 Xav | 1d09d4f5d7a | refactor method getAuthorization() to isAuthorized() | | |
Xav | 7c68dbc94d9 | Merge remote-tracking branch 'origin/sso-phase2' into sso-phase2 | | |
Xav | a1de472bea8 | remove stale dependency | | |
 Carl Woolf | e64faaa9f1c | Merge remote-tracking branch 'origin/sso-phase2' into sso-phase2 | | |
Carl Woolf | 0f581e31fd9 | Remove Util.scala. allConfig and one method relocated / renamed | | |
Xav | 90ea5c0f3bd | clean up imports | | |
Xav | 801a2163b0d | remove stale dependency | | |
Xav | e3b61b35949 | make exception message more informative | | |
Xav | 6b28c925a74 | Merge remote-tracking branch 'origin/sso-phase2' into sso-phase2 | | |
Xav | 22701d75edb | remove stale dependency on AuthorizationService | | |
Carl Woolf | 89fc54878ec | Merge remote-tracking branch 'origin/sso-phase2' into sso-phase2 | | |
Carl Woolf | d2f9ee42956 | Cleanup (nuke) smoke-test url-endpoints | | |
Xav | bdd50a12363 | revert version in POM to sso-phase2 | | |
Xav | 0f3b407fd96 | revert version in POM to sso-phase2 | | |
Xav | da479b596cc | copy the 3 sample configs for SOO into sso/shrine/shrine.conf, as 3 commented out config blocks | | |
Xav | fb48dbc0a04 | move the 3 sample configs for SOO into the "big" shrine.conf, as 3 commented out config blocks | | |
Xav | d1cfceccaf9 | add a comment about where the config item unauthorizedMessage is set | | |
Xav | 694dbc4bebe | add a comment about where the config item unauthorizedMessage is set | | |
Xav | f6876dee5a8 | Merge remote-tracking branch 'origin/sso-phase2' into sso-phase2 | | |
Xav | 0ec3b2d13f9 | configure unauthorizedMessage in the qep' reference.conf file only. | | |
Carl Woolf | 077eb21236b | Merge remote-tracking branch 'origin/sso-phase2' into sso-phase2 | | |
Carl Woolf | e8fd5b1f476 | use forall() to eliminate one more var | | |
Xav | ca463ed03c3 | update version to 4.1.0 | | |
Carl Woolf | ab20583cc1e | cleanup unused var's, though I think they should have been used? | | |
Carl Woolf | f1691086b65 | add summary comments to each authorizer class | | |
Carl Woolf | 87c1a5ec895 | remove confusing / provocative comment | | |
Carl Woolf | 01c79f8c22f | tweak val-names, and more-concise expressions | | |
Carl Woolf | 40c020a85f4 | for PR comment | | |
 Marc-Danie Nazaire | 588bbaf9e43 | removed kafka trust store | | |
Carl Woolf | d337c896d91 | regex authorizer can parse negative regex | | |
Marc-Danie Nazaire | c8538fa5482 | modifier sasl jaas config to use plainloginmodule | | |
Carl Woolf | 7c11a91da7b | adjust pretty-print of user-info. provide regex authorizer | | |
Carl Woolf | bc6252331bb | clean up comment | | |
Xav | 152011eb3cc | Merge branch 'develop' into sso-phase2 | | |
 dwalend | 25606a9dd20 | Unwind blocker for SHRINE2020-1305 | | |
dwalend | 28100152661 | Added a little logging, and try moving the kafka send to the http client thread pool for SHRINE2020-1305 | | |
dwalend | e7ae3ee780f | Merge remote-tracking branch 'origin/develop' into bugfix/SHRINE2020-1306 | | |
Xav | 5d493da412c | cleaning up my mess | | |
Xav | 1a8a3b19619 | Revert "fix class name; remove unused POM dependency"
This reverts commit e7f5a98268e09473ae22e12b39d5e5c3bb7f5d73. | | |
Xav | 2b0af40a9d1 | Revert "code for a new attribute provider based on using Xpath to extract attributes from XML returned by end-points"... | | |
Xav | e7f5a98268e | fix class name; remove unused POM dependency | | |
Xav | 21ddfa41160 | code for a new attribute provider based on using Xpath to extract attributes from XML returned by end-points | | |
