Asiel Leal Celdeiro

icon indicating a website link https://lealceldeiro.com/

icon company lealceldeiro.com icon location Europe (UTC+2) icon location Software Engineer with extensive professional work experience in the IT field, devoted to software development and new technologies.

Results 13 issues of Asiel Leal Celdeiro

Add capability for setting the class for a low|moderate|high password strength

Add new addition parameter in order to allow user to set classes used to indicate a low|moderate|high password strength, and not just use the 'danger', 'warning' and 'success' default classes...

Use orm metamodel when querying DB.

**Is your feature request related to a problem? Please describe.** In classes such as `PostgreSQLBAuthorizationDAO`, when querying the DB, the arguments for the entity field names are being hardcoded, i.e.:...

enhancement
server
investigation

Return hateoas resource from all endpoints that currently do not support them.

**Is your feature request related to a problem? Please describe.** By default, all resources automatically managed by Spring when `org.springframework.boot:spring-boot-starter-hateoas` is present in the application are returned (on creation, for...

enhancement
server

Consider not storing sensitive information on LocalStorage if the tradeoff pays off

1 comment

**Describe the bug** Sensitive information stored in the local-storage [can be stolen by using an XSS attack](https://michael-coates.blogspot.com/2010/07/html5-local-storage-and-xss.html) **To Reproduce** - Follow attack demos in the linked source **Expected behavior** Do...

bug
client

Message resolver not resolving messages properly

1 comment

**Describe the bug** The messages associated to their keys are not being resolved properly. **To Reproduce** 1. Make a `POST` request to the `login` endpoint with an incorrect credentialas 2....

bug
server

Investigate incompatibility issues between @Data and @Entity

**Describe the bug** Check incompatiblity issues between @Data (from lombok) and @Entity from Hibernate **To Reproduce** - Needs investigation **Expected behavior** - No incompatibility issues.

Remove resources under client/src/app/shared/test-util from bundled resources

**Is your feature request related to a problem? Please describe.** No, but if this is not automatically removed by the tree-shake, the bundle could be some kb more than needed....

enhancement
client
investigation

Replace with proper status logic for calling userService.signUp in RestUserController > register

**Is your feature request related to a problem? Please describe.** For example, in the current logic, something like ``` EUser u = userService.signUp( user.getContent(), UserService.EmailStatus.VERIFIED, UserService.RegistrationPrivilege.SUPER_USER ); ``` the third...

enhancement
server

Eliminate if possible implementation (indirectly or directly) from own classes to `Serializable`

Some classes which extend `Serializable` may be serialized and deserialized, compromising security. Some example of these classes are `BAuthorization` and `GmsEntity` (and all other extending from it such as `EUser`)....

enhancement
server
investigation

Replace obsolete date-time type java.util.Date

Replace all usages of `java.util.Date` in the whole codebase. Some examples of classes using this are: `JWTService`, `JWTAuthenticationFilter`, `SecurityController`

bug
enhancement
client
server
investigation