Commit Graph

388 Commits (4bb28052a16f0f0fb8c0537a8f2df9f9e78313fb)

Author SHA1 Message Date
Justin Richer 5624c12232 back ported prompt behavior to 1.1, closes #810, addresses #667 2015-05-27 12:12:01 -04:00
Charif Belhaffef 7d649e5c9c add @Transient to function getAuthorizedGrantTypes() so it does not persist 2015-01-14 07:20:00 -05:00
Justin Richer 3513289b00 added key id to id token, closes #725 2014-11-13 16:35:38 -10:00
Justin Richer 0396157543 added ROLE_CLIENT to assertion client authentication, cleaned up roles on client secret authentication, closes #728, closes #401 2014-11-13 16:35:38 -10:00
Alexander Imfeld d30ec3dc03 Introduce introspection result assembler to allow for customized introspection results 2014-11-13 16:35:17 -10:00
Justin Richer d371c99503 make user info classes serializable, closes #714 2014-10-23 22:44:00 -04:00
Justin Richer d26eb88faa generate random fake password for private key clients and shared secret crypto clients to avoid accidentally using client secret authentication and bypassing authentication, closes #715 2014-10-23 21:44:59 -04:00
Justin Richer 09cbecc540 import cleanup 2014-10-07 17:49:05 -04:00
Justin Richer 3fa4c5bbc6 added more generic rotation capability 2014-10-07 17:48:53 -04:00
arielak a44e5e22fe Added support for whitelisted and blacklisted site import from a 1.0 config 2014-10-07 16:20:00 -04:00
arielak 7b91d764f0 Added service interface for data import/export service and modified AuthenticationHolderEntity and Repository to allow getting all objects 2014-10-07 16:20:00 -04:00
Justin Richer f097e589a4 swapped exception class for existing BeanCreationException, added example flag in config file (commented out)
closes #528
closes #689
2014-10-07 16:20:00 -04:00
John Brooks be485da8ff Corrected bean setup for checkForHttps case tests. 2014-10-07 16:20:00 -04:00
John Brooks e74014906d Separated checkForHttps cases into separate test methods. 2014-10-07 16:20:00 -04:00
John Brooks bed90b165e Initialized forceHttps to false. 2014-10-07 16:20:00 -04:00
John Brooks 61c559209a Changed parent class from Exception to RuntimeException; added copyright
language.
2014-10-07 16:19:59 -04:00
John Brooks 56e21d3c6c Create flag to force HTTPS of value of issuer on server startup, addresses #528 2014-10-07 16:19:59 -04:00
Justin Richer b617fe0c4b externalized view name strings and tied them to view beans 2014-10-07 16:19:59 -04:00
Justin Richer f4b508fa62 Removed exceptions from @PostConstruct methods, closes #663 2014-10-07 16:19:59 -04:00
Justin Richer 9fcc5077ca added API for getting tokens by clientid 2014-10-07 16:19:59 -04:00
Justin Richer 176a9a1034 made user info less transient 2014-10-07 16:19