pwm-project
diff --git a/‎docker/pom.xml
Lines changed: 1 addition & 1 deletion b/‎docker/pom.xml
Lines changed: 1 addition & 1 deletion
diff --git a/‎onejar/pom.xml
Lines changed: 1 addition & 1 deletion b/‎onejar/pom.xml
Lines changed: 1 addition & 1 deletion
diff --git a/‎pom.xml
Lines changed: 6 additions & 6 deletions b/‎pom.xml
Lines changed: 6 additions & 6 deletions
diff --git a/‎pwm-cr/src/main/java/password/pwm/cr/ChaiXmlResponseSetSerializer.java
Lines changed: 5 additions & 1 deletion b/‎pwm-cr/src/main/java/password/pwm/cr/ChaiXmlResponseSetSerializer.java
Lines changed: 5 additions & 1 deletion
diff --git a/‎server/pom.xml
Lines changed: 1 addition & 1 deletion b/‎server/pom.xml
Lines changed: 1 addition & 1 deletion
diff --git a/‎server/src/main/java/password/pwm/bean/SessionLabel.java
Lines changed: 1 addition & 0 deletions b/‎server/src/main/java/password/pwm/bean/SessionLabel.java
Lines changed: 1 addition & 0 deletions
diff --git a/‎server/src/main/java/password/pwm/config/function/LdapCertImportFunction.java
Lines changed: 7 additions & 31 deletions b/‎server/src/main/java/password/pwm/config/function/LdapCertImportFunction.java
Lines changed: 7 additions & 31 deletions
diff --git a/‎server/src/main/java/password/pwm/config/profile/LdapProfile.java
Lines changed: 6 additions & 0 deletions b/‎server/src/main/java/password/pwm/config/profile/LdapProfile.java
Lines changed: 6 additions & 0 deletions
diff --git a/‎server/src/main/java/password/pwm/config/stored/ConfigurationProperty.java
Lines changed: 2 additions & 1 deletion b/‎server/src/main/java/password/pwm/config/stored/ConfigurationProperty.java
Lines changed: 2 additions & 1 deletion
diff --git a/‎server/src/main/java/password/pwm/health/ConfigurationChecker.java
Lines changed: 1 addition & 1 deletion b/‎server/src/main/java/password/pwm/health/ConfigurationChecker.java
Lines changed: 1 addition & 1 deletion
@@ -34,7 +34,7 @@
             <plugin>
                 <groupId>com.google.cloud.tools</groupId>
                 <artifactId>jib-maven-plugin</artifactId>
-                <version>1.1.2</version>
+                <version>1.2.0</version>
                 <executions>
                     <execution>
                         <id>make-docker-image</id>
 
@@ -17,7 +17,7 @@
 
     <properties>
         <project.root.basedir>${project.basedir}/..</project.root.basedir>
-        <tomcat.version>9.0.19</tomcat.version>
+        <tomcat.version>9.0.20</tomcat.version>
     </properties>
 
     <build>
 
@@ -167,12 +167,12 @@
             <plugin>
                 <groupId>org.apache.maven.plugins</groupId>
                 <artifactId>maven-checkstyle-plugin</artifactId>
-                <version>3.0.0</version>
+                <version>3.1.0</version>
                 <dependencies>
                     <dependency>
                         <groupId>com.puppycrawl.tools</groupId>
                         <artifactId>checkstyle</artifactId>
-                        <version>8.19</version>
+                        <version>8.20</version>
                     </dependency>
                 </dependencies>
                 <executions>
@@ -247,7 +247,7 @@
                     <dependency>
                         <groupId>com.github.spotbugs</groupId>
                         <artifactId>spotbugs</artifactId>
-                        <version>4.0.0-beta1</version>
+                        <version>4.0.0-beta2</version>
                     </dependency>
                 </dependencies>
                 <configuration>
@@ -268,7 +268,7 @@
             <plugin> <!-- checks owsp vulnerability database -->
                 <groupId>org.owasp</groupId>
                 <artifactId>dependency-check-maven</artifactId>
-                <version>5.0.0-M2</version>
+                <version>5.0.0-M3</version>
                 <executions>
                     <execution>
                         <goals>
@@ -285,13 +285,13 @@
         <dependency>
             <groupId>org.projectlombok</groupId>
             <artifactId>lombok</artifactId>
-            <version>1.18.6</version>
+            <version>1.18.8</version>
             <scope>provided</scope>
         </dependency>
         <dependency>
             <groupId>com.github.spotbugs</groupId>
             <artifactId>spotbugs-annotations</artifactId>
-            <version>4.0.0-beta1</version>
+            <version>4.0.0-beta2</version>
             <scope>provided</scope>
         </dependency>
 
