Regapp issueshttps://git.scc.kit.edu/reg-app/reg-app/-/issues2023-08-16T13:09:23+02:00https://git.scc.kit.edu/reg-app/reg-app/-/issues/157Sign E-Mails2023-08-16T13:09:23+02:00ls1947Sign E-MailsAdd S/MIME to e-mail templates for signing e-mails.
The required key pair shall be manageable via the GUI and the keys themself persisted in a DB. If no key pair is available (e.g. not uploaded yet), e-mails shall be send unsigned. Othe...Add S/MIME to e-mail templates for signing e-mails.
The required key pair shall be manageable via the GUI and the keys themself persisted in a DB. If no key pair is available (e.g. not uploaded yet), e-mails shall be send unsigned. Otherwise signed.
The public key shall be downloadable via a REST endpoint.
Their is always only be one key pair at the same time. Key pairs are deletable and can be replaced
# Implementation
## UI
* "Email-Templates" in the navigation bar on the left side became "Emails"
* The list-email-templates page became show-email-overview (incl renaming of backing bean)
* The show-email-overview uses `p:panel` to structurally separate the existing templates overview from the new signature overview
* The signature overview on the show-email-overview page features
* A message if signature keys are available or not
* A download button for the certificates
* An edit button leading to a edit page (which is equivalent to the one for the templates)
* A delete button leading to a confirmation page
* Buttons are disabled, if the action makes no sense, e.g. certificate download without existing keys
* messages.properties for de, en und fr were updated
## Management of crypto keys
* Keys are stored in a Java `KeyStore`
* Key stores are stored in the DB as base64 encoded blobs in the `KeyStoreEntity`; the DB data type is TEXT (Postgres)
* Key stores are discriminated by scenario using 'KeyStoreEntity.context' as unique attribute
* Key stores are usually accessed and used via the `KeyStoreService`
* Key stores and key entries are not encrypted at the moment
* Bouncy-Castle was used for Parsing from and Writing to PEM-formatted stringhttps://git.scc.kit.edu/reg-app/reg-app/-/issues/156Extend AttributeQuery SSL Connection2022-12-01T09:47:03+01:00ls1947Extend AttributeQuery SSL ConnectionAlso check against IDP certificate from metadata, when check certificate for https connection. There are some cases, where IDPs use the self-signed, or signed certificate from metadata. These certs typically have no anchor in standard pu...Also check against IDP certificate from metadata, when check certificate for https connection. There are some cases, where IDPs use the self-signed, or signed certificate from metadata. These certs typically have no anchor in standard public keystores.2.7.8ls1947ls1947https://git.scc.kit.edu/reg-app/reg-app/-/issues/155Reorganize pom file dependency management to version properties2022-11-17T12:15:15+01:00ls1947Reorganize pom file dependency management to version propertiesmove the version of libs to properties at the top of main pom file.move the version of libs to properties at the top of main pom file.2.7.8ls1947ls1947https://git.scc.kit.edu/reg-app/reg-app/-/issues/154Upgrade OpenSAML2022-11-17T11:30:52+01:00ls1947Upgrade OpenSAMLUpgrade to OpenSAML 4Upgrade to OpenSAML 4https://git.scc.kit.edu/reg-app/reg-app/-/issues/153Upgrade Drools2022-11-17T14:03:55+01:00ls1947Upgrade DroolsUpgrade drools to version 8Upgrade drools to version 82.7.8ls1947ls1947https://git.scc.kit.edu/reg-app/reg-app/-/issues/152GroupRecon with UserRecon taking too long2022-10-27T07:47:22+02:00ls1947GroupRecon with UserRecon taking too longDon't process line 325 in Registrator in sync. Should be done async as it can take too long and produce locks. Idea: As in group flags, just set a dirty flag on registries, and emit a process event at the end to recon all dirty registries.Don't process line 325 in Registrator in sync. Should be done async as it can take too long and produce locks. Idea: As in group flags, just set a dirty flag on registries, and emit a process event at the end to recon all dirty registries.https://git.scc.kit.edu/reg-app/reg-app/-/issues/151Registration already running error message not shown2022-09-16T07:00:03+02:00ls1947Registration already running error message not shownthe error message is not shown for users that are sent from an SP and register for a service with a policy without consent.the error message is not shown for users that are sent from an SP and register for a service with a policy without