github
/
OpenID-Connect-Java-Spring-Server
mirror of https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
2714 Commits
17 Branches
69 Tags
80 MiB
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
Commit Graph

394 Commits (master)

Author SHA1 Message Date
Justin Richer 4f8311962a [maven-release-plugin] prepare release mitreid-connect-1.1.1
11 years ago
Justin Richer 1289d4737a Changed references of DefaultHttpClient to SystemDefaultHttpClient to inherit system proxy settings, should address #548
11 years ago
Justin Richer d946cfb4a7 added support for target uri parameter in third party issuer (or other custom issuer that sets the right flag on return), closes #539
11 years ago
Justin Richer 3b52ce8201 happy new year!
11 years ago
Justin Richer ebbc7209aa automated code formatting and cleanup
11 years ago
Justin Richer e1e7f7a579 [maven-release-plugin] prepare for next development iteration
11 years ago
Justin Richer 42fe973f7b [maven-release-plugin] prepare release mitreid-connect-1.1.0
11 years ago
Justin Richer 49a7db6c6e Sanity check on client template object for dynamic registration client-side service
11 years ago
Justin Richer 27f391ef01 Fixed compilation errors for SECOAUTH milestone updates
11 years ago
Justin Richer c896bef2e8 Created hybrid issuer service, addresses #509
11 years ago
Justin Richer 0ff7cb75a0 made userinfo fetching optional, addresses #510
11 years ago
Justin Richer 8fc6de0a6d hybrid service instantiates inner members, addresses #508
11 years ago
Justin Richer 8a5a16f374 refactored project into four modules:
11 years ago
Justin Richer b2b915b4ae explcitly set alg and enc instead of trying to guess
11 years ago
Justin Richer fb2f2f9792 spelling, property access, and cleanup
11 years ago
Justin Richer 2ca713c7f2 added encrypted request object service to client, addresses #475
11 years ago
Justin Richer 1d0560edbc refactored some json utils to their own static class
11 years ago
Justin Richer 6605877a1b added encryption/decryption to cached JWK-URI service
11 years ago
Justin Richer c3b90b9d71 removed old form value from fetcher
11 years ago
Justin Richer ded7c66c78 fixed misleading error message
11 years ago
Justin Richer 6851224e42 fixed token expiration parsing
11 years ago
Justin Richer 94ddc77668 fixed scope parsing on token implementation, too
11 years ago
Justin Richer a9710899cd removed vestigial client config service
11 years ago
Justin Richer 2201206f0e refactored token introspection packages to support different client credentials at different services
11 years ago
William Kim 2108311d65 Revert "refactored code to use the more generic JWT declaration."
11 years ago
William Kim e0b56bc72a refactored code to use the more generic JWT declaration.
11 years ago
Justin Richer 6a9650d2a7 added configurable support for clients to send extra parameters like display and prompt, addresses #426
11 years ago
Justin Richer 3360117b7b Client library no longer serializes nulls on registration, addresses #478
11 years ago
William Kim a1d6901bcc using nimbusds's new data-type specific claim getter.
11 years ago
William Kim c7495a6ae3 Revert "made having a nonce not required for id tokens iss #464"
11 years ago
William Kim d0486cc1ec made having a nonce not required for id tokens iss #464
11 years ago
William Kim e1b072c991 Updated nimbusds library version to 2.17.2 and made relevant changes in enc./dec. service and test
11 years ago
Justin Richer beaeaa4ccc I can spell "consortium", I promise
11 years ago
Justin Richer b2b6fd6448 further cleanup
11 years ago
Justin Richer 856c0ea0b5 Merge commit '023dd440d4a0e6e59a14c88013837d79a77c74e0' into 1.1-merge
11 years ago
Justin Richer 023dd440d4 [maven-release-plugin] prepare for next development iteration
11 years ago
Justin Richer 5e8f93cf15 [maven-release-plugin] prepare release mitreid-connect-1.0.6
11 years ago
Justin Richer e658ffd7fc format/cleanup and copyright
11 years ago
William Kim 809a243b64 tests for webfinger url normalization.
