github
/
OpenID-Connect-Java-Spring-Server
mirror of https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
1,134 Commits
17 Branches
69 Tags
78 MiB
Commit Graph

257 Commits (25d75a1b304e25479a2ac1035479dbbee2f14401)

Author SHA1 Message Date
Justin Richer 6c1e6b2d74 refactored signing and validation, added jwk-based cache, removed keyfetcher, refactored client side class structure 2013-03-01 17:44:44 -05:00
Justin Richer 385853fa1f refactored signing and validation, added jwk-based cache, removed keyfetcher, refactored client side class structure 2013-03-01 17:44:44 -05:00
Justin Richer 0712d8c340 updated spring version 2013-03-01 17:42:48 -05:00
Amanda Anganes 60b679e942 First steps towards adding display variables to config bean 2013-02-22 17:10:14 -05:00
Justin Richer a184b79b06 store tokens with .serialize() not .toString() 2013-02-22 12:08:01 -05:00
Justin Richer 970e3f2f79 not entities after all 2013-02-22 12:08:01 -05:00
Justin Richer 3d9ec51eb3 converted client filters to nimbus-jose 2013-02-22 12:08:01 -05:00
Justin Richer 8d8010d90f missed a little bit there 2013-02-22 12:08:01 -05:00
Justin Richer 87fc92f97d extra constructors for algorithm wrappers 2013-02-22 12:08:01 -05:00
Justin Richer e5732da857 added system default signing algorithm, converted token provider and enhancer to use nimbus-jose 2013-02-22 12:08:01 -05:00
Justin Richer 10ab55a7e2 moved jwk/x509 publishing over to nimbus-jose (mostly) 2013-02-22 12:08:01 -05:00
Justin Richer fca30cd13f added provisions to bootstrap signing and validation service from config files 2013-02-22 12:08:01 -05:00
Justin Richer 520f55f960 reinstated signing and validation service 2013-02-22 12:08:01 -05:00
Justin Richer 46a3e70377 removed idtoken class, removed all jwe/jwt tests 2013-02-22 12:08:01 -05:00
Justin Richer d00b351f32 moved token classes to use Nimbus-JOSE 2013-02-22 12:08:01 -05:00
Justin Richer 1f50945831 added wrapper classes for JWE/JWS algorithms, switched client entity model to use and store them. 2013-02-22 12:08:01 -05:00
Justin Richer 6dc9020a31 deleted local JOSE implementation classes 2013-02-22 12:08:01 -05:00
Justin Richer d0fdf8140e sorting on approval page 2013-02-05 15:47:32 -05:00
Justin Richer eb4773ce46 beginning dynamic scopes on auth page 2013-02-05 11:28:39 -05:00
Justin Richer c2b9fd4db1 system scope ordering consistency 2013-02-05 11:11:41 -05:00
Justin Richer cab36a2b80 added appropriate filterered and transformative actions to scope service 2013-02-03 22:04:55 -05:00
Justin Richer ab35186696 added scope service, repository, and API 2013-02-03 22:02:24 -05:00
Justin Richer 19e7b62a42 removed persistence.xml and moved to pure spring-based config, addresses #194 2013-02-03 22:02:23 -05:00
Justin Richer a3619240e6 added site scope 2013-02-03 22:02:23 -05:00
Justin Richer f0ee36dad2 auth_type -> auth_method (addresses #258) 2013-01-18 18:26:55 -05:00
Justin Richer e4284353e8 added azp, addresses #247 2013-01-18 18:09:32 -05:00
Justin Richer da43ba4d55 audience field is now plural 2013-01-18 17:59:46 -05:00
Justin Richer 27a26e0a35 (user_id/prn) -> sub 2013-01-18 16:40:05 -05:00
Justin Richer 0ab4ad4bbe added "birthdate", addresses #253 2013-01-18 15:38:41 -05:00
Justin Richer a6806255b8 use sign-magnatude not twos-complement in key parsing 2013-01-18 15:10:48 -05:00
Justin Richer e8095bab26 principal and audience are different (I thought I fixed this??) 2013-01-18 15:10:48 -05:00
Justin Richer c946a84b09 adapted keyfetcher to be more general 2013-01-18 15:06:00 -05:00
Amanda Anganes a4637ec395 Fleshed out nonce service classes, added code to token service impl to check for and store nonces. Added JodaTime library for working with dates. 2013-01-04 15:30:24 -05:00
