Vérification challenge dans la session #31 #32

rmasson · 2024-04-18T17:19:47+02:00

rmasson commented

2024-04-18 17:19:47 +02:00

changelog

ajout d'une vérification de la présence de donnée de session challenge
redirection vers la valeur de la variable d'nevironnement ISSUER_URL en cas d'absence pour forcer une nouvelle demande de connexion.
doir passés à www-data dans l'image

Tests

Monter l'environnement
cliquer sur login
attendre 40 min
saisir le login / dmp (jdoe /jdoe)
on doit être redirigé sur localhost:8000, non connecté
cliquer sur login
on doit être connecté sans manipulation supplémentaire et redirigé sur localhost:8000/profile

## changelog * ajout d'une vérification de la présence de donnée de session `challenge` * redirection vers la valeur de la variable d'nevironnement `ISSUER_URL` en cas d'absence pour forcer une nouvelle demande de connexion. * doir passés à www-data dans l'image ## Tests * Monter l'environnement * cliquer sur login * attendre 40 min * saisir le login / dmp (jdoe /jdoe) * on doit être redirigé sur localhost:8000, non connecté * cliquer sur login * on doit être connecté sans manipulation supplémentaire et redirigé sur localhost:8000/profile

rmasson added 3 commits 2024-04-18 17:19:48 +02:00

0cdb4c3a36 chore (composer update) #31 : maj composer update

cd888d2080 chore (images) #31 : maj droits et env

Cadoles/hydra-sql/pipeline/head This commit is unstable Details

Cadoles/hydra-sql/pipeline/pr-develop This commit is unstable Details

bcc91a17b4 fix (oidc timeout) #31 : ajout d'une règle de redirection en cas de donnée de session perdue

jenkins commented

2024-04-18 17:21:09 +02:00

Symfony Security Check Report

No packages have known vulnerabilities.

Note that this checker can only detect vulnerabilities that are referenced in the security advisories database.
Execute this command regularly to check the newly discovered vulnerabilities.

Symfony Security Check Report ============================= No packages have known vulnerabilities. Note that this checker can only detect vulnerabilities that are referenced in the security advisories database. Execute this command regularly to check the newly discovered vulnerabilities.

jenkins commented

2024-04-18 17:21:11 +02:00

Test report

PHP CS Fixer

Overview

State	Total
Passed	0
Skipped	0
Failed	3
Error	0

Total duration: 0s

See details

Status	Name	Class
⨯	`src/Hydra/HydraService`
⨯	`src/Service/SQLLoginService`
⨯	`src/Controller/MainController`

Errors

`src/Hydra/HydraService`

Output

applied fixers:
---------------
* concat_space```

</details>


<details>
  <summary>`src/Service/SQLLoginService`</summary>

**Output**

applied fixers:

global_namespace_import
no_unused_imports
blank_line_before_statement```

`src/Controller/MainController`

Output

applied fixers:
---------------
* class_attributes_separation
* ordered_imports```

</details>

# Test report ## PHP CS Fixer ### Overview | State | Total | |-------|-------| | Passed | 0 | | Skipped | 0 | | Failed | 3 | | Error | 0 | **Total duration**: 0s <details> <summary>See details</summary> | Status | Name | Class | |--------|------|-------| | ⨯ | `src/Hydra/HydraService` || | ⨯ | `src/Service/SQLLoginService` || | ⨯ | `src/Controller/MainController` || </details> <br /> #### Errors <details> <summary>`src/Hydra/HydraService`</summary> **Output** ``` applied fixers: --------------- * concat_space``` </details> <details> <summary>`src/Service/SQLLoginService`</summary> **Output** ``` applied fixers: --------------- * global_namespace_import * no_unused_imports * blank_line_before_statement``` </details> <details> <summary>`src/Controller/MainController`</summary> **Output** ``` applied fixers: --------------- * class_attributes_separation * ordered_imports``` </details>

jenkins commented

2024-04-18 17:21:15 +02:00

Rapport PHPStan


 [OK] No errors

## Rapport PHPStan ``` [OK] No errors ```

rmasson requested review from mlamalle 2024-04-18 17:21:27 +02:00

rmasson requested review from vcarroy 2024-04-18 17:21:27 +02:00

jenkins commented

2024-04-18 17:21:37 +02:00

Rapport d'analyse du fichier `./misc/images/hydra-sql-standalone/Dockerfile` avec Hadolint

Rien à signaler.

