27a26e0a35
(user_id/prn) -> sub
12 years ago
1ab29882b4
fixed user prepoulation table
12 years ago
0ab4ad4bbe
added "birthdate", addresses #253
12 years ago
6ef4dc817e
genericized nimbus code, added caching
12 years ago
2d21a72e7e
switched to nimbus to check JWT signature
12 years ago
60bda31c54
updated custom filter
12 years ago
c17bc05b0e
wiring configuration
12 years ago
4262be1fd3
added jwt processing to client auth provider
12 years ago
abd64eccd6
added framework for processing assertions for client auth
12 years ago
ad5e77f7ff
Made nonce storage duration configurable in application-context.xml;
12 years ago
59f1b1f05e
Testing, nonce handling seems to be working now
12 years ago
a1a117cfde
Added default constructor to ConnectAuthorizationRequestManager
12 years ago
af81e371fb
Updated application-context to use new authorization request manager
12 years ago
77b932f5a7
Added implementation of AuthorizationRequestManager. Nonce checking will go in here
12 years ago
1af6513499
Removed nonce checking from token service impl
12 years ago
7e7b2527db
Added nonce to persistence.xml
12 years ago
246ed962bb
Added stub of repository test
12 years ago
e1dffb959c
Added NonceReuseException
12 years ago
8f8a3754db
Added database tables for Nonce
12 years ago
a4637ec395
Fleshed out nonce service classes, added code to token service impl to check for and store nonces. Added JodaTime library for working with dates.
12 years ago
c7ae315e98
Added initial files for nonce service. Repository and service impls are stubs
12 years ago
cbcfe55bb9
added introspection flag to client bootstrap
12 years ago
4068952a81
fixed well size, added comment
12 years ago
655092a12b
added introspection checkbox, added access tab
...
Signed-off-by: Justin Richer <jricher@mitre.org>
12 years ago
9a1b2d7fac
made client edit page tabbable (that was seriously easy)
12 years ago
48866c15f2
button display cleanup
12 years ago
a85b1f5d74
split approved sites into two tables
12 years ago
198a45369a
buttonsize tweak
12 years ago
f12efc1b80
added dynreg caution block
12 years ago
231e81a426
updated icons
12 years ago
797d521691
cleaned up logged-in button
12 years ago
7ebbe3acc4
removed mockups
12 years ago
7459767646
fixed validation problem with new backbone
12 years ago
37bca0d5fb
cleaned out backbone validation plugin
12 years ago
9dd54d47bb
updated versions of backbone and underscore
12 years ago
e0672757bf
update to bootstrap 2.2.2
12 years ago
8ad28b41aa
fixing CSS and collapsing headerbar
12 years ago
67a682d53a
added default router to backbone app
12 years ago
87788f0710
let users visit home page without logging in
12 years ago
f265347311
tweaked error messages
12 years ago
18ddd8333f
added flag to allow introspection, relaxed same-client restrictions on introspection and chained tokens
12 years ago
6eabc895b9
moved database file to a reasonable name
12 years ago
1f53f41648
generic entity view now takes optional HttpStatus argument
12 years ago
a3790f943e
cleaned up introspection endpoint to use exceptions
12 years ago
e5206f2b92
implemented jwt assertions for id tokens
12 years ago
51b67ebc03
added queries to get access token from id token
12 years ago
1853bd7117
added assertion token granter
12 years ago
0d6c96f410
moved JPA adapter to data-context, addresses #242
12 years ago
2a74be5baf
bringing mysql tables up to date
12 years ago
2c104a71e2
cleaned up mysql table
12 years ago
cda6163d0d
null and blank handling
12 years ago
06fad3a41c
moved view for client API
12 years ago
6344a72519
missed a few applicationName references, fixed API JSON rendering
12 years ago
dfd8e9c7c7
removed unused view
12 years ago
dd04df6a22
fixed javascript bugs
12 years ago
f12d3c7d30
fixed variable reference
12 years ago
920777128d
switched to uncompressed jquery
12 years ago
829c8ae5f4
tweaked functionality of grant types and scopes
12 years ago
cc36851bdd
propagated field name change to UI
12 years ago
179903b074
propagated client changes to service
12 years ago
2f7891d02c
updated mysql table to new schema
12 years ago
bcfa37040e
missed one
12 years ago
33ceedb283
added scope and grant_type, switched to timeunit
12 years ago
e2bc15c2b2
beginning of client registration refactor to track IETF dynreg spec
12 years ago
94c37f5815
added redelegate scope to client list, fixed inconsistency with refresh token issuance (addresses #239 )
12 years ago
510ddb48b7
override the correct part of the token granter class
12 years ago
bdcc6af096
temporary sanity check for client ID's
12 years ago
cab0839430
added workarounds for quirks in SECOAUTH
12 years ago
edc96d646c
added chained token grant
12 years ago
54708fb0ac
fixed id token scopes (shouldn't inherit from parent token)
12 years ago
2a206654b6
added client credential protection to revocation endpoint
12 years ago
e38b2b0ba5
shortened revocation endpoint url
12 years ago
fbc3c46128
Introspection now draft spec compliant, requires client auth
...
