Commit Graph

386 Commits (0b531a0fd39c9d615310838381ecd3be620de312)

Author SHA1 Message Date
Justin Richer acb3d03052 added 'kid' to all signed tokens, closes #899 2015-10-01 18:54:38 -04:00
Justin Richer 48bc26901a added JTI to client auth 2015-10-01 18:54:15 -04:00
Bernd Frey 9fe98e0132 OIDCAuthenticationFilter: Make authenticationSignerService optional so
it must not be provided in Spring config

OIDCAuthenticationProvider: Setter for UserInfoFetcher, so own
implementation can be wired

UserInfoFetcher: Call to DefaultUserInfo.fromJson moved to method, so it
can be overwritten by own implementation to use own UserInfo
implementation
2015-08-21 17:33:23 -04:00
Justin Richer 22c05ec51b [maven-release-plugin] prepare for next development iteration 2015-08-05 12:07:47 -04:00
Justin Richer e6b64cd9cd [maven-release-plugin] prepare release mitreid-connect-1.2.0 2015-08-05 12:07:44 -04:00
Justin Richer 489450b1c2 automated code format cleanup 2015-08-05 12:04:14 -04:00
Justin Richer 15c2b57730 [maven-release-plugin] prepare for next development iteration 2015-07-30 14:00:20 -04:00
Justin Richer 8317c759f1 [maven-release-plugin] prepare release mitreid-connect-1.2.0-RC2 2015-07-30 14:00:18 -04:00
Justin Richer a4e75ed733 [maven-release-plugin] prepare for next development iteration 2015-07-09 18:29:14 -04:00
Justin Richer 58a47d0e46 [maven-release-plugin] prepare release mitreid-connect-1.2.0-RC1 2015-07-09 18:29:12 -04:00
Justin Richer 3c297ba18f collapsed error clause 2015-07-08 14:35:45 -04:00
Justin Richer 42b93be492 added uri-encoded client service, closes #857 2015-07-07 17:55:56 -04:00
Justin Richer 667c766273 reverted over-reaching check on webfinger fetcher 2015-07-03 20:16:32 -04:00
Justin Richer d2a393f7f9 converted error handlers to a single @ControllerAdvice class, closes #788 2015-06-24 17:26:10 -04:00
Justin Richer 7df3597757 split client's auth token into pending and authorized classes 2015-06-24 16:00:40 -04:00
Justin Richer b4520c170e ID Token carried through as parsed JWT instead of string, closes #832 2015-06-24 16:00:40 -04:00
Justin Richer f4a1b27e2e better handling of HTTP and JSON errors on network fetches, added http-forcing behavior for webfinger client and sector URL service 2015-06-23 22:21:18 -04:00
Justin Richer 9ae92b983a added http and json error handling to webfinger service 2015-06-23 21:50:16 -04:00
Justin Richer c166cbe49c added login hint capability to client library 2015-06-23 21:21:41 -04:00
Stephen Moore a259841eaf Added getters and setters to IntrospectingTokenService
Fixed TokenCacheObject constructor for setting TCO's expire time
2015-06-09 13:37:07 -04:00
Stephen Moore 698fe55b85 IntrospectingTokenService now takes parameters (cacheTokens, cacheNonExpiringTokens, defaultExpireTime, forceCacheExpireTime) to change the behavior or even disable the caching of responses from the IntrospectionEndpoint. 2015-06-04 16:33:37 -04:00
Mark Janssen 9e74e40453 Use diamond syntax instead of explicit types 2015-06-03 10:24:48 -04:00
Mark Janssen 13f5e4f8a6 Collapse identical catch branches 2015-06-03 10:24:48 -04:00
Mark Janssen 6dc2b2cb5e Various small improvements/bugfixes 2015-06-03 10:24:41 -04:00
William Kim 54fbf0d0ac Added null check for expiration during introspection. Making assumption that null exp means tokens dont expire. 2015-06-03 09:57:22 -04:00
Justin Richer d1e8529a7b expose ID Token and UserInfo to the AuthoritiesProvider and AuthoritiesMapper, both extensible
closes #699
closes #761
2015-06-01 21:11:19 -04:00
Mark Janssen effe955953 Fix blacklist/whitelist for DynamicRegistrationClientConfigurationService
ClientConfigurationService#getClientConfiguration has ServerConfiguration as parameter, not String
2015-05-28 17:05:55 -04:00
Justin Richer caf85b990d Revert "added option to send skip sending nonce if desired, closes #704, closes #683,"
This reverts commit bbeaeb06e3.

Conflicts:
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/OIDCAuthenticationFilter.java
	openid-connect-common/src/main/java/org/mitre/openid/connect/config/ServerConfiguration.java
2015-05-28 16:44:26 -04:00
Justin Richer d32118d017 Revert "added unit tests for nonce-less url builders (exception cases)"
This reverts commit ada1b0d24e.

