OpenBMC Phosphor WebUI sources https://git.raptorcs.com/git/phosphor-webui/atom?h=master 2020-02-11T16:43:22+00:00 2020-02-11T16:43:22+00:00 Yoshie Muranaka yoshiemuranaka@gmail.com 2020-01-29T21:21:12+00:00 urn:sha1:4148f2eee6313068d3223871005160b2902abb18 Adding a profile settings page so readonly and operator roles are able to change their own password. Signed-off-by: Yoshie Muranaka <yoshiemuranaka@gmail.com> Change-Id: Iee9536255ad47f4df4af8746c1e01da37c407f2b 2020-02-11T16:43:02+00:00 James Feist james.feist@linux.intel.com 2020-02-10T17:25:07+00:00 urn:sha1:b0a0847a8eb02ae21f755942799a81c6e3475e64 Currently we don't protect against forwarding to remote url, so things like: https://<bmc-address>/#/login?next=http:%2F%2Fyahoo.com can be used to forward an unsuspecting user to a different url. This fixes that issue. Tested: Local redirects still work, above link does not Closes #109 Change-Id: I4d6c52880156802860f405af43037fb84235912f Signed-off-by: James Feist <james.feist@linux.intel.com> 2020-01-13T15:24:01+00:00 kathy kathryn.elainex.pine@intel.com 2019-11-11T18:35:31+00:00 urn:sha1:cee23d931785fe0638054a2448acb2e44411fdd0 - New navigation provides intuitive structure for showing relationship between sections and pages - Menu keeps an open state, which allows easy clicking to sibling pages - Ability to preview all page sections w/o hover over blocking page content - Allows user to see where they are within navigation at all times Tested: Opened each page and confirmed new navigation worked, clicked through to all pages successfully. Change-Id: Ie10dc95d8e15ee9bf89a3bec9ff231c0a7065ed9 Signed-off-by: Kathy Pine <kathryn.elainex.pine@intel.com> 2019-12-19T00:45:00+00:00 Gunnar Mills gmills@us.ibm.com 2019-12-16T19:57:52+00:00 urn:sha1:dda0b83ebe65f7dc90275a649245e85ba3e8b315 https://github.com/openbmc/openbmc/commit/19e81d3f3b731681a57bb5ef9681d33cc291bde8 restricts SSH authentication to only admin role users. Updated the table. Tested: Loaded on a Witherspoon Change-Id: Ice5c93dc6dc4aa937de2c3fb9072c2f81719325c Signed-off-by: Gunnar Mills <gmills@us.ibm.com> 2019-12-19T00:44:53+00:00 Gunnar Mills gmills@us.ibm.com 2019-12-16T16:36:56+00:00 urn:sha1:6765c07a2831434d7c5bb56a08a15c67adb0c3a2 https://github.com/openbmc/bmcweb/commit/e9e6d240ab85e515f8d264e39b47a75043b73374 added a new user role, NoAccess. https://github.com/openbmc/bmcweb/commit/cb3e11fadd77b04f5b26aefbde18411625e5e304 removed Callback. This "NoAccess" role can not ssh, access Redfish, the D-Bus API, or IPMI. Tested: Loaded on a witherspoon. Change-Id: I4f870fdefb5342344fd442876d671a59864bbf34 Signed-off-by: Gunnar Mills <gmills@us.ibm.com> 2019-12-16T12:45:09+00:00 Wiktor Gołgowski wiktor.golgowski@intel.com 2019-12-10T11:46:45+00:00 urn:sha1:f2127efa1b7d1c9fc1625f6e30b75be0ed658d53 Related to https://gerrit.openbmc-project.xyz/c/openbmc/bmcweb/+/27270 Currently the only condition checked when user is logged in was the "LOGIN_ID" value in browser session storage. The only place in the code where it is set is the Basic Authorization flow. In case of mTLS authentication, we are not able to set session storage value. This is why additional 'IsAuthenticated' cookie is added. In the case when user session expires, the failing XHR should cause the page to redirect to the login prompt. Additionally, IsAuthenticated cookie is removed to disable redirection. Tested: verified the flow with the mTLS changes. User is put in the webUI interface without login prompt when using mTLS authentication. If the authentication fails, browser redirects to the login page. Signed-off-by: Wiktor Gołgowski <wiktor.golgowski@intel.com> Change-Id: Ia7061f3e146c6547d4bfdf42940150b1a5c06903 2019-12-04T18:00:25+00:00 Derick Montague derick.montague@ibm.com 2019-12-03T18:52:42+00:00 urn:sha1:b42b93d8adcf463dc7cc4422cf6718d698c95236 - Remove all references to the AuthenticationType property since our request is a PATCH and we are not changing the value. Resolves: https://github.com/openbmc/phosphor-webui/issues/102 Signed-off-by: Derick Montague <derick.montague@ibm.com> Change-Id: I911ac41bf61250847e4c308f09df8fd59dd27fa7 2019-12-04T18:00:17+00:00 Zbigniew Kurzynski zbigniew.kurzynski@intel.com 2019-11-28T10:40:57+00:00 urn:sha1:ca7e093bd789f34c35e714dc5bce1ae4e9ce4205 So far the certificate table was not sorted and it happen that having multiple certificates they appear on different table position after machine restart. That is because the Redfish was used to get the list of certificates and it does not guarantee any order of elements in returned collections. After merging this commit certificates will be always sorted by: type, issuer name and then by date. Tested: Manual tests were made to cofirm that certificates are properly sorted. Signed-off-by: Zbigniew Kurzynski <zbigniew.kurzynski@intel.com> Change-Id: Ie8e63d598cd04e2396ed09244a69284e49566f8d 2019-11-27T15:00:08+00:00 Dixsie Wolmers dixsiew@gmail.com 2019-11-19T21:24:00+00:00 urn:sha1:5fcee5ab526d678c9f39763cc90f600c2869df5d Created reusuable file upload component to be used on updated firmware page. Component can: -Upload file -Display status icon -Clear upload field Made minor style change to file upload on certificate management. Tested in GUI. Signed-off-by: Dixsie Wolmers <dixsiew@gmail.com> Change-Id: I09bf56eee4d670681ea5e95c1807f8177c0e4c08 2019-11-27T14:54:23+00:00 Dixsie Wolmers dixsiew@gmail.com 2019-11-18T00:21:50+00:00 urn:sha1:d4a5d6f43c6e19bd89b4debfaf8019a118728911 Loader was updated with loading icon svg. Added inline style for loading icon and added loader svg to status-icon directive. Status icons will be used in file-upload component for firmware page update. Signed-off-by: Dixsie Wolmers <dixsiew@gmail.com> Change-Id: I15e6f9fa39a08fcc8cfe354f8ed4447aab6425a9