23bd6a2ffb
response types
12 years ago
82ecef144d
token endpoint auth method
12 years ago
c9b769818e
changed script loading methods to help debugging, fixed subjectype data pull
12 years ago
1fcb67e885
JWKS and subject type
12 years ago
29b46bfd58
stupid javascript templates
12 years ago
0d25d4cb17
null-preserving static parsers instead of constructors
12 years ago
9244d6413c
application type
12 years ago
e7282d53fe
added client URI bits
12 years ago
6a88c13675
split client view into two classes
12 years ago
4095f2179c
added custom client view for API
12 years ago
a0c2e94922
added in all extra fields to JS processor
12 years ago
ac44020305
grant types rename
12 years ago
33c488d9ae
logo url -> uri
12 years ago
7c3ddd0a86
redirect uri with new name
12 years ago
9aebca2e97
fixed gson parser in client API
12 years ago
23efdf9f51
fix viewbean name, nullsafe client creation time, fixed default scope handling
12 years ago
26f03ec070
timestamp for creation date
12 years ago
ea034f7d4a
database preload fixed to match new schema
12 years ago
1f5f7c8aac
updates for java 7
12 years ago
235a3bf2c4
added client information response view
12 years ago
fc978ac994
made require_auth_time nullable again
12 years ago
a2d6894f62
started serialization for client information view
12 years ago
db24c203ec
added parser to client registration endpoint
12 years ago
5c044b9eff
added extra client fields to DB model, moved services to use new client model object
12 years ago
3f8d7d70e5
updated client model to match OAuth Dyn Reg and OIDC Reg
12 years ago
5b9422ffdf
cleaned up old unit tests
12 years ago
f8f925c08f
removed exploded war (no longer needed), addresses #260
12 years ago
bd877dde82
added signature checking to request objects
12 years ago
6c1e6b2d74
refactored signing and validation, added jwk-based cache, removed keyfetcher, refactored client side class structure
12 years ago
385853fa1f
refactored signing and validation, added jwk-based cache, removed keyfetcher, refactored client side class structure
12 years ago
7e64c4bffc
deleted duplicate login button, addresses #276
12 years ago
13a3e97113
updated request object forwarding hack
12 years ago
0712d8c340
updated spring version
12 years ago
42ea2468c9
Split up about, contact, stats tags into two each and removed logic from the *Content tag files
12 years ago
8677f6516d
Template-ized most of the home page UI
12 years ago
987a05302d
Added configured logo url
12 years ago
60b679e942
First steps towards adding display variables to config bean
12 years ago
4d725b88dd
more updates to track nimbus-jose-jwt classes and use them properly
12 years ago
9a98d241e8
updates to track Nimbus JOSE API changes to audience and date fields
12 years ago
cc727cee3e
patched unit test to new format
12 years ago
03e7337b9f
client registration endpoint needs general rewrite to fit new spec.
...
Most of the problematic references will change with the rewrite, so this is a slapdash patch to make things compile for now.
12 years ago
25b9940a68
request object endpoint is a placeholder, cleaning out for now
12 years ago
e5732da857
added system default signing algorithm, converted token provider and enhancer to use nimbus-jose
12 years ago
c01e873019
request object processor moved to nimbus-jose
12 years ago
0f99e0e06d
assertion token granter moved to nimbus-jose
12 years ago
10ab55a7e2
moved jwk/x509 publishing over to nimbus-jose (mostly)
12 years ago
fca30cd13f
added provisions to bootstrap signing and validation service from config files
12 years ago
a078f7d202
patched userinfo view to use nimbus
12 years ago
c7d1b47b38
converted bearer assertion framework to nimbus-jose
12 years ago
910a6cf1a0
remvoed idtoken repository that was never used
12 years ago
46a3e70377
removed idtoken class, removed all jwe/jwt tests
12 years ago
46f0e6f3cb
restyled login page
12 years ago
b840b31c74
added cleaner login/logout failure handling and processing
12 years ago
1398575061
Added additional joda time dependency
12 years ago
58ea01f0f8
added hints to login form to discourage mobile browsers from trying to do something clever like autocorrect
12 years ago
991f37a1e6
refactored javascript and template files into components
12 years ago
137e5e5ca1
added placeholder blocks in place of empty tables, addresses #244
12 years ago
62b931ee0d
scope icons now show up everywhere
12 years ago
d0fdf8140e
sorting on approval page
12 years ago
328fa221bd
scope bootstrapping
12 years ago
02846c0a8d
