Uploaded image for project: 'PUBLIC - Liferay Portal Community Edition'
  1. PUBLIC - Liferay Portal Community Edition
  2. LPS-147317

AppSec - Upstream Analysis - Week of 2/14/22 (DXP & CE)

    XMLWordPrintable

Details

    • Testing
    • Status: Closed
    • Minor
    • Resolution: Completed
    • Master
    • None
    • Application Security
    • 5
    • AppSec Iteration 81
    • Analysis

    Description

      Guidelines

      1. Before working on this task, please update links to the latest
      2. Create a new child sub-task for each upcoming build analysis!

      Tasks

      1. Upstream run: ci:test:upstream-dxp(Application Security) - TODO
      2. Daily run: ci:test:security - TODO
        Note: Mock builds have prior over the daily builds. When the mock build is available, no need to analyze the daily runs. If no mock build, fallback, and analyze the latest daily routine.
      3. 7.4 Mock Build Analysis - TODO
        Note: Link subtasks for each analyzed build.
      4. Test Report - TODO
        Note: Link each completed test report

      cc marcell.weller, ferenc.onodi, gabor.lovas, joyce.wang

      Attachments

        Issue Links

          Testing discovered

          Bug - A problem which impairs or prevents the functions of the product. LPS-134954 SP side attribute mapping is highjacked by hidden mapping

          • Closed

          Bug - A problem which impairs or prevents the functions of the product. LPS-142520 Modal popup size is 0 when it's content not loaded fast enough

          • Closed

          Bug - A problem which impairs or prevents the functions of the product. LPS-137141 User attributes only partially sync

          • Verified

          Testing - LPS-134339 LocalFile.OAuth2#PanelsShouldBeExpandableOnGlobalScopes - Investigate why Global Scope page is blank on Jenkins

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Closed

          Testing - LPS-137507 Analyze failure in LocalFile.MultiFactorAuthentication#CanRemoveTOTPVerificationOnInstanceLevel

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Closed

          Testing - LPS-141213 Analyze failure in LocalFile.SecurityUsecase#CreateUserViaJSONWSAPIUI

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Closed

          Testing - LPS-142980 Analyze failure in LocalFile.XSS#NoXSSVulnerabilityInWebContent

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Closed

          Testing - LPS-143035 Analyse failure in SAML#SPInitiatedSSOSyncsUserAttributesFromIdPToSPDefaultMapping

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Closed

          Testing - LPS-143775 Analyze failure in LocalFile.OAuth2#EditApplicationScopesAndViewLanguageKeys

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Closed

          Testing - LPS-146522 Analyze failure in LocalFile.Login#OpenIDConnectOnInstanceLevelSmoke

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Closed

          Testing - LPS-146741 Analyze failure in LocalFile.OpenIDConnect#AssertUserIsLoggedOutWithHigherRefreshToken

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Closed

          Activity

            People

              ferenc.onodi Ferenc Onodi (Inactive)
              gabor.lovas Gábor Lovas
              Kiyoshi Lee Kiyoshi Lee
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Packages

                  Version Package