362248a065
Fix token signature validation
2021-09-29 13:51:17 +02:00
04d1293a33
#1045 : Run build with Java 16
2021-09-23 16:09:28 +02:00
8e567b0f86
Spoofing an Authentication Cookie lesson
2021-09-23 15:51:17 +02:00
42369816c9
1026 ( #1047 )
...
* Move back to Java 15 as XML parsers fail with XXE lesson
* Documentation improvement
2021-09-17 13:46:58 +02:00
7ec6826abc
#1031 : Fix lesson
...
- Hints not shown
- Add more hints
- Incorrect grant statement in lesson as example (removed it)
2021-09-05 14:32:55 +02:00
a14e84d5c5
#1039 : Fix token
...
Replace `name` with `user` and add `admin`
2021-09-05 13:07:56 +02:00
14ab2faeaf
Bump jsoup in /webgoat-lessons/cross-site-scripting
...
Bumps [jsoup](https://github.com/jhy/jsoup ) from 1.13.1 to 1.14.2.
- [Release notes](https://github.com/jhy/jsoup/releases )
- [Changelog](https://github.com/jhy/jsoup/blob/master/CHANGES )
- [Commits](https://github.com/jhy/jsoup/compare/jsoup-1.13.1...jsoup-1.14.2 )
---
updated-dependencies:
- dependency-name: org.jsoup:jsoup
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com >
2021-09-04 16:28:15 +02:00
6aaa743302
Fix vulnerable components lesson for Java 16.
2021-09-04 16:08:33 +02:00
d566080a79
fix typo
2021-08-14 10:52:16 +02:00
60bd04b9aa
Move to snapshot version
2021-07-29 11:13:16 +03:00
a641a19615
Add zip slip to path traversal lesson
2021-05-23 21:18:56 +02:00
81c551552b
Fix layout issue image
2021-05-23 20:11:23 +02:00
69a370f438
New release, updating pom.xml
2021-05-23 20:11:23 +02:00
a53ba0af5c
Fix for accidentally disabled integration tests ( #997 )
...
* drop column is no longer required due to better db seperation
'
* integration test fix with BeforeAll
2021-05-19 18:20:31 +02:00
a1071e9c00
Fix return type of asciidoctor macro implementation.
2021-04-23 15:11:56 +02:00
38f1d52bf3
Corrected typos and poor grammar found in the SQL Injection lessons.
2021-04-16 13:29:01 +02:00
e49f5d610f
#961 : Give each user its own schema for the lessons
...
This way we can reset a lesson using the database for each user and not for all users at once.
Also solves the issue that when someone solves the lesson it is solved for all users on the same WebGoat instance
2021-04-16 13:28:07 +02:00
d0f36f5227
Fix failing XXE test
2021-04-03 22:31:27 +02:00
b3f7a5338e
Update to latest versions
2021-04-03 10:58:22 +02:00
abf431fffb
Remove unnecessary plugins in subprojects
2021-04-03 10:58:08 +02:00
82198424df
Corrected typos and poor grammar found in the SQL Injection lessons.
2021-04-02 21:31:11 +02:00
ba2cb7d14f
#974 : Update the lesson text
2021-04-02 07:31:19 +02:00
de453fad84
Fix issue with labels in SQL lessons
2021-04-01 17:48:32 +02:00
59c96f9890
Fix lesson it no marks it as solved if the user uses a different username
2021-03-31 19:32:47 +02:00
f7d3fd586e
Remove the span added to the feedback
2021-03-31 19:32:47 +02:00
798afc756b
Remove as it matches the normal success message
2021-03-31 19:32:47 +02:00
59aaab52a9
Disable testcase as it fails on Windows, needs investigation.
2021-03-31 19:31:13 +02:00
14621003d7
Remove banner.txt as you can set it with a property in application.properties
2021-03-31 19:31:13 +02:00
cda852f4e8
Run unit tests again for all lessons and rewrite all to JUnit 5
...
Due to the migration to Spring Boot 2.4 the Vintage dependency was no longer included by default, resulting in skipping all unit tests.
2021-03-31 19:31:13 +02:00
ae6d448aa0
Replace ${revision} with real version as Maven
...
The CI pipeline should take care of this.
2021-03-31 19:31:13 +02:00
b8bdb8f432
Updating to the new development version
2021-03-30 14:05:26 +00:00
e114360a5f
Fix SQL Injection
2021-03-29 08:28:36 +02:00
935871c39a
Add some debugging information to know which test cases might have failed
2021-03-29 07:30:03 +02:00
ce6e4d2090
Fix issue with looking for all directories one present should be enough
2021-03-29 07:30:03 +02:00
59e04dee6e
Fix typo
2021-03-15 17:48:13 +01:00
5a16ea514a
Fix quiz
2021-03-15 17:48:13 +01:00
8d2d82764f
Assignment 8 loads JWT key again
2021-03-15 17:48:13 +01:00
dedb2f9fef
Open new tab when clicking on JWT link for WebWolf
2021-03-15 17:48:13 +01:00
8b89667d9d
Fix quiz, first should be second
2021-03-15 17:48:13 +01:00
d4da2d0efa
Convert lesson into using DB instead of using regular expression to check the solution
2021-03-15 17:48:13 +01:00
c798e4be32
Fix JWT integration tests
2021-03-15 17:48:13 +01:00
f2ab5c1968
Update JWT lesson
2021-03-15 17:48:13 +01:00
142631c7a0
WIP
2021-03-15 17:48:13 +01:00
ad5ab4ca2e
Fixes #321 ( #935 )
...
Copyright year was "20014", replaced to "2014"
Fixed the old github.io URL which no longer exist
See https://github.com/WebGoat/WebGoat/issues/321
2021-02-18 19:06:11 +01:00
522f6b5fff
Fixed a typo ( #936 )
...
Fixed a typo in the documentation and added a colon for better readability
2021-02-18 19:04:00 +01:00
215b3b4e78
Remove redundant escaping in regex ( #929 )
2021-02-11 15:13:38 +01:00
00c4be63f0
Fix sql injection line comments issue. ( #925 )
2021-01-19 10:47:04 +01:00
2e581d6bdb
docs: update SQLi lesson text ( #928 )
...
- corrected typos/grammar issues
- restructured sentences for clarity
2021-01-19 10:29:16 +01:00
b20f6492a3
Simplify regex ( #927 )
2021-01-15 14:36:04 +01:00
74b218b2a7
Use try with resources instead of try ( #921 )
...
* Use try with resources instead of try
* Remove unused lesson
* Remove unused fields
2021-01-13 18:21:04 +01:00