typo fix, DB constraints
12 years ago
88f2ea3e7e
icon selector
12 years ago
e622202e9e
display scopes based on request, pull scope information dynamically, addresses #208
12 years ago
eb4773ce46
beginning dynamic scopes on auth page
12 years ago
c2b9fd4db1
system scope ordering consistency
12 years ago
173281f039
DB consistency fix
12 years ago
801a45cc49
several bugfixes to scopes UI, works now
12 years ago
e5171a196a
minor bugfixes
12 years ago
d1968f624a
scope ui bugfixes
12 years ago
fbfc977f3b
system scope ui updates
12 years ago
9dc603a759
scope management UI
12 years ago
1ceee853f9
scope management UI
12 years ago
a3037a18a7
system scope service applied to client creation UI
12 years ago
cab36a2b80
added appropriate filterered and transformative actions to scope service
12 years ago
ab35186696
added scope service, repository, and API
12 years ago
19e7b62a42
removed persistence.xml and moved to pure spring-based config, addresses #194
12 years ago
a3619240e6
added site scope
12 years ago
a2e548c261
fixed claims processor for request object from user info endpoint
12 years ago
899150d636
tweak display on auth revoke page
12 years ago
3c190e044a
inject parsed parameters to make SECOAUTH happy
12 years ago
1144d511af
inject scopes
12 years ago
f9d50db1f1
don't treat openid scope special here -- by default client gets access to *all* scopes it's registered for
12 years ago
078342715b
moved request object to request manager
12 years ago
3399eed45a
Added about, contact, and stats pages. Still largely placeholders, but the topbar works correctly now at least.
12 years ago
0be254c99a
updated token introspection output to match spec and client filter
12 years ago
e02e08563c
changed order or custom filters to make assertions work, added client credentials token granter to default
12 years ago
c1d33bb55b
bugfix in assertion processor
12 years ago
2e2c0e8e6c
Fixed bug in nonce processing
12 years ago
3db74100a4
working on bug
12 years ago
dd8b48e863
Reset ConnectAuthorizationRequestManager to version from master
12 years ago
06f970e61b
Trying to fix nonce service
12 years ago
86bf51f0a7
Added java reflection code for request object handling, needs to be tested
12 years ago
677f0f2d4c
Stubbed out required functionality for request object filtering
12 years ago
67e8714671
Working on request object userinfo parsing
12 years ago
779001a8c8
updated copyright year
12 years ago
7269700dc6
switched injector from repository to service
12 years ago
f0ee36dad2
auth_type -> auth_method (addresses #258 )
12 years ago
fd2253303e
changed pointer on tabs, addresses #252
12 years ago
899e306683
fixed JS crash on "new client" operation
12 years ago
8831bc64a2
offline -> offline_access (addresses #248 )
12 years ago
27a26e0a35
(user_id/prn) -> sub
12 years ago
1ab29882b4
fixed user prepoulation table
12 years ago
0ab4ad4bbe
added "birthdate", addresses #253
12 years ago
6ef4dc817e
genericized nimbus code, added caching
12 years ago
2d21a72e7e
switched to nimbus to check JWT signature
12 years ago
60bda31c54
updated custom filter
12 years ago
c17bc05b0e
wiring configuration
12 years ago
4262be1fd3
added jwt processing to client auth provider
12 years ago
abd64eccd6
added framework for processing assertions for client auth
12 years ago
ad5e77f7ff
Made nonce storage duration configurable in application-context.xml;
12 years ago
59f1b1f05e
Testing, nonce handling seems to be working now
12 years ago
a1a117cfde
Added default constructor to ConnectAuthorizationRequestManager
12 years ago
af81e371fb
Updated application-context to use new authorization request manager
12 years ago
77b932f5a7
Added implementation of AuthorizationRequestManager. Nonce checking will go in here
12 years ago
1af6513499
Removed nonce checking from token service impl
12 years ago
7e7b2527db
Added nonce to persistence.xml
12 years ago
246ed962bb
Added stub of repository test
12 years ago
e1dffb959c
Added NonceReuseException
12 years ago
8f8a3754db
Added database tables for Nonce
12 years ago
a4637ec395
Fleshed out nonce service classes, added code to token service impl to check for and store nonces. Added JodaTime library for working with dates.
12 years ago
c7ae315e98
Added initial files for nonce service. Repository and service impls are stubs
12 years ago
cbcfe55bb9
added introspection flag to client bootstrap
12 years ago
4068952a81
fixed well size, added comment
12 years ago
655092a12b
added introspection checkbox, added access tab
...
