github
/
OpenID-Connect-Java-Spring-Server
mirror of https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
2706 Commits
17 Branches
69 Tags
78 MiB
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'dependabot/maven/org.apache.httpcomponents-httpclient-4.5.13'
${ noResults }
Commit Graph

702 Commits (dependabot/maven/org.apache.httpcomponents-httpclient-4.5.13)

Author SHA1 Message Date
Justin Richer 8d3a8471aa updated refresh token to use converter instead of dummy field
10 years ago
Justin Richer 9662f3e8b3 switched access token to using converter instead of dummy field
10 years ago
Justin Richer caf85b990d Revert "added option to send skip sending nonce if desired, closes #704, closes #683,"
10 years ago
Justin Richer 9ba1a78d09 removed binary objects from data API importers, removed binary object JSON utility entirely
10 years ago
Justin Richer cbf6316050 cleaned up logic on user info interceptor to fix detection of redirects
10 years ago
Justin Richer d5a08d4996 cleaned up vestigial service component, to be fixed (maybe) in #825
10 years ago
Justin Richer 441b19f0c5 fixed data export to comply with new auth holder
10 years ago
Justin Richer 84167396da made saved user auth remember original class if it gets re-used
10 years ago
Justin Richer 93a91c8f84 fixed oauth2request constructor
10 years ago
Justin Richer bedda2959d set table on entity class, added null-safe copies to all collection fields
10 years ago
Justin Richer 5e3d08ef4d temporarily commented out query by authentication in both token types
10 years ago
Justin Richer 98e414b6df broke out authentication holder class into parts, no more serializable pieces in the database, closes #696
10 years ago
Justin Richer cb8abca0f6 removed embedded JOSE classes in favor of converters
10 years ago
Justin Richer cf1cb34a5f cleaned up error reporting for multiple verifiers
10 years ago
Justin Richer 6be2b4f65e added ES* and PS* support for signed objects
10 years ago
Justin Richer 7f44132abc made address object serializable, closes #792
10 years ago
Justin Richer a44335198e made HTTPS warning stand out a little better in the logs
10 years ago
Justin Richer 52b1bda8d8 version match and cleanup
10 years ago
Justin Richer ed7799b54a make RPTs optionally expire, closes #794
10 years ago
Justin Richer 1f083c7acb extracted RPT generation component to new token service class, closes #797
10 years ago
Justin Richer 7951ff5086 separated claims processing out into its own service, closes #796
10 years ago
Justin Richer 8d5c7d6226 fixed some rogue documentation
10 years ago
Justin Richer 98cd5ba27d added save to permission ticket system
10 years ago
Justin Richer 687517d7f4 Merge branch 'master' into claims-editing-ui
10 years ago
Justin Richer 5aa5cc1a10 added search by email to user info data stack
10 years ago
Justin Richer 06ae8545ae Merge branch 'master' into uma
10 years ago
Justin Richer ba0c679e60 made "en" the default locale explicitly
10 years ago
Justin Richer e1769d1545 added (optional) permissions sets to access tokens
10 years ago
Justin Richer 1be9da52c6 separated ticket object from permission object to facilitate re-use of permission object with tokens
10 years ago
Justin Richer b635a2bc88 fixed DB mapping
10 years ago
Justin Richer 1393251da9 added value to claim
10 years ago
Justin Richer 2aadb09f49 started claims service, added expiration to permissions
10 years ago
Justin Richer a57c336e11 added uma_authorization to default scope set
10 years ago
Justin Richer 8352145d82 Merge branch 'master' into authorization-api
10 years ago
Justin Richer 4f12fab56b made unused auth codes expired (they're still single-use), refactored auth code service layer
10 years ago
Justin Richer ad9b49733f externalized queries for scopes, blacklists, user info, pairwise identifiers, and whitelists, closes #771 even harder
10 years ago
Justin Richer 15b97b1dcb Externalized strings for named queries on auth holders, auth codes, clients, and tokens, closes #771
10 years ago
