8d53149d03
added functionality for prompt=none
12 years ago
37723e3757
opened up access to /resources/**
12 years ago
7292766b51
implemented prompt=consent
12 years ago
ce2c90fb30
fixed error messages in auth request manager
12 years ago
c80b1081cc
Cleaning up approvedsite => token linkage
12 years ago
939a801048
Redid approved site -> token mapping so it is unidirectional from ApprovedSite side. Fixed some error logging, added a new view for ApprovedSite which will only show the IDs of the tokens in the approvedTokens list
12 years ago
a79aca906e
Fixed error logging; added ApprovedSite tracking to tokens
12 years ago
94aa279290
[maven-release-plugin] prepare for next development iteration
12 years ago
cc92743888
[maven-release-plugin] prepare release mitreid-connect-0.9.2
12 years ago
d7689152b8
fixed inadvertent consistency bug in granting offline_access to clients
12 years ago
0e2d5830a4
updated newly-registered clients to not get refresh tokens unless they ask for offline_access scope explicitly
12 years ago
fb859fc39a
added client dynamic registration service, extracted clientdetails<->json processing into its own static class
12 years ago
fc1088c841
fixed display of algorithms in discovery endpoint
12 years ago
82fca45412
Removed RequestObjectAuthorizationEndpoint as it is no longer needed with the changes to the AuthorizationEndpoint.
12 years ago
9db8119930
Fixed request object processing, had a small bug
12 years ago
e708f77eb3
Fixed up OIDC code so that it runs with new SECOAUTH changes; removed old AuthorizationRequestImpl class which is no longer needed
12 years ago
895690df54
added webfinger discovery to server, addresses #279
12 years ago
9c6b08d919
effectively removed auth_time calculations
12 years ago
33af3b1ad6
updated discovery endpoint to latest spec, removed surplus specialized view
12 years ago
8e8e14c638
added at_hash
12 years ago
3bb43f417a
added auth time tracking
12 years ago
ce2e630304
fixed login page display (thanks to Jett), addresses #289
12 years ago
e665aec36f
dependency cleanup
12 years ago
98fff8fe99
updated error handling on introspection and revocation endpoints
12 years ago
35cb14a73f
fixed comment
12 years ago
743a3023dc
removed old error handlers
12 years ago
31e3c5e5e7
moved user approval page
12 years ago
694761c026
cleaned up userinfo view
12 years ago
71d6dc6afe
removed special stats view
12 years ago
1630648925
updated logo, added large logo
12 years ago
7e59421f33
Commented out XRD endpoint and added TODO reference to webfinger issue
12 years ago
34b243e0e1
Added back discovery endpoint, but renamed to not say SWD
12 years ago
ac2993c402
[maven-release-plugin] prepare for next development iteration
12 years ago
f0d75f9144
[maven-release-plugin] prepare release mitreid-connect-0.9.1
12 years ago
23c318f6c2
Updating guava to 14.0.1
12 years ago
a723c9d921
Removed references to DefaultAuthorizationRequest in connect code
12 years ago
e17eaa499e
Cleaned up classes affected by SECOAUTH changes; added Connect implementation of AuthorizationRequest and updated manager class to reflect new class & updated interface;
...
;
12 years ago
5f54777109
[maven-release-plugin] prepare for next development iteration
12 years ago
620a60ddc2
[maven-release-plugin] prepare release mitreid-connect-0.9.0
12 years ago
54f1ae972b
Added properties and updated poms for sync to central
12 years ago
f63ea94b37
fixed bean name
12 years ago
f101dcc512
moved to released version of SECOAUTH
12 years ago
c0c1847f38
fixed bean name
12 years ago
72e2c7cb6c
Updated build references
12 years ago
02220a411a
Fixed typo
12 years ago
0f327a772b
Updated js files to use results returned from JsonErrorView; factored out markup into modal definition.