Currently this is the client that originally sent the token, we want to have a way to bind other "clients" to this token as well, like resource services. Also want to let open calls, sometimes.
12 years ago
544e3d7b43
added copy constructors because Dave likes to use unmodifiable sets for no apparent reason
12 years ago
64ef752f08
added refresh token granter for testing
12 years ago
7561ac9e8c
client dynamic registration now protected by access token, addresses #199
12 years ago
7342da6a51
completed making id tokens into access tokens
12 years ago
e4f9fa2bbf
labeled introspection endpoint
12 years ago
17374a57e0
added ISO date format to generic entity view, addresses #232
12 years ago
3378cd5c4c
cleaned table
12 years ago
b8f701d9d8
switched id tokens to entities, they're now access tokens also
...
still needs some work to get the auth object right, for now we're just copying from the access token
12 years ago
2ef8d16e9c
typo, formatting
12 years ago
ba7ddf17f9
added bootstrapping for clients, cleaned up sql files
12 years ago
cf7ceb74f3
betterer logout button
12 years ago
2f1a6864b8
made a better logout button
12 years ago
838e029db1
added logout button
12 years ago
d7d9e84e70
fixed user_id mapping
12 years ago
f091343d84
moved back to in-memory database by default
12 years ago
49e216412e
Added bootstrapped users set.
12 years ago
dcc56ec9dd
temporary tables to prevent casts from leaking
12 years ago
8b37011244
added casts to varchar to avoid extraneous spaces
12 years ago
e305d3b16b
Making stable in-memory and in-file database with HSQL
12 years ago
061c0f0814
minor cleanup
12 years ago
250432ce7f
Added information into the user_info table
12 years ago
1bcaa68cb4
Added user_info stuff... and changed serverconfig for issuer...
12 years ago
47b34d2b1b
Added blacklist table to HSQLDB sql script
12 years ago
4fdb0816eb
Moved DB to use in memory HSQLDB. Made authentication-provider use a jdbc-user-service in that in-memory hsqldb.
12 years ago
fce47c239a
added slashes to patterns what needed them, removed vestigial intercept from user-context
12 years ago
122a2de074
First attempt at making API not redirect to /login, failed
12 years ago
d07f67bd76
let user select when grants time out
12 years ago
84401531ae
tie refresh token generation to "offline" scope tag
12 years ago
50040a8ef4
fixed checkbox labels
12 years ago
667c3abc8a
dynamic scope display/selection on approval page
12 years ago
1281d75aa9
stopped re-parsing scopes
12 years ago
9c3a40779b
updated to SECOAUTH's horrible new object-breaking authorization request paradigm.
...
Bonus: it works!
