OpenID-Connect-Java-Spring-Server

Commit Graph

Author	SHA1	Message	Date
faidh	2c41e6a267	Add SNAPSHOT back to pom files	3 years ago
faidh	8a58d12600	Merge latest MitreID with updated 3pps back to GitHub fork	3 years ago
Justin Richer	f5df762153	[maven-release-plugin] prepare for next development iteration	3 years ago
Justin Richer	a0bd2c70ac	[maven-release-plugin] prepare release mitreid-connect-1.3.4	3 years ago
shrexster42	6906f616e2	Upgrade to Java 11 and Spring 5	3 years ago
Michael Stepankin	7eba3c12fe	Fix Spring Autobinding vulnerability 1. Make authorizationRequest no longer affected by http request parameters due to @ModelAttribute. See http://agrrrdog.blogspot.com/2017/03/autobinding-vulns-and-spring-mvc.html	4 years ago
Justin Richer	621e86e62d	[maven-release-plugin] prepare for next development iteration	6 years ago
Justin Richer	73459f0348	[maven-release-plugin] prepare release mitreid-connect-1.3.3	6 years ago
Martin Kuba	ae7debba2f	added refresh_token into grant_types_supported	6 years ago
鄭脈龍	676451c73d	fix bug #1397 Attempting to execute an operation on a closed EntityManager.	7 years ago
Justin Richer	a596cc1fd4	Made full URLs for device flow switchable server-wide instead of per-client	7 years ago
Justin Richer	7ad29ae9c6	Revert "Add possibility to disable verification_uri_complete per client" This reverts commit `dae674af67`.	7 years ago
ondrejvelisek	dae674af67	Add possibility to disable verification_uri_complete per client	7 years ago
ondrejvelisek	67c87d56a6	Add support for verification_uri_complete	7 years ago
Evan Lennick	fe000d91cb	undid autoformatting again	7 years ago
Evan Lennick	011bf8adb8	addressed review feedback	7 years ago
Evan Lennick	0ee4ee2f58	undid some autoformatting changes	7 years ago
Evan Lennick	0b531a0fd3	fixed an issue where missing locales would generate a lot of ERROR level log messages	7 years ago
Sauli Ketola	e6a8e0c17d	Integration tests for new repository methods	7 years ago
Sauli Ketola	a070f61edf	Clean up code in modified classes, remove line breaks, add static imports	7 years ago
Sauli Ketola	51b580aa18	Use 'userName' instead of 'sub' in naming	7 years ago
Sauli Ketola	3f277047e3	Use query by user sub to get all tokens for user	7 years ago
Sauli Ketola	417a6b7c74	Removed some line breaks and auto generated comments for consistency	7 years ago
Sauli Ketola	bf8149605a	Create queries for getting access and refresh tokens by user sub	7 years ago
Justin Richer	e2d94f422a	new year 2018	7 years ago
Justin Richer	b804f22bc8	[maven-release-plugin] prepare for next development iteration	7 years ago
Justin Richer	f72e6b3e08	[maven-release-plugin] prepare release mitreid-connect-1.3.2	7 years ago
Tomasz Borowiec	37fba622b9	Throwing exception on all other JWT types than SignedJWT	7 years ago
Tomasz Borowiec	c38b9d7a42	added PlainJWT and EncryptedJWT support + tests	7 years ago
Stefan Bodewig	01eb1401a3	add hook for custom JWT claims to DefaultOIDCTokenService	7 years ago
Stefan Bodewig	514dcc3851	add hook for custom JWT claims to ConnectTokenEnhancer	7 years ago
sbke	8b4e461748	Adjustment to generate longer codes RandomValueStringGenerator default constructor creates a code of length six only. The RFC 6819 (OAuth 2.0 Threat Model and Security Considerations) suggests (5.1.4.2.2. Use High Entropy for Secrets) that secrets that aren't used by humans (e.g. client secrets or token handles) have a reasonable level of enthropy. They propose a token lengths of at least 128 bits. Since the RandomValueStringGenerator only uses case sensitive alpha numeric symbols, 22 symbols are needed to achieve an enthropy >=128 bits.	8 years ago
Justin Richer	0b1f9000db	check for missing refresh token value on refresh, closes #1242	8 years ago
Justin Richer	661c242a9f	Updated copyrights	8 years ago
Justin Richer	c11e47a75b	fixed unit test for new default redirect behavior	8 years ago
Justin Richer	2f31ceddf8	set redirect URI matching to strict by default	8 years ago
Justin Richer	7b06d91700	[maven-release-plugin] prepare for next development iteration	8 years ago
Justin Richer	8301f35e17	[maven-release-plugin] prepare release mitreid-connect-1.3.1	8 years ago
Justin Richer	713e872b8a	fixed discovery endpoint, closes #1230	8 years ago
Justin Richer	9baacc0eaf	Completed end session endpoint Addresses #1129, addresses #972, addresses #891, addresses #1223	8 years ago
Justin Richer	2aa12fc0e3	end session endpoint	8 years ago
Justin Richer	0c46e7cb7a	skeleton of end session endpoint, maybe need a change to user info lookup	8 years ago
Justin Richer	0efa77b580	[maven-release-plugin] prepare for next development iteration	8 years ago
Justin Richer	b9b7bf53c3	[maven-release-plugin] prepare release mitreid-connect-1.3.0	8 years ago
Justin Richer	0d564d9714	made token service transactional, closes #1222	8 years ago
Justin Richer	11f3cccab9	fix JWKS parsing in software statements, closes #1220	8 years ago
Justin Richer	702a775881	handle creation time stamp in clients, closes #1210	8 years ago
Justin Richer	45ea899de8	made user codes case insensitive	8 years ago
Justin Richer	d317cf5024	added exception handling to device code creation step	8 years ago
Justin Richer	cc0622edd0	internalized random string generation for device codes	8 years ago

1 2 3 4 5 ...

1488 Commits (master)