e4f2446569
- no restraints on client name and description (neither of them required)
...
- URI regex updated
13 years ago
51fe98b383
ClientAPI now sets owner for clients
13 years ago
f7a0b8de32
Client scope now supported
13 years ago
a1234a4fcd
Timeout form fields now supported. Backbone.JS Validation error handling updates.
13 years ago
2d980a4d8f
Refactoring of routing. Client updates
13 years ago
6f43040587
slight sequence diagrams tweaks, mods to account-chooser and openid-connect-client
13 years ago
b06640c921
First stages of client-side validation worked into application
13 years ago
c45991b561
Adding backbone.js validations framework
13 years ago
3402a3e463
ClientAPI now fully supports RESTful DELETE
13 years ago
7f5b9e2c82
ClientAPI now supports DELETE method
13 years ago
abf3f0ec33
Merge remote branch 'origin/master'
13 years ago
af6e043239
Client Entity now initialized with non-null values so JPA won't flip. Added unified method for saving. Sync'd class member names to allow proper binding.
13 years ago
7e3ce2d583
mods to reflect client <-> account chooser protocol, and refactoring...
13 years ago
0c7ea88323
Client updates.
13 years ago
0f9b828066
ClientAPI admin requirement now global
13 years ago
32e67730d8
ClientAPI maps to individual clients by IDs
13 years ago
6b481cd3bb
ClientAPI header updates
13 years ago
a4fc4e939e
ClientAPI cleanup
13 years ago
f91071c350
New clients now attempt to POST to client API
13 years ago
5e81ed6346
added some content to the architecture file
13 years ago
7375d00e88
added taglib hack
13 years ago
e00bba7ede
factored out one more piece of the security config
13 years ago
fd91c884bb
Made interfaces... deleted a thing.
13 years ago
ffe31e6049
merged config from bean config config bean bean
13 years ago
e158ef6fc2
added config bean
13 years ago
95fc66de31
Merge branch 'master' of github.com:jricher/OpenID-Connect-Java-Spring-Server
13 years ago
e33f277bbe
Updated classes to track newest version of SECOAUTH. This update closes issues #3 , #4 , #8 , and #36 (infinite redirects). This revision changes the authorization and token endpoints to be /openidconnect/auth and /openidconnect/token, respectively.
13 years ago
9abb15a559
Approval page style upgraded to bootstrap 2 classes
13 years ago
e6f77fd061
Merge branch 'master' of github.com:jricher/OpenID-Connect-Java-Spring-Server
13 years ago
c003bbf2c6
extracted user information from spring servlet config
13 years ago
4f0ffd872b
Removing older version of bootstrap
13 years ago
c8e3f70115
Now requiring homepage login
13 years ago
7dd81ac2de
Server-side dynamics
13 years ago
eb9f2617ba
New look
13 years ago
23fd7b1b21
Renaming Client View class
13 years ago
eda7505b7b
Client API now renders JSON for all Clients
13 years ago
ba56c00318
Backbone JS support for creating a new client.
13 years ago
c02bac8c38
New client actions rendered as buttons rather than anchors
13 years ago
4c503a7f40
Client table now fully rendered client-side with JS templates.
13 years ago
e9954f4439
Bootstrap spelling correction
13 years ago
df174a1695
Test Client JS now valid. App.JS updates
13 years ago
e2e2dfca43
TD now rendered dynamically
13 years ago
9f979cb742
Views now load after fetching templates
13 years ago
784fd14917
Client manager now renders views in bootstrap.
13 years ago
3859429ed6
Client javascript test updates
13 years ago
5622ccbf41
Removing Javascript CDN. This will fix cross domain issue when requesting JSON objects.
13 years ago
0134c4ea96
Merge remote branch 'origin/master'
13 years ago
df67c23dba
Removing Resig templating. Backbone.js provides template support.
13 years ago
97dffb6414
added copyright to all java files. closes #11
13 years ago
6724866099
moved jwt components, utilities, and various interfaces to -common from -server
13 years ago
59ecb03548
added getter/setter for userinforepository, closes #40
13 years ago
37452f4bb5
Client side JS updates
13 years ago
c98204e705
Renamed mockup directory
13 years ago
d1a773d512
Client backbone.js Model initial commit
13 years ago
181b0ce605
Removing unneeded div el
13 years ago
703a8abab5
client management now bootstrap 2 compatible
13 years ago
57ebb7d287
Adding global JS to template
13 years ago
897e6e85d3
Removing inline client editing popup
13 years ago
2573c98c2d
Re-write of base template using bootstrap 2
13 years ago
b38c8c18d6
Edit form mock-up updates. Organized forms and input.
13 years ago
51b8650327
Bootstrap 2 html test updates - removing compile javascript
13 years ago
2e4f312f79
Fixed tests - they were pointing to the wrong context file.
13 years ago
a9088b4999
Merge branch 'Single_Spring_Context_file'
13 years ago
07a305b8b7
Refactored code to use a single spring context file. This uses the default oauth/authorize and oauth/token URLs, but it seems to be free of the infinite redirect issue. Next up: try putting in our custom URLs.
13 years ago
8ab1fc1b60
Bootstrap 2 html tests
13 years ago
9c86a23ee1
Bootstrap 2
13 years ago
ed304fa391
Edit client mock-up.
13 years ago
c4edd7111e
Breadcrumb tag renders "crumb" attribute
13 years ago
dc42eb7789
Client management page now renders test JSON
13 years ago
59078cc68d
eclipse updates from maven
13 years ago
6899a16c2f
Merge branch 'Really_fixing_redirects'
13 years ago
5d78bc4e0a
Infinite redirect issue fully fixed, with our custom urls for the authorization and token endpoints. See issue #8 .
