e2d94f422a
new year 2018
2018-02-12 10:39:04 -05:00
37fba622b9
Throwing exception on all other JWT types than SignedJWT
2018-02-07 11:00:28 +01:00
c38b9d7a42
added PlainJWT and EncryptedJWT support + tests
2018-02-07 11:00:15 +01:00
fcb119ff6a
Merge pull request #1270 from bodewig/custom_claim_friendly_token_enhancer
...
add hook for custom JWT claims to ConnectTokenEnhancer
2018-02-05 16:01:09 -05:00
01eb1401a3
add hook for custom JWT claims to DefaultOIDCTokenService
2018-01-12 15:22:37 +01:00
514dcc3851
add hook for custom JWT claims to ConnectTokenEnhancer
2017-07-18 16:10:58 +02:00
661c242a9f
Updated copyrights
2017-05-26 20:17:17 -04:00
9baacc0eaf
Completed end session endpoint
...
Addresses #1129 , addresses #972 , addresses #891 , addresses #1223
2017-04-29 14:58:37 -04:00
2aa12fc0e3
end session endpoint
2017-04-28 19:05:30 -04:00
0c46e7cb7a
skeleton of end session endpoint, maybe need a change to user info lookup
2017-04-27 14:29:05 -04:00
11f3cccab9
fix JWKS parsing in software statements, closes #1220
2017-04-14 14:42:49 -04:00
702a775881
handle creation time stamp in clients, closes #1210
2017-04-13 11:50:57 -04:00
32ce21b5cd
automated code formatting and cleanup
2017-03-21 14:07:20 -04:00
a926a8f0ab
cleaned up server-side stats service, UI now uses per-client calls
2017-03-16 17:31:26 -04:00
256b79ae51
lazy load client stats in UI
2017-03-16 17:20:04 -04:00
02928b048f
added software ID and version to data API
2017-03-15 17:38:46 -04:00
9cb5377ce8
added device code validity seconds to client model
2017-03-14 17:40:27 -04:00
72fd3c2b99
added ID Token Validity Seconds to data import/export API
2017-03-11 15:36:45 -05:00
98a4d56cdd
made extraction function less side-effect-ful
2017-03-03 17:20:15 -05:00
00ecd3dd22
Fix NPE if no claims are requested for the userinfo object
...
This happens if clients only requests id_token claims, or just send an empty claims parameter.
Change-Id: I8bd176ad271bda8a1e2f26b6221bd8e2d0a3ebfb
2017-03-03 16:09:51 -05:00
141f4da7f1
added PKCE editing capabilities to UI
2017-02-20 15:40:16 -05:00
c79b6da9d9
Javascript files for UI functionality loaded from configuration bean
2017-02-17 17:34:03 -05:00
b176d4d77e
cleaned up old endpoints
2017-02-16 18:24:21 -05:00
8178af87f0
further modularized data import/export service
2017-02-16 18:24:05 -05:00
52d2298f99
begin modularization of data import/export API
2017-02-15 11:51:32 -05:00
db50a88fe5
Happy New Year 2017
2017-01-17 17:09:14 -05:00
b17a7f43ae
removed structured scopes
2017-01-17 17:06:04 -05:00
91da3935f5
Made ID tokens ephemeral, made access token’s “additional information” extensible
2016-12-21 13:01:15 -05:00
55b1b00b73
Updated relationship between approved sites and access tokens, closes #874
2016-12-09 12:55:42 -05:00
d875d52be7
updated data import/export services for 1.3
2016-12-08 17:01:55 -05:00
c3d0c18af5
make HttpClient configurable, closes #1071
2016-12-02 16:23:55 -05:00
dea6044e77
Set the encoding of the UserInfo response body to UTF-8
...
See http://openid.net/specs/openid-connect-core-1_0.html#UserInfoResponse
2016-12-02 14:44:55 -05:00
ba0d0aab0b
use parameter constants for extensions maps in token service
2016-07-24 17:46:04 -04:00
ac0cafe7b3
parse and process PKCE requests
2016-07-24 17:45:43 -04:00
57208ac35d
added software statements to client API
2016-07-24 16:12:56 -04:00
d89257380f
make client assertion auth work again
2016-07-24 15:28:51 -04:00
f9e4d75a4a
use JWT bearer assertion token for assertion processing
2016-07-24 14:55:45 -04:00
a5a12b2f1f
added assertion validation engine
2016-07-22 13:47:20 -04:00
fa63993896
added software statement to client model, added processor to dynamic registration parser
2016-07-21 16:55:46 -04:00
a951a22bf8
explicitly use language and country codes for locale resolution
2016-07-14 18:29:37 -04:00
b8cc0a82b3
fix issue #1061 : auto-detect locale country code
2016-07-14 18:29:37 -04:00
7177854416
inverted boolean for #1033
2016-07-08 13:00:26 -04:00
39bae3a160
make the client auth URL matcher use an existing matcher instead of custom code
2016-07-08 11:42:35 -04:00
01892b6f47
use a request matcher on authorization request filter, closes #1033
2016-07-08 11:00:01 -04:00
ecb4a9ed53
Check that the underlying cause of the PersistenceException is caused by a duplicate entry.
2016-07-07 16:45:36 -04:00
6fb26856a7
Make apiAddClient in the client api return a HttpStatus.Conflict if you try to create a client with a used client id.
...
This fixes a bug where if you try to create a client with a client id that is already in use, you get an empty error message. Instead, now you get a message that tells you that the client couldn't be created because the client id is already in use.
2016-07-07 16:45:36 -04:00
8e71107f9b
Fix NPE when checking claim extension, Simplify always true expressions
2016-07-07 16:35:50 -04:00
8f81278332
We really should specify an encoding here and not depend on the
...
servers default encoding, shouldn't we? It becomes ISO-8859-1
otherwise in Tomcat as per the Servlet specification.
2016-07-07 16:33:24 -04:00
89316cbab1
fixed default token lifetimes for heart mode
2016-03-18 22:02:28 -04:00
9691f02772
added audience parameter to parser, fixed token generator to match HEART spec
2016-03-11 17:12:36 -05:00
Justin Richer