Conflicts:
	openid-connect-client/src/test/java/org/mitre/openid/connect/client/service/impl/TestPlainAuthRequestUrlBuilder.java
2015-05-28 16:41:24 -04:00
Justin Richer 0d6775dfa8 made auth request url builder handle multiple keys 2015-05-22 13:04:21 -04:00
Justin Richer da72ce02ad added token endpoint options to client filter, closes #803 2015-05-13 16:53:35 -04:00
Justin Richer 617d485478 updated all references to media types to use constants instead of literals, closes #767 2015-03-11 12:06:38 -04:00
Justin Richer c09b63c69f made logger declarations consistent across project, closes #780 2015-03-08 21:56:33 -04:00
Justin Richer 7a1480bb07 moved and consolidated json utilities 2015-02-26 16:20:01 -05:00
Justin Richer b376bc6059 removed some vestigial service/repository calls, closes #513 2015-02-17 16:22:40 -05:00
Justin Richer 05f03f7c90 yet more year updates 2015-02-17 13:09:45 -05:00
Justin Richer 994ce6c743 consistently named JOSE-based classes, closes #529 2015-02-17 12:11:58 -05:00
Justin Richer 685960358c formatting cleanup 2015-02-17 11:08:46 -05:00
Justin Richer e2349984b8 happy new year 2015! 2015-02-17 10:24:08 -05:00
Justin Richer 70779a69ea reorganized dependency management section, managed cross-module dependencies, updated Nimbus JWT library 2015-02-16 14:45:13 -05:00
Justin Richer 587d4b2db6 further pom file cleanup 2015-02-16 14:24:48 -05:00
Justin Richer a9544059cf flagged spurious serialization warnings from the libraries (we're not actually serializing things here) 2015-02-16 12:31:43 -05:00
Justin Richer 77c06e9557 replaced deprecated http components calls, closes #744 2015-02-16 12:31:16 -05:00
Justin Richer 3708b531df moved requirement to different component, closes #759
also cleaned up comments in filter
2015-02-16 11:16:24 -05:00
Justin Richer ada1b0d24e added unit tests for nonce-less url builders (exception cases) 2014-12-19 20:55:40 -05:00
Justin Richer bbeaeb06e3 added option to send skip sending nonce if desired, closes #704, closes #683, 2014-12-18 23:22:59 -05:00
William Kim 9aa45f8efb Made the constructor public for OIDCAuthentication filter. 2014-12-18 20:55:15 -05:00
Justin Richer 69c19d35fa moved test into test package 2014-11-13 22:17:45 -10:00
Justin Richer 775b77b367 updated date format of token introspection response, closes #719 2014-11-13 11:08:20 -10:00
Justin Richer e6d10b67a4 update to Spring 4 and other related libraries 2014-11-10 18:29:54 -10:00
Justin Richer bc9942e929 relaxed issuer constraints in client, closes #638 2014-11-01 23:46:57 +00:00
Justin Richer 3f5e2acfeb if no alg is explicitly set, use the default from the signer 2014-10-23 22:09:02 -04:00
David Steinkopff 659880b4dc fix broken dependency declaration, that follow up to org.springframework.beans.NotWritablePropertyException: Invalid property 'jwkKeyList' of bean class exception 2014-10-14 20:30:50 -04:00
Justin Richer db052f11ca Moved development branch to 1.2 2014-10-07 21:02:07 -04:00
Justin Richer 134909a82f import cleanup 2014-10-07 19:40:38 -04:00
Justin Richer c683131f12 externalized view name strings and tied them to view beans 2014-09-28 22:25:39 -04:00
Justin Richer a704277652 Removed exceptions from @PostConstruct methods, closes #663 2014-09-28 21:12:46 -04:00
Justin Richer 6f2f807b0b [maven-release-plugin] prepare for next development iteration 2014-08-05 21:54:51 -04:00
Justin Richer 93ae1516a5 [maven-release-plugin] prepare release mitreid-connect-1.1.9 2014-08-05 21:54:47 -04:00
Justin Richer b0cce924a2 JsonFileRegisteredClientService now writes out entire client registration to disk, closes #651 2014-08-01 00:01:56 -04:00
Brenden Keyes 863dbd17b8 Added setClientConfigurationService method. 2014-07-31 22:26:04 -04:00
Justin Richer 325a200f16 added configurable support for different token presentation methods in user info fetcher, closes #632 2014-07-20 09:27:02 -07:00
Justin Richer c7a6c4fafe added support for unsigned ID tokens in client, use client configuration to turn this on, closes #633 2014-07-16 22:18:07 -04:00
Kristina Sahlmann 306c8cff17 update nimbus-jose-jwt dependency to 2.26 and fix the affected files 2014-07-02 11:37:42 -04:00
Justin Richer adf477c64e [maven-release-plugin] prepare for next development iteration 2014-06-18 18:27:27 -04:00
