Nemcio/SCM-Manager
1
0
Fork 0
mirror of https://github.com/scm-manager/scm-manager.git synced 2026-01-19 05:52:11 +01:00
Code Issues Packages Projects Releases Activity
4,126 Commits 38 Branches 210 Tags
40b5ef485b7b002f5bdbddd2b86741ccc8f3ee40
Commit Graph

4126 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Sebastian Sdorra
40b5ef485b #979 encrypt the configuration keys before they are written to prefs 2018-04-30 09:36:51 +02:00
Sebastian Sdorra
cbecb3731b #979 use a java 7 compatible cipher spec 2018-04-30 09:27:00 +02:00
Sebastian Sdorra
3ee0bcedac #979 encrypt cli configuration with aes instead of pbe 2018-04-18 14:41:38 +02:00
Sebastian Sdorra
d9e7de8202 #979 improve javadoc 2018-04-18 08:09:28 +02:00
Sebastian Sdorra
a55dd9873b #979 split implementation of ScmClientConfigFileHandler in order to create new more secure implementation 2018-04-17 22:00:54 +02:00
Sebastian Sdorra
b8456d364c update commons-daemon to version 1.1.0 2018-04-13 23:32:50 +02:00
Sebastian Sdorra
b8144b514e ignore module-info for enforceBytecodeVersion rule 2018-04-13 16:23:33 +02:00
Sebastian Sdorra
c56291490e merge with branch issue-972 2018-04-12 20:23:23 +02:00
Sebastian Sdorra
966c18eca1 close branch issue-972 2018-04-12 20:22:40 +02:00
Sebastian Sdorra
0fc9f6d485 use APIviz only for javadoc of scm-core 2018-04-12 20:21:22 +02:00
Sebastian Sdorra
68006b322d removed unused import from GroupCollectorTest 2018-04-12 20:20:32 +02:00
Sebastian Sdorra
bfee6331e1 fix build on java 9 2018-04-12 13:15:04 +02:00
Sebastian Sdorra
b568b9ee93 fix some maven warnings 2018-04-12 12:41:58 +02:00
Sebastian Sdorra
7d6c65799e #972 use javahg version which is compatible with java 7 2018-04-12 11:57:00 +02:00
Sebastian Sdorra
c841e72dcb #972 encforce jdk 7 bytecode for dependencies 2018-04-12 11:34:00 +02:00
Sebastian Sdorra
247ee63a95 [maven-release-plugin] prepare for next development iteration 2018-04-11 10:09:12 +02:00
Sebastian Sdorra
39ceb11e9b [maven-release-plugin] copy for tag 1.59 2018-04-11 10:09:11 +02:00
Sebastian Sdorra
92a492f68b [maven-release-plugin] prepare release 1.59 1.59 2018-04-11 10:09:11 +02:00
Sebastian Sdorra
7f0ae1c472 Merged in gstefanik/scm-manager-2/gstefanik/make-extras-work-on-old-versions-of-hg-1523046585738 (pull request #41) 
make {extras} work on old versions of Hg
 2018-04-11 07:34:58 +00:00
Gábor Stefanik
e230c0f4cd make {extras} work on old versions of Hg 2018-04-06 20:30:15 +00:00
Sebastian Sdorra
7ed4dbcf00 fix hgweb execution for mercurial versions prior 4.1 2018-04-06 14:01:00 +02:00
Sebastian Sdorra
dd313036ff [maven-release-plugin] prepare for next development iteration 2018-04-06 08:28:51 +02:00
Sebastian Sdorra
5575b4cd11 [maven-release-plugin] copy for tag 1.58 2018-04-06 08:28:51 +02:00
Sebastian Sdorra
482589fc67 [maven-release-plugin] prepare release 1.58 1.58 2018-04-06 08:28:50 +02:00
Sebastian Sdorra
49168b10a7 update apache shiro to version 1.3.2 2018-04-05 21:59:41 +02:00
Sebastian Sdorra
4e58b82373 update fron sonatype aether to eclipse aether 1.1.0 2018-04-05 21:58:00 +02:00
Sebastian Sdorra
