hawkbit

Author	SHA1	Message	Date
Avgustin Marinov	0021b03c9a	CI friendly maven poms - use $revision for version (#1477 ) https://maven.apache.org/maven-ci-friendly.html Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com>	2023-11-16 17:23:01 +02:00
Avgustin Marinov	b982039a74	Feature/ctx aware and access controller2 (#1456 ) * Introduce the AccessControlManager and use if for the TargetManagement and TargetTypeManagement. Signed-off-by: Michael Herdt <Michael.Herdt@bosch.io> * Extend the access control manager by an API to serialize the current active context and persist it for scheduled background operations like auto-assignment. Signed-off-by: Michael Herdt <Michael.Herdt@bosch.io> * Verify modification is permitted before performing automatic assignment Signed-off-by: Michael Herdt <Michael.Herdt@bosch.io> * Start with controlling distribution set type access. Perform some refactoring. Signed-off-by: Michael Herdt <Michael.Herdt@bosch.io> * Support distribution set access control. Increase character limit to 512 chars for access control context. Refactor default implementations. Signed-off-by: Michael Herdt <Michael.Herdt@bosch.io> * Introduce ContextRunner and define admin execution to check for duplicates before creating/updating entities. Signed-off-by: Michael Herdt <Michael.Herdt@bosch.io> * Introduce Software Module, Module Type and Artifact control management. Fix tests. Signed-off-by: Michael Herdt <Michael.Herdt@bosch.io> * Introduce access controlling test base. Add first test verifying the read operations for target types. Signed-off-by: Michael Herdt <Michael.Herdt@bosch.io> * Finalize target type access controlling test. Signed-off-by: Michael Herdt <Michael.Herdt@bosch.io> * Introduce ContextRunnerTest and TargetAccessControllingTest. Signed-off-by: Michael Herdt <Michael.Herdt@bosch.io> * Introduce DistributionSetAccessControllingTest and fix missing access control specifications. Signed-off-by: Michael Herdt <Michael.Herdt@bosch.io> * Extend test cases. Include only updatable targets into rollout. Signed-off-by: Michael Herdt <Michael.Herdt@bosch.io> * Fix action visibility. Signed-off-by: Michael Herdt <Michael.Herdt@bosch.io> * Modifiable->Updatable & UPDATE check where needed Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com> * ContextRunner superseded by ContextAware + ContextRunner remaned to ContextAware (move as a cenral entry/concept). It now extends (and replace) TenantAware + SecurityContextTenantAware becomes ContextAware + Pluggable serialization mechanism (default Java serialization of contexts) for SecurityContextTenantAware (using SecurityContextSerializer) + AccessControl methods are added to ensure no entities fill be retrieved just to call access control - so, if all permitted - no additional db queries will be made + <repo type>AccessControl classes removed and replaced with AccessControl <repo type> generics + AccessControlService removed - every AccessControl is registered and overiden independently + access_control_context in DB increased to 4k (in order to support java security context serialization) + needed adaptaion of implemtation and tests done Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com> * Refactor SoftModules & DistSets Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com> * Refactoring of the Repositories Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com> * Repostiotory level permissions Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com> * Improvements Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com> * Simplification of AccessControl interface * Simplifications & management package Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com> * Implementation improvements + Artifact management & repo reviewed and tuned + Action(Status) management & repo reviewed and tuned + SoftwareModule(Type/Meta) management & repo reviewed and tuned + DistributionSet(Type/Tag/Meta) management(+Invalidation) & repo reviewed and tuned + Target(Tag/Type/Meta) management & repo reviewed and tuned + TargetQueryFilter management & repo reviewed and tuned * Apply suggestions from code review Suggestions accepted. Thanks @herdt-michael Co-authored-by: Michael Herdt <michael.herdt@bosch.com> * Apply suggestions from code review 2 Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com> --------- Signed-off-by: Michael Herdt <Michael.Herdt@bosch.io> Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com> Co-authored-by: Michael Herdt <Michael.Herdt@bosch.com>	2023-11-16 11:07:06 +02:00
Avgustin Marinov	8d487fde33	Doc add link to sonar reports (#1476 ) Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com>	2023-11-16 10:23:46 +02:00
Avgustin Marinov	23951c0931	Add M9 Release Notes (#1474 )	2023-11-16 09:29:01 +02:00
Stanislav Trailov	0f3c67b23c	update third-party dependencies (#1473 ) Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io>	2023-11-13 11:57:39 +02:00
Avgustin Marinov	ac946e76ef	OICD Pluggable permission mapper (#1469 ) By default the resource_access/<client id>/roles claim is mapped to hawkBit permissions. However, by registering a Spring bean _org.eclipse.hawkbit.autoconfigure.security.OidcUserManagementAutoConfiguration.JwtAuthoritiesExtractor_ a custom extractor permission mapper could be registered. Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com>	2023-11-03 14:52:31 +02:00
