From 0436de6184c1a95d463da52929e3bf60923d6e04 Mon Sep 17 00:00:00 2001
From: Thomas Lenz <thomas.lenz@egiz.gv.at>
Date: Mon, 13 Dec 2021 09:23:09 +0100
Subject: update third-party libs and resolve API issues

---
 .../validation/FormularCustomizationValitator.java | 284 +++++++++++----------
 1 file changed, 145 insertions(+), 139 deletions(-)

(limited to 'id/ConfigWebTool/src/main/java/at/gv/egovernment/moa/id/configuration/validation/FormularCustomizationValitator.java')

diff --git a/id/ConfigWebTool/src/main/java/at/gv/egovernment/moa/id/configuration/validation/FormularCustomizationValitator.java b/id/ConfigWebTool/src/main/java/at/gv/egovernment/moa/id/configuration/validation/FormularCustomizationValitator.java
index 4ef4bc762..318492e66 100644
--- a/id/ConfigWebTool/src/main/java/at/gv/egovernment/moa/id/configuration/validation/FormularCustomizationValitator.java
+++ b/id/ConfigWebTool/src/main/java/at/gv/egovernment/moa/id/configuration/validation/FormularCustomizationValitator.java
@@ -27,149 +27,155 @@ import java.util.List;
 
 import javax.servlet.http.HttpServletRequest;
 
-import org.apache.log4j.Logger;
-
 import at.gv.egovernment.moa.id.commons.validation.ValidationHelper;
 import at.gv.egovernment.moa.id.configuration.data.FormularCustomization;
 import at.gv.egovernment.moa.id.configuration.helper.LanguageHelper;
 import at.gv.egovernment.moa.util.MiscUtil;
+import lombok.extern.slf4j.Slf4j;
 
