Commit Graph

2767 Commits (415cd2e41cfc97de98cfd6c5041345767282ed9d)

Author SHA1 Message Date
Justin Richer 8fb9adefc1
Merge pull request #1342 from bodewig/custom_claims_in_id_token
add hook for custom JWT claims to DefaultOIDCTokenService
2018-02-05 15:43:22 -05:00
Justin Richer 0ce55d079a
Merge pull request #1352 from blm126/upgrade-nimbus
Upgrade nimbus-jose-jwt to 5.4.
2018-02-05 15:26:50 -05:00
Brady Mulhollem f7da25fbe8 Upgrade nimbus-jose-jwt to 5.4. 2018-02-05 13:28:48 -05:00
Andrea Ceccanti 366660dbf7 pom: point back to repo.cloud.cnaf.infn.it 2018-01-23 10:26:16 +01:00
Justin Richer 1c7b9d5b44
Merge pull request #1346 from praseodym/fix-admin-interface-without-trailing-slash
Fix interface for issuer URI without trailing slash
2018-01-22 05:54:25 -05:00
Mark Janssen a1a45aa36a Fix interface for issuer URI without trailing slash 2018-01-21 12:01:25 +01:00
Stefan Bodewig 01eb1401a3 add hook for custom JWT claims to DefaultOIDCTokenService 2018-01-12 15:22:37 +01:00
Marco Caberletti 86e696a8c5 Add container directive to Jenkinsfile 2017-12-06 10:58:35 +01:00
Marco Caberletti 13053c2487 Change repo URL 2017-11-29 09:04:30 +01:00
Justin Richer e6130872a9
Merge pull request #1324 from patfrat/master
Add French messages
2017-11-22 13:23:56 -05:00
Patrick Fratczak ca3642b6c3 Add French messages 2017-11-22 14:27:15 +01:00
Bas Verhoeven 85246d2d3e
Parse 'sub' to identify resource owner
As per https://tools.ietf.org/html/rfc7662#section-2.2 the `sub` key should
identify the resource owner in oauth2 introspection responses. 

This change adds support for the `sub` key and will allow the introspection 
response of RFC-compliant servers to be parsed.