Justin Richer 1735dbca11 extracted controller URLs to constants, closes #769
10 years ago
Justin Richer 617d485478 updated all references to media types to use constants instead of literals, closes #767
10 years ago
Justin Richer ee522100b9 Merge branch 'master' into uma-introspection
10 years ago
Justin Richer 65d7b00f4d added uma-processing of scopes to introspection results
10 years ago
Justin Richer 627bcaee43 added client_id to resource sets
10 years ago
Justin Richer e5e4c15058 removed introspection authorizer hook
10 years ago
Justin Richer c09b63c69f made logger declarations consistent across project, closes #780
10 years ago
Justin Richer e59e988809 made permission service enforce scoping
10 years ago
Justin Richer 5ff9cd1bbb implemented permission registration API
10 years ago
Justin Richer eed8fb0b28 created skeleton of permission registration API
10 years ago
Justin Richer c41488b103 moved an uma package to common, extracted OAuth scope enforcement utility
10 years ago
Justin Richer 5be7d64c7d moved all uma files to their own package
10 years ago
Justin Richer 0d96b6a28a changed name of scope to match uma spec
10 years ago
Justin Richer 7a1480bb07 moved and consolidated json utilities
10 years ago
Justin Richer 4d88e04e59 added resource set registration scope to built in set
10 years ago
Justin Richer 4878e88d4f added list all by owner
10 years ago
Justin Richer 8d22ad03e2 implemented remove verb
10 years ago
Justin Richer 89114dcf74 implemented update
10 years ago
Justin Richer 0b480bac10 implemented get
10 years ago
Justin Richer 3076da1ed8 functioning resource set repository layer
10 years ago
Justin Richer efeead52b6 fixed typos in data layer, added blank service layer to resource set
10 years ago
Justin Richer 99bf19e21b removed policy uri from data model
10 years ago
Justin Richer e7bf75e9a4 moved and consolidated json utilities
10 years ago
Justin Richer 90a7304b4e resource set registration endpoint and service shells
10 years ago
Justin Richer 8992841ffa added missing copyright
10 years ago
Justin Richer 071ea579a3 added resource set class
10 years ago
Justin Richer b670f44138 added UMA to version number
10 years ago
Justin Richer 593fac83cf scopes can now be set as "restricted" instead of needing to be set "allowDynReg", closes #747
10 years ago
Justin Richer b376bc6059 removed some vestigial service/repository calls, closes #513
10 years ago
Justin Richer cef6cf17b6 externalized a number of strings, closes #385
10 years ago
Justin Richer 05f03f7c90 yet more year updates
10 years ago
Justin Richer 994ce6c743 consistently named JOSE-based classes, closes #529
10 years ago
Justin Richer 685960358c formatting cleanup
10 years ago
Justin Richer e2349984b8 happy new year 2015!
10 years ago
Justin Richer cc02f8fbe8 pluralized post-logout redirect URI on client, closes #654
10 years ago
Justin Richer bedc101637 import cleanup
10 years ago
Justin Richer 587d4b2db6 further pom file cleanup
10 years ago
Justin Richer 377d8cb884 moved dependency version management to parent pom, closes #666
10 years ago
Justin Richer ef3a696972 removed getBySubject and getAll from user info repository and service layers, closes #760
10 years ago
Justin Richer d25602fbe7 created a locale resolved tied in with the existing server configuration bean, removed locale interceptor (it doesn't work with fixed resolvers), cleaned up comments and files
10 years ago
Justin Richer 6c88d7c54b removed old owner_id field, closes #636
10 years ago
Charif Belhaffef e8015051d2 add @Transient to function getAuthorizedGrantTypes() so it does not persist
10 years ago
Justin Richer c6c09b9c6c made default user info parser more robust against null values
10 years ago
Justin Richer bbeaeb06e3 added option to send skip sending nonce if desired, closes #704, closes #683,
10 years ago
Justin Richer 0e776762c2 set up data API for 1.2 format (currently the same as 1.1 format)
10 years ago
Justin Richer c600787f1c added key id to id token, closes #725
10 years ago