Amanda Anganes c7ae315e98 Added initial files for nonce service. Repository and service impls are stubs 2013-01-04 15:30:24 -05:00
Justin Richer 18ddd8333f added flag to allow introspection, relaxed same-client restrictions on introspection and chained tokens 2012-12-18 11:07:24 -05:00
Justin Richer 51b67ebc03 added queries to get access token from id token 2012-12-14 17:35:20 -05:00
Justin Richer b49c6571e8 fixed empty constructor of id token, fixed bug in copy constructor of claimset 2012-12-14 17:35:20 -05:00
Justin Richer 6344a72519 missed a few applicationName references, fixed API JSON rendering 2012-12-11 15:16:18 -05:00
Justin Richer 33ceedb283 added scope and grant_type, switched to timeunit 2012-12-11 12:11:09 -05:00
Justin Richer e2bc15c2b2 beginning of client registration refactor to track IETF dynreg spec 2012-12-10 17:36:33 -05:00
Justin Richer 0659432561 removed builder 2012-12-10 17:16:57 -05:00
Justin Richer 7586c6d661 added "NONE" type auth 2012-12-10 17:16:35 -05:00
Justin Richer 4bd289c18c shadowed null id token from serializer 2012-12-10 11:30:16 -05:00
Justin Richer f072aba3f5 moved client details service, fixed authorities mapper 2012-12-10 09:49:07 -05:00
Justin Richer 7342da6a51 completed making id tokens into access tokens 2012-12-06 16:24:04 -05:00
Justin Richer b8f701d9d8 switched id tokens to entities, they're now access tokens also 
still needs some work to get the auth object right, for now we're just copying from the access token
 2012-12-06 10:19:21 -05:00
Justin Richer 4698552c2d made email_verified nullable, addresses #237 2012-12-05 16:54:15 -05:00
Justin Richer 413c477879 utility method for approved sites to check expiration 2012-11-26 14:25:38 -05:00
Justin Richer 45ca4e565e updated to SECOAUTH-1.0.1-BUILD-SNAPSHOT 2012-11-26 11:53:19 -05:00
Amanda Anganes f50726ab31 Issue 209 - typo 2012-11-21 14:51:30 -05:00
Justin Richer 9c08944a02 Changed arity on approved sites (now can have many per user/site combo) 2012-11-20 14:07:55 -05:00
Justin Richer e9d1ed270d service layer cleanups 2012-11-19 13:46:09 -05:00
Justin Richer 757e21a722 added blacklist API 2012-11-16 11:57:46 -05:00
Amanda Anganes 2a0602863e Conveted Booleans to booleans 2012-09-20 11:32:59 -04:00
Amanda Anganes 51073a7f8d Refactor part 3 2012-09-18 15:01:05 -04:00
Amanda Anganes dd2abd94d1 Refactoring part 2 2012-09-18 14:36:27 -04:00
Amanda Anganes c40efda6b5 Refactor part 1 2012-09-18 14:24:34 -04:00
Justin Richer 920b2a59ba Fixed error logging 2012-09-10 17:17:03 -04:00
Justin Richer 2d24435365 Created custom resolver, handler mapper 
moved endpoint back to server
 2012-09-10 17:17:03 -04:00
Justin Richer be1046f9b6 bean-based configuration 2012-09-10 17:17:03 -04:00
Justin Richer 7eb0a6f3d2 Moved JWK to commons 2012-09-10 17:17:03 -04:00
Justin Richer 42389286e4 removed non-RSA algorithms from JWE encrypter/decrypter functions 2012-09-06 17:28:17 -04:00
Justin Richer 558a6286e2 switched to Guava for parsing ints into bytes, addresses #154 2012-09-06 17:26:20 -04:00
Justin Richer 2b62042696 unshadowed Jwe header, unshadowed IdTokenClaims, added smart copy constructor to ClaimSet 2012-09-06 17:20:22 -04:00
Justin Richer 11b35267b4 Refactored stats processor into a service, made home page into a smart page. 2012-08-28 17:42:43 -04:00
Justin Richer d041ddb0e1 Added approvedSite API and support structure 2012-08-28 15:28:55 -04:00
Justin Richer 8ae1b376fe updated whitelist service and repository 2012-08-28 15:28:55 -04:00
Justin Richer 140de779fd converted userid type to enum 2012-08-27 16:00:27 -04:00
