d337e14de3
Remove transitive commons-logging dependencies
...
We use slf4j instead; jcl-over-slf4j needs to be a compile-time dependency because we use it in several classes.
Unfortunately Maven does not have a way to exclude commons-logging globally, so we need to figure out which dependencies include it through `mvn dependency:tree` and specify an `<exclusion>` for each of them.
Finally, we upgrade to slf4j 1.7.12: http://www.slf4j.org/news.html .
9 years ago
d280ca40a4
login hints now handled in a slightly smarter (and more pluggable) manner, closes #851
9 years ago
8b362f23f3
[maven-release-plugin] prepare for next development iteration
9 years ago
e384a6257b
[maven-release-plugin] prepare release mitreid-connect-1.2.1
9 years ago
ca23521c3b
fixed entity relationship for address
9 years ago
e1af979995
don't load user info for anonymous authentications, closes #895
9 years ago
f43c94314c
Change Address model to be an interface. Will allow consuming projects
...
to override this funcitonality more easily.
9 years ago
719a714735
Addresses issue 910 by replacing update_time with update_at for JSON
...
objects.
9 years ago
22c05ec51b
[maven-release-plugin] prepare for next development iteration
9 years ago
e6b64cd9cd
[maven-release-plugin] prepare release mitreid-connect-1.2.0
9 years ago
489450b1c2
automated code format cleanup
9 years ago
edda0218e1
added missing copyright statement.
9 years ago
8a4fb5f839
cleaned up imports
9 years ago
15c2b57730
[maven-release-plugin] prepare for next development iteration
9 years ago
8317c759f1
[maven-release-plugin] prepare release mitreid-connect-1.2.0-RC2
9 years ago
0740443768
added claims redirect uri set to client model for UMA usage
9 years ago
a4e75ed733
[maven-release-plugin] prepare for next development iteration
10 years ago
58a47d0e46
[maven-release-plugin] prepare release mitreid-connect-1.2.0-RC1
10 years ago
064f36ef6c
clean up resource sets when clients are deleted
10 years ago
f6c20ad314
changed to using merge() in JPA instead of persist()
10 years ago
d1c069ad1e
clean up permissions and access tokens when a resource set is revoked
10 years ago
7345a03aaa
added UMA import, closes #811 even harder
10 years ago
bcd8a96b5d
UMA data export, closes #811
10 years ago
8c822c0f54
detached whitelist from approved sites, closes #781
10 years ago
e96eda0990
save dynamically registered clients to the server's database, closes #799
10 years ago
42b93be492
added uri-encoded client service, closes #857
10 years ago
aa96b1f1ed
made things a little null safer
...
closes #813 (really)
10 years ago
6703db234d
added equals/hashCode/toString on UMA model objects
10 years ago
a8a6e7bf31
downscope resulting token based on policy
10 years ago
af798705b4
made claim values any JSON type, closes #853
10 years ago
b0935086c2
made claims processor take in policy set and ticket directly
10 years ago
de9f69e461
introduced a claims processor result data shuttle
10 years ago
2cfaa1c1d7
renamed RequiredClaimSet to Policy
10 years ago
b8a5486995
made required claims sets stick in the database
10 years ago
cd47d32e2d
split required claim sets out as separate indirection structure, closes #813
10 years ago
2f4d9ce54b
clearing out refresh tokens is now configurable, closes #409
10 years ago
7df3597757
split client's auth token into pending and authorized classes
10 years ago
b4520c170e
ID Token carried through as parsed JWT instead of string, closes #832
10 years ago
f4a1b27e2e
better handling of HTTP and JSON errors on network fetches, added http-forcing behavior for webfinger client and sector URL service
10 years ago
286d433da6
save json object inside registered client if it's available, closes #800
10 years ago
9e74e40453
Use diamond syntax instead of explicit types
10 years ago
13f5e4f8a6
Collapse identical catch branches
10 years ago
d1e8529a7b
expose ID Token and UserInfo to the AuthoritiesProvider and AuthoritiesMapper, both extensible
...
closes #699
closes #761
10 years ago
f7b5228109
UserInfo carries original JSON object along if available
10 years ago
118237ab05
moved user info interceptor to pre-handle
10 years ago
8b81b36e22
property editor to allow JWK Set to be represented as a string in the XML configuration
10 years ago
e43600494a
minor automated code cleanup
10 years ago
642942b5cf
Generalized client key handling into a single cache service
10 years ago
032d41e5ed
added JWKs-by-value support to client data model and API, closes #826
10 years ago
30162f6baa
added direct JWK set to data model
10 years ago
8d3a8471aa
updated refresh token to use converter instead of dummy field
10 years ago
9662f3e8b3
switched access token to using converter instead of dummy field
10 years ago
caf85b990d
Revert "added option to send skip sending nonce if desired, closes #704 , closes #683,"
...