Justin Richer d87bdb2120 added ROLE_CLIENT to assertion client authentication, cleaned up roles on client secret authentication, closes #728, closes #401
10 years ago
Justin Richer b50facd4c2 explicitly added Jackson2 to support secoauth serialization, added string converter to work with our API
10 years ago
Justin Richer e6d10b67a4 update to Spring 4 and other related libraries
10 years ago
Justin Richer f0e2fc6700 make user info classes serializable, closes #714
10 years ago
Justin Richer a59fe0604e generate random fake password for private key clients and shared secret crypto clients to avoid accidentally using client secret authentication and bypassing authentication, closes #715
10 years ago
Alexander Imfeld 9dfac35912 Introduce introspection result assembler to allow for customized introspection results
10 years ago
Pascal Bruckert bf00c1f5e0 update spring-security-oauth2 2.0.3 , closes #663
10 years ago
Justin Richer db052f11ca Moved development branch to 1.2
10 years ago
Justin Richer 134909a82f import cleanup
10 years ago
Justin Richer 1e71749c23 added more generic rotation capability
10 years ago
arielak 8495617aed Added support for whitelisted and blacklisted site import from a 1.0 config
10 years ago
arielak 03f2d8f8a0 Added service interface for data import/export service and modified AuthenticationHolderEntity and Repository to allow getting all objects
10 years ago
Justin Richer ec8f708472 swapped exception class for existing BeanCreationException, added example flag in config file (commented out)
10 years ago
John Brooks 3e3613f471 Corrected bean setup for checkForHttps case tests.
10 years ago
John Brooks acc4cf16bd Separated checkForHttps cases into separate test methods.
10 years ago
John Brooks cf2837f678 Initialized forceHttps to false.
10 years ago
John Brooks 0461e51ddc Changed parent class from Exception to RuntimeException; added copyright
10 years ago
John Brooks e1015e1194 Create flag to force HTTPS of value of issuer on server startup, addresses #528
10 years ago
Justin Richer c683131f12 externalized view name strings and tied them to view beans
10 years ago
Justin Richer a704277652 Removed exceptions from @PostConstruct methods, closes #663
10 years ago
Justin Richer 81634e6165 added API for getting tokens by clientid
10 years ago
Justin Richer 1a79949d51 made user info less transient
10 years ago
James Agnew e0b84069d4 Update to latest spring-security-oauth2 module
10 years ago
Justin Richer 6f2f807b0b [maven-release-plugin] prepare for next development iteration
10 years ago
Justin Richer 93ae1516a5 [maven-release-plugin] prepare release mitreid-connect-1.1.9
10 years ago
Justin Richer b0cce924a2 JsonFileRegisteredClientService now writes out entire client registration to disk, closes #651
10 years ago
Justin Richer 78f3e68e8b update unit test for Windows environment, closes #647
10 years ago
ksahlmann 4ca9a593f5 update nimbus-jose-jwt to 2.26.1 due to base64 encoding issue
10 years ago
Justin Richer 62a43165f0 added json member type checking for json utils, won't die if a string is found where an array was expected
11 years ago
Justin Richer 325a200f16 added configurable support for different token presentation methods in user info fetcher, closes #632
11 years ago
Justin Richer 1db4227ce5 reformat / reorder
11 years ago
Justin Richer f997049eff key service can now deal with missing 'kid' fields in JWKs
11 years ago
tsitkov 5c2cb75407 Better test coverage for JWS/EAlgorithmEmbed, JWEEncryptionMethodEmbed
11 years ago
Justin Richer 3412c1877e removed unnecessary unit test
11 years ago
tsitkov e1b4df74f0 Added tests for DefaultJwtEncryptionAndDecryptionService
11 years ago
Justin Richer 5223d88e0a updated unit test to fit new nimbus version
11 years ago
Kristina Sahlmann 7bf8e2ad08 change the OctetSequenceKey constructor in SymmetricCacheService
11 years ago
Kristina Sahlmann 306c8cff17 update nimbus-jose-jwt dependency to 2.26 and fix the affected files
11 years ago
tsitkov 48431fd5c7 Unit test for JWKSetKeyStore class
