dwalend | c82bb0e6e87 | Tool successfully authorizes access to topics for SHRINE2020-1132 | | |
dwalend | 42ce4d5cfb0 | Working but has no ACLs whatsoever for SHRINE2020-1132 | | |
dwalend | e61fd276b66 | These users don't need the Create permission anymore for SHRINE2020-1132 | | |
dwalend | 07803245c22 | Some cleanup partway through SHRINE2020-1132 | | |
dwalend | cb48ba956d7 | No reason to poll when using the admin's bonafides for SHRINE2020-1132 | | |
dwalend | 055e029af01 | src/main/docker/dev-environments/shrine-hub/network-setup/override.conf | | |
Carl Woolf | e72202c7406 | mention authz module in main pom | | |
Carl Woolf | 293fa9432e0 | first cut at copying in an old bunch of authzn classes, plus servlet config | | |
dwalend | b208519309c | Creating queues in network setup - and lots and lots of confif changes for SHRINE2020-1132 | | |
Carl Woolf | 353f61295d9 | Revert "cherry addition of some authzn files"
This reverts commit ebeb9b44bb0e0cced3d984d42d9cc45e224da74e. | | |
Xavier Haurie | ebeb9b44bb0 | cherry addition of some authzn files | | |
Carl Woolf | db15bc82de6 | Merge remote-tracking branch 'origin/sso-phase2' into sso-phase2
# Conflicts:
# authz/pom.xml | | |
Carl Woolf | c49567c8755 | reset branch to shortly after 400 release, and merge from latest develop | | |
Carl Woolf | a29aa4c0b1f | Merge remote-tracking branch 'origin/develop' into sso-phase2 | | |
dwalend | 50f1284fab7 | Now letting the network setup tool create the queues for SHRINE2020-1132 | | |
dwalend | 3425c179332 | Found it! SHRINE2020-1132 | | |
dwalend | df9e41c146c | More intermediate progress - checked in to share with Marc-Danie for SHRINE2020-1132 | | |
dwalend | 3d997d02b0f | Checkpoint to go see what works and why this does not - for SHRINE2020-1132 | | |
dwalend | 650a0763b04 | Start of drawing data structures through the system for SHRINE2020-1132 | | |
David Walend | 9f9bc4f1338 | Pull request #1344: Feature/SHRINE2020 1132
Merge in SHRINE/shrine from feature/SHRINE2020-1132 to develop
* commit... | | |
dwalend | 2d90f05e0c7 | Changes to docker for SHRINE2020-1257 | | |
David Walend | 127669ee4d2 | Pull request #1342: Feature/SHRINE2020 1249
Merge in SHRINE/shrine from feature/SHRINE2020-1249 to develop
* commit... | | |
dwalend | 2449f6f6ece | Marc-Danie's review comments for SHRINE2020-1249 | | |
dwalend | bf6af63619d | Merge branch 'develop' into feature/SHRINE2020-1249 | | |
dwalend | fbce5cbd559 | Added a slot for a Kafka config in Network for SHRINE2020-1132 | | |
dwalend | e5a51835619 | Revert "Revert "Changes for JDK17 for SHRINE2020-824""
This reverts commit ec019299707c3aba131450cf1a8b5d6fa071b0c8. | | |
dwalend | ec019299707 | Revert "Changes for JDK17 for SHRINE2020-824"
This reverts commit 9257741b207be0c72385d4e54976666980154e66. | | |
David Walend | e83160d122d | Pull request #1343: Changes for JDK17 for SHRINE2020-824
Merge in SHRINE/shrine from feature/SHRINE2020-824 to devel... | | |
dwalend | 9257741b207 | Changes for JDK17 for SHRINE2020-824 | | |
dwalend | ef303fe429b | My review pass for SHRINE2020-1249 | | |
dwalend | ab2672513e1 | Cleanup before the review for SHRINE2020-1249 | | |
dwalend | fbacb007259 | Figured out that the ReadResultRequestAdapter.process method actually does something SHRINE2020-1249 | | |
