Skip to content

Comments

Bug #12710: Fixes for upgrading VitamUI#1853

Merged
GiooDev merged 4 commits intodevelopfrom
bug_12710_fix_dmv_order
May 16, 2024
Merged

Bug #12710: Fixes for upgrading VitamUI#1853
GiooDev merged 4 commits intodevelopfrom
bug_12710_fix_dmv_order

Conversation

@GiooDev
Copy link
Contributor

@GiooDev GiooDev commented May 14, 2024
edited
Loading

Description

  • Update documentation to stop VitamUI before applying migration script.
  • Fix migration script to cleanup reverse and logstash configurations before upgrade.
  • Cleanup syslog configuration for filebeat switching.

Type de changement

  • Documentation

Contributeur

  • VAS (Vitam Accessible en Service)

@GiooDev GiooDev added documentation Improvements or additions to documentation OPS REVIEW Mandatory if deployment/ directory is modified. labels May 14, 2024
@GiooDev GiooDev added this to the IT 135 milestone May 14, 2024
@GiooDev GiooDev requested a review from Saadounn May 14, 2024 13:07
@GiooDev GiooDev self-assigned this May 14, 2024
@vitam-devops
Copy link
Collaborator

vitam-devops commented May 14, 2024
edited
Loading

Logo
Checkmarx One – Scan Summary & Detailsa21958bc-f693-48fc-9409-24e88a7e9ca3

New Issues

Severity Issue Source File / Package Checkmarx Insight
HIGH CVE-2019-15599 Npm-tree-kill-1.2.1 Vulnerable Package
HIGH CVE-2020-28502 Npm-xmlhttprequest-ssl-1.5.5 Vulnerable Package
HIGH CVE-2020-36048 Npm-engine.io-3.2.1 Vulnerable Package
HIGH CVE-2020-36049 Npm-socket.io-parser-3.2.0 Vulnerable Package
HIGH CVE-2020-7660 Npm-serialize-javascript-1.9.1 Vulnerable Package
HIGH CVE-2020-7788 Npm-ini-1.3.5 Vulnerable Package
HIGH CVE-2021-31597 Npm-xmlhttprequest-ssl-1.5.5 Vulnerable Package
HIGH CVE-2022-2421 Npm-socket.io-parser-3.2.0 Vulnerable Package
HIGH Reflected_XSS_All_Clients /api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 118 Attack Vector
MEDIUM Absolute_Path_Traversal /ui/ui-referential/src/main/java/fr/gouv/vitamui/referential/rest/OntologyController.java: 206 Attack Vector
MEDIUM Absolute_Path_Traversal /ui/ui-pastis/src/main/java/fr/gouv/vitamui/pastis/rest/ProfileController.java: 245 Attack Vector
MEDIUM Absolute_Path_Traversal /ui/ui-pastis/src/main/java/fr/gouv/vitamui/pastis/rest/ArchivalProfileUnitController.java: 211 Attack Vector
MEDIUM Absolute_Path_Traversal /ui/ui-referential/src/main/java/fr/gouv/vitamui/referential/rest/FileFormatController.java: 244 Attack Vector
MEDIUM Absolute_Path_Traversal /ui/ui-referential/src/main/java/fr/gouv/vitamui/referential/rest/AgencyController.java: 214 Attack Vector
MEDIUM Absolute_Path_Traversal /ui/ui-referential/src/main/java/fr/gouv/vitamui/referential/rest/RuleController.java: 219 Attack Vector
MEDIUM Absolute_Path_Traversal /api/api-referential/referential-external/src/main/java/fr/gouv/vitamui/referential/external/server/rest/ProfileExternalController.java: 210 Attack Vector
MEDIUM Absolute_Path_Traversal /ui/ui-pastis/src/main/java/fr/gouv/vitamui/pastis/rest/PastisController.java: 99 Attack Vector
MEDIUM Absolute_Path_Traversal /ui/ui-commons/src/main/java/fr/gouv/vitamui/ui/commons/rest/RuleController.java: 211 Attack Vector
MEDIUM Absolute_Path_Traversal /api/api-referential/referential-external/src/main/java/fr/gouv/vitamui/referential/external/server/rest/ProfileExternalController.java: 151 Attack Vector
MEDIUM Absolute_Path_Traversal /api/api-referential/referential-external/src/main/java/fr/gouv/vitamui/referential/external/server/rest/ProfileExternalController.java: 210 Attack Vector
MEDIUM Absolute_Path_Traversal /api/api-referential/referential-internal/src/main/java/fr/gouv/vitamui/referential/internal/server/rest/ProfileInternalController.java: 199 Attack Vector
MEDIUM Absolute_Path_Traversal /api/api-referential/referential-internal/src/main/java/fr/gouv/vitamui/referential/internal/server/rest/FileFormatInternalController.java: 193 Attack Vector
MEDIUM Absolute_Path_Traversal /api/api-referential/referential-internal/src/main/java/fr/gouv/vitamui/referential/internal/server/rest/OntologyInternalController.java: 189 Attack Vector
MEDIUM Absolute_Path_Traversal /api/api-referential/referential-internal/src/main/java/fr/gouv/vitamui/referential/internal/server/rest/ArchivalProfileUnitInternalController.java: 153 Attack Vector
MEDIUM CVE-2019-16769 Npm-serialize-javascript-1.9.1 Vulnerable Package
MEDIUM CVE-2020-15366 Npm-ajv-6.10.0 Vulnerable Package
MEDIUM CVE-2020-15366 Npm-ajv-5.5.2 Vulnerable Package
MEDIUM CVE-2020-28481 Npm-socket.io-2.1.1 Vulnerable Package
MEDIUM CVE-2020-7693 Npm-sockjs-0.3.19 Vulnerable Package