 
@@ -276,12 +276,16 @@ private static StoredResponseItem parseAnswerElement( final Element element )
         final String salt = element.getAttribute( XML_ATTRIBUTE_SALT ) == null ? "" : element.getAttribute( XML_ATTRIBUTE_SALT ).getValue();
         final String hashCount = element.getAttribute( XML_ATTRIBUTE_HASH_COUNT ) == null ? "1" : element.getAttribute( XML_ATTRIBUTE_HASH_COUNT ).getValue();
         int saltCount = 1;
+
         try
         {
             saltCount = Integer.parseInt( hashCount );
         }
         catch ( NumberFormatException e )
-        { /* noop */ }
+        {
+            /* noop */
+        }
+
         final String formatStr = element.getAttributeValue( XML_ATTRIBUTE_CONTENT_FORMAT ) == null ? "" : element.getAttributeValue( XML_ATTRIBUTE_CONTENT_FORMAT );
 
         return StoredResponseItem.builder()
 
@@ -292,7 +292,7 @@
         <dependency>
             <groupId>com.blueconic</groupId>
             <artifactId>browscap-java</artifactId>
-            <version>1.2.8</version>
+            <version>1.2.9</version>
         </dependency>
         <dependency>
             <groupId>org.jetbrains.xodus</groupId>
 
@@ -41,6 +41,7 @@ public class SessionLabel implements Serializable
     public static final SessionLabel AUDITING_SESSION_LABEL = new SessionLabel( SESSION_LABEL_SESSION_ID, null, "auditing", null, null );
     public static final SessionLabel TELEMETRY_SESSION_LABEL = new SessionLabel( SESSION_LABEL_SESSION_ID, null, "telemetry", null, null );
     public static final SessionLabel PWNOTIFY_SESSION_LABEL = new SessionLabel( SESSION_LABEL_SESSION_ID, null, "pwnotify", null, null );
+    public static final SessionLabel CONTEXT_SESSION_LABEL = new SessionLabel( SESSION_LABEL_SESSION_ID, null, "context", null, null );
 
     private final String sessionID;
     private final UserIdentity userIdentity;
 
@@ -29,67 +29,43 @@
 import password.pwm.config.stored.StoredConfigurationImpl;
 import password.pwm.config.value.StringArrayValue;
 import password.pwm.config.value.X509CertificateValue;
-import password.pwm.error.ErrorInformation;
-import password.pwm.error.PwmError;
-import password.pwm.error.PwmException;
-import password.pwm.error.PwmOperationalException;
 import password.pwm.error.PwmUnrecoverableException;
 import password.pwm.http.PwmRequest;
 import password.pwm.http.PwmSession;
 import password.pwm.i18n.Message;
 import password.pwm.util.secure.X509Utils;
 
-import java.net.URI;
 import java.security.cert.X509Certificate;
 import java.util.LinkedHashSet;
 import java.util.List;
 import java.util.Set;
 
 public class LdapCertImportFunction implements SettingUIFunction
 {
-
     @Override
     public String provideFunction(
             final PwmRequest pwmRequest,
             final StoredConfigurationImpl storedConfiguration,
             final PwmSetting setting,
             final String profile,
-            final String extraData )
-            throws PwmOperationalException, PwmUnrecoverableException
+            final String extraData
+    )
+            throws PwmUnrecoverableException
     {
         final PwmApplication pwmApplication = pwmRequest.getPwmApplication();
         final PwmSession pwmSession = pwmRequest.getPwmSession();
 