dwalend | 351017b3381 | Made the CRCClient a part for other things for SHRINE2020-1249 | | |
dwalend | 25d06862e87 | Another step toward making the CRCClient contained instead of a parent for SHRINE2020-1249 | | |
dwalend | cffa8bb33d8 | Factored out the ReadResultRequestAdapter into its own file for SHRINE2020-1249 | | |
David Walend | 0df924e30b3 | Pull request #1341: Bugfix/SHRINE2020 1254
Merge in SHRINE/shrine from bugfix/SHRINE2020-1254 to develop
* commit '... | | |
dwalend | d7b71d4b87a | Ticket to unwind the hack in SHRINE2020-1254 | | |
dwalend | 577a51c3559 | Overrode apache commons text dependency to fix a vulnerability for SHRINE2020-1254 | | |
David Walend | 91e65f6a4f9 | Pull request #1340: Feature/SHRINE2020 1250
Merge in SHRINE/shrine from feature/SHRINE2020-1250 to develop
* commit... | | |
dwalend | 1ab6260ea8e | Got rid of the Adapter superclass for SHRINE2020-1249 | | |
dwalend | 92b6121cccf | Removed need for Adapter class in this really complex unit test for SHRINE2020-1249 | | |
dwalend | dbaadc7bbc7 | Another step towards disolving Adapter for SHRINE2020-1249 | | |
dwalend | 4739b4a491c | Another step toward disolving Adapter for SHRINE20201249 | | |
dwalend | 5d95f00ec9b | Review comments from Marc-Danie for SHRINE2020-1250 | | |
dwalend | e1d16000975 | Got rid of BaseShrineResponse for SHRINE2020-1249 | | |
dwalend | 7632d432867 | Thinning out the Adapter's methods for SHRINE2020-1249 | | |
dwalend | b515e2db8b6 | Simplified and renamed DelegateAdapter to ReadResultRequestAdapter for SHRINE2020-1249 | | |
dwalend | 898b70b5bfb | Removed AbstractReadQueryResultAdapter and refactored around not having it in the codebase for SHRINE2020-1249 | | |
dwalend | 3d69219c416 | Removed a chunk of GLOOP for SHRINE2020-1249 | | |
dwalend | b871b18835c | Deleted an unused class for SHRINE2020-1249 | | |
dwalend | aff639f9166 | Cleared a todo for SHRINE2020-1250 | | |
dwalend | 73dba107629 | Renamed IOScheduler to RepeatedIOTask for SHRINE2020-1250 | | |
dwalend | d007c0cda69 | Got retries working for SHRINE2020-1250 | | |
Carl Woolf | 0d230104ad4 | incorporating shrineAuthorization app under apache | | |
dwalend | 9fd41c15a74 | Some pathfinding in the pom.xml file for SHRINE2020-1250 | | |
dwalend | 2601ffe5145 | I think my parallel exeuction work will survive the cats upgrade for SHRINE2020-1250 | | |
dwalend | 80b7f0c7388 | Switched to a repeatEval task with Signalling to stop for SHRINE2020-1250 | | |
Carl Woolf | 0f8890d5315 | Merge branch 'develop' into sso-phase2 | | |
Carl Woolf | 0a767903f6f | Merge remote-tracking branch 'origin/sso-phase2' into sso-phase2
# Conflicts:
# authz/src/main/java/net/shrine/authz... | | |
Carl Woolf | d7898eaf421 | not currently using authz module | | |
Xavier Haurie | 3fd9e534ffa | Implement SSO-based authorization; refactored the AuthzProvider methods to take an HttpServletRequest for argument; a... | | |
Carl Woolf | 68be3bae859 | remove specific userId. Add shrineSP.conf-sample | | |
Xavier Haurie | ea26f9ed1c7 | Push the profile(), isAuthorized(), and canBeDelegate() methods into the AuthzProvider interface and its current one ... | | |
Xavier Haurie | 082da0dc9db | check whether user is authorized before letting them access the application. If not authorized, throw en exception (v... | | |
