Justin Richer
|
53cc7ef447
|
Fixed audience claim on client auth assertion
|
2014-03-06 19:45:05 +00:00 |
|
Justin Richer
|
1fcef858c6
|
updated server discovery document to reflect new capabilities
|
2014-03-06 16:48:27 +00:00 |
|
Justin Richer
|
b67121f0cd
|
added client_secret_jwt auth method support, closes #174
|
2014-03-04 23:45:36 +00:00 |
|
Justin Richer
|
15b017992c
|
added DELETE to token api because revocation endpoint doesn't work for this kind of management, closes #191
|
2014-03-01 11:05:46 +00:00 |
|
Justin Richer
|
89f015cf1c
|
Updated Token API to be less leaky
|
2014-02-28 21:14:27 +00:00 |
|
Justin Richer
|
dd391ebf3c
|
Display contacts, popup for image, cleanup of more info
|
2014-02-16 21:58:16 -05:00 |
|
Justin Richer
|
dab52ca8a0
|
enhancements to approval page
|
2014-02-16 18:25:05 -05:00 |
|
Justin Richer
|
ec6a78c1ba
|
made prompt pluralizable to comply with spec, closes #519
|
2014-02-16 01:41:08 -05:00 |
|
Justin Richer
|
19dbe92d4e
|
initial support for displaying claim values for requested scopes
|
2014-01-20 20:56:04 -05:00 |
|
Justin Richer
|
3b52ce8201
|
happy new year!
|
2014-01-20 12:38:42 -05:00 |
|
Justin Richer
|
ebbc7209aa
|
automated code formatting and cleanup
|
2013-12-03 14:19:34 -05:00 |
|
Justin Richer
|
4a8d693746
|
fixed prompt filter map mismatch (I hate type erasure)
|
2013-12-02 11:55:09 -05:00 |
|
Justin Richer
|
d330bd1c9b
|
cleanup, added revocation uri to server config
|
2013-11-27 12:23:04 -05:00 |
|
Justin Richer
|
ed06b14406
|
publish revocation endpoint, addresses #520
|
2013-11-27 12:13:42 -05:00 |
|
Justin Richer
|
b7011f508e
|
urlencode client IDs in client registration URIs, addresses #422
|
2013-11-27 12:12:10 -05:00 |
|
Justin Richer
|
8c1bfb7e0c
|
set current user's email address to owner when using admin UI
|
2013-11-27 12:11:36 -05:00 |
|
Justin Richer
|
6c4d2a8e8d
|
vestigial comment cleanup
|
2013-11-27 12:06:53 -05:00 |
|
Justin Richer
|
db5532e9bf
|
comment cleanup
|
2013-11-27 11:34:41 -05:00 |
|
Justin Richer
|
39fb96a802
|
pull request from extensions map
|
2013-11-27 11:20:38 -05:00 |
|
Justin Richer
|
86e0f0c7ee
|
cleaned up old comments
|
2013-11-27 11:20:01 -05:00 |
|
Justin Richer
|
a24eadeb11
|
cleaned up responseType calls, addresses #451
|
2013-11-27 11:03:15 -05:00 |
|
Justin Richer
|
df511a81cc
|
override from #465 no longer needed
|
2013-11-27 10:53:16 -05:00 |
|
Justin Richer
|
d3dbb00e77
|
ensure clients and tokens don't get special system scopes, addresses #320
|
2013-11-27 10:35:56 -05:00 |
|
Justin Richer
|
ef01de168d
|
Moved special token scopes to scope service interface
|
2013-11-27 10:21:52 -05:00 |
|
Justin Richer
|
4f986d6a38
|
clean up some auto generated functions
|
2013-11-27 09:57:56 -05:00 |
|
Justin Richer
|
f56135810c
|
Fixed request object precedence order
|
2013-11-27 09:52:26 -05:00 |
|
Justin Richer
|
447df56947
|
removed unused nonce exception
|
2013-11-27 09:10:35 -05:00 |
|
Justin Richer
|
27f391ef01
|
Fixed compilation errors for SECOAUTH milestone updates
|
2013-11-25 09:31:50 -05:00 |
|
Justin Richer
|
190caee9a1
|
refactored userinfo serializer
|
2013-11-18 09:49:23 -05:00 |
|
Justin Richer
|
2a34994383
|
cleanup view
|
2013-09-26 17:07:38 -04:00 |
|
Justin Richer
|
7a4366c083
|
collapsed two serialization functions into one
|
2013-09-26 16:15:30 -04:00 |
|
Amanda Anganes
|
65a7e1d724
|
Added UserInfo.toJson method; added ScopeClaimTranslationService; rewrote UserInfoSerializer to use both
|
2013-09-26 12:03:39 -04:00 |
|
Amanda Anganes
|
cb449c25b1
|
Made a UserInfoSerializer class, attempted to switch UserInfoInterceptor over to use it, but it requires a bad hack. I might be missing something.