## Rapport d'analyse du fichier `./misc/images/hydra-sql-standalone/Dockerfile` avec [Hadolint](https://github.com/hadolint/hadolint) ``` Rien à signaler. ```

jenkins commented

2024-04-18 17:23:52 +02:00

Rapport d'analyse de l'image avec Trivy

Target `reg.cadoles.com/cadoles/hydra-sql-standalone:2024.4.18-pr32.1713.bcc91a1 (alpine 3.17.1)`

Vulnerabilities (2)

Package	ID	Severity	Installed Version	Fixed Version
`libcrypto3`	CVE-2024-2511	LOW	3.0.12-r4	3.0.12-r5
`libssl3`	CVE-2024-2511	LOW	3.0.12-r4	3.0.12-r5

No Misconfigurations found

Target `Node.js`

Vulnerabilities (1)

Package	ID	Severity	Installed Version	Fixed Version
`tar`	CVE-2024-28863	MEDIUM	6.2.0	6.2.1

No Misconfigurations found

## Rapport d'analyse de l'image avec [Trivy](https://github.com/aquasecurity/trivy) <h3>Target <code>reg.cadoles.com/cadoles/hydra-sql-standalone:2024.4.18-pr32.1713.bcc91a1 (alpine 3.17.1)</code></h3> <h4>Vulnerabilities (2)</h4> <table> <tr> <th>Package</th> <th>ID</th> <th>Severity</th> <th>Installed Version</th> <th>Fixed Version</th> </tr> <tr> <td><code>libcrypto3</code></td> <td>CVE-2024-2511</td> <td>LOW</td> <td>3.0.12-r4</td> <td>3.0.12-r5</td> </tr> <tr> <td><code>libssl3</code></td> <td>CVE-2024-2511</td> <td>LOW</td> <td>3.0.12-r4</td> <td>3.0.12-r5</td> </tr> </table> <h4>No Misconfigurations found</h4> <h3>Target <code>Node.js</code></h3> <h4>Vulnerabilities (1)</h4> <table> <tr> <th>Package</th> <th>ID</th> <th>Severity</th> <th>Installed Version</th> <th>Fixed Version</th> </tr> <tr> <td><code>tar</code></td> <td>CVE-2024-28863</td> <td>MEDIUM</td> <td>6.2.0</td> <td>6.2.1</td> </tr> </table> <h4>No Misconfigurations found</h4>

jenkins commented

2024-04-18 17:24:09 +02:00

Rapport d'analyse du fichier `./misc/images/hydra-sql-base/Dockerfile` avec Hadolint

Rien à signaler.

## Rapport d'analyse du fichier `./misc/images/hydra-sql-base/Dockerfile` avec [Hadolint](https://github.com/hadolint/hadolint) ``` Rien à signaler. ```

jenkins commented

2024-04-18 17:26:21 +02:00

Rapport d'analyse de l'image avec Trivy

Target `reg.cadoles.com/cadoles/hydra-sql-base:2024.4.18-pr32.1713.bcc91a1 (alpine 3.17.1)`

Vulnerabilities (2)

Package	ID	Severity	Installed Version	Fixed Version
`libcrypto3`	CVE-2024-2511	LOW	3.0.12-r4	3.0.12-r5
`libssl3`	CVE-2024-2511	LOW	3.0.12-r4	3.0.12-r5

No Misconfigurations found

Target `Node.js`

Vulnerabilities (1)