Signed-off-by: Justin Richer <jricher@mitre.org>
12 years ago
9a1b2d7fac
made client edit page tabbable (that was seriously easy)
12 years ago
48866c15f2
button display cleanup
12 years ago
a85b1f5d74
split approved sites into two tables
12 years ago
198a45369a
buttonsize tweak
12 years ago
f12efc1b80
added dynreg caution block
12 years ago
231e81a426
updated icons
12 years ago
797d521691
cleaned up logged-in button
12 years ago
7ebbe3acc4
removed mockups
12 years ago
7459767646
fixed validation problem with new backbone
12 years ago
37bca0d5fb
cleaned out backbone validation plugin
12 years ago
9dd54d47bb
updated versions of backbone and underscore
12 years ago
e0672757bf
update to bootstrap 2.2.2
12 years ago
8ad28b41aa
fixing CSS and collapsing headerbar
12 years ago
67a682d53a
added default router to backbone app
12 years ago
87788f0710
let users visit home page without logging in
12 years ago
f265347311
tweaked error messages
12 years ago
18ddd8333f
added flag to allow introspection, relaxed same-client restrictions on introspection and chained tokens
12 years ago
6eabc895b9
moved database file to a reasonable name
12 years ago
1f53f41648
generic entity view now takes optional HttpStatus argument
12 years ago
a3790f943e
cleaned up introspection endpoint to use exceptions
12 years ago
e5206f2b92
implemented jwt assertions for id tokens
12 years ago
51b67ebc03
added queries to get access token from id token
12 years ago
1853bd7117
added assertion token granter
12 years ago
0d6c96f410
moved JPA adapter to data-context, addresses #242
12 years ago
2a74be5baf
bringing mysql tables up to date
12 years ago
2c104a71e2
cleaned up mysql table
12 years ago
cda6163d0d
null and blank handling
12 years ago
06fad3a41c
moved view for client API
12 years ago
6344a72519
missed a few applicationName references, fixed API JSON rendering
12 years ago
dfd8e9c7c7
removed unused view
12 years ago
dd04df6a22
fixed javascript bugs
12 years ago
f12d3c7d30
fixed variable reference
12 years ago
920777128d
switched to uncompressed jquery
12 years ago
829c8ae5f4
tweaked functionality of grant types and scopes
12 years ago
cc36851bdd
propagated field name change to UI
12 years ago
179903b074
propagated client changes to service
12 years ago
2f7891d02c
updated mysql table to new schema
12 years ago
bcfa37040e
missed one
12 years ago
33ceedb283
added scope and grant_type, switched to timeunit
12 years ago
e2bc15c2b2
beginning of client registration refactor to track IETF dynreg spec
12 years ago
94c37f5815
added redelegate scope to client list, fixed inconsistency with refresh token issuance (addresses #239 )
12 years ago
510ddb48b7
override the correct part of the token granter class
12 years ago
bdcc6af096
temporary sanity check for client ID's
12 years ago
cab0839430
added workarounds for quirks in SECOAUTH
12 years ago
edc96d646c
added chained token grant
12 years ago
54708fb0ac
fixed id token scopes (shouldn't inherit from parent token)
12 years ago
2a206654b6
added client credential protection to revocation endpoint
12 years ago
e38b2b0ba5
shortened revocation endpoint url
12 years ago
fbc3c46128
Introspection now draft spec compliant, requires client auth
...
Currently this is the client that originally sent the token, we want to have a way to bind other "clients" to this token as well, like resource services. Also want to let open calls, sometimes.
12 years ago
544e3d7b43
added copy constructors because Dave likes to use unmodifiable sets for no apparent reason
12 years ago
64ef752f08
added refresh token granter for testing
12 years ago
7561ac9e8c
client dynamic registration now protected by access token, addresses #199
12 years ago
7342da6a51
completed making id tokens into access tokens
12 years ago
e4f9fa2bbf
labeled introspection endpoint
12 years ago
17374a57e0
added ISO date format to generic entity view, addresses #232
12 years ago
3378cd5c4c
cleaned table
12 years ago
b8f701d9d8
switched id tokens to entities, they're now access tokens also
...
still needs some work to get the auth object right, for now we're just copying from the access token
12 years ago
2ef8d16e9c
typo, formatting
12 years ago
ba7ddf17f9
added bootstrapping for clients, cleaned up sql files
12 years ago
cf7ceb74f3
betterer logout button
12 years ago
2f1a6864b8
made a better logout button
12 years ago
838e029db1
added logout button
12 years ago
d7d9e84e70
fixed user_id mapping
12 years ago
f091343d84
moved back to in-memory database by default
12 years ago
49e216412e
Added bootstrapped users set.
