f483d41b88
getCustomClaim -> getClaim. Also, removed outdated TODOs.
12 years ago
15aea61fbe
Applied code cleanup
12 years ago
3e23967b46
Updated code to reflect SECOAUTH changes
12 years ago
0d8c2442d2
[maven-release-plugin] prepare for next development iteration
12 years ago
9bf5f70957
[maven-release-plugin] prepare release mitreid-connect-1.0.5
12 years ago
6e8ab7736e
added hybrid client and server services, addresses #387
12 years ago
a9da88fb79
brought introspection endpoint and introspection token services into compliance with draft, addresses #376
12 years ago
2d16b8d458
revised unit tests in TestSignedAuthRequestUrlBuilder.
12 years ago
3edd6c83b3
added unit test for parsing signed jwt auth requests.
12 years ago
22b89f50be
restored scheme choosing logic in webfinger service.
12 years ago
936f581a0b
[maven-release-plugin] prepare for next development iteration
12 years ago
27edec1a56
[maven-release-plugin] prepare release mitreid-connect-1.0.4
12 years ago
6d5e0a1092
added test for exception handling. removed unused imports.
12 years ago
19718438c9
TestSignedAuthRequestUrlBuilder done. Relies heavily on com.nimbusds library.
12 years ago
77bdfe344e
init commit TestSignedAuthRequestUrlBuilder.
12 years ago
ded9c21a47
moved back to custom regex to handle user input
12 years ago
77c5e7b94c
switched to using UriComponents instead of custom class, updated normalization and processing rules for webfinger discovery
...
addresses #363
12 years ago
8cf83f537a
fixed auth header
...
addresses #325
12 years ago
3b3715ff91
automatic save file creation
12 years ago
98d917f3b9
added extension mechanism for saving client information in between runs
12 years ago
70958376cb
added whitelist/blacklist to issuer services
12 years ago
3259ae916f
TestThirdPartyIssuerService done.
12 years ago
1d793c4687
TestPlainAuthRequestUrlBuilder done.
12 years ago
f36db3c798
init commit TestPlainAuthRequestUrlBuilder.
12 years ago
c212821267
Fixed ChainedTokenGranter setup
12 years ago
530c3a75ee
Applyed refactoring
12 years ago
f0f2fbea40
updated secoauth library version in poms
12 years ago
2b3376e0ed
[maven-release-plugin] prepare for next development iteration
12 years ago
7fe4bc3b56
[maven-release-plugin] prepare release mitreid-connect-1.0.3
12 years ago
c577b691c7
moved OIDC auth token and userinfo interception filter to common package, addresses #353
12 years ago
48e8f5edad
better specificity of principle object in client filter
12 years ago
e87c0329de
removed old erroneous test
12 years ago
567a3314d6
[maven-release-plugin] prepare for next development iteration
12 years ago
1286726188
[maven-release-plugin] prepare release mitreid-connect-1.0.2
12 years ago
78457b70fc
removed dependency on commons.lang
12 years ago
3c5025c52b
Updated version number for secoauth
12 years ago
25d75a1b30
[maven-release-plugin] prepare for next development iteration
12 years ago
5418bdef5a
[maven-release-plugin] prepare release mitreid-connect-1.0.1
12 years ago
81cd13f6d3
added RegisteredClient class to facilitate client configuration and dynamic registration, addresses #335
12 years ago
667746ddd2
redirect uri is now configurable via the client configuration object, addresses #326 , #330
12 years ago
cd99f27bf8
Changed references from ClientDetails to ClientDetailsEntity, pending new ClientConfiguration class utility class from #335 .
...
Addresses #331
12 years ago
cd711a8ac6
clean up code format
12 years ago
671ea4d816
Issue-331: Changing code to support basic authentication when it comes to accessing token endpoint.