11 years ago
Justin Richer adf477c64e [maven-release-plugin] prepare for next development iteration
11 years ago
Justin Richer 8d97ed61ec [maven-release-plugin] prepare release mitreid-connect-1.1.8
11 years ago
Justin Richer acf039a1f7 wrapped auth method check, added SECRET_JWT, closes #621
11 years ago
Christopher Elkins a465559ac5 Revert incorrect key-encoding change in SymmetricCacheService
11 years ago
Christopher Elkins 1dc204f975 Validate HMAC-signed ID tokens
11 years ago
tjain 276d846f4c Configuration Property Bean to load the OP wide registration token life
11 years ago
Justin Richer 71fa796b42 Allow public clients to use token endpoint, closes #611, closes #613
11 years ago
Justin Richer 85acfa90db [maven-release-plugin] prepare for next development iteration
11 years ago
Justin Richer d5e4cb45a2 [maven-release-plugin] prepare release mitreid-connect-1.1.7
11 years ago
Justin Richer 257312d5da made user info interceptor more null safe for client side
11 years ago
Justin Richer 943fae25a1 make user info interceptor more compatible with standalone OIDC client software (with no user info service)
11 years ago
Justin Richer be98b9cd0b [maven-release-plugin] prepare for next development iteration
11 years ago
Justin Richer 8320f0eefe [maven-release-plugin] prepare release mitreid-connect-1.1.6
11 years ago
Justin Richer 0c8cacd59a added missing copyright headers
11 years ago
Justin Richer 525f3aa2a8 Cleaned up indentation, whitespace, and imports.
11 years ago
Justin Richer c34357a433 added resource registration endpoint with basic functionality and specialized tokens
11 years ago
Justin Richer 05e9624ae3 added support for encrypted and symmetrically signed id tokens and user info responses
11 years ago
Justin Richer e4d5f4a540 added system wide cache for all symmetric validators, closes # 557
11 years ago
Justin Richer ca333d256b Appropriately catch runtime exceptions in all guava caches, closes #603
11 years ago
Justin Richer 880014176f [maven-release-plugin] prepare for next development iteration
11 years ago
Justin Richer ca8a003e3d [maven-release-plugin] prepare release mitreid-connect-1.1.5
11 years ago
Alexander Imfeld 7cd36b471f Make introspection endpoint access authorization pluggable.
11 years ago
Justin Richer b8129bf60d [maven-release-plugin] prepare for next development iteration
11 years ago
Justin Richer a9e34ac9bd [maven-release-plugin] prepare release mitreid-connect-1.1.4
11 years ago
Justin Richer 521017c5c2 updated stats service to have a resettable cache triggered by other service events
11 years ago
Justin Richer 26c464e440 fixed bad JPQL in auth holder cleanup class
11 years ago
kangelov 39509bfdc4 Performance improvement of token cleanup:
11 years ago
Justin Richer aa9a25a2d7 updated to even newer versions of eclipselink and JPA, closes #580 even harder
11 years ago
Justin Richer 8f13410e42 updated JPA and eclipselink to remove eclipselink repository dependency, closes #580
11 years ago
Justin Richer 97cd00e06c [maven-release-plugin] prepare for next development iteration
11 years ago
Justin Richer 23c7cf6996 [maven-release-plugin] prepare release mitreid-connect-1.1.3
11 years ago
Justin Richer ad5ffb64e8 [maven-release-plugin] prepare for next development iteration
11 years ago
Justin Richer 1635cf957d [maven-release-plugin] prepare release mitreid-connect-1.1.2
11 years ago
Justin Richer b67121f0cd added client_secret_jwt auth method support, closes #174
11 years ago
Justin Richer 9395c3802d [maven-release-plugin] prepare for next development iteration
11 years ago
Justin Richer 4f8311962a [maven-release-plugin] prepare release mitreid-connect-1.1.1
11 years ago
Justin Richer 1289d4737a Changed references of DefaultHttpClient to SystemDefaultHttpClient to inherit system proxy settings, should address #548
11 years ago
Justin Richer e9d4acfd03 upgraded nimbus jose jwt library
11 years ago
Justin Richer 11064b540a upgrade guava to 16
11 years ago
Justin Richer 3b52ce8201 happy new year!