12 years ago
3e327b9df6
reverted to original controller behavior
12 years ago
cf4581a5eb
updated configuration to reflect secoauth changes
12 years ago
45ca4e565e
updated to SECOAUTH-1.0.1-BUILD-SNAPSHOT
12 years ago
cf1ddf0457
Determined that init binder was not needed to fix default for Boolean require_auth_time; instead use defaultValue=\"true\" in the RequestParam declaration. Also fixed bug in ClientDetails service so that it will not blow up if the client has no redirect uris registered
12 years ago
2084639828
Working on init binder for ClientDynamicRegistrationEndpoint
12 years ago
8b0c520534
Issue 213, writing init binder to convert null Boolean values to false before calling setters
12 years ago
a2a29e7b76
trying out new confirmation controller
12 years ago
d9b6918bc2
softened error from scope checker -- returns false now, allows things to pass through
12 years ago
9c08944a02
Changed arity on approved sites (now can have many per user/site combo)
12 years ago
58b97f7371
stupid javascript
12 years ago
fda86e23e9
moved everything to use the consumes/produces framework of Spring 3.1
12 years ago
51920ee381
switched to using "uneditable-input" classes instead of disabled input fields
12 years ago
e303319701
got rid of postrender
12 years ago
5b0c17c5de
added in checks to blacklist service upon client registration and update
12 years ago
7a6c96a759
fixed links
12 years ago
e9d1ed270d
service layer cleanups
12 years ago
4e18fb4525
blacklist management UI
12 years ago
d576df4b31
fixed render length limits on list widget
12 years ago
757e21a722
added blacklist API
12 years ago
1f4b97bc7e
fixed icon and variable reference
12 years ago
e86f19bd7c
added dynamic icons to whitelist table
12 years ago
2beff07d4b
added icons and tooltips to approved site table
12 years ago
20b73ea0c4
tooltip works!
12 years ago
8ecdb8a4ab
added icon to template, popover doesn't work yet
12 years ago
9064b49a54
added refresh buttons to all tables, fixed loading behavior to a proper cascading function call
12 years ago
a88ae8258a
Updated plus and minus buttons in list views, addresses #202
12 years ago
150c4032fd
WTF MYSQL!!
...
Added "NULL" option to all appropriate TIMESTAMP columns so that they behave how we expect them to.
12 years ago
f9aafb5edd
approved sites UI
12 years ago
f4605ef2fc
cleaned out startAfter function
12 years ago
845c11ad3a
methods for creating, editing, and deleting whitelist sites all function
12 years ago
321172c40c
fixed load/fetch order, fixed edit form display, robustified whitelist views against missing client IDs
12 years ago
f39c254353
updated variables for consistency, tracking down a data-loading bug
12 years ago
51cfe1746d
whitelist editing
12 years ago
bb589fc29a
fixed logic error in script inclusion
12 years ago
cccbad2ca1
added whitelist button to table view
12 years ago
7a9d7e6363
Fixed sidebar menu
12 years ago
7b1a2529dc
added whitelist model and template
12 years ago
ee0fe4a9d3
applied placeholder CSS hack to header CSS
12 years ago
86ebdff82b
Revert "Placeholder UI updates"
...
This reverts commit fd89312b0c
12 years ago
030e2ce2df
fixed link scanner
12 years ago
706858c41f
added comments, fixed paths, uncommented logo hide function
12 years ago
f2e1317365
added purl.js library for URL parsing
12 years ago
33f11cb98f
cleanly applied pushstate changes, new URL structure
12 years ago
1d8254bf2f
changed target of approve form
12 years ago
be506ae952
Moved fonts local, fixed loading indicator
12 years ago
84cedbb45e
Support the "Enter" key on list widget
12 years ago
8fc6b2b680
Removing the rest of Justin's load hack
12 years ago
fd89312b0c
Placeholder UI updates
12 years ago
48941f1713
Dynamic JS loading and UI updates
12 years ago
2311cdf1f2
Revert "Dynamic Client Loading Initial Commit"
...
This reverts commit a4e5335eda02cdb6b32a966d194035429ca52915.
12 years ago
d7455dba14
Dynamic Client Loading Initial Commit
12 years ago
29862f15bd
Removed a bunch of commented-out configuration
12 years ago
51073a7f8d
Refactor part 3
12 years ago
ef80676dc1
Cleaned up web package a bit - lots of unused imports and variables
12 years ago
dd2abd94d1
Refactoring part 2
12 years ago
c40efda6b5
Refactor part 1
12 years ago
0b6aebfefe
Revert "removed postrender function, use render function instead"
...