MEDIUM CVE-2021-23364 Npm-browserslist-4.5.5 Vulnerable Package
MEDIUM CVE-2022-21704 Npm-log4js-4.5.1 Vulnerable Package
MEDIUM CVE-2022-41940 Npm-engine.io-3.2.1 Vulnerable Package
MEDIUM Cleartext_Submission_of_Sensitive_Information /api/api-iam/iam-internal/src/main/java/fr/gouv/vitamui/iam/internal/server/user/service/UserEmailInternalService.java: 98 Attack Vector
MEDIUM Cleartext_Submission_of_Sensitive_Information /api/api-iam/iam-external-client/src/main/java/fr/gouv/vitamui/iam/external/client/CasExternalRestClient.java: 82 Attack Vector
MEDIUM Cleartext_Submission_of_Sensitive_Information /api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/provider/ExternalApiAuthenticationProvider.java: 88 Attack Vector
MEDIUM HttpOnlyCookies /ui/ui-commons/src/main/java/fr/gouv/vitamui/ui/commons/security/CookieClearingLogoutHandler.java: 64 Attack Vector
MEDIUM Privacy_Violation /api/api-iam/iam-external-client/src/main/java/fr/gouv/vitamui/iam/external/client/CasExternalRestClient.java: 150 Attack Vector
MEDIUM Privacy_Violation /api/api-iam/iam-external-client/src/main/java/fr/gouv/vitamui/iam/external/client/CasExternalRestClient.java: 128 Attack Vector
MEDIUM Privacy_Violation /api/api-iam/iam-external-client/src/main/java/fr/gouv/vitamui/iam/external/client/CasExternalRestClient.java: 128 Attack Vector
MEDIUM Privacy_Violation /api/api-iam/iam-internal/src/main/java/fr/gouv/vitamui/iam/internal/server/rest/CasInternalController.java: 180 Attack Vector
MEDIUM Privacy_Violation /api/api-iam/iam-external/src/main/java/fr/gouv/vitamui/iam/external/server/rest/CasExternalController.java: 100 Attack Vector
MEDIUM Privacy_Violation /api/api-iam/iam-internal/src/main/java/fr/gouv/vitamui/iam/internal/server/rest/CasInternalController.java: 180 Attack Vector
MEDIUM Privacy_Violation /api/api-iam/iam-external-client/src/main/java/fr/gouv/vitamui/iam/external/client/CasExternalRestClient.java: 128 Attack Vector
MEDIUM Privacy_Violation /api/api-iam/iam-internal/src/main/java/fr/gouv/vitamui/iam/internal/server/rest/CasInternalController.java: 180 Attack Vector
MEDIUM Privacy_Violation /api/api-iam/iam-internal/src/main/java/fr/gouv/vitamui/iam/internal/server/rest/CasInternalController.java: 184 Attack Vector
MEDIUM Privacy_Violation /api/api-iam/iam-external-client/src/main/java/fr/gouv/vitamui/iam/external/client/CasExternalRestClient.java: 150 Attack Vector
MEDIUM Privacy_Violation /api/api-iam/iam-external-client/src/main/java/fr/gouv/vitamui/iam/external/client/CasExternalRestClient.java: 128 Attack Vector
MEDIUM Privacy_Violation /api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 118 Attack Vector
MEDIUM Privacy_Violation /api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 110 Attack Vector
MEDIUM Privacy_Violation /api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 110 Attack Vector
MEDIUM Privacy_Violation /api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 118 Attack Vector
MEDIUM Privacy_Violation /api/api-iam/iam-internal-client/src/main/java/fr/gouv/vitamui/iam/internal/client/UserInternalRestClient.java: 109 Attack Vector
MEDIUM Privacy_Violation /api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 118 Attack Vector
MEDIUM Privacy_Violation /api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 110 Attack Vector
MEDIUM SSL_Verification_Bypass /api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/filter/RequestAttributeX509CertificateExtractor.java: 44 Attack Vector
MEDIUM SSL_Verification_Bypass /api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/authentication/ExternalAuthentication.java: 75 Attack Vector
MEDIUM SSRF /api/api-iam/iam-external/src/main/java/fr/gouv/vitamui/iam/external/server/rest/CasExternalController.java: 164 Attack Vector
MEDIUM SSRF /api/api-iam/iam-external/src/main/java/fr/gouv/vitamui/iam/external/server/rest/CasExternalController.java: 142 Attack Vector
MEDIUM SSRF /api/api-iam/iam-external/src/main/java/fr/gouv/vitamui/iam/external/server/rest/CasExternalController.java: 143 Attack Vector
MEDIUM SSRF /api/api-iam/iam-external/src/main/java/fr/gouv/vitamui/iam/external/server/rest/CasExternalController.java: 163 Attack Vector
MEDIUM SSRF /api/api-iam/iam-external/src/main/java/fr/gouv/vitamui/iam/external/server/rest/CasExternalController.java: 163 Attack Vector
MEDIUM SSRF /api/api-collect/collect-external/src/main/java/fr/gouv/vitamui/collect/external/server/rest/ArchiveUnitController.java: 95 Attack Vector
MEDIUM SSRF /api/api-collect/collect-external/src/main/java/fr/gouv/vitamui/collect/external/server/rest/ArchiveUnitController.java: 95 Attack Vector
