de71f2700e
Let user-composed (CSRF) attacks send one-request actions, as opposed to the address bar MVC links requesting lessons. The lesson display servlets have javascript that requests data and actions.
2015-11-07 05:43:31 -05:00
ba20f8d14b
Fix javax.mail dependecy and update versions
...
Signed-off-by: Doug Morato <dm@corp.io >
2015-10-27 22:15:14 -04:00
4a43a5572e
Unregister JDBC drivers, Fixes #134
...
Upon calling the maven tomcat7:shutdown goal, a severe error message was thrown because of not unloading the JDBC drivers.
Signed-off-by: Doug Morato <dm@corp.io >
2015-10-26 18:23:27 -04:00
789a57e792
SEVERE: The web application [/WebGoat] appears to have started a thread named [pool-7-thread-5] but has failed to stop it. This is very likely to create a memory leak #124
2015-10-26 21:38:30 +01:00
44d944bceb
Merge pull request #129 from dougmorato/master
...
Maven-tomcat plugin fix and correct typo on JS file
2015-10-26 10:09:16 -04:00
94ae466dbd
Cannot serialize session attribute #123
2015-10-26 07:52:26 +01:00
345e3cc7cb
Fix typo on JS file
...
Signed-off-by: Doug Morato <dm@corp.io >
2015-10-25 22:53:56 -04:00
441543100f
Revert tomcat7 maven plugin to 2.1
...
Knonw bug on version 2.2 of the tomcat7-maven-plugin on extracting the temp directories for exec jar
Info: https://issues.apache.org/jira/browse/MTOMCAT-211
https://fisheye6.atlassian.com/changelog/tomcat?cs=1539956
https://fisheye6.atlassian.com/changelog/tomcat?cs=1539209
Signed-off-by: Doug Morato <dm@corp.io >
2015-10-25 22:51:28 -04:00
8bffb76e5b
Merge pull request #127 from misfir3/master
...
items ommited from menu spinner and some more clean up
2015-10-25 22:28:17 -04:00
7e2d36ee48
Coveralls should be on Parent Pom
...
moving the coverall plugin to the parent pom level
Signed-off-by: Doug Morato <dm@corp.io >
2015-10-24 20:26:17 -04:00
cffb515851
Adding Coveralls support
...
Coveralls.IO is free service to report on Code Coverage for Open-Source projects. Enabling the reporting using the maven cobertura plugin
Signed-off-by: Doug Morato <dm@corp.io >
2015-10-24 19:40:39 -04:00
ab29afec3c
code cleanup
2015-10-24 13:15:14 -05:00
fc2360b49b
#41 ... one more
2015-10-24 13:12:44 -05:00
e3df816fb9
#41 omitted on earlier commit
2015-10-24 13:10:43 -05:00
45db051f30
removing redundant line, adding hasPlan to special challenge case handling
2015-10-24 11:45:49 -05:00
d52dfe87c4
Merge remote-tracking branch 'upstream/master'
2015-10-24 09:12:02 -05:00
3c1336a033
#41 : spinner implemented for menu loading
2015-10-23 15:15:57 -05:00
060b0cd8fa
Logging in sometimes goes to report card and misses category-menu #114
2015-10-23 06:54:14 +02:00
648bd3bb95
code cleanup
2015-10-22 16:55:18 -05:00
c1e836360f
Fix #81 to activate close button in the modal footer
2015-10-22 22:14:09 +02:00
325b964559
Fix #112 deployment descriptor elements in wrong order and off white spacing
2015-10-21 21:57:35 +02:00
28ea340307
#103 : removing ace directory, not in use
2015-10-21 11:11:43 -04:00
f6c2c4bacb
The jar snapshot doesn't run #108 (2)
2015-10-07 22:47:39 +02:00
e1829e209c
Implemented lesson information which gives a mapping between the menu and the actual WebGoat-Lessons project.
2015-10-04 11:56:12 +02:00
a6a1b32939
Removed credits from lessons
2015-10-03 18:21:54 +02:00
487bc71df1
Moved the logic to the plugin loader which makes the context listener obsolete
2015-09-30 23:08:10 +02:00
219b38315b
Make sure WEB-INF/lib dir is available
2015-09-30 19:10:33 +02:00
2ca5dda37b
Reloading finished
2015-09-30 19:03:49 +02:00
6a00d66f8b
Plugins are now reloaded
2015-09-29 21:41:36 +02:00
33d251a147
Fixed goathills lesson with JSP now load correctly again(2)
2015-09-29 20:39:09 +02:00
d4450da5d7
Fixed goathills lesson with JSP now load correctly again
2015-09-28 23:27:58 +02:00
c0d727d1f2
Merge remote-tracking branch 'upstream/master'
2015-09-24 10:09:38 +02:00
86e4fd1c85
i8n highlighting #96
2015-09-24 10:09:07 +02:00
77f3c5135f
Merge pull request #101 from misfir3/master
...
#97 , updating controls for hints, source, solution and plans on lessons
2015-09-23 10:00:12 -04:00
1bd6a9e0e7
#97 , updating controls for hints, source, solution and plans on lessons in challenge roles
2015-09-23 09:01:45 -04:00
87d196c427
Return indication that plugins have been reloaded
2015-09-22 21:13:41 +02:00
6f8befd9a4
Merge remote-tracking branch 'upstream/master'
2015-09-22 20:40:02 +02:00
8d2771c108
Adding the ability to reload plugins directly from the interface instead of restarting Tomcat
2015-09-22 20:38:19 +02:00
dc57827cfc
#97 , Hint controls for CHALLENGE Category lessons
2015-09-21 21:24:10 -04:00
6e670c4ac5
#23 , #24 - LessonInfo Service now used for TitleView and HelpControlsView
2015-09-20 00:09:38 -04:00
901eff682f
Properties are appended when loading plugins ( #29 )
2015-09-19 08:07:54 +02:00
5788fe7afe
Added a lesson restart for lesson specific restart actions
2015-09-18 15:46:39 -04:00
ff0d5af9d2
Merge pull request #82 from mayhew64/master
...
Updated contributors and sponsors
2015-09-18 15:31:41 -04:00
1e860928e6
Revert "Added a lesson restart call to allow lesson specific restart functionality"
...
This reverts commit 5365f632e7
2015-09-18 15:30:17 -04:00
5365f632e7
Added a lesson restart call to allow lesson specific restart functionality
2015-09-18 13:30:32 -04:00
6147aebf61
Fixing inconsistent merge issues implementing nbaars fixes
2015-09-18 12:40:05 -04:00
7ce8273376
Updated contributors and sponsors
2015-09-18 08:39:15 -04:00
06abc6e08a
Merge pull request #80 from misfir3/master
...
#72 , defaulting to firstLesson on initial redirect
2015-09-17 22:53:25 -04:00
214d52685f
Merge fixes from Nanne
...
# By Nanne Baars
# Via Nanne Baars
* 'master' of git://github.com/nbaars/WebGoat:
Fixed loading plugins: sometimes failed file was not correctly extracted
# Conflicts:
# webgoat-container/src/main/java/org/owasp/webgoat/plugins/Plugin.java
# webgoat-container/src/main/java/org/owasp/webgoat/plugins/PluginExtractor.java
# webgoat-container/src/main/java/org/owasp/webgoat/plugins/PluginFileUtils.java
# webgoat-container/src/main/java/org/owasp/webgoat/util/LabelProvider.java
2015-09-17 22:45:14 -04:00
9613e703f1
#72 , defaulting to firstLesson on initial redirect
2015-09-17 22:24:57 -04:00
