Commits · 3db4cf5049df63b9d702fcb542a810a4b98a95bc · Paul-Christian Volkmer / ARSnova Backend

May 15, 2016
- Fix security vulnerability in account management API · 3db4cf50
  Daniel Gerhardt authored 8 years ago
  
  3db4cf50
Sep 24, 2014
- Do not expose username for Answer/InterposedQuestion to API · 89798df2
  Daniel Gerhardt authored 10 years ago
  
  89798df2
Sep 12, 2014
- Add order configuration option for auth services · ee2c4023
  Daniel Gerhardt authored 10 years ago and Daniel Gerhardt committed 10 years ago
```
Cherry-pick commit 4015a255 which was lost in merge.
```
  ee2c4023
- Adjust formatting of Value annotations · 01addf24
  Daniel Gerhardt authored 10 years ago
  
  01addf24
Sep 09, 2014
- Add configuration option for Presenter's manual · 7ec03472
  Daniel Gerhardt authored 10 years ago
  
  7ec03472
- Add configuration option to enable view of student's own questions · aaa53764
  Daniel Gerhardt authored 10 years ago
  
  aaa53764
Sep 04, 2014
- Remove obsolete special handling of CAS users · efc9a225
  Daniel Gerhardt authored 10 years ago
```
This is no longer needed since the "released for" per question setting
has been removed.
```
  efc9a225
Aug 25, 2014
- Fixed counting only 'read' interposed messages · 8b50cd17
  Christoph Thelen authored 10 years ago
  
  8b50cd17
- Fixes #11549: List user's own messages · 412ff555
  Christoph Thelen authored 10 years ago
  
  412ff555
- Allow users to display and delete their own interposed questions · 65adcd82
  Christoph Thelen authored 10 years ago
  
  65adcd82
Aug 24, 2014
- Return 0 if there are no questions (wich should never happen) · a959637e
  Paul-Christian Volkmer authored 10 years ago
  
  a959637e
- Added average answers per question into statistics object · c8cf241c
  Paul-Christian Volkmer authored 10 years ago
  
  c8cf241c
- Automated cleanup · 3b529471
  Daniel Gerhardt authored 10 years ago
```
* Organize imports
* Add missing Override annotations
* Remove trailing whitespace
```
  3b529471
- Remove food vote · 910c933a
  Daniel Gerhardt authored 10 years ago
  
  910c933a
- Remove legacy user map · 896d6f73
  Daniel Gerhardt authored 10 years ago
  
  896d6f73
- Remove session joining via HTTP and online ping · 890f49af
  Daniel Gerhardt authored 10 years ago
  
  890f49af
Aug 23, 2014
- Corrected naming of identifiers for attribute cvIsColored. · 9988dc35
  Felix Schmidt authored 10 years ago
  
  9988dc35
Aug 21, 2014
- Setup Bean for ApplicationPermissionEvaluator · 69aa4de8
  Daniel Gerhardt authored 10 years ago
  
  69aa4de8
- Some changes to security implementation · b1e3fb42
  Paul-Christian Volkmer authored 10 years ago and Daniel Gerhardt committed 10 years ago
```
Set default evaluation result to false and throw an AccessDeniedException.
SecurityExceptionControllerAdvice checks if there is an valid login and
decides whether to send HTTP 401 or HTTP 403.

Conflicts:
	src/test/java/de/thm/arsnova/controller/AbstractControllerTest.java
```
  b1e3fb42
- Extract ExceptionHandlers into controller advice · ad7a9b20
  Paul-Christian Volkmer authored 10 years ago and Daniel Gerhardt committed 10 years ago
  
  ad7a9b20
- Use separate configuration class for tests · 649b34d4
  Daniel Gerhardt authored 10 years ago and Daniel Gerhardt committed 10 years ago
  
  649b34d4
- Log enabled auth providers at startup · c2260604
  Daniel Gerhardt authored 10 years ago and Daniel Gerhardt committed 10 years ago
  
  c2260604
- Fix obvious copy and paste mistake in Google OAuth configuration · 39237a23
  Daniel Gerhardt authored 10 years ago and Daniel Gerhardt committed 10 years ago
  
  39237a23
- Fix configuration for testing · e86eb913
  Daniel Gerhardt authored 10 years ago and Daniel Gerhardt committed 10 years ago
  
  e86eb913
- Disable external auth services by default · 845c784c
  Daniel Gerhardt authored 10 years ago and Daniel Gerhardt committed 10 years ago
  
  845c784c
- Fix LDAP configuration setup · 90e76415
  Daniel Gerhardt authored 10 years ago and Daniel Gerhardt committed 10 years ago
  
  90e76415
- Use DefaultSpringSecurityContextSource instead of DirContextSource · b8e4b342
  Daniel Gerhardt authored 10 years ago and Daniel Gerhardt committed 10 years ago
  
  b8e4b342
- Conditionally setup auth providers and filters, fix LDAP config, cleanup · 9b83ed60
  Daniel Gerhardt authored 10 years ago and Daniel Gerhardt committed 10 years ago
  
  9b83ed60
- Disable CSRF filter · 9bdf453e
  Daniel Gerhardt authored 10 years ago and Daniel Gerhardt committed 10 years ago
  
  9bdf453e
- Use root URL as default target for success and failure handlers · b3027362
  Daniel Gerhardt authored 10 years ago and Daniel Gerhardt committed 10 years ago
  
  b3027362
- Avoid use of deprecated methods · 2b80713c
  Daniel Gerhardt authored 10 years ago and Daniel Gerhardt committed 10 years ago
  
  2b80713c
- Add CAS logout filter · 1625e616
  Daniel Gerhardt authored 10 years ago and Daniel Gerhardt committed 10 years ago
  
  1625e616
- Correctly register auth providers · c2047ffe
  Daniel Gerhardt authored 10 years ago and Daniel Gerhardt committed 10 years ago
  
  c2047ffe
- Completly migrate Spring security config from XML to Java · 7346799e
  Daniel Gerhardt authored 10 years ago and Daniel Gerhardt committed 10 years ago
```
While the context can be started without errors the is still a
configuration problem. Authentication filters are causing a
StackOverflowException.
```
  7346799e
Aug 13, 2014
- Added attribute for colored canvas · 2330c4d1
  Daniel Vogel authored 10 years ago
  
  2330c4d1
Aug 09, 2014
- Fix testing configuration · 22dee5af
  Daniel Gerhardt authored 10 years ago
  
  22dee5af
Aug 06, 2014
- Use context-relative redirect for CAS logout · a699d0a0
  Daniel Gerhardt authored 10 years ago
  
  a699d0a0
Aug 01, 2014
- Improve Websocket assignment code · 376a3790
  Daniel Gerhardt authored 10 years ago
```
Replaced the use of Json-lib for deserialization by the use of a Map.
This fixes exceptions caused by failed deserializations and is more
consistent with JSON handling of other controllers.
Log messages for easier debugging have been added.
```
  376a3790
- Do not expose user with free text answers for privacy concerns · 6f67d91f
  Daniel Gerhardt authored 10 years ago
  
  6f67d91f
- Improve authentication logging messages and decrease verbosity · fde35df2
  Daniel Gerhardt authored 10 years ago
  
  fde35df2