etan39
/
cloudstack
mirror of https://github.com/apache/cloudstack.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
11,672 Commits 323 Branches 325 Tags 941 MiB
Commit Graph

11672 Commits

Author SHA1 Message Date
Jessica Wang f21263364f cloudstack 3.0 UI - XSS - global setting page - fix a bug that notification got hacked after saving a value that has script tag (XSS attack). 2012-03-16 13:11:44 -07:00
Jessica Wang 7283591690 cloudstack 3.0 UI - XSS - listView - editable field - fix a bug that editable field sanitized value twice. 2012-03-16 11:52:58 -07:00
Jessica Wang 9003f6702b cloudStack 3.0 UI - validation - apply new method "disallowSpecialCharacters" to all textfields in dialog widget. 2012-03-15 15:30:21 -07:00
Jessica Wang 9d1d77ea77 cloudStack 3.0 UI - validation - add new method "disallowSpecialCharacters" which will disallow < and > (to prevent XSS attack) - apply this method in Add Domain dialog. 2012-03-15 14:46:05 -07:00
frank 125a156485 fix copying template 
Conflicts:

	console-proxy/scripts/ipfirewall.sh
 2012-03-15 14:42:25 -07:00
Alena Prokharchyk ba79da6aea bug 14305: set name for the guest network in basic zone 
status 14305: resolved fixed
 2012-03-15 11:56:39 -07:00
bfederle 2227f425cd Sanitize input for domain section/tree view 2012-03-15 10:30:39 -07:00
Jessica Wang 17bada6a62 cloudstack 3.0 UI - XSS - detailView in Edit mode - fix it to show original value instead of HTML-encoding value. 2012-03-14 16:44:21 -07:00
Jessica Wang 5d96f58814 cloudstack 3.0 UI - XSS - listView - fix it to show correct value. 2012-03-14 16:10:15 -07:00
bfederle 4861fa8011 Sanitize input for multi-edit, notification widgets 2012-03-14 16:07:57 -07:00
bfederle 0450a6c14c Add missing resource, max networks, to project resource tab 2012-03-14 16:07:15 -07:00
bfederle 8e9f418d85 Sanitize projects UI elements -- project selector, etc. 2012-03-14 14:59:41 -07:00
Jessica Wang d0b306ce05 cloudstack 3.0 UI - fix a JS error "str.replace is undefined". 2012-03-14 14:35:48 -07:00
Jessica Wang 3475d75486 cloudstack 3.0 UI - replace old sanitizeXSS() with new cloudStack.sanitize(). 2012-03-14 14:02:15 -07:00
bfederle 91dab6b9b1 Sanitize createForm input 2012-03-14 13:33:26 -07:00
bfederle 9e4bb2d0ac Sanitize detail view input rendering 2012-03-14 13:33:26 -07:00
bfederle 05a39953f4 Sanitize list view input rendering 2012-03-14 13:33:25 -07:00
bfederle 8e4ed4bfaf Fix case where str is not present 2012-03-14 13:33:25 -07:00
bfederle 2e1726cb5f Add helper function to sanitize user input strings 
For any strings that require sanitization (i.e., strip
HTML/JavaScript), wrap the string around cloudStack.sanitize, or _s
for short. This currently will remove embedded HTML tags, which are
the main security issues present.

Example:

var str = '<script>Hello</script>My String';