12 years ago
2265a3f8c3
Updated error handling messages for scope, approved site, blacklist, whitelist, and client APIs using new JsonErrorView
12 years ago
ee5b21b542
Added JsonErrorView
12 years ago
07686d8e00
Removed superfluous try/catch around save call in ScopeAPI.
12 years ago
4538d8fb14
made signing and verification service construction safe for public-only keys
12 years ago
6cc50e7cd5
switched signing & validation service to use JWK natively for keys
12 years ago
f54dddd8c0
fixed blacklisted field name, addresses #295
12 years ago
5a04198eac
moved to JPSK based key store
12 years ago
e2ad4d2e8f
cleaned up spurious nosuchalgorithm exceptions, addresses #285
12 years ago
5b321b9c86
Updated whitelist api for ui error handling
12 years ago
666573cd34
Updated blacklist and client api for ui error handling
12 years ago
218fe9328c
Updated approved site API for error handling
12 years ago
435fff3b1c
Updated scope API for error handling
12 years ago
18e319379e
Got bootstrap modal alert working, but not sure if it is the right approach. It looks different than the confirmation window.
12 years ago
49863e70ae
Got scope "value" error handling set
12 years ago
d24ecd2e7c
Removed extra scope validation endpoint
12 years ago
96e333afa6
Working on error handling
12 years ago
fa0a6a7b4e
Finding my way around Backbone, Underscore, and Bootstrap
12 years ago
5704271973
Fixed client error: added all client fields to model in client.js; lined them up with the fields in ClientDetailsEntity.java for easier comparison
12 years ago
36b08dcd6e
Removed SWD code
12 years ago
fcc95f8a0a
Moved nonce processing stuff into nonce service and out of ConnectAuthorizationRequestManager
12 years ago
d38c5b4200
Pared down nonce reuse exception message to just say that the nonce has already been used
12 years ago
b28b0615fa
removed vestigial ClientDetailsEntityService references
12 years ago
08eaaa0a12
updated repository to use proper concrete class
12 years ago
8fccbf3483
added Id field to DefaultUserInfo object, switched "userId" terminology to "subject"
12 years ago
f44c704472
major refactor of client filter
...
Collapsed filter into single class
pulled server config and client config management into service classes
created service for issuer (will handle account chooser)
created auth request services (handle signed and unsigned requests)
12 years ago
2b45dd1104
cleaned up stats display
12 years ago
8992506a1d
Fixing up logging changes
12 years ago
f9b0670ae9
Merged ClientAPI and ClientDynamicRegistrationEndpoitn by hand
12 years ago
5cac7055a9
Standardized error handling and added logging for error conditions in endpoints
12 years ago
dbc68e4074
Working on error handling
12 years ago
1630814b9f
Marked classes where error handling needs to be added/changed
12 years ago
0f6faf3609
removed old namespace config files
12 years ago
6320fce9fd
url -> uri in approval page
12 years ago
7c36f9fb38
made sidebar size-responsive, added sticky footer
12 years ago
ad3a22e5d4
changed client defaults for JOSE bits
12 years ago
3268726747
changed to dict-based model for saving
12 years ago
8f4ecac8d5
forgot a field
12 years ago
27a8bcf440
now with more documentation and actual deletion
12 years ago
eaa9e1ded4
typo for grant types in parser
12 years ago
a6a2d43e8f
added Read, Update, and Delete operations to dynreg endpoint
12 years ago
d37bac1775
simplification and documentation of client api views
12 years ago
4c3c2dce52
removed sessions from endpoints, properly mapped registration endpoint
12 years ago
217916603f
cleaned out broken unit tests -- now we can start fresh
12 years ago
c9bdba3f3a
