Skip to content

EPMRPP-94581 || Update Spring Boot 3 in uat service #367

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 19 commits into from
Apr 1, 2025
Merged

EPMRPP-94581 || Update Spring Boot 3 in uat service #367

Show file tree
Hide file tree
Changes from 18 commits
Commits
Show all changes
19 commits
Select commit Hold shift + click to select a range
b42b319
EPMRPP-94581 || Update Spring Boot 3 in uat service
APiankouski Mar 12, 2025
67e9507
Fix starting with empty registration
APiankouski Mar 13, 2025
4cfe39c
Fix build info
APiankouski Mar 13, 2025
e6ab254
Fix github synchronize
APiankouski Mar 13, 2025
a746e5c
Test Ldap provider
APiankouski Mar 14, 2025
02c97cf
Config refactoring
APiankouski Mar 17, 2025
e182741
Refactoring. Delete unused classes.
APiankouski Mar 18, 2025
6581ea4
Fix github organization
APiankouski Mar 19, 2025
848579f
Fix saml CALL_BACK_URL
APiankouski Mar 20, 2025
0115d8f
Update dependencies
APiankouski Mar 21, 2025
5165fc9
Update dependencies
APiankouski Mar 25, 2025
5d45139
Update dao
APiankouski Mar 25, 2025
944375d
Update dao and dependencies
APiankouski Mar 25, 2025
adad88d
Update dependencies
APiankouski Mar 25, 2025
14fd798
Update dao
APiankouski Mar 25, 2025
f74388b
Fix github path
APiankouski Mar 28, 2025
96d4dde
EPMRPP-94581 || fix unit tests
grabsefx Mar 28, 2025
147300f
Fix dependencies
APiankouski Mar 28, 2025
c1b430d
Update oauth providers
APiankouski Mar 31, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion Dockerfile
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ FROM amazoncorretto:21.0.6
LABEL version=${APP_VERSION} description="EPAM ReportPortal. Auth Service" maintainer="Andrei Varabyeu <[email protected]>, Hleb Kanonik <[email protected]>"
ARG APP_VERSION=${APP_VERSION}
ENV APP_DIR=/usr/app
ENV JAVA_OPTS="-Xmx1g -XX:+UseG1GC -XX:InitiatingHeapOccupancyPercent=70 -Djava.security.egd=file:/dev/./urandom --add-opens=java.base/java.lang=ALL-UNNAMED"
ENV JAVA_OPTS="-Xmx1g -XX:+UseG1GC -XX:InitiatingHeapOccupancyPercent=70 -Djava.security.egd=file:/dev/./urandom"
WORKDIR $APP_DIR
COPY --from=build $APP_DIR/build/libs/service-authorization-*exec.jar .
VOLUME ["/tmp"]
Expand Down
161 changes: 75 additions & 86 deletions build.gradle
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,16 +1,14 @@
plugins {
id 'io.spring.dependency-management' version '1.1.4'
id 'org.springframework.boot' version '2.5.15'
id 'io.spring.dependency-management' version '1.1.7'
id 'org.springframework.boot' version '3.4.2'
id 'java'
id 'java-library'
id "org.owasp.dependencycheck" version "9.0.9"
id "org.owasp.dependencycheck" version "11.1.1"
}

apply from: 'project-properties.gradle'
//apply from: "$scriptsUrl/build-docker.gradle"
apply from: "$scriptsUrl/build-info.gradle"
apply from: "$scriptsUrl/build-commons.gradle"
//apply from: "$scriptsUrl/build-quality.gradle"
apply from: "$scriptsUrl/release-service.gradle"
apply from: "$scriptsUrl/signing.gradle"

