mirror of
https://github.com/Alfresco/alfresco-community-repo.git
synced 2025-08-14 17:58:59 +00:00
80cda47b63
21132: ALF-3855: Refactored repository authentication filters so that same code is re-used for Web Client, Web Script, Web DAV and Sharepoint authentication
- 'Uber Filter' part 3
- Means we now support Kerberos Authentication for Sharepoint
- Threw away a lot of duplicated code
- New common AuthenticationDriver interface created and now implemented by core authentication code
- Sharepoint and BaseSSOAuthenticationFilter now both use AuthenticationDrivers
- Needs regression testing
21137: ALF-3841: Alfresco Explorer SSO Authentication Filters now accept ticket parameters too
- Can be turned back off with ntlm.authentication.browser.ticketLogons=false or kerberos.authentication.browser.ticketLogons=false
- Wiki updated
21141: ALF-3855: Fixed wiring
21146: ALF-2879: 'xamconnector' module behaviour for xam:archived
- Application of xam:archived recurses and locks both files and folders
- cm:content nodes also have the store selector applied for the XAMContentStore
- TODO: Archive properties
21165: Fixed ALF-3867: SQL format error when re-instating orphaned content URL
- Parameter was not bounded with #
- Added unit test to ensure SQL generated is correct
21169: Merged V3.3 to V3.3-BUG-FIX
21168: (RECORD ONLY Merged PATCHES/V3.2.1 to V3.3
21166: Merged V3.3-BUG-FIX to PATCHES/V3.2.1
21165: Fixed ALF-3867: SQL format error when re-instating orphaned content URL
- Parameter was not bounded with #
- Added unit test to ensure SQL generated is correct
21118: Latest SpringSurf libs:
- Fix for missing read of "keystore" in Remote config
- Session Fixation attack mitigation improvements:
- A Surf application no longer generates a Session (and therefore no JSESSIONID) until a user is authenticated - simply visiting a login page or similar will no longer generate a Session
- Existing Sessions are always invalidated and destroyed if found when a user is authenticated via the LoginController (i.e. due to a JSESSIONID captured via an XSS attack)
Merged HEAD to V3.3
21111: Fix to encode form parameter on Share login template - prevents its potential use as an reflected XSS attack vector
21117: Session Fixation mitigation:
- Removed Session creation from Share index.jsp
Merged V3.3-BUG-FIX-2010_06_24 to V3.3
21096: Fix for ALF-3718 - JSF client login page input validator is too aggressive ("Login" button is disabled if username contains forward slash)
21088: Latest SpringSurf libs
git-svn-id: https://svn.alfresco.com/repos/alfresco-enterprise/alfresco/HEAD/root@21170 c4b6b30b-aa2e-2d43-bbcb-ca4b014f7261
131 lines
5.7 KiB
Plaintext
131 lines
5.7 KiB
Plaintext
<%--
|
|
* Copyright (C) 2005-2010 Alfresco Software Limited.
|
|
*
|
|
* This file is part of Alfresco
|
|
*
|
|
* Alfresco is free software: you can redistribute it and/or modify
|
|
* it under the terms of the GNU Lesser General Public License as published by
|
|
* the Free Software Foundation, either version 3 of the License, or
|
|
* (at your option) any later version.
|
|
*
|
|
* Alfresco is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU Lesser General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU Lesser General Public License
|
|
* along with Alfresco. If not, see <http://www.gnu.org/licenses/>.
|
|
--%>
|
|
<%@ taglib uri="http://java.sun.com/jsf/html" prefix="h" %>
|
|
<%@ taglib uri="http://java.sun.com/jsf/core" prefix="f" %>
|
|
<%@ taglib uri="http://java.sun.com/jsp/jstl/core" prefix="c" %>
|
|
<%@ taglib uri="/WEB-INF/alfresco.tld" prefix="a" %>
|
|
<%@ taglib uri="/WEB-INF/repo.tld" prefix="r" %>
|
|
|
|
<f:verbatim>
|
|
<script type="text/javascript" src="<%=request.getContextPath()%>/scripts/validation.js"> </script>
|
|
<script type="text/javascript">
|
|
|
|
var finishButtonPressed = false;
|
|
|
|
window.onload = pageLoaded;
|
|
|
|
function pageLoaded()
|
|
{
|
|
if (document.getElementById("wizard:wizard-body:userName") != null &&
|
|
document.getElementById("wizard:wizard-body:userName").disabled == false)
|
|
{
|
|
document.getElementById("wizard:wizard-body:userName").focus();
|
|
document.getElementById("wizard").onsubmit = validate;
|
|
document.getElementById("wizard:finish-button").onclick = function() {finishButtonPressed = true;}
