lams-github / lams_central / conf

security

Clone Tools

Stats

Commits this week: 0
Total Committers: 5
Last Commit:
Commits this week: 0

Lines of code count not available

Commit Activity

Commits By Day In Week
52 week commits volume
Commits By Day In Week
Commits by day
Commits By Day In Week
Commits by hour
Commits By Hour In Day
Commit calendar
 

Most active committers (90 days)

loading
loading
  • last updated a few seconds ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
Saturday 08 Feb 2020
5:18 am

Andrey Balan

Merge branch 'master' into v4.0

Options
    • -1
    • +0
    ./Owasp.CsrfGuard.properties
5:17 am

Andrey Balan

LDEV-4932 No need to protect /admin/user/remove.do, as it simply shows another jsp page

Options
    • -1
    • +0
    ./Owasp.CsrfGuard.properties
  2. … 3 more files in changeset.
Friday 24 Jan 2020
2:42 am

Andrey Balan

Merge branch 'master' into v4.0

Options
    • -0
    • +5
    ./Owasp.CsrfGuard.properties
2:26 am

Andrey Balan

LDEV-4932 Add CSRF to LKC monitoring

Options
    • -0
    • +5
    ./Owasp.CsrfGuard.properties
Friday 17 Jan 2020
6:04 am

Andrey Balan

LDEV-4932 Add CSRF to Assessment monitoring

Options
    • -0
    • +2
    ./Owasp.CsrfGuard.properties
  2. … 3 more files in changeset.
Friday 10 Jan 2020
10:28 pm

Andrey Balan

Merge branch 'master' into v4.0

# Conflicts:

# lams_tool_lamc/src/java/org/lamsfoundation/lams/tool/mc/service/McService.java

# lams_tool_laqa/src/java/org/lamsfoundation/lams/tool/qa/web/controller/AuthoringController.java

# lams_tool_laqa/src/java/org/lamsfoundation/lams/tool/qa/web/controller/LearningController.java

Options
    • -1
    • +2
    ./Owasp.CsrfGuard.properties
  2. … 14 more files in changeset.
6:10 am

Andrey Balan

LDEV-4932 Add CSRF to QB bank calls

Options
    • -0
    • +18
    ./Owasp.CsrfGuard.properties
  2. … 32 more files in changeset.
Thursday 09 Jan 2020
3:59 pm

Andrey Balan

Merge branch 'master' into v4.0

# Conflicts:

# lams_admin/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_build/build.xml

# lams_build/liblist.txt

# lams_central/src/java/org/lamsfoundation/lams/web/outcome/OutcomeController.java

# lams_central/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_central/web/authoringConfirm.jsp

# lams_central/web/common/taglibs.jsp

# lams_central/web/includes/javascript/authoring/authoringGeneral.js

# lams_central/web/includes/javascript/outcome.js

# lams_central/web/outcome/outcomeEdit.jsp

# lams_central/web/outcome/outcomeManage.jsp

# lams_common/src/java/org/lamsfoundation/lams/util/WebUtil.java

# lams_gradebook/src/java/org/lamsfoundation/lams/gradebook/web/controller/GradebookController.java

# lams_gradebook/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_learning/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_monitoring/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_tool_assessment/src/java/org/lamsfoundation/lams/tool/assessment/web/controller/AuthoringController.java

# lams_tool_assessment/src/java/org/lamsfoundation/lams/tool/assessment/web/controller/MonitoringController.java

# lams_tool_assessment/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_tool_chat/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_tool_daco/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_tool_doku/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_tool_forum/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_tool_gmap/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_tool_images/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_tool_imscc/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_tool_lamc/src/java/org/lamsfoundation/lams/tool/mc/web/controller/McController.java

# lams_tool_lamc/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_tool_laqa/src/java/org/lamsfoundation/lams/tool/qa/web/controller/QaAuthoringController.java

# lams_tool_laqa/src/java/org/lamsfoundation/lams/tool/qa/web/controller/QaMonitoringController.java

# lams_tool_laqa/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_tool_laqa/web/authoring/AuthoringTabsHolder.jsp

# lams_tool_laqa/web/authoring/newQuestionBox.jsp

# lams_tool_laqa/web/monitoring/MonitoringMaincontent.jsp

# lams_tool_larsrc/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_tool_leader/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_tool_mindmap/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_tool_nb/src/java/org/lamsfoundation/lams/tool/noticeboard/web/controller/NbMonitoringController.java

# lams_tool_nb/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_tool_notebook/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_tool_pixlr/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_tool_preview/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_tool_sbmt/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_tool_scratchie/src/java/org/lamsfoundation/lams/tool/scratchie/web/controller/AuthoringController.java

# lams_tool_scratchie/src/java/org/lamsfoundation/lams/tool/scratchie/web/controller/MonitoringController.java

# lams_tool_scratchie/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_tool_scratchie/web/pages/authoring/basic.jsp

# lams_tool_scribe/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_tool_spreadsheet/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_tool_survey/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_tool_task/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_tool_vote/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_tool_wiki/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_tool_zoom/web/WEB-INF/tags/OutcomeAuthor.tag

# lams_www/web/WEB-INF/tags/OutcomeAuthor.tag

Options
    • -0
    • +237
    ./Owasp.CsrfGuard.properties
  2. … 94 more files in changeset.
2:58 pm

Marcin Cieslak

LDEV-4932 Adjust CSRF Guard logging

Logger uses LAMS format and logs only warnings (attacks) rather than all

its checks.

