Activity lams-github/lams_common/src/java/org/lamsfoundation/lams/integration/security/SsoHandler.java

Tree
Accordion

Stats

Commits this week: 0

Total Committers:	9
Last Commit:	23 Mar 24
Commits this week:	0

Lines of code count not available

Commit Activity

last updated a few seconds ago

Constraints

Constraints: committers

Committer:

Log Comment:

Constraints: files

File Extension:

File Name:

Constraints: dates

Start Date:

End Date:

Saturday 23 Mar 2024

3:46 pm

Marcin Cieslak

More
665bafc
changed 15 files

LDEV-5440 Add compilation parameter for legacy Spring binding

- -22
- +16
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java
… 14 more files in changeset.

Wednesday 20 Mar 2024

7:30 pm

Marcin Cieslak

More
44cc1e3
changed 41 files

LDEV-5440 Update web.xml version

- -2
- +2
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java
… 40 more files in changeset.

4:56 pm

Marcin Cieslak

More
35d617e
changed 224 files

LDEV-5440 Update code to match dependencies

In particular javax -> jakarta package change and new JPA not accepting some attributes.

- -28
- +29
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java
… 223 more files in changeset.

Tuesday 16 Jan 2024

5:38 pm

Marcin Cieslak

More
88da402
changed 465 files

LDEV-5440 Revert some unnecessary package name changes

- -1
- +1
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java
… 464 more files in changeset.

5:01 pm

Marcin Cieslak

More
129d0eb
changed 482 files

LDEV-5440 Refactor packages of imported classes

- -1
- +1
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java
… 481 more files in changeset.

Monday 15 Jan 2024

11:11 pm

Marcin Cieslak

More
a1064a5
changed 956 files

LDEV-5440 Rewrite config files and library references

- -9
- +9
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java
… 955 more files in changeset.

Friday 14 Oct 2022

9:23 pm

Marcin Cieslak

More
351f941
changed 23 files
v4.7, v4.8

LDEB-5335 Add structured audit logs on various admin actions

- -4
- +4
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java
… 22 more files in changeset.

Friday 07 Oct 2022

8:20 pm

Marcin Cieslak

More
7fe28ed
changed 3 files
v4.7, v4.8

LDEV-5178 Skip password expiration check on login via integrations

- -0
- +2
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java
… 2 more files in changeset.

Friday 08 Jul 2022

5:55 pm

Marcin Cieslak

More
94a1023
changed 6 files
v4.7, v4.8

LDEV-5320 Give more details about course roles being added and removed

This approach uses logs in controllers rather than in services.

- -10
- +7
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java
… 5 more files in changeset.

Tuesday 05 Jul 2022

5:33 pm

Marcin Cieslak

More
38bc3bc
changed 1 file
v4.7, v4.8

LDEV-5320 Audit user being locked out

- -8
- +13
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java

Thursday 14 Apr 2022

4:04 am

Marcin Cieslak

More
01792e2
changed 4 files
v4.7, v4.8

LDEV-5304 Make Signup page process CSRF token correctly

Also better detect LoginAs and signup flow.

- -13
- +11
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java
… 3 more files in changeset.

Sunday 03 Apr 2022

2:59 pm

Marcin Cieslak

More
d0f91f1
changed 5 files
v4.7, v4.8

LDEV-5304 Secure login page from CSRF attack

Check for CSRF attack only for regular logins.

For LoginAs feature and integrations existing HTTP session gets

invalidated and so is the CSRF token.

- -2
- +12
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java
… 4 more files in changeset.

Thursday 05 Nov 2020

6:56 pm

Marcin Cieslak

More
bfd5c97
changed 1 file
v4.7, v4.8

LDEV-5094 Add logs to SSO handler

- -6
- +59
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java

Saturday 24 Oct 2020

11:38 pm

Marcin Cieslak

More
4db2093
changed 1 file
v4.7, v4.8

LDEV-5094, LDEV-4030 Fix loop of user integrated relogin and lock out

- -5
- +14
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java

Friday 16 Oct 2020

5:57 pm

Marcin Cieslak

More
eb15294
changed 1 file
v4.7, v4.8

LDEV-5094 Redirect authenticated user immediately

Detect situation when user is automatically reauthenticating via

integrations and redirect him straight to the desired URL, so the

default servlet does not kick in.

- -9
- +15
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java

Saturday 11 Jan 2020

5:33 am

Andrey Balan

More
c991108
changed 1 file
v4.7, v4.8

LDEV-4831 Bypass 2FA if using Login-as

(cherry picked from commit 26e7a51d2a74ef045d6e056752fd60bf510f2024)

- -4
- +7
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java

5:33 am

Andrey Balan

More
26e7a51
changed 1 file
v4.7, v4.8

LDEV-4831 Bypass 2FA if using Login-as

- -4
- +7
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java

Monday 25 Nov 2019

6:09 pm

Marcin Cieslak

More
891f111
changed 1 file
v4.7, v4.8

Merge remote-tracking branch 'origin/master' into develop

Conflicts:

lams_common/src/java/org/lamsfoundation/lams/integration/security/SsoHandler.java

- -10
- +4
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java

Friday 22 Nov 2019

11:55 pm

Marcin Cieslak

More
55d9ac0
changed 1 file

LDEV-4030 Prevent failedAttempts overflow in DB

- -12
- +6
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java

11:55 pm

Marcin Cieslak

More
03858df
changed 1 file
v4.7, v4.8

LDEV-4030 Prevent failedAttempts overflow in DB

- -12
- +6
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java

Thursday 21 Nov 2019

9:36 pm

Marcin Cieslak

More
d34cc27
changed 8 files
v4.7, v4.8

Merge remote-tracking branch 'origin/master' into develop

Conflicts:

lams_central/src/java/org/lamsfoundation/lams/web/HomeController.java

lams_central/web/includes/javascript/authoring/authoringGeneral.js

lams_central/web/includes/javascript/authoring/authoringProperty.js

- -0
- +3
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java
… 7 more files in changeset.