API now bound to USER for read, ADMIN for write, addresses #267
12 years ago
1daf5bd357
dispatch to different views based on user role
12 years ago
70b2342864
fixed split client views, fixed typos in various places
12 years ago
f07c31bbe2
JOSE selectors
12 years ago
51a7ccc397
entity -> embed
12 years ago
7b8623edbb
typo
12 years ago
93851ab94d
request URIs and default ACR values
12 years ago
6c136b5696
contacts
12 years ago
79bf862924
added Not Yet Implemented tags
12 years ago
9b6dfd4e1d
require auth time, reuse refresh token, and default max age
12 years ago
ff53d71e6f
sector identifier, initiate login, and post logout URIs ; reuse refresh tokens
12 years ago
23bd6a2ffb
response types
12 years ago
82ecef144d
token endpoint auth method
12 years ago
c9b769818e
changed script loading methods to help debugging, fixed subjectype data pull
12 years ago
1fcb67e885
JWKS and subject type
12 years ago
29b46bfd58
stupid javascript templates
12 years ago
0d25d4cb17
null-preserving static parsers instead of constructors
12 years ago
9244d6413c
application type
12 years ago
e7282d53fe
added client URI bits
12 years ago
6a88c13675
split client view into two classes
12 years ago
4095f2179c
added custom client view for API
12 years ago
a0c2e94922
added in all extra fields to JS processor
12 years ago
ac44020305
grant types rename
12 years ago
33c488d9ae
logo url -> uri
12 years ago
7c3ddd0a86
redirect uri with new name
12 years ago
9aebca2e97
fixed gson parser in client API
12 years ago
23efdf9f51
fix viewbean name, nullsafe client creation time, fixed default scope handling
12 years ago
26f03ec070
timestamp for creation date
12 years ago
ea034f7d4a
database preload fixed to match new schema
12 years ago
1f5f7c8aac
updates for java 7
12 years ago
235a3bf2c4
added client information response view
12 years ago
fc978ac994
made require_auth_time nullable again
12 years ago
a2d6894f62
started serialization for client information view
12 years ago
db24c203ec
added parser to client registration endpoint
12 years ago
5c044b9eff
added extra client fields to DB model, moved services to use new client model object
12 years ago
3f8d7d70e5
updated client model to match OAuth Dyn Reg and OIDC Reg
12 years ago
5b9422ffdf
cleaned up old unit tests
12 years ago
f8f925c08f
removed exploded war (no longer needed), addresses #260
12 years ago
bd877dde82
added signature checking to request objects
12 years ago
6c1e6b2d74
refactored signing and validation, added jwk-based cache, removed keyfetcher, refactored client side class structure
12 years ago
385853fa1f
refactored signing and validation, added jwk-based cache, removed keyfetcher, refactored client side class structure
12 years ago
7e64c4bffc
deleted duplicate login button, addresses #276
12 years ago
13a3e97113
updated request object forwarding hack
12 years ago
0712d8c340
updated spring version
12 years ago
42ea2468c9
Split up about, contact, stats tags into two each and removed logic from the *Content tag files
12 years ago
8677f6516d
Template-ized most of the home page UI
12 years ago
987a05302d
Added configured logo url
12 years ago
60b679e942
First steps towards adding display variables to config bean
12 years ago
4d725b88dd
more updates to track nimbus-jose-jwt classes and use them properly
12 years ago
9a98d241e8
updates to track Nimbus JOSE API changes to audience and date fields
12 years ago
cc727cee3e
patched unit test to new format
12 years ago
03e7337b9f
client registration endpoint needs general rewrite to fit new spec.
...
Most of the problematic references will change with the rewrite, so this is a slapdash patch to make things compile for now.