MEDIUM SSRF /api/api-collect/collect-external/src/main/java/fr/gouv/vitamui/collect/external/server/rest/ArchiveUnitController.java: 86 Attack Vector
MEDIUM SSRF /api/api-collect/collect-external/src/main/java/fr/gouv/vitamui/collect/external/server/rest/ArchiveUnitController.java: 86 Attack Vector
MEDIUM SSRF /api/api-collect/collect-external/src/main/java/fr/gouv/vitamui/collect/external/server/rest/ArchiveUnitController.java: 66 Attack Vector
MEDIUM SSRF /api/api-collect/collect-external/src/main/java/fr/gouv/vitamui/collect/external/server/rest/ArchiveUnitController.java: 66 Attack Vector
MEDIUM SSRF /api/api-collect/collect-internal/src/main/java/fr/gouv/vitamui/collect/internal/server/rest/ArchiveUnitController.java: 93 Attack Vector
MEDIUM SSRF /api/api-collect/collect-internal/src/main/java/fr/gouv/vitamui/collect/internal/server/rest/ArchiveUnitController.java: 67 Attack Vector
MEDIUM SSRF /api/api-collect/collect-internal/src/main/java/fr/gouv/vitamui/collect/internal/server/rest/ArchiveUnitController.java: 85 Attack Vector
MEDIUM SSRF /api/api-collect/collect-internal/src/main/java/fr/gouv/vitamui/collect/internal/server/rest/ArchiveUnitController.java: 67 Attack Vector
MEDIUM SSRF /api/api-collect/collect-internal/src/main/java/fr/gouv/vitamui/collect/internal/server/rest/ArchiveUnitController.java: 85 Attack Vector
MEDIUM SSRF /api/api-collect/collect-internal/src/main/java/fr/gouv/vitamui/collect/internal/server/rest/ArchiveUnitController.java: 93 Attack Vector
MEDIUM SSRF /api/api-iam/iam-external/src/main/java/fr/gouv/vitamui/iam/external/server/rest/CasExternalController.java: 100 Attack Vector
MEDIUM SSRF /api/api-iam/iam-external/src/main/java/fr/gouv/vitamui/iam/external/server/rest/CasExternalController.java: 101 Attack Vector
MEDIUM SSRF /cas/cas-server/src/main/java/fr/gouv/vitamui/cas/authentication/UserAuthenticationHandler.java: 107 Attack Vector
MEDIUM SSRF /api/api-archive-search/archive-search-external/src/main/java/fr/gouv/vitamui/archives/search/external/server/rest/ArchivesSearchExternalController.java: 271 Attack Vector
MEDIUM SSRF /ui/ui-archive-search/src/main/java/fr/gouv/vitamui/archives/search/rest/ArchivesSearchController.java: 359 Attack Vector
MEDIUM SSRF /ui/ui-identity/src/main/java/fr/gouv/vitamui/identity/service/ProviderService.java: 161 Attack Vector
MEDIUM SSRF /ui/ui-identity/src/main/java/fr/gouv/vitamui/identity/rest/ProviderController.java: 146 Attack Vector
MEDIUM SSRF /commons/commons-rest/src/main/java/fr/gouv/vitamui/commons/rest/client/ExternalHttpContext.java: 123 Attack Vector
MEDIUM SSRF /commons/commons-rest/src/main/java/fr/gouv/vitamui/commons/rest/client/ExternalHttpContext.java: 122 Attack Vector
MEDIUM SSRF /api/api-referential/referential-external/src/main/java/fr/gouv/vitamui/referential/external/server/rest/ProfileExternalController.java: 151 Attack Vector
MEDIUM SSRF /ui/ui-pastis/src/main/java/fr/gouv/vitamui/pastis/rest/ProfileController.java: 191 Attack Vector
MEDIUM SSRF /ui/ui-commons/src/main/java/fr/gouv/vitamui/ui/commons/rest/SchemaController.java: 71 Attack Vector
MEDIUM SSRF /api/api-referential/referential-external/src/main/java/fr/gouv/vitamui/referential/external/server/rest/SchemaController.java: 70 Attack Vector
MEDIUM SSRF /api/api-iam/iam-external/src/main/java/fr/gouv/vitamui/iam/external/server/rest/CustomerExternalController.java: 212 Attack Vector
MEDIUM SSRF /ui/ui-commons/src/main/java/fr/gouv/vitamui/ui/commons/rest/RuleController.java: 181 Attack Vector
MEDIUM SSRF /api/api-iam/iam-external/src/main/java/fr/gouv/vitamui/iam/external/server/rest/UserInfoExternalController.java: 179 Attack Vector
MEDIUM SSRF /api/api-iam/iam-external/src/main/java/fr/gouv/vitamui/iam/external/server/rest/ProfileExternalController.java: 177 Attack Vector
MEDIUM SSRF /ui/ui-referential/src/main/java/fr/gouv/vitamui/referential/rest/ManagementContractController.java: 161 Attack Vector
MEDIUM SSRF /api/api-referential/referential-external/src/main/java/fr/gouv/vitamui/referential/external/server/rest/RuleExternalController.java: 147 Attack Vector
MEDIUM SSRF /ui/ui-collect/src/main/java/fr/gouv/vitamui/collect/rest/TransactionController.java: 232 Attack Vector
MEDIUM SSRF /api/api-referential/referential-external/src/main/java/fr/gouv/vitamui/referential/external/server/rest/ProfileExternalController.java: 172 Attack Vector
MEDIUM SSRF /api/api-collect/collect-external/src/main/java/fr/gouv/vitamui/collect/external/server/rest/ProjectExternalController.java: 154