12 years ago
1e24b31cc3
Propogating rename of AuthorizationRequest to OAuth2Request
12 years ago
defa5b8fbc
[maven-release-plugin] prepare for next development iteration
12 years ago
dbdc99361e
[maven-release-plugin] prepare release mitreid-connect-1.0.0
12 years ago
1e870703f8
added licence/copyright header
12 years ago
5910d29472
removed x509 publishing from client lib
12 years ago
8afab04544
whitespace, import, brace, annotation, and format cleanups
12 years ago
9b03801f9d
[maven-release-plugin] prepare for next development iteration
12 years ago
d76304b9a6
[maven-release-plugin] prepare release mitreid-connect-0.9.3
12 years ago
94aa279290
[maven-release-plugin] prepare for next development iteration
12 years ago
cc92743888
[maven-release-plugin] prepare release mitreid-connect-0.9.2
12 years ago
0e9273fd08
added authority for subject-issuer authorities and associated mapper, addresses #234
12 years ago
29aa0f2be6
continued updating userid->sub in auth token
12 years ago
df51ef5a48
updated to post JSON
12 years ago
184c03e2d4
added registration endpoint url to dynamic server config fetch
12 years ago
fb859fc39a
added client dynamic registration service, extracted clientdetails<->json processing into its own static class
12 years ago
0b0e52b7a3
extracted parsers and rest templates appropriately
12 years ago
cf39b49657
added registration uri to server config, changed index of client config service to be server config not just issuer
12 years ago
13f1a1741c
updated oidc auth token field from user_id -> sub (addresses #307 )
12 years ago
60525a52af
added null checks in client filter
12 years ago
57cefa595a
added redirect to login page when no identifier is given
12 years ago
814c70c9a2
regex-based webfinger parser (yuck)
12 years ago
70cac0c690
uri-based parsing of user inputs
12 years ago
e708f77eb3
Fixed up OIDC code so that it runs with new SECOAUTH changes; removed old AuthorizationRequestImpl class which is no longer needed
12 years ago
51dfd67d0c
started webfinger client
12 years ago
f76f44b999
added dynamic discovery to client
12 years ago
e665aec36f
dependency cleanup
12 years ago
ac2993c402
[maven-release-plugin] prepare for next development iteration
12 years ago
f0d75f9144
[maven-release-plugin] prepare release mitreid-connect-0.9.1
12 years ago
5f54777109
[maven-release-plugin] prepare for next development iteration
12 years ago
620a60ddc2
[maven-release-plugin] prepare release mitreid-connect-0.9.0
12 years ago
54f1ae972b
Added properties and updated poms for sync to central
12 years ago
f101dcc512
moved to released version of SECOAUTH
12 years ago
72e2c7cb6c
Updated build references
12 years ago
6cc50e7cd5
switched signing & validation service to use JWK natively for keys
12 years ago
e2ad4d2e8f
cleaned up spurious nosuchalgorithm exceptions, addresses #285
12 years ago
30c6271e72
cleaned up some more x509 references
12 years ago
ecf99f960a
added bean property check
12 years ago
b1c89783ff
added functionality for account chooser and third-party login support
12 years ago
2be305810f
added getters and setters
12 years ago
4dedec76ec
moved back to form variables for auth because rest template is dumb
12 years ago
ca40b2fd3e
added getters and setters
12 years ago
1251082c6d
implemented simple static configuration services
12 years ago
f44c704472
major refactor of client filter
...
Collapsed filter into single class
pulled server config and client config management into service classes
created service for issuer (will handle account chooser)
created auth request services (handle signed and unsigned requests)
12 years ago
999999a822
import cleanup
12 years ago
6c1e6b2d74
refactored signing and validation, added jwk-based cache, removed keyfetcher, refactored client side class structure
12 years ago
385853fa1f
refactored signing and validation, added jwk-based cache, removed keyfetcher, refactored client side class structure
12 years ago
5dd6cce790
made default scopes in client a bit more sensible
12 years ago
2a855a1952
pulled client key publication into its own class to help deal with bean processors
12 years ago
92f5f31dfc
use serialize instead of toString
12 years ago
da7c74affd
passthrough for default algorithm config
12 years ago
774f80dd58
helps when you actually add the verifier you created
12 years ago
9a98d241e8
updates to track Nimbus JOSE API changes to audience and date fields
12 years ago
3d9ec51eb3
converted client filters to nimbus-jose
12 years ago
1c14ce4c1a
note well
12 years ago
a6ca7cb31b
Merge pull request #263 from ssayer/introspection-fix
...
