svn commit: r5769 - /release/syncope/1.1.8/
Author: ilgrosso Date: Mon Jul 7 06:39:39 2014 New Revision: 5769 Log: Creating root dir for new release Added: release/syncope/1.1.8/
svn commit: r5770 - /dev/syncope/1.1.8/ /release/syncope/1.1.8/
Author: ilgrosso Date: Mon Jul 7 06:40:38 2014 New Revision: 5770 Log: Moving the voted release artifacts to dist/release (source) Added: release/syncope/1.1.8/syncope-1.1.8-source-release.zip - copied unchanged from r5769, dev/syncope/1.1.8/syncope-1.1.8-source-release.zip release/syncope/1.1.8/syncope-1.1.8-source-release.zip.asc - copied unchanged from r5769, dev/syncope/1.1.8/syncope-1.1.8-source-release.zip.asc release/syncope/1.1.8/syncope-1.1.8-source-release.zip.md5 - copied unchanged from r5769, dev/syncope/1.1.8/syncope-1.1.8-source-release.zip.md5 release/syncope/1.1.8/syncope-1.1.8-source-release.zip.sha1 - copied unchanged from r5769, dev/syncope/1.1.8/syncope-1.1.8-source-release.zip.sha1 Removed: dev/syncope/1.1.8/syncope-1.1.8-source-release.zip dev/syncope/1.1.8/syncope-1.1.8-source-release.zip.asc dev/syncope/1.1.8/syncope-1.1.8-source-release.zip.md5 dev/syncope/1.1.8/syncope-1.1.8-source-release.zip.sha1
svn commit: r5771 - /dev/syncope/1.1.8/ /release/syncope/1.1.8/
Author: ilgrosso Date: Mon Jul 7 06:40:49 2014 New Revision: 5771 Log: Moving the voted release artifacts to dist/release (standalone) Added: release/syncope/1.1.8/syncope-standalone-1.1.8-distribution.zip - copied unchanged from r5770, dev/syncope/1.1.8/syncope-standalone-1.1.8-distribution.zip release/syncope/1.1.8/syncope-standalone-1.1.8-distribution.zip.asc - copied unchanged from r5770, dev/syncope/1.1.8/syncope-standalone-1.1.8-distribution.zip.asc release/syncope/1.1.8/syncope-standalone-1.1.8-distribution.zip.md5 - copied unchanged from r5770, dev/syncope/1.1.8/syncope-standalone-1.1.8-distribution.zip.md5 release/syncope/1.1.8/syncope-standalone-1.1.8-distribution.zip.sha1 - copied unchanged from r5770, dev/syncope/1.1.8/syncope-standalone-1.1.8-distribution.zip.sha1 Removed: dev/syncope/1.1.8/syncope-standalone-1.1.8-distribution.zip dev/syncope/1.1.8/syncope-standalone-1.1.8-distribution.zip.asc dev/syncope/1.1.8/syncope-standalone-1.1.8-distribution.zip.md5 dev/syncope/1.1.8/syncope-standalone-1.1.8-distribution.zip.sha1
svn commit: r5772 - /dev/syncope/1.1.8/
Author: ilgrosso Date: Mon Jul 7 06:41:23 2014 New Revision: 5772 Log: Cleaning up older releases Removed: dev/syncope/1.1.8/
svn commit: r5773 - /release/syncope/1.1.7/
Author: ilgrosso Date: Mon Jul 7 06:42:37 2014 New Revision: 5773 Log: Cleaning up older releases Removed: release/syncope/1.1.7/
svn commit: r1608346 - in /syncope/site: ./ 1.1.8/ apidocs/ css/ images/ img/ js/
Author: ilgrosso Date: Mon Jul 7 06:45:27 2014 New Revision: 1608346 URL: http://svn.apache.org/r1608346 Log: Promoting the staging site Added: syncope/site/apidocs/ - copied from r1608345, syncope/site/1.1.8/apidocs/ syncope/site/architecture.html - copied unchanged from r1608345, syncope/site/1.1.8/architecture.html syncope/site/building.html - copied unchanged from r1608345, syncope/site/1.1.8/building.html syncope/site/contributing.html - copied unchanged from r1608345, syncope/site/1.1.8/contributing.html syncope/site/css/ - copied from r1608345, syncope/site/1.1.8/css/ syncope/site/downloads.html - copied unchanged from r1608345, syncope/site/1.1.8/downloads.html syncope/site/features.html - copied unchanged from r1608345, syncope/site/1.1.8/features.html syncope/site/images/ - copied from r1608345, syncope/site/1.1.8/images/ syncope/site/img/ - copied from r1608345, syncope/site/1.1.8/img/ syncope/site/index.html - copied unchanged from r1608345, syncope/site/1.1.8/index.html syncope/site/integration.html - copied unchanged from r1608345, syncope/site/1.1.8/integration.html syncope/site/issue-tracking.html - copied unchanged from r1608345, syncope/site/1.1.8/issue-tracking.html syncope/site/js/ - copied from r1608345, syncope/site/1.1.8/js/ syncope/site/license.html - copied unchanged from r1608345, syncope/site/1.1.8/license.html syncope/site/mail-lists.html - copied unchanged from r1608345, syncope/site/1.1.8/mail-lists.html syncope/site/professional-services.html - copied unchanged from r1608345, syncope/site/1.1.8/professional-services.html syncope/site/release-process.html - copied unchanged from r1608345, syncope/site/1.1.8/release-process.html syncope/site/security.html - copied unchanged from r1608345, syncope/site/1.1.8/security.html syncope/site/source-repository.html - copied unchanged from r1608345, syncope/site/1.1.8/source-repository.html syncope/site/team-list.html - copied unchanged from r1608345, syncope/site/1.1.8/team-list.html Removed: syncope/site/1.1.8/
[CONF] Apache Syncope Upgrade from 1.1.7 to 1.1.8
Francesco Chicchiricco created a page: Upgrade from 1.1.7 to 1.1.8 Source changes POM Internal storage changes Source changes POM In the rootpom.xml: changeparent/versionfrom1.1.7to1.1.8 changeproperties/syncope.versionfrom1.1.7to1.1.8 In console/pom.xml: find and remove dependency groupIdorg.seleniumhq.selenium.client-drivers/groupId artifactIdselenium-java-client-driver/artifactId scopetest/scope /dependency Internal storage changes If not starting with an empty database, the following changes are needed: SYNCOPE-507 Create a new general configuration parameterlog.lastlogindate with value: true - if you want to keep the current behavior, e.g. update the last login date for each user upon successful authentication false - if you want to ignore such information (speeds up authentication performance) View Online Like Stop watching space Manage Notifications This message was sent by Atlassian Confluence 5.0.3, Team Collaboration Software
svn commit: r1608353 - in /syncope/trunk: archetype/pom.xml build-tools/pom.xml client/pom.xml common/pom.xml console/pom.xml core/pom.xml installer/pom.xml pom.xml standalone/pom.xml
