20d7015dff
Move unit test to JUnit 5
2021-11-16 16:33:36 +01:00
2fbc52e6a2
Remove some unused code
2021-11-16 16:33:36 +01:00
ab0433bb67
Fix link and typo
...
The link pointed to the old OWASP website. Also fixed some typos here and there
Resolves : #1136
2021-11-16 16:33:10 +01:00
f2f7f36a6d
Fix typo in hints
...
The hints for JWT used `jwt` instead of `JWT` which makes it difficult to solve the lesson as the hint actually points someone in the wrong direction.
Resolves : #123
2021-11-16 16:32:57 +01:00
3ad51e6d6b
Rewrite lesson to be self-contained and not depend on the core of WebGoat for fetching users
...
Split the assignment into 2 assignments
2021-11-16 16:32:43 +01:00
2bd6b36210
Fix layout assignment 2
2021-11-16 16:32:43 +01:00
bcaf4485c2
Move css to lesson itself
2021-11-16 16:32:43 +01:00
cd2e1c1c09
Fix spelling issues
2021-11-16 16:32:43 +01:00
c7e04cef97
Add logging to pom.xml
2021-11-16 16:24:45 +01:00
fa2769cb25
Updating poms
2021-11-16 16:24:45 +01:00
1a64fcd8d4
Recommit logging lesson as PR got a lot of conflicts
2021-11-16 16:24:45 +01:00
ff67ee6484
Update to correct version
2021-10-04 14:40:19 +02:00
a7b9954d0f
1101: fix quoting in statement
2021-10-02 17:39:26 +02:00
dfa0e1cdca
XSS Lesson one boolean response
...
Signed-off-by: Àngel Ollé Blázquez <angel@olleb.com >
2021-10-02 01:09:52 +02:00
14a6efedf3
Add extra documentation for using the correct algorithm but removing the signature.
2021-09-29 15:21:09 +02:00
362248a065
Fix token signature validation
2021-09-29 13:51:17 +02:00
04d1293a33
#1045 : Run build with Java 16
2021-09-23 16:09:28 +02:00
8e567b0f86
Spoofing an Authentication Cookie lesson
2021-09-23 15:51:17 +02:00
42369816c9
1026 ( #1047 )
...
* Move back to Java 15 as XML parsers fail with XXE lesson
* Documentation improvement
2021-09-17 13:46:58 +02:00
7ec6826abc
#1031 : Fix lesson
...
- Hints not shown
- Add more hints
- Incorrect grant statement in lesson as example (removed it)
2021-09-05 14:32:55 +02:00
a14e84d5c5
#1039 : Fix token
...
Replace `name` with `user` and add `admin`
2021-09-05 13:07:56 +02:00
14ab2faeaf
Bump jsoup in /webgoat-lessons/cross-site-scripting
...
Bumps [jsoup](https://github.com/jhy/jsoup ) from 1.13.1 to 1.14.2.
- [Release notes](https://github.com/jhy/jsoup/releases )
- [Changelog](https://github.com/jhy/jsoup/blob/master/CHANGES )
- [Commits](https://github.com/jhy/jsoup/compare/jsoup-1.13.1...jsoup-1.14.2 )
---
updated-dependencies:
- dependency-name: org.jsoup:jsoup
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com >
2021-09-04 16:28:15 +02:00
6aaa743302
Fix vulnerable components lesson for Java 16.
2021-09-04 16:08:33 +02:00
d566080a79
fix typo
2021-08-14 10:52:16 +02:00
60bd04b9aa
Move to snapshot version
2021-07-29 11:13:16 +03:00
a641a19615
Add zip slip to path traversal lesson
2021-05-23 21:18:56 +02:00
81c551552b
Fix layout issue image
2021-05-23 20:11:23 +02:00
69a370f438
New release, updating pom.xml
2021-05-23 20:11:23 +02:00
a53ba0af5c
Fix for accidentally disabled integration tests ( #997 )
...
* drop column is no longer required due to better db seperation
'
* integration test fix with BeforeAll
2021-05-19 18:20:31 +02:00
a1071e9c00
Fix return type of asciidoctor macro implementation.
2021-04-23 15:11:56 +02:00
38f1d52bf3
Corrected typos and poor grammar found in the SQL Injection lessons.
2021-04-16 13:29:01 +02:00
e49f5d610f
#961 : Give each user its own schema for the lessons
...
This way we can reset a lesson using the database for each user and not for all users at once.
Also solves the issue that when someone solves the lesson it is solved for all users on the same WebGoat instance
2021-04-16 13:28:07 +02:00
d0f36f5227
Fix failing XXE test
2021-04-03 22:31:27 +02:00
b3f7a5338e
Update to latest versions
2021-04-03 10:58:22 +02:00
abf431fffb
Remove unnecessary plugins in subprojects
2021-04-03 10:58:08 +02:00
82198424df
Corrected typos and poor grammar found in the SQL Injection lessons.
2021-04-02 21:31:11 +02:00
ba2cb7d14f
#974 : Update the lesson text
2021-04-02 07:31:19 +02:00
de453fad84
Fix issue with labels in SQL lessons
2021-04-01 17:48:32 +02:00
59c96f9890
Fix lesson it no marks it as solved if the user uses a different username
2021-03-31 19:32:47 +02:00
f7d3fd586e
Remove the span added to the feedback
2021-03-31 19:32:47 +02:00
798afc756b
Remove as it matches the normal success message
2021-03-31 19:32:47 +02:00
59aaab52a9
Disable testcase as it fails on Windows, needs investigation.
2021-03-31 19:31:13 +02:00
14621003d7
Remove banner.txt as you can set it with a property in application.properties
2021-03-31 19:31:13 +02:00
cda852f4e8
Run unit tests again for all lessons and rewrite all to JUnit 5
...
Due to the migration to Spring Boot 2.4 the Vintage dependency was no longer included by default, resulting in skipping all unit tests.
2021-03-31 19:31:13 +02:00
ae6d448aa0
Replace ${revision} with real version as Maven
...
The CI pipeline should take care of this.
2021-03-31 19:31:13 +02:00
b8bdb8f432
Updating to the new development version
2021-03-30 14:05:26 +00:00
e114360a5f
Fix SQL Injection
2021-03-29 08:28:36 +02:00
935871c39a
Add some debugging information to know which test cases might have failed
2021-03-29 07:30:03 +02:00
ce6e4d2090
Fix issue with looking for all directories one present should be enough
2021-03-29 07:30:03 +02:00
59e04dee6e
Fix typo
2021-03-15 17:48:13 +01:00