9:25 pm

Marcin Cieslak

More
f092423
changed 8 files
v4.7, v4.8

Merge branch 'SP-3'

- -0
- +3
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java
… 7 more files in changeset.

Tuesday 05 Nov 2019

11:25 pm

Marcin Cieslak

More
63baa01
changed 2 files
v4.7, v4.8

Merge remote-tracking branch 'origin/master' into develop

Conflicts:

lams_common/src/java/org/lamsfoundation/lams/integration/security/SsoHandler.java

- -7
- +0
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java
… 1 more file in changeset.

6:52 pm

Marcin Cieslak

More
7342460
changed 4 files
v4.7, v4.8

LDEV-4901 Rewrite session invalidation mechanism

On WildFly 8 session invalidation mechanism had some bugs. Marek

introduced a workaround in LDEV-3413. The mechanism was adjusted in

LDEV-4293, especially in this commit

https://code.lamsfoundation.org/fisheye/changelog/lams-github?cs=131ce42e64069f574a2a4a9bc1e5c4be4918e5bb

Newer WildFly versions do not seem to have this bug. A part of

workaround was removed in LDEV-4696, but invalidation mechanism stayed

as if the bugs were still present. The mechanism introduced the problem

with timeouts. Now that the bugs seems to be gone, the invalidation

mechanism was rewritten to a more straightforward version which should

have been used from the start.

It is worth keeping in mind that when one user session is present and

another is being created (another browser, integration call, sysadmin's

LoginAs feature), then user gets authenticated, then old session gets

invalidated and the user gets authenticated AGAIN by WildFly using

cached credentials. Caching is so useful that we can not turn it off. It

means that, though, we need to keep login token generated by

LoginRequestServlet for longer than just first authentication, as we get

authentication call twice. Now we keep it until it is timed out.

- -9
- +3
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java
… 3 more files in changeset.

Monday 15 Apr 2019

9:26 pm

Marcin Cieslak

More
0c436f5
changed 8 files
v4.7, v4.8

SP-3 Automatically redirect to logout URL configured in sysadmin

- -0
- +3
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java
… 7 more files in changeset.

Monday 04 Feb 2019

4:40 pm

Marcin Cieslak

More
65aec4a
changed 4 files
v4.7, v4.8

LDEV-4767 Move logout logging to higher level methods

This way we know what triggered logout: manual logout, sysadmin or

duplicate session in another browser.

Timeout logout will be silent.

- -0
- +8
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java
… 3 more files in changeset.

4:21 pm

Marcin Cieslak

More
12265b9
changed 1 file
v4.7, v4.8

LDEV-4767 Add IP to login event

- -12
- +27
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java

Friday 01 Feb 2019

10:02 pm

Marcin Cieslak

More
7f420dc
changed 5 files
v4.7, v4.8

LDEV-4767 Add login and logout event logs

- -1
- +6
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java
… 4 more files in changeset.

Saturday 21 Apr 2018

6:33 pm

Marcin Cieslak

More
f2c0865
changed 21 files
v4.7, v4.8

Monthly merge from master to lams31

Conflicts:

lams_build/conf/slim/standalone.xml

lams_build/conf/standalone.xml

lams_build/lib/lams/lams-central.jar

lams_build/lib/lams/lams.jar

lams_central/src/java/org/lamsfoundation/lams/authoring/ObjectExtractor.java

lams_central/src/java/org/lamsfoundation/lams/authoring/template/web/LdTemplateAction.java

lams_central/src/java/org/lamsfoundation/lams/authoring/template/web/TBLTemplateAction.java

lams_central/src/java/org/lamsfoundation/lams/authoring/web/AuthoringAction.java

lams_central/src/java/org/lamsfoundation/lams/web/SessionListener.java

lams_common/src/java/org/lamsfoundation/lams/integration/security/SsoHandler.java

lams_tool_preview/src/java/org/lamsfoundation/lams/tool/peerreview/web/action/MonitoringAction.java

lams_tool_scratchie/src/java/org/lamsfoundation/lams/tool/scratchie/service/ScratchieServiceImpl.java

- -10
- +11
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java
… 20 more files in changeset.

Tuesday 27 Mar 2018

2:24 pm

Marcin Cieslak

More
6d0f93d
changed 3 files
v4.7, v4.8

LDEV-4293 Clear login mapping even if user DTO is not present

- -13
- +13
./SsoHandler.java
- History
- Source
- Diff
./SsoHandler.java
… 2 more files in changeset.

SsoHandler.java

Stats

Commits this week: 0

Commit Activity

52 week commits volume

Commits by day

Commits by hour

Commit calendar

Most active committers (90 days)

Marcin Cieslak

Marcin Cieslak

Marcin Cieslak

Marcin Cieslak

Marcin Cieslak

Marcin Cieslak

Marcin Cieslak

Marcin Cieslak

Marcin Cieslak

Marcin Cieslak

Marcin Cieslak

Marcin Cieslak

Marcin Cieslak

Marcin Cieslak

Marcin Cieslak

Andrey Balan

Andrey Balan

Marcin Cieslak

Marcin Cieslak

Marcin Cieslak

Marcin Cieslak

Marcin Cieslak

Marcin Cieslak

Marcin Cieslak

Marcin Cieslak

Marcin Cieslak

Marcin Cieslak

Marcin Cieslak

Marcin Cieslak

Marcin Cieslak