Xavier Haurie | 2a6085e6177 | fix typos in method names; rename some properties, end-points and methods; use gmw3 statically when retrieving user i... | | |
Xavier Haurie | 40ba137e025 | Add 2 end points which return whether or not the user is fully authorized or can be delegated to; refactor come code ... | | |
Xavier Haurie | e77fc76e7c0 | call Profiles endpoint for the logged-in user; put it behind Shibb authn | | |
David Walend | d35789ca521 | Pull request #1339: Upgraded to the latest slick release for SHRINE2020-1240
Merge in SHRINE/shrine from feature/SHR... | | |
Xavier Haurie | 118f6d013fd | hard-code a call to Profiles, which works; move some unneeded classes out of the way; add comments to some methods; f... | | |
Xavier Haurie | cc407236181 | set up POM files for branch sso-phase2 | | |
Xavier Haurie | fe79c52b3db | inocuous change, hoping to trigger the snapshot build | | |
Xavier Haurie | 0bcd50cbb94 | add authz module lifted from shrine-sp module in defunct branch "sso-no-config " as of 7/14/2022 | | |
David Walend | 89d2fc9fd41 | Pull request #1338: Feature/SHRINE2020 1217
Merge in SHRINE/shrine from feature/SHRINE2020-1217 to develop
* commit... | | |
dwalend | b909560bec0 | Upgraded to the latest slick release for SHRINE2020-1240 | | |
dwalend | e279ec939a5 | Clear a comment for SHRINE2020-1217 | | |
dwalend | b8940d305b6 | Cleanup for SHRINE2020-1217 | | |
dwalend | e950fb79173 | Batch of changes to test for the Scala 2.13.9 upgrade for SHRINE2020-1217 | | |
Ansible Deploy | 20f926439af | Merge release branch release/4.0.0 into master. | | |
Ansible Deploy | 126233c582f | Update POMs with release version 4.0.0. | | |
dwalend | 8dcaa8dafbd | Merge branch 'release/4.0.0' into develop | | |
David Walend | 2928e32309a | Pull request #1337: New term root and user name since the last time we used the jmeter scripts - for SHRINE2020-1148
... | | |
dwalend | ebf7a284e70 | New term root and user name since the last time we used the jmeter scripts - for SHRINE2020-1148 | | |
dwalend | 555b13999ef | New term root and user name since the last time we used the jmeter scripts - for SHRINE2020-1148 | | |
dwalend | 058154fabaa | Parking this bit of progress on SHRINE2020-1219 to switch to release work | | |
Xavier Haurie | de24abb9c44 | Merge branch 'release/4.0.0' into sso-phase1.1 | | |
Marc-Danie Nazaire | 7f4ea896853 | Fixed network lifecycle file name in Dockerfile | | |
Carl Woolf | e808c0125e3 | Merge remote-tracking branch 'origin/sso-phase1.1' into sso-phase1.1 | | |
Carl Woolf | 1c12aacc405 | use map/getElse for header logic | | |
Xavier Haurie | 6ee7b54700e | remove authPing end point to match what is in the develop branch | | |
Xavier Haurie | 199e2da5d45 | Revert "remove authPing end point"
This reverts commit dd19584882f3dfcf7cc197e19c49f6421ca288e2. | | |
Xavier Haurie | dd19584882f | remove authPing end point | | |
Marc-Danie Nazaire | 3835e57ef5d | Added default value for webclient session timeout | | |
Marc-Danie Nazaire | a71344f4777 | Merge remote-tracking branch 'origin/sso-phase1.1' into sso-phase1.1 | | |
Marc-Danie Nazaire | 42c6a5379a8 | Renamed WebClientConfig that has the only the webclient configurations to WebClientRawConfig | | |
