GitLab

Added beta code for better pop-up select (not yet finished).

Added null verification to avoid NullPointer.
Signed-off-by: Bruno Nocera Zanette <brunonzanette@gmail.com>

Added permission's control to modify transcripts, based on period and year of
the requested transcript and on the "transcript.modification.open" global
configuration. If transcript's period/year are equal to the current period/year
and transcript's modification period is open the professor may modify the transcript.

Also, this controller doesn't check if the transcript belongs or not to
the logged-in professor. To do this is used "hasPermissionToView" function.
Signed-off-by: Bruno Nocera Zanette <brunonzanette@gmail.com>

Restricted the results to only the ones belonging to the logged-in professor.
Signed-off-by: Bruno Nocera Zanette <brunonzanette@gmail.com>

Restricted menu options based on user authority.
Now it is only shown the options that user may access.
Signed-off-by: Bruno Nocera Zanette <brunonzanette@gmail.com>

Updated rules to fix some bugs.
Also the permission analyzer method has been changed.
Now there is only one method that verifies all the requested IDs, based on the requested type argument.
Signed-off-by: Bruno Nocera Zanette <brunonzanette@gmail.com>

It unified the methods "getIdFromLoggedInStudent" and  "getIdFromLoggedInProfessor"
in a single method called "getIdFromLoggedInUser", because they were the same thing.
Signed-off-by: Bruno Nocera Zanette <brunonzanette@gmail.com>

Fixed bug on accessing a method on null object. Changed to a simple comparison.
Signed-off-by: Bruno Nocera Zanette <brunonzanette@gmail.com>

Value name was "id" but on the URL it is "registration".
Signed-off-by: Bruno Nocera Zanette <brunonzanette@gmail.com>

Added permission control based on the ID requested by the URL.
It compares this ID with logged-in user's ID and Professor's students/courses/...
If the requested ID is equal to logged-in user's ID or is some of the students's/courses's ID
it allows the access to the information. Otherwise it denies it.
This is necessary for the cases when the user requests an ID's information direct from the URL (modifying it) and
not from a menu (with restricted registers). In this case the user could request an information
that is not allowed to him to view.
Signed-off-by: Bruno Nocera Zanette <brunonzanette@gmail.com>

Added methods to get logged-in user ID based on user's username that was used at log-in.
Signed-off-by: Bruno Nocera Zanette <brunonzanette@gmail.com>

Fixed some typos and temporary statements
Signed-off-by: Bruno Nocera Zanette <brunonzanette@gmail.com>

Added a permission's control to dropdown menus based on person's authority.
This change restricts the options shown on dropdown menus, and shows only
those registers that the person may access.
Signed-off-by: Bruno Nocera Zanette <brunonzanette@gmail.com>

Updated code to make it cleaner and easier to be used on other methods.

The most significant change was the definition of public variables to identify each authority group.
This changes makes it easier and safer the use of this variables by other methods, because it avoids the need of comparing strings containing the authority name. Now it compares GrantedAuthority's variables.
Signed-off-by: Bruno Nocera Zanette <brunonzanette@gmail.com>

Added a priority system on the selection of userAuth that allows people with
multiple authGroups to receive the higher permission as possible.

Before this modification, if the group that gives the a lower permission appears
first on the loop the person would receive this permission, and not the higher one.
Signed-off-by: Bruno Nocera Zanette <brunonzanette@gmail.com>

Changed the location of LDAP/Kerberos implementation files from
.web package to .models.util, to respect project's default organization.
Signed-off-by: Bruno Nocera Zanette <brunonzanette@gmail.com>

Changed the location of LDAP/Kerberos implementation files from
.web package to .models.util, to respect project's default organization.
Signed-off-by: Bruno Nocera Zanette <brunonzanette@gmail.com>

Changed the location of LDAP/Kerberos implementation files from
.web package to .models.util, to respect project's default organization.
Signed-off-by: Bruno Nocera Zanette <brunonzanette@gmail.com>

Changed user authorities's definition from a list scheme to a unique string scheme. This was necessary because each group have specific permissions, and multiple authorities can cause problems with these rules.
Signed-off-by: Bruno Nocera Zanette <brunonzanette@gmail.com>

Project was modified to use Kerberos as the Login Method and LDAP as the authorities source.

Properties files were created to store information about Kerberos and LDAP servers (kerberos.properties and ldap.properties), and the groups that define each authority group into SAPos (authorities.properties).

To control LDAP attributes the class "LdapAttrController" was created. Into this class all necessary LDAP's attributes are aquired and repassed to the class "KerberosAuthController" that uses this information to create a new instance of "User" that is used on login process.

The libraries "spring-ldap-core" and "spring-security-kerberos-core" were added into "pom.xml" file.
Signed-off-by: Bruno Nocera Zanette <brunonzanette@gmail.com>

alerts list.

students.

section pos without students.

i18n, etc.) for support students registration requests.

codes.

date check calculus.

1.1.5 to 1.2.3.

registration start date, not anymore the grant start date.