11 years ago
William Kim eaa7298ef1 init commit for Webfinger normilizer utility class.
11 years ago
William Kim 14e85616e4 init commit. webfinger service test.
12 years ago
William Kim 0e777917d3 Updated Third Party Issuer Service unit tests.
12 years ago
William Kim 8c8aeeb892 hybrid server and client configuration services unit tests done.
12 years ago
William Kim 6ece7f5efc Static server and client configuration tests done.
12 years ago
Justin Richer 20871852c0 updated dependencies for secoauth 1.1
12 years ago
Amanda Anganes 96e3f66a81 Removed more references to InitializingBean
12 years ago
William Kim 7b969f9776 removed TODO about empty JWK set at the client. issue #391.
12 years ago
Justin Richer 67fd5fa7e9 roles granted by introspection token services are now configurable (and extendable) via service, addresses #386
12 years ago
Justin Richer 35d1e1b6d4 added whitelist/blacklist support to server & client services
12 years ago
Justin Richer a4a18fd54c externalized introspection URL from client's introspecting token service, addresses #435
12 years ago
William Kim f483d41b88 getCustomClaim -> getClaim. Also, removed outdated TODOs.
12 years ago
Amanda Anganes 15aea61fbe Applied code cleanup
12 years ago
Amanda Anganes 3e23967b46 Updated code to reflect SECOAUTH changes
12 years ago
Justin Richer 0d8c2442d2 [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer 9bf5f70957 [maven-release-plugin] prepare release mitreid-connect-1.0.5
12 years ago
Justin Richer 6e8ab7736e added hybrid client and server services, addresses #387
12 years ago
Justin Richer a9da88fb79 brought introspection endpoint and introspection token services into compliance with draft, addresses #376
12 years ago
William Kim 2d16b8d458 revised unit tests in TestSignedAuthRequestUrlBuilder.
12 years ago
William Kim 3edd6c83b3 added unit test for parsing signed jwt auth requests.
12 years ago
William Kim 22b89f50be restored scheme choosing logic in webfinger service.
12 years ago
Justin Richer 936f581a0b [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer 27edec1a56 [maven-release-plugin] prepare release mitreid-connect-1.0.4
12 years ago
William Kim 6d5e0a1092 added test for exception handling. removed unused imports.
12 years ago
William Kim 19718438c9 TestSignedAuthRequestUrlBuilder done. Relies heavily on com.nimbusds library.
12 years ago
William Kim 77bdfe344e init commit TestSignedAuthRequestUrlBuilder.
12 years ago
Justin Richer ded9c21a47 moved back to custom regex to handle user input
12 years ago
Justin Richer 77c5e7b94c switched to using UriComponents instead of custom class, updated normalization and processing rules for webfinger discovery
12 years ago
Justin Richer 8cf83f537a fixed auth header
12 years ago
Justin Richer 3b3715ff91 automatic save file creation
12 years ago
Justin Richer 98d917f3b9 added extension mechanism for saving client information in between runs
12 years ago
Justin Richer 70958376cb added whitelist/blacklist to issuer services
12 years ago
William Kim 3259ae916f TestThirdPartyIssuerService done.
12 years ago
William Kim 1d793c4687 TestPlainAuthRequestUrlBuilder done.
12 years ago
William Kim f36db3c798 init commit TestPlainAuthRequestUrlBuilder.