Author: ilgrosso Date: Mon Jul 7 07:09:24 2014 New Revision: 1608353 URL: http://svn.apache.org/r1608353 Log: [maven-release-plugin] prepare for next development iteration Modified: syncope/trunk/archetype/pom.xml syncope/trunk/build-tools/pom.xml syncope/trunk/client/pom.xml syncope/trunk/common/pom.xml syncope/trunk/console/pom.xml syncope/trunk/core/pom.xml syncope/trunk/installer/pom.xml syncope/trunk/pom.xml syncope/trunk/standalone/pom.xml Modified: syncope/trunk/archetype/pom.xml URL: http://svn.apache.org/viewvc/syncope/trunk/archetype/pom.xml?rev=1608353r1=1608352r2=1608353view=diff == --- syncope/trunk/archetype/pom.xml (original) +++ syncope/trunk/archetype/pom.xml Mon Jul 7 07:09:24 2014 @@ -24,7 +24,7 @@ under the License. parent groupIdorg.apache.syncope/groupId artifactIdsyncope/artifactId -version1.2.0-SNAPSHOT/version +version1.3.0-SNAPSHOT/version /parent nameApache Syncope Archetype/name Modified: syncope/trunk/build-tools/pom.xml URL: http://svn.apache.org/viewvc/syncope/trunk/build-tools/pom.xml?rev=1608353r1=1608352r2=1608353view=diff == --- syncope/trunk/build-tools/pom.xml (original) +++ syncope/trunk/build-tools/pom.xml Mon Jul 7 07:09:24 2014 @@ -24,7 +24,7 @@ under the License. parent groupIdorg.apache.syncope/groupId artifactIdsyncope/artifactId -version1.2.0-SNAPSHOT/version +version1.3.0-SNAPSHOT/version /parent nameApache Syncope Build Tools/name Modified: syncope/trunk/client/pom.xml URL: http://svn.apache.org/viewvc/syncope/trunk/client/pom.xml?rev=1608353r1=1608352r2=1608353view=diff == --- syncope/trunk/client/pom.xml (original) +++ syncope/trunk/client/pom.xml Mon Jul 7 07:09:24 2014 @@ -24,7 +24,7 @@ under the License. parent groupIdorg.apache.syncope/groupId artifactIdsyncope/artifactId -version1.2.0-SNAPSHOT/version +version1.3.0-SNAPSHOT/version /parent nameApache Syncope Client/name Modified: syncope/trunk/common/pom.xml URL: http://svn.apache.org/viewvc/syncope/trunk/common/pom.xml?rev=1608353r1=1608352r2=1608353view=diff == --- syncope/trunk/common/pom.xml (original) +++ syncope/trunk/common/pom.xml Mon Jul 7 07:09:24 2014 @@ -24,7 +24,7 @@ under the License. parent groupIdorg.apache.syncope/groupId artifactIdsyncope/artifactId -version1.2.0-SNAPSHOT/version +version1.3.0-SNAPSHOT/version /parent nameApache Syncope Common/name Modified: syncope/trunk/console/pom.xml URL: http://svn.apache.org/viewvc/syncope/trunk/console/pom.xml?rev=1608353r1=1608352r2=1608353view=diff == --- syncope/trunk/console/pom.xml (original) +++ syncope/trunk/console/pom.xml Mon Jul 7 07:09:24 2014 @@ -24,7 +24,7 @@ under the License. parent groupIdorg.apache.syncope/groupId artifactIdsyncope/artifactId -version1.2.0-SNAPSHOT/version +version1.3.0-SNAPSHOT/version /parent nameApache Syncope Console/name Modified: syncope/trunk/core/pom.xml URL: http://svn.apache.org/viewvc/syncope/trunk/core/pom.xml?rev=1608353r1=1608352r2=1608353view=diff == --- syncope/trunk/core/pom.xml (original) +++ syncope/trunk/core/pom.xml Mon Jul 7 07:09:24 2014 @@ -24,7 +24,7 @@ under the License. parent groupIdorg.apache.syncope/groupId artifactIdsyncope/artifactId -version1.2.0-SNAPSHOT/version +version1.3.0-SNAPSHOT/version /parent nameApache Syncope Core/name Modified: syncope/trunk/installer/pom.xml URL: http://svn.apache.org/viewvc/syncope/trunk/installer/pom.xml?rev=1608353r1=1608352r2=1608353view=diff == --- syncope/trunk/installer/pom.xml (original) +++ syncope/trunk/installer/pom.xml Mon Jul 7 07:09:24 2014 @@ -24,7 +24,7 @@ under the License. parent groupIdorg.apache.syncope/groupId artifactIdsyncope/artifactId -version1.2.0-SNAPSHOT/version +version1.3.0-SNAPSHOT/version /parent nameApache Syncope Installer/name Modified: syncope/trunk/pom.xml URL: http://svn.apache.org/viewvc/syncope/trunk/pom.xml?rev=1608353r1=1608352r2=1608353view=diff == --- syncope/trunk/pom.xml (original) +++ syncope/trunk/pom.xml Mon Jul 7 07:09:24 2014 @@ -26,7 +26,7 @@ under the License. groupIdorg.apache.syncope/groupId artifactIdsyncope/artifactId - version1.2.0-SNAPSHOT/version + version1.3.0-SNAPSHOT/version packagingpom/packaging parent
svn commit: r1608351 - in /syncope/trunk: common/pom.xml console/pom.xml core/pom.xml pom.xml
Author: ilgrosso Date: Mon Jul 7 07:09:13 2014 New Revision: 1608351 URL: http://svn.apache.org/r1608351 Log: [maven-release-plugin] prepare branch 1_2_X Modified: syncope/trunk/common/pom.xml syncope/trunk/console/pom.xml syncope/trunk/core/pom.xml syncope/trunk/pom.xml Modified: syncope/trunk/common/pom.xml URL: http://svn.apache.org/viewvc/syncope/trunk/common/pom.xml?rev=1608351r1=1608350r2=1608351view=diff == --- syncope/trunk/common/pom.xml (original) +++ syncope/trunk/common/pom.xml Mon Jul 7 07:09:13 2014 @@ -183,7 +183,7 @@ under the License. namespacePrefixsyncope/namespacePrefix addResourceAndMethodIdstrue/addResourceAndMethodIds linkAnyMediaTypeToXmlSchematrue/linkAnyMediaTypeToXmlSchema - classResourceNames/ + classResourceNames / basePackagesorg.apache.syncope.common.services/basePackages docProviderorg.apache.cxf.maven_plugin.javatowadl.ResourceMapJavaDocProvider/docProvider attachWadltrue/attachWadl Modified: syncope/trunk/console/pom.xml URL: http://svn.apache.org/viewvc/syncope/trunk/console/pom.xml?rev=1608351r1=1608350r2=1608351view=diff == --- syncope/trunk/console/pom.xml (original) +++ syncope/trunk/console/pom.xml Mon Jul 7 07:09:13 2014 @@ -213,40 +213,33 @@ under the License. phaseprocess-resources/phase configuration target -unzip src=${settings.localRepository}/org/activiti/activiti-webapp-explorer2/${activiti.version}/activiti-webapp-explorer2-${activiti.version}.war - dest=${project.build.directory}/activiti-webapp-explorer2/ +unzip src=${settings.localRepository}/org/activiti/activiti-webapp-explorer2/${activiti.version}/activiti-webapp-explorer2-${activiti.version}.war dest=${project.build.directory}/activiti-webapp-explorer2 / -mkdir dir=${activiti-modeler.directory}/ +mkdir dir=${activiti-modeler.directory} / -mkdir dir=${activiti-modeler.directory}/editor/ +mkdir dir=${activiti-modeler.directory}/editor / copy