         final StringArrayValue ldapUrlsValue = ( StringArrayValue ) storedConfiguration.readSetting( PwmSetting.LDAP_SERVER_URLS, profile );
         final Set<X509Certificate> resultCertificates = new LinkedHashSet<>();
-        try
-        {
-            if ( ldapUrlsValue != null && ldapUrlsValue.toNativeObject() != null )
-            {
-                final List<String> ldapUrlStrings = ldapUrlsValue.toNativeObject();
-                for ( final String ldapUrlString : ldapUrlStrings )
-                {
-                    final URI ldapURI = new URI( ldapUrlString );
-                    final List<X509Certificate> certs = X509Utils.readRemoteCertificates( ldapURI, pwmApplication.getConfig() );
-                    if ( certs != null )
-                    {
-                        resultCertificates.addAll( certs );
-                    }
-                }
-            }
-        }
-        catch ( Exception e )
+        if ( ldapUrlsValue != null && ldapUrlsValue.toNativeObject() != null )
         {
-            if ( e instanceof PwmException )
-            {
-                throw new PwmOperationalException( ( ( PwmException ) e ).getErrorInformation() );
-            }
-            final ErrorInformation errorInformation = new ErrorInformation( PwmError.ERROR_INTERNAL, "error importing certificates: " + e.getMessage() );
-            throw new PwmOperationalException( errorInformation );
+            final List<String> ldapUrlStrings = ldapUrlsValue.toNativeObject();
+            resultCertificates.addAll( X509Utils.readCertsForListOfLdapUrls( ldapUrlStrings, pwmRequest.getConfig() ) );
         }
 
         final UserIdentity userIdentity = pwmSession.isAuthenticated() ? pwmSession.getUserInfo().getUserIdentity() : null;
         storedConfiguration.writeSetting( setting, profile, new X509CertificateValue( resultCertificates ), userIdentity );
         return Message.getLocalizedMessage( pwmSession.getSessionStateBean().getLocale(), Message.Success_Unknown, pwmApplication.getConfig() );
     }
+
 }
@@ -96,6 +96,12 @@ public List<String> getRootContexts(
         return Collections.unmodifiableList( canonicalValues );
     }
 
+    public List<String> getLdapUrls(
+    )
+    {
+        return readSettingAsStringArray( PwmSetting.LDAP_SERVER_URLS );
+    }
+
     @Override
     public String getDisplayName( final Locale locale )
     {
 
@@ -30,7 +30,8 @@ public enum ConfigurationProperty
     NOTES( "notes" ),
     PASSWORD_HASH( "configPasswordHash" ),
     CONFIG_ON_START( "saveConfigOnStart" ),
-    MODIFIFICATION_TIMESTAMP( "modificationTimestamp" ),;
+    MODIFIFICATION_TIMESTAMP( "modificationTimestamp" ),
+    IMPORT_LDAP_CERTIFICATES( "importLdapCertificates" ),;
 
     private final String key;
 
 
@@ -152,7 +152,7 @@ public List<HealthRecord> doHealthCheck( final Configuration config, final Local
 
         for ( final LdapProfile ldapProfile : config.getLdapProfiles().values() )
         {
-            final List<String> ldapServerURLs = ldapProfile.readSettingAsStringArray( PwmSetting.LDAP_SERVER_URLS );
+            final List<String> ldapServerURLs = ldapProfile.getLdapUrls();
             if ( ldapServerURLs != null && !ldapServerURLs.isEmpty() )
             {
                 for ( final String urlStringValue : ldapServerURLs )
Original file line number	Diff line number	Diff line change
`@@ -96,6 +96,12 @@ public List<String> getRootContexts(`
`96`	`96`	`return Collections.unmodifiableList( canonicalValues );`
`97`	`97`	`}`
`98`	`98`
	`99`	`+ public List<String> getLdapUrls(`
	`100`	`+ )`
	`101`	`+ {`
	`102`	`+ return readSettingAsStringArray( PwmSetting.LDAP_SERVER_URLS );`
	`103`	`+ }`
	`104`	`+`
`99`	`105`	`@Override`
`100`	`106`	`public String getDisplayName( final Locale locale )`
`101`	`107`	`{`
Original file line number	Diff line number	Diff line change
`@@ -152,7 +152,7 @@ public List<HealthRecord> doHealthCheck( final Configuration config, final Local`
`152`	`152`
`153`	`153`	`for ( final LdapProfile ldapProfile : config.getLdapProfiles().values() )`
`154`	`154`	`{`
`155`		`- final List<String> ldapServerURLs = ldapProfile.readSettingAsStringArray( PwmSetting.LDAP_SERVER_URLS );`
	`155`	`+ final List<String> ldapServerURLs = ldapProfile.getLdapUrls();`
`156`	`156`	`if ( ldapServerURLs != null && !ldapServerURLs.isEmpty() )`
`157`	`157`	`{`
`158`	`158`	`for ( final String urlStringValue : ldapServerURLs )`