pwm-project
diff --git a/‎server/src/main/java/password/pwm/http/PwmURL.java
Lines changed: 3 additions & 1 deletion b/‎server/src/main/java/password/pwm/http/PwmURL.java
Lines changed: 3 additions & 1 deletion
diff --git a/‎server/src/main/java/password/pwm/http/filter/ConfigAccessFilter.java
Lines changed: 10 additions & 296 deletions b/‎server/src/main/java/password/pwm/http/filter/ConfigAccessFilter.java
Lines changed: 10 additions & 296 deletions
diff --git a/‎server/src/main/java/password/pwm/http/servlet/PwmServletDefinition.java
Lines changed: 2 additions & 0 deletions b/‎server/src/main/java/password/pwm/http/servlet/PwmServletDefinition.java
Lines changed: 2 additions & 0 deletions
diff --git a/‎server/src/main/java/password/pwm/http/servlet/configeditor/ConfigEditorServlet.java
Lines changed: 5 additions & 2 deletions b/‎server/src/main/java/password/pwm/http/servlet/configeditor/ConfigEditorServlet.java
Lines changed: 5 additions & 2 deletions
diff --git a/‎server/src/main/java/password/pwm/http/servlet/configmanager/ConfigManagerCertificatesServlet.java
Lines changed: 2 additions & 0 deletions b/‎server/src/main/java/password/pwm/http/servlet/configmanager/ConfigManagerCertificatesServlet.java
Lines changed: 2 additions & 0 deletions
diff --git a/‎server/src/main/java/password/pwm/http/servlet/configmanager/ConfigManagerLocalDBServlet.java
Lines changed: 2 additions & 2 deletions b/‎server/src/main/java/password/pwm/http/servlet/configmanager/ConfigManagerLocalDBServlet.java
Lines changed: 2 additions & 2 deletions
@@ -34,6 +34,7 @@
 import java.util.Iterator;
 import java.util.List;
 import java.util.Map;
+import java.util.Objects;
 import java.util.regex.Pattern;
 
 public class PwmURL
@@ -48,7 +49,8 @@ public PwmURL(
             final String contextPath
     )
     {
-        this.uri = uri;
+        Objects.requireNonNull( uri );
+        this.uri = uri.normalize();
         this.contextPath = contextPath;
     }
 
 
@@ -48,6 +48,7 @@
 import password.pwm.http.servlet.configguide.ConfigGuideServlet;
 import password.pwm.http.servlet.configmanager.ConfigManagerCertificatesServlet;
 import password.pwm.http.servlet.configmanager.ConfigManagerLocalDBServlet;
+import password.pwm.http.servlet.configmanager.ConfigManagerLoginServlet;
 import password.pwm.http.servlet.configmanager.ConfigManagerServlet;
 import password.pwm.http.servlet.configmanager.ConfigManagerWordlistServlet;
 import password.pwm.http.servlet.newuser.NewUserServlet;
@@ -90,6 +91,7 @@ public enum PwmServletDefinition
     ConfigGuide( ConfigGuideServlet.class, ConfigGuideBean.class ),
     ConfigEditor( ConfigEditorServlet.class, null ),
     ConfigManager( ConfigManagerServlet.class, ConfigManagerBean.class ),
+    ConfigManager_Login( ConfigManagerLoginServlet.class, ConfigManagerBean.class ),
     ConfigManager_Wordlists( ConfigManagerWordlistServlet.class, ConfigManagerBean.class ),
     ConfigManager_LocalDB( ConfigManagerLocalDBServlet.class, ConfigManagerBean.class ),
     ConfigManager_Certificates( ConfigManagerCertificatesServlet.class, ConfigManagerBean.class ),
 
@@ -72,12 +72,12 @@
 import password.pwm.i18n.PwmLocaleBundle;
 import password.pwm.ldap.LdapBrowser;
 import password.pwm.util.PasswordData;
-import password.pwm.util.password.RandomPasswordGenerator;
 import password.pwm.util.java.JsonUtil;
 import password.pwm.util.java.StringUtil;
 import password.pwm.util.java.TimeDuration;
 import password.pwm.util.logging.PwmLogger;
 import password.pwm.util.macro.MacroMachine;
+import password.pwm.util.password.RandomPasswordGenerator;
 import password.pwm.util.queue.SmsQueueManager;
 import password.pwm.util.secure.HttpsServerCertificateManager;
 import password.pwm.ws.server.RestResultBean;
@@ -164,8 +164,11 @@ public Class<? extends ProcessAction> getProcessActionsClass( )
     }
 