|
2013-09-26 12:03:39 -04:00 |
|
Justin Richer
|
bf3e0033fe
|
initial refactor of userinfoview for new model components
|
2013-09-19 12:36:22 -04:00 |
|
Justin Richer
|
9debf1486d
|
pass authorized and requested claims as strings to view
|
2013-09-19 12:36:22 -04:00 |
|
Justin Richer
|
b396610f35
|
refactor processing of request object
|
2013-09-19 12:36:22 -04:00 |
|
Amanda Anganes
|
47d304851d
|
Created token service for OIDC special tokens; removed creation of id tokens and registration_access_tokens to the new service.
|
2013-09-17 16:56:46 -04:00 |
|
Amanda Anganes
|
66e837f650
|
Move extension parameters into OAuth2Request.extensions map; remove all calls to OAuth2Request.getRequestParameters.
|
2013-09-17 10:54:19 -04:00 |
|
Justin Richer
|
e1ed53a229
|
added missing parts to discovery
|
2013-09-16 17:27:04 -04:00 |
|
Justin Richer
|
6605877a1b
|
added encryption/decryption to cached JWK-URI service
|
2013-09-16 17:27:04 -04:00 |
|
Justin Richer
|
9f13dc8f77
|
wrap errors in saving the client in an HTTP 400 (instead of HTTP 500) error
|
2013-09-13 14:22:42 -04:00 |
|
Justin Richer
|
9b72c6b1f3
|
check sector identifier URI's contents and match against redirect URIs, addresses #504
|
2013-09-13 14:22:24 -04:00 |
|
Justin Richer
|
1aa5fe25c6
|
re-decrypt request object at userinfo endpoint (this shouldn't need to happen)
|
2013-09-12 17:05:34 -04:00 |
|
Justin Richer
|
09cd752c86
|
added basic support for encrypted request objects, addresses #475
|
2013-09-12 17:05:12 -04:00 |
|
Justin Richer
|
d09b3b50d6
|
call encode() instead of new() on Base64URL utility
|
2013-09-12 15:19:14 -04:00 |
|
Justin Richer
|
35bd9c8eda
|
throw appropriate errors from request factory
|
2013-09-12 14:48:54 -04:00 |
|
Justin Richer
|
e67a41c556
|
added transient passthroughs to JOSE algorithms for client
|
2013-09-12 14:08:37 -04:00 |
|
Justin Richer
|
c9aa42dbef
|
better processing for signed request objects
|
2013-09-12 13:56:10 -04:00 |
|
Justin Richer
|
f9ca15139d
|
added phone-number verified, addresses #505
affects #455
|
2013-09-12 10:19:14 -04:00 |
|
Justin Richer
|
0281cf02fe
|
calculate pairwise based on redirect uri rather than client id
|
2013-09-11 14:37:17 -04:00 |
|
Justin Richer
|
77c0473438
|
fixed comparison order to be null safe
cleaned up type check
|
2013-09-11 11:59:34 -04:00 |
|
Justin Richer
|
dbdc2e777d
|
added pairwise identifier service and repository
|
2013-09-10 17:15:58 -04:00 |
|
Justin Richer
|
bdf62eaa36
|
need to check the sector identifier at some point
|
2013-09-10 16:35:51 -04:00 |
|
Justin Richer
|
914f2e4d93
|
added new call to get the UserInfo in context with the requesting client to allow for pairwise identifiers.
