fc30ed9920
part two of temp. isDefuseOSCOmmand for #240
2016-07-06 13:45:04 -04:00
bc30634f99
temporary restoration of isDefuseOSCommands
2016-07-06 13:33:35 -04:00
2e64a4cc05
Merge pull request #243 from span/java-requirement
...
Update java required version as stated in webgoat/webgoat#234
2016-06-21 08:42:28 -04:00
51afbf6f84
Update java required version as stated in webgoat/webgoat#234
2016-06-20 23:40:55 +02:00
40c87b08af
#240 Java Error Message in Lesson "How to Bypass a Path Based Access Control Scheme"
2016-06-02 22:04:21 +02:00
efce972209
Merge pull request #239 from dilshanraja/dev-temp
...
Updates to Dev Bootstrap
2016-06-01 14:49:53 +01:00
4fc6a416dd
Updates to Dev Bootstrap
...
- Use '-e' option in script echo commands to enable interpretation of escape sequences -> to make bash colours work
- README changed to show proper execution instruction
2016-05-21 20:11:50 +10:00
7f91671c8f
Merge pull request #229 from span/start-page-link
...
Fix broken start/home link on logo
2016-04-08 18:27:37 +02:00
a8f8d4b4fa
Merge pull request #228 from span/developer-controls
...
Developer controls
2016-04-08 18:27:29 +02:00
263ce31db3
Merge pull request #224 from WebGoat/feature/137
...
Admin should also be able to see the solution, source and lesson plan.
2016-04-08 18:27:21 +02:00
407a5a810b
Merge pull request #220 from WebGoat/feature/169
...
Feature/169
2016-04-08 18:27:12 +02:00
46b24d72c9
Merge pull request #212 from nbaars/develop
...
Fixed #184
2016-04-08 18:27:00 +02:00
0401779f58
Fix broken test
2016-03-31 23:06:16 +02:00
7758947711
Load welcome.mvc instead of start.mvc when navigating home on the log, fixes #218
2016-03-31 23:02:54 +02:00
58ae7f3727
Move loading of developer controls so they do not reload every time. Also reload current lesson after reloading labels. Ref webgoat/webgoat#93 .
2016-03-31 22:56:17 +02:00
2be4248ea3
Add menu toggle to show/hide the controls. Ref webgoat/webgoat#93
2016-03-30 22:38:18 +02:00
e6fb74fa55
Implementation of developer controls to reload plugins and set label debugging from the GUI. Ref: webgoat/webgoat#93
2016-03-30 22:07:11 +02:00
b06d9ffd81
Admin should also be able to see the solution, source and lesson plan.
2016-03-29 01:24:07 +02:00
a52df28ec6
Merge pull request #223 from WebGoat/features/221
...
Fixed the classnames in the wsdd config file (moved to different pack…
2016-03-29 00:25:00 +02:00
042a62624f
Fixed the classnames in the wsdd config file (moved to different package)
2016-03-29 00:17:01 +02:00
015dcbde38
Added image for Github developers documentation about lesson progress implementation.
2016-03-28 08:38:25 +02:00
60192db921
Renamed everything to 'progress' instead of 'completed'
2016-03-28 08:37:18 +02:00
765b212032
Merge pull request #219 from muzir/patch-1
...
Update README.MD
2016-03-27 17:46:51 +02:00
b4cc27c761
Lesson completed message is now within js which makes it possible to show the Congratulation message after the CSRF link has been clicked.
...
Same as marking the lesson complete green checkbox
2016-03-27 17:46:06 +02:00
c11ecef099
Update README.MD
...
grammar fix
2016-03-25 10:28:07 +02:00
35bd866873
Merge pull request #214 from span/restart-button
...
Fix #213 by changing the id of the restart button to the correct id
2016-03-19 15:22:41 +01:00
1815494681
Injection Flaws -> Limit Command Injection success to a set of commands and clarify this to the user #179
...
- Defuse command boolean flag is no longer necessary due to a change in the lesson, removed this flag from the webgoat-container project
2016-03-19 12:40:28 +01:00
6c92f0629e
Fix #213 by changing the id of the restart button to the correct it
2016-03-18 21:11:49 +01:00
7a7fb088ad
#173 Added the URL for WebGoat to the console output
2016-03-18 14:38:49 +01:00
bc6b040f42
Injection Flaws | XPath Injection date file path issue #184
...
- Enabled the lesson again because lesson has been fixed
2016-03-18 13:39:18 +01:00
50c4d9c170
Removed duplicate entry
2016-03-18 13:17:10 +01:00
8738bb2e46
Merge pull request #210 from nxadm/develop
...
Fix shebang
2016-03-09 19:07:40 +01:00
dc56ff9359
Fix shebang
2016-03-09 15:41:32 +01:00
5d393d1d65
Merge pull request #207 from span/weak-auth-cookie-enable
...
Enable weak authentication cookie lesson
2016-02-25 22:07:46 +01:00
f5a5335e31
Merge pull request #205 from muzir/develop
...
-- Remove raw type usage, add type check parameter.
2016-02-25 22:06:24 +01:00
a9a7c18592
Enable weak authentication cookie lesson if webgoat/webgoat#181 is not reproducible
2016-02-24 15:23:03 +01:00
01636eae10
Merge pull request #203 from span/readme-7.0.1
...
Update package references in readme
2016-02-23 09:08:13 -05:00
3d7eb40787
Merge pull request #202 from misfir3/develop
...
Develop
2016-02-23 09:07:40 -05:00
25f08ea9b4
-- Remove raw type usage, add type check parameter.
...
-- Remove unused variable and unused imports.
2016-02-23 15:15:47 +02:00
82d4324b67
Update easy run links to package 7.0.1 and update developer references from 7.0-SNAPSHOT to 7.1-SNAPSHOT as noted by @diegochavezcarro in #200
2016-02-20 13:02:05 +01:00
575c940655
#180 , clean up
2016-02-18 21:26:32 -05:00
7c65441c8e
#180 , better management of show* buttons
2016-02-18 19:44:12 -05:00
daa05dd192
Seems locale should not depend of request's Accept-Language header.
...
Signed-off-by: Nanne Baars <nbaars@xebia.com >
2016-02-12 23:42:21 +01:00
dbb75980c9
Merge pull request #197 from span/htmlencoder
...
Fixes #195 by adding static initialisation of the maps
2016-02-12 13:02:41 -05:00
727e4ff56c
Merge pull request #196 from span/xss-lab
...
Add stage parameter in the session to keep track of current stage
2016-02-12 13:01:31 -05:00
d89362226e
Merge pull request #193 from nbaars/develop
...
webgoat-container should unpack all the lessons #192
2016-02-12 12:59:36 -05:00
77c4a04d3d
Fixes #195 by adding static initialisation of the maps rather then using the constructor
2016-02-04 23:27:31 +01:00
59549e3b21
Add stage parameter in the session to keep track of current stage so that we do not reset the stage and recreate the database in the middle of a lesson. To do this a small refactor of WebSession was made which simply extracts some methods from the previously large update method. Ref #176 .
2016-02-04 23:21:12 +01:00
1d2a612c1f
webgoat-container should unpack all the lessons #192
2016-02-02 00:42:10 +01:00
724c084abf
Updading develop branch pom versions to 7.1-SNAPSHOT
2016-02-01 18:30:53 -05:00
