richardy2012
diff --git a/‎3rdPartyLicenses.md‎
Lines changed: 1 addition & 1 deletion b/‎3rdPartyLicenses.md‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎pom.xml‎
Lines changed: 3 additions & 3 deletions b/‎pom.xml‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎src/main/java/com/keybox/common/db/DBInitServlet.java‎
Lines changed: 3 additions & 2 deletions b/‎src/main/java/com/keybox/common/db/DBInitServlet.java‎
Lines changed: 3 additions & 2 deletions
diff --git a/‎src/main/java/com/keybox/manage/action/LoginAction.java‎
Lines changed: 1 addition & 61 deletions b/‎src/main/java/com/keybox/manage/action/LoginAction.java‎
Lines changed: 1 addition & 61 deletions
diff --git a/‎src/main/java/com/keybox/manage/action/SecureShellAction.java‎
Lines changed: 79 additions & 37 deletions b/‎src/main/java/com/keybox/manage/action/SecureShellAction.java‎
Lines changed: 79 additions & 37 deletions
diff --git a/‎src/main/java/com/keybox/manage/action/SessionAuditAction.java‎
Lines changed: 6 additions & 8 deletions b/‎src/main/java/com/keybox/manage/action/SessionAuditAction.java‎
Lines changed: 6 additions & 8 deletions
@@ -25,6 +25,6 @@ jQuery : MIT License - jQuery Foundation, Inc.
 
 jQueryUI : MIT License - jQuery Foundation, Inc.
 
-jQuery Tablescroll : MIT License - Dimas Begunoff
+jquery.floatThead : MIT License - Misha Koryak
 
 term.js : MIT License - Christopher Jeffrey
@@ -4,7 +4,7 @@
     <modelVersion>4.0.0</modelVersion>
     <groupId>com.keybox</groupId>
     <artifactId>keybox</artifactId>
-    <version>2.81.00-SNAPSHOT</version>
+    <version>2.82.00</version>
     <packaging>war</packaging>
     <name>KeyBox</name>
     <properties>
@@ -24,7 +24,7 @@
         <dependency>
             <groupId>com.h2database</groupId>
             <artifactId>h2</artifactId>
-            <version>1.4.185</version>
+            <version>1.4.186</version>
         </dependency>
         <dependency>
             <groupId>com.jcraft</groupId>
@@ -108,7 +108,7 @@
             <plugin>
                 <groupId>org.eclipse.jetty</groupId>
                 <artifactId>jetty-maven-plugin</artifactId>
-                <version>9.2.9.v20150224</version>
+                <version>9.2.10.v20150310</version>
                 <configuration>
                     <jettyXml>${basedir}/src/test/resources/jetty.xml,${basedir}/src/test/resources/jetty-ssl.xml,${basedir}/src/test/resources/jetty-https.xml</jettyXml>
                     <scanIntervalSeconds>-1</scanIntervalSeconds>
 
@@ -61,7 +61,8 @@ public void init(ServletConfig config) throws ServletException {
 			if (rs == null || !rs.next()) {
 				resetSSHKey = true;
 				statement.executeUpdate("create table if not exists users (id INTEGER PRIMARY KEY AUTO_INCREMENT, first_nm varchar, last_nm varchar, email varchar, username varchar not null, password varchar, auth_token varchar, enabled boolean not null default true, auth_type varchar not null default '" + Auth.AUTH_BASIC+ "', user_type varchar not null default '" + Auth.ADMINISTRATOR + "', salt varchar, otp_secret varchar)");
-
+				
+				statement.executeUpdate("create table if not exists user_theme (user_id INTEGER PRIMARY KEY, bg varchar(7), fg varchar(7), d1 varchar(7), d2 varchar(7), d3 varchar(7), d4 varchar(7), d5 varchar(7), d6 varchar(7), d7 varchar(7), d8 varchar(7), b1 varchar(7), b2 varchar(7), b3 varchar(7), b4 varchar(7), b5 varchar(7), b6 varchar(7), b7 varchar(7), b8 varchar(7), foreign key (user_id) references users(id) on delete cascade) ");
 
 				statement.executeUpdate("create table if not exists system (id INTEGER PRIMARY KEY AUTO_INCREMENT, display_nm varchar not null, user varchar not null, host varchar not null, port INTEGER not null, authorized_keys varchar not null, status_cd varchar not null default 'INITIAL')");
 				statement.executeUpdate("create table if not exists profiles (id INTEGER PRIMARY KEY AUTO_INCREMENT, nm varchar not null, desc varchar not null)");
@@ -76,7 +77,7 @@ public void init(ServletConfig config) throws ServletException {
 				statement.executeUpdate("create table if not exists public_keys (id INTEGER PRIMARY KEY AUTO_INCREMENT, key_nm varchar not null, type varchar, fingerprint varchar, public_key varchar, enabled boolean not null default true, create_dt timestamp not null default CURRENT_TIMESTAMP(),  user_id INTEGER, profile_id INTEGER, foreign key (profile_id) references profiles(id) on delete cascade, foreign key (user_id) references users(id) on delete cascade)");
 
