Build: #446 was successful Scheduled with changes by Guus der Kinderen and daryl herzmann <akrherz@iastate.edu>
Code commits
Openfire (master)
-
daryl herzmann <akrherz@iastate.edu> 1bb48c3b1717aaf0bc32d647897b150b07671184
Merge pull request #1491 from guusdk/OF-1877_Upgrade-bouncycastle
OF-1877: Upgrade BouncyCastle from 1.61 to 1.63. -
daryl herzmann <akrherz@iastate.edu> 522546ffbd106824b3c975e79a7b5db6bbc5d537
Merge pull request #1488 from guusdk/OF-1873_LDAP-disclose-adminPassword
OF-1873: Don't disclose LDAP adminPassword -
daryl herzmann <akrherz@iastate.edu> 5fd9d99838cf46b1e631851f54bfe33e78aec71e
Merge pull request #1489 from guusdk/OF-1874_profile-settings-xss
OF-1874: Apply JSTL to profile-settings page, to avoid XSS. -
daryl herzmann <akrherz@iastate.edu> dbc5a1327205b227b23d73a79a26d16124782d20
Merge pull request #1490 from guusdk/OF-1876_Upgrade-mysql-connectorj
OF-1876: Upgrade Mysql Connector/J to 8.0.17 -
Guus der Kinderen ee255013d1865a50548fee3542c556cb2e4c068b
OF-1877: Upgrade BouncyCastle from 1.61 to 1.63.
- pom.xml (version ee255013d1865a50548fee3542c556cb2e4c068b)
-
Guus der Kinderen c988ff0efb3e077f9832663af7ce195925dfbbb3
OF-1876: Upgrade Mysql Connector/J to 8.0.17
- xmppserver/pom.xml (version c988ff0efb3e077f9832663af7ce195925dfbbb3)
-
Guus der Kinderen cf33e798249eef76b6aa66d84d0483347413b814
OF-1874: Apply JSTL to profile-settings page, to avoid XSS.
- xmppserver/src/main/webapp/profile-settings.jsp (version cf33e798249eef76b6aa66d84d0483347413b814)
-
Guus der Kinderen 6e05e61085c96138f401d690906d45a47ab88071
OF-1873: Don't disclose LDAP adminPassword
This commit intends to prevent disclosure of a previously configured password for LDAP. Now, the LDAP configuration page will only show a password value if that was provided in the same HTTP session. Likewise, a password value that might already have been stored is not updated, unless explicitly changed.- xmppserver/src/main/webapp/setup/ldap-server.jspf (version 6e05e61085c96138f401d690906d45a47ab88071)
- xmppserver/src/main/webapp/setup/setup-ldap-server_test.jsp (version 6e05e61085c96138f401d690906d45a47ab88071)