01eb1401a3
add hook for custom JWT claims to DefaultOIDCTokenService
2018-01-12 15:22:37 +01:00
e6130872a9
Merge pull request #1324 from patfrat/master
...
Add French messages
2017-11-22 13:23:56 -05:00
ca3642b6c3
Add French messages
2017-11-22 14:27:15 +01:00
85246d2d3e
Parse 'sub' to identify resource owner
...
As per https://tools.ietf.org/html/rfc7662#section-2.2 the `sub` key should
identify the resource owner in oauth2 introspection responses.
This change adds support for the `sub` key and will allow the introspection
response of RFC-compliant servers to be parsed.
Will still try `user_id` first as to not break backward compatibility.
2017-11-13 16:46:52 +01:00
ce9bf3507f
Merge pull request #1312 from kules/master
...
Correct minor typo error for confirmation message displayed when logging out from IDP
2017-11-01 13:56:24 -04:00
9bff58085d
Fix typo error for log out to IDP confirmation message
2017-10-30 22:56:07 +08:00
514dcc3851
add hook for custom JWT claims to ConnectTokenEnhancer
2017-07-18 16:10:58 +02:00
8b4e461748
Adjustment to generate longer codes
...
RandomValueStringGenerator default constructor creates a code of length six only. The RFC 6819 (OAuth 2.0 Threat Model and Security Considerations) suggests (5.1.4.2.2. Use High Entropy for Secrets) that secrets that aren't used by humans (e.g. client secrets or token handles) have a reasonable level of enthropy. They propose a token lengths of at least 128 bits. Since the RandomValueStringGenerator only uses case sensitive alpha numeric symbols, 22 symbols are needed to achieve an enthropy >=128 bits.
2017-06-28 14:20:11 +02:00
ef01d3032e
Merge pull request #1228 from leonard84/fix-psql-scripts
...
Fix psql_database script, replace SERIAL with BIGSERIAL and fix ...
2017-06-15 09:45:13 -04:00
bba18fd118
Merge pull request #1240 from Connz/patch-2
...
Corrected typo
2017-06-15 09:44:46 -04:00
28ad78e9f3
Merge pull request #1233 from Connz/patch-1
...
Removed double 'sure'
2017-06-15 09:44:33 -04:00
059e140164
removed old document PDFs from repo
2017-05-27 06:49:34 -04:00
0b1f9000db
check for missing refresh token value on refresh, closes #1242
2017-05-26 20:30:09 -04:00
705ac9879c
removed unused field from UI config bean
2017-05-26 20:20:11 -04:00
4dc31cdfbd
fixed client readme file
2017-05-26 20:17:29 -04:00
661c242a9f
Updated copyrights
2017-05-26 20:17:17 -04:00
0859a5d122
Corrected typo
2017-05-16 12:09:54 +02:00
c11e47a75b
fixed unit test for new default redirect behavior
2017-05-11 11:27:41 -04:00
2f31ceddf8
set redirect URI matching to strict by default
2017-05-10 17:39:59 -04:00
7e6864ff38
escaped output values on approval page, closes #1111
2017-05-10 17:39:48 -04:00
a316306f33
added changelog file
2017-05-09 14:54:47 -04:00
7b06d91700
[maven-release-plugin] prepare for next development iteration
2017-05-09 14:29:53 -04:00
8301f35e17
[maven-release-plugin] prepare release mitreid-connect-1.3.1
2017-05-09 14:29:49 -04:00
f17a44e9b4
downgrade mysql dependency to GA version
2017-05-09 14:25:03 -04:00
90c3c396ee
Removed double 'sure'
2017-05-04 15:35:34 +02:00
713e872b8a
fixed discovery endpoint, closes #1230
2017-04-29 15:01:15 -04:00
9baacc0eaf
Completed end session endpoint
...
Addresses #1129 , addresses #972 , addresses #891 , addresses #1223
2017-04-29 14:58:37 -04:00
2aa12fc0e3
end session endpoint
2017-04-28 19:05:30 -04:00
0c46e7cb7a
skeleton of end session endpoint, maybe need a change to user info lookup
2017-04-27 14:29:05 -04:00
e6679b6e4b
Fix psql_database script, replace SERIAL with BIGSERIAL and fix ...
...
BIGINT AUTO_INCREMENT to BIGSERIAL
Change-Id: I19b4433d3bae29b0879be7d9dd9405eabe490482
2017-04-19 14:24:11 +02:00
0efa77b580
[maven-release-plugin] prepare for next development iteration
2017-04-15 13:20:13 -04:00
b9b7bf53c3
[maven-release-plugin] prepare release mitreid-connect-1.3.0
2017-04-15 13:20:05 -04:00
0aedfc8e22
minor cleanup
2017-04-14 17:21:50 -04:00
0d564d9714
made token service transactional, closes #1222
2017-04-14 15:27:16 -04:00
11f3cccab9
fix JWKS parsing in software statements, closes #1220
2017-04-14 14:42:49 -04:00
702a775881
handle creation time stamp in clients, closes #1210
2017-04-13 11:50:57 -04:00
45ea899de8
made user codes case insensitive
2017-04-12 16:00:23 -04:00
d317cf5024
added exception handling to device code creation step
2017-04-12 15:59:17 -04:00
cc0622edd0
internalized random string generation for device codes
2017-04-12 14:59:18 -04:00
52829d4adb
mapped user info and server config interceptors to only interactive portions of the site, closes #1206
2017-04-07 17:02:50 -04:00
903168a949
Decrease log level of trailing slash warning
...
Having an issuer without trailing slash configured is just fine, so
there is no reason to log a warning for this every time the discovery
endpoint is called.
2017-04-07 14:59:58 -04:00
6216659cd6
manage reporting plugin versions, added jacoco coverage to reporting
2017-04-07 14:58:11 -04:00
9d1a50d17e
Add codecov badge
...
Change-Id: I04f56036af6bd2ac663843c2c10e8c0cebfb05d3
2017-04-07 13:38:25 -04:00
2aecedfb3d
Replace cobertura with jacoco to generate code-coverage for codecov.io
...
Change-Id: I031144c375d73aaa39d0a6111d37223ad6e4d655
2017-04-07 13:38:25 -04:00
f43ff53683
Extracted database indexes to separate files
2017-04-06 14:12:27 -04:00
bf49cd193d
removed incompatible constraints on mysql files
2017-04-06 14:07:39 -04:00
835a326627
allow polling of device codes, fixed UI for device code input
2017-03-27 14:39:40 -05:00
1d7fba5d6e
added cascade to address object, closes #1209
2017-03-24 12:44:49 -04:00
2ea5f8fd28
sync’d databases with HSQL schema, closes #1212
2017-03-24 12:41:14 -04:00
050662dd5c
updated dependencies
2017-03-24 12:12:06 -04:00
Stefan Bodewig