+@Slf4j
 public class FormularCustomizationValitator {
-	
-	private static final Logger log = Logger.getLogger(FormularCustomizationValitator.class);
-	
-	public List<String> validate(FormularCustomization form, HttpServletRequest request) {
-		
-		List<String> errors = new ArrayList<String>();
-		String check;
-		
-		if (form.isOnlyMandateAllowed() && !form.isShowMandateLoginButton()) {
-			log.warn("OnlyMandateAllowed in combination with hidden MandateLoginCheckbox is not possible.");
-			errors.add(LanguageHelper.getErrorString("validation.general.bkuselection.specialfeatures.combination", request));
-		}
-		
-		check = form.getBackGroundColor();
-		if (MiscUtil.isNotEmpty(check)) {
-			if (!check.startsWith("#"))
-				check = "#" + check;
-			
-			if (!ValidationHelper.isValidHexValue(check)) {
-				log.warn("BKUSelectionBackGroundColor is not a valid hex value " + check);
-				errors.add(LanguageHelper.getErrorString("validation.general.form.color.background", request));
-			}
-		}
-		
-		check = form.getFrontColor();
-		if (MiscUtil.isNotEmpty(check)) {
-			if (!check.startsWith("#"))
-				check = "#" + check;
-			
-			if (!ValidationHelper.isValidHexValue(check)) {
-				log.warn("BKUSelectionFrontColor is not a valid hex value " + check);
-				errors.add(LanguageHelper.getErrorString("validation.general.form.color.front", request));
-			}
-		}
-		
-		check = form.getHeader_BackGroundColor();
-		if (MiscUtil.isNotEmpty(check)) {
-			if (!check.startsWith("#"))
-				check = "#" + check;
-			
-			if (!ValidationHelper.isValidHexValue(check)) {
-				log.warn("HeaderBackGroundColor is not a valid hex value " + check);
-				errors.add(LanguageHelper.getErrorString("validation.general.form.header.color.back", request));
-			}
-		}
-		
-		check = form.getHeader_FrontColor();
-		if (MiscUtil.isNotEmpty(check)) {
-			if (!check.startsWith("#"))
-				check = "#" + check;
-			
-			if (!ValidationHelper.isValidHexValue(check)) {
-				log.warn("HeaderFrontColor is not a valid hex value " + check);
-				errors.add(LanguageHelper.getErrorString("validation.general.form.header.color.front", request));
-			}
-		}
-		
-		check = form.getHeader_text();
-		if (MiscUtil.isNotEmpty(check)) {			
-			if (ValidationHelper.containsNotValidCharacter(check, false)) {
-				log.warn("HeaderText contains potentail XSS characters: " + check);
-				errors.add(LanguageHelper.getErrorString("validation.general.form.header.text", 
-						new Object[] {ValidationHelper.getNotValidCharacter(false)}, request ));
-			}
-		}
-
-		check = form.getButton_BackGroundColor();
-		if (MiscUtil.isNotEmpty(check)) {
-			if (!check.startsWith("#"))
-				check = "#" + check;
-			
-			if (!ValidationHelper.isValidHexValue(check)) {
-				log.warn("ButtonBackGroundColor is not a valid hex value " + check);
-				errors.add(LanguageHelper.getErrorString("validation.general.form.button.color.back", request));
-			}
-		}
-		
-		check = form.getButton_BackGroundColorFocus();
-		if (MiscUtil.isNotEmpty(check)) {
-			if (!check.startsWith("#"))
-				check = "#" + check;
-			
-			if (!ValidationHelper.isValidHexValue(check)) {
-				log.warn("ButtonBackGroundColorFocus is not a valid hex value " + check);
-				errors.add(LanguageHelper.getErrorString("validation.general.form.button.color.back.focus", request));
-			}
-		}
-		
-		check = form.getButton_FrontColor();
-		if (MiscUtil.isNotEmpty(check)) {
-			if (!check.startsWith("#"))
-				check = "#" + check;
-			
-			if (!ValidationHelper.isValidHexValue(check)) {
-				log.warn("ButtonFrontColor is not a valid hex value " + check);
-				errors.add(LanguageHelper.getErrorString("validation.general.form.button.color.front", request));
-			}
-		}
-		
-		check = form.getAppletRedirectTarget();
-		if (MiscUtil.isNotEmpty(check)) {
-			if (!FormularCustomization.appletRedirectTargetList.contains(check)) {
-				log.warn("AppletRedirectTarget has not valid value " + check);
-				errors.add(LanguageHelper.getErrorString("validation.general.form.appletredirecttarget", request));
-			}
-		}
-		
-		check = form.getFontType();
-		if (MiscUtil.isNotEmpty(check)) {			
-			if (ValidationHelper.containsNotValidCharacter(check, true)) {
-				log.warn("FontType contains potentail XSS characters: " + check);
-				errors.add(LanguageHelper.getErrorString("validation.general.form.fonttype", 
-						new Object[] {ValidationHelper.getNotValidCharacter(true)}, request ));
-			}
-		}
-		
-		check = form.getApplet_height();
-		if (MiscUtil.isNotEmpty(check)) {
-			if (!ValidationHelper.validateNumber(check)) {
-				log.warn("Applet height "+ check + " is no valid number");
-				errors.add(LanguageHelper.getErrorString("validation.general.form.applet.height", 
-						new Object[] {ValidationHelper.getNotValidCharacter(true)}, request ));
-			}			
-		}
-		
-		check = form.getApplet_width();
-		if (MiscUtil.isNotEmpty(check)) {
-			if (!ValidationHelper.validateNumber(check)) {
-				log.warn("Applet width "+ check + " is no valid number");
-				errors.add(LanguageHelper.getErrorString("validation.general.form.applet.width", 
-						new Object[] {ValidationHelper.getNotValidCharacter(true)}, request ));
-			}			
-		}
-		
-		return errors;
-		
-	}
+
+  public List<String> validate(FormularCustomization form, HttpServletRequest request) {
+
