Pekka Helenius
|
e3a5673114
|
Prevent unauthorized access to book data even if hash id is known
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
81da9d96d8
|
Add missing descriptions
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
3b3f3aba10
|
Add missing publish parameter for pre-defined book entity objects
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
db835dd753
|
Change publish attribute data type to boolean
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
eeaff918ae
|
Edit book form: add authority check
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
cc81dbeb58
|
Update admin perms description; Update REST API help reference guide
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
76129f6909
|
Differentiate REST API web security from Web Form security; HttpSecurity
additions
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
b6b9b2a25d
|
Change BOOK to Book in HQL query
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
292492fa96
|
Minor updates
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
84f58b706e
|
Rename method: updateWithoutPrice -> updateWithoutPriceAndWithoutPublish
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
a176f7b1b3
|
Simplify access control annotations, based on Spring docs
Ref: https://docs.spring.io/spring-security/site/docs/4.2.x/reference/html/el-access.html
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
1c91b1de3e
|
Add missing CSS styles
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
44fef19cf2
|
Add web form data fields related to book publication
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
570b3be536
|
Add CSS styles for plain HTML editing
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
1aca859270
|
Update permission descriptions; add CSS styles
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
68a0f373cb
|
Return different book JSON based on user login data & book publish
status
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
1651eae80c
|
Implement findAllPublished method for BookRepository
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
486ec6a108
|
Implement publish attribute
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
818dd57e8c
|
Update BookController: add Security config; add updateWithoutPrice
method; minor fixes
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
28d42eff87
|
Extend BookRepository interface; implement updateWithoutPrice method
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
45865a7e5f
|
Implement WebSecurityConfig
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
566e775e58
|
Implement UserDetailServiceImpl
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
317a82b74f
|
Implement BookStoreAccessDeniedHandler
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
5e64570c56
|
Implement userDatabaseRunner with example data
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
2fdc2e3236
|
Update Bookstore CSS styles
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
845d2d80a5
|
Re-format web forms: add authentication functionality, add Thymeleaf
security, introduce fragments
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
7c51eb38ca
|
Implement authentication (& authorization) properties: user & roles
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
6c5bde3516
|
Remove unnecessary 'public' access modifier
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
ecc7305942
|
Add images resource folder
|
4 years ago |
Pekka Helenius
|
d2d7050f21
|
Model rebase: book properties
|
4 years ago |
Pekka Helenius
|
64db7a082f
|
Partial rebase of controller logic
|
4 years ago |
Pekka Helenius
|
cff0480d76
|
Update messages & REST API help reference page
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
57e68f6e79
|
Author's first & last name: capitalize the first letter
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
73960c2b17
|
Update REST API help reference page
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
16db45f529
|
Allow more flexibility when adding book authors
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
d9f674e4d8
|
Prefer absolute URI for book list page; minor form update
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
01769f8ad6
|
Improve controller logic
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
e48ed4dc2b
|
Update REST api help reference page
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
cccbaf56e5
|
REST API: improve searching scheme
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
0de9d8ae64
|
REST API: do not expose/export book hashes
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
f1fa35b122
|
Minor form update
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
d358dbcace
|
Update edit form code. Handle error situations better
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
c18129253e
|
Minor update
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
4baea10349
|
Update JSON naming scheme
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
58a6fe23f2
|
Update REST API reference help page
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
c0c49f80fb
|
Implement custom PUT/update method for REST API; improve class structure
Support for nested JSON book data
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
cbec5eaf48
|
Add missing descriptions
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
584cee7755
|
Book's nested JSON entries & REST API (POST): Implement support
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
b16266eb69
|
Create BookAuthorHelper class for handling author-related operations
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |
Pekka Helenius
|
cec4117a9e
|
Change comment placement
Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
|
4 years ago |