388 Commits (4bb28052a16f0f0fb8c0537a8f2df9f9e78313fb)

Author	SHA1	Message	Date
Justin Richer	5624c12232	back ported prompt behavior to 1.1, closes #810, addresses #667	2015-05-27 12:12:01 -04:00
Charif Belhaffef	7d649e5c9c	add @Transient to function getAuthorizedGrantTypes() so it does not persist	2015-01-14 07:20:00 -05:00
Justin Richer	3513289b00	added key id to id token, closes #725	2014-11-13 16:35:38 -10:00
Justin Richer	0396157543	added ROLE_CLIENT to assertion client authentication, cleaned up roles on client secret authentication, closes #728, closes #401	2014-11-13 16:35:38 -10:00
Alexander Imfeld	d30ec3dc03	Introduce introspection result assembler to allow for customized introspection results	2014-11-13 16:35:17 -10:00
Justin Richer	d371c99503	make user info classes serializable, closes #714	2014-10-23 22:44:00 -04:00
Justin Richer	d26eb88faa	generate random fake password for private key clients and shared secret crypto clients to avoid accidentally using client secret authentication and bypassing authentication, closes #715	2014-10-23 21:44:59 -04:00
Justin Richer	09cbecc540	import cleanup	2014-10-07 17:49:05 -04:00
Justin Richer	3fa4c5bbc6	added more generic rotation capability	2014-10-07 17:48:53 -04:00
arielak	a44e5e22fe	Added support for whitelisted and blacklisted site import from a 1.0 config	2014-10-07 16:20:00 -04:00
arielak	7b91d764f0	Added service interface for data import/export service and modified AuthenticationHolderEntity and Repository to allow getting all objects	2014-10-07 16:20:00 -04:00
Justin Richer	f097e589a4	swapped exception class for existing BeanCreationException, added example flag in config file (commented out) ... closes #528 closes #689	2014-10-07 16:20:00 -04:00
John Brooks	be485da8ff	Corrected bean setup for checkForHttps case tests.	2014-10-07 16:20:00 -04:00
John Brooks	e74014906d	Separated checkForHttps cases into separate test methods.	2014-10-07 16:20:00 -04:00
John Brooks	bed90b165e	Initialized forceHttps to false.	2014-10-07 16:20:00 -04:00
John Brooks	61c559209a	Changed parent class from Exception to RuntimeException; added copyright ... language.	2014-10-07 16:19:59 -04:00
John Brooks	56e21d3c6c	Create flag to force HTTPS of value of issuer on server startup, addresses #528	2014-10-07 16:19:59 -04:00
Justin Richer	b617fe0c4b	externalized view name strings and tied them to view beans	2014-10-07 16:19:59 -04:00
Justin Richer	f4b508fa62	Removed exceptions from @PostConstruct methods, closes #663	2014-10-07 16:19:59 -04:00
Justin Richer	9fcc5077ca	added API for getting tokens by clientid	2014-10-07 16:19:59 -04:00
Justin Richer	176a9a1034	made user info less transient	2014-10-07 16:19:59 -04:00
Justin Richer	b0cce924a2	JsonFileRegisteredClientService now writes out entire client registration to disk, closes #651	2014-08-01 00:01:56 -04:00
Justin Richer	78f3e68e8b	update unit test for Windows environment, closes #647	2014-07-31 23:22:06 -04:00
Justin Richer	62a43165f0	added json member type checking for json utils, won't die if a string is found where an array was expected ... closes #637	2014-07-20 09:42:57 -07:00
Justin Richer	325a200f16	added configurable support for different token presentation methods in user info fetcher, closes #632	2014-07-20 09:27:02 -07:00
Justin Richer	1db4227ce5	reformat / reorder	2014-07-20 09:02:42 -07:00
Justin Richer	f997049eff	key service can now deal with missing 'kid' fields in JWKs ... closes #639	2014-07-20 08:40:04 -07:00
tsitkov	5c2cb75407	Better test coverage for JWS/EAlgorithmEmbed, JWEEncryptionMethodEmbed	2014-07-16 21:39:13 -04:00
Justin Richer	3412c1877e	removed unnecessary unit test	2014-07-02 15:05:37 -04:00
tsitkov	e1b4df74f0	Added tests for DefaultJwtEncryptionAndDecryptionService	2014-07-02 14:57:56 -04:00
Justin Richer	5223d88e0a	updated unit test to fit new nimbus version	2014-07-02 11:41:38 -04:00
Kristina Sahlmann	7bf8e2ad08	change the OctetSequenceKey constructor in SymmetricCacheService	2014-07-02 11:37:42 -04:00
Kristina Sahlmann	306c8cff17	update nimbus-jose-jwt dependency to 2.26 and fix the affected files	2014-07-02 11:37:42 -04:00
tsitkov	48431fd5c7	Unit test for JWKSetKeyStore class	2014-06-30 13:21:07 -04:00
Justin Richer	acf039a1f7	wrapped auth method check, added SECRET_JWT, closes #621	2014-06-18 18:24:05 -04:00
Christopher Elkins	a465559ac5	Revert incorrect key-encoding change in SymmetricCacheService	2014-06-18 18:10:33 -04:00
Christopher Elkins	1dc204f975	Validate HMAC-signed ID tokens	2014-06-18 18:10:33 -04:00
tjain	276d846f4c	Configuration Property Bean to load the OP wide registration token life ... time	2014-06-12 19:12:32 -04:00
Justin Richer	71fa796b42	Allow public clients to use token endpoint, closes #611, closes #613	2014-06-09 15:55:06 -04:00
Justin Richer	257312d5da	made user info interceptor more null safe for client side	2014-05-29 22:15:30 -04:00
Justin Richer	943fae25a1	make user info interceptor more compatible with standalone OIDC client software (with no user info service)	2014-05-29 12:13:38 -04:00
Justin Richer	0c8cacd59a	added missing copyright headers	2014-05-27 13:46:47 -04:00
Justin Richer	525f3aa2a8	Cleaned up indentation, whitespace, and imports.	2014-05-27 13:02:49 -04:00
Justin Richer	c34357a433	added resource registration endpoint with basic functionality and specialized tokens	2014-05-26 16:30:24 -04:00
Justin Richer	05e9624ae3	added support for encrypted and symmetrically signed id tokens and user info responses	2014-05-23 21:15:50 -04:00
Justin Richer	e4d5f4a540	added system wide cache for all symmetric validators, closes # 557	2014-05-23 16:16:06 -04:00
Justin Richer	ca333d256b	Appropriately catch runtime exceptions in all guava caches, closes #603	2014-05-23 15:00:40 -04:00
Alexander Imfeld	7cd36b471f	Make introspection endpoint access authorization pluggable.	2014-05-07 16:44:56 +02:00
Justin Richer	521017c5c2	updated stats service to have a resettable cache triggered by other service events	2014-04-16 21:39:37 -04:00
Justin Richer	26c464e440	fixed bad JPQL in auth holder cleanup class	2014-04-16 21:17:56 -04:00