Security Misconfiguration examples

AndriiPiatakha · AndriiPiatakha · commit 3923c25813df · 2022-06-08T21:43:17.000+03:00
diff --git a/online-store.web/pom.xml b/online-store.web/pom.xml
@@ -40,6 +40,13 @@
 			<scope>provided</scope>
 		</dependency>
 
+		<dependency>
+			<groupId>jakarta.annotation</groupId>
+			<artifactId>jakarta.annotation-api</artifactId>
+			<version>2.1.0</version>
+		</dependency>
+
+
 	</dependencies>
 
 	<build>
diff --git a/online-store.web/src/main/java/com/itbulls/learnit/onlinestore/web/owasp/sm/problem/SignInServlet.java b/online-store.web/src/main/java/com/itbulls/learnit/onlinestore/web/owasp/sm/problem/SignInServlet.java
@@ -0,0 +1,54 @@
+package com.itbulls.learnit.onlinestore.web.owasp.sm.problem;
+
+import static com.itbulls.learnit.onlinestore.persistence.dto.RoleDto.*;
+
+import jakarta.servlet.http.HttpServlet;
+import java.io.IOException;
+
+import com.itbulls.learnit.onlinestore.core.facades.UserFacade;
+import com.itbulls.learnit.onlinestore.core.facades.impl.DefaultUserFacade;
+import com.itbulls.learnit.onlinestore.persistence.enteties.User;
+import com.itbulls.learnit.onlinestore.web.Configurations;
+
+import jakarta.servlet.ServletException;
+import jakarta.servlet.annotation.WebServlet;
+import jakarta.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletResponse;
+
+@WebServlet("/signin-security-misconfiguration")
+public class SignInServlet extends HttpServlet {
+	
+	public static final String LOGGED_IN_USER_ATTR = "loggedInUser";
+	
+	private UserFacade userFacade = DefaultUserFacade.getInstance();
+	
+	
+	@Override
+	protected void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
+		request.getRequestDispatcher(Configurations.VIEWS_PATH_RESOLVER 
+				+ "signin-with-error-in-console.jsp").forward(request, response);
+	}
+
+
+	protected void doPost(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
+		User user = userFacade.getUserByEmail(request.getParameter("email"));
+		String baseUrl = request.getScheme()
+			      + "://"
+			      + request.getServerName()
+			      + ":"
+			      + request.getServerPort()
+			      + request.getServletContext().getContextPath();
+		if (user != null && user.getPassword().equals(request.getParameter("password"))) {
+			request.getSession().setAttribute(LOGGED_IN_USER_ATTR, user);
+			if (user.getRoleName().equals(ADMIN_ROLE_NAME)) {
+				response.sendRedirect(baseUrl + "/admin/panel");
+			} else {
+				response.sendRedirect(baseUrl + "/homepage");
+			}
+		} else {
+			response.sendRedirect(baseUrl + "/signin-security-misconfiguration");
+		}
+		
+	}
+
+}
diff --git a/online-store.web/src/main/webapp/META-INF/context.xml b/online-store.web/src/main/webapp/META-INF/context.xml
@@ -1,5 +1,5 @@
 <?xml version="1.0" encoding="UTF-8"?>
-<context useHttpOnly="false">
+<Context useHttpOnly="false">
   
 
     <Resource name="jdbc/connpool" 
@@ -41,4 +41,4 @@
     <!-- url: The JDBC connection url for connecting to your MySQL database.
          -->
 
-</context>
+</Context>
diff --git a/online-store.web/src/main/webapp/WEB-INF/views/signin-with-error-in-console.jsp b/online-store.web/src/main/webapp/WEB-INF/views/signin-with-error-in-console.jsp
@@ -0,0 +1,71 @@
+<%@ taglib prefix="shop" tagdir="/WEB-INF/tags/shop"%>
+<!DOCTYPE html>
+<html lang="en">
+<head>
+	<title>Sign In</title>
+	<meta charset="UTF-8">
+	<meta name="viewport" content="width=device-width, initial-scale=1">
+	
+	<shop:css-imports-main/>
+	<shop:css-imports-signin/>
+</head>
+<body>
+
+	<shop:header/>
+	
+	<div class="limiter">
+		<div class="container-login100">
+			<div class="wrap-login100">
+				<form class="login100-form validate-form" action="signin-security-misconfiguration" method="POST">
+					<span class="login100-form-title p-b-26">
+						Welcome
+					</span>
+
+					<div class="wrap-input100 validate-input" data-validate = "Valid email is: a@b.c">
+						<input class="input100" type="text" name="email">
+						<span class="focus-input100" data-placeholder="Email"></span>
+					</div>
+
+					<div class="wrap-input100 validate-input" data-validate="Enter password">
+						<span class="btn-show-pass">
+							<i class="zmdi zmdi-eye"></i>
+						</span>
+						<input class="input100" type="password" name="password">
+						<span class="focus-input100" data-placeholder="Password"></span>
+					</div>
+
+					<div class="container-login100-form-btn">
+						<div class="wrap-login100-form-btn">
+							<div class="login100-form-bgbtn"></div>
+							<button id="sign-in-btn" class="login100-form-btn">
+								Sign In
+							</button>
+						</div>
+					</div>
+
+					<div class="text-center p-t-115">
+						<span class="txt1">
+							Don't have an account?
+						</span>
+
+						<a class="txt2" href="signup">
+							Sign Up
+						</a>
+					</div>
+				</form>
+			</div>
+		</div>
+	</div>
+	
+	<shop:footer/>
+	<shop:js-imports-signin/>
+
+	<script type="text/javascript">
+		$('#sign-in-btn').click(function(event) {
+			event.preventDefault();
+			// this code is for the demo and example purposes only. It prints hardcoded values just for the sake of example
+			console.log('Password "testtest*asd" for user {email: "manager@manager.com", password: "testtest*"} is not correct');
+		});
+	</script>
+</body>
+</html>