todir=${activiti-modeler.directory}/editor fileset dir=${project.build.directory}/activiti-webapp-explorer2/editor -exclude name=oryx.js/ +exclude name=oryx.js / /fileset /copy -copy file=${project.build.directory}/activiti-webapp-explorer2/WEB-INF/classes/plugins.xml - todir=${activiti-modeler.directory}/editor/ -copy file=${project.build.directory}/activiti-webapp-explorer2/WEB-INF/classes/stencilset.json - todir=${activiti-modeler.directory}/editor/ +copy file=${project.build.directory}/activiti-webapp-explorer2/WEB-INF/classes/plugins.xml todir=${activiti-modeler.directory}/editor / +copy file=${project.build.directory}/activiti-webapp-explorer2/WEB-INF/classes/stencilset.json todir=${activiti-modeler.directory}/editor / -mkdir dir=${activiti-modeler.directory}/explorer/ +mkdir dir=${activiti-modeler.directory}/explorer / copy todir=${activiti-modeler.directory}/explorer - fileset dir=${project.build.directory}/activiti-webapp-explorer2/explorer/ + fileset dir=${project.build.directory}/activiti-webapp-explorer2/explorer / /copy -mkdir dir=${activiti-modeler.directory}/libs/ +mkdir dir=${activiti-modeler.directory}/libs / copy todir=${activiti-modeler.directory}/libs - fileset dir=${project.build.directory}/activiti-webapp-explorer2/libs/ + fileset dir=${project.build.directory}/activiti-webapp-explorer2/libs / /copy -fixcrlf srcdir=${project.build.directory}/activiti-webapp-explorer2/editor/ - includes=oryx.debug.js - eol=unix/ -patch patchfile=${basedir}/src/main/resources/oryx.debug.js.patch - originalfile=${project.build.directory}/activiti-webapp-explorer2/editor/oryx.debug.js - destfile=${activiti-modeler.directory}/editor/oryx.debug.js/ +fixcrlf srcdir=${project.build.directory}/activiti-webapp-explorer2/editor/ includes=oryx.debug.js eol=unix / +patch patchfile=${basedir}/src/main/resources/oryx.debug.js.patch originalfile=${project.build.directory}/activiti-webapp-explorer2/editor/oryx.debug.js
svn commit: r1608352 - /syncope/branches/1_2_X/
Author: ilgrosso Date: Mon Jul 7 07:09:18 2014 New Revision: 1608352 URL: http://svn.apache.org/r1608352 Log: [maven-release-plugin] copy for branch 1_2_X Added: syncope/branches/1_2_X/ (props changed) - copied from r1608351, syncope/trunk/ Propchange: syncope/branches/1_2_X/ -- --- svn:ignore (added) +++ svn:ignore Mon Jul 7 07:09:18 2014 @@ -0,0 +1,6 @@ +target +.subversion +.settings +.project +.svn-prop.tmp.swp +.pom.xml.swp Propchange: syncope/branches/1_2_X/ -- --- svn:mergeinfo (added) +++ svn:mergeinfo Mon Jul 7 07:09:18 2014 @@ -0,0 +1,12 @@ +/incubator/syncope/branches/0_1_X:1246484-1246581 +/incubator/syncope/branches/0_2_X:1246657-1246688 +/incubator/syncope/branches/0_5_X:1246875-1246986 +/incubator/syncope/branches/0_6_X:1247008-1247042 +/incubator/syncope/branches/0_7_EA:1247056-1247077 +/incubator/syncope/branches/0_7_X:1247257-1247396 +/incubator/syncope/branches/1_0_X:1367153-1412627 +/incubator/syncope/tags/syncope-0.1:1246486-1246488 +/incubator/syncope/trunk:1247317-1247363,1405295-1412627 +/syncope/branches/1_0_X:1412628-1522793 +/syncope/branches/1_1_X:1464359-1607404 +/syncope/trunk:1412628-1420167
svn commit: r1608365 - /syncope/branches/1_1_X/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java
Author: ilgrosso Date: Mon Jul 7 08:40:23 2014 New Revision: 1608365 URL: http://svn.apache.org/r1608365 Log: [SYNCOPE-531] Changes are fine - provided small optimizations Modified: syncope/branches/1_1_X/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java Modified: syncope/branches/1_1_X/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java URL: http://svn.apache.org/viewvc/syncope/branches/1_1_X/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java?rev=1608365r1=1608364r2=1608365view=diff == --- syncope/branches/1_1_X/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java (original) +++ syncope/branches/1_1_X/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java Mon Jul 7 08:40:23 2014 @@ -120,13 +120,12 @@ public class SyncopeAuthenticationProvid authentication.getCredentials().toString(), user.getCipherAlgorithm(), user.getPassword()); + +updateLoginAttributes(user, authenticated); } } -updateLoginAttributes(user, authenticated); - UsernamePasswordAuthenticationToken token; - if (authenticated) { token = new UsernamePasswordAuthenticationToken( authentication.getPrincipal(), @@ -148,7 +147,6 @@ public class SyncopeAuthenticationProvid LOG.debug(User {} successfully authenticated, with roles {}, authentication.getPrincipal(), token.getAuthorities()); - } else { auditManager.audit( AuditElements.EventCategoryType.REST, @@ -168,31 +166,28 @@ public class SyncopeAuthenticationProvid return token; } - + private void updateLoginAttributes(SyncopeUser user, boolean authenticated) { - - if (user != null) { - boolean userModified = false; - - if (authenticated) { - if (Boolean.valueOf(confDAO.find(log.lastlogindate, Boolean.toString(true)).getValue())) { - user.setLastLoginDate(new Date()); - userModified = true; - } - - if (user.getFailedLogins() != 0) { - user.setFailedLogins(0); - userModified = true; - } - } else { - user.setFailedLogins(user.getFailedLogins() + 1); - userModified = true; - } - - if (userModified) { - userDAO.save(user); - } - } +boolean userModified = false; + +if (authenticated) { +if (Boolean.valueOf(confDAO.find(log.lastlogindate, Boolean.toString(true)).getValue())) { +user.setLastLoginDate(new Date()); +userModified = true; +} + +if (user.getFailedLogins() != 0) { +user.setFailedLogins(0); +userModified = true; +} +} else { +user.setFailedLogins(user.getFailedLogins() + 1); +userModified = true; +} + +if (userModified) { +userDAO.save(user); +} } protected boolean authenticate(final String password, final CipherAlgorithm cipherAlgorithm,
svn commit: r1608371 - /syncope/branches/1_2_X/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java