This reverts commit bbeaeb06e3
10 years ago
9ba1a78d09
removed binary objects from data API importers, removed binary object JSON utility entirely
10 years ago
cbf6316050
cleaned up logic on user info interceptor to fix detection of redirects
10 years ago
d5a08d4996
cleaned up vestigial service component, to be fixed (maybe) in #825
10 years ago
441b19f0c5
fixed data export to comply with new auth holder
10 years ago
84167396da
made saved user auth remember original class if it gets re-used
10 years ago
93a91c8f84
fixed oauth2request constructor
10 years ago
bedda2959d
set table on entity class, added null-safe copies to all collection fields
10 years ago
5e3d08ef4d
temporarily commented out query by authentication in both token types
10 years ago
98e414b6df
broke out authentication holder class into parts, no more serializable pieces in the database, closes #696
10 years ago
cb8abca0f6
removed embedded JOSE classes in favor of converters
10 years ago
cf1cb34a5f
cleaned up error reporting for multiple verifiers
10 years ago
6be2b4f65e
added ES* and PS* support for signed objects
10 years ago
7f44132abc
made address object serializable, closes #792
10 years ago
a44335198e
made HTTPS warning stand out a little better in the logs
10 years ago
52b1bda8d8
version match and cleanup
10 years ago
ed7799b54a
make RPTs optionally expire, closes #794
10 years ago
1f083c7acb
extracted RPT generation component to new token service class, closes #797
10 years ago
7951ff5086
separated claims processing out into its own service, closes #796
10 years ago
8d5c7d6226
fixed some rogue documentation
10 years ago
98cd5ba27d
added save to permission ticket system
10 years ago
687517d7f4
Merge branch 'master' into claims-editing-ui
10 years ago
5aa5cc1a10
added search by email to user info data stack
10 years ago
06ae8545ae
Merge branch 'master' into uma
10 years ago
ba0c679e60
made "en" the default locale explicitly
10 years ago
e1769d1545
added (optional) permissions sets to access tokens
10 years ago
1be9da52c6
separated ticket object from permission object to facilitate re-use of permission object with tokens
10 years ago
b635a2bc88
fixed DB mapping
10 years ago
1393251da9
added value to claim
10 years ago
2aadb09f49
started claims service, added expiration to permissions
10 years ago
a57c336e11
added uma_authorization to default scope set
10 years ago
8352145d82
Merge branch 'master' into authorization-api
...
Conflicts:
openid-connect-common/src/main/java/org/mitre/oauth2/service/SystemScopeService.java
openid-connect-server-webapp/src/main/webapp/WEB-INF/application-context.xml
openid-connect-server/src/main/java/org/mitre/discovery/web/DiscoveryEndpoint.java
openid-connect-server/src/main/java/org/mitre/oauth2/web/IntrospectionEndpoint.java
openid-connect-server/src/main/java/org/mitre/openid/connect/web/ClientAPI.java
openid-connect-server/src/test/java/org/mitre/oauth2/service/impl/TestDefaultIntrospectionAuthorizer.java
10 years ago
4f12fab56b
made unused auth codes expired (they're still single-use), refactored auth code service layer
10 years ago
ad9b49733f
externalized queries for scopes, blacklists, user info, pairwise identifiers, and whitelists, closes #771 even harder
10 years ago
15b97b1dcb
Externalized strings for named queries on auth holders, auth codes, clients, and tokens, closes #771
10 years ago
1735dbca11
extracted controller URLs to constants, closes #769
10 years ago
617d485478
updated all references to media types to use constants instead of literals, closes #767
10 years ago
ee522100b9
Merge branch 'master' into uma-introspection
...
