View Online Like View Changes Stop watching space Manage Notifications This message was sent by Atlassian Confluence 5.0.3, Team Collaboration Software