12 years ago
Amanda Anganes c212821267 Fixed ChainedTokenGranter setup
12 years ago
Amanda Anganes 530c3a75ee Applyed refactoring
12 years ago
William Kim f0f2fbea40 updated secoauth library version in poms
12 years ago
Justin Richer 2b3376e0ed [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer 7fe4bc3b56 [maven-release-plugin] prepare release mitreid-connect-1.0.3
12 years ago
Justin Richer c577b691c7 moved OIDC auth token and userinfo interception filter to common package, addresses #353
12 years ago
Justin Richer 48e8f5edad better specificity of principle object in client filter
12 years ago
Justin Richer e87c0329de removed old erroneous test
12 years ago
Justin Richer 567a3314d6 [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer 1286726188 [maven-release-plugin] prepare release mitreid-connect-1.0.2
12 years ago
Justin Richer 78457b70fc removed dependency on commons.lang
12 years ago
Amanda Anganes 3c5025c52b Updated version number for secoauth
12 years ago
Justin Richer 25d75a1b30 [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer 5418bdef5a [maven-release-plugin] prepare release mitreid-connect-1.0.1
12 years ago
Justin Richer 81cd13f6d3 added RegisteredClient class to facilitate client configuration and dynamic registration, addresses #335
12 years ago
Justin Richer 667746ddd2 redirect uri is now configurable via the client configuration object, addresses #326, #330
12 years ago
Justin Richer cd99f27bf8 Changed references from ClientDetails to ClientDetailsEntity, pending new ClientConfiguration class utility class from #335.
12 years ago
Justin Richer cd711a8ac6 clean up code format
12 years ago
aptes 671ea4d816 Issue-331: Changing code to support basic authentication when it comes to accessing token endpoint.
12 years ago
Amanda Anganes 1e24b31cc3 Propogating rename of AuthorizationRequest to OAuth2Request
12 years ago
Justin Richer defa5b8fbc [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer dbdc99361e [maven-release-plugin] prepare release mitreid-connect-1.0.0
12 years ago
Justin Richer 1e870703f8 added licence/copyright header
12 years ago
Justin Richer 5910d29472 removed x509 publishing from client lib
12 years ago
Justin Richer 8afab04544 whitespace, import, brace, annotation, and format cleanups
12 years ago
Justin Richer 9b03801f9d [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer d76304b9a6 [maven-release-plugin] prepare release mitreid-connect-0.9.3
12 years ago
Justin Richer 94aa279290 [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer cc92743888 [maven-release-plugin] prepare release mitreid-connect-0.9.2
12 years ago
Justin Richer 0e9273fd08 added authority for subject-issuer authorities and associated mapper, addresses #234
12 years ago
Justin Richer 29aa0f2be6 continued updating userid->sub in auth token
12 years ago
Justin Richer df51ef5a48 updated to post JSON
12 years ago
Justin Richer 184c03e2d4 added registration endpoint url to dynamic server config fetch
12 years ago
Justin Richer fb859fc39a added client dynamic registration service, extracted clientdetails<->json processing into its own static class
12 years ago
Justin Richer 0b0e52b7a3 extracted parsers and rest templates appropriately
12 years ago
Justin Richer cf39b49657 added registration uri to server config, changed index of client config service to be server config not just issuer
12 years ago
Justin Richer 13f1a1741c updated oidc auth token field from user_id -> sub (addresses #307)
12 years ago
Justin Richer 60525a52af added null checks in client filter
12 years ago
Justin Richer 57cefa595a added redirect to login page when no identifier is given
12 years ago
Justin Richer 814c70c9a2 regex-based webfinger parser (yuck)
12 years ago
Justin Richer 70cac0c690 uri-based parsing of user inputs
12 years ago
Amanda Anganes e708f77eb3 Fixed up OIDC code so that it runs with new SECOAUTH changes; removed old AuthorizationRequestImpl class which is no longer needed
12 years ago
Justin Richer 51dfd67d0c started webfinger client
