github
/
OpenID-Connect-Java-Spring-Server
mirror of https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
1958 Commits
17 Branches
69 Tags
78 MiB
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '10b7eb60c8'
${ noResults }
Commit Graph

475 Commits (10b7eb60c886ab93e031624c94087d65cf5ff250)

Author SHA1 Message Date
Amanda Anganes 78fa5f9b1d Started to write ScopeClaimTranslationService
11 years ago
Amanda Anganes cb449c25b1 Made a UserInfoSerializer class, attempted to switch UserInfoInterceptor over to use it, but it requires a bad hack. I might be missing something.
11 years ago
Justin Richer 59da1960eb added token_endpoint_auth_signing_alg, addresses #511
11 years ago
Justin Richer f227724caa dependency juggling
11 years ago
Justin Richer 998b00fd38 moved repo references to parent, added dependencies for webapp
11 years ago
Justin Richer d9ad6d20e8 added spring core, moved servlet and test dependencies up to parent
11 years ago
Justin Richer 38f20afe04 added necessary dependencies to common
11 years ago
Justin Richer 8a5a16f374 refactored project into four modules:
11 years ago
Amanda Anganes 47d304851d Created token service for OIDC special tokens; removed creation of id tokens and registration_access_tokens to the new service.
11 years ago
Amanda Anganes 26a7d0b8a8 Fixed typo
11 years ago
Amanda Anganes c98f77c405 Remove @PostConstruct from JWKSetKeyStore
11 years ago
Justin Richer b75d77495a if there's only one key, return it as the default
11 years ago
Justin Richer fb2f2f9792 spelling, property access, and cleanup
11 years ago
Justin Richer 1d0560edbc refactored some json utils to their own static class
11 years ago
Justin Richer aeab1ac3cb added encryption method list to encryption/decryption service
11 years ago
Justin Richer 6605877a1b added encryption/decryption to cached JWK-URI service
11 years ago
Justin Richer 2b0d02dc72 added additional discoverable fields to ServerConfig object
11 years ago
Amanda Anganes 85d9e07a94 Removed @PostConstruct; placed buildSignersAndVerifiers() calls inside both constructors.
11 years ago
Amanda Anganes c22cd62977 Added null check;
11 years ago
Amanda Anganes aecf4958ed Testing removing extra method calls
11 years ago
Justin Richer e67a41c556 added transient passthroughs to JOSE algorithms for client
11 years ago
Justin Richer f9ca15139d added phone-number verified, addresses #505
11 years ago
Justin Richer 0281cf02fe calculate pairwise based on redirect uri rather than client id
11 years ago
Justin Richer b1a6127d06 added equality checks to data model objects
11 years ago
Justin Richer dbdc2e777d added pairwise identifier service and repository
11 years ago
Justin Richer 914f2e4d93 added new call to get the UserInfo in context with the requesting client to allow for pairwise identifiers.
11 years ago
Justin Richer 596b385d2a interceptor shouldn't ever overwrite stuff from the base model
11 years ago
Justin Richer b9da10d176 look up by username instead of subject
11 years ago
Justin Richer 61544ed774 cleanup
11 years ago
Justin Richer 72f0ab631d added transient structured value to system scope, added scope matcher function to scope service
11 years ago
Justin Richer 1ef18a3a93 missed a service definition
11 years ago
Josh Mandel b416888b07 Structured Scopes from BB+
11 years ago
Justin Richer 0a962e17fa stopgap to prevent some leaks due to #492
11 years ago
Justin Richer 235029ba0e inject user's authorities into javascript context
11 years ago
Justin Richer be6179d1ac inject the current user into the javascript context
11 years ago
William Kim 6276ec8e66 Revert "PlainSigner and PlainVerifier created for alg:none JWS support."
11 years ago
William Kim 2108311d65 Revert "refactored code to use the more generic JWT declaration."
11 years ago
William Kim 1514b2d2e0 Revert "placeholder"
11 years ago
William Kim dd35dc60df Revert "implemented alg:none at the signing service."
11 years ago
William Kim 78559b625a Revert "removed the plain verifer. validating a no-signature is simply handled as a special case in validateSignature(). Also, doing some type safety checks."
11 years ago
William Kim 15ec027505 Revert "junit test added for signing service."
11 years ago
William Kim 9f89f84da1 junit test added for signing service.
11 years ago
William Kim c957d59f7c removed the plain verifer. validating a no-signature is simply handled as a special case in validateSignature(). Also, doing some type safety checks.
11 years ago
William Kim 02078ebccb implemented alg:none at the signing service.
11 years ago
William Kim d763a954da placeholder
11 years ago
William Kim e0b56bc72a refactored code to use the more generic JWT declaration.
11 years ago
William Kim 30d7aaa66a PlainSigner and PlainVerifier created for alg:none JWS support.