12 years ago
25b9940a68
request object endpoint is a placeholder, cleaning out for now
12 years ago
e5732da857
added system default signing algorithm, converted token provider and enhancer to use nimbus-jose
12 years ago
c01e873019
request object processor moved to nimbus-jose
12 years ago
0f99e0e06d
assertion token granter moved to nimbus-jose
12 years ago
10ab55a7e2
moved jwk/x509 publishing over to nimbus-jose (mostly)
12 years ago
fca30cd13f
added provisions to bootstrap signing and validation service from config files
12 years ago
a078f7d202
patched userinfo view to use nimbus
12 years ago
c7d1b47b38
converted bearer assertion framework to nimbus-jose
12 years ago
910a6cf1a0
remvoed idtoken repository that was never used
12 years ago
46a3e70377
removed idtoken class, removed all jwe/jwt tests
12 years ago
46f0e6f3cb
restyled login page
12 years ago
b840b31c74
added cleaner login/logout failure handling and processing
12 years ago
1398575061
Added additional joda time dependency
12 years ago
58ea01f0f8
added hints to login form to discourage mobile browsers from trying to do something clever like autocorrect
12 years ago
991f37a1e6
refactored javascript and template files into components
12 years ago
137e5e5ca1
added placeholder blocks in place of empty tables, addresses #244
12 years ago
62b931ee0d
scope icons now show up everywhere
12 years ago
d0fdf8140e
sorting on approval page
12 years ago
328fa221bd
scope bootstrapping
12 years ago
02846c0a8d
typo fix, DB constraints
12 years ago
88f2ea3e7e
icon selector
12 years ago
e622202e9e
display scopes based on request, pull scope information dynamically, addresses #208
12 years ago
eb4773ce46
beginning dynamic scopes on auth page
12 years ago
c2b9fd4db1
system scope ordering consistency
12 years ago
173281f039
DB consistency fix
12 years ago
801a45cc49
several bugfixes to scopes UI, works now
12 years ago
e5171a196a
minor bugfixes
12 years ago
d1968f624a
scope ui bugfixes
12 years ago
fbfc977f3b
system scope ui updates
12 years ago
9dc603a759
scope management UI
12 years ago
1ceee853f9
scope management UI
12 years ago
a3037a18a7
system scope service applied to client creation UI
12 years ago
cab36a2b80
added appropriate filterered and transformative actions to scope service
12 years ago
ab35186696
added scope service, repository, and API
12 years ago
19e7b62a42
removed persistence.xml and moved to pure spring-based config, addresses #194
12 years ago
a3619240e6
added site scope
12 years ago
a2e548c261
fixed claims processor for request object from user info endpoint
12 years ago
899150d636
tweak display on auth revoke page
12 years ago
3c190e044a
inject parsed parameters to make SECOAUTH happy
12 years ago
1144d511af
inject scopes
12 years ago
f9d50db1f1
don't treat openid scope special here -- by default client gets access to *all* scopes it's registered for
12 years ago
078342715b
moved request object to request manager
12 years ago
3399eed45a
Added about, contact, and stats pages. Still largely placeholders, but the topbar works correctly now at least.
12 years ago
0be254c99a
updated token introspection output to match spec and client filter
12 years ago
e02e08563c
changed order or custom filters to make assertions work, added client credentials token granter to default
12 years ago
c1d33bb55b
bugfix in assertion processor
12 years ago
2e2c0e8e6c
Fixed bug in nonce processing
12 years ago
3db74100a4
working on bug
12 years ago
dd8b48e863
Reset ConnectAuthorizationRequestManager to version from master
12 years ago
06f970e61b
Trying to fix nonce service
12 years ago
86bf51f0a7
Added java reflection code for request object handling, needs to be tested
12 years ago
677f0f2d4c
Stubbed out required functionality for request object filtering
12 years ago
67e8714671
Working on request object userinfo parsing
12 years ago
779001a8c8
updated copyright year
12 years ago
7269700dc6
switched injector from repository to service
12 years ago
f0ee36dad2
auth_type -> auth_method (addresses #258 )
12 years ago
fd2253303e
changed pointer on tabs, addresses #252
12 years ago
899e306683
fixed JS crash on "new client" operation
12 years ago
8831bc64a2
offline -> offline_access (addresses #248 )
12 years ago
Justin Richer