Avgustin Marinov	7b67de3082	[#1360 ] Fix ConfigurationManagement#getState (#1467 ) Fix access control: HAS_AUTH_READ_TARGET -> IS_CONTROLLER or HAS_AUTH_READ_TARGET (shall be accessibly by targets when confirmation base is requested) Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com>	2023-11-03 09:32:10 +02:00
Avgustin Marinov	68e7daa1d8	Swagger - add bearer auth for MGMT API (#1468 ) Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com>	2023-11-02 16:53:39 +02:00
Stein.Codes	defa6c3b69	refactor: Java Security Ultimate Security Repo Scanner 2023 (#1455 ) Disclaimer: Automated Commit Alert Please be aware that this commit, generated through automated processes, may contain false alerts or not be precisely targeted. This automated commit is part of a large-scale effort to enhance software security over time. It is sent to various repositories to improve code quality and security. Exercise caution when reviewing the changes, and ensure that any necessary adjustments are made to maintain the integrity and functionality of the software. Use this link to re-run the recipe: https://app.moderne.io/recipes/builder/TkgUEiqd7?organizationId=RWNsaXBzZSBGb3VuZGF0aW9u Co-authored-by: Moderne <team@moderne.io>	2023-11-01 16:41:08 +02:00
Vít Holásek	6428422eed	Fixed DataIntegrityViolationException with OIDC (#1348 ) (#1458 ) Signed-off-by: Vít Holásek <xvh@seznam.cz>	2023-11-01 13:10:28 +02:00
Avgustin Marinov	042e867e5d	Docker version upgraded to 17.0.9_9 (#1466 ) Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com>	2023-11-01 12:52:00 +02:00
Stanislav Trailov	5904bed838	bump spring cloud to 2021.0.8 to fix CVE-2023-4759 (#1464 ) Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io>	2023-10-26 12:03:25 +03:00
Vasil Ilchev	0e631e0f3b	REST API extend System Configuration to support Default DistributionS… (#1457 ) * REST API extend System Configuration to support Default DistributionSet Type * Remove leftover comment * After review - changing the Default DistributionSetType type to long * After review - Remove CustomMatcher for Numbers equals, rename test methods to more descriptive naming * Simplify	2023-10-24 11:02:36 +03:00
Avgustin Marinov	7e8b3ad97f	Remove obsolete dependencies files (#1463 ) Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com>	2023-10-24 10:41:13 +03:00
Avgustin Marinov	203728f79f	Set license name to EPL-2.0 (#1462 ) Change license name in root pom.xml to EPL-2.0 ([SPDX format](https://spdx.org/licenses/)) as advised in [Maven Metadata Best Practices](https://gitlab.eclipse.org/eclipsefdn/emo-team/sbom/-/blob/main/docs/sbom.adoc#sbom-maven-practices) Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com>	2023-10-24 09:25:38 +03:00
Stanislav Trailov	05def2ef1b	Fix retryRollout input parameter in order to comply with the API (#1461 ) * Fix retryRollout input parameter in order to comply with the API Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * make exception more informative Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> --------- Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io>	2023-10-24 08:36:46 +03:00
Avgustin Marinov	ecf48430b4	Fix for CVE-2022-31690 (2) (#1460 ) Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com>	2023-10-23 13:11:26 +03:00
Avgustin Marinov	c1325d7594	Fix CVE-2022-31690 (#1459 ) Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com>	2023-10-23 12:24:30 +03:00
Florian BEZANNIER	dafc08304d	Add portRequest url handler property (#1449 ) * Add portRequest url handler property The option server.forward-headers-strategy=NATIVE allow to dynamicly generate link based on X-Forwarded-Proto header. Unfortunately Hawkbit artifact use a custom url handler. This PR allow to serve artifacts on http and https in the same time. Signed-off-by: Florian Bezannier <florian.bezannier@hotmail.fr> * docs: use server.forward-headers-strategy option --------- Signed-off-by: Florian Bezannier <florian.bezannier@hotmail.fr>	2023-10-19 12:04:23 +03:00
Stanislav Trailov	44e7a72be3	Rollout retry (#1454 ) * Rollout retry mechanism initial commit Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Remove test target fields for filter query Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * minor refactoring Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Fixes after review Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * more refactoring after review Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * skip compatibility check of dstype for retried rollout Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * remove dsType from javadoc Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> --------- Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io>	2023-10-19 09:58:46 +03:00
Denislav Prinov	22ce1c27a4	Rest API doc generation test - fix (#1453 ) * Added SharedSqlTestDatabaseExtension in Rest API doc test - generation Signed-off-by: Denislav Prinov <denislav.prinov@bosch.com> * Remove Active profile import Signed-off-by: Denislav Prinov <denislav.prinov@bosch.com> --------- Signed-off-by: Denislav Prinov <denislav.prinov@bosch.com>	2023-10-17 13:37:08 +03:00
Avgustin Marinov	499dab3f91	Add Windows Support for building doc (#1447 ) Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com>	2023-10-05 12:02:30 +03:00
Avgustin Marinov	0aaf973b48	Remove spring REST doc (#1446 ) Since now hawkBit support Swagger and OpenAPI the documentation is built using redoc based on OpenAPI definitions. Spring REST documentation is not needed anymore. Since this Spring REST doc is not needed and it duplicates API documentation (no single source of truth and hard to maintain) with this commit it is removed. Some tests from the Spring REST doc that seems are not covered by the JUnit of the resource modules are moved in the resource JUnit tests. Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com>	2023-10-04 16:56:16 +03:00