13 years ago
67edc1c191
Seems to be fixed! Added the "security:" prefix to the first http block in application-context. The compiler should have been catching that there was no matching for http w/o it, but it was just letting it through.
13 years ago
05b2cf8fff
removed vestigial user details code
13 years ago
f0f339d45f
current state
13 years ago
6eb8284695
version needed to be modified to 0.1-SNAPSHOT in order to deploy snapshot to nexus
13 years ago
69dc1fe361
Removing our custom authorization endpoint and token endpoint urls, as well as the filter required by those custom urls (in web.xml), fixes the infinite redirect problem. This has been submitted as an issue to the SECOAUTH team.
13 years ago
2fc4ce177c
This commit fixes the infinite redirect, somewhat. See updated issue #8 .
13 years ago
17f6e2a2fb
Removed tables.sql.
13 years ago
486b7723d3
Merge branch 'master' of github.com:jricher/OpenID-Connect-Java-Spring-Server
13 years ago
269a354f8c
Added tables.sql, which is just a concatenation of all the other sql files. Added redirect_uris.sql, which is a NEW table needed to support clients registering multiple redirect uris.
...
This updates us to the HEAD revision of SECOAUTH, where the redirect uri field on ClientDetails has been updated to be a Set<String> instead of a single string. I updated the UI code so that it will still work, but it will need to be updated to allow users to register multiple uris.
This also closes issue #2 from the issue tracker.
13 years ago
d056079fea
Support for ECDSA JWT signer was removed as it would require the system-wide installation and configuration of the Bouncy Castle Security Provider in order for the server to work when deployed to Tomcat. See issue ticket #20
13 years ago
14f6eca026
Merge branch 'fixing_redirects'
13 years ago
5b09c93024
Cleaned up the context files a bit, no big changes yet.
13 years ago
eabc49cb01
fixed documentation, included python source to generate signature
13 years ago
c21607dcbe
fixed hmac unit test after signature base string was fixed in underlying code
13 years ago
6c8661f3ad
the signature base created in the verify method of the AbstractJwtSigner did not match how the Jwt.getSignatureBase creates the signature base. also, modified the testGenerateHmacSignature to exercise
13 years ago
267f1b2de3
bas64 decoded signature prior to verifying, modified unit rsa unit test, and fixed ecdsa signer verify
13 years ago
985a4619fa
abstracted keystore loader to new function
13 years ago
3dfe6df410
refactored algorithms out to their own separate Enum
13 years ago
fec6a3a876
removed definition parsers, may be picked up again later
13 years ago
b986b30695
Fixed unit tests - they were broken due to an error in application-context.xml; not because of the refactor. App context was trying to instantiate an Hmac signer with name "HMACSHA256", which should have been "HS256". I updated the exceptions thrown by the signer impls so that if an Algorithm name mismatch occurs it will tell you what it is trying to match against.
13 years ago
0a29eba617
unit test correction, slight refactor of tested classes
13 years ago
1209e9a83f
fix to JwtTest unit test
13 years ago
f215cfc50c
fix for issue 5, code refactoring across signers
13 years ago
4f407a3a11
added rsa1024 key to keystore
13 years ago
1a1ae4c5b5
Removed Replacer plugin
13 years ago
c50f968748
Merged to use idToken.setNonce().
13 years ago
268b82e31d
Merge branch 'Branch_master3-23-2012'
13 years ago
8b10b83516
Added setNonce to JwtClaims.
13 years ago
34f24deb3e
Merge branch 'mitreaccounts'
13 years ago
4a15e51e12
pass through nonce
13 years ago
6c3552ebfa
changed mitre account names
13 years ago
b4836a0302
mods to auth filter including config comments, http socket time out...
13 years ago
27fe3c9eca
Implemented signing. Works, but validation does not fail if you remove the signature.
13 years ago
68c8d1a9d2
Changed parameter for check id endpoint to access_token instead of auth_token
13 years ago
826be5a1a1
changed parameter name to match spec change
13 years ago
5fe036878a
fixed view for idtoken in checkid endpoint
13 years ago
c51bb72fe5
merged keystore changes
13 years ago
6c01134095
JWK display support for key maps, still no key ids
13 years ago
776748f908
Merge branch '3-22-2012'
13 years ago
ae9b5e792a
Added a ConfigurationPropertiesBean.java to hold configuration properties. Fixed up CheckIDEndpoint.java a bit - it works, but is outputting the wrong thing.
13 years ago
d5e7000365
disabled custom namespace parsers for keystores
13 years ago
524a8e153e
signers turned into a map
13 years ago
664dd1df46
JWT claims can now have nulls in them without barfing
13 years ago
c59d3fe963
it spits out JWTs! and id tokens! JWT still needs to handle nulls
13 years ago
ebe72412fe
Authorization Grant flow works up to serializing the returned Access Token. Justin is investigating serialization problems.
13 years ago
d94eb338ee
Auth code flow works through user approval page. Current problem is that it doesn't seem to be matching up auth codes correctly (I keep getting "invalid code" error). But, it looks like it's going through our custom token granter so that is good.
13 years ago
8263ce0dd5
added external class to persistence context
13 years ago
b463cabc69
fixed configuration, moved sql file
13 years ago
2f29cc52b2
Merge branch 'client_refactor'
13 years ago
baf7c1c166
fixed dependencies and project configurations
13 years ago
e6e7504213
added files and shuffled things to new packages
13 years ago
a0cdd8bf2f
moved server to new package location
13 years ago
Michael Jett