Justin Richer 8d97ed61ec [maven-release-plugin] prepare release mitreid-connect-1.1.8 2014-06-18 18:27:25 -04:00
Justin Richer 9f9b49fc63 refactored validator checks to cascade better, throw an authentication exception if we can't find a validator for the ID Token 2014-06-18 18:17:14 -04:00
Christopher Elkins 1dc204f975 Validate HMAC-signed ID tokens 2014-06-18 18:10:33 -04:00
Justin Richer 85acfa90db [maven-release-plugin] prepare for next development iteration 2014-06-04 14:51:32 -04:00
Justin Richer d5e4cb45a2 [maven-release-plugin] prepare release mitreid-connect-1.1.7 2014-06-04 14:51:29 -04:00
Justin Richer be98b9cd0b [maven-release-plugin] prepare for next development iteration 2014-05-27 14:00:40 -04:00
Justin Richer 8320f0eefe [maven-release-plugin] prepare release mitreid-connect-1.1.6 2014-05-27 14:00:37 -04:00
Justin Richer 0c8cacd59a added missing copyright headers 2014-05-27 13:46:47 -04:00
Justin Richer 525f3aa2a8 Cleaned up indentation, whitespace, and imports. 2014-05-27 13:02:49 -04:00
Justin Richer 27e68f1d56 added service to optionally check "target_uri" links, closes #547 2014-05-23 16:50:18 -04:00
Justin Richer e4d5f4a540 added system wide cache for all symmetric validators, closes # 557 2014-05-23 16:16:06 -04:00
Justin Richer ca333d256b Appropriately catch runtime exceptions in all guava caches, closes #603 2014-05-23 15:00:40 -04:00
Justin Richer 880014176f [maven-release-plugin] prepare for next development iteration 2014-05-13 18:23:11 -04:00
Justin Richer ca8a003e3d [maven-release-plugin] prepare release mitreid-connect-1.1.5 2014-05-13 18:23:08 -04:00
Justin Richer 37af569890 cleaned up unintentional pom version override 2014-04-25 20:59:35 -04:00
Justin Richer b8129bf60d [maven-release-plugin] prepare for next development iteration 2014-04-21 19:19:10 -04:00
Justin Richer a9e34ac9bd [maven-release-plugin] prepare release mitreid-connect-1.1.4 2014-04-21 19:19:07 -04:00
Brenden Keyes 90b10d7bad Added Getter/Setter for IntospectionAuthorityGranter. Still defaults to SimpleIntrospectionAuthorityGranter 2014-04-18 23:06:06 -04:00
Justin Richer 79bd7e420c made scope handling consistent for introspection services (now a space-separated string), closes #570 2014-04-03 22:47:28 -04:00
Justin Richer 97cd00e06c [maven-release-plugin] prepare for next development iteration 2014-03-19 21:40:21 -04:00
Justin Richer 23c7cf6996 [maven-release-plugin] prepare release mitreid-connect-1.1.3 2014-03-19 21:40:18 -04:00
Justin Richer 762fe11ab1 Update README.md
removed outdated configuration information and pointed to wiki, closes #561
2014-03-17 16:41:28 -04:00
Justin Richer ad5ffb64e8 [maven-release-plugin] prepare for next development iteration 2014-03-08 11:17:40 +00:00
Justin Richer 1635cf957d [maven-release-plugin] prepare release mitreid-connect-1.1.2 2014-03-08 11:17:35 +00:00
Justin Richer 53cc7ef447 Fixed audience claim on client auth assertion 2014-03-06 19:45:05 +00:00
Justin Richer 3629ff5e2f added signed authentication assertion support to client, closes #558 2014-03-06 16:44:31 +00:00
Justin Richer 9395c3802d [maven-release-plugin] prepare for next development iteration 2014-02-10 15:28:14 -05:00
Justin Richer 4f8311962a [maven-release-plugin] prepare release mitreid-connect-1.1.1 2014-02-10 15:28:11 -05:00
Justin Richer 1289d4737a Changed references of DefaultHttpClient to SystemDefaultHttpClient to inherit system proxy settings, should address #548 2014-02-04 10:51:14 -05:00
Justin Richer d946cfb4a7 added support for target uri parameter in third party issuer (or other custom issuer that sets the right flag on return), closes #539 2014-01-20 17:07:35 -05:00
Justin Richer 3b52ce8201 happy new year! 2014-01-20 12:38:42 -05:00
Justin Richer ebbc7209aa automated code formatting and cleanup 2013-12-03 14:19:34 -05:00
Justin Richer e1e7f7a579 [maven-release-plugin] prepare for next development iteration 2013-12-02 12:18:11 -05:00
Justin Richer 42fe973f7b [maven-release-plugin] prepare release mitreid-connect-1.1.0 2013-12-02 12:18:08 -05:00
Justin Richer 49a7db6c6e Sanity check on client template object for dynamic registration client-side service 2013-11-27 11:37:07 -05:00