216 Commits (1.1.x)

Author	SHA1	Message	Date
Justin Richer	d03bebe5bf	fixed backported 'kid' injection	2015-10-02 18:43:58 -04:00
Justin Richer	9fac632024	added 'kid' to all signed tokens, closes #899	2015-10-01 18:57:09 -04:00
Justin Richer	747e9f0bde	replaced deprecated http components calls, closes #838	2015-08-21 18:12:05 -04:00
Justin Richer	8569213994	moved requirement to different component, closes #759 ... also cleaned up comments in filter	2015-03-08 23:04:12 -04:00
William Kim	3ae8d46e44	Made the constructor public for OIDCAuthentication filter. ... Backported, closes #777	2015-03-08 23:03:53 -04:00
Justin Richer	b5ae05162e	moved test into test package	2014-11-13 22:18:00 -10:00
Justin Richer	0fd4e04725	updated date format of token introspection response, closes #719	2014-11-13 16:35:38 -10:00
Justin Richer	b13e369851	relaxed issuer constraints in client, closes #638	2014-11-01 23:46:00 +00:00
Justin Richer	b764908416	if no alg is explicitly set, use the default from the signer	2014-10-23 22:08:32 -04:00
David Steinkopff	73a626815b	fix broken dependency declaration, that follow up to org.springframework.beans.NotWritablePropertyException: Invalid property 'jwkKeyList' of bean class exception	2014-10-14 20:28:15 -04:00
Justin Richer	09cbecc540	import cleanup	2014-10-07 17:49:05 -04:00
Justin Richer	b617fe0c4b	externalized view name strings and tied them to view beans	2014-10-07 16:19:59 -04:00
Justin Richer	f4b508fa62	Removed exceptions from @PostConstruct methods, closes #663	2014-10-07 16:19:59 -04:00
Justin Richer	b0cce924a2	JsonFileRegisteredClientService now writes out entire client registration to disk, closes #651	2014-08-01 00:01:56 -04:00
Brenden Keyes	863dbd17b8	Added setClientConfigurationService method.	2014-07-31 22:26:04 -04:00
Justin Richer	325a200f16	added configurable support for different token presentation methods in user info fetcher, closes #632	2014-07-20 09:27:02 -07:00
Justin Richer	c7a6c4fafe	added support for unsigned ID tokens in client, use client configuration to turn this on, closes #633	2014-07-16 22:18:07 -04:00
Kristina Sahlmann	306c8cff17	update nimbus-jose-jwt dependency to 2.26 and fix the affected files	2014-07-02 11:37:42 -04:00
Justin Richer	9f9b49fc63	refactored validator checks to cascade better, throw an authentication exception if we can't find a validator for the ID Token	2014-06-18 18:17:14 -04:00
Christopher Elkins	1dc204f975	Validate HMAC-signed ID tokens	2014-06-18 18:10:33 -04:00
Justin Richer	0c8cacd59a	added missing copyright headers	2014-05-27 13:46:47 -04:00
Justin Richer	525f3aa2a8	Cleaned up indentation, whitespace, and imports.	2014-05-27 13:02:49 -04:00
Justin Richer	27e68f1d56	added service to optionally check "target_uri" links, closes #547	2014-05-23 16:50:18 -04:00
Justin Richer	e4d5f4a540	added system wide cache for all symmetric validators, closes # 557	2014-05-23 16:16:06 -04:00
Justin Richer	ca333d256b	Appropriately catch runtime exceptions in all guava caches, closes #603	2014-05-23 15:00:40 -04:00
Brenden Keyes	90b10d7bad	Added Getter/Setter for IntospectionAuthorityGranter. Still defaults to SimpleIntrospectionAuthorityGranter	2014-04-18 23:06:06 -04:00
Justin Richer	79bd7e420c	made scope handling consistent for introspection services (now a space-separated string), closes #570	2014-04-03 22:47:28 -04:00
Justin Richer	53cc7ef447	Fixed audience claim on client auth assertion	2014-03-06 19:45:05 +00:00
Justin Richer	3629ff5e2f	added signed authentication assertion support to client, closes #558	2014-03-06 16:44:31 +00:00
Justin Richer	1289d4737a	Changed references of DefaultHttpClient to SystemDefaultHttpClient to inherit system proxy settings, should address #548	2014-02-04 10:51:14 -05:00
Justin Richer	d946cfb4a7	added support for target uri parameter in third party issuer (or other custom issuer that sets the right flag on return), closes #539	2014-01-20 17:07:35 -05:00
Justin Richer	3b52ce8201	happy new year!	2014-01-20 12:38:42 -05:00
Justin Richer	ebbc7209aa	automated code formatting and cleanup	2013-12-03 14:19:34 -05:00
Justin Richer	49a7db6c6e	Sanity check on client template object for dynamic registration client-side service	2013-11-27 11:37:07 -05:00
Justin Richer	27f391ef01	Fixed compilation errors for SECOAUTH milestone updates	2013-11-25 09:31:50 -05:00
Justin Richer	c896bef2e8	Created hybrid issuer service, addresses #509	2013-09-24 22:02:02 -04:00
Justin Richer	0ff7cb75a0	made userinfo fetching optional, addresses #510	2013-09-24 22:01:56 -04:00
Justin Richer	8fc6de0a6d	hybrid service instantiates inner members, addresses #508	2013-09-24 22:01:48 -04:00
Justin Richer	b2b915b4ae	explcitly set alg and enc instead of trying to guess	2013-09-16 17:27:05 -04:00
Justin Richer	fb2f2f9792	spelling, property access, and cleanup	2013-09-16 17:27:04 -04:00
Justin Richer	2ca713c7f2	added encrypted request object service to client, addresses #475	2013-09-16 17:27:04 -04:00
Justin Richer	1d0560edbc	refactored some json utils to their own static class	2013-09-16 17:27:04 -04:00
Justin Richer	6605877a1b	added encryption/decryption to cached JWK-URI service	2013-09-16 17:27:04 -04:00
Justin Richer	c3b90b9d71	removed old form value from fetcher	2013-09-10 15:06:38 -04:00
Justin Richer	ded7c66c78	fixed misleading error message	2013-09-10 13:46:49 -04:00
Justin Richer	6851224e42	fixed token expiration parsing	2013-09-06 15:55:34 -04:00
Justin Richer	94ddc77668	fixed scope parsing on token implementation, too ... Conflicts: openid-connect-client/src/main/java/org/mitre/oauth2/introspectingfilter/AuthorizationRequestImpl.java	2013-09-06 15:55:18 -04:00
Justin Richer	a9710899cd	removed vestigial client config service	2013-09-06 15:53:24 -04:00
Justin Richer	2201206f0e	refactored token introspection packages to support different client credentials at different services	2013-09-06 15:53:24 -04:00
William Kim	2108311d65	Revert "refactored code to use the more generic JWT declaration." ... This reverts commit e0b56bc72a.	2013-08-26 15:33:08 -04:00