temporary implementation of pairwise identifiers in place
|
2013-09-10 16:01:17 -04:00 |
|
Justin Richer
|
149fb1bac1
|
services shouldn't be transactional
|
2013-09-10 15:26:09 -04:00 |
|
Justin Richer
|
29d1c7d54a
|
userinfo endpoint now uses OAuth2Authentication exclusively
(which is all it was really doing before)
|
2013-09-10 14:16:34 -04:00 |
|
Justin Richer
|
ac42c00062
|
id token now uses userinfo's sub
|
2013-09-10 13:50:49 -04:00 |
|
Justin Richer
|
b9da10d176
|
look up by username instead of subject
|
2013-09-10 11:39:00 -04:00 |
|
Justin Richer
|
9ea82aacf0
|
clean up unused getter/setter
|
2013-09-10 11:38:42 -04:00 |
|
Justin Richer
|
469e722f72
|
defer to system scope matcher in approval handler
|
2013-09-06 16:07:25 -04:00 |
|
Justin Richer
|
99ad9b883e
|
added validator that knows how to deal with structured scopes
|
2013-09-06 16:07:25 -04:00 |
|
Justin Richer
|
59187d47e4
|
use new unified parsing for approval page
|
2013-09-06 16:07:25 -04:00 |
|
Justin Richer
|
85533d50cf
|
scope comparison for TofuUserApprovalHandler
|
2013-09-06 16:07:25 -04:00 |
|
Justin Richer
|
1c4c53f252
|
scope comparison for introspection endpoint
|
2013-09-06 16:07:24 -04:00 |
|
Justin Richer
|
6152a943d8
|
serialize structured scopes properly (with tests)
|
2013-09-06 16:07:24 -04:00 |
|
Justin Richer
|
72f0ab631d
|
added transient structured value to system scope, added scope matcher function to scope service
|
2013-09-06 16:07:24 -04:00 |
|
Josh Mandel
|
b416888b07
|
Structured Scopes from BB+
|
2013-09-06 16:07:24 -04:00 |
|
Justin Richer
|
127507246e
|
if the client doesn't ask for any system scopes, but asks for some non-system scopes, they'll now get the defaults instead of none
addresses #498
|
2013-09-06 13:30:22 -04:00 |
|
Justin Richer
|
64bbb73d1b
|
cleaned up CORS filter implementation
|
2013-09-03 16:01:19 -04:00 |
|
Justin Richer
|
6ff4ae1458
|
added CORS filter
|
2013-09-03 15:17:18 -04:00 |
|
William Kim
|
2108311d65
|
Revert "refactored code to use the more generic JWT declaration."
This reverts commit e0b56bc72a.
|
2013-08-26 15:33:08 -04:00 |
|
William Kim
|
e0b56bc72a
|
refactored code to use the more generic JWT declaration.
|
2013-08-26 11:32:46 -04:00 |
|
Justin Richer
|
ca777f7dc4
|
proper null check for client's preferred signature method
|
2013-08-20 16:45:45 -04:00 |
|
William Kim
|
07bec462cc
|
added comment about why we can't use set intersection method.
|
2013-08-20 14:09:14 -04:00 |
|
William Kim
|
b89436d7b9
|
UserInfoView returning intersection of claims request parameter and request object claims in effect now.
|
2013-08-20 08:55:56 -04:00 |
|
Amanda Anganes
|
941e9544e2
|
Compare client_ids instead of Client objects
|
2013-08-19 16:55:56 -04:00 |
|
Amanda Anganes
|
3eae6f2789
|
Changed client algorithm check to look for null instead of JWSAlgorithm.NONE, which is a valid value.
|
2013-08-19 16:55:29 -04:00 |
|
Amanda Anganes
|
0059c7b4cc
|
Use clients preferred algorithm, if any, to sign
|
2013-08-19 16:33:18 -04:00 |
|
William Kim
|
b54f33d0db
|
fixed json elements of "claims" and "userinfo" being processed out of order.
|
2013-08-19 14:15:53 -04:00 |
|
William Kim
|
7b813c79ee
|
parsing "claims" parameter directly from userinfoendpoint requests.
|
2013-08-19 13:32:34 -04:00 |
|
William Kim
|
1ffbb39a2b
|
refactored json parser to a private static field.
|
2013-08-19 13:30:56 -04:00 |
|
William Kim
|
89056bd911
|
removed test-specific constructor and default constructor.
