Justin Richer
|
da7c74affd
|
passthrough for default algorithm config
|
12 years ago |
|
Justin Richer
|
774f80dd58
|
helps when you actually add the verifier you created
|
12 years ago |
|
Justin Richer
|
9a98d241e8
|
updates to track Nimbus JOSE API changes to audience and date fields
|
12 years ago |
|
Justin Richer
|
3d9ec51eb3
|
converted client filters to nimbus-jose
|
12 years ago |
|
Justin Richer
|
1c14ce4c1a
|
note well
|
12 years ago |
|
Samuel Sayer
|
458486ac9c
|
fixed typos and dumbness in introspection endpoint filter thingy
|
12 years ago |
|
Amanda Anganes
|
67e8714671
|
Working on request object userinfo parsing
|
12 years ago |
|
Justin Richer
|
19e91e9272
|
fixed typo in form handling in introspecting filter
|
12 years ago |
|
Justin Richer
|
27a26e0a35
|
(user_id/prn) -> sub
|
12 years ago |
|
Justin Richer
|
c946a84b09
|
adapted keyfetcher to be more general
|
12 years ago |
|
Stephen Moore
|
358bf7fc1c
|
Generic introspecting token services
|
12 years ago |
|
Amanda Anganes
|
c7ae315e98
|
Added initial files for nonce service. Repository and service impls are stubs
|
12 years ago |
|
Justin Richer
|
45ca4e565e
|
updated to SECOAUTH-1.0.1-BUILD-SNAPSHOT
|
12 years ago |
|
Amanda Anganes
|
695091ca82
|
Refactor part 4 - should be final bit
|
12 years ago |
|
Amanda Anganes
|
c40efda6b5
|
Refactor part 1
|
12 years ago |
|
Justin Richer
|
7aec0dfe80
|
added randomized view names to lower possibility of conflicting with local views
|
12 years ago |
|
Justin Richer
|
d11005fc5f
|
added x509 support
|
12 years ago |
|
Justin Richer
|
2d24435365
|
Created custom resolver, handler mapper
moved endpoint back to server
|
12 years ago |
|
Justin Richer
|
edeae29bef
|
client publisher mapping test
|
12 years ago |
|
Justin Richer
|
be1046f9b6
|
bean-based configuration
|
12 years ago |
|
Stephen Moore
|
4eee172f79
|
buildRedirectURI moved to URLUtils
|
12 years ago |
|
Stephen Moore
|
05efdbf39d
|
buildURL uses URIUtils now.
|
12 years ago |
|
Justin Richer
|
2b62042696
|
unshadowed Jwe header, unshadowed IdTokenClaims, added smart copy constructor to ClaimSet
|
12 years ago |
|
Stephen Moore
|
e8eaf48efd
|
Added check for token NotBefore
Added timeSkewAllowance magic
|
12 years ago |
|
Justin Richer
|
b47dcf8e6b
|
fixed timestamp math
(I hate timestamp math)
|
12 years ago |
|
Justin Richer
|
26d5a846e0
|
Updated validator structure and id token checking.
|
12 years ago |
|
Justin Richer
|
a0df7ad04b
|
client documentation updates, addresses #135
|
12 years ago |
|
Justin Richer
|
012bb4afd7
|
Changed casing on "URI" to "Url" to match other parameters.
|
12 years ago |
|
Justin Richer
|
d14f55004c
|
added parser to userinfo object, userinfo url in filter, fixed bug in user_id check
|
12 years ago |
|
Justin Richer
|
fbd6e67af8
|
Refactored auth provider to call the userinfo endpoint and provide info inside the auth token.
|
12 years ago |
|
Justin Richer
|
6ccbf480b3
|
added token values into the OpenIDConnectAuthToken class and authenticator, still need to do authuserdetailsservice
|
12 years ago |
|
Justin Richer
|
c5244db1a2
|
moved nonce from cookie to session, added state processing, cleaned up unused classes
|
12 years ago |
|
Justin Richer
|
269c2c9835
|
fixed nonce cookie handling
|
12 years ago |
|
Mike Derryberry
|
d93f5f18e5
|
added state value to jwt that gets passed as request object. certain methods from SECOAUTH use this
|
12 years ago |
|
Mike Derryberry
|
eff7a2c504
|
changed nonce claim addition
|
12 years ago |
|
Mike Derryberry
|
9d73cd2243
|
cleaned up imports in filter class
|
12 years ago |
|
Mike Derryberry
|
2888c08083
|
changed cookie claim to include the response
|
12 years ago |
|
Mike Derryberry
|
bc216785b8
|
added cookie to response in auth filter for request objects
|
12 years ago |
|
Mike Derryberry
|
f7cfb39777
|
updated imports of signed request filter
|
12 years ago |
|
Mike Derryberry
|
c0d353d7ce
|
removed state parameter from claims. added way to create random nonce value
|
12 years ago |
|
Mike Derryberry
|
8e95734f22
|
changed response-type to code rather than token
|
12 years ago |
|
Mike Derryberry
|
f8d938630e
|
added passthrough parameters to server config
|
12 years ago |
|
Mike Derryberry
|
c4ebf5c145
|
updated signer service
|
12 years ago |
|
Mike Derryberry
|
d6b0b87769
|
added state parameter to reqeuest object
|
12 years ago |
|
Mike Derryberry
|
99bc1294e3
|
removed repetative check of "token" parameter in signed request object
|
12 years ago |
|
Mike Derryberry
|
685734ce35
|
updated signing request object in OIDC client by pulling out construction of JWT to its own method.
|
12 years ago |
|
Mike Derryberry
|
76c91ea79f
|
removed encrypted request object for OIDC client. will deal with it at a later point
|
12 years ago |
|
Mike Derryberry
|
8f22517c81
|
encrypted request object wip. need to add header parameters to allow encryption. also need to get public key for encryption
|
12 years ago |
|
Mike Derryberry
|
70c4c25fa3
|
finished signed request object for client, created encrypted request object for client
|
12 years ago |
|
Mike Derryberry
|
42a9b67f5e
|
updated signed request filter to create jwt from parameters, sign it, create url for request, and send a redirect
|
12 years ago |
