You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@knox.apache.org by "ASF GitHub Bot (Jira)" <ji...@apache.org> on 2022/12/02 15:59:00 UTC
[jira] [Work logged] (KNOX-2850) Take care of existing java upgrades by dependabot
[ https://issues.apache.org/jira/browse/KNOX-2850?focusedWorklogId=830675&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-830675 ]
ASF GitHub Bot logged work on KNOX-2850:
----------------------------------------
Author: ASF GitHub Bot
Created on: 02/Dec/22 15:58
Start Date: 02/Dec/22 15:58
Worklog Time Spent: 10m
Work Description: MrtnBalazs opened a new pull request, #688:
URL: https://github.com/apache/knox/pull/688
## What changes were proposed in this pull request?
The following dependencies were upgraded:
- hadoop: `3.2.3` -> `3.2.4`
- jetty: `9.4.45.v20220203` -> `9.4.48.v20220622`
- postgresql: `42.3.3` -> `42.4.1`
- woodstox: `6.1.1` -> `6.4.0`
- shiro: `1.8.0` -> `1.10.0`
## How was this patch tested?
I have configured `postgresql` for jdbc token state service.
I have created test topology on admin ui:
```
<topology>
<uri>https://localhost:8443/gateway/test</uri>
<name>test</name>
<timestamp>1669992953127</timestamp>
<generated>true</generated>
<redeployTime>0</redeployTime>
<gateway>
<provider>
<role>federation</role>
<name>JWTProvider</name>
<enabled>true</enabled>
<param>
<name>knox.token.exp.server-managed</name>
<value>true</value>
</param>
</provider>
</gateway>
<service>
<role>HIVE</role>
<url>http://www.blankwebsite.com/</url>
</service>
</topology>
```
Generated normal and impersonated token.
Tested both of them with curl request, disabled/enabled, revoked them.
I have also done some manual testing using the knox ui pages:
Token-management:
* generated normal token
* generated impersonated token
* disabled impersonation
* set server-managed to false
* disabled and revoked the created tokens
Token-generation:
* set server-managed to true and false
* set impersonation to true and false
* set lifespan.input.enabled to true and false
* tried to generate token over the max lifespan limit
* generated tokens until reached token limit
* authenticated with a generated token
Homepage:
* Tried the links
* Mouse on service name -> description shows up
* When UI services are clicked they navigate to UI URL
* When API services are clicked description shows up
* Dropdown menus open and close
* New topologies appear under the topologies menu
Admin-ui:
* Created, deleted, modified service definitions
* Created, deleted, modified provider configuration
* Created, deleted, modified descriptor
* Copied, deleted, modified topology
WebShell-UI:
* Configured webshell and link appeared on homepage
* Signed in to knox with the user tom (who is a user on my local computer) and was able to connect to my computer
Issue Time Tracking
-------------------
Worklog Id: (was: 830675)
Remaining Estimate: 0h
Time Spent: 10m
> Take care of existing java upgrades by dependabot
> -------------------------------------------------
>
> Key: KNOX-2850
> URL: https://issues.apache.org/jira/browse/KNOX-2850
> Project: Apache Knox
> Issue Type: Task
> Components: Server
> Reporter: Sandor Molnar
> Assignee: Marton Balázs
> Priority: Major
> Attachments: Screenshot 2022-12-01 at 11.22.23.png
>
> Time Spent: 10m
> Remaining Estimate: 0h
>
> Similarly to KNOX-2834, there is a list of Java upgrades indicated by Apache's {{dependabot}} which we need to upgrade in Knox (see attached screenshot).
> Please upgrade them as listed and conduct a decent level of testing.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)