consent.https://git.scc.kit.edu/reg-app/reg-app/-/issues/150regsitration_lock not removed2022-11-15T10:53:06+01:00ls1947regsitration_lock not removedUnder some circumstances the registration_lock is not removed. Try to debug when this is the case or just ignore any registration_locks that are older than a specific time range.Under some circumstances the registration_lock is not removed. Try to debug when this is the case or just ignore any registration_locks that are older than a specific time range.https://git.scc.kit.edu/reg-app/reg-app/-/issues/149Remove newlines in ssh keys2022-09-29T07:15:16+02:00ls1947Remove newlines in ssh keysIt breaks the authorized_keys format.It breaks the authorized_keys format.https://git.scc.kit.edu/reg-app/reg-app/-/issues/148Implement more flexible primary and secondary home org groups2022-09-09T06:32:47+02:00ls1947Implement more flexible primary and secondary home org groupsls1947ls1947https://git.scc.kit.edu/reg-app/reg-app/-/issues/147Add IDP support for customizable NameID2022-12-12T14:21:18+01:00ls1947Add IDP support for customizable NameIDhttps://git.scc.kit.edu/reg-app/reg-app/-/blob/branch-2.7/bwreg-service/src/main/java/edu/kit/scc/webreg/service/saml/SamlIdpServiceImpl.java#L267
Extend this to call a resolveNameId in Script-https://git.scc.kit.edu/reg-app/reg-app/-/blob/branch-2.7/bwreg-service/src/main/java/edu/kit/scc/webreg/service/saml/SamlIdpServiceImpl.java#L267
Extend this to call a resolveNameId in Script-2.7.8ls1947ls1947https://git.scc.kit.edu/reg-app/reg-app/-/issues/146Make Token Limit configurable and show correct error message2022-07-21T06:59:25+02:00ls1947Make Token Limit configurable and show correct error messageShow correct error message, if a user has more token than allowed. Atm only the "new token" button simply vanish.Show correct error message, if a user has more token than allowed. Atm only the "new token" button simply vanish.https://git.scc.kit.edu/reg-app/reg-app/-/issues/145head-bar.xhtml Links not i18n2023-07-06T11:00:45+02:00ls1947head-bar.xhtml Links not i18nLinks like "Impressum" are not pulled from language properties file.Links like "Impressum" are not pulled from language properties file.2.7.8ls1947ls1947https://git.scc.kit.edu/reg-app/reg-app/-/issues/144Make comparation of pairwise ID case insensitive2023-07-06T07:37:37+02:00ls1947Make comparation of pairwise ID case insensitivePairwise ID should be compared case insensitive. Possibly being BASE32 instead of BASE64Pairwise ID should be compared case insensitive. Possibly being BASE32 instead of BASE642.7.8tl9793tl9793https://git.scc.kit.edu/reg-app/reg-app/-/issues/143Process Text properties in Infotainment nodes2022-06-01T07:52:48+02:00ls1947Process Text properties in Infotainment nodesInfotainement is displayed hardcoded at the moment. Change it, so that text properties can be used in RegisterWorkflows.Infotainement is displayed hardcoded at the moment. Change it, so that text properties can be used in RegisterWorkflows.https://git.scc.kit.edu/reg-app/reg-app/-/issues/142Make "List rules" in Admin menu sortable2023-07-06T11:00:43+02:00ls1947Make "List rules" in Admin menu sortableRules list in the admin menu is not sorted right now.Rules list in the admin menu is not sorted right now.2.7.8ls1947ls1947https://git.scc.kit.edu/reg-app/reg-app/-/issues/141Formatting Table Saml Values in User info dialog2022-06-01T07:49:50+02:00ls1947Formatting Table Saml Values in User info dialogLong values, e.g. entitlement, are not visible, because the word-wrapping is only working on spaces, or dots.Long values, e.g. entitlement, are not visible, because the word-wrapping is only working on spaces, or dots.https://git.scc.kit.edu/reg-app/reg-app/-/issues/140Remove registration lock on RegisterException2022-11-15T11:17:26+01:00ls1947Remove registration lock on RegisterExceptionRegistration lock is not removed on RegisterException. RegisterServiceBean L343 should be a finally block?Registration lock is not removed on RegisterException. RegisterServiceBean L343 should be a finally block?https://git.scc.kit.edu/reg-app/reg-app/-/issues/138Error message on "invalid_grant" case2022-12-16T06:30:57+01:00ls1947Error message on "invalid_grant" caseDeliver the correct error json structure (invalid_grant) for an expired OIDC refresh token.Deliver the correct error json structure (invalid_grant) for an expired OIDC refresh token.2.7.8ls1947ls1947https://git.scc.kit.edu/reg-app/reg-app/-/issues/137Bulk user import not working2022-05-18T06:43:05+02:00ls1947Bulk user import not working2.7.7ls1947ls1947