This reverts commit 2b1e78d195
12 years ago
ebf77bea68
Updated timeout functions
12 years ago
6fdd088125
Updated client secret panel display
12 years ago
be17133a99
Changed "submit" label to "save"
12 years ago
2b1e78d195
removed postrender function, use render function instead
12 years ago
ece1b56095
added missing brackets
12 years ago
fe3e890bb3
changed to table head for input control
12 years ago
d8221a2a35
added missing semicolon
12 years ago
ed75b38ecc
changed list view table styling
12 years ago
a4a40ffae5
unit test for x509 endpoint
12 years ago
d9771f2322
Timout Bugfixes
12 years ago
26c3cf5989
Timout UI refactor
12 years ago
19df5ae032
Timeout form updates. Logo URL updates
12 years ago
cb6767dfb4
Timout form updates
12 years ago
a9d1799eda
added getter/setter to UIE schema-to-view map
12 years ago
920b2a59ba
Fixed error logging
12 years ago
2d24435365
Created custom resolver, handler mapper
...
moved endpoint back to server
12 years ago
7eb0a6f3d2
Moved JWK to commons
12 years ago
f3c225d8f2
Updated SECOAUTH reference, made required alterations to our configuration
12 years ago
ea16f4e2b6
Fixed merge weirdness
12 years ago
b58ed8b616
Added logoURL stuff
12 years ago
61b828e182
Fixed bug - removed service layer @Transactional annotations, which negated need for flush at repository level; moved @Transactional annotations.
12 years ago
c8f9a3de76
Merge remote-tracking branch 'origin/UI-form-updates'
12 years ago
ee7a5fd2e1
added registration URL to discovery endpoint
12 years ago
332fe282be
List Widget UI values cannot be null
12 years ago
fe837c4fa5
comment edit
12 years ago
4fcbbe639f
visual error indicators for redirect uri and scope
12 years ago
15359a236a
Scope UI Auto-complete
12 years ago
11b35267b4
Refactored stats processor into a service, made home page into a smart page.
12 years ago
85e13bd11d
Initial Scope UI updates
12 years ago
bc0ee4cbab
force id consistency
12 years ago
8876217baf
Added cleanups to client service
12 years ago
d041ddb0e1
Added approvedSite API and support structure
12 years ago
2bf5cfc041
service bug fix
12 years ago
b462d6dd96
added empty http code view
12 years ago
8ae1b376fe
updated whitelist service and repository
12 years ago
6a180acf3c
added preliminary whitelist api
12 years ago
59e2f0e127
Backbone List View Widget Initial Commit
12 years ago
4af3dd89be
cleaned up client api
12 years ago
72c125ba64
refactored binder into two parts
12 years ago
be54696603
Generic GSON entity printer
12 years ago
0aa6da67de
Bootstrap JS Upgrade
12 years ago
306e07bc36
UI Dynamic List updates
12 years ago
5377a2bac4
Redirect URI UI updates
12 years ago
0b1bb4f8aa
call the right service api
12 years ago
407c14d0dc
added missing bean annotation
12 years ago
3e423e9e04
explicitly exposed registration url
12 years ago
a674589db0
added client editing capability
12 years ago
a45c8bf96d
upped default client secret strength
12 years ago
e39dcb63dd
added views, fixed registration for SECOAUTH required parameter
12 years ago
d8037c0513
Redirect URL UI initial commit
12 years ago
83873f8ae2
added defaults for SECOAUTH
12 years ago
9f84126cb8
more dynamic registration
12 years ago
aeb6644d38
exploded version of attribute binding/processing
12 years ago
e4470c9361
mapped the invalid scope exception, addresses #102
...
Still can't access userinfo if you're not using OAuth2
12 years ago
259e84c871
put null check into interceptor, addresses #183
12 years ago
8361f74932
removed innocuous change
12 years ago
42287edc9b
junk comentt showwhich brnach we'ron
12 years ago
a61d94e07e
Cancel buttons on client forms
12 years ago
149080f776
Breadcrumbs are now fully dynamic.