     @Override
-    public ProcessStatus preProcessCheck( final PwmRequest pwmRequest ) throws PwmUnrecoverableException, IOException, ServletException
+    public ProcessStatus preProcessCheck( final PwmRequest pwmRequest )
+            throws PwmUnrecoverableException, IOException, ServletException
     {
+        ConfigManagerServlet.verifyConfigAccess( pwmRequest );
+
         final ConfigManagerBean configManagerBean = getBean( pwmRequest );
 
         if ( configManagerBean.getStoredConfiguration() == null )
 
@@ -98,6 +98,8 @@ protected ConfigManagerCertificateAction readProcessAction( final PwmRequest req
     protected void processAction( final PwmRequest pwmRequest )
             throws ServletException, IOException, ChaiUnavailableException, PwmUnrecoverableException
     {
+        ConfigManagerServlet.verifyConfigAccess( pwmRequest );
+
         final ConfigManagerCertificateAction action = readProcessAction( pwmRequest );
         final ArrayList<CertificateDebugDataItem> certificateDebugDataItems = new ArrayList<>( makeCertificateDebugData( pwmRequest.getConfig() ) );
 
 
@@ -20,7 +20,6 @@
 
 package password.pwm.http.servlet.configmanager;
 
-import com.novell.ldapchai.exception.ChaiUnavailableException;
 import org.apache.commons.fileupload.servlet.ServletFileUpload;
 import password.pwm.AppProperty;
 import password.pwm.PwmApplication;
@@ -103,8 +102,9 @@ protected ConfigManagerAction readProcessAction( final PwmRequest request )
     }
 
     protected void processAction( final PwmRequest pwmRequest )
-            throws ServletException, IOException, ChaiUnavailableException, PwmUnrecoverableException
+            throws ServletException, IOException, PwmUnrecoverableException
     {
+        ConfigManagerServlet.verifyConfigAccess( pwmRequest );
 
         final ConfigManagerAction processAction = readProcessAction( pwmRequest );
         if ( processAction != null )
Original file line number	Diff line number	Diff line change
`@@ -34,6 +34,7 @@`
`34`	`34`	`import java.util.Iterator;`
`35`	`35`	`import java.util.List;`
`36`	`36`	`import java.util.Map;`
	`37`	`+import java.util.Objects;`
`37`	`38`	`import java.util.regex.Pattern;`
`38`	`39`
`39`	`40`	`public class PwmURL`
`@@ -48,7 +49,8 @@ public PwmURL(`
`48`	`49`	`final String contextPath`
`49`	`50`	`)`
`50`	`51`	`{`
`51`		`- this.uri = uri;`
	`52`	`+ Objects.requireNonNull( uri );`
	`53`	`+ this.uri = uri.normalize();`
`52`	`54`	`this.contextPath = contextPath;`
`53`	`55`	`}`
`54`	`56`
Original file line number	Diff line number	Diff line change
`@@ -98,6 +98,8 @@ protected ConfigManagerCertificateAction readProcessAction( final PwmRequest req`
`98`	`98`	`protected void processAction( final PwmRequest pwmRequest )`
`99`	`99`	`throws ServletException, IOException, ChaiUnavailableException, PwmUnrecoverableException`
`100`	`100`	`{`
	`101`	`+ ConfigManagerServlet.verifyConfigAccess( pwmRequest );`
	`102`	`+`
`101`	`103`	`final ConfigManagerCertificateAction action = readProcessAction( pwmRequest );`
`102`	`104`	`final ArrayList<CertificateDebugDataItem> certificateDebugDataItems = new ArrayList<>( makeCertificateDebugData( pwmRequest.getConfig() ) );`
`103`	`105`
Original file line number	Diff line number	Diff line change
`@@ -20,7 +20,6 @@`
`20`	`20`
`21`	`21`	`package password.pwm.http.servlet.configmanager;`
`22`	`22`
`23`		`-import com.novell.ldapchai.exception.ChaiUnavailableException;`
`24`	`23`	`import org.apache.commons.fileupload.servlet.ServletFileUpload;`
`25`	`24`	`import password.pwm.AppProperty;`
`26`	`25`	`import password.pwm.PwmApplication;`
`@@ -103,8 +102,9 @@ protected ConfigManagerAction readProcessAction( final PwmRequest request )`
`103`	`102`	`}`
`104`	`103`
`105`	`104`	`protected void processAction( final PwmRequest pwmRequest )`
`106`		`- throws ServletException, IOException, ChaiUnavailableException, PwmUnrecoverableException`
	`105`	`+ throws ServletException, IOException, PwmUnrecoverableException`
`107`	`106`	`{`
	`107`	`+ ConfigManagerServlet.verifyConfigAccess( pwmRequest );`
`108`	`108`
`109`	`109`	`final ConfigManagerAction processAction = readProcessAction( pwmRequest );`
`110`	`110`	`if ( processAction != null )`