|
2013-08-19 13:30:56 -04:00 |
|
Justin Richer
|
7d51335055
|
added prompt=login support, addresses #323
|
2013-08-14 17:00:56 -04:00 |
|
Justin Richer
|
a0646452ab
|
test for max_age, force login if not fresh enough, addresses #467
|
2013-08-14 16:50:51 -04:00 |
|
Justin Richer
|
6c1e91b7e3
|
auth_time is now tracked, addresses #288
|
2013-08-14 15:39:41 -04:00 |
|
Amanda Anganes
|
e88c6c4943
|
Changed predicates methods to use Collections2.filter rather than Sets.filter
|
2013-08-13 10:31:39 -04:00 |
|
William Kim
|
6687e3a831
|
override createOAuth2Request method for factory iss #465.
|
2013-08-09 13:03:46 -04:00 |
|
Amanda Anganes
|
ef4482249c
|
Dyn-reg endpoint now creates the registration access token from scratch instead of calling token services; token services no longer needs to check for RAT scope to avoid expiring RATs
|
2013-08-09 11:49:11 -04:00 |
|
Justin Richer
|
15e512cec3
|
renamed JWSUtils -> IdTokenHashUtils, renamed internal variables
|
2013-08-08 14:34:19 -04:00 |
|
William Kim
|
cdd3a6d478
|
changed at_hash/c_hash impl. HMAC-SHA --> regular SHA.
|
2013-08-08 14:10:35 -04:00 |
|
Amanda Anganes
|
2d4d7f7be9
|
Had to hand-merge some things; git got confused
|
2013-08-07 10:59:55 -04:00 |
|
Amanda Anganes
|
861beeba64
|
Added c_hash function, added stub of unit test for JWSUtils
|
2013-08-07 10:43:26 -04:00 |
|
Amanda Anganes
|
37580cc21e
|
JWSUtils uses JWSAlgorithm to match bit length; ConnectTokenEnhancer calls the util method now
|
2013-08-07 10:41:53 -04:00 |
|
Amanda Anganes
|
3a591dc1f4
|
Added JWSUtils class;
|
2013-08-07 10:38:28 -04:00 |
|
Amanda Anganes
|
be97aedbc7
|
Used Predicates to filter expired tokens and approved sites;
|
2013-08-06 16:42:49 -04:00 |
|
Amanda Anganes
|
b3bb43881d
|
Moved getExpired to service layers
|
2013-08-06 16:33:27 -04:00 |
|
Amanda Anganes
|
eea37cf79c
|
Fixed token expiration bug by removing jsql queries. Instead expired tokens or approved sites are filtered at the repository level
|
2013-08-06 11:28:13 -04:00 |
|
Amanda Anganes
|
265214511c
|
Renamed oAuth2RequestFactory
|
2013-08-05 14:04:48 -04:00 |
|
Amanda Anganes
|
a4c1a7a37d
|
Issue 449
|
2013-08-02 11:20:47 -04:00 |
|
Amanda Anganes
|
2f711c88a7
|
Removed nonce service
|
2013-08-02 10:56:28 -04:00 |
|
Amanda Anganes
|
d4fbb4f599
|
Removed Event class
|
2013-08-02 10:06:41 -04:00 |
|
Amanda Anganes
|
ad2ace6d74
|
Do not expire registration tokens
|
2013-07-30 11:33:15 -04:00 |
|
Justin Richer
|
beaeaa4ccc
|
I can spell "consortium", I promise
|
2013-07-29 17:40:26 -04:00 |
|
Justin Richer
|
856c0ea0b5
|
Merge commit '023dd440d4a0e6e59a14c88013837d79a77c74e0' into 1.1-merge
Conflicts:
openid-connect-client/pom.xml
openid-connect-client/src/main/java/org/mitre/oauth2/introspectingfilter/AuthorizationRequestImpl.java
openid-connect-client/src/main/java/org/mitre/oauth2/introspectingfilter/IntrospectingTokenService.java
openid-connect-client/src/main/java/org/mitre/oauth2/introspectingfilter/IntrospectionAuthorityGranter.java
openid-connect-client/src/main/java/org/mitre/oauth2/introspectingfilter/IntrospectionUrlProvider.java
openid-connect-client/src/main/java/org/mitre/openid/connect/client/OIDCAuthenticationFilter.java
openid-connect-client/src/main/java/org/mitre/openid/connect/client/OIDCAuthenticationProvider.java
openid-connect-client/src/main/java/org/mitre/openid/connect/client/keypublisher/ClientKeyPublisher.java
openid-connect-client/src/main/java/org/mitre/openid/connect/client/keypublisher/ClientKeyPublisherMapping.java
openid-connect-client/src/main/java/org/mitre/openid/connect/client/keypublisher/JwkViewResolver.java
openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/AuthRequestUrlBuilder.java
openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/ClientConfigurationService.java
openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/impl/StaticClientConfigurationService.java
openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/impl/StaticServerConfigurationService.java
openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/impl/StaticSingleIssuerService.java
openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/impl/ThirdPartyIssuerService.java
openid-connect-client/src/test/java/org/mitre/openid/connect/client/AbstractOIDCAuthenticationFilterTest.java
openid-connect-common/pom.xml
openid-connect-common/src/main/java/org/mitre/jose/keystore/JWKSetKeyStore.java
openid-connect-common/src/main/java/org/mitre/jwt/signer/service/JwtSigningAndValidationService.java
openid-connect-common/src/main/java/org/mitre/jwt/signer/service/impl/DefaultJwtSigningAndValidationService.java
openid-connect-common/src/main/java/org/mitre/jwt/signer/service/impl/JWKSetSigningAndValidationServiceCacheService.java
openid-connect-common/src/main/java/org/mitre/oauth2/model/AuthorizationCodeEntity.java
openid-connect-common/src/main/java/org/mitre/oauth2/model/ClientDetailsEntity.java
openid-connect-common/src/main/java/org/mitre/oauth2/model/OAuth2AccessTokenEntity.java
openid-connect-common/src/main/java/org/mitre/oauth2/model/OAuth2RefreshTokenEntity.java
openid-connect-common/src/main/java/org/mitre/oauth2/model/SystemScope.java
openid-connect-common/src/main/java/org/mitre/oauth2/repository/AuthorizationCodeRepository.java
openid-connect-common/src/main/java/org/mitre/oauth2/repository/OAuth2TokenRepository.java
openid-connect-common/src/main/java/org/mitre/oauth2/service/OAuth2TokenEntityService.java
openid-connect-common/src/main/java/org/mitre/openid/connect/config/ConfigurationPropertiesBean.java
openid-connect-common/src/main/java/org/mitre/openid/connect/config/ServerConfiguration.java
openid-connect-common/src/main/java/org/mitre/openid/connect/model/ApprovedSite.java
openid-connect-common/src/main/java/org/mitre/openid/connect/model/BlacklistedSite.java
openid-connect-common/src/main/java/org/mitre/openid/connect/model/Event.java
openid-connect-common/src/main/java/org/mitre/openid/connect/model/OIDCAuthenticationToken.java
openid-connect-common/src/main/java/org/mitre/openid/connect/model/WhitelistedSite.java
openid-connect-common/src/main/java/org/mitre/util/jpa/JpaUtil.java
openid-connect-server/.gitignore
openid-connect-server/pom.xml
openid-connect-server/src/main/java/org/mitre/oauth2/repository/impl/JpaAuthorizationCodeRepository.java
openid-connect-server/src/main/java/org/mitre/oauth2/service/impl/DefaultOAuth2AuthorizationCodeService.java
openid-connect-server/src/main/java/org/mitre/oauth2/service/impl/DefaultOAuth2ClientDetailsEntityService.java
openid-connect-server/src/main/java/org/mitre/oauth2/service/impl/DefaultOAuth2ProviderTokenService.java
openid-connect-server/src/main/java/org/mitre/oauth2/service/impl/DefaultSystemScopeService.java
openid-connect-server/src/main/java/org/mitre/oauth2/token/ChainedTokenGranter.java
openid-connect-server/src/main/java/org/mitre/oauth2/token/JwtAssertionTokenGranter.java
openid-connect-server/src/main/java/org/mitre/oauth2/view/TokenIntrospectionView.java
openid-connect-server/src/main/java/org/mitre/oauth2/web/IntrospectionEndpoint.java
openid-connect-server/src/main/java/org/mitre/oauth2/web/OAuthConfirmationController.java
openid-connect-server/src/main/java/org/mitre/oauth2/web/RevocationEndpoint.java