Justin Richer 1c34f83297 Fixed JWS algorithm parsing 2012-08-27 15:58:23 -04:00
Justin Richer 29ac1a3a70 reverse lookup for clientdetails utiltiy classes 2012-08-27 14:45:14 -04:00
Justin Richer 21ff134383 JWS coment/format cleanup 2012-08-27 14:45:02 -04:00
Justin Richer b5ce8d5e8b added getByUsername to userinfo repositories and supporting classes, updated calling classes to use this 
fixed namedquery
 2012-08-23 18:23:47 -04:00
Justin Richer ba24ca1f60 removed unused utility method 2012-08-23 18:22:29 -04:00
Amanda Anganes ba5572b28a Tidied up a bit, added javadoc comments to new classes 2012-08-23 11:05:10 -04:00
Amanda Anganes c23b176567 Database backed authorization-code-service now works. 2012-08-23 10:46:08 -04:00
Amanda Anganes 4b76cc514b Added a database-backed authorization-code system. Untested; needs to be injected into configuration in the place of the in-memory one and tested 2012-08-22 16:54:00 -04:00
Amanda Anganes dc61068702 Split approved site and whitelisted site scope tables. 2012-08-22 15:21:42 -04:00
Justin Richer a02f37cec3 added generators to client service API 2012-08-20 12:22:18 -04:00
Justin Richer 26d5a846e0 Updated validator structure and id token checking. 2012-08-17 16:18:08 -04:00
Justin Richer 012bb4afd7 Changed casing on "URI" to "Url" to match other parameters. 2012-08-17 15:32:04 -04:00
Justin Richer d14f55004c added parser to userinfo object, userinfo url in filter, fixed bug in user_id check 2012-08-17 14:40:13 -04:00
Justin Richer fbd6e67af8 Refactored auth provider to call the userinfo endpoint and provide info inside the auth token. 2012-08-17 14:40:13 -04:00
Mike Derryberry 1efe7a1fc3 updated check of algorithm in signing method" 2012-08-14 10:55:07 -04:00
Justin Richer 155974d8e3 moved services and api over to using new client Id field (instead of client_id) 2012-08-10 16:53:31 -04:00
Justin Richer eb5a24690f added method to get client by its (new) Long id 2012-08-10 16:29:16 -04:00
Justin Richer 47ff885032 removed unnecessary cached token values 2012-08-10 14:26:47 -04:00
Justin Richer 74a40fc973 changed auth holder reference, moved dates to timestamps 2012-08-10 14:26:47 -04:00
Justin Richer bb7d6b2e94 split scopes table 2012-08-10 14:26:47 -04:00
Justin Richer ed99bd36cf changed clientdetails entity to use @Enumerated, cleaned up .sql file foreign keys 2012-08-10 14:26:47 -04:00
Justin Richer 2d8a5763a3 javafied auth holder class 2012-08-10 14:26:47 -04:00
Amanda Anganes 97d7bc9c13 added field to indicate whether the client has been dynamically registered 2012-08-09 15:55:07 -04:00
Amanda Anganes f724d3a9fe updated userinfo table definitions 2012-08-09 12:44:22 -04:00
Amanda Anganes 617e9568d8 Fixed bugs; I can get tokens now. User approval handler seems to be working corrrectly. 2012-08-09 12:44:22 -04:00
Amanda Anganes 49cb8bd0cb fixing bugs; needed to make all ids BIGINT AUTO-INCREMENT PRIMARY KEY in sql files 2012-08-09 12:44:21 -04:00
Amanda Anganes 0757642e67 removed "s" from allowed_scopes 2012-08-09 12:44:21 -04:00
Amanda Anganes 9c32e92da5 Cleaned up sql tables some more; sticking to _ naming convention 2012-08-09 12:44:21 -04:00
Amanda Anganes d7deda1699 Propogated AuthenticationHolder effects; this is untested but compiles and I think it is mostly correct 2012-08-09 12:44:21 -04:00
Amanda Anganes 90df91c351 Added AuthenticationHolder object, got references squared away for AccessToken side. Compiles. 2012-08-09 12:44:21 -04:00
Amanda Anganes cf348590b0 Removed unused ClientGeneratorFactory 2012-08-09 12:44:21 -04:00
Amanda Anganes d6d80c3e60 Gave OAuth2RefreshTokenEntity a Long Id 2012-08-09 12:44:21 -04:00