11 years ago
Justin Richer ebbc7209aa automated code formatting and cleanup
11 years ago
Justin Richer e1e7f7a579 [maven-release-plugin] prepare for next development iteration
11 years ago
Justin Richer 42fe973f7b [maven-release-plugin] prepare release mitreid-connect-1.1.0
11 years ago
Justin Richer d330bd1c9b cleanup, added revocation uri to server config
11 years ago
Justin Richer a24eadeb11 cleaned up responseType calls, addresses #451
11 years ago
Justin Richer d3dbb00e77 ensure clients and tokens don't get special system scopes, addresses #320
11 years ago
Justin Richer ef01de168d Moved special token scopes to scope service interface
11 years ago
Justin Richer 4f986d6a38 clean up some auto generated functions
11 years ago
Justin Richer 27f391ef01 Fixed compilation errors for SECOAUTH milestone updates
11 years ago
Justin Richer 61f0db20f6 updated to secoauth 2.0.0.M2
11 years ago
Justin Richer 190caee9a1 refactored userinfo serializer
11 years ago
Justin Richer 7a4366c083 collapsed two serialization functions into one
11 years ago
Justin Richer d919e2e330 change from lists to sets
11 years ago
Amanda Anganes 65a7e1d724 Added UserInfo.toJson method; added ScopeClaimTranslationService; rewrote UserInfoSerializer to use both
11 years ago
Amanda Anganes 952acccbf3 Removed address fields
11 years ago
Amanda Anganes 78fa5f9b1d Started to write ScopeClaimTranslationService
11 years ago
Amanda Anganes cb449c25b1 Made a UserInfoSerializer class, attempted to switch UserInfoInterceptor over to use it, but it requires a bad hack. I might be missing something.
11 years ago
Justin Richer 59da1960eb added token_endpoint_auth_signing_alg, addresses #511
11 years ago
Justin Richer f227724caa dependency juggling
11 years ago
Justin Richer 998b00fd38 moved repo references to parent, added dependencies for webapp
11 years ago
Justin Richer d9ad6d20e8 added spring core, moved servlet and test dependencies up to parent
11 years ago
Justin Richer 38f20afe04 added necessary dependencies to common
11 years ago
Justin Richer 8a5a16f374 refactored project into four modules:
11 years ago
Amanda Anganes 47d304851d Created token service for OIDC special tokens; removed creation of id tokens and registration_access_tokens to the new service.
11 years ago
Amanda Anganes 26a7d0b8a8 Fixed typo
11 years ago
Amanda Anganes c98f77c405 Remove @PostConstruct from JWKSetKeyStore
11 years ago
Justin Richer b75d77495a if there's only one key, return it as the default
11 years ago
Justin Richer fb2f2f9792 spelling, property access, and cleanup
11 years ago
Justin Richer 1d0560edbc refactored some json utils to their own static class
11 years ago
Justin Richer aeab1ac3cb added encryption method list to encryption/decryption service
11 years ago
Justin Richer 6605877a1b added encryption/decryption to cached JWK-URI service
11 years ago
Justin Richer 2b0d02dc72 added additional discoverable fields to ServerConfig object
11 years ago
Amanda Anganes 85d9e07a94 Removed @PostConstruct; placed buildSignersAndVerifiers() calls inside both constructors.
11 years ago
Amanda Anganes c22cd62977 Added null check;
11 years ago
Amanda Anganes aecf4958ed Testing removing extra method calls
11 years ago
Justin Richer e67a41c556 added transient passthroughs to JOSE algorithms for client
11 years ago
Justin Richer f9ca15139d added phone-number verified, addresses #505
11 years ago
Justin Richer 0281cf02fe calculate pairwise based on redirect uri rather than client id
11 years ago