openid-connect-server/src/main/java/org/mitre/openid/connect/ConnectOAuth2RequestFactory.java
openid-connect-server/src/main/java/org/mitre/openid/connect/assertion/JwtBearerAuthenticationProvider.java
openid-connect-server/src/main/java/org/mitre/openid/connect/assertion/JwtBearerClientAssertionTokenEndpointFilter.java
openid-connect-server/src/main/java/org/mitre/openid/connect/exception/InvalidJwtSignatureException.java
openid-connect-server/src/main/java/org/mitre/openid/connect/exception/UnknownUserInfoSchemaException.java
openid-connect-server/src/main/java/org/mitre/openid/connect/exception/UserNotFoundException.java
openid-connect-server/src/main/java/org/mitre/openid/connect/repository/impl/JpaApprovedSiteRepository.java
openid-connect-server/src/main/java/org/mitre/openid/connect/repository/impl/JpaUserInfoRepository.java
openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/DefaultApprovedSiteService.java
openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/DefaultNonceService.java
openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/DefaultStatsService.java
openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/DefaultUserInfoUserDetailsService.java
openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/DefaultWhitelistedSiteService.java
openid-connect-server/src/main/java/org/mitre/openid/connect/token/ConnectTokenEnhancer.java
openid-connect-server/src/main/java/org/mitre/openid/connect/token/TofuUserApprovalHandler.java
openid-connect-server/src/main/java/org/mitre/openid/connect/view/AbstractClientEntityView.java
openid-connect-server/src/main/java/org/mitre/openid/connect/view/ClientInformationResponseView.java
openid-connect-server/src/main/java/org/mitre/openid/connect/view/ExceptionAsJSONView.java
openid-connect-server/src/main/java/org/mitre/openid/connect/view/JsonEntityView.java
openid-connect-server/src/main/java/org/mitre/openid/connect/view/JsonErrorView.java
openid-connect-server/src/main/java/org/mitre/openid/connect/view/POCOUserInfoView.java
openid-connect-server/src/main/java/org/mitre/openid/connect/view/StatsSummary.java
openid-connect-server/src/main/java/org/mitre/openid/connect/view/UserInfoView.java
openid-connect-server/src/main/java/org/mitre/openid/connect/web/ApprovedSiteAPI.java
openid-connect-server/src/main/java/org/mitre/openid/connect/web/BlacklistAPI.java
openid-connect-server/src/main/java/org/mitre/openid/connect/web/ClientAPI.java
openid-connect-server/src/main/java/org/mitre/openid/connect/web/ClientDynamicRegistrationEndpoint.java
openid-connect-server/src/main/java/org/mitre/openid/connect/web/ManagerController.java
openid-connect-server/src/main/java/org/mitre/openid/connect/web/RequestObjectAuthorizationEndpoint.java
openid-connect-server/src/main/java/org/mitre/openid/connect/web/StatsAPI.java
openid-connect-server/src/main/java/org/mitre/openid/connect/web/UserInfoEndpoint.java
openid-connect-server/src/main/java/org/mitre/openid/connect/web/UserInfoInterceptor.java
openid-connect-server/src/main/java/org/mitre/openid/connect/web/WhitelistAPI.java
openid-connect-server/src/main/webapp/WEB-INF/tags/aboutContent.tag
openid-connect-server/src/main/webapp/WEB-INF/tags/breadcrumbs.tag
openid-connect-server/src/main/webapp/WEB-INF/tags/contactContent.tag
openid-connect-server/src/main/webapp/WEB-INF/tags/copyright.tag
openid-connect-server/src/main/webapp/WEB-INF/tags/header.tag
openid-connect-server/src/main/webapp/WEB-INF/tags/landingPageAbout.tag
openid-connect-server/src/main/webapp/WEB-INF/tags/landingPageContact.tag