Author: ilgrosso Date: Mon Jul 7 08:54:30 2014 New Revision: 1608371 URL: http://svn.apache.org/r1608371 Log: [SYNCOPE-137] Merge from 1_1_X Modified: syncope/branches/1_2_X/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java Modified: syncope/branches/1_2_X/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java URL: http://svn.apache.org/viewvc/syncope/branches/1_2_X/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java?rev=1608371r1=1608370r2=1608371view=diff == --- syncope/branches/1_2_X/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java (original) +++ syncope/branches/1_2_X/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java Mon Jul 7 08:54:30 2014 @@ -22,9 +22,7 @@ import java.util.Collections; import java.util.Date; import java.util.Iterator; import java.util.Set; - import javax.annotation.Resource; - import org.apache.syncope.common.types.AttributableType; import org.apache.syncope.common.types.AuditElements; import org.apache.syncope.common.types.AuditElements.Result; @@ -144,18 +142,17 @@ public class SyncopeAuthenticationProvid } CAttr authStatuses = confDAO.find(authentication.statuses); -if (authStatuses != null) { -if (!authStatuses.getValuesAsStrings().contains(user.getStatus())) { -throw new DisabledException(User + user.getUsername() + not allowed to authenticate); -} +if (authStatuses != null !authStatuses.getValuesAsStrings().contains(user.getStatus())) { +throw new DisabledException(User + user.getUsername() + not allowed to authenticate); } authenticated = authenticate(user, authentication.getCredentials().toString()); + +updateLoginAttributes(user, authenticated); } } UsernamePasswordAuthenticationToken token; - if (authenticated) { token = new UsernamePasswordAuthenticationToken( authentication.getPrincipal(), @@ -177,20 +174,7 @@ public class SyncopeAuthenticationProvid LOG.debug(User {} successfully authenticated, with roles {}, authentication.getPrincipal(), token.getAuthorities()); - -if (user != null confDAO.find(log.lastlogindate, Boolean.toString(true)). -getValues().get(0).getBooleanValue()) { - -user.setLastLoginDate(new Date()); -user.setFailedLogins(0); -userDAO.save(user); -} } else { -if (user != null) { -user.setFailedLogins(user.getFailedLogins() + 1); -userDAO.save(user); -} - auditManager.audit( AuditElements.EventCategoryType.REST, AuthenticationController, @@ -210,6 +194,29 @@ public class SyncopeAuthenticationProvid return token; } +private void updateLoginAttributes(SyncopeUser user, boolean authenticated) { +boolean userModified = false; + +if (authenticated) { +if (confDAO.find(log.lastlogindate, Boolean.toString(true)).getValues().get(0).getBooleanValue()) { +user.setLastLoginDate(new Date()); +userModified = true; +} + +if (user.getFailedLogins() != 0) { +user.setFailedLogins(0); +userModified = true; +} +} else { +user.setFailedLogins(user.getFailedLogins() + 1); +userModified = true; +} + +if (userModified) { +userDAO.save(user); +} +} + protected SetExternalResource getPassthroughResources(final SyncopeUser user) { SetExternalResource result = null; @@ -244,7 +251,7 @@ public class SyncopeAuthenticationProvid result.retainAll(global.getResources()); } } - + if (result == null) { result = Collections.emptySet(); } @@ -259,7 +266,7 @@ public class SyncopeAuthenticationProvid final AttributableUtil attrUtil = AttributableUtil.getInstance(AttributableType.USER); for (IteratorExternalResource itor = getPassthroughResources(user).iterator(); itor.hasNext() !authenticated;) { - + ExternalResource resource = itor.next(); String accountId = null; try {
svn commit: r1608372 - in /syncope/branches/1_2_X: ./ CHANGES src/site/xdoc/downloads.xml
Author: ilgrosso Date: Mon Jul 7 08:54:56 2014 New Revision: 1608372 URL: http://svn.apache.org/r1608372 Log: Merge from 1_1_X Modified: syncope/branches/1_2_X/ (props changed) syncope/branches/1_2_X/CHANGES syncope/branches/1_2_X/src/site/xdoc/downloads.xml Propchange: syncope/branches/1_2_X/ -- Merged /syncope/branches/1_1_X:r1607405-1608365 Modified: syncope/branches/1_2_X/CHANGES URL: http://svn.apache.org/viewvc/syncope/branches/1_2_X/CHANGES?rev=1608372r1=1608371r2=1608372view=diff == --- syncope/branches/1_2_X/CHANGES (original) +++ syncope/branches/1_2_X/CHANGES Mon Jul 7 08:54:56 2014 @@ -2,10 +2,30 @@ Apache Syncope - CHANGES Licensed under Apache License 2.0 - http://www.apache.org/licenses/LICENSE-2.0 +Release Notes - Syncope - Version 1.1.8 + +** Bug +* [SYNCOPE-499] - Deletion of role set as parent role in template generates exception +* [SYNCOPE-500] - Wrong (unwanted) derived attribute insertion addition in membership modal page +* [SYNCOPE-501] - Virtual attribute propagation not working when updating only virtual attributes +* [SYNCOPE-504] - Sync/Push actions shouldn't be executed in dryrun +* [SYNCOPE-509] - In Task page after change of number of rows (to display) is erroneously added a column to tasks table +* [SYNCOPE-512] - If there are no roles in edit user modal page is possible to create membership between root (fake) role and user +* [SYNCOPE-515] - Bad integration test causes role ownership conflicts + +** Improvement +* [SYNCOPE-485] - Upgrade to Activiti 5.15.1 +* [SYNCOPE-486] - Update Selenium test configuration +* [SYNCOPE-507] - User login date conditional logging +* [SYNCOPE-511] - Enhance synchronization report information +* [SYNCOPE-519] - Report default values for connector properties +* [SYNCOPE-520] - Move reset sync token to resource actions + Release Notes - Syncope - Version 1.1.7 ** Bug * [SYNCOPE-484] - Reports and Content export fails over HTTPS connection + ** Improvement * [SYNCOPE-487] - make Velocity tools available in templates for notifications Modified: syncope/branches/1_2_X/src/site/xdoc/downloads.xml URL: http://svn.apache.org/viewvc/syncope/branches/1_2_X/src/site/xdoc/downloads.xml?rev=1608372r1=1608371r2=1608372view=diff == --- syncope/branches/1_2_X/src/site/xdoc/downloads.xml (original) +++ syncope/branches/1_2_X/src/site/xdoc/downloads.xml Mon Jul 7 08:54:56 2014 @@ -57,8 +57,8 @@ under the License. /section section name=Current Releases - subsection name=1.1.7 Ad libitum -pRelease date: Apr 11th, 2014/p + subsection name=1.1.8 Ad libitum +pRelease date: Jul 3rd, 2014/p p a href=https://cwiki.apache.org/confluence/display/SYNCOPE/Ad+libitum;Release notes/a /p @@ -72,22 +72,22 @@ under the License. tbody tr td -a href=http://www.apache.org/dyn/closer.cgi/syncope/1.1.7/syncope-1.1.7-source-release.zip;syncope-1.1.7-source-release.zip/a +a href=http://www.apache.org/dyn/closer.cgi/syncope/1.1.8/syncope-1.1.8-source-release.zip;syncope-1.1.8-source-release.zip/a /td td -a href=http://www.apache.org/dist/syncope/1.1.7/syncope-1.1.7-source-release.zip.asc;asc/a -a href=http://www.apache.org/dist/syncope/1.1.7/syncope-1.1.7-source-release.zip.md5;md5/a -a href=http://www.apache.org/dist/syncope/1.1.7/syncope-1.1.7-source-release.zip.sha1;sha1/a +a href=http://www.apache.org/dist/syncope/1.1.8/syncope-1.1.8-source-release.zip.asc;asc/a +a href=http://www.apache.org/dist/syncope/1.1.8/syncope-1.1.8-source-release.zip.md5;md5/a +a href=http://www.apache.org/dist/syncope/1.1.8/syncope-1.1.8-source-release.zip.sha1;sha1/a /td /tr tr td -a href=http://www.apache.org/dyn/closer.cgi/syncope/1.1.7/syncope-standalone-1.1.7-distribution.zip;syncope-standalone-1.1.7-distribution.zip/a +a href=http://www.apache.org/dyn/closer.cgi/syncope/1.1.8/syncope-standalone-1.1.8-distribution.zip;syncope-standalone-1.1.8-distribution.zip/a /td td -a href=http://www.apache.org/dist/syncope/1.1.7/syncope-standalone-1.1.7-distribution.zip.asc;asc/a -a
svn propchange: r1608371 - svn:log
Author: ilgrosso Revision: 1608371 Modified property: svn:log Modified: svn:log at Mon Jul 7 08:59:29 2014 -- --- svn:log (original) +++ svn:log Mon Jul 7 08:59:29 2014 @@ -1 +1 @@ -[SYNCOPE-137] Merge from 1_1_X +[SYNCOPE-531] Merge from 1_1_X
svn commit: r1608386 - in /syncope/trunk/installer/src/main: java/org/apache/syncope/installer/containers/ java/org/apache/syncope/installer/containers/jboss/ java/org/apache/syncope/installer/files/
Author: massi Date: Mon Jul 7 09:38:18 2014 New Revision: 1608386 URL: http://svn.apache.org/r1608386 Log: Fixed #SYNCOPE-532 Added: syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/AbstractContainer.java Modified: syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/Glassfish.java syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/Tomcat.java syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/jboss/JBoss.java syncope/trunk/installer/src/main/java/org/apache/syncope/installer/files/Pom.java syncope/trunk/installer/src/main/java/org/apache/syncope/installer/processes/ArchetypeProcess.java syncope/trunk/installer/src/main/java/org/apache/syncope/installer/processes/ContainerProcess.java syncope/trunk/installer/src/main/resources/izpack/install.xml syncope/trunk/installer/src/main/resources/izpack/userInputSpec.xml Added: syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/AbstractContainer.java URL: http://svn.apache.org/viewvc/syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/AbstractContainer.java?rev=1608386view=auto == --- syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/AbstractContainer.java (added) +++ syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/AbstractContainer.java Mon Jul 7 09:38:18 2014 @@ -0,0 +1,27 @@ +/* + * Licensed to the Apache Software Foundation (ASF) under one + * or more contributor license agreements. See the NOTICE file + * distributed with this work for additional information + * regarding copyright ownership. The ASF licenses this file + * to you under the Apache License, Version 2.0 (the + * License); you may not use this file except in compliance + * with the License. You may obtain a copy of the License at + * + * http://www.apache.org/licenses/LICENSE-2.0 + * + * Unless required by applicable law or agreed to in writing, + * software distributed under the License is distributed on an + * AS IS BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY + * KIND, either express or implied. See the License for the + * specific language governing permissions and limitations + * under the License. + */ +package org.apache.syncope.installer.containers; + +public abstract class AbstractContainer { + +protected static final String CORE_RELATIVE_PATH = %s/%s/core/target/syncope.war; + +protected static final String CONSOLE_RELATIVE_PATH = %s/%s/console/target/syncope-console.war; + +} Modified: syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/Glassfish.java URL: http://svn.apache.org/viewvc/syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/Glassfish.java?rev=1608386r1=1608385r2=1608386view=diff == --- syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/Glassfish.java (original) +++ syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/Glassfish.java Mon Jul 7 09:38:18 2014 @@ -18,13 +18,28 @@ */ package org.apache.syncope.installer.containers; -public class Glassfish { +public class Glassfish extends AbstractContainer { -public static final String deploySyncopeCore -= %s/%s/core/target/syncope.war; +private final String installPath; -public static final String deploySyncopeConsole -= %s/%s/console/target/syncope-console.war; +private final String artifactId; + +public Glassfish(final String installPath, final String artifactId) { +this.installPath = installPath; +this.artifactId = artifactId; +} + +public String deployCore() { +return deploy(CORE_RELATIVE_PATH); +} + +public String deployConsole() { +return deploy(CONSOLE_RELATIVE_PATH); +} + +public String deploy(final String what) { +return String.format(what, installPath, artifactId); +} public static final String CREATE_JAVA_OPT_COMMAND = /bin/asadmin create-jvm-options + -Dcom.sun.enterprise.overrideablejavaxpackages=javax.ws.rs,javax.ws.rs.core,javax.ws.rs.ext; Modified: syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/Tomcat.java URL: http://svn.apache.org/viewvc/syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/Tomcat.java?rev=1608386r1=1608385r2=1608386view=diff == --- syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/Tomcat.java (original) +++ syncope/trunk/installer/src/main/java/org/apache/syncope/installer/containers/Tomcat.java Mon Jul 7 09:38:18 2014 @@ -23,16 +23,16 @@ import