528f763634 removed never released scm-dao-orientdb module 2018-04-05 20:35:48 +02:00
Sebastian Sdorra
8af69c4e99 update vulnerable dependencies 
commons-beanutils to 1.9.3
commons-collections to 3.2.2
httpclient to 4.5.5
slf4j to 1.7.25
logback to 1.2.3
jackson to 1.9.13
 2018-04-05 19:56:15 +02:00
Sebastian Sdorra
ff2afceb55 update javahg to version 0.13 2018-04-05 19:48:04 +02:00
Sebastian Sdorra
fe531900e4 merge with branch issue-970 2018-04-05 18:45:12 +02:00
Sebastian Sdorra
473f3257a0 close branch issue-970 2018-04-05 18:44:42 +02:00
Sebastian Sdorra
3d401b93ea #970 added help text for enable httppostargs 2018-04-03 11:56:51 +02:00
Sebastian Sdorra
acebd0f25e #970 wrap requests only if http postargs is enabled 2018-04-03 11:14:05 +02:00
Sebastian Sdorra
8047d36028 #970 use iso-8859-1 for http post args instead of us-ascii 2018-04-03 11:00:16 +02:00
Sebastian Sdorra
b43e406b76 #970 initial support of mercurials httppostargs protocol 2018-03-30 11:20:22 +02:00
Sebastian Sdorra
a34acd8ed4 #970 added option to enable the experimental httppostargs protocol of mercurial 2018-03-29 22:14:28 +02:00
Sebastian Sdorra
8aaa67cd6a #970 inspect mercurial commands in order to detect write requests 
The HgPermissionFilter will now inspect the used mercurial command, of all requests which are using a read method like GET, HEAD, OPTIONS or TRACE and tread every one as write request, expect:
- no command was specified with the request (this is required for the hgweb ui)
- the command in the query string was found in the list of read commands
- if query string contains the batch command, then all commands specified in X-HgArg headers must be in the list of read commands
This change is required, in order to fix CVE-2018-1000132 for SCM-Manager.
 2018-03-29 20:26:56 +02:00
Sebastian Sdorra
3a9bc6828d use code blocks for request and response 2018-03-29 19:58:52 +02:00
Sebastian Sdorra
e7dd54c133 #970 added ngrep dumps for mercurial wire protocol and more realistic tests for isWriteRequest 2018-03-29 10:21:34 +02:00
Sebastian Sdorra
d066e59c0d merge with branch issue-959 2018-03-09 08:34:52 +01:00
Sebastian Sdorra
d888929813 close branch issue-959 2018-03-09 08:34:24 +01:00
Sebastian Sdorra
7d94b03a04 #959 added option to disable ssl validation for scm mercurial hook 2018-02-23 08:44:22 +01:00
Sebastian Sdorra
d21a28fa0b [maven-release-plugin] prepare for next development iteration 2018-02-09 08:14:35 +01:00
Sebastian Sdorra
c288243197 [maven-release-plugin] copy for tag 1.57 2018-02-09 08:14:34 +01:00
Sebastian Sdorra
b64d41f3c9 [maven-release-plugin] prepare release 1.57 1.57 2018-02-09 08:14:34 +01:00
Sebastian Sdorra
3206a2a4f0 merge with branch issue-965 2018-02-09 07:59:38 +01:00
Sebastian Sdorra
184b802992 close branch issue-965 2018-02-09 07:59:17 +01:00
Sebastian Sdorra
c216692eab #965 fixed handling of resources with spaces in its id 2018-02-08 22:36:54 +01:00
Sebastian Sdorra
a8186a2492 update svnkit to version 1.9.0-scm3 2018-02-07 15:19:20 +01:00
Sebastian Sdorra
9dd25b334a treat update of a git tag as delete and create for hooks 2018-02-07 11:24:53 +01:00