Xavier Haurie | fe36cd9a2da | add missing double quotes around key password attribute value | | |
Xavier Haurie | 479254a1b6f | add list of cipher suites, instead of relying to the older default list | | |
Xavier Haurie | 92ce392bea1 | revert inactivity interval needed to show idle timer dialog back to 0.7 * session timeout config parameter, instead o... | | |
Marc-Danie Nazaire | 2b0de2d6f9c | Merge remote-tracking branch 'origin/sso-phase1.1' into sso-phase1.1 | | |
Marc-Danie Nazaire | fc569b4ce69 | Modifed session timeout to be a duration and renamed sessionTimeoutMs config to sessionTimeout | | |
Xavier Haurie | 5f7b5ca881a | remove useless README | | |
Carl Woolf | ea85a4d2fab | Merge remote-tracking branch 'origin/sso-phase1.1' into sso-phase1.1 | | |
Carl Woolf | 7822ecc5379 | change final to sealed | | |
Xavier Haurie | 88aac5339c0 | make README for SSO setup point to the root Shrine 4.0.0 documentation | | |
Xavier Haurie | 19c4fd55b95 | Merge branch 'sso-phase1.1' of https://open.catalyst.harvard.edu/stash/scm/shrine/shrine into sso-phase1.1 | | |
Xavier Haurie | 3e11674b132 | Rename exception to "Issue" since it extends SSOIssue | | |
Carl Woolf | cab3864ad2a | show header value only for REMOTE_USER, no others | | |
David Walend | d4ce90ea980 | Pull request #1334: Feature/SHRINE2020 1084
Merge in SHRINE/shrine from feature/SHRINE2020-1084 to develop
* commit... | | |
Xavier Haurie | 65656940e71 | Merge branch 'sso-phase1.1' of https://open.catalyst.harvard.edu/stash/scm/shrine/shrine into sso-phase1.1 | | |
Xavier Haurie | 0548ef215df | Remove webclient config erroneously placed in adapter's reference.conf | | |
Carl Woolf | 783726489b4 | Merge remote-tracking branch 'origin/sso-phase1.1' into sso-phase1.1 | | |
Carl Woolf | b8672062868 | adjust test to expected correct timeout value | | |
Xavier Haurie | 5bea431b63f | Merge branch 'sso-phase1.1' of https://open.catalyst.harvard.edu/stash/scm/shrine/shrine into sso-phase1.1 | | |
Marc-Danie Nazaire | 738528cb47a | Renamed EnhanceWebclientConfig to AggregateWebClientConfig | | |
Xavier Haurie | 0f9df4d71c0 | change log message to "INFO" because it capture things like misspelled password, etc which are not truly errors | | |
dwalend | cd4b83de8f7 | Merge remote-tracking branch 'origin/develop' into feature/SHRINE2020-1084 | | |
dwalend | 6b2116efb4c | Marc-Danie review comment for SHRINE2020-1084 | | |
dwalend | 0649ccc63c3 | Started solving the version puzzles for SHRINE2020-1219 | | |
Carl Woolf | 0fa60eba880 | try short timeout for unit-tests | | |
Carl Woolf | 1468c904b4b | PR comment: If you're using SSO. Clean up 'NBSP' in sample | | |
Xavier Haurie | 30fa31eb4e2 | Merge branch 'sso-phase1.1' of https://open.catalyst.harvard.edu/stash/scm/shrine/shrine into sso-phase1.1 | | |
Xavier Haurie | b7877976cf3 | remove empty shrine-sp module | | |
Marc-Danie Nazaire | 0bc19bc16b4 | Modified ConfigUserSource to use the sessionTimeoutMs config variable | | |
Marc-Danie Nazaire | 2e0c29ce092 | Removed extraneous match case in onAuthFailure | | |
Marc-Danie Nazaire | c8c4847907c | Reverted to use sessionTimeoutMs returned by qep/login which is set in shrine.conf | | |
Xavier Haurie | 4e1d1ab2a81 | Try to configure session timeout in reference.conf | | |
Xavier Haurie | 2b4e8240fac | PR feedback | | |