svn commit: r1608387 - in /syncope/branches/1_2_X/installer: ./ src/main/java/org/apache/syncope/installer/containers/ src/main/java/org/apache/syncope/installer/containers/jboss/ src/main/java/org/ap
Author: massi Date: Mon Jul 7 09:39:48 2014 New Revision: 1608387 URL: http://svn.apache.org/r1608387 Log: Fixed #SYNCOPE-532 Added: syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/containers/AbstractContainer.java Modified: syncope/branches/1_2_X/installer/pom.xml syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/containers/Glassfish.java syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/containers/Tomcat.java syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/containers/jboss/JBoss.java syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/files/Pom.java syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/processes/ArchetypeProcess.java syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/processes/ContainerProcess.java syncope/branches/1_2_X/installer/src/main/resources/izpack/install.xml syncope/branches/1_2_X/installer/src/main/resources/izpack/userInputSpec.xml Modified: syncope/branches/1_2_X/installer/pom.xml URL: http://svn.apache.org/viewvc/syncope/branches/1_2_X/installer/pom.xml?rev=1608387r1=1608386r2=1608387view=diff == --- syncope/branches/1_2_X/installer/pom.xml (original) +++ syncope/branches/1_2_X/installer/pom.xml Mon Jul 7 09:39:48 2014 @@ -24,7 +24,7 @@ under the License. parent groupIdorg.apache.syncope/groupId artifactIdsyncope/artifactId -version1.2.0-SNAPSHOT/version +version1.3.0-SNAPSHOT/version /parent nameApache Syncope Installer/name Added: syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/containers/AbstractContainer.java URL: http://svn.apache.org/viewvc/syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/containers/AbstractContainer.java?rev=1608387view=auto == --- syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/containers/AbstractContainer.java (added) +++ syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/containers/AbstractContainer.java Mon Jul 7 09:39:48 2014 @@ -0,0 +1,27 @@ +/* + * Licensed to the Apache Software Foundation (ASF) under one + * or more contributor license agreements. See the NOTICE file + * distributed with this work for additional information + * regarding copyright ownership. The ASF licenses this file + * to you under the Apache License, Version 2.0 (the + * License); you may not use this file except in compliance + * with the License. You may obtain a copy of the License at + * + * http://www.apache.org/licenses/LICENSE-2.0 + * + * Unless required by applicable law or agreed to in writing, + * software distributed under the License is distributed on an + * AS IS BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY + * KIND, either express or implied. See the License for the + * specific language governing permissions and limitations + * under the License. + */ +package org.apache.syncope.installer.containers; + +public abstract class AbstractContainer { + +protected static final String CORE_RELATIVE_PATH = %s/%s/core/target/syncope.war; + +protected static final String CONSOLE_RELATIVE_PATH = %s/%s/console/target/syncope-console.war; + +} Modified: syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/containers/Glassfish.java URL: http://svn.apache.org/viewvc/syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/containers/Glassfish.java?rev=1608387r1=1608386r2=1608387view=diff == --- syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/containers/Glassfish.java (original) +++ syncope/branches/1_2_X/installer/src/main/java/org/apache/syncope/installer/containers/Glassfish.java Mon Jul 7 09:39:48 2014 @@ -18,13 +18,28 @@ */ package org.apache.syncope.installer.containers; -public class Glassfish { +public class Glassfish extends AbstractContainer { -public static final String deploySyncopeCore -= %s/%s/core/target/syncope.war; +private final String installPath; -public static final String deploySyncopeConsole -= %s/%s/console/target/syncope-console.war; +private final String artifactId; + +public Glassfish(final String installPath, final String artifactId) { +this.installPath = installPath; +this.artifactId = artifactId; +} + +public String deployCore() { +return deploy(CORE_RELATIVE_PATH); +} + +public String deployConsole() { +return deploy(CONSOLE_RELATIVE_PATH); +} + +public String deploy(final String what) { +return String.format(what, installPath,
svn commit: r1608388 - in /syncope/trunk: ./ CHANGES core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java src/site/xdoc/downloads.xml
Author: ilgrosso Date: Mon Jul 7 09:41:20 2014 New Revision: 1608388 URL: http://svn.apache.org/r1608388 Log: Merge from 1_2_X Modified: syncope/trunk/ (props changed) syncope/trunk/CHANGES syncope/trunk/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java syncope/trunk/src/site/xdoc/downloads.xml Propchange: syncope/trunk/ -- Merged /syncope/branches/1_2_X:r1608352-1608387 Merged /syncope/branches/1_1_X:r1607405-1608365 Modified: syncope/trunk/CHANGES URL: http://svn.apache.org/viewvc/syncope/trunk/CHANGES?rev=1608388r1=1608387r2=1608388view=diff == --- syncope/trunk/CHANGES (original) +++ syncope/trunk/CHANGES Mon Jul 7 09:41:20 2014 @@ -2,10 +2,30 @@ Apache Syncope - CHANGES Licensed under Apache License 2.0 - http://www.apache.org/licenses/LICENSE-2.0 +Release Notes - Syncope - Version 1.1.8 + +** Bug +* [SYNCOPE-499] - Deletion of role set as parent role in template generates exception +* [SYNCOPE-500] - Wrong (unwanted) derived attribute insertion addition in membership modal page +* [SYNCOPE-501] - Virtual attribute propagation not working when updating only virtual attributes +* [SYNCOPE-504] - Sync/Push actions shouldn't be executed in dryrun +* [SYNCOPE-509] - In Task page after change of