Package	ID	Severity	Installed Version	Fixed Version
`tar`	CVE-2024-28863	MEDIUM	6.2.0	6.2.1

No Misconfigurations found

## Rapport d'analyse de l'image avec [Trivy](https://github.com/aquasecurity/trivy) <h3>Target <code>reg.cadoles.com/cadoles/hydra-sql-base:2024.4.18-pr32.1713.bcc91a1 (alpine 3.17.1)</code></h3> <h4>Vulnerabilities (2)</h4> <table> <tr> <th>Package</th> <th>ID</th> <th>Severity</th> <th>Installed Version</th> <th>Fixed Version</th> </tr> <tr> <td><code>libcrypto3</code></td> <td>CVE-2024-2511</td> <td>LOW</td> <td>3.0.12-r4</td> <td>3.0.12-r5</td> </tr> <tr> <td><code>libssl3</code></td> <td>CVE-2024-2511</td> <td>LOW</td> <td>3.0.12-r4</td> <td>3.0.12-r5</td> </tr> </table> <h4>No Misconfigurations found</h4> <h3>Target <code>Node.js</code></h3> <h4>Vulnerabilities (1)</h4> <table> <tr> <th>Package</th> <th>ID</th> <th>Severity</th> <th>Installed Version</th> <th>Fixed Version</th> </tr> <tr> <td><code>tar</code></td> <td>CVE-2024-28863</td> <td>MEDIUM</td> <td>6.2.0</td> <td>6.2.1</td> </tr> </table> <h4>No Misconfigurations found</h4>

rmasson changed title from ~~issue-31~~ to Vérification challenge dans la session #31

2024-04-19 09:12:18 +02:00

mlamalle approved these changes 2024-04-25 11:11:16 +02:00

mlamalle merged commit d26920695f into develop

2024-04-25 11:27:01 +02:00

mlamalle referenced this issue from a commit

2024-04-25 11:27:03 +02:00

Merge pull request 'Vérification challenge dans la session #31' (#32) from issue-31 into develop

mlamalle deleted branch issue-31

2024-04-25 11:27:03 +02:00

Sign in to join this conversation.

No reviewers

No Label

No Milestone

No project

No Assignees

3 Participants

Notifications

Due Date

The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: Cadoles/hydra-sql#32

Vérification challenge dans la session #31 #32

changelog

Tests

Symfony Security Check Report

Test report

PHP CS Fixer

Overview

Errors

applied fixers:

Rapport PHPStan

Rapport d'analyse du fichier ./misc/images/hydra-sql-standalone/Dockerfile avec Hadolint

Rapport d'analyse de l'image avec Trivy

Target reg.cadoles.com/cadoles/hydra-sql-standalone:2024.4.18-pr32.1713.bcc91a1 (alpine 3.17.1)

Vulnerabilities (2)

No Misconfigurations found

Target Node.js

Vulnerabilities (1)

No Misconfigurations found

Rapport d'analyse du fichier ./misc/images/hydra-sql-base/Dockerfile avec Hadolint

Rapport d'analyse de l'image avec Trivy

Target reg.cadoles.com/cadoles/hydra-sql-base:2024.4.18-pr32.1713.bcc91a1 (alpine 3.17.1)

Vulnerabilities (2)

No Misconfigurations found

Target Node.js

Vulnerabilities (1)

No Misconfigurations found

Rapport d'analyse du fichier `./misc/images/hydra-sql-standalone/Dockerfile` avec Hadolint

Target `reg.cadoles.com/cadoles/hydra-sql-standalone:2024.4.18-pr32.1713.bcc91a1 (alpine 3.17.1)`

Target `Node.js`

Rapport d'analyse du fichier `./misc/images/hydra-sql-base/Dockerfile` avec Hadolint

Target `reg.cadoles.com/cadoles/hydra-sql-base:2024.4.18-pr32.1713.bcc91a1 (alpine 3.17.1)`

Target `Node.js`