More results are available on AST platform

@GiooDev GiooDev changed the title Bug #12710: DMV - Stop VitamUI before migrate to API GW. Bug #12710: Fixes for upgrading VitamUI May 14, 2024
@GiooDev GiooDev force-pushed the bug_12710_fix_dmv_order branch 2 times, most recently from 8ba13bd to babde38 Compare May 14, 2024 20:38
@GiooDev
Bug #12710: Fix migration script.
f3e8ba5 
Cleanup reverse and logstash configurations for upgrade.
@GiooDev GiooDev force-pushed the bug_12710_fix_dmv_order branch from babde38 to f3e8ba5 Compare May 14, 2024 22:11
@GiooDev GiooDev force-pushed the bug_12710_fix_dmv_order branch from 73f8d4d to 2ebe3ea Compare May 15, 2024 18:13
@GiooDev GiooDev merged commit fc464f0 into develop May 16, 2024
@GiooDev GiooDev deleted the bug_12710_fix_dmv_order branch May 16, 2024 13:46
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@bbenaissa bbenaissa bbenaissa approved these changes

@laedanrex laedanrex laedanrex approved these changes

@Saadounn Saadounn Awaiting requested review from Saadounn

Assignees

@GiooDev GiooDev

Labels

documentation Improvements or additions to documentation OPS REVIEW Mandatory if deployment/ directory is modified.

Projects

None yet

Milestone

IT 135

Development

Successfully merging this pull request may close these issues.

4 participants

@GiooDev @vitam-devops @bbenaissa @laedanrex