12 years ago
37d6d63772
inject userinfo into context for use in JSPs
...
addresses #99 (for real this time)
12 years ago
b5ce8d5e8b
added getByUsername to userinfo repositories and supporting classes, updated calling classes to use this
...
fixed namedquery
12 years ago
6cb0269629
Merge remote branch 'origin/master'
12 years ago
dc1f1965af
Refactoring breadcrumbs. The breadcrumb bar will disappear momentarily.
12 years ago
ba5572b28a
Tidied up a bit, added javadoc comments to new classes
12 years ago
c23b176567
Database backed authorization-code-service now works.
12 years ago
4b76cc514b
Added a database-backed authorization-code system. Untested; needs to be injected into configuration in the place of the in-memory one and tested
12 years ago
dc61068702
Split approved site and whitelisted site scope tables.
12 years ago
e5b62e8935
fixed patterns and expressions on http blocks
12 years ago
9eb328831f
changed to proper prefix
12 years ago
af01e26e10
Split up permitAll on enpoints
12 years ago
d2f7e8edf9
Moved SPEL to app-context, and added enpoint permitAlls
12 years ago
bdfdbbadbc
stats summary, addresses #62
12 years ago
6cb7e74046
updated default handling to user proper backbone model handling
12 years ago
74b4fab58c
Client secret processing
12 years ago
05fa7b148c
added checks for generated client secret
12 years ago
9e60da2675
added controls for client secret processing
12 years ago
a02f37cec3
added generators to client service API
12 years ago
8520fcbf72
removed deprecated granted authority reference
12 years ago
a65504c0cb
added new exception for userinfo, addresses #133
12 years ago
209fc2d249
refactored request object endpoint to avoid urlspace conflict with SECOAUTH
12 years ago
d1218efb2a
cleaned up imports
12 years ago
55e7a4d707
moved request object auth endpoint in project setup
12 years ago
ec286b9644
removed auth bean from application-context. Added extra parameter checks in request object auth endpoint
12 years ago
04d8faa90a
updated autowired annotation
12 years ago
20a7ebc576
autowired all member variables in request object auth endpoint
12 years ago
694074ee58
moved endpoint, added param processing
12 years ago
36b9c805d9
added reference to abstract endpoint class to get token granter
12 years ago
2bdbb283b7
removed dependency on abstract endpoint class. added methods needed to authRequestObjectEndpoint (afterPropertiesSet())
12 years ago
51ec529861
readded implementation of initializingBean
12 years ago
638ebf2010
cleaned up AuthRequestObjectEndpoint class
12 years ago
d93f5f18e5
added state value to jwt that gets passed as request object. certain methods from SECOAUTH use this
12 years ago
3486ea28f1
updated mimicked methods to not use jwt, but rather a jwt in an auth request
12 years ago
1a20dcbc6e
added methods that mimic behavior of private SECOATH methods
12 years ago
d5caa0b543
changed server endpoint to act like an endpoint. WIP to accept request objects, validate, and redirect
12 years ago
7d6211afd7
cleaned up some imports, added serverEndpointRequest class
12 years ago
28344a3c91
auth endpoint got into client code. removed
12 years ago
2888c08083
changed cookie claim to include the response
12 years ago
c0a61fe47a
moved jquery to page header instead of footer, added focus call on login form
12 years ago
484abc4915
fixed client delete
12 years ago
5e898a7b0b
Id toke timeout binding for UI
12 years ago
aaa38a761d
Mis-type for client secret
12 years ago
b99d2ed9dc
Client Id null fix
12 years ago
935b5ed43a
Client Id is now editable
12 years ago
0f9d4ef255
Id refactor UI
12 years ago
155974d8e3
moved services and api over to using new client Id field (instead of client_id)
12 years ago
eb5a24690f
added method to get client by its (new) Long id
12 years ago
480fb8e593
Id refactor UI
12 years ago
ae5e1ca859
Merge remote branch 'origin/master'
12 years ago
3f9e2cfa52
Horizontal UI refactor
12 years ago
74a40fc973
changed auth holder reference, moved dates to timestamps
12 years ago
bb7d6b2e94
split scopes table
12 years ago
ed99bd36cf
changed clientdetails entity to use @Enumerated, cleaned up .sql file foreign keys
12 years ago
66e5cf3f04
Client table button UI tweaks
12 years ago
8d57e0e9ef
Issue # 81 Client UI - Creating new client creates duplicate
12 years ago
a5a102bbe4
Github Issue #116
12 years ago
97d7bc9c13
added field to indicate whether the client has been dynamically registered
12 years ago
170036e0b8
Added expiration to id tokens
12 years ago
6bb9f67f5e
Removed individual .sql files. All table definitions are now concatenated in database_tables.sql.
