dubey/WebGoat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,719 Commits 11 Branches 78 Tags
Commit Graph

129 Commits

Author SHA1 Message Date
Jason White
ca4b0c06b5 lesson css file 2017-07-24 11:34:10 -04:00
Jason White
0cb4faf15f refactor to support cleaner scoping && success and failure callbacks 2017-07-18 17:39:58 -04:00
Jason White
fb65534355 Merging from 'injection-updates' into local develop branch 2017-07-03 15:22:02 -04:00
Jason White
2e4e4ea716 including restart lesson fix for lesson overview 2017-07-03 12:37:15 -04:00
Jason White
daaf361dd2 Lesson Overview updates 2017-07-03 12:14:01 -04:00
Jason White
89e2fc109c Work-around to handle special chars in action ... currently to be able to match {userId} in hint creation/assignment for IDOR 2017-06-27 10:24:38 -04:00
Jason White
dd18e68660 merge of upstream, conflict resolution 2017-06-27 08:30:58 -04:00
Nanne Baars
7809057208 Enabled the challenges again to make them visible for everybody who starts WebGoat 2017-06-15 23:38:04 +02:00
Nanne Baars
52a48df70c XXE successfully completed message was no longer shown, fixed it by using form POST together with customjs functions. 
Introduced callback functionality which you can specify after the posting in order to be able to load the comments list again.
 2017-06-12 15:08:55 +02:00
Nanne Baars
0ad1f0d147 Fixing Travis issues while building 2017-05-21 13:28:29 +02:00
Nanne Baars
2b2451dd9c testing with Travis dirs 2017-05-21 13:10:52 +02:00
Nanne Baars
50795d9ded testing with Travis dirs 2017-05-21 13:06:00 +02:00
Nanne Baars
877de6ebd4 Updated XXE lessons with challenge screens 2017-05-21 12:24:42 +02:00
Jason White
feead6b740 initial cut on XSS, need to add some tests still 2017-05-18 14:41:14 -04:00
Nanne Baars
8d3c251d04 Merge branch 'challenge' into develop 
Conflicts:
	webgoat-container/src/main/resources/static/css/main.css
 2017-05-04 03:02:00 +02:00
Jason White
08e7916b39 polling updates, including banner for appseceu 2017-05-10 16:15:38 +01:00
Jason White
c7c664ad4a polling for scoreboard added (appseceu) 2017-05-10 15:28:07 +01:00
Jason White
328cd9bf24 For quick reloading/restart via intelliJ during dev 2017-05-10 13:08:27 +01:00
Jason White
118079233d hints view fix. still a redundant call issue, but logging separately 2017-05-10 13:08:27 +01:00
Nanne Baars
194a327ad5 Fixed issue when restarting the lesson the menu was not updated (the marker stayed behind) 
Also restarting the lesson was not persisted
 2017-05-03 05:08:00 +02:00
Jason White
6fbd8457c1 update for width .. FF fix 2017-05-02 10:02:42 -04:00
Jason White
480dfe6a0a scoreboard v 0.1 we'll say 2017-05-05 13:12:01 -04:00
Jason White
aeaa3cd1a2 removing template cruft from other lesson 2017-05-05 09:59:59 -04:00
Nanne Baars
454e8d4c14 Solving an assignment twice adds its again which breaks the UI because the endpoint for lessonoverview returns mulitple values for the same assignment. 2017-05-02 04:38:30 +02:00
Jason White
b840b0f3b5 additional support for scoreboard view 2017-05-02 22:24:31 -04:00
Jason White
4a2701c79b clean up 2017-05-02 22:24:31 -04:00
Jason White
e0f23bfa38 initial removal (comment) of plan,solution and source views. Should remove some chattiness 2017-05-02 22:24:31 -04:00
Jason White
b0f66f16fb initial plumb of scoreboard 2017-05-02 22:24:31 -04:00
Nanne Baars
eb7a6bd2be Creating endpoint for the scoreboard 2017-05-02 02:29:47 +02:00
misfir3
459cc613e1 Update main.css 
quick update to ensure horizontal space is used
 2017-04-21 12:27:37 -04:00
Nanne Baars
3ccfcac8ff Challenge 4 done 2017-04-16 05:14:47 +02:00
Nanne Baars
213e73bf02 Making database for each user (no sharing between each other) 2017-04-15 18:11:55 +02:00
Nanne Baars
6f633a0f78 Added the ability to remove all *.progress files when starting the server (for development). This is sometimes necessary when the internal structure of the lessons change but we still use old progress files. 2017-04-15 14:01:11 +02:00
Nanne Baars
4e3ca68d08 Stop showing old lesson overview after finishing a lesson 2017-04-15 11:37:44 +02:00
Nanne Baars
e570f4bde2 Fixed pagination not initializing correctly when clicking on menu items 2017-04-15 11:37:44 +02:00
Jason White
9bc219e931 numbering on pagination 2017-04-15 11:37:43 +02:00
Jason White
e3d281a5f6 refactor of pagination controls 2017-04-15 11:37:43 +02:00
Nanne Baars
5156b05aac Fixed logout 2017-03-23 21:03:20 +01:00
Nanne Baars
90eee0e2d8 Adding write_delay option to hsql database (otherwise users were not persisted in database correctly) 2017-03-22 17:04:44 +01:00
Nanne Baars
c14b172503 Removed default values from login screen 2017-03-22 15:53:50 +01:00
Nanne Baars
259fd19c1b - Introduced user registration 
- Now using Spring Boot for classloading, this way local development does not need to restart the complete server
- Fixed all kinds of dependencies on the names of the lessons necessary to keep in mind during the creation of a lesson.
- Simplied loading of resources, by adding resource mappings in MvcConfig.
- Refactored plugin loading, now only one class is left for loading the lessons.
 2017-03-22 11:35:14 +01:00
Nanne Baars
f71d02fc6a Merge branch 'develop' into develop 2017-03-02 21:24:09 +01:00
Nanne Baars
2d6235e4f0 Provide Server-side service to support UI localization #265 
- Now also enabled for adoc
 2017-03-02 21:17:21 +01:00
Jason White
7f532f0ffc XSS lesson updates 2017-02-17 13:05:54 -05:00
Jason White
af8f8c27a6 moving controls to top of content 2017-02-16 14:56:08 -05:00
mayhew64
a00546638a Merge branch 'develop' of https://github.com/WebGoat/WebGoat into develop 2017-02-07 16:06:45 -05:00
mayhew64
b4159385c1 Vulnerable components draft, fixed missing properties in httpbasics when user input was empty 2017-02-07 16:05:30 -05:00
Jason White
4664669ff2 cleaning up, fixing selected lesson class/es 2017-02-07 18:13:27 +01:00
Nanne Baars
ae82df3fb4 Fixed issue with loading messages in different language. As a standalone jar you can write properties back to messages.properties, this approach worked when you run with exploded classpath (target/classes etc). However failed when running inside Docker container. 2017-02-05 21:54:07 +01:00
erhun
21659ac298 Add Thymeleaf th:href usage instead of pageContext.request.contextPath (#323) 
* Add Thymeleaf th:href usage instead of pageContext.request.contextPath

* Add Thymeleaf th:href usage instead of pageContext.request.contextPath
 2017-01-31 12:01:41 -05:00