_s(str) = '&lt;script&gt;Hello&lt;/script&gt;My String'
 2012-03-14 13:33:24 -07:00
Alena Prokharchyk 31eef1d183 bug 14271: return only domainId in error message when caller is not authorized to operate within the domain 
status 14271: resolved fixed
 2012-03-14 13:30:03 -07:00
Edison Su 503ddd7282 bug 14201: delete duplicate guest os type. status 14201: resolved fixed 2012-03-14 11:48:22 -07:00
Edison Su 58fa73baea bug 14168: add re-try to mgt server, in case mgt server is down. status 14168: resolved fixed 2012-03-14 10:49:45 -07:00
Alena Prokharchyk d5e95fa407 bug 14295: allow regular user to create network with the custom cidr 
status 14295: resolved fixed
 2012-03-14 10:47:08 -07:00
Likitha Shetty 97d797e55c Merge branch '3.0.x' of ssh://git.cloud.com/var/lib/git/cloudstack-oss into 3.0.x 2012-03-14 18:01:13 +05:30
Likitha Shetty 4f2a924ecf Bug 13842 Check for snapshots in BackedUp state during the deletion of secondary storage 
behalf of: pranav
reviewed by: kishan
 2012-03-14 17:51:51 +05:30
Abhi 967ce1aa4c bug 14218: fixing category for redhat 2012-03-14 17:11:14 +05:30
U-aprateek-PC\aprateek 20936514f7 bug 14219: 6.0 is now not in beta 2012-03-14 15:08:15 +05:30
Jessica Wang e980263c5f cloudstack 3.0 UI - network page, infrastructure page - guest network - restart network action - Hide "clean up" checkbox if it's Basic zone. Show "clean up" checkbox if it's Advanced zone. 2012-03-13 16:55:34 -07:00
Jessica Wang 41352a5464 cloudstack 3.0 UI - network page - IP Address detail page - remove duplicate info - network name and network type are already in parent page (network page). 2012-03-13 16:29:51 -07:00
Jessica Wang 9066e995d1 cloudstack 3.0 UI - network page, infrastructure page - guest network - restart network action - uncheck and gray out "clean up" checkbox if it's Basic zone. Check and enable the checkbox if it's Advanced zone. 2012-03-13 16:16:55 -07:00
Sheng Yang 2038b500b3 Change KVM's delimiter from "," to "%" 
In order not to confuse with commandline parameters
 2012-03-13 15:58:45 -07:00
Jessica Wang 315430785d cloudstack 3.0 UI - guest network - show Edit action for Isolated network. Show Restart action for all networks. 2012-03-13 15:15:18 -07:00
Jessica Wang 69218e8066 cloudstack 3.0 UI -infrastructure page - remove obsolete code. 2012-03-13 14:30:57 -07:00
Jessica Wang a3484fc57d cloudstack 3.0 UI - Quick Installer - add host step - change text. 2012-03-13 10:50:11 -07:00
abhi f2cddc880c bug 14217: added the missing guest oses 2012-03-13 20:09:10 +05:30
abhi 48a2a5cfd2 bug 14151,14153: configuration variables are now hidden; added ldapRemove command 2012-03-13 11:28:47 +05:30
abhi 3b7d81b275 adding remove cmd for ldap 2012-03-13 11:28:26 +05:30
abhi 89dfd57806 removing the minor version number for comparisions for Xenserver 6.0 2012-03-13 11:26:01 +05:30
Sheng Yang 96518ecaf3 Add missing annotation 2012-03-12 17:10:41 -07:00
Sheng Yang d3142c2977 Refactor VirtualRouterNetworkManagerImpl 
Refactor applyDhcpEntry and applyUserData to use applyRules framework.
 2012-03-12 16:10:16 -07:00
Alena Prokharchyk 9e9ff4f363 bug 14239: limit number of Isolated account specific networks per account 
status 14239: resolved fixed
 2012-03-12 15:50:49 -07:00
Jessica Wang 6fab3a9d90 infrastructure page - zone detail - guest traffic type - networks tab - pass listAll=true to 2nd listNetworks API. 2012-03-12 14:48:11 -07:00
Jessica Wang 7ec7484662 cloudstack 3.0 UI - IP Address page - retrieving data for detailView - no need to pass listAll parameter to listPublicIpAddresses API. Passing id parameter is enough. 2012-03-12 14:12:26 -07:00
Sheng Yang 9022ab5bc9 bug 14074: Specify networkId for list public ip 
status 14074: resolved fixed
 2012-03-12 12:07:57 -07:00
Jessica Wang f36ac54ebc bug 14238: create network offering dialog - remove traffic type dropdown since it includes only one choice. Hardcode it in API call. 2012-03-12 11:36:32 -07:00
Alena Prokharchyk 4ee7094f80 bug 14247: implemented search by storage id in listSystemVms 
status 14247: resolved fixed
 2012-03-12 10:23:29 -07:00
kishan b22232c0e3 Bug 14195: Changed category of Usage and Secure configs 2012-03-12 16:11:22 +05:30
Sheng Yang 21fedec0ef Refactor VirtualNetworkApplianceManagerImpl 
Add separate create command for dhcp, userdata and password.
 2012-03-09 19:00:35 -08:00
Sheng Yang 4956177dd1 Refactor rules appling in the VirtualNetworkApplianceManagerImpl 2012-03-09 18:00:26 -08:00
Jessica Wang f346c4add6 cloudstack 3.0 UI - listView - when clicking fast between different rows, JS error "args.context.xxx is undefined" appears. e.g. "args.context.instances is undefined" appears when clicking fast between different rows in listView in instance page. Because when clicking fast, users might click another row before API response for this current row is back => which causes the JS error. The fix is to overlay the whole listView by loading image (spinning wheel image) until click-handling for this row is done (e.g. API response is back). 2012-03-09 16:47:28 -08:00