openid-connect-server/src/main/webapp/WEB-INF/tags/landingPageStats.tag
openid-connect-server/src/main/webapp/WEB-INF/tags/landingPageWelcome.tag
openid-connect-server/src/main/webapp/WEB-INF/tags/sidebar.tag
openid-connect-server/src/main/webapp/WEB-INF/tags/statsContent.tag
openid-connect-server/src/main/webapp/WEB-INF/tags/topbar.tag
openid-connect-server/src/main/webapp/WEB-INF/views/about.jsp
openid-connect-server/src/main/webapp/WEB-INF/views/approve.jsp
openid-connect-server/src/main/webapp/WEB-INF/views/contact.jsp
openid-connect-server/src/main/webapp/WEB-INF/views/exception/usernotfound.jsp
openid-connect-server/src/main/webapp/WEB-INF/views/login.jsp
openid-connect-server/src/main/webapp/WEB-INF/views/manage.jsp
openid-connect-server/src/main/webapp/WEB-INF/views/stats.jsp
pom.xml
|
2013-07-29 16:21:20 -04:00 |
|
Justin Richer
|
e658ffd7fc
|
format/cleanup and copyright
|
2013-07-29 11:28:51 -04:00 |
|
Justin Richer
|
d4b544d519
|
disable token API (for now)
|
2013-07-29 11:23:07 -04:00 |
|
Amanda Anganes
|
906db0ac86
|
Opened token api access to all users; restricted to only show currently-logged-in-users tokens
|
2013-07-29 09:18:08 -04:00 |
|
Justin Richer
|
71da5b3d94
|
clean up some discovery values
|
2013-07-26 17:07:28 -04:00 |
|
Justin Richer
|
c62bed37ff
|
convert server to use normalizer
|
2013-07-26 17:07:08 -04:00 |
|
William Kim
|
93c3e7906f
|
put in line breaks into the extra long comments in DiscoveryEndpoint.java
|
2013-07-25 09:25:06 -04:00 |
|
Amanda Anganes
|
b397f0ae15
|
First go at adding token API; needs to be tested
|
2013-07-24 09:14:46 -04:00 |
|
Amanda Anganes
|
88db457fc4
|
Removed .springBeans from tracking; removed initializingbean in favor of @PostConstruct
|
2013-07-18 09:34:52 -04:00 |
|
William Kim
|
aad432c5d7
|
replaced stracktrace-printing with logger messages. removed some unused imports.
|
2013-07-16 13:52:32 -04:00 |
|
William Kim
|
f483d41b88
|
getCustomClaim -> getClaim. Also, removed outdated TODOs.
|
2013-07-16 13:17:25 -04:00 |
|
William Kim
|
0d882faeca
|
added a TODO and fixed some comment typos.
|
2013-07-15 14:24:04 -04:00 |
|
Amanda Anganes
|
15aea61fbe
|
Applied code cleanup
|
2013-07-12 16:58:41 -04:00 |
|
Amanda Anganes
|
3e23967b46
|
Updated code to reflect SECOAUTH changes
|
2013-07-12 16:21:05 -04:00 |
|
William Kim
|
9a6f345e15
|
yes, allow default scoping if the client doesn't ask for any.
|
2013-07-12 15:05:17 -04:00 |
|
William Kim
|
3d312b7eb5
|
Deleted PermissionDeniedException class. Unused.
|
2013-07-12 11:40:11 -04:00 |
|
William Kim
|
ada54c297d
|
addresses issue #382. Throw an exception when client tries to upscope.
|
2013-07-12 11:36:33 -04:00 |
|
William Kim
|
910839e5d9
|
fixed typo referring to client id as a client secret in code comments.
|
2013-07-10 16:53:49 -04:00 |
|
Amanda Anganes
|
2d3f43e3b8
|
Added task scheduling for deleting expired tokens and approved sites. Configuration is all done in application-context.xml so that it is easy to configure
|
2013-07-10 14:34:37 -04:00 |
|
Justin Richer
|
93a0492e97
|
made optional parameters optional
|
2013-07-10 12:50:57 -04:00 |
|
Justin Richer
|
a9da88fb79
|
brought introspection endpoint and introspection token services into compliance with draft, addresses #376
|
2013-07-10 12:50:57 -04:00 |
|
William Kim
|
5ffe1a50a2
|
Added null-handling for Scope values from the auth request. (Without this, a NullPointerException gets thrown with null scope values).
|
2013-07-05 15:14:56 -04:00 |
|
William Kim
|
42027e451c
|
added REQUIRED response types to discovery doc. Also, fixed 2 typos in the list of supported grant types.