12 years ago
Justin Richer f76f44b999 added dynamic discovery to client
12 years ago
Justin Richer e665aec36f dependency cleanup
12 years ago
Justin Richer ac2993c402 [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer f0d75f9144 [maven-release-plugin] prepare release mitreid-connect-0.9.1
12 years ago
Justin Richer 5f54777109 [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer 620a60ddc2 [maven-release-plugin] prepare release mitreid-connect-0.9.0
12 years ago
Justin Richer 54f1ae972b Added properties and updated poms for sync to central
12 years ago
Justin Richer f101dcc512 moved to released version of SECOAUTH
12 years ago
Amanda Anganes 72e2c7cb6c Updated build references
12 years ago
Justin Richer 6cc50e7cd5 switched signing & validation service to use JWK natively for keys
12 years ago
Justin Richer e2ad4d2e8f cleaned up spurious nosuchalgorithm exceptions, addresses #285
12 years ago
Justin Richer 30c6271e72 cleaned up some more x509 references
12 years ago
Justin Richer ecf99f960a added bean property check
12 years ago
Justin Richer b1c89783ff added functionality for account chooser and third-party login support
12 years ago
Justin Richer 2be305810f added getters and setters
12 years ago
Justin Richer 4dedec76ec moved back to form variables for auth because rest template is dumb
12 years ago
Justin Richer ca40b2fd3e added getters and setters
12 years ago
Justin Richer 1251082c6d implemented simple static configuration services
12 years ago
Justin Richer f44c704472 major refactor of client filter
12 years ago
Justin Richer 999999a822 import cleanup
12 years ago
Justin Richer 6c1e6b2d74 refactored signing and validation, added jwk-based cache, removed keyfetcher, refactored client side class structure
12 years ago
Justin Richer 385853fa1f refactored signing and validation, added jwk-based cache, removed keyfetcher, refactored client side class structure
12 years ago
Justin Richer 5dd6cce790 made default scopes in client a bit more sensible
12 years ago
Justin Richer 2a855a1952 pulled client key publication into its own class to help deal with bean processors
12 years ago
Justin Richer 92f5f31dfc use serialize instead of toString
12 years ago
Justin Richer da7c74affd passthrough for default algorithm config
12 years ago
Justin Richer 774f80dd58 helps when you actually add the verifier you created
12 years ago
Justin Richer 9a98d241e8 updates to track Nimbus JOSE API changes to audience and date fields
12 years ago
Justin Richer 3d9ec51eb3 converted client filters to nimbus-jose
12 years ago
Justin Richer 1c14ce4c1a note well
12 years ago
Justin Richer a6ca7cb31b Merge pull request #263 from ssayer/introspection-fix
12 years ago
Samuel Sayer 458486ac9c fixed typos and dumbness in introspection endpoint filter thingy
12 years ago
Amanda Anganes 67e8714671 Working on request object userinfo parsing
12 years ago
Justin Richer 19e91e9272 fixed typo in form handling in introspecting filter
12 years ago
Justin Richer 27a26e0a35 (user_id/prn) -> sub
12 years ago
Justin Richer c946a84b09 adapted keyfetcher to be more general
12 years ago
Stephen Moore 358bf7fc1c Generic introspecting token services
12 years ago
Amanda Anganes c7ae315e98 Added initial files for nonce service. Repository and service impls are stubs
12 years ago
Justin Richer 45ca4e565e updated to SECOAUTH-1.0.1-BUILD-SNAPSHOT
12 years ago
Amanda Anganes 695091ca82 Refactor part 4 - should be final bit
12 years ago
Amanda Anganes c40efda6b5 Refactor part 1
12 years ago
Justin Richer 7aec0dfe80 added randomized view names to lower possibility of conflicting with local views
12 years ago
Justin Richer d11005fc5f added x509 support
12 years ago
Justin Richer 2d24435365 Created custom resolver, handler mapper
12 years ago
Justin Richer edeae29bef client publisher mapping test
12 years ago
Justin Richer be1046f9b6 bean-based configuration
12 years ago
Stephen Moore 4eee172f79 buildRedirectURI moved to URLUtils
12 years ago
Stephen Moore 05efdbf39d buildURL uses URIUtils now.