dwalend | 9fcd4af7231 | Try receiving messages using the db thread pool for SHRINE2020-1306 | | |
Carl Woolf | 3e8b3e0279d | Merge remote-tracking branch 'origin/sso-phase2' into sso-phase2 | | |
Carl Woolf | c0a5c40d6e0 | dump of user info may be good for regex authz | | |
Xav | 18cf427a535 | Merge remote-tracking branch 'origin/sso-phase2' into sso-phase2 | | |
Xav | 2c75e76bbbf | remove console.log() statements by Carl and Xav | | |
dwalend | 505d7f9f4f6 | Try some withTransactionIsolation(TransactionIsolation.RepeatableRead) for SHRINE2020-1306 | | |
 David Walend | 7adc34119e2 | Pull request #1359: Bugfix/SHRINE2020 1282
Merge in SHRINE/shrine from bugfix/SHRINE2020-1282 to develop
* commit '... | | |
dwalend | b1dbbef5ef6 | Added some .withTransactionIsolation(TransactionIsolation.Serializable) for SHRINE2020-1306 | | |
Carl Woolf | d312e7b8a9e | profiles to use faculty-type | | |
Carl Woolf | d9d4d165d25 | adjust semantics of bw authorizer per demo meeting | | |
dwalend | 0e68507a2bc | Trying a bounded thread pool and some fairness for SHRINE2020-1306. I think it'll actually also need a queue, but bab... | | |
Xav | 44dbea3ccc9 | Merge branch 'sso-phase2' of https://open.catalyst.harvard.edu/stash/scm/shrine/shrine into sso-phase2 | | |
Xav | 93d6ef0e6d2 | Create a new authorizer class which looks only at the black- and white-list attributes | | |
dwalend | 667cada71ca | An experiment - can I force ACID by bringing allTableVersions' query row into the transaction at the beginning - for ... | | |
Carl Woolf | e8bd289dd5c | remove speculative additions to middleware user-object | | |
Marc-Danie Nazaire | e34c480b1b9 | Fixed tutorial not being displayed after manually logging out and logging back in | | |
Marc-Danie Nazaire | 21f5e293c32 | Fixed tutorial not being displayed after automatic session timeout logout | | |
Carl Woolf | ad13f14579e | cleanup IdleTimer -- no clearLogin, as also in Header | | |
Xav | c2cc75e818b | remove tutorial dialog when clicking the log off button from the timeout dialog | | |
dwalend | 9781cc5205d | Review cleanup for SHRINE2020-1282 | | |
Xav | c20e46036b1 | remove tutorial dialog when clicking the log off button from the timeout dialog | | |
Xav | a134404b953 | reinstate lines commented out in error | | |
dwalend | 0daec1c4e24 | Try using the java api for SHRINE2020-1282 | | |
dwalend | 7cb48047371 | One more try at using a resource outside of context for SHRINE2020-1282 | | |
Xav | b79e96ed1d5 | added instrumentation around IdleTimer and Tutorial | | |
Carl Woolf | f747a4dea2a | oops, sometimes it's ok to be in a negative mood | | |
Carl Woolf | 10030dc8774 | proposed solution for network.config as well as clearLogin | | |
Carl Woolf | fff2e213396 | improve url persistence logic | | |
Marc-Danie Nazaire | 471850605f0 | SHRINE2020-1282 - CRC invocations are not using the right thread pool- Modified to use a specified blocker in produce... | | |
Carl Woolf | 2e37f30649f | instrumentation for exploring timeout behavior | | |
Marc-Danie Nazaire | 3605713c2a7 | SHRINE2020-1282 - CRC invocations are not using the right thread pool- Modified to create a KafkaProducer resource | | |
Xav | b73cb88e911 | back to buggy teimout/logout behavior with dispatch(clearLogin()) | | |
Xav | 542b27b0ed5 | code clean up | | |
Carl Woolf | 9356f6be209 | have some embedded util code to show headers/cookies | | |
Carl Woolf | 7eb61ea4269 | Merge remote-tracking branch 'origin/sso-phase2' into sso-phase2 | | |