|
2013-06-28 15:31:50 -04:00 |
|
William Kim
|
2a92185433
|
added introspection endpoint URL to discovery document.
|
2013-06-28 15:31:50 -04:00 |
|
William Kim
|
741946d1ae
|
updated server discovery code comments.
|
2013-06-28 15:31:50 -04:00 |
|
William Kim
|
f27b69d06b
|
removed Version field from server discovery configuration.
|
2013-06-28 15:31:50 -04:00 |
|
William Kim
|
4f9cbb4b3f
|
added check for null
|
2013-06-27 09:29:47 -04:00 |
|
William Kim
|
dc51af5b83
|
removed testing builder inner class from DefaultOAuth2ProviderTokenService. Also, added more unit tests.
|
2013-06-25 16:31:45 -04:00 |
|
Amanda Anganes
|
c212821267
|
Fixed ChainedTokenGranter setup
|
2013-06-24 10:14:10 -04:00 |
|
Amanda Anganes
|
530c3a75ee
|
Applyed refactoring
|
2013-06-24 09:44:59 -04:00 |
|
William Kim
|
8935a87c23
|
TestDefaultWhitelistedSiteService done. Removed constructors from DefaultWhitelistedSiteService.
|
2013-06-18 15:20:06 -04:00 |
|
William Kim
|
8851f4d037
|
TestDefaultOAuth2ClientDetailsEntityService done. Removed constructors from DefaultOAuth2ClientDetailsEntityService.
|
2013-06-18 15:19:55 -04:00 |
|
William Kim
|
4ee904cbfd
|
removed setter/getter from DefaultUserInfoUserDetailsService and updated test class with Mockito annotations.
|
2013-06-18 15:19:46 -04:00 |
|
William Kim
|
5428848627
|
updated TestDefaultApprovedSiteService to use annotation style Mocking. Allows for removal of injector constructor.
|
2013-06-18 15:19:46 -04:00 |
|
William Kim
|
01fcb4828d
|
removed test constructors for DefaultBlacklistedSiteService.java. Used annotation method of injecting mock objects into testing class (@InjectMocks).
|
2013-06-18 15:19:33 -04:00 |
|
William Kim
|
9a3625ae2b
|
made unit test for checking blacklisted sites. Introduced a new constructor to be able to inject repository for testing.
|
2013-06-18 15:19:33 -04:00 |
|
Justin Richer
|
c577b691c7
|
moved OIDC auth token and userinfo interception filter to common package, addresses #353
|
2013-06-12 14:45:03 -04:00 |
|
Justin Richer
|
8290d198c2
|
added passthrough of userinfo for remote OIDC users
|
2013-06-12 14:22:13 -04:00 |
|
Justin Richer
|
6ed7477bc0
|
added stats to admin UI page, restyled scopes and dynamically registered flags
|
2013-06-07 18:05:07 -04:00 |
|
Justin Richer
|
dc9d5c667e
|
cleaned up error log messages
|
2013-06-06 13:44:50 -04:00 |
|
William Kim
|
1b601abd6f
|
Removed previous constructor from DefaultUserInforUserDetailsService.java and put in getter/setter for UserInfoRepository as a replacement.
|
2013-06-04 16:58:14 -04:00 |
|
Amanda Anganes
|
a7f2e605fa
|
Added two unit tests using the Mockito framework
|
2013-05-31 15:04:18 -04:00 |
|
Josh Mandel
|
b0dc5fb4e2
|
Fix a bug where a client is deleted before details looked up. Also return 204 on success
|
2013-05-31 14:30:51 -04:00 |
|
Amanda Anganes
|
76e5ff8053
|
Finished cleanup, ready to create pull request
|
2013-05-28 12:43:33 -04:00 |
|
Justin Richer
|
81cd13f6d3
|
added RegisteredClient class to facilitate client configuration and dynamic registration, addresses #335
|
2013-05-20 17:19:28 -04:00 |
|
Justin Richer
|
545ddace95
|
updated registration URI, addresses #321
|
2013-05-10 11:54:48 -07:00 |
|
Amanda Anganes
|
713f0a4d25
|
Renamed OAuth2Request authorizatoinParameters map to requestParameters
|
2013-05-03 17:07:04 -04:00 |