fixed typos and dumbness in introspection endpoint filter thingy
12 years ago
458486ac9c
fixed typos and dumbness in introspection endpoint filter thingy
12 years ago
67e8714671
Working on request object userinfo parsing
12 years ago
19e91e9272
fixed typo in form handling in introspecting filter
12 years ago
27a26e0a35
(user_id/prn) -> sub
12 years ago
c946a84b09
adapted keyfetcher to be more general
12 years ago
358bf7fc1c
Generic introspecting token services
12 years ago
c7ae315e98
Added initial files for nonce service. Repository and service impls are stubs
12 years ago
45ca4e565e
updated to SECOAUTH-1.0.1-BUILD-SNAPSHOT
12 years ago
695091ca82
Refactor part 4 - should be final bit
12 years ago
c40efda6b5
Refactor part 1
12 years ago
7aec0dfe80
added randomized view names to lower possibility of conflicting with local views
12 years ago
d11005fc5f
added x509 support
12 years ago
2d24435365
Created custom resolver, handler mapper
...
moved endpoint back to server
12 years ago
edeae29bef
client publisher mapping test
12 years ago
be1046f9b6
bean-based configuration
12 years ago
4eee172f79
buildRedirectURI moved to URLUtils
12 years ago
05efdbf39d
buildURL uses URIUtils now.
12 years ago
2b62042696
unshadowed Jwe header, unshadowed IdTokenClaims, added smart copy constructor to ClaimSet
12 years ago
e8eaf48efd
Added check for token NotBefore
...
Added timeSkewAllowance magic
12 years ago
b47dcf8e6b
fixed timestamp math
...
(I hate timestamp math)
12 years ago
26d5a846e0
Updated validator structure and id token checking.
12 years ago
a0df7ad04b
client documentation updates, addresses #135
12 years ago
012bb4afd7
Changed casing on "URI" to "Url" to match other parameters.
12 years ago
d14f55004c
added parser to userinfo object, userinfo url in filter, fixed bug in user_id check
12 years ago
fbd6e67af8
Refactored auth provider to call the userinfo endpoint and provide info inside the auth token.
12 years ago
6ccbf480b3
added token values into the OpenIDConnectAuthToken class and authenticator, still need to do authuserdetailsservice
12 years ago
c5244db1a2
moved nonce from cookie to session, added state processing, cleaned up unused classes
12 years ago
269c2c9835
fixed nonce cookie handling
12 years ago
d93f5f18e5
added state value to jwt that gets passed as request object. certain methods from SECOAUTH use this
12 years ago
eff7a2c504
changed nonce claim addition
12 years ago
9d73cd2243
cleaned up imports in filter class
12 years ago
2888c08083
changed cookie claim to include the response
12 years ago
bc216785b8
added cookie to response in auth filter for request objects
12 years ago
f7cfb39777
updated imports of signed request filter
12 years ago
c0d353d7ce
removed state parameter from claims. added way to create random nonce value
12 years ago
8e95734f22
changed response-type to code rather than token
12 years ago
f8d938630e
added passthrough parameters to server config
12 years ago
c4ebf5c145
updated signer service
12 years ago
d6b0b87769
added state parameter to reqeuest object
12 years ago
99bc1294e3
removed repetative check of "token" parameter in signed request object
12 years ago
685734ce35
updated signing request object in OIDC client by pulling out construction of JWT to its own method.