12 years ago
dcc56ec9dd
temporary tables to prevent casts from leaking
12 years ago
8b37011244
added casts to varchar to avoid extraneous spaces
12 years ago
e305d3b16b
Making stable in-memory and in-file database with HSQL
12 years ago
061c0f0814
minor cleanup
12 years ago
250432ce7f
Added information into the user_info table
12 years ago
1bcaa68cb4
Added user_info stuff... and changed serverconfig for issuer...
12 years ago
47b34d2b1b
Added blacklist table to HSQLDB sql script
12 years ago
4fdb0816eb
Moved DB to use in memory HSQLDB. Made authentication-provider use a jdbc-user-service in that in-memory hsqldb.
12 years ago
fce47c239a
added slashes to patterns what needed them, removed vestigial intercept from user-context
12 years ago
122a2de074
First attempt at making API not redirect to /login, failed
12 years ago
d07f67bd76
let user select when grants time out
12 years ago
84401531ae
tie refresh token generation to "offline" scope tag
12 years ago
50040a8ef4
fixed checkbox labels
12 years ago
667c3abc8a
dynamic scope display/selection on approval page
12 years ago
1281d75aa9
stopped re-parsing scopes
12 years ago
9c3a40779b
updated to SECOAUTH's horrible new object-breaking authorization request paradigm.
...
Bonus: it works!
12 years ago
3e327b9df6
reverted to original controller behavior
12 years ago
cf4581a5eb
updated configuration to reflect secoauth changes
12 years ago
45ca4e565e
updated to SECOAUTH-1.0.1-BUILD-SNAPSHOT
12 years ago
cf1ddf0457
Determined that init binder was not needed to fix default for Boolean require_auth_time; instead use defaultValue=\"true\" in the RequestParam declaration. Also fixed bug in ClientDetails service so that it will not blow up if the client has no redirect uris registered
12 years ago
2084639828
Working on init binder for ClientDynamicRegistrationEndpoint
12 years ago
8b0c520534
Issue 213, writing init binder to convert null Boolean values to false before calling setters
12 years ago
a2a29e7b76
trying out new confirmation controller
12 years ago
d9b6918bc2
softened error from scope checker -- returns false now, allows things to pass through
12 years ago
9c08944a02
Changed arity on approved sites (now can have many per user/site combo)
12 years ago
58b97f7371
stupid javascript
12 years ago
fda86e23e9
moved everything to use the consumes/produces framework of Spring 3.1
12 years ago
51920ee381
switched to using "uneditable-input" classes instead of disabled input fields
12 years ago
e303319701
got rid of postrender
12 years ago
5b0c17c5de
added in checks to blacklist service upon client registration and update
12 years ago
7a6c96a759
fixed links
12 years ago
e9d1ed270d
service layer cleanups
12 years ago
4e18fb4525
blacklist management UI
12 years ago
d576df4b31
fixed render length limits on list widget
12 years ago
757e21a722
added blacklist API
12 years ago
1f4b97bc7e
fixed icon and variable reference
12 years ago
e86f19bd7c
added dynamic icons to whitelist table
12 years ago
2beff07d4b
added icons and tooltips to approved site table
12 years ago
20b73ea0c4
tooltip works!
12 years ago
8ecdb8a4ab
added icon to template, popover doesn't work yet
12 years ago
9064b49a54
added refresh buttons to all tables, fixed loading behavior to a proper cascading function call
12 years ago
a88ae8258a
Updated plus and minus buttons in list views, addresses #202
12 years ago
150c4032fd
WTF MYSQL!!
...
Added "NULL" option to all appropriate TIMESTAMP columns so that they behave how we expect them to.
12 years ago
f9aafb5edd
approved sites UI
12 years ago
f4605ef2fc
cleaned out startAfter function
12 years ago
845c11ad3a
methods for creating, editing, and deleting whitelist sites all function
12 years ago
321172c40c
fixed load/fetch order, fixed edit form display, robustified whitelist views against missing client IDs
12 years ago
f39c254353
updated variables for consistency, tracking down a data-loading bug
12 years ago
51cfe1746d
whitelist editing
12 years ago
bb589fc29a
fixed logic error in script inclusion
12 years ago
cccbad2ca1
added whitelist button to table view
12 years ago
7a9d7e6363
Fixed sidebar menu
12 years ago
7b1a2529dc
added whitelist model and template
12 years ago
ee0fe4a9d3
applied placeholder CSS hack to header CSS
12 years ago
86ebdff82b
Revert "Placeholder UI updates"
...