Avgustin Marinov	f632bdd9b1	Add DDI Authentication & set authentication per group (#1444 ) * Add DDI Authentication (using apikey) * Gateway token by passing as apikey "GatewayToken: <token>" * Target token by passing as apikey "TargetToken: <token>" * Removed Bearer auth as not supported * Authentication schemes are set to the correspondent groups in order to be visible only where needed * Optional OpenAPI (with property _hawkbit.server.swagger.enabled_, by default _true_) Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com>	2023-10-04 08:47:11 +03:00
Denislav Prinov	a4204956e6	Openapi restdoc generation v2 (#1442 ) * OpenApi restdoc generation v2 Signed-off-by: Denislav Prinov <denislav.prinov@bosch.com> * Attach json and yaml artifacts only if -DskipTests is not provided Signed-off-by: Denislav Prinov <denislav.prinov@bosch.com> * Add missing header Signed-off-by: Denislav Prinov <denislav.prinov@bosch.com> * Add license header Signed-off-by: Denislav Prinov <denislav.prinov@bosch.com> --------- Signed-off-by: Denislav Prinov <denislav.prinov@bosch.com>	2023-10-02 11:04:52 +03:00
Stanislav Trailov	60f14691fc	Add example values for request/response examples in swagger (#1441 ) * Swagger support initial concept Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add descriptions for Target tags Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add target filter queries descriptions Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add target api descriptions Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add software modules API descriptions Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add descriptions for DS, DSTags and SMTypes Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add DistributionSetType API descriptions Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add Rollout API descriptions Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Bring back test scope to mariaDb Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add tags and descriptions to System config API Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Move away OpenAPI config from Start.java Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * provide license header and project version for openapi Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Fix error responses with example error body Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add DDI API to swagger and make proper API grouping Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Revert changes from not merging before commit Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Remove more changes Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * fix circle ci build Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add missing descriptions for downloadArtifact methods in DDI Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Make configuration for openApi conditional for flexibility in transitive dependencies Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Make beans conditional not config Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Remove oAuth and switch to more general description Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * remove comment Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add example schema values for request responses examples Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> --------- Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io>	2023-09-29 15:14:53 +03:00
Avgustin Marinov	5eb84cba4e	Fix/Improvement of docker stuff (#1440 ) * old docker files removed as not needed anymore * base docker image upgraded * mariadb version upgraded and dockerfile fixed to work with new jdks as extended libs approach seem to be not supporte anymore * deprecated rabbitmq default vhost config removed (https://github.com/eclipse/hawkbit/issues/1157) Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com>	2023-09-28 08:24:28 +03:00
Tronje	c5bb8b6e3c	Remove default vhost environment variable for RabbitMQ in Docker setup (#1167 ) RABBITMQ_DEFAULT_VHOST is deprecated. As the default vhost setting defaults to "/" anyway, it can be safely removed. Fixes #1157. Signed-off-by: Tronje Krabbe <t.krabbe+eclipse@protonmail.com> Co-authored-by: Tronje Krabbe <t.krabbe+eclipse@protonmail.com>	2023-09-27 17:04:10 +03:00
Avgustin Marinov	30eb4e11fb	Small fix/improvements over swagger based doc (#1439 ) Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com>	2023-09-27 14:02:25 +03:00