 				statement.executeUpdate("create table if not exists session_log (id BIGINT PRIMARY KEY AUTO_INCREMENT, user_id INTEGER, session_tm timestamp default CURRENT_TIMESTAMP, foreign key (user_id) references users(id) on delete cascade )");
-				statement.executeUpdate("create table if not exists terminal_log (session_id BIGINT, system_id INTEGER, output varchar not null, log_tm timestamp default CURRENT_TIMESTAMP, foreign key (session_id) references session_log(id) on delete cascade, foreign key (system_id) references system(id) on delete cascade)");
+				statement.executeUpdate("create table if not exists terminal_log (session_id BIGINT, instance_id INTEGER, system_id INTEGER, output varchar not null, log_tm timestamp default CURRENT_TIMESTAMP, foreign key (session_id) references session_log(id) on delete cascade, foreign key (system_id) references system(id) on delete cascade)");
 
 				//insert default admin user
 				String salt = EncryptionUtil.generateSalt();
 
@@ -70,7 +70,7 @@ public String menu() {
     @Action(value = "/loginSubmit",
             results = {
                     @Result(name = "input", location = "/login.jsp"),
-                    @Result(name = "change_password", location = "/admin/setPassword.action", type = "redirect"),
+                    @Result(name = "change_password", location = "/admin/userSettings.action", type = "redirect"),
                     @Result(name = "otp", location = "/admin/viewOTP.action", type = "redirect"),
                     @Result(name = "success", location = "/admin/menu.action", type = "redirect")
             }
@@ -130,46 +130,6 @@ public String logout() {
         return SUCCESS;
     }
 
-    @Action(value = "/admin/setPassword",
-            results = {
-                    @Result(name = "success", location = "/admin/set_password.jsp")
-            }
-    )
-    public String setPassword() {
-
-        return SUCCESS;
-    }
-
-    @Action(value = "/admin/passwordSubmit",
-            results = {
-                    @Result(name = "input", location = "/admin/set_password.jsp"),
-                    @Result(name = "success", location = "/admin/menu.action", type = "redirect")
-            }
-    )
-    public String passwordSubmit() {
-        String retVal = INPUT;
-        
-        if (!auth.getPassword().equals(auth.getPasswordConfirm())) {
-            addActionError("Passwords do not match");
-
-        } else if(!PasswordUtil.isValid(auth.getPassword())){
-            addActionError(PasswordUtil.PASSWORD_REQ_ERROR_MSG);
-            
-        } else {
-            auth.setAuthToken(AuthUtil.getAuthToken(servletRequest.getSession()));
-
-            if (AuthDB.updatePassword(auth)) {
-                retVal=SUCCESS;
-            }else{
-                addActionError("Current password is invalid");
-            }
-        }
-
-
-        return retVal;
-    }
-
-
     /**
      * Validates fields for auth submit
      */
@@ -187,26 +147,6 @@ public void validateLoginSubmit() {
     }
 
 
-    /**
-     * Validates fields for password submit
-     */
-    public void validatePasswordSubmit() {
-        if (auth.getPassword() == null ||
-                auth.getPassword().trim().equals("")) {
-            addFieldError("auth.password", "Required");
-        }
-        if (auth.getPasswordConfirm() == null ||
-                auth.getPasswordConfirm().trim().equals("")) {
-            addFieldError("auth.passwordConfirm", "Required");
-        }
-        if (auth.getPrevPassword() == null ||
-                auth.getPrevPassword().trim().equals("")) {
-            addFieldError("auth.prevPassword", "Required");
-        }
-
-
-    }
-
     public boolean isOtpEnabled() {
         return otpEnabled;
     }
 
@@ -15,10 +15,12 @@
  */
 package com.keybox.manage.action;
 
+import com.google.gson.Gson;
 import com.jcraft.jsch.ChannelShell;
 import com.keybox.common.util.AuthUtil;
 import com.keybox.manage.db.*;
 import com.keybox.manage.model.*;
+import com.keybox.manage.model.SortedSet;
 import com.keybox.manage.util.SSHUtil;
 import com.opensymphony.xwork2.ActionSupport;
 import org.apache.struts2.convention.annotation.Action;
@@ -47,10 +49,10 @@ public class SecureShellAction extends ActionSupport implements ServletRequestAw
     HostSystem pendingSystemStatus;
     String password;
     String passphrase;
-    Long id;
+    Integer id;
     List<HostSystem> systemList = new ArrayList<HostSystem>();
-    Integer ptyWidth;
-    Integer ptyHeight;
+    List<HostSystem> allocatedSystemList = new ArrayList<HostSystem>();
+    UserSettings userSettings;
 
     static Map<Long, UserSchSessions> userSchSessionMap = new ConcurrentHashMap<Long, UserSchSessions>();
 