Xavier Haurie | 5c8ea2077f3 | PR feedback | | |
Xavier Haurie | 39d19a52875 | PR comment | | |
Xavier Haurie | 7033f3e34ad | Fix broken session timeout in non-SSO / PM auth version | | |
Xavier Haurie | bce1df5d097 | Revert "Set newly externalized sessionTimeoutMs tp 30 seconds in reference.conf of QEP service"
This reverts commit ... | | |
Xavier Haurie | 19fdd15c2bf | Set newly externalized sessionTimeoutMs tp 30 seconds in reference.conf of QEP service | | |
Xavier Haurie | 92a29567003 | remove authType from the webClientConfig REST call response | | |
Xavier Haurie | 6b6c40b4e83 | Use isSsoMode cookie instead of relying on networkConfig.authType being equal to a hard-coded value | | |
Xavier Haurie | 3f40069db5e | clean-up sample config files | | |
Xavier Haurie | 79b5c6a5384 | change server.xml sample file to contain pre-existing configuration for Shrine | | |
Xavier Haurie | 396e3135413 | uncomment /Status and /Session Shibboleth endpoints | | |
Xavier Haurie | 4f6566273ba | set 190000 back to 180000 | | |
Xavier Haurie | 5d3d17b4b1f | streamline shibboleth config file and attribute map | | |
Xavier Haurie | c469f157eb2 | be more explicit and more accurate about entityIDs and logout URLs | | |
Xavier Haurie | df50570569b | fix typos | | |
Xavier Haurie | 76c9f117203 | fix typos | | |
Xavier Haurie | 7d8559d0931 | update sp.conf-sample, straggler | | |
Xavier Haurie | 7221e8c5271 | update sp.conf-sample to reflect latest changes on the server (handling headers in sp.conf file instead of SSOFilter,... | | |
Xavier Haurie | 9321eb98a0f | minor layout / typo fixes; add shrine.conf-sample | | |
Xavier Haurie | 62ff0522dfe | externalize session timeout | | |
Xavier Haurie | 78a7d68e8e4 | Merge branch 'sso-phase1.1' of https://open.catalyst.harvard.edu/stash/scm/shrine/shrine into sso-phase1.1 | | |
Xavier Haurie | 539ba793d31 | improve documentation about how REMOTE_USER gets populated; streamline server.xml-sample to contain only the 2 connec... | | |
Carl Woolf | 9760e15943a | Revert "adjust timeout / logout code, avoid shibb logout of all tabs due to one shrine session timeout"
This reverts... | | |
Carl Woolf | df6d152e60b | Revert "try omitting inactivity popup if sso"
This reverts commit 6b7455106cac513894a2cacf4cb57801af765fc2. | | |
Carl Woolf | 6b7455106ca | try omitting inactivity popup if sso | | |
Carl Woolf | b6a1d764845 | adjust timeout / logout code, avoid shibb logout of all tabs due to one shrine session timeout | | |
Xavier Haurie | 599c4fdc293 | externalize session timeout | | |
Carl Woolf | 08ce4a1160a | Merge remote-tracking branch 'origin/release/4.0.0' into sso-phase1 | | |
Carl Woolf | 127c6b193c0 | Merge remote-tracking branch 'origin/sso-phase1' into sso-phase1 | | |
Carl Woolf | b32ed4d58f2 | try omitting the 'expired' alert | | |
Xavier Haurie | c795f9a13c5 | Merge branch 'sso-phase1' of https://open.catalyst.harvard.edu/stash/scm/shrine/shrine into sso-phase1 | | |
Xavier Haurie | ce559891089 | remove obsolete SSOFilter | | |
Carl Woolf | 909f9adf6e1 | Merge remote-tracking branch 'origin/sso-phase1' into sso-phase1 | | |
Carl Woolf | 305e1f9ed32 | try omitting sso instance in filter | | |
dwalend | 6e9403378cf | My review fixes for SHRINE2020-1084 | | |
dwalend | 5f94d8eda31 | Queue policy seems to work for SHRINE2020-1084 | | |