|
|
document.getElementById("wizard:next-button").onclick = function() {finishButtonPressed = true;}
|
|
}
|
|
else
|
|
{
|
|
document.getElementById("wizard:wizard-body:homeSpaceName").focus();
|
|
}
|
|
updateButtonState();
|
|
}
|
|
function updateButtonState()
|
|
{
|
|
if (document.getElementById("wizard:wizard-body:password") != null &&
|
|
document.getElementById("wizard:wizard-body:password").disabled == false)
|
|
{
|
|
if (document.getElementById("wizard:wizard-body:userName").value.length == 0 ||
|
|
document.getElementById("wizard:wizard-body:password").value.length == 0 ||
|
|
document.getElementById("wizard:wizard-body:confirm").value.length == 0)
|
|
{
|
|
document.getElementById("wizard:finish-button").disabled = true;
|
|
document.getElementById("wizard:next-button").disabled = true;
|
|
}
|
|
else
|
|
{
|
|
document.getElementById("wizard:finish-button").disabled = false;
|
|
document.getElementById("wizard:next-button").disabled = false;
|
|
}
|
|
}
|
|
else
|
|
{
|
|
document.getElementById("wizard:finish-button").disabled = false;
|
|
document.getElementById("wizard:next-button").disabled = false;
|
|
}
|
|
}
|
|
|
|
function validate()
|
|
{
|
|
if (finishButtonPressed)
|
|
{
|
|
finishButtonPressed = false;
|
|
|
|
var message = $("wizard:wizard-body:validation_invalid_character").textContent ? $("wizard:wizard-body:validation_invalid_character").textContent : $("wizard:wizard-body:validation_invalid_character").innerText;
|
|
return validateUserNameForCreate(document.getElementById("wizard:wizard-body:userName"),
|
|
message,
|
|
true);
|
|
}
|
|
else
|
|
{
|
|
return true;
|
|
}
|
|
}
|
|
|
|
</script>
|
|
<h:outputText id="validation_invalid_character" style="display:none" value="#{msg.validation_invalid_character}" />
|
|
</f:verbatim>
|
|
|
|
<h:panelGrid columns="1" cellpadding="2" style="padding-top: 4px; padding-bottom: 4px;"
|
|
width="100%" rowClasses="wizardSectionHeading">
|
|
<h:outputText value=" #{msg.user_properties}" escape="false" />
|
|
</h:panelGrid>
|
|
|
|
<h:panelGrid columns="4" cellpadding="2" cellspacing="2" width="100%">
|
|
<h:graphicImage value="/images/icons/required_field.gif" alt="#{msg.required_field}" />
|
|
<h:outputText value="#{msg.username}:"/>
|
|
<h:inputText id="userName" value="#{WizardManager.bean.userName}" size="35" maxlength="100" validator="#{LoginBean.validateUsername}" onkeyup="updateButtonState();" onchange="updateButtonState();"/>
|
|
<h:message id="errors1" for="userName" style="color:red" />
|
|
|
|
<h:graphicImage value="/images/icons/required_field.gif" alt="#{msg.required_field}" />
|
|
<h:outputText value="#{msg.password}:"/>
|
|
<h:inputSecret id="password" value="#{WizardManager.bean.password}" size="35" maxlength="100" validator="#{LoginBean.validatePassword}" onkeyup="updateButtonState();" onchange="updateButtonState();" redisplay="true" />
|
|
<h:message id="errors2" for="password" style="color:red" />
|
|
|
|
<h:graphicImage value="/images/icons/required_field.gif" alt="#{msg.required_field}" />
|
|
<h:outputText value="#{msg.confirm}:"/>
|
|
<h:inputSecret id="confirm" value="#{WizardManager.bean.confirm}" size="35" maxlength="100" validator="#{LoginBean.validatePassword}" onkeyup="updateButtonState();" onchange="updateButtonState();" redisplay="true" />
|
|
<h:message id="errors3" for="confirm" style="color:red" />
|
|
</h:panelGrid>
|
|
|
|
<h:panelGrid columns="1" cellpadding="2" style="padding-top: 4px; padding-bottom: 4px;"
|
|
width="100%" rowClasses="wizardSectionHeading">
|
|
<h:outputText value=" #{msg.homespace}" escape="false" />
|
|
</h:panelGrid>
|
|
|
|
<h:panelGrid columns="2" cellpadding="2" cellspacing="2" width="100%">
|
|
<h:outputText value="#{msg.home_space_location}:"/>
|
|
<r:ajaxFolderSelector id="spaceSelector" label="#{msg.select_home_space_prompt}"
|
|
value="#{WizardManager.bean.homeSpaceLocation}"
|
|
initialSelection="#{NavigationBean.currentNode.nodeRefAsString}"
|
|
styleClass="selector" />
|
|
|
|
<h:outputText value="#{msg.home_space_name}:"/>
|
|
<h:inputText id="homeSpaceName" value="#{WizardManager.bean.homeSpaceName}" size="35" maxlength="1024" onkeyup="updateButtonState();" onchange="updateButtonState();" />
|
|
</h:panelGrid> |