Options
    • -1
    • +2
    ./Owasp.CsrfGuard.properties
  2. … 3 more files in changeset.
5:44 am

Andrey Balan

LDEV-4932 Add CSRF Excel export in tools

Options
    • -1
    • +4
    ./Owasp.CsrfGuard.properties
  2. … 9 more files in changeset.
Wednesday 08 Jan 2020
6:34 am

Andrey Balan

LDEV-4932 Add CSRF to LD export and Excel export

Options
    • -0
    • +4
    ./Owasp.CsrfGuard.properties
  2. … 12 more files in changeset.
3:42 am

Andrey Balan

LDEV-4932 Add CSRF to monitor and central

Options
    • -0
    • +14
    ./Owasp.CsrfGuard.properties
  2. … 50 more files in changeset.
Monday 06 Jan 2020
11:09 pm

Ernie Ghiglione

LDEV-4932 Adding CSRF to add lesson

Options
    • -0
    • +1
    ./Owasp.CsrfGuard.properties
  2. … 2 more files in changeset.
6:44 am

Ernie Ghiglione

LDEV-4932 Adding CSRF to Author

- Save, Delete, Copy, Move and rename LDs

- Create folder

Options
    • -0
    • +8
    ./Owasp.CsrfGuard.properties
  2. … 3 more files in changeset.
Sunday 05 Jan 2020
11:49 pm

Ernie Ghiglione

LDEV Adding CSRF to Scratchie authoring

Options
    • -0
    • +2
    ./Owasp.CsrfGuard.properties
  2. … 3 more files in changeset.
Saturday 04 Jan 2020
11:36 pm

Ernie Ghiglione

LDEV-4932 Adding CSRF Notebook conditions

- Add/remove conditions

Options
    • -0
    • +2
    ./Owasp.CsrfGuard.properties
  2. … 3 more files in changeset.
10:59 pm

Ernie Ghiglione

LDEV-4932 Adding CSRF for QA authoring

- Add/edit questions

- remove questions

- Add and remove conditions

Options
    • -0
    • +5
    ./Owasp.CsrfGuard.properties
  2. … 5 more files in changeset.
Friday 03 Jan 2020
8:57 pm

Ernie Ghiglione

LDEV-4932 Adding CSRF to voting authoring

Options
    • -0
    • +1
    ./Owasp.CsrfGuard.properties
  2. … 3 more files in changeset.
2:22 am

Ernie Ghiglione

LDEV-4932 Add CSRF to Vote and share resources authoring

Options
    • -0
    • +5
    ./Owasp.CsrfGuard.properties
  2. … 7 more files in changeset.
Thursday 02 Jan 2020
8:39 pm

Ernie Ghiglione

LDEV-4932: Adding CSRF to forum and central

CSRF additions to:

- Forum authoring methods

- Adding outcomes to activities in tools (changes to tag and central methods)

Options
    • -0
    • +6
    ./Owasp.CsrfGuard.properties
  2. … 10 more files in changeset.
11:54 am

Ernie Ghiglione

LDEV-4932 Adding CSRF to central

Adding CSRF to:

- Lesson dependencies (add/remove)

- Set dates to finish lesson

Options
    • -0
    • +3
    ./Owasp.CsrfGuard.properties
  2. … 2 more files in changeset.
8:49 am

Ernie Ghiglione

LDEV-4932 Adding CSRF to central and monitoring

Adding CSRF to:

- Grades on completion

- Enable/disable presence and IM

- Send emails

- Update users into lessons

- Send email notifications

- Delete email notifications

Options
    • -0
    • +8
    ./Owasp.CsrfGuard.properties
  2. … 10 more files in changeset.
Wednesday 01 Jan 2020
6:36 am

Ernie Ghiglione

LDEV-4932 Adding CSRF to Admin

Adding it to:

- User roles

- Create course

- Clone lessons

- assign roles in courses

- global roles

- change password for course

- change user pass

- delete all lessons

Options
    • -0
    • +14
    ./Owasp.CsrfGuard.properties
  2. … 23 more files in changeset.
2:35 am

Andrey Balan

LDEV-4932 Add CSRF to monitor and central

* Add CSRF protection to:

- Change lesson status (incl. remove)

- Remove lesson using main.jsp button

- Rename lesson

* Start using /common/taglibs.jsp in lams_central

Options
    • -0
    • +7
    ./Owasp.CsrfGuard.properties
  2. … 23 more files in changeset.
Tuesday 31 Dec 2019
11:25 am

Ernie Ghiglione

LDEV-4932 Add CSRF to central (outcomes)

Adding CSRF protection to:

- Delete outcomes

Options
    • -0
    • +1
    ./Owasp.CsrfGuard.properties
  2. … 3 more files in changeset.
10:24 am

Ernie Ghiglione

LDEV-4932 Add CSRF for admin

- Adding CSRF to delete preview lessons

Options
    • -0
    • +1
    ./Owasp.CsrfGuard.properties
  2. … 1 more file in changeset.
10:06 am

Ernie Ghiglione

LDEV-4932 Adding CSRF protection to admin

- Adding user add/edit/remove/disable

Options
    • -0
    • +5
    ./Owasp.CsrfGuard.properties
  2. … 5 more files in changeset.
6:51 am

Andrey Balan

LDEV-4932 Secure gradebook calls with CSRF Guard

* Secure the following gradebook calls in particular:

- Release marks

- Any change in marks

- Export

* Add taglibs.jsp to gradebook project

Options
    • -0
    • +7
    ./Owasp.CsrfGuard.properties
  2. … 14 more files in changeset.
5:14 am

Andrey Balan

LDEV-4932 Secure save tool authoring with CSRF Guard

Options
    • -39
    • +64
    ./Owasp.CsrfGuard.properties
  2. … 42 more files in changeset.
Monday 30 Dec 2019
10:44 pm

Ernie Ghiglione

LDEV-4932 Adding CSRF admin

Adding CSRF to delete session management

Options
    • -0
    • +1
    ./Owasp.CsrfGuard.properties
  2. … 2 more files in changeset.