Carl Woolf | 730015f3c7a | see if idleTimer less flaky without gratuitous dispatch to clearLogin() | | |
Xav | 5206a355f77 | sync-up no-sp.conf file with what is in the shrine-sso-config repo right now | | |
Carl Woolf | 7baf02c2730 | use filter only if 'sso' mode. tweak configs | | |
Carl Woolf | 6b0a5f6f6e1 | refrain from loading authz-related 'services' if non-sso | | |
Xav | dcd4bc3b43d | stop looking for "unauthorizedUrl" config property under all PM/SSO/Authz permutations, because it may legitimately n... | | |
Xav | f7b50a6ac5f | add missing unauthorized message to sample config file | | |
Carl Woolf | 71ec141519e | cleanup some cruft, hone comments and readme | | |
Carl Woolf | 27ddc515caf | tweak sample config and some logic | | |
Carl Woolf | f6b35686570 | arrange methods in order of usage | | |
Carl Woolf | 0b8899005c9 | tweak comment, adjust location of vals | | |
Carl Woolf | 7529d7981dc | cleanup imports, and one comment | | |
Carl Woolf | bba2c3efe0d | eliminate yet another magic string | | |
Carl Woolf | f9b052cf7c9 | Merge remote-tracking branch 'origin/sso-phase2' into sso-phase2 | | |
Carl Woolf | b97d29cc9e5 | eliminate another magic string | | |
Xav | 070fb08d973 | simplify logic / remove redundancy in AuthorizationService | | |
Carl Woolf | e9a4a2d1f6e | eliminate magic string | | |
Carl Woolf | ebc5e246e65 | prune the pom | | |
Xav | 7ec57e3d6b6 | simplify logic / remove redundancy in AuthorizationService | | |
Xav | 864092404f5 | add no-sp.conf-sample file, edit sp.conf-sample to reflect new way of handling isSsoMode cookie | | |
Xav | 51248e4c862 | new sample shrineSP.conf file with content to choose from for 3 modes of authentication and authorization (PM, SSO, S... | | |
Xav | 23784422b79 | Merge remote-tracking branch 'origin/sso-phase2' into sso-phase2 | | |
Xav | 53e8aa18b1a | style the unauthorized page text by copying the computed CSS of the paragraph "Define Inclusion and Exclusion Criteri... | | |
dwalend | 6361fa26b6f | Try a pipe for SHRINE2020-1282 | | |
Carl Woolf | e0d2f33dce3 | extra console log for idle-timer logout | | |
dwalend | d67a36b0e89 | Try a lazy approach so that the deploy script can run for SHRINE2020-1282 | | |
dwalend | 339bece95b3 | Now without locking up the network setup tool forever SHRINE2020-1282 | | |
Carl Woolf | b5af5433979 | extra console log for idle-timer logout | | |
dwalend | 7fff58f52dc | Some logging to see what's going on for SHRINE2020-1282 | | |
Carl Woolf | 2472a27bb80 | hardier handling of 'free-pass' urls in filter | | |
dwalend | ca16f864af9 | Maybe reusing the producer in fs2-kafka for SHRINE2020-1282 | | |
dwalend | 870fc44f4ae | Try a drain for SHRINE2020-1282 | | |
Carl Woolf | 30ce7476c62 | React-based wiring for unauth page to use config'd message | | |
dwalend | de7df867be9 | Rolling back the bounded thread pool for SHRINE2020-1282 | | |
dwalend | 0406f4881b4 | Possible fix for SHRINE2020-1282 - found and maybe fixed a thread leak | | |
Carl Woolf | b8a2d7a22fb | Merge remote-tracking branch 'origin/sso-phase2' into sso-phase2 | | |
Carl Woolf | 20250ab1e65 | basis for styling unauth page | | |
Xav | 3d49816c753 | Merge remote-tracking branch 'origin/sso-phase2' into sso-phase2 | | |
Xav | 1ae0d39fbd9 | make unauthorized message configurable and pass it to the front-end as part of the webClientConfig JSON content | | |
Marc-Danie Nazaire | 6d5fa00de2b | Merge remote-tracking branch 'origin/sso-phase2' into sso-phase2 | | |
