Activity lams-github/

More
5f9e583
changed 42 files
v4.7, v4.8

LDEV-4932 Passing CSRF token as a post rather than get

More
3fa24a8
changed 1 file
v4.7, v4.8

LDEV-4932 fix checkbox toggle issue

More
1ef1213
changed 24 files
v4.7, v4.8

LDEV-4932 Adding CSRF to Admin

Adding it to:

- User roles

- Create course

- Clone lessons

- assign roles in courses

- global roles

- change password for course

- change user pass

- delete all lessons

More
ae4e7fd
changed 24 files
v4.7, v4.8

LDEV-4932 Add CSRF to monitor and central

* Add CSRF protection to:

- Change lesson status (incl. remove)

- Remove lesson using main.jsp button

- Rename lesson

* Start using /common/taglibs.jsp in lams_central

- -0
- +7
/lams_central/conf/security/Owasp.CsrfGuard.properties
- History
- Source
- Diff
/lams_central/.../Owasp.CsrfGuard.properties
- -5
- +2
/lams_central/web/addLesson.jsp
- History
- Source
- Diff
/lams_central/web/addLesson.jsp
- -6
- +1
/lams_central/web/admin.jsp
- History
- Source
- Diff
/lams_central/web/admin.jsp
- -7
- +1
/lams_central/web/authoringConfirm.jsp
- History
- Source
- Diff
/lams_central/web/authoringConfirm.jsp
- -0
- +8
/lams_central/web/common/taglibs.jsp
- History
- Source
/lams_central/web/common/taglibs.jsp
- -2
- +1
/lams_central/web/dialogCloser.jsp
- History
- Source
- Diff
/lams_central/web/dialogCloser.jsp
- -6
- +1
/lams_central/web/editLessonIntro.jsp
- History
- Source
- Diff
/lams_central/web/editLessonIntro.jsp
- -5
- +2
/lams_central/web/error.jsp
- History
- Source
- Diff
/lams_central/web/error.jsp
- -7
- +2
/lams_central/web/errorContent.jsp
- History
- Source
- Diff
/lams_central/web/errorContent.jsp
- -5
- +1
/lams_central/web/favoriteOrganisations.jsp
- History
- Source
- Diff
/lams_central/.../favoriteOrganisations.jsp
- -7
- +7
/lams_central/web/includes/javascript/main.js
- History
- Source
- Diff
/lams_central/web/.../javascript/main.js
- -5
- +1
/lams_central/web/index.jsp
- History
- Source
- Diff
/lams_central/web/index.jsp
- -6
- +4
/lams_central/web/main.jsp
- History
- Source
- Diff
/lams_central/web/main.jsp
- -8
- +2
/lams_central/web/outcome/outcomeEdit.jsp
- History
- Source
- Diff
/lams_central/web/outcome/outcomeEdit.jsp
- -8
- +3
/lams_central/web/outcome/outcomeManage.jsp
- History
- Source
- Diff
/lams_central/web/.../outcomeManage.jsp
… 9 more files in changeset.

More
c1a3db5
changed 4 files
v4.7, v4.8

LDEV-4932 Add CSRF to central (outcomes)

Adding CSRF protection to:

- Delete outcomes

More
3abaa53
changed 2 files
v4.7, v4.8

LDEV-4932 Add CSRF for admin

- Adding CSRF to delete preview lessons

More
0023706
changed 6 files
v4.7, v4.8

LDEV-4932 Adding CSRF protection to admin

- Adding user add/edit/remove/disable

More
6dc03e1
added 1 file
v4.7, v4.8

LDEV-4932 Secure gradebook calls with CSRF Guard

* Secure the following gradebook calls in particular:

- Release marks

- Any change in marks

* Add taglibs.jsp to gradebook project

More
0933451
changed 15 files
v4.7, v4.8

LDEV-4932 Secure gradebook calls with CSRF Guard

* Secure the following gradebook calls in particular:

- Release marks

- Any change in marks

* Add taglibs.jsp to gradebook project

More
845b503
changed 43 files
v4.7, v4.8

LDEV-4932 Secure save tool authoring with CSRF Guard

More
a34930f
changed 3 files
v4.7, v4.8

Merge remote-tracking branch 'origin/develop' into LDEV-4745

lams_tool_scratchie/src/java/org/lamsfoundation/lams/tool/scratchie/service/IScratchieService.java

lams_tool_scratchie/src/java/org/lamsfoundation/lams/tool/scratchie/service/ScratchieServiceImpl.java

More
6a7a0b2
changed 0 files
v4.7, v4.8

Merge remote-tracking branch 'origin/master' into develop

More
d3fa4b8
changed 0 files
v4.7, v4.8

Merge branch 'LDEV-4936'

More
5fad66d
changed 4 files
v4.7, v4.8

LDEV-4936 Fix layout for tool groups in sysadmin

More
12b36e9
changed 3 files
v4.7, v4.8

LDEV-4932 Adding CSRF admin

Adding CSRF to delete session management

More
2c2a416
changed 5 files
v4.7, v4.8

LDEV-4932 Adding CSRF to admin

Adding CSRF token:

- When adding/editing learning outcomes

- Adding/editing and removing themes

More
3a9b27c
changed 5 files
v4.7, v4.8

LDEV-4932 Adding CSRF Admin

Fixing policy management toggle. Adding enable/disable toggle for tool management

More
1840d1a
changed 17 files
v4.7, v4.8

LDEV-4931 Adding CSRF protection for LAMS Admin

- Edit configuration

- Editing timezones

- Add/disable/enable/delete signup pages

- Add/disable/enable/delete integrated server

- Add/activate/deactivate policies

More
9ef3e59
changed 0 files
v4.7, v4.8

Merge branch 'LDEV-4935'

More
4ac3a79
changed 1 file
v4.7, v4.8

LDEV-4935 Secure Scribe websockets