11 years ago
Justin Richer da915d8b35 explicitly try to initialize the JWK set if it's null by the time the getter is called
11 years ago
Amanda Anganes 0059c7b4cc Use clients preferred algorithm, if any, to sign
11 years ago
Justin Richer a80c19384f added 'use server default' to JOSE options, addresses #462
11 years ago
Justin Richer ba0c3c5d78 id tokens always expire, addresses #416
11 years ago
Justin Richer 21068f57e6 cached jwk services expire after an hour
11 years ago
William Kim 6e2baa3ec4 updated comments for jwe service.
11 years ago
William Kim e1b072c991 Updated nimbusds library version to 2.17.2 and made relevant changes in enc./dec. service and test
11 years ago
William Kim 372675fd2a changed encrypt/decrypt parameter to use JWEObject instead of EncryptedJWT
11 years ago
William Kim f0b77f8614 RSA encryption service tested.
11 years ago
William Kim 3a1c551ff7 implemented symmetric key encryption.
11 years ago
William Kim dfbefe0780 encrypt/decrypt implemented. initial commit for unit testing of jwe service.
11 years ago
William Kim ae6721dd10 jwe service accessor methods and private initializing method done.
11 years ago
William Kim 887338b2d9 jwe service init commit.
11 years ago
Amanda Anganes be97aedbc7 Used Predicates to filter expired tokens and approved sites;
11 years ago
Amanda Anganes b3bb43881d Moved getExpired to service layers
11 years ago
Amanda Anganes eea37cf79c Fixed token expiration bug by removing jsql queries. Instead expired tokens or approved sites are filtered at the repository level
11 years ago
Amanda Anganes 2f711c88a7 Removed nonce service
11 years ago
Amanda Anganes d4fbb4f599 Removed Event class
11 years ago
Justin Richer beaeaa4ccc I can spell "consortium", I promise
11 years ago
Justin Richer b2b6fd6448 further cleanup
11 years ago
Justin Richer 856c0ea0b5 Merge commit '023dd440d4a0e6e59a14c88013837d79a77c74e0' into 1.1-merge
11 years ago
Justin Richer 023dd440d4 [maven-release-plugin] prepare for next development iteration
11 years ago
Justin Richer 5e8f93cf15 [maven-release-plugin] prepare release mitreid-connect-1.0.6
11 years ago
Justin Richer e658ffd7fc format/cleanup and copyright
11 years ago
Amanda Anganes 906db0ac86 Opened token api access to all users; restricted to only show currently-logged-in-users tokens
11 years ago
Justin Richer fb448a246a converted test data to map, use new serializer
12 years ago
Justin Richer 8edd6da136 added serializer for non-heirarchical URIs
12 years ago
Justin Richer 5893d8f8f8 fixed up parsing regular expression
12 years ago
William Kim f565688e59 changed name issuer->normalized. the result of normalization is not necessarily the issuer.
12 years ago
William Kim d80aaced9a reorganized test data and test methods.
12 years ago
William Kim 809a243b64 tests for webfinger url normalization.
12 years ago
William Kim eaa7298ef1 init commit for Webfinger normilizer utility class.
12 years ago
Justin Richer 20871852c0 updated dependencies for secoauth 1.1
12 years ago
Amanda Anganes b397f0ae15 First go at adding token API; needs to be tested
12 years ago
Amanda Anganes 88db457fc4 Removed .springBeans from tracking; removed initializingbean in favor of @PostConstruct
12 years ago
Justin Richer a4a18fd54c externalized introspection URL from client's introspecting token service, addresses #435
12 years ago
William Kim aad432c5d7 replaced stracktrace-printing with logger messages. removed some unused imports.
12 years ago
Amanda Anganes 15aea61fbe Applied code cleanup
12 years ago
William Kim e00d696c60 deleted auto-generated TODO.
12 years ago
William Kim e9c246808f only our entity version may be stored in our storage layer. removed TODO.
12 years ago
Justin Richer 0d8c2442d2 [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer 9bf5f70957 [maven-release-plugin] prepare release mitreid-connect-1.0.5
12 years ago
William Kim 77be0d0ea8 implemented getExpiresIn() for oauth access token entities.
12 years ago
Amanda Anganes 2d3f43e3b8 Added task scheduling for deleting expired tokens and approved sites. Configuration is all done in application-context.xml so that it is easy to configure
12 years ago
Justin Richer 936f581a0b [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer 27edec1a56 [maven-release-plugin] prepare release mitreid-connect-1.0.4
12 years ago
William Kim a668fb964d changed String comparison implementation for better readability
12 years ago
William Kim ab4d1da9d4 added logger warning if issuer url does not use http scheme.
12 years ago
William Kim b438e87f98 passed wire testing and updated unit tests.