Marc-Danie Nazaire | 1eee541caeb | Moved UnAuthorized from pages to componentd | | |
Carl Woolf | c828a323f09 | remove toy properties from map | | |
Carl Woolf | cb2b4853981 | Merge remote-tracking branch 'origin/develop' into sso-phase2
# Conflicts:
# commons/util/src/main/scala/net/shrine/... | | |
Marc-Danie Nazaire | 025692bb91f | Merge branch 'sso-phase2' of https://open.catalyst.harvard.edu/stash/scm/shrine/shrine into sso-phase2
� Conflicts:
... | | |
Marc-Danie Nazaire | d6dc230e4b0 | Changes for loading unauthorized page | | |
dwalend | 04c18d7018d | Bounded thread pools and more logging for SHRINE2020-1282 | | |
Carl Woolf | 500bd5fbc18 | Merge remote-tracking branch 'origin/sso-phase2' into sso-phase2
# Conflicts:
# shrine-setup/src/main/resources/sso/... | | |
Carl Woolf | 4be70eb4aee | update isSsoCookie creation | | |
dwalend | e6e910d7a76 | Checkpointing SHRINE2020-1218, maybe a third of the way to compiling the big change | | |
Xav | 77fe4b8d85f | fix how the unauthorized URL gets handled | | |
Marc-Danie Nazaire | b98e05bc336 | Added new UnAuthorized page to pages/index.js | | |
Marc-Danie Nazaire | 9aa4176e8be | Added new UnAuthorized page to pages/index.js | | |
Xav | 3605a97cc18 | trying to make unauthorized page work | | |
Xav | ba9ad69cdcf | fix error in comment regarding use of HTTP vs AJP | | |
Xav | d9089c11c97 | pare down sample config files to only what is needed / remove redundancy | | |
Xav | f1e168b26ca | add one though the previous documentation | | |
Xav | 63ce81187e9 | Add TODO documenting discussion between developers | | |
dwalend | af7fa7479c3 | Removed dependency on reactive streams for SHRINE2020-1218 | | |
David Walend | ba403ce16e7 | Pull request #1357: Fix for SHRINE2020-1281 - removed a dependency on SEnum and some very simple tests
Merge in SHRI... | | |
Xav | 2731d9d2a2b | update sample config files to use AJP again | | |
Xav | 33fe8342396 | update sample config files | | |
Carl Woolf | a0a4d862813 | make generalAuthorization property in userInfo available in session (though for now, not in the smoke output) | | |
Carl Woolf | 00472205333 | wire userInfo into the login-session lifecycle | | |
dwalend | 2e1fb29a5e9 | Fix for SHRINE2020-1281 - removed a dependency on SEnum and some very simple tests | | |
Carl Woolf | dc81f71de7d | eliminate (we think an) unnecessary cookie config | | |
Carl Woolf | b55a8561081 | replace diagnostic cookies with stub use of session | | |
David Walend | 3228a27c162 | Pull request #1356: Feature/SHRINE2020 846
Merge in SHRINE/shrine from feature/SHRINE2020-846 to develop
* commit '... | | |
dwalend | e830a00a33f | Code review fix from Marc-Danie for SHRINE2020-846 | | |
dwalend | 3596b7f2d9f | Fixed a wildcard in an import for SHRINE2020-1280 | | |
Xav | bd3f47e4b6c | pass cookie to apache server and from there to the browser (by setting max-age to -1) | | |
Xav | 5a77e7c26d7 | pass cookie to apache server by setting max-age to -1 | | |
dwalend | 460a1d9b43e | Merge remote-tracking branch 'origin/develop' into feature/SHRINE2020-846 | | |
dwalend | e9e5387ba1f | Comments mostly about punting work into the future for SHRINE2020-846 | | |
dwalend | 33cb37b2125 | Some tidying up for SHIRNE2020-846 before taking on RunQueryResponse | | |
Carl Woolf | 7de3c9d27e9 | simplify smoke/cookies endpoint. remove defunct dump-map code | | |
Carl Woolf | 04eaf166586 | precise URI's for authz-free-pass | | |
Xav | 479c52a8bef | Create a test cookie | | |
