Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

bugs #11801 fix(standalone): add no auth module #1877

Merged
merged 1 commit into from
May 29, 2024
Merged

bugs #11801 fix(standalone): add no auth module #1877

merged 1 commit into from
May 29, 2024

Conversation

Regzox
Copy link
Contributor

@Regzox Regzox commented May 28, 2024
edited
Loading

Description

  • Répare le mode standalone de pastis.
  • Ajoute les configurations nécessaire pour démarrer pastis standalone en mode dev facilement.
  • Améliore la gestion des CORS qui étaient cassée sur pastis standalone.

@Regzox Regzox self-assigned this May 28, 2024
@Regzox Regzox added bug Something isn't working javascript Pull requests that update Javascript code java Pull requests that update Java code VAS VAS contribution labels May 28, 2024
@Regzox Regzox requested a review from laedanrex May 28, 2024 12:40
@vitam-devops
Copy link
Collaborator

vitam-devops commented May 28, 2024
edited
Loading

Logo
Checkmarx One – Scan Summary & Details0d2d3eab-ca38-4b6c-8a15-d866157533aa

New Issues

Severity Issue Source File / Package Checkmarx Insight
HIGH CVE-2019-15599 Npm-tree-kill-1.2.1 Vulnerable Package
HIGH CVE-2020-28502 Npm-xmlhttprequest-ssl-1.5.5 Vulnerable Package
HIGH CVE-2020-36048 Npm-engine.io-3.2.1 Vulnerable Package
HIGH CVE-2020-36049 Npm-socket.io-parser-3.2.0 Vulnerable Package
HIGH CVE-2020-7660 Npm-serialize-javascript-1.9.1 Vulnerable Package
HIGH CVE-2020-7788 Npm-ini-1.3.5 Vulnerable Package
HIGH CVE-2021-31597 Npm-xmlhttprequest-ssl-1.5.5 Vulnerable Package
HIGH CVE-2022-2421 Npm-socket.io-parser-3.2.0 Vulnerable Package
MEDIUM CVE-2019-16769 Npm-serialize-javascript-1.9.1 Vulnerable Package
MEDIUM CVE-2020-15366 Npm-ajv-6.10.0 Vulnerable Package
MEDIUM CVE-2020-15366 Npm-ajv-5.5.2 Vulnerable Package
MEDIUM CVE-2020-28481 Npm-socket.io-2.1.1 Vulnerable Package
MEDIUM CVE-2020-7693 Npm-sockjs-0.3.19 Vulnerable Package
MEDIUM CVE-2021-23364 Npm-browserslist-4.5.5 Vulnerable Package
MEDIUM CVE-2022-21704 Npm-log4js-4.5.1 Vulnerable Package
MEDIUM CVE-2022-41940 Npm-engine.io-3.2.1 Vulnerable Package
LOW Logging of Sensitive Data /ansible.cfg: [2](https://github.com/ProgrammeVitam/vitam-ui/blob/bugs_11801//deployment/pki/scripts/lib/ansible.cfg# L2) To keep sensitive values out of logs, tasks that expose them need to be marked defining 'no_log' and setting to True
LOW Logging of Sensitive Data /ansible.cfg: [2](https://github.com/ProgrammeVitam/vitam-ui/blob/bugs_11801//tools/docker/mongo/ansible.cfg# L2) To keep sensitive values out of logs, tasks that expose them need to be marked defining 'no_log' and setting to True
LOW Logging of Sensitive Data /ansible.cfg: [1](https://github.com/ProgrammeVitam/vitam-ui/blob/bugs_11801//deployment/ansible.cfg# L1) To keep sensitive values out of logs, tasks that expose them need to be marked defining 'no_log' and setting to True

@Regzox Regzox requested a review from marob May 28, 2024 14:08
marob
marob requested changes May 28, 2024
View reviewed changes
.run/core/Pastis - API - Standalone.run.xml Outdated Show resolved Hide resolved
.run/core/Pastis Standalone - UI - Frontend.run.xml Outdated Show resolved Hide resolved
...andalone/src/main/java/fr/gouv/vitamui/pastis/standalone/ApiPastisStandaloneApplication.java Outdated Show resolved Hide resolved
...stis/pastis-standalone/src/main/java/fr/gouv/vitamui/pastis/standalone/config/WebConfig.java Outdated Show resolved Hide resolved
...s-standalone/src/main/java/fr/gouv/vitamui/pastis/standalone/config/PastisConfiguration.java Outdated Show resolved Hide resolved
...andalone/src/main/java/fr/gouv/vitamui/pastis/standalone/ApiPastisStandaloneApplication.java Outdated Show resolved Hide resolved
ui/ui-frontend/angular.json Outdated Show resolved Hide resolved
@Regzox Regzox force-pushed the bugs_11801 branch 3 times, most recently from de9dd6d to 5c2eb48 Compare May 29, 2024 13:22
@GiooDev GiooDev added this to the IT 136 milestone May 29, 2024
@Regzox Regzox merged commit f295a89 into develop May 29, 2024
9 checks passed
@Regzox Regzox deleted the bugs_11801 branch May 29, 2024 16:03
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@marob marob marob approved these changes

@ebernard ebernard ebernard approved these changes

@laedanrex laedanrex Awaiting requested review from laedanrex

Assignees

@Regzox Regzox

Labels
bug Something isn't working java Pull requests that update Java code javascript Pull requests that update Javascript code VAS VAS contribution
Projects
None yet
Milestone
IT 136
Development

Successfully merging this pull request may close these issues.
5 participants
@Regzox @vitam-devops @ebernard @marob @GiooDev