Expand All @@ -21,117 +19,87 @@ repositories {
}
}

ext['spring-boot.version'] = '2.5.15'
//https://nvd.nist.gov/vuln/detail/CVE-2020-10683 (dom4j 2.1.3 version dependency) AND https://nvd.nist.gov/vuln/detail/CVE-2019-14900
ext['hibernate.version'] = '5.4.18.Final'
//https://nvd.nist.gov/vuln/detail/CVE-2020-10693
ext['hibernate-validator.version'] = '6.1.5.Final'
//https://nvd.nist.gov/vuln/detail/CVE-2020-13692
ext['spring-boot.version'] = '3.4.2'
ext['hibernate-validator.version'] = '8.0.2.Final'
//ext['postgresql.version'] = '42.2.13'
//https://nvd.nist.gov/vuln/detail/CVE-2020-9488
ext['log4j2.version'] = '2.21.1'


dependencies {
//Fix CVE-2021-41079, CVE-2022-23181, CVE-2021-33037, CVE-2021-30640, CVE-2022-42252, CVE-2023-46589, CVE-2024-24549
implementation 'org.apache.tomcat.embed:tomcat-embed-core:9.0.86'
implementation 'org.apache.tomcat.embed:tomcat-embed-el:9.0.86'
implementation 'org.apache.tomcat.embed:tomcat-embed-websocket:9.0.86'
//Fix CVE-2015-7501, CVE-2015-4852
implementation 'org.apache.commons:commons-collections4:4.4'
//Fix CVE-2018-10237
implementation 'com.google.guava:guava:33.3.0-jre'
//Fix CVE-2020-13956
api 'org.apache.httpcomponents:httpclient:4.5.14'
//Fix CVE-2022-40152
api 'com.fasterxml.woodstox:woodstox-core:6.5.1'
implementation('org.springframework.boot:spring-boot-starter-data-jpa') {
exclude group: 'org.hibernate', module: 'hibernate-core'
}
implementation 'org.postgresql:postgresql:42.7.3'
api 'org.jasypt:jasypt:1.9.3'

// Spring Boot Starters
api 'org.springframework.boot:spring-boot-starter-data-jpa'
api 'org.springframework.boot:spring-boot-starter-web'
implementation 'org.springframework.boot:spring-boot-starter-actuator'
api 'org.springframework.boot:spring-boot-starter-security'
implementation 'org.springframework.boot:spring-boot-starter-amqp'
//Fix CVE-2023-34050
implementation 'org.springframework.amqp:spring-amqp:2.4.17'
//Fix CVE-2023-40827, CVE-2023-40828, CVE-2023-40826
implementation 'org.springframework:spring-webmvc:5.3.39'
implementation 'org.springframework:spring-web:5.3.39'
api 'org.springdoc:springdoc-openapi-starter-webmvc-ui:2.8.3'

// Spring Framework Core
api 'org.springframework:spring-jdbc'
implementation 'org.springframework:spring-webmvc'
api 'org.springframework:spring-web'
implementation 'org.springframework:spring-core'

// Database & Persistence
implementation 'org.postgresql:postgresql:42.7.3'
implementation "org.hibernate.validator:hibernate-validator:${hibernateValidatorVersion}"

// Utilities
implementation 'org.apache.commons:commons-collections4:4.4'
implementation 'com.google.guava:guava:33.3.0-jre'
implementation "org.apache.commons:commons-lang3:${commonsLangVersion}"
implementation 'net.coobird:thumbnailator:0.4.20'
implementation("org.apache.tika:tika-core:3.0.0")
api 'commons-validator:commons-validator:1.9.0'
api 'org.apache.commons:commons-compress:1.26.0'
implementation 'javax.xml.bind:jaxb-api:2.4.0-b180830.0359'
api 'jakarta.servlet:jakarta.servlet-api:6.1.0'
api 'org.apache.tika:tika-core:3.0.0'

// Cloud & Storage
implementation "software.amazon.awssdk:aws-core:${aws}"
implementation "software.amazon.awssdk:sts:${aws}"
api "org.apache.jclouds.api:s3:${jclouds}" // 2.6.0 switched to jakarta annotations!
api "org.apache.jclouds.api:s3:${jclouds}"
implementation "org.apache.jclouds.provider:aws-s3:${jclouds}"
implementation "org.apache.jclouds.api:filesystem:${jclouds}"
api('commons-validator:commons-validator:1.6') {
exclude group: 'commons-beanutils', module: 'commons-beanutils'
}