number of rows (to display) is erroneously added a column to tasks table +* [SYNCOPE-512] - If there are no roles in edit user modal page is possible to create membership between root (fake) role and user +* [SYNCOPE-515] - Bad integration test causes role ownership conflicts + +** Improvement +* [SYNCOPE-485] - Upgrade to Activiti 5.15.1 +* [SYNCOPE-486] - Update Selenium test configuration +* [SYNCOPE-507] - User login date conditional logging +* [SYNCOPE-511] - Enhance synchronization report information +* [SYNCOPE-519] - Report default values for connector properties +* [SYNCOPE-520] - Move reset sync token to resource actions + Release Notes - Syncope - Version 1.1.7 ** Bug * [SYNCOPE-484] - Reports and Content export fails over HTTPS connection + ** Improvement * [SYNCOPE-487] - make Velocity tools available in templates for notifications Modified: syncope/trunk/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java URL: http://svn.apache.org/viewvc/syncope/trunk/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java?rev=1608388r1=1608387r2=1608388view=diff == --- syncope/trunk/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java (original) +++ syncope/trunk/core/src/main/java/org/apache/syncope/core/security/SyncopeAuthenticationProvider.java Mon Jul 7 09:41:20 2014 @@ -22,9 +22,7 @@ import java.util.Collections; import java.util.Date; import java.util.Iterator; import java.util.Set; - import javax.annotation.Resource; - import org.apache.syncope.common.types.AttributableType; import org.apache.syncope.common.types.AuditElements; import org.apache.syncope.common.types.AuditElements.Result; @@ -144,18 +142,17 @@ public class SyncopeAuthenticationProvid } CAttr authStatuses = confDAO.find(authentication.statuses); -if (authStatuses != null) { -if (!authStatuses.getValuesAsStrings().contains(user.getStatus())) { -throw new DisabledException(User + user.getUsername() + not allowed to authenticate); -} +if (authStatuses != null !authStatuses.getValuesAsStrings().contains(user.getStatus())) { +throw new DisabledException(User + user.getUsername() + not allowed to authenticate); } authenticated = authenticate(user, authentication.getCredentials().toString()); + +updateLoginAttributes(user, authenticated); } } UsernamePasswordAuthenticationToken token; - if (authenticated) { token = new UsernamePasswordAuthenticationToken( authentication.getPrincipal(), @@ -177,20 +174,7 @@ public class SyncopeAuthenticationProvid LOG.debug(User {} successfully authenticated, with roles {}, authentication.getPrincipal(), token.getAuthorities()); - -if (user != null confDAO.find(log.lastlogindate, Boolean.toString(true)). -getValues().get(0).getBooleanValue()) { -
svn commit: r1608390 - in /syncope/branches/1_2_X/installer: ./ pom.xml
Author: ilgrosso Date: Mon Jul 7 10:02:21 2014 New Revision: 1608390 URL: http://svn.apache.org/r1608390 Log: [SYNCOPE-532] Fixing the build Modified: syncope/branches/1_2_X/installer/ (props changed) syncope/branches/1_2_X/installer/pom.xml Propchange: syncope/branches/1_2_X/installer/ -- --- svn:ignore (original) +++ svn:ignore Mon Jul 7 10:02:21 2014 @@ -1 +1,2 @@ target +.pom.xml.swp Modified: syncope/branches/1_2_X/installer/pom.xml URL: http://svn.apache.org/viewvc/syncope/branches/1_2_X/installer/pom.xml?rev=1608390r1=1608389r2=1608390view=diff == --- syncope/branches/1_2_X/installer/pom.xml (original) +++ syncope/branches/1_2_X/installer/pom.xml Mon Jul 7 10:02:21 2014 @@ -24,7 +24,7 @@ under the License. parent groupIdorg.apache.syncope/groupId artifactIdsyncope/artifactId -version1.3.0-SNAPSHOT/version +version1.2.0-SNAPSHOT/version /parent nameApache Syncope Installer/name
svn commit: r1608407 - /syncope/branches/1_1_X/src/site/xdoc/security.xml
Author: ilgrosso Date: Mon Jul 7 11:07:45 2014 New Revision: 1608407 URL: http://svn.apache.org/r1608407 Log: Adding report for CVE-2014-3503 Modified: syncope/branches/1_1_X/src/site/xdoc/security.xml Modified: syncope/branches/1_1_X/src/site/xdoc/security.xml URL: http://svn.apache.org/viewvc/syncope/branches/1_1_X/src/site/xdoc/security.xml?rev=1608407r1=1608406r2=1608407view=diff == --- syncope/branches/1_1_X/src/site/xdoc/security.xml (original) +++ syncope/branches/1_1_X/src/site/xdoc/security.xml Mon Jul 7 11:07:45 2014 @@ -34,27 +34,59 @@ under the License. pIf you want to report a vulnerability, please follow a href=http://www.apache.org/security/;the procedure/a./p - subsection name=CVE-2014-0111: Remote code execution by an authenticated administrator - pIn the various places in which Apache Commons JEXL expressions are allowed (derived schema definition, user / role templates, account links of resource mappings) a malicious administrator can inject Java code that can be executed remotely by the JEE container running the Apache Syncope core./p + subsection name=CVE-2014-3503: Insecure Random implementations used to generate passwords +pA password is generated for a user in Apache Syncope under certain circumstances, when no existing password + is found. However, the password generation code is relying on insecure Random implementations, which means + that an attacker could attempt to guess a generated password./p + +p + bAffects/b +/p +p + ul +liReleases 1.1.0 to 1.1.7/li + /ul +/p + +p + bFixed in/b +/p +p + ul +liRevision a href=http://svn.apache.org/viewvc?view=revisionamp;revision=r1596537;1596537/a/li +liRelease 1.1.8/li + /ul +/p +pRead the a href=http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3503;full CVE advisory/a./p + /subsection - pbAffects/b/p - p - ul - liReleases 1.0.0 to 1.0.8/li - liReleases 1.1.0 to 1.1.6/li - /ul - /p - - pbFixed in/b/p - p - ul - liRevisions a href=http://svn.apache.org/viewvc?view=revisionamp;revision=r1586349;1586349/a / a href=http://svn.apache.org/viewvc?view=revisionamp;revision=r1586317;1586317/a/li - liReleases 1.0.9 / 1.1.7/li - /ul - /p + subsection name=CVE-2014-0111: Remote code execution by an authenticated administrator +pIn the various places in which Apache Commons JEXL expressions are allowed (derived schema definition, + user / role templates, account links of resource mappings) a malicious administrator can inject Java code + that can be executed remotely by the JEE container running the Apache Syncope core./p + +p + bAffects/b +/p +p + ul +liReleases 1.0.0 to 1.0.8/li +liReleases 1.1.0 to 1.1.6/li + /ul +/p + +p + bFixed in/b +/p +p + ul +liRevisions a href=http://svn.apache.org/viewvc?view=revisionamp;revision=r1586349;1586349/a / a href=http://svn.apache.org/viewvc?view=revisionamp;revision=r1586317;1586317/a/li +liReleases 1.0.9 / 1.1.7/li + /ul +/p - pRead the a href=http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0111;full CVE advisory/a./p +pRead the a href=http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0111;full CVE advisory/a./p /subsection /section