12 years ago
William Kim e74444e3d1 addresses issue #366
12 years ago
Amanda Anganes 530c3a75ee Applyed refactoring
12 years ago
William Kim f0f2fbea40 updated secoauth library version in poms
12 years ago
Justin Richer 2b3376e0ed [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer 7fe4bc3b56 [maven-release-plugin] prepare release mitreid-connect-1.0.3
12 years ago
William Kim d6109fd1ae explicitly mapped missing JPA columns in common->openid.connect.model #317
12 years ago
William Kim 46641a2fa1 explicitly mapped missing JPA columns in common-oauth2.model #317
12 years ago
Justin Richer c577b691c7 moved OIDC auth token and userinfo interception filter to common package, addresses #353
12 years ago
Justin Richer 6ed7477bc0 added stats to admin UI page, restyled scopes and dynamically registered flags
12 years ago
Justin Richer 567a3314d6 [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer 1286726188 [maven-release-plugin] prepare release mitreid-connect-1.0.2
12 years ago
Justin Richer de77f2c75a commentary!
12 years ago
Justin Richer d0eb98b8ff tests for embedded JOSE objects
12 years ago
Justin Richer 8ee299aab3 added tests for ClientDetailsEntity and RegisteredClient data objects
12 years ago
Justin Richer c760ebf4a4 changed expires_at -> client_secret_expires_at, issued_at -> client_id_issued_at
12 years ago
Justin Richer 317526b1ad unit tests for basic data classes
12 years ago
Justin Richer cc1da67639 fixed expires_at property, hid helper functions
12 years ago
Amanda Anganes 3c5025c52b Updated version number for secoauth
12 years ago
Justin Richer 25d75a1b30 [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer 5418bdef5a [maven-release-plugin] prepare release mitreid-connect-1.0.1
12 years ago
Justin Richer 81cd13f6d3 added RegisteredClient class to facilitate client configuration and dynamic registration, addresses #335
12 years ago
Justin Richer defa5b8fbc [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer dbdc99361e [maven-release-plugin] prepare release mitreid-connect-1.0.0
12 years ago
Justin Richer 1e870703f8 added licence/copyright header
12 years ago
Justin Richer 8afab04544 whitespace, import, brace, annotation, and format cleanups
12 years ago
Justin Richer b8c385e5c9 pom file cleanups
12 years ago
Justin Richer 9b03801f9d [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer d76304b9a6 [maven-release-plugin] prepare release mitreid-connect-0.9.3
12 years ago
Amanda Anganes c80b1081cc Cleaning up approvedsite => token linkage
12 years ago
Amanda Anganes 939a801048 Redid approved site -> token mapping so it is unidirectional from ApprovedSite side. Fixed some error logging, added a new view for ApprovedSite which will only show the IDs of the tokens in the approvedTokens list
12 years ago
Amanda Anganes a79aca906e Fixed error logging; added ApprovedSite tracking to tokens
12 years ago
Justin Richer 94aa279290 [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer cc92743888 [maven-release-plugin] prepare release mitreid-connect-0.9.2
12 years ago
Justin Richer 7307b4b19d added tostring to system scope to help with debugging
12 years ago
Justin Richer fb859fc39a added client dynamic registration service, extracted clientdetails<->json processing into its own static class
12 years ago
Justin Richer cf39b49657 added registration uri to server config, changed index of client config service to be server config not just issuer
12 years ago
Justin Richer f76f44b999 added dynamic discovery to client
12 years ago
Justin Richer 33af3b1ad6 updated discovery endpoint to latest spec, removed surplus specialized view
12 years ago
Justin Richer ac2993c402 [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer f0d75f9144 [maven-release-plugin] prepare release mitreid-connect-0.9.1
12 years ago
Stephen Moore 23c318f6c2 Updating guava to 14.0.1
12 years ago
Justin Richer 86a42ce294 fixed typo for older versions of java/maven
12 years ago
Justin Richer 5f54777109 [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer 620a60ddc2 [maven-release-plugin] prepare release mitreid-connect-0.9.0
12 years ago
Justin Richer 54f1ae972b Added properties and updated poms for sync to central
12 years ago
Justin Richer f101dcc512 moved to released version of SECOAUTH
12 years ago
Amanda Anganes 72e2c7cb6c Updated build references
12 years ago
Justin Richer 4538d8fb14 made signing and verification service construction safe for public-only keys
12 years ago
Justin Richer 6cc50e7cd5 switched signing & validation service to use JWK natively for keys
12 years ago
Justin Richer 5a04198eac moved to JPSK based key store
12 years ago
Justin Richer e2ad4d2e8f cleaned up spurious nosuchalgorithm exceptions, addresses #285
12 years ago
Justin Richer 5f7c46aecd updated to nimbus 2.13
12 years ago
Amanda Anganes fcc95f8a0a Moved nonce processing stuff into nonce service and out of ConnectAuthorizationRequestManager
12 years ago
Justin Richer 08eaaa0a12 updated repository to use proper concrete class
12 years ago