///// Security
//https://nvd.nist.gov/vuln/detail/CVE-2020-5407 AND https://nvd.nist.gov/vuln/detail/CVE-2020-5408
implementation 'org.springframework.security:spring-security-core:5.8.16'
implementation 'org.springframework.security:spring-security-config:5.8.16'
implementation 'org.springframework.security:spring-security-web:5.8.16'
implementation 'org.springframework:spring-jdbc:5.3.33'
//

api ('org.springframework.security:spring-security-oauth2-client')
{ exclude group: 'net.minidev', module: 'json-smart' }
implementation 'net.minidev:json-smart:2.4.7'
// Security
implementation 'org.springframework.security:spring-security-core'
implementation 'org.springframework.security:spring-security-config'
implementation 'org.springframework.security:spring-security-web'
api 'org.springframework.boot:spring-boot-starter-oauth2-client'
api 'org.springframework.boot:spring-boot-starter-security'
api 'org.springframework.security:spring-security-oauth2-client'
implementation 'org.springframework.security:spring-security-oauth2-authorization-server:1.4.2'
implementation 'org.springframework.security:spring-security-oauth2-jose'
implementation 'org.springframework.security:spring-security-oauth2-core'
implementation 'org.springframework.security:spring-security-jwt:1.1.1.RELEASE'
implementation 'org.springframework.security:spring-security-ldap'
implementation 'org.springframework.security:spring-security-saml2-service-provider:6.4.2'
implementation 'org.opensaml:opensaml-saml-api:4.0.1'
implementation 'org.opensaml:opensaml-saml-impl:4.0.1'
runtimeOnly 'com.nimbusds:oauth2-oidc-sdk:9.43.4'
//Fix CVE-2023-1370

//Others dependencies
implementation 'org.jasypt:jasypt:1.9.3'
implementation 'net.minidev:json-smart:2.4.10'
//Fix CVE-2022-22969
api 'org.springframework.security.oauth:spring-security-oauth2:2.5.2.RELEASE'
implementation 'org.springframework.security.oauth:spring-security-oauth2:2.5.2.RELEASE'
implementation 'org.springframework.security:spring-security-jwt:1.1.1.RELEASE'
//Fix CVE-2020-15522 in org.springframework.security:spring-security-jwt:1.1.1.RELEASE
implementation 'org.bouncycastle:bcprov-jdk15on:1.70'
implementation 'org.springframework.security:spring-security-ldap'
implementation 'org.springframework.security:spring-security-saml2-service-provider:5.8.16'
implementation 'commons-collections:commons-collections:3.2.2'
//Temporary fix of https://nvd.nist.gov/vuln/detail/CVE-2019-12400
implementation 'org.apache.santuario:xmlsec:3.0.3'
//Fix CVE-2015-7501, CVE-2015-4852
implementation 'org.apache.commons:commons-collections4:4.4'

//Fix CVE-2023-6378, CVE-2023-6481, CVE-2023-6378, CVE-2023-6481
implementation 'ch.qos.logback:logback-classic:1.2.13'
implementation 'ch.qos.logback:logback-core:1.2.13'


api 'javax.inject:javax.inject:1'
implementation 'org.springdoc:springdoc-openapi-ui:1.7.0'
api 'org.apache.commons:commons-compress:1.26.0'
implementation 'org.cryptacular:cryptacular:1.1.4'
// TODO: snakeyaml 2.0 supported by Spring Boot 2.7 and 3.X only
// We don't user application.yml, so it's safe to use 2.2
implementation 'org.yaml:snakeyaml:2.2'
implementation 'org.hibernate:hibernate-core:5.6.15.Final'
implementation 'org.springframework:spring-core:5.3.39'
implementation "com.rabbitmq:http-client:5.2.0"

