01ca5ef8e2
[maven-release-plugin] prepare release mitreid-connect-1.2.3
2015-12-21 10:31:47 -05:00
8294dbedd5
handled HTTP and parsing errors, fixed guava cache contract, fixes #372
2015-12-18 17:42:15 -05:00
b3486c31a0
added cache to user info fetcher, closes #833
2015-12-18 16:30:03 -05:00
d338352cc8
scroll Ui to top of page on page loads, closes #977
2015-12-18 15:41:01 -05:00
aa878cc3cf
pulled checks for expired tokens into utility functions
2015-12-18 11:22:50 -05:00
105d5d9e3d
Update to Spring 4.1.9 and Spring Security 3.2.9
...
https://spring.io/blog/2015/12/17/spring-framework-4-2-4-4-1-9-released
https://spring.io/blog/2015/11/02/spring-security-3-2-9-released
Closes #987
2015-12-18 10:07:23 -05:00
698feb49cd
check access token expiration on read. closes #983
2015-12-16 22:46:42 -05:00
e1800b5fd6
fixed ITC URL
2015-12-16 14:54:51 -05:00
616220e048
added praseodym to contributors list (thanks!)
2015-12-16 14:51:27 -05:00
7f464c496b
changed copyright to new consortium name
2015-12-16 14:51:12 -05:00
be9d8948ef
added UMA classes to logger configuration
2015-12-10 16:35:25 -05:00
d120e8fb20
return ID of resource set in Location URL by calling the right object
2015-12-10 16:35:17 -05:00
1596b6b9e7
Updated UMA server to use new multi-part messages structure
2015-12-10 16:35:05 -05:00
ea77bf2a19
quieted approved site cleanup
2015-12-02 16:51:55 -05:00
9ffe877766
added getId to address interface, closes #958
2015-11-25 16:06:17 -05:00
1ed3e2c47a
quieted logging on database cleanup tasks when no expired elements are found
2015-11-25 15:55:16 -05:00
fcfc620d51
updated client API with more useful errors, removed unused service reference
2015-11-25 15:42:09 -05:00
c59f722cc2
enforce pairwise identifier consistency in UI, closes #969
2015-11-25 15:36:15 -05:00
2496dc114c
allow language system to be loaded from multiple files. closes #817 closes #876
2015-11-24 20:33:55 -05:00
e255fc1a10
change default behavior of message source, closes #964
2015-11-24 20:33:54 -05:00
70751a3d4a
updated configuration to comment out optional property value in example
2015-11-24 12:17:32 -05:00
7b34a666d9
Make the dual client support configurable
2015-11-24 12:10:27 -05:00
a80953a2d4
Allow both flows authorization code and client credentials. This scenario might be found when the same client supports user authentication as well as service to service authentication. Such a client is trusted (whitelisted).
2015-11-24 12:10:27 -05:00
dce80d488b
Clean up ScopeClaimTranslationService
...
`getFieldNameForClaim` method is never used.
2015-11-23 21:35:16 -05:00
f27673a5f5
Align user profile claims
...
Especially helps when `<dd>` collapses due to an empty claim value.
2015-11-23 21:34:54 -05:00
4f9ea0b474
Improve state handling in handleAuthorizationCodeResponse
...
Fail fast when there is no state in session, e.g. because the session
cookie was removed.
Resolves #949
2015-11-23 21:34:35 -05:00
6d2b73a7ef
added JSPs to filter
2015-11-23 21:25:02 -05:00
4c1e6866ce
Filter only `*.tag` files
...
Instead of excluding all binary files, just filter `*.tag` files.
http://maven.apache.org/plugins/maven-resources-plugin/examples/filter.html
2015-11-23 21:03:23 -05:00
a3d01727f9
Make FILTER_PROCESSES_URL public
...
Currently hardcoded in the filter and the client's Spring Security config; would be nicer to reference the value instead.
c5e70ebd5c/src/main/webapp/WEB-INF/spring/appServlet/servlet-context.xml (L54)
2015-11-23 21:03:08 -05:00
abff7421c1
Upgrade to Spring Framework 4.1.8
...
http://spring.io/blog/2015/10/15/spring-framework-4-2-2-4-1-8-and-3-2-15-available-now
2015-11-23 21:02:46 -05:00
5f24685f17
removed problematic (and not very useful) unit test, closes #742
2015-10-19 15:00:41 -04:00
f04face41e
updated to nimbus 4.3, check JCE policy and algorithm availability before running unit tests, closes #938
2015-10-19 14:47:56 -04:00
2deec98b58
[maven-release-plugin] prepare for next development iteration
2015-10-13 18:56:47 -04:00
d96b2dc130
[maven-release-plugin] prepare release mitreid-connect-1.2.2
2015-10-13 18:56:44 -04:00
6129cfa61a
added scope-based authorities granter for introspections services, closes #835
2015-10-13 18:51:21 -04:00
96f4d5e8a8
fixed use of wrong constant, closes #940
2015-10-13 18:08:56 -04:00
a5701f4ea3
limit client pagination to 10 pages at a time, closes #886
2015-10-13 17:55:18 -04:00
8cc89e4e85
made token fetching lazy-loaded
2015-10-13 17:04:36 -04:00
c9358f348a
added transactional annotations, finally closes #926 addresses #862
2015-10-13 16:59:11 -04:00
e1e892377f
added cleaner for duplicate refresh tokens
2015-10-13 15:38:07 -04:00
542afca459
cleans duplicate access tokens from DB before other cleanup happens
2015-10-13 15:33:23 -04:00
9599642f3a
upgraded nimbus in uma module`
2015-10-13 12:13:07 -04:00
149e93e970
Disabled broken crypto tests, pending #938
2015-10-13 11:57:41 -04:00
ebb4f2c3d4
Upgraded to nimbus 4.2, closes #934
2015-10-13 04:40:01 -04:00
c67611e975
added qualifier name to persistence unit and transaction manager, closes #883
2015-10-12 21:15:30 -04:00
d337e14de3
Remove transitive commons-logging dependencies
...
We use slf4j instead; jcl-over-slf4j needs to be a compile-time dependency because we use it in several classes.
Unfortunately Maven does not have a way to exclude commons-logging globally, so we need to figure out which dependencies include it through `mvn dependency:tree` and specify an `<exclusion>` for each of them.
Finally, we upgrade to slf4j 1.7.12: http://www.slf4j.org/news.html .
2015-10-12 20:17:51 -04:00
b89fa7028d
Use Maven BOM dependency for Spring
...
The Maven "bill of materials" dependency ensures that all Spring dependencies use the same version, without having to specify them all.
http://docs.spring.io/spring/docs/current/spring-framework-reference/htmlsingle/#overview-maven-bom
2015-10-12 20:17:51 -04:00
d280ca40a4
login hints now handled in a slightly smarter (and more pluggable) manner, closes #851
2015-10-12 20:04:02 -04:00
98e1d26134
limited when login_hint is sent to the server, closes #963
2015-10-12 17:56:31 -04:00
301802abd3
Speed up servlet start
...
- Set metadata-complete="true" attribute on the <web-app> element.
- Add an empty <absolute-ordering /> element.
See:
https://wiki.apache.org/tomcat/HowTo/FasterStartUp#Configure_your_web_ap
plication
On my (old) machine, this reduces startup time with Jetty from 137580ms
to 20166ms.
2015-10-12 13:10:04 -04:00
Justin Richer