12 years ago
Justin Richer 2b62042696 unshadowed Jwe header, unshadowed IdTokenClaims, added smart copy constructor to ClaimSet
12 years ago
Stephen Moore e8eaf48efd Added check for token NotBefore
12 years ago
Justin Richer b47dcf8e6b fixed timestamp math
12 years ago
Justin Richer 26d5a846e0 Updated validator structure and id token checking.
12 years ago
Justin Richer a0df7ad04b client documentation updates, addresses #135
12 years ago
Justin Richer 012bb4afd7 Changed casing on "URI" to "Url" to match other parameters.
12 years ago
Justin Richer d14f55004c added parser to userinfo object, userinfo url in filter, fixed bug in user_id check
12 years ago
Justin Richer fbd6e67af8 Refactored auth provider to call the userinfo endpoint and provide info inside the auth token.
12 years ago
Justin Richer 6ccbf480b3 added token values into the OpenIDConnectAuthToken class and authenticator, still need to do authuserdetailsservice
12 years ago
Justin Richer c5244db1a2 moved nonce from cookie to session, added state processing, cleaned up unused classes
12 years ago
Justin Richer 269c2c9835 fixed nonce cookie handling
12 years ago
Mike Derryberry d93f5f18e5 added state value to jwt that gets passed as request object. certain methods from SECOAUTH use this
12 years ago
Mike Derryberry eff7a2c504 changed nonce claim addition
12 years ago
Mike Derryberry 9d73cd2243 cleaned up imports in filter class
12 years ago
Mike Derryberry 2888c08083 changed cookie claim to include the response
12 years ago
Mike Derryberry bc216785b8 added cookie to response in auth filter for request objects
12 years ago
Mike Derryberry f7cfb39777 updated imports of signed request filter
12 years ago
Mike Derryberry c0d353d7ce removed state parameter from claims. added way to create random nonce value
12 years ago
Mike Derryberry 8e95734f22 changed response-type to code rather than token
12 years ago
Mike Derryberry f8d938630e added passthrough parameters to server config
12 years ago
Mike Derryberry c4ebf5c145 updated signer service
12 years ago
Mike Derryberry d6b0b87769 added state parameter to reqeuest object
12 years ago
Mike Derryberry 99bc1294e3 removed repetative check of "token" parameter in signed request object
12 years ago
Mike Derryberry 685734ce35 updated signing request object in OIDC client by pulling out construction of JWT to its own method.
12 years ago
Mike Derryberry 76c91ea79f removed encrypted request object for OIDC client. will deal with it at a later point
12 years ago
Mike Derryberry 8f22517c81 encrypted request object wip. need to add header parameters to allow encryption. also need to get public key for encryption
12 years ago
Mike Derryberry 70c4c25fa3 finished signed request object for client, created encrypted request object for client
12 years ago
Mike Derryberry 42a9b67f5e updated signed request filter to create jwt from parameters, sign it, create url for request, and send a redirect
12 years ago
Mike Derryberry b0eca780d1 changed class to request filter rather than jwt filter
12 years ago
Mike Derryberry 5f0ea41e0e added class for signed request object
12 years ago
Jon Kranes 1fd4d8a4b8 fixed signer map in client/AbstractOIDCAuthenticationFilter.java
12 years ago
Mike Derryberry 4deaffd686 updated hmac and rsa signer to use afterPropertiesSet(), abstract oidc auth filter now adds multiple signers to map and then picks the one it needs, and key fetcher now gets jwk
13 years ago
Mike Derryberry caf2a7b494 updated encryption service to encrypt key and claims and then sign the jwe. decryption updated to decrypt encrypted key and ciphertext
13 years ago
Mike Derryberry e252951612 added encrypter/decrypter for claims to get ciphertext
13 years ago
Mike Derryberry 33cc3fa899 Added spring simple web app for testing, encryption and decryption classes for rsa and hmac, still WIP
13 years ago