// add lombok support
implementation 'com.rabbitmq:http-client:5.3.0'
api 'org.apache.httpcomponents.client5:httpclient5:5.4.2'

// Lombok
compileOnly "org.projectlombok:lombok:${lombokVersion}"
annotationProcessor "org.projectlombok:lombok:${lombokVersion}"
testCompileOnly "org.projectlombok:lombok:${lombokVersion}"
testAnnotationProcessor "org.projectlombok:lombok:${lombokVersion}"

// Testing
testImplementation 'org.springframework.boot:spring-boot-starter-test'
testImplementation 'org.flywaydb.flyway-test-extensions:flyway-spring-test:6.1.0'

// testImplementation 'org.springframework.boot:spring-boot-testcontainers:' // spring boot 3.1+
// compileOnly("org.springframework.boot:spring-boot-devtools")
implementation platform("org.testcontainers:testcontainers-bom:${testContainers}")
testImplementation "org.testcontainers:junit-jupiter:${testContainers}"
testImplementation "org.testcontainers:postgresql:${testContainers}"
testImplementation("org.testcontainers:minio:${testContainers}")

}

tasks.register('updateSubmodule', Exec) {
Expand All @@ -155,20 +123,41 @@ tasks.withType(JavaCompile).configureEach {
}

bootJar {
duplicatesStrategy = duplicatesStrategy.EXCLUDE
System.getenv().containsKey("K8S") ? getArchiveFileName().set('app.jar') : archiveClassifier.set('exec')
}
jar.enabled(true)
jar.archiveClassifier.set('')

test {
jvmArgs '--add-opens=java.base/java.lang=ALL-UNNAMED' // TODO: remove in Spring Boot 3
useJUnitPlatform()
testLogging {
events = ["failed"]
exceptionFormat = "short"
}
}

springBoot {
buildInfo {
properties {
name = "Authorization Service"
version = "${project.version}"
additional = [
"description": "$project.description",
"branch" : getCurrentGitBranch(),
"repo" : "reportportal/service-authorization"
]
excludes = ['time', 'artifact']
}
}
}

configurations {
all {
exclude group: 'commons-logging', module: 'commons-logging'
}
}

publish.dependsOn build
publish.mustRunAfter build

Expand Down
7 changes: 4 additions & 3 deletions gradle.properties
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,8 +5,9 @@ dockerJavaOpts=-Xmx512m -XX:+UseG1GC -XX:InitiatingHeapOccupancyPercent=70 -Djav
dockerJavaOptsDev=-Xmx1g -XX:+UseG1GC -XX:InitiatingHeapOccupancyPercent=70 -XX:+HeapDumpOnOutOfMemoryError -XX:HeapDumpPath=/tmp -Djava.security.egd=file:/dev/./urandom
dockerServerUrl=unix:///var/run/docker.sock

lombokVersion=1.18.30
lombokVersion=1.18.36
commonsLangVersion=3.9
testContainers=1.20.4
jclouds=2.5.0
testContainers=1.20.5
hibernateValidatorVersion=8.0.2.Final
jclouds=2.6.0
aws=2.29.50
2 changes: 1 addition & 1 deletion src/main/java/com/epam/reportportal/auth/AdminPasswordInitializer.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -22,7 +22,7 @@
import com.epam.reportportal.auth.entity.user.User;
import com.epam.reportportal.auth.exception.EnvironmentVariablesNotProvidedException;
import java.util.Optional;
import javax.persistence.EntityNotFoundException;
import jakarta.persistence.EntityNotFoundException;
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️ [reviewdog] <com.puppycrawl.tools.checkstyle.checks.imports.CustomImportOrderCheck> reported by reviewdog 🐶
Wrong lexicographical order for 'jakarta.persistence.EntityNotFoundException' import. Should be before 'java.util.Optional'.

import org.apache.commons.lang3.StringUtils;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
Expand Down
Loading