Will still try `user_id` first as to not break backward compatibility.
2017-11-13 16:46:52 +01:00
Justin Richer ce9bf3507f
Merge pull request #1312 from kules/master
Correct minor typo error for confirmation message displayed when logging out from IDP
2017-11-01 13:56:24 -04:00
still fetalvero 9bff58085d Fix typo error for log out to IDP confirmation message 2017-10-30 22:56:07 +08:00
Andrea Ceccanti 18517484a3 Bumped version to 1.3.2.cnaf.rc0
Now for real...
2017-09-26 16:37:16 +02:00
Andrea Ceccanti f6165aa617 Add Jenkinfile 2017-09-26 16:25:33 +02:00
Andrea Ceccanti 880f2c1b2c Bumped version to 1.3.2.cnaf.rc0 2017-09-26 16:25:06 +02:00
Andrea Ceccanti 53ef059d28 Distribution management -> repo.cloud.cnaf.infn.it 2017-09-26 16:19:09 +02:00
Andrea Ceccanti 5bb5254743 Organized imports 2017-09-26 15:45:18 +02:00
Andrea Ceccanti a2856b4645 Removed unused import 2017-09-26 15:40:55 +02:00
Andrea Ceccanti 7d10337205 Merged 1.3.1 (build & test green) 2017-09-21 15:49:50 +02:00
Andrea Ceccanti 2b1df25aad Merge remote-tracking branch 'mitre/master' into devel-1.3.1
* mitre/master: (153 commits)
  removed old document PDFs from repo
  check for missing refresh token value on refresh, closes #1242
  removed unused field from UI config bean
  fixed client readme file
  Updated copyrights
  Corrected typo
  fixed unit test for new default redirect behavior
  set redirect URI matching to strict by default
  escaped output values on approval page, closes #1111
  added changelog file
  [maven-release-plugin] prepare for next development iteration
  [maven-release-plugin] prepare release mitreid-connect-1.3.1
  downgrade mysql dependency to GA version
  Removed double 'sure'
  fixed discovery endpoint, closes #1230
  Completed end session endpoint
  end session endpoint
  skeleton of end session endpoint, maybe need a change to user info lookup
  Fix psql_database script, replace SERIAL with BIGSERIAL and fix ...
  [maven-release-plugin] prepare for next development iteration
  ...
2017-09-21 14:25:06 +02:00
Stefan Bodewig 514dcc3851 add hook for custom JWT claims to ConnectTokenEnhancer 2017-07-18 16:10:58 +02:00
sbke 8b4e461748 Adjustment to generate longer codes
RandomValueStringGenerator default constructor creates a code of length six only. The RFC 6819 (OAuth 2.0 Threat Model and Security Considerations) suggests (5.1.4.2.2.  Use High Entropy for Secrets) that secrets that aren't used by humans (e.g. client secrets or token handles) have a reasonable level of enthropy. They propose a token lengths of at least 128 bits. Since the RandomValueStringGenerator only uses case sensitive alpha numeric symbols, 22 symbols are needed to achieve an enthropy >=128 bits.
2017-06-28 14:20:11 +02:00
Justin Richer ef01d3032e Merge pull request #1228 from leonard84/fix-psql-scripts
Fix psql_database script, replace SERIAL with BIGSERIAL and fix ...
2017-06-15 09:45:13 -04:00
Justin Richer bba18fd118 Merge pull request #1240 from Connz/patch-2
Corrected typo
2017-06-15 09:44:46 -04:00
Justin Richer 28ad78e9f3 Merge pull request #1233 from Connz/patch-1
Removed double 'sure'
2017-06-15 09:44:33 -04:00
Justin Richer 059e140164 removed old document PDFs from repo 2017-05-27 06:49:34 -04:00
Justin Richer 0b1f9000db check for missing refresh token value on refresh, closes #1242 2017-05-26 20:30:09 -04:00
Justin Richer 705ac9879c removed unused field from UI config bean 2017-05-26 20:20:11 -04:00
Justin Richer 4dc31cdfbd fixed client readme file 2017-05-26 20:17:29 -04:00
Justin Richer 661c242a9f Updated copyrights 2017-05-26 20:17:17 -04:00
Connz 0859a5d122 Corrected typo 2017-05-16 12:09:54 +02:00
Justin Richer c11e47a75b fixed unit test for new default redirect behavior 2017-05-11 11:27:41 -04:00
Justin Richer 2f31ceddf8 set redirect URI matching to strict by default 2017-05-10 17:39:59 -04:00
Justin Richer 7e6864ff38 escaped output values on approval page, closes #1111 2017-05-10 17:39:48 -04:00
Justin Richer a316306f33 added changelog file 2017-05-09 14:54:47 -04:00
Justin Richer 7b06d91700 [maven-release-plugin] prepare for next development iteration 2017-05-09 14:29:53 -04:00
Justin Richer 8301f35e17 [maven-release-plugin] prepare release mitreid-connect-1.3.1 2017-05-09 14:29:49 -04:00
Justin Richer f17a44e9b4 downgrade mysql dependency to GA version 2017-05-09 14:25:03 -04:00
Connz 90c3c396ee Removed double 'sure' 2017-05-04 15:35:34 +02:00
Justin Richer 713e872b8a fixed discovery endpoint, closes #1230 2017-04-29 15:01:15 -04:00
Justin Richer 9baacc0eaf Completed end session endpoint
Addresses #1129, addresses #972, addresses #891, addresses #1223
2017-04-29 14:58:37 -04:00
Justin Richer 2aa12fc0e3 end session endpoint 2017-04-28 19:05:30 -04:00
Justin Richer 0c46e7cb7a skeleton of end session endpoint, maybe need a change to user info lookup 2017-04-27 14:29:05 -04:00
Leonard Brünings e6679b6e4b Fix psql_database script, replace SERIAL with BIGSERIAL and fix ...
BIGINT AUTO_INCREMENT to BIGSERIAL

Change-Id: I19b4433d3bae29b0879be7d9dd9405eabe490482
2017-04-19 14:24:11 +02:00
Justin Richer 0efa77b580 [maven-release-plugin] prepare for next development iteration 2017-04-15 13:20:13 -04:00
Justin Richer b9b7bf53c3 [maven-release-plugin] prepare release mitreid-connect-1.3.0 2017-04-15 13:20:05 -04:00
Justin Richer 0aedfc8e22 minor cleanup 2017-04-14 17:21:50 -04:00
Justin Richer 0d564d9714 made token service transactional, closes #1222 2017-04-14 15:27:16 -04:00