12 years ago
f724d3a9fe
updated userinfo table definitions
12 years ago
617e9568d8
Fixed bugs; I can get tokens now. User approval handler seems to be working corrrectly.
12 years ago
49cb8bd0cb
fixing bugs; needed to make all ids BIGINT AUTO-INCREMENT PRIMARY KEY in sql files
12 years ago
0757642e67
removed "s" from allowed_scopes
12 years ago
9c32e92da5
Cleaned up sql tables some more; sticking to _ naming convention
12 years ago
d7deda1699
Propogated AuthenticationHolder effects; this is untested but compiles and I think it is mostly correct
12 years ago
90df91c351
Added AuthenticationHolder object, got references squared away for AccessToken side. Compiles.
12 years ago
cf348590b0
Removed unused ClientGeneratorFactory
12 years ago
d6d80c3e60
Gave OAuth2RefreshTokenEntity a Long Id
12 years ago
6b1dad7215
Gave OAuth2AccessTokenEntity a Long Id
12 years ago
780839dbf9
Made things compile after ClientDetailsEntity refactoring
12 years ago
a68a4f9796
Organized ClientDetailsEntity, updated JPA annotations. Updated sql files to match. Naming conventions: table and column names with multiple words should be seperated by underscores; table and column names should be singular.
12 years ago
15428a875e
Added additional fields to ClientDetailsEntity and did some reorganization, still some more to do. Added "id" field to the sql file, but the sql still needs all of the other additional fields.
12 years ago
09e528e113
added discovery info for x509 and client auth
12 years ago
dc7aac12f9
added custom login form, changed footer to only optionally load app
12 years ago
8d4e046408
All logging is now org.slf4j. We had a mix of org.slf4j and apache commons-logging. Added error logging to all view which throw errors.
12 years ago
a061e64abf
Merge branch 'user-approval-handler-updated-rebase'
12 years ago
32dc92119f
Cleanup completed, this works for the most part. TODO: need to make an upstream change in order to inject a new set of scopes into the AuthorizationRequest.
12 years ago
5fb67ab7bb
Did a lot of cleanup; untested but compiles
12 years ago
ae44bd5e0c
Works; about to do some cleanup
12 years ago
2f28cf33e7
Changed UserInfo refs in WhitelistedSite to String ids; updated the user approval handler to check if "remember this decision" is checked and only make a new AP if so, and to pull in the scopes selected on the approval page as the saved allowed scopes for that AP.
12 years ago
b87d54b06e
Changed UserInfo references to String "userId" references
12 years ago
845976b8ac
First stages of getting the graylist portion to work. Currently no mechanism for telling the system NOT to remember your decision; that will come later. All approvals will be automatically stored with this code.
12 years ago
51b8dbe065
Revert "updated jwtHeader typ to use an enum" -- set things back to using a string
...
This reverts commit 3b2268c622
13 years ago
9a7e40fee7
moved all bean definitions to annotations, removed orphaned CheckID view
13 years ago
1508369548
now with Walsh-flavored certificate generation
13 years ago
61a8d4a787
x509 take -- bouncycastley version
13 years ago
db415bfa2b
Working on user approval handler
13 years ago
a223565364
updating user approval handler
13 years ago
676808bdac
got things to deploy - could not reference UserInfo directly in ApprovedSite and WhitelistedSite; needed to reference DefaultUserInfo instead.
