github
/
OpenID-Connect-Java-Spring-Server
mirror of https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

fixed client secret display on dynreg and res reg pages

pull/618/head
Justin Richer 2014-06-09 20:20:58 -04:00
parent e0fe22e4ba
commit 6df68fc97a
4 changed files with 37 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
openid-connect-server-webapp/src/main/webapp/resources/js/dynreg.js
View File

@ -341,7 +341,7 @@ var DynRegEditView = Backbone.View.extend({
logo_uri:$('#logoUri input').val(), logo_uri:$('#logoUri input').val(),
grant_types: grantTypes, grant_types: grantTypes,
scope: scopes, scope: scopes,
client_secret: null, // never send a client secret
tos_uri: $('#tosUri input').val(), tos_uri: $('#tosUri input').val(),
policy_uri: $('#policyUri input').val(), policy_uri: $('#policyUri input').val(),
client_uri: $('#clientUri input').val(), client_uri: $('#clientUri input').val(),

2
openid-connect-server-webapp/src/main/webapp/resources/js/rsreg.js
View File

@ -302,7 +302,7 @@ var ResRegEditView = Backbone.View.extend({
client_name:$('#clientName input').val(), client_name:$('#clientName input').val(),
logo_uri:$('#logoUri input').val(), logo_uri:$('#logoUri input').val(),
scope: scopes, scope: scopes,
client_secret: null, // never send a client secret
tos_uri: $('#tosUri input').val(), tos_uri: $('#tosUri input').val(),
policy_uri: $('#policyUri input').val(), policy_uri: $('#policyUri input').val(),
client_uri: $('#clientUri input').val(), client_uri: $('#clientUri input').val(),

20
openid-connect-server-webapp/src/main/webapp/resources/template/dynreg.html
View File

@ -67,8 +67,8 @@
<div class="control-group"> <div class="control-group">
<div class="controls"> <div class="controls">
<div class="alert alert-error"> <div class="alert alert-error">
<strong>Warning!</strong> You MUST protect your Client ID, Client Secret, and your Registration Access Token. If <strong>Warning!</strong> You MUST protect your <b>Client ID</b>, <b>Client Secret (if provided)</b>, and your <b>Registration Access Token</b>.
you lose your Client ID or Registration Access Token, you will no longer have access to your client's registration If you lose your Client ID or Registration Access Token, you will no longer have access to your client's registration
records and you will need to register a new client. records and you will need to register a new client.
</div> </div>
</div> </div>
@ -87,7 +87,21 @@
<label class="control-label">Client Secret</label> <label class="control-label">Client Secret</label>
<div class="control-group"> <div class="control-group">
<div class="controls"> <div class="controls">
<pre><%=client.client_id ? (client.client_secret ? client.client_secret : 'None (public client)') : 'Will be generated'%></pre> <% if (client.client_id) { %>
<% if (client.client_secret) { %>
<pre><%= client.client_secret %></pre>
<% } else { %>
<% if (client.token_endpoint_auth_method == 'none') { %>
<pre>None (public client)</pre>
<% } else if (client.token_endpoint_auth_method == 'private_key_jwt') { %>
<pre>None (private key authentication)</pre>
<% } else { %>
<p class="text-error"><b>Unknown error:</b> no client secret and unknown auth method.</p>
<% } %>
<% } %>
<% } else { %>
<pre>Will be generated</pre>
<% } %>
</div> </div>
</div> </div>

22
openid-connect-server-webapp/src/main/webapp/resources/template/rsreg.html
View File

@ -65,9 +65,9 @@
<div class="control-group"> <div class="control-group">
<div class="controls"> <div class="controls">
<div class="alert alert-error"> <div class="alert alert-error">
<strong>Warning!</strong> You MUST protect your resource ID, Secret, and your Registration Access Token. If <strong>Warning!</strong> You MUST protect your <b>Client ID</b>, <b>Client Secret (if provided)</b>, and your <b>Registration Access Token</b>.
you lose your ID or Registration Access Token, you will no longer have access to your resource's registration If you lose your Client ID or Registration Access Token, you will no longer have access to your client's registration
records and you will need to register a new resource. records and you will need to register a new client.
</div> </div>
</div> </div>
@ -85,7 +85,21 @@
<label class="control-label">Client Secret</label> <label class="control-label">Client Secret</label>
<div class="control-group"> <div class="control-group">
<div class="controls"> <div class="controls">
<pre><%=client.client_id ? (client.client_secret ? client.client_secret : 'None (public client)') : 'Will be generated'%></pre> <% if (client.client_id) { %>
<% if (client.client_secret) { %>
<pre><%= client.client_secret %></pre>
<% } else { %>
<% if (client.token_endpoint_auth_method == 'none') { %>
<pre>None (public client)</pre>
<% } else if (client.token_endpoint_auth_method == 'private_key_jwt') { %>
<pre>None (private key authentication)</pre>
<% } else { %>
<p class="text-error"><b>Unknown error:</b> no client secret and unknown auth method.</p>
<% } %>
<% } %>
<% } else { %>
<pre>Will be generated</pre>
<% } %>
</div> </div>
</div> </div>