* master:
fixed logger variable name
made logger declarations consistent across project, closes #780
Fixed logger
null safe
removed DateUtil
added icons to scope editing panel
10 years ago
65d7b00f4d
added uma-processing of scopes to introspection results
10 years ago
627bcaee43
added client_id to resource sets
10 years ago
e5e4c15058
removed introspection authorizer hook
10 years ago
c09b63c69f
made logger declarations consistent across project, closes #780
10 years ago
e59e988809
made permission service enforce scoping
10 years ago
5ff9cd1bbb
implemented permission registration API
10 years ago
eed8fb0b28
created skeleton of permission registration API
10 years ago
c41488b103
moved an uma package to common, extracted OAuth scope enforcement utility
10 years ago
5be7d64c7d
moved all uma files to their own package
10 years ago
0d96b6a28a
changed name of scope to match uma spec
10 years ago
7a1480bb07
moved and consolidated json utilities
10 years ago
4d88e04e59
added resource set registration scope to built in set
10 years ago
4878e88d4f
added list all by owner
10 years ago
8d22ad03e2
implemented remove verb
10 years ago
89114dcf74
implemented update
10 years ago
0b480bac10
implemented get
10 years ago
3076da1ed8
functioning resource set repository layer
10 years ago
efeead52b6
fixed typos in data layer, added blank service layer to resource set
10 years ago
99bf19e21b
removed policy uri from data model
10 years ago
e7bf75e9a4
moved and consolidated json utilities
10 years ago
90a7304b4e
resource set registration endpoint and service shells
10 years ago
8992841ffa
added missing copyright
10 years ago
071ea579a3
added resource set class
10 years ago
b670f44138
added UMA to version number
10 years ago
593fac83cf
scopes can now be set as "restricted" instead of needing to be set "allowDynReg", closes #747
10 years ago
b376bc6059
removed some vestigial service/repository calls, closes #513
10 years ago
cef6cf17b6
externalized a number of strings, closes #385
10 years ago
05f03f7c90
yet more year updates
10 years ago
994ce6c743
consistently named JOSE-based classes, closes #529
10 years ago
685960358c
formatting cleanup
10 years ago
e2349984b8
happy new year 2015!
10 years ago
cc02f8fbe8
pluralized post-logout redirect URI on client, closes #654
10 years ago
bedc101637
import cleanup
10 years ago
587d4b2db6
further pom file cleanup
10 years ago
377d8cb884
moved dependency version management to parent pom, closes #666
10 years ago
ef3a696972
removed getBySubject and getAll from user info repository and service layers, closes #760
10 years ago
d25602fbe7
created a locale resolved tied in with the existing server configuration bean, removed locale interceptor (it doesn't work with fixed resolvers), cleaned up comments and files
10 years ago
6c88d7c54b
removed old owner_id field, closes #636
10 years ago
e8015051d2
add @Transient to function getAuthorizedGrantTypes() so it does not persist
10 years ago
c6c09b9c6c
made default user info parser more robust against null values
10 years ago
bbeaeb06e3
added option to send skip sending nonce if desired, closes #704 , closes #683 ,
10 years ago
0e776762c2
set up data API for 1.2 format (currently the same as 1.1 format)
10 years ago
c600787f1c
added key id to id token, closes #725
10 years ago
d87bdb2120
added ROLE_CLIENT to assertion client authentication, cleaned up roles on client secret authentication, closes #728 , closes #401
10 years ago
b50facd4c2
explicitly added Jackson2 to support secoauth serialization, added string converter to work with our API
10 years ago
e6d10b67a4
update to Spring 4 and other related libraries
10 years ago
f0e2fc6700
make user info classes serializable, closes #714
10 years ago
a59fe0604e
generate random fake password for private key clients and shared secret crypto clients to avoid accidentally using client secret authentication and bypassing authentication, closes #715
10 years ago
9dfac35912
Introduce introspection result assembler to allow for customized introspection results
10 years ago
bf00c1f5e0
update spring-security-oauth2 2.0.3 , closes #663
10 years ago
db052f11ca
Moved development branch to 1.2
10 years ago
134909a82f
import cleanup
10 years ago
1e71749c23
added more generic rotation capability
10 years ago
8495617aed
Added support for whitelisted and blacklisted site import from a 1.0 config
10 years ago
03f2d8f8a0
Added service interface for data import/export service and modified AuthenticationHolderEntity and Repository to allow getting all objects
10 years ago
ec8f708472
swapped exception class for existing BeanCreationException, added example flag in config file (commented out)
...
closes #528
closes #689
10 years ago
3e3613f471
Corrected bean setup for checkForHttps case tests.
10 years ago
acc4cf16bd
Separated checkForHttps cases into separate test methods.
10 years ago
cf2837f678
Initialized forceHttps to false.
10 years ago
0461e51ddc
Changed parent class from Exception to RuntimeException; added copyright
...
language.
10 years ago
Mark Janssen