Xavier Haurie | 94461cf24e2 | comment out one console.log() statement in secureFetch.js | | |
Xavier Haurie | 869e7215fcc | remove commented-out code | | |
Xavier Haurie | ecf54e7aca7 | factor out duplicated getCookie() js function | | |
Xavier Haurie | cec10d061e5 | add no-cors option to REST calls made via secureFetch.js | | |
Marc-Danie Nazaire | 76f02279547 | SHRINE2020-1233 - When Operator > Date ranges are cleared out on changing Lab values for a concept and SHRINE2020-123... | | |
Marc-Danie Nazaire | 3af82cdf10f | Pull request #1333: SHRINE2020-1234 - Reloading a Temporal query with demographic concepts does not disable entering ... | | |
Xavier Haurie | 8a46c342516 | Revert "move cache-related headers back into SSOFilter"
This reverts commit bf4b1a814ce7e05e8ee6d6261f0b98b5fa37ebfc. | | |
Marc-Danie Nazaire | ea0295008ac | SHRINE2020-1233 - When Operator > Date ranges are cleared out on changing Lab values for a concept | | |
Marc-Danie Nazaire | 9b08ec4af2f | SHRINE2020-1232 - Validations > User is able to enter alphabets/special characters in Event relationship numeric only... | | |
Marc-Danie Nazaire | 48d89131217 | SHRINE2020-1234 - Reloading a Temporal query with demographic concepts does not disable entering date ranges | | |
Marc-Danie Nazaire | 5227e54cc11 | SHRINE2020-1234 - Reloading a Temporal query with demographic concepts does not disable entering date ranges | | |
Marc-Danie Nazaire | 41030385915 | SHRINE2020-1234 - Reloading a Temporal query with demographic concepts does not disable entering date ranges | | |
Xavier Haurie | bf4b1a814ce | move cache-related headers back into SSOFilter | | |
Marc-Danie Nazaire | 16378e0e3e7 | Pull request #1332: SHRINE2020-1233 - When Operator > Date ranges are cleared out on changing Lab values for a concep... | | |
Marc-Danie Nazaire | 760767ed460 | SHRINE2020-1233 - When Operator > Date ranges are cleared out on changing Lab values for a concept | | |
Xavier Haurie | af266cf73c3 | move cache-related, CORS-related, and cookie-related headers to Apache | | |
Xavier Haurie | dbbfa19c98f | commented out too much (creating isSsoMode cookie) | | |
Xavier Haurie | 4553be4e2bb | comment out un-needed CORS-related code/comments | | |
Carl Woolf | 0cc1aa100d1 | fetch-based solution? for 302 re-locate? | | |
dwalend | 0a50c5e3092 | Started on queue ARNs for SHRINE2020-1084 | | |
dwalend | d839a70f5ef | Setting the send policy for SHRINE2020-1084 | | |
Xavier Haurie | b0f45fadfff | attempt to fix CORS (for REST calls) | | |
Marc-Danie Nazaire | 41778acd4ec | Pull request #1331: SHRINE2020-1232 - Validations > User is able to enter alphabets/special characters in Event relat... | | |
Marc-Danie Nazaire | 6ce0bab18e4 | SHRINE2020-1232 - Validations > User is able to enter alphabets/special characters in Event relationship numeric only... | | |
Marc-Danie Nazaire | 4f42356502d | SHRINE2020-1232 - Validations > User is able to enter alphabets/special characters in Event relationship numeric only... | | |
Carl Woolf | 7246078404e | cors header (will need to externalize) and reinstating other earlier tweaks | | |
Xavier Haurie | be3d34a03bd | Merge branch 'sso-phase1' of https://open.catalyst.harvard.edu/stash/scm/shrine/shrine into sso-phase1 | | |
Next → |