13 years ago
4e10fce7ef
Implementing user approval handler; made some modifications to ApprovedSite and WhitelistedSite models, repositories, and service layers.
13 years ago
7c33e19950
Changed authorization endpoint to /authorize rather than /auth; updated SWD entry. Also removed checkid entry from SWD.
13 years ago
863693cf59
Merge pull request #128 from mtderryberry/jwe-and-jwt-fixes
...
Jwe and jwt fixes
13 years ago
3982561a5b
Removing "throws exception" from views. Addresses issue #70
13 years ago
5cf6359f7d
Merge branch 'master' of github.com:mitreid-connect/OpenID-Connect-Java-Spring-Server
13 years ago
686412757f
shortened urls
13 years ago
3b2268c622
updated jwtHeader typ to use an enum
13 years ago
1b5f99efec
added .json mapping to SWD
13 years ago
02da9fceed
fixed imports
13 years ago
d07667576e
cleaned up old code
13 years ago
40f39a18e0
cleaning up introspection endpoint
13 years ago
e7449901a6
Removed IdTokenGeneratorService. Addresses issue #75
13 years ago
ee9288a72a
turned down cache in default
13 years ago
c80f7f1fcd
removed keystore dependency where it is not needed
13 years ago
319568d971
refactored JWA algorithm markers to use enum instead of string as stored class
13 years ago
165f3ea292
fixed some unit tests, broke others
13 years ago
1f68c835c0
updated openid connect image
13 years ago
7a3ae5a757
Merge remote branch 'origin/master'
13 years ago
30addb5439
Redirect URI now displayed on approval page.
13 years ago
9f16f309bd
updated userinfouserdetailsservice to use username instead of userid -- this should actually be a wrapper class though
13 years ago
b0a7ebd9b1
fixed JWK algorithm display
13 years ago
84aa451095
Added comment for spring-servlet.xml
13 years ago
5657bc8f28
updated configuration, confirmed works pending SECOAUTH-299
13 years ago
e5eb2e03d8
added implicit beans
13 years ago
01793ec57f
added preferred_username claim to userinfo endpoint
13 years ago
8abbce3a2d
fixed broken unit tests - they were pointing to the wrong spring context file;
13 years ago
50241e4da1
changed UserInfo.verified to UserInfo.emailVerified.
13 years ago
8fe132cb53
formatting
13 years ago
830e07c35c
moved whole configuration from servlet context into application context
13 years ago
dbd563f3f2
attempting to allow make use of SPEL
13 years ago
f0c949fd09
added scope-based filter for userinfo
13 years ago
c619e736f9
removed eclipse files from repository
13 years ago
5c1b07ae65
don't overwrite an existing JWT nonce
13 years ago
29731d52f6
Merge branch 'refreshtokens' of file:///home/jricher/Projects/workspace-sts/OpenIDConnect-MITRE/OpenID-Connect-Java-Spring-Server into refreshtokens
13 years ago
de1597b214
refresh token handling fixed, removed token factory references
13 years ago
0dc568e5d0
Fixed more information link on approval page
13 years ago
a022f4d713
Authorized grant types now supported client-side
13 years ago
bff34f647c
Allowing a null value for redirectURIs
13 years ago
8fbea2516a
Updated client side variable names to reflect name changes to access token and refresh token timeout
13 years ago
4e3c99abe4
Merge branch 'validityIntegers'
13 years ago
81d1af40bd
Updated our ClientDetailsEntity *TokenTimeout fields to be *ValiditySeconds, which are now typed as proper Integers in the SECOAUTH ClientDetails interface
13 years ago
b6e00b9884
Base white-list functionality and template
13 years ago
1127a7cfbc
refactored JWKs, updated signing servier to use them
13 years ago
adb8499bee
merged derryberry code, plus tweaks, still WIP
13 years ago
baa7ce5e7b
Merge branch 'master' of github.com:mitreid-connect/OpenID-Connect-Java-Spring-Server
13 years ago
2930719700
Added architecture diagram
13 years ago
b94fbd7439
updated -common and -client code by removing throws exception, changing to rest templates, and updating test cases to use annotations
13 years ago
94256d95a1
added crypto configuration file
13 years ago
a38dc0ce29
added crypto configuration file
13 years ago
fe3bbfb3d5
Further cleanups. Still missing:
...