This reverts commit fd89312b0c
12 years ago
030e2ce2df
fixed link scanner
12 years ago
706858c41f
added comments, fixed paths, uncommented logo hide function
12 years ago
f2e1317365
added purl.js library for URL parsing
12 years ago
33f11cb98f
cleanly applied pushstate changes, new URL structure
12 years ago
1d8254bf2f
changed target of approve form
12 years ago
be506ae952
Moved fonts local, fixed loading indicator
12 years ago
84cedbb45e
Support the "Enter" key on list widget
12 years ago
8fc6b2b680
Removing the rest of Justin's load hack
12 years ago
fd89312b0c
Placeholder UI updates
12 years ago
48941f1713
Dynamic JS loading and UI updates
12 years ago
2311cdf1f2
Revert "Dynamic Client Loading Initial Commit"
...
This reverts commit a4e5335eda02cdb6b32a966d194035429ca52915.
12 years ago
d7455dba14
Dynamic Client Loading Initial Commit
12 years ago
29862f15bd
Removed a bunch of commented-out configuration
12 years ago
51073a7f8d
Refactor part 3
12 years ago
ef80676dc1
Cleaned up web package a bit - lots of unused imports and variables
12 years ago
dd2abd94d1
Refactoring part 2
12 years ago
c40efda6b5
Refactor part 1
12 years ago
0b6aebfefe
Revert "removed postrender function, use render function instead"
...
This reverts commit 2b1e78d195
12 years ago
ebf77bea68
Updated timeout functions
12 years ago
6fdd088125
Updated client secret panel display
12 years ago
be17133a99
Changed "submit" label to "save"
12 years ago
2b1e78d195
removed postrender function, use render function instead
12 years ago
ece1b56095
added missing brackets
12 years ago
fe3e890bb3
changed to table head for input control
12 years ago
d8221a2a35
added missing semicolon
12 years ago
ed75b38ecc
changed list view table styling
12 years ago
a4a40ffae5
unit test for x509 endpoint
12 years ago
d9771f2322
Timout Bugfixes
12 years ago
26c3cf5989
Timout UI refactor
12 years ago
19df5ae032
Timeout form updates. Logo URL updates
12 years ago
cb6767dfb4
Timout form updates
12 years ago
a9d1799eda
added getter/setter to UIE schema-to-view map
12 years ago
920b2a59ba
Fixed error logging
12 years ago
2d24435365
Created custom resolver, handler mapper
...
moved endpoint back to server
12 years ago
7eb0a6f3d2
Moved JWK to commons
12 years ago
f3c225d8f2
Updated SECOAUTH reference, made required alterations to our configuration
12 years ago
ea16f4e2b6
Fixed merge weirdness
12 years ago
b58ed8b616
Added logoURL stuff
12 years ago
61b828e182
Fixed bug - removed service layer @Transactional annotations, which negated need for flush at repository level; moved @Transactional annotations.
12 years ago
c8f9a3de76
Merge remote-tracking branch 'origin/UI-form-updates'
12 years ago
ee7a5fd2e1
added registration URL to discovery endpoint
12 years ago
332fe282be
List Widget UI values cannot be null
12 years ago
fe837c4fa5
comment edit
12 years ago
4fcbbe639f
visual error indicators for redirect uri and scope
12 years ago
15359a236a
Scope UI Auto-complete
12 years ago
11b35267b4
Refactored stats processor into a service, made home page into a smart page.
12 years ago
85e13bd11d
Initial Scope UI updates
12 years ago
bc0ee4cbab
force id consistency
12 years ago
8876217baf
Added cleanups to client service
12 years ago
d041ddb0e1
Added approvedSite API and support structure
12 years ago
2bf5cfc041
service bug fix
12 years ago
b462d6dd96
added empty http code view
12 years ago
8ae1b376fe
updated whitelist service and repository
12 years ago
6a180acf3c
added preliminary whitelist api
12 years ago
59e2f0e127
Backbone List View Widget Initial Commit
12 years ago
4af3dd89be
cleaned up client api
12 years ago
Justin Richer