@@ -108,6 +110,21 @@ public String createTerms() {
         //set system list if no pending systems
         if (SystemStatusDB.getNextPendingSystem(userId) == null) {
             setSystemList(userId, sessionId);
+            
+            //set allocated systems for connect to
+            SortedSet sortedSet=new SortedSet();
+            sortedSet.setOrderByField(SystemDB.SORT_BY_NAME);
+            if (Auth.MANAGER.equals(AuthUtil.getUserType(servletRequest.getSession()))) {
+                sortedSet=SystemDB.getSystemSet(sortedSet);
+            } else {
+                sortedSet=SystemDB.getUserSystemSet(sortedSet, userId);
+            }
+            if(sortedSet!=null && sortedSet.getItemList()!=null) {
+                allocatedSystemList = (List<HostSystem>) sortedSet.getItemList();
+            }
+            //set theme
+            this.userSettings =UserThemeDB.getTheme(userId);
+
         }
 
 
@@ -149,15 +166,10 @@ public String selectSystemsForCompositeTerms() {
 
 
         Long userId = AuthUtil.getUserId(servletRequest.getSession());
-        //exit any previous terms
-        exitTerms();
+
         if (systemSelectId != null && !systemSelectId.isEmpty()) {
-            //check to see if user has perms to access selected systems
-            if (!Auth.MANAGER.equals(AuthUtil.getUserType(servletRequest.getSession()))) {
-                systemSelectId = SystemDB.checkSystemPerms(systemSelectId, userId);
-            }
 
-            SystemStatusDB.setInitialSystemStatus(systemSelectId, userId);
+            SystemStatusDB.setInitialSystemStatus(systemSelectId, userId, AuthUtil.getUserType(servletRequest.getSession()));
             pendingSystemStatus = SystemStatusDB.getNextPendingSystem(userId);
 
             AuthUtil.setSessionId(servletRequest.getSession(), SessionAuditDB.createSessionLog(userId));
@@ -186,19 +198,27 @@ public String disconnectTerm() {
         if (SecureShellAction.getUserSchSessionMap() != null) {
             UserSchSessions userSchSessions = SecureShellAction.getUserSchSessionMap().get(sessionId);
             if (userSchSessions != null) {
-                SchSession schSession = userSchSessions.getSchSessionMap().get(id);
-
-                //disconnect ssh session
-                schSession.getChannel().disconnect();
-                schSession.getSession().disconnect();
-                schSession.setChannel(null);
-                schSession.setSession(null);
-                schSession.setInputToChannel(null);
-                schSession.setCommander(null);
-                schSession.setOutFromChannel(null);
-                schSession = null;
-                //remove from map
-                userSchSessions.getSchSessionMap().remove(id);
+                try {
+                    SchSession schSession = userSchSessions.getSchSessionMap().get(id);
+
+                    //disconnect ssh session
+                    if(schSession!=null) {
+                        if (schSession.getChannel() != null)
+                            schSession.getChannel().disconnect();
+                        if (schSession.getSession() != null)
+                            schSession.getSession().disconnect();
+                        schSession.setChannel(null);
+                        schSession.setSession(null);
+                        schSession.setInputToChannel(null);
+                        schSession.setCommander(null);
+                        schSession.setOutFromChannel(null);
+                        schSession = null;
+                    }
+                    //remove from map
+                    userSchSessions.getSchSessionMap().remove(id);
+                } catch (Exception ex) {
+                    ex.printStackTrace();
+                }
             }
 
 
@@ -208,18 +228,39 @@ public String disconnectTerm() {
         return null;
     }
 
+
+    @Action(value = "/admin/createSession")
+    public String createSession() {
+        
+        Long userId = AuthUtil.getUserId(servletRequest.getSession());
+
+        if (systemSelectId != null && !systemSelectId.isEmpty()) {
+
+            SystemStatusDB.setInitialSystemStatus(systemSelectId, userId, AuthUtil.getUserType(servletRequest.getSession()));
+            
+            pendingSystemStatus = SystemStatusDB.getNextPendingSystem(userId);
+
+            createTerms();
+            
+        }
+
+        return null;
+
+
+    }
+
     @Action(value = "/admin/setPtyType")
     public String setPtyType() {
 