- All tests extend TestCase, should use annotations instead
- Several elements throw Exception
- Key Fetchers should use RESTTemplates and be in a separate utility set
13 years ago
b86abdd761
merge from pull request, plus cleanup
13 years ago
731ad2e2e2
updated SECOAUTH reference, fixed some SQL files, temporarily closed token timeout issue
13 years ago
f9558f0955
stripped out check id endpoint interaction as it deprecated, refactored nonce checking based on spec change, pull user_id as id_token token claim
13 years ago
ace5dd1f1e
imported userinfouserdetails filter from MITRE codebase
13 years ago
65dc3daaf8
smart client
13 years ago
2a05ff995d
Added support for additional field in ClientDetailsEntity.java.
13 years ago
bbf9591c92
Merge branch 'master' into issue52
...
Conflicts:
openid-connect-server/src/main/java/org/mitre/oauth2/service/impl/DefaultOAuth2ProviderTokenService.java
openid-connect-server/src/main/webapp/WEB-INF/spring-servlet.xml
openid-connect-server/src/main/webapp/WEB-INF/views/oauth/approve.jsp
13 years ago
c3cffe1eac
cleaned up bad config file
13 years ago
195810fc63
Merge branch 'architecturedocs'
13 years ago
7a207dc162
Merge branch 'discoveryupdate'
13 years ago
250e0c730e
Merge branch 'jwtupdate'
13 years ago
7df2663e00
added final slashification of configuration URLs
13 years ago
fbdccdb78e
added Xrd support ( fixes #63 ), updated configuration locations ( fixes #47 )
13 years ago
e44697cef9
updated JWK display to latest, closes #58
13 years ago
3b4e95ac10
Approval page updates
13 years ago
d424f44b8c
Removing some whitespace
13 years ago
46cd08071d
cleaned up sql table references to redirect uris, see #48
13 years ago
8e33a17307
moved DB schema files up a few levels, fixed test context to point to new locations
13 years ago
5c72d8b95f
revocation endpoint cleanup, still needs views
13 years ago
27219c066d
refactored our service to reflect upstream
13 years ago
e95528a08d
added implementation to stub to read an access token by value
13 years ago
c89b1814d6
Fixed approve.jsp checkboxes (both had the same name).
13 years ago
8684bb969f
Updated approve.jsp with Jett's new code to display some checkboxes. This has been tested, and the additional parameters are persisted correctly and are available to the TokenGranter.
13 years ago
68483536a6
Approval page updates. Approval and denial buttons are now in one form. Generic checkboxes are in place.
13 years ago
424f8bb737
Refactored to use TokenEnhancer rather than a custom TokenGranter.
13 years ago
998fc7f98b
cleaned up beans layout
13 years ago
8917e75010
see issue #19
13 years ago
16aa0c59b5
Added token enhancer. Now to plug it in.
13 years ago
d4e107caf1
updating
13 years ago
2070d2e413
Updated to use AuthorizationRequestFactory rather than ClientCredentialsChecker.
13 years ago
ce847dd4f7
updated poco user view to contain name
13 years ago
c418ccabb1
Merge branch 'master' into userInfoEndpoint
13 years ago
1bff5ef19f
Added POCO view, Added UnknownUserInfoScheamException runtime exception
13 years ago
b838ddb786
Client ID display fix
13 years ago
a1d85e281e
Client ID now showing on display and edit page
13 years ago
48ff2d3d77
Merge remote branch 'origin/master'
13 years ago
f8af7bf884
Adding help text for time-out options
13 years ago
5c544dfe7c
Merge branch 'master' into userInfoEndpoint
13 years ago
7d4d65c359
Merge branch 'userinfo_integration'
13 years ago
a8e9f1d2cd
fixed rendering issues with user info view
13 years ago
Justin Richer