svn commit: r1608410 - /syncope/site/security.html
Author: ilgrosso Date: Mon Jul 7 11:09:33 2014 New Revision: 1608410 URL: http://svn.apache.org/r1608410 Log: Publising updated security page Modified: syncope/site/security.html Modified: syncope/site/security.html URL: http://svn.apache.org/viewvc/syncope/site/security.html?rev=1608410r1=1608409r2=1608410view=diff == --- syncope/site/security.html (original) +++ syncope/site/security.html Mon Jul 7 11:09:33 2014 @@ -8,7 +8,7 @@ meta charset=UTF-8 / meta name=viewport content=width=device-width, initial-scale=1.0 / meta name=author content=Apache Syncope Documentation Team / -meta name=Date-Revision-mmdd content=20140703 / +meta name=Date-Revision-mmdd content=20140707 / meta http-equiv=Content-Language content=en / titleApache Syncope - Security Advisories/title @@ -143,7 +143,7 @@ iframe src=http://www.facebook.com/plugins/like.php?href=http://syncope.apache.org/send=falselayout=button_countshow-faces=falseaction=likecolorscheme=dark; scrolling=no frameborder=0 -style=border:none; width:100px; height:20px; margin-top: 10px; class=pull-right /iframe +style=border:none; width:80px; height:20px; margin-top: 10px; class=pull-right /iframe script type=text/javascript src=https://apis.google.com/js/plusone.js;/script @@ -238,38 +238,83 @@ under the License. -- div class=section -h3CVE-2014-0111: Remote code execution by an authenticated administratora name=CVE-2014-0111:_Remote_code_execution_by_an_authenticated_administrator/a/h3 - -pIn the various places in which Apache Commons JEXL expressions are allowed (derived schema definition, user / role templates, account links of resource mappings) a malicious administrator can inject Java code that can be executed remotely by the JEE container running the Apache Syncope core./p +h3CVE-2014-3503: Insecure Random implementations used to generate passwordsa name=CVE-2014-3503:_Insecure_Random_implementations_used_to_generate_passwords/a/h3 + +pA password is generated for a user in Apache Syncope under certain circumstances, when no existing password + is found. However, the password generation code is relying on insecure Random implementations, which means + that an attacker could attempt to guess a generated password./p + +p + bAffects/b +/p + +p + /p +ul + +liReleases 1.1.0 to 1.1.7/li + /ul + - -pbAffects/b/p - + p - /p + bFixed in/b +/p + +p + /p ul - + +liRevision a class=externalLink href=http://svn.apache.org/viewvc?view=revisionamp;revision=r1596537;1596537/a/li + +liRelease 1.1.8/li + /ul + + + +pRead the a class=externalLink href=http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3503;full CVE advisory/a./p + /div + + +div class=section +h3CVE-2014-0111: Remote code execution by an authenticated administratora name=CVE-2014-0111:_Remote_code_execution_by_an_authenticated_administrator/a/h3 + +pIn the various places in which Apache Commons JEXL expressions are allowed (derived schema definition, + user / role templates, account links of resource mappings) a malicious administrator can inject Java code + that can be executed remotely by the JEE container running the Apache Syncope core./p + + +p + bAffects/b +/p + +p + /p +ul + liReleases 1.0.0 to 1.0.8/li - + liReleases 1.1.0 to 1.1.6/li - /ul - + /ul + - -pbFixed in/b/p - + +p + bFixed in/b +/p + p - /p + /p ul - + liRevisions a class=externalLink href=http://svn.apache.org/viewvc?view=revisionamp;revision=r1586349;1586349/a / a class=externalLink href=http://svn.apache.org/viewvc?view=revisionamp;revision=r1586317;1586317/a/li - + liReleases 1.0.9 / 1.1.7/li - /ul - + /ul + - + pRead the a class=externalLink href=http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0111;full CVE advisory/a./p /div /div
svn commit: r1608411 - /syncope/site/security.html
Author: ilgrosso Date: Mon Jul 7 11:11:01 2014 New Revision: 1608411 URL: http://svn.apache.org/r1608411 Log: Forgot workaround for MSKINS-92 Modified: syncope/site/security.html Modified: syncope/site/security.html URL: http://svn.apache.org/viewvc/syncope/site/security.html?rev=1608411r1=1608410r2=1608411view=diff == --- syncope/site/security.html (original) +++ syncope/site/security.html Mon Jul 7 11:11:01 2014 @@ -143,7 +143,7 @@ iframe src=http://www.facebook.com/plugins/like.php?href=http://syncope.apache.org/send=falselayout=button_countshow-faces=falseaction=likecolorscheme=dark; scrolling=no frameborder=0 -style=border:none; width:80px; height:20px; margin-top: 10px; class=pull-right /iframe +style=border:none; width:100px; height:20px; margin-top: 10px; class=pull-right /iframe script type=text/javascript src=https://apis.google.com/js/plusone.js;/script
[CONF] Apache Syncope Ad libitum
Francesco Chicchiricco edited the page: Ad libitum Table of Contents maxLevel 1 style decimal 1.1.8 (July 3rd, 2014) This release contains a security fix forCVE-2014-3503, upgrade from previous 1.1.X versions is strongly suggested. Please followthese instructionsif you are upgrading from 1.1.7. ... View Online Like View Changes Stop watching space Manage Notifications This message was sent by Atlassian Confluence 5.0.3, Team Collaboration Software