Carl Woolf | c39689aa0b6 | new, improved filter, for more robust authorization, logouts seem to work better | | |
Marc-Danie Nazaire | fa6b9aa0a8c | Pull request #1355: Feature/SHRINE2020 1198 - Update docker container to use 1.7.13
Merge in SHRINE/shrine from feat... | | |
dwalend | b0f4c4e4acc | Cleaned out ReadQueryInstancesResponse for SHRINE2020-846 | | |
dwalend | e0ae31bba40 | Removed AbstractReadInstanceResultsResponse for SHRINE2020-846 | | |
Marc-Danie Nazaire | 44ef8a6a317 | SHRINE2020-1198 - Update docker container to use 1.7.13 - Fixed tomcat startup when network already exists | | |
David Walend | 2a91afbd7c0 | Pull request #1354: Feature/SHRINE2020 1273
Merge in SHRINE/shrine from feature/SHRINE2020-1273 to develop
* commit... | | |
Marc-Danie Nazaire | 62c457b676f | SHRINE2020-1198 - Update docker container to use 1.7.13 - Fixed mysql jdc deprecated error in log and restarting network | | |
Xav | 777c9339d93 | flesh out stub for calling authz from middleware; move authorization logic from AuthzHttp4sResource to AuthorizationS... | | |
Marc-Danie Nazaire | f12cbc2c4f3 | SHRINE2020-1198 - Update docker container to use 1.7.13 - updated myql connector library and the
tomcat container ver... | | |
dwalend | 724fa2f6ba8 | Moved ReadInstanceResultsResponse into a CrcClient. Fix for SHRINE-2706 and more work toward SHRINE2020-846 | | |
Carl Woolf | 61fd9f76d6a | stub for calling authz from middleware | | |
Carl Woolf | 22f4901bbc2 | change name of middleware object | | |
Marc-Danie Nazaire | 1133df9b69b | SHRINE2020-1198 - Update docker container to use 1.7.13 | | |
dwalend | b3910053063 | Added a query id to CrcClient's hofs for SHRINE2020-846 | | |
dwalend | c3a3c271e50 | Replaced ReadResultClient with a call to a generified CrcClient for SHRINE2020-846 | | |
dwalend | 99a7d6b51ea | Decided Client was a fine postfix for named-requesters for SHRINE2020-846 | | |
Xav | 49b6bd41925 | Merge branch 'sso-phase2' of https://open.catalyst.harvard.edu/stash/scm/shrine/shrine into sso-phase2 | | |
Carl Woolf | 15dc5debab8 | Merge remote-tracking branch 'origin/sso-phase2' into sso-phase2 | | |
Carl Woolf | 536ed00d75b | add trivial map to output of ..../qep/login . Coming Soon: authz info? | | |
Xav | 947b2065d8f | remove dead config | | |
Xav | 266380e02b4 | see if HttpSession is persistent | | |
Xav | 114ff9ea5f5 | Merge remote-tracking branch 'origin/sso-phase2' into sso-phase2 | | |
Xav | c0d4a258761 | try using HttpSession again | | |
Carl Woolf | 69d619b40f2 | yeah, currently do not believe in guard, it seems not to help | | |
dwalend | 8c0de28e2c9 | My own review of SHRINE2020-1273 | | |
Carl Woolf | 74a8a309c82 | remove (doubled) filter declarations from web.xml -- they are declared via annotations | | |
dwalend | 404bb03740c | Little bits while testing AWS SQS without FIFO for SHRINE2020-1273 | | |
Carl Woolf | c7a8d85ffc6 | more guards for 'committed' servletResponse | | |
Carl Woolf | a65a8b82e4b | do not need to be authorized in order to logout! | | |
Carl Woolf | 353eb874c3c | more robust guard for 'committed' httpResponse | | |
Carl Woolf | 49c7240f90f | move url val to block where it is used | | |
Carl Woolf | 04199ec4d8a | break out 'guard condition' once more | | |
Carl Woolf | ad891d196cd | oops, need == but had != | | |
Carl Woolf | 46cdeb3d0f0 | clean up filter a bit | | |
Carl Woolf | 673298f9a91 | adjust logic so that it does require checkAndRedirect for the checkAndRedirect itself! | | |
| Next → |