+    final List<String> errors = new ArrayList<>();
+    String check;
+
+    if (form.isOnlyMandateAllowed() && !form.isShowMandateLoginButton()) {
+      log.warn("OnlyMandateAllowed in combination with hidden MandateLoginCheckbox is not possible.");
+      errors.add(LanguageHelper.getErrorString("validation.general.bkuselection.specialfeatures.combination",
+          request));
+    }
+
+    check = form.getBackGroundColor();
+    if (MiscUtil.isNotEmpty(check)) {
+      if (!check.startsWith("#")) {
+        check = "#" + check;
+      }
+
+      if (!ValidationHelper.isValidHexValue(check)) {
+        log.warn("BKUSelectionBackGroundColor is not a valid hex value " + check);
+        errors.add(LanguageHelper.getErrorString("validation.general.form.color.background", request));
+      }
+    }
+
+    check = form.getFrontColor();
+    if (MiscUtil.isNotEmpty(check)) {
+      if (!check.startsWith("#")) {
+        check = "#" + check;
+      }
+
+      if (!ValidationHelper.isValidHexValue(check)) {
+        log.warn("BKUSelectionFrontColor is not a valid hex value " + check);
+        errors.add(LanguageHelper.getErrorString("validation.general.form.color.front", request));
+      }
+    }
+
+    check = form.getHeader_BackGroundColor();
+    if (MiscUtil.isNotEmpty(check)) {
+      if (!check.startsWith("#")) {
+        check = "#" + check;
+      }
+
+      if (!ValidationHelper.isValidHexValue(check)) {
+        log.warn("HeaderBackGroundColor is not a valid hex value " + check);
+        errors.add(LanguageHelper.getErrorString("validation.general.form.header.color.back", request));
+      }
+    }
+
+    check = form.getHeader_FrontColor();
+    if (MiscUtil.isNotEmpty(check)) {
+      if (!check.startsWith("#")) {
+        check = "#" + check;
+      }
+
+      if (!ValidationHelper.isValidHexValue(check)) {
+        log.warn("HeaderFrontColor is not a valid hex value " + check);
+        errors.add(LanguageHelper.getErrorString("validation.general.form.header.color.front", request));
+      }
+    }
+
+    check = form.getHeader_text();
+    if (MiscUtil.isNotEmpty(check)) {
+      if (ValidationHelper.containsNotValidCharacter(check, false)) {
+        log.warn("HeaderText contains potentail XSS characters: " + check);
+        errors.add(LanguageHelper.getErrorString("validation.general.form.header.text",
+            new Object[] { ValidationHelper.getNotValidCharacter(false) }, request));
+      }
+    }
+
+    check = form.getButton_BackGroundColor();
+    if (MiscUtil.isNotEmpty(check)) {
+      if (!check.startsWith("#")) {
+        check = "#" + check;
+      }
+
+      if (!ValidationHelper.isValidHexValue(check)) {
+        log.warn("ButtonBackGroundColor is not a valid hex value " + check);
+        errors.add(LanguageHelper.getErrorString("validation.general.form.button.color.back", request));
+      }
+    }
+
+    check = form.getButton_BackGroundColorFocus();
+    if (MiscUtil.isNotEmpty(check)) {
+      if (!check.startsWith("#")) {
+        check = "#" + check;
+      }
+
+      if (!ValidationHelper.isValidHexValue(check)) {
+        log.warn("ButtonBackGroundColorFocus is not a valid hex value " + check);
+        errors.add(LanguageHelper.getErrorString("validation.general.form.button.color.back.focus", request));
+      }
+    }
+
+    check = form.getButton_FrontColor();
+    if (MiscUtil.isNotEmpty(check)) {
+      if (!check.startsWith("#")) {
+        check = "#" + check;
+      }
+
+      if (!ValidationHelper.isValidHexValue(check)) {
+        log.warn("ButtonFrontColor is not a valid hex value " + check);
+        errors.add(LanguageHelper.getErrorString("validation.general.form.button.color.front", request));
+      }
+    }
+
+    check = form.getAppletRedirectTarget();
+    if (MiscUtil.isNotEmpty(check)) {
+      if (!FormularCustomization.appletRedirectTargetList.contains(check)) {
+        log.warn("AppletRedirectTarget has not valid value " + check);
+        errors.add(LanguageHelper.getErrorString("validation.general.form.appletredirecttarget", request));
+      }
+    }
+
+    check = form.getFontType();
+    if (MiscUtil.isNotEmpty(check)) {
+      if (ValidationHelper.containsNotValidCharacter(check, true)) {
+        log.warn("FontType contains potentail XSS characters: " + check);
+        errors.add(LanguageHelper.getErrorString("validation.general.form.fonttype",
+            new Object[] { ValidationHelper.getNotValidCharacter(true) }, request));
+      }
+    }
+
+    check = form.getApplet_height();
+    if (MiscUtil.isNotEmpty(check)) {
+      if (!ValidationHelper.validateNumber(check)) {
+        log.warn("Applet height " + check + " is no valid number");
+        errors.add(LanguageHelper.getErrorString("validation.general.form.applet.height",
+            new Object[] { ValidationHelper.getNotValidCharacter(true) }, request));
+      }
+    }
+
+    check = form.getApplet_width();
+    if (MiscUtil.isNotEmpty(check)) {
+      if (!ValidationHelper.validateNumber(check)) {
+        log.warn("Applet width " + check + " is no valid number");
+        errors.add(LanguageHelper.getErrorString("validation.general.form.applet.width",
+            new Object[] { ValidationHelper.getNotValidCharacter(true) }, request));
+      }
+    }
+
+    return errors;
+
+  }
 }
-- 
cgit v1.2.3