         Long sessionId = AuthUtil.getSessionId(servletRequest.getSession());
         if (SecureShellAction.getUserSchSessionMap() != null) {
             UserSchSessions userSchSessions = SecureShellAction.getUserSchSessionMap().get(sessionId);
-            if (userSchSessions != null && userSchSessions.getSchSessionMap() !=null) {
+            if (userSchSessions != null && userSchSessions.getSchSessionMap() != null) {
 
                 SchSession schSession = userSchSessions.getSchSessionMap().get(id);
 
                 ChannelShell channel = (ChannelShell) schSession.getChannel();
-                channel.setPtySize((int)Math.floor(ptyWidth / 7.2981), (int)Math.floor(ptyHeight / 14.4166), ptyWidth, ptyHeight);
+                channel.setPtySize((int) Math.floor(userSettings.getPtyWidth() / 7.2981), (int) Math.floor(userSettings.getPtyHeight() / 14.4166), userSettings.getPtyWidth(), userSettings.getPtyHeight());
                 schSession.setChannel(channel);
 
             }
@@ -229,6 +270,7 @@ public String setPtyType() {
 
         return null;
     }
+
     /**
      * set system list once all connections have been attempted
      *
@@ -239,10 +281,10 @@ private void setSystemList(Long userId, Long sessionId) {
 
 
         //check user map
-        if (userSchSessionMap != null && !userSchSessionMap.isEmpty() && userSchSessionMap.get(sessionId)!=null) {
+        if (userSchSessionMap != null && !userSchSessionMap.isEmpty() && userSchSessionMap.get(sessionId) != null) {
 
             //get user sessions
-            Map<Long, SchSession> schSessionMap = userSchSessionMap.get(sessionId).getSchSessionMap();
+            Map<Integer, SchSession> schSessionMap = userSchSessionMap.get(sessionId).getSchSessionMap();
 
 
             for (SchSession schSession : schSessionMap.values()) {
@@ -300,11 +342,11 @@ public void setSystemSelectId(List<Long> systemSelectId) {
         this.systemSelectId = systemSelectId;
     }
 
-    public Long getId() {
+    public Integer getId() {
         return id;
     }
 
-    public void setId(Long id) {
+    public void setId(Integer id) {
         this.id = id;
     }
 
@@ -372,20 +414,20 @@ public static void setUserSchSessionMap(Map<Long, UserSchSessions> userSchSessio
         SecureShellAction.userSchSessionMap = userSchSessionMap;
     }
 
-    public Integer getPtyWidth() {
-        return ptyWidth;
+    public List<HostSystem> getAllocatedSystemList() {
+        return allocatedSystemList;
     }
 
-    public void setPtyWidth(Integer ptyWidth) {
-        this.ptyWidth = ptyWidth;
+    public void setAllocatedSystemList(List<HostSystem> allocatedSystemList) {
+        this.allocatedSystemList = allocatedSystemList;
     }
 
-    public Integer getPtyHeight() {
-        return ptyHeight;
+    public UserSettings getUserSettings() {
+        return userSettings;
     }
 
-    public void setPtyHeight(Integer ptyHeight) {
-        this.ptyHeight = ptyHeight;
+    public void setUserSettings(UserSettings userSettings) {
+        this.userSettings = userSettings;
     }
 }
 
 
@@ -38,7 +38,7 @@ public class SessionAuditAction extends ActionSupport implements ServletResponse
 
     SortedSet sortedSet=new SortedSet();
     Long sessionId;
-    Long hostSystemId;
+    Integer instanceId;
     SessionAudit sessionAudit;
     HttpServletResponse servletResponse;
     List<HostSystem> systemList= SystemDB.getSystemSet(new SortedSet(SystemDB.SORT_BY_NAME)).getItemList();
@@ -80,7 +80,7 @@ public String getTermsForSession() {
     @Action(value = "/manage/getJSONTermOutputForSession")
     public String getJSONTermOutputForSession() {
 
-        String json=new Gson().toJson(SessionAuditDB.getTerminalLogsForSession(sessionId, hostSystemId));
+        String json=new Gson().toJson(SessionAuditDB.getTerminalLogsForSession(sessionId, instanceId));
         try {
             servletResponse.getOutputStream().write(json.getBytes());
         } catch (Exception ex) {
@@ -139,13 +139,11 @@ public void setServletResponse(HttpServletResponse servletResponse) {
         this.servletResponse = servletResponse;
     }
 
-    public Long getHostSystemId() {
-        return hostSystemId;
+    public Integer getInstanceId() {
+        return instanceId;
     }
 
-    public void setHostSystemId(Long hostSystemId) {
-        this.hostSystemId = hostSystemId;
+    public void setInstanceId(Integer instanceId) {
+        this.instanceId = instanceId;
     }
-
-
 }