12 years ago
76c91ea79f
removed encrypted request object for OIDC client. will deal with it at a later point
12 years ago
8f22517c81
encrypted request object wip. need to add header parameters to allow encryption. also need to get public key for encryption
12 years ago
70c4c25fa3
finished signed request object for client, created encrypted request object for client
12 years ago
42a9b67f5e
updated signed request filter to create jwt from parameters, sign it, create url for request, and send a redirect
12 years ago
b0eca780d1
changed class to request filter rather than jwt filter
12 years ago
5f0ea41e0e
added class for signed request object
12 years ago
1fd4d8a4b8
fixed signer map in client/AbstractOIDCAuthenticationFilter.java
12 years ago
4deaffd686
updated hmac and rsa signer to use afterPropertiesSet(), abstract oidc auth filter now adds multiple signers to map and then picks the one it needs, and key fetcher now gets jwk
13 years ago
caf2a7b494
updated encryption service to encrypt key and claims and then sign the jwe. decryption updated to decrypt encrypted key and ciphertext
13 years ago
e252951612
added encrypter/decrypter for claims to get ciphertext
13 years ago
33cc3fa899
Added spring simple web app for testing, encryption and decryption classes for rsa and hmac, still WIP
13 years ago
a03129f70a
added documentation updates
13 years ago
c619e736f9
removed eclipse files from repository
13 years ago
5c1b07ae65
don't overwrite an existing JWT nonce
13 years ago
29731d52f6
Merge branch 'refreshtokens' of file:///home/jricher/Projects/workspace-sts/OpenIDConnect-MITRE/OpenID-Connect-Java-Spring-Server into refreshtokens
13 years ago
d4b45006d5
settings file, will be removed shortly
13 years ago
de1597b214
refresh token handling fixed, removed token factory references
13 years ago
ef6c2b56e8
oidc client README.md tweaks
13 years ago
1127a7cfbc
refactored JWKs, updated signing servier to use them
13 years ago
adb8499bee
merged derryberry code, plus tweaks, still WIP
13 years ago
b1fc07bcb8
updated -common code to get a validation service from a server configuration
13 years ago
baa7ce5e7b
Merge branch 'master' of github.com:mitreid-connect/OpenID-Connect-Java-Spring-Server
13 years ago
2930719700
Added architecture diagram
13 years ago
b94fbd7439
updated -common and -client code by removing throws exception, changing to rest templates, and updating test cases to use annotations
13 years ago
488f01cada
existence of nonce claim check added
13 years ago
fe3bbfb3d5
Further cleanups. Still missing:
...
- All tests extend TestCase, should use annotations instead
- Several elements throw Exception
- Key Fetchers should use RESTTemplates and be in a separate utility set
13 years ago
b86abdd761
merge from pull request, plus cleanup
13 years ago
731ad2e2e2
updated SECOAUTH reference, fixed some SQL files, temporarily closed token timeout issue
13 years ago
f9558f0955
stripped out check id endpoint interaction as it deprecated, refactored nonce checking based on spec change, pull user_id as id_token token claim
13 years ago
65dc3daaf8
smart client
13 years ago
2a05ff995d
Added support for additional field in ClientDetailsEntity.java.
13 years ago
ee28d56031
initial implementation of x509 and JWK key retrieval
13 years ago
8917e75010
see issue #19
13 years ago
e5720b9ce9
added UserDetailsService example
13 years ago
579954f966
grammar tune up
13 years ago
6f43040587
slight sequence diagrams tweaks, mods to account-chooser and openid-connect-client
13 years ago
7e3ce2d583
mods to reflect client <-> account chooser protocol, and refactoring...
13 years ago
e33f277bbe
Updated classes to track newest version of SECOAUTH. This update closes issues #3 , #4 , #8 , and #36 (infinite redirects). This revision changes the authorization and token endpoints to be /openidconnect/auth and /openidconnect/token, respectively.
13 years ago
77e630473a
readme tweaks.
13 years ago
755d0d4c88
issue #39
13 years ago
2cf12d4078
Made getAll use ? extends UserInfo
13 years ago
97dffb6414
added copyright to all java files. closes #11
13 years ago
59ecb03548
added getter/setter for userinforepository, closes #40
13 years ago
6eb8284695
version needed to be modified to 0.1-SNAPSHOT in order to deploy snapshot to nexus
13 years ago
f215cfc50c
fix for issue 5, code refactoring across signers
13 years ago
c84c751991
client refactoring, and javadocing
13 years ago
b8c953281e
integration changes to client
13 years ago
1a1ae4c5b5
Removed Replacer plugin
13 years ago
02d0471acf
scope wasn't quite right, needed a space
13 years ago
b4836a0302
mods to auth filter including config comments, http socket time out...
13 years ago
3f2631367f
added comments on configuration of client
13 years ago
626779b58e
refactored client package name to something sensible
13 years ago
b463cabc69
fixed configuration, moved sql file
13 years ago
baf7c1c166
fixed dependencies and project configurations
13 years ago
e6e7504213
added files and shuffled things to new packages
13 years ago
William Kim