Stanislav Trailov	fd2f0293de	Make OpenAPI config conditional + add missing ddi methods descriptions (#1437 ) * Swagger support initial concept Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add descriptions for Target tags Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add target filter queries descriptions Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add target api descriptions Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add software modules API descriptions Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add descriptions for DS, DSTags and SMTypes Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add DistributionSetType API descriptions Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add Rollout API descriptions Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Bring back test scope to mariaDb Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add tags and descriptions to System config API Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Move away OpenAPI config from Start.java Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * provide license header and project version for openapi Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Fix error responses with example error body Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add DDI API to swagger and make proper API grouping Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Revert changes from not merging before commit Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Remove more changes Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * fix circle ci build Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add missing descriptions for downloadArtifact methods in DDI Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Make configuration for openApi conditional for flexibility in transitive dependencies Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Make beans conditional not config Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Remove oAuth and switch to more general description Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * remove comment Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> --------- Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io>	2023-09-27 11:44:46 +03:00
Denislav Prinov	3978454900	HTTP documentation generation from OpenApi documentation (#1438 ) * Generating rest doc from swagger json Signed-off-by: Denislav Prinov <denislav.prinov@bosch.com> * refactoring and adding doc Signed-off-by: Denislav Prinov <denislav.prinov@bosch.com> * refactoring Signed-off-by: Denislav Prinov <denislav.prinov@bosch.com> * Don't directly inject files in the executable jar since it brakes it Signed-off-by: Denislav Prinov <denislav.prinov@bosch.com> * using the attachArtifact configuration to generate secondary artifact Signed-off-by: Denislav Prinov <denislav.prinov@bosch.com> * Splitting the json documentation into mgmt and ddi. And some refactoring Signed-off-by: Denislav Prinov <denislav.prinov@bosch.com> * refactoring Signed-off-by: Denislav Prinov <denislav.prinov@bosch.com> * Split mgmt and DDI components from the json Signed-off-by: Denislav Prinov <denislav.prinov@bosch.com> --------- Signed-off-by: Denislav Prinov <denislav.prinov@bosch.com>	2023-09-27 11:44:30 +03:00
Avgustin Marinov	7d76a5a97e	Fix change if placeholder prop name typos (#1436 ) Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com>	2023-09-26 13:27:17 +03:00
Zygmunt Krynicki	318f94fa32	Assorted collection of typos (#1434 ) * hawkbit-repository: fix typoL annotations Signed-off-by: Zygmunt Krynicki <me@zygoon.pl> * hawkbit-repository: fix typo: verifies Signed-off-by: Zygmunt Krynicki <me@zygoon.pl> * hawkbit-repository: fix typo: exclusion Signed-off-by: Zygmunt Krynicki <me@zygoon.pl> * hawkbit-core: fix typo: placeholder Signed-off-by: Zygmunt Krynicki <me@zygoon.pl> --------- Signed-off-by: Zygmunt Krynicki <me@zygoon.pl>	2023-09-26 12:30:29 +03:00
Avgustin Marinov	e2d90b7092	[#1372 ] Add SERVER_SERVLET_CONTEXT_PATH support (#1433 ) added support for SERVER_SERVLET_CONTEXT_PATH. Could be used in some cases Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com>	2023-09-26 11:58:38 +03:00
Stanislav Trailov	b51a5d6c90	Feature/swagger support (#1432 ) * Swagger support initial concept Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add descriptions for Target tags Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add target filter queries descriptions Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add target api descriptions Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add software modules API descriptions Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add descriptions for DS, DSTags and SMTypes Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add DistributionSetType API descriptions Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add Rollout API descriptions Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Bring back test scope to mariaDb Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add tags and descriptions to System config API Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Move away OpenAPI config from Start.java Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * provide license header and project version for openapi Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Fix error responses with example error body Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add DDI API to swagger and make proper API grouping Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Revert changes from not merging before commit Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Remove more changes Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * fix circle ci build Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> --------- Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io>	2023-09-25 13:44:55 +03:00
Avgustin Marinov	87107ef724	Documentations fixes & epl 2.0 news (#1429 ) Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com>	2023-09-14 15:40:09 +03:00
Avgustin Marinov	8558b96de1	Spring upgrade to 2.7.15 (#1428 ) Spring and some other dependencies upgraded Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com>	2023-09-14 12:42:17 +03:00
Avgustin Marinov	9c86729a68	[#1393,#1008] Switch to Eclipse v2.0 license (#1427 ) Switching license from EPL v1 to v2. Following https://www.eclipse.org/legal/epl-2.0/faq.php#h.tci84nlsqpgw Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com>	2023-09-14 11:03:20 +03:00
Stanislav Trailov	0ee081dafc	hawkBit Swagger support (#1423 ) * Swagger support initial concept Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add descriptions for Target tags Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add target filter queries descriptions Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add target api descriptions Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add software modules API descriptions Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add descriptions for DS, DSTags and SMTypes Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add DistributionSetType API descriptions Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add Rollout API descriptions Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Bring back test scope to mariaDb Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Add tags and descriptions to System config API Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Move away OpenAPI config from Start.java Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * provide license header and project version for openapi Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Fix error responses with example error body Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> --------- Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io>	2023-09-13 10:40:31 +03:00
Yusuf Savaş	9fb1dfd5ac	Add documentation for implementation of reverse proxy (#1426 ) * Add documentation for implementation of Mutual TLS and reverse proxy Signed-off-by: Yusufss4 <yusufsss4@gmail.com> * Fix spaces in suricatta configuration Signed-off-by: Yusufss4 <yusufsss4@gmail.com> * Increased the readability of the document Signed-off-by: Yusufss4 <yusufsss4@gmail.com> * Changed the certs names to unified names Signed-off-by: Yusufss4 <yusufsss4@gmail.com> * Fix typo Signed-off-by: Yusufss4 <yusufsss4@gmail.com> * Fix typo regarding the places of the certificates. Signed-off-by: Yusufss4 <yusufsss4@gmail.com> --------- Signed-off-by: Yusufss4 <yusufsss4@gmail.com>	2023-09-13 10:37:35 +03:00
Stanislav Trailov	4a67df32b4	Add extension of target filter with additional DS link with query filter (#1417 ) * Add extension of target filter with additional DS link with query filter Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Remove unused imports Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> --------- Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io>	2023-09-11 10:11:52 +03:00
Avgustin Marinov	d9205ee4e2	JDK requirements fixed as well as mysql version in (#1425 ) docker swarm Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com>	2023-09-01 10:44:00 +03:00
Stanislav Trailov	b7fb5f131c	Add dockerfiles for 0.3.0M9 and fix docker-compose to use mysql 8.0 (#1422 ) Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io>	2023-08-25 15:32:28 +03:00
Stanislav Trailov	b364740a4e	Feature/dash licenses 0.3.0M9 (#1421 ) * 3rd party dependencies update Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> * Fix script behavior and upload correct output Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io> --------- Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io>	2023-08-24 14:26:07 +03:00
Stanislav Trailov	080075d44e	Override spring-security-oauth2-client and h2 dependency versions to fix latest cve findings (#1419 ) Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io>	2023-08-22 17:09:21 +03:00
Avgustin Marinov	acff82f60f	Small security improvements (#1412 ) Typos fixed Disables empty string gateway token for sure. Test if the gateway token is not empty string ecplicitly. Empty string is the default value and if accepted could be a security vulnerability (e.g. enabling gateway token authentication and using empty string as token). According to https://datatracker.ietf.org/doc/html/rfc7230#section-3.2.4 the header value shall not have trailing spaces and the http server shall already have trimmed them. So if execution passes start with "GatewayToken " then token shall not be empty. But but let's check anyway In UI first set key then enable the gateway token authentication. Otherwise the key might be left empty (default). This however shall not be really problem since (because of token trimming) the empty token will be rejected anyway. Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com>	2023-08-16 14:25:17 +03:00
Denislav Prinov	a5dba29e74	Full representation with filtration (#1415 ) * fixed RSQL filtration while loading full representation of a Rollout Signed-off-by: Denislav Prinov <denislav.prinov@bosch.com> * Added tests Signed-off-by: Denislav Prinov <denislav.prinov@bosch.com> * review findings Signed-off-by: Denislav Prinov <denislav.prinov@bosch.com> --------- Signed-off-by: Denislav Prinov <denislav.prinov@bosch.com>	2023-08-16 11:09:46 +03:00
Avgustin Marinov	4590d004f9	Fix doc builds on windows (#1409 ) Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com>	2023-08-03 16:27:51 +03:00
Stanislav Trailov	b35f45aabc	Upgrade nexus maven plugin to 1.6.13 (#1408 ) Signed-off-by: Stanislav Trailov <Stanislav.Trailov@bosch.io>	2023-08-03 12:28:08 +03:00
Avgustin Marinov	06f8535386	Fixed some CI flows & checks (#1405 ) Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com>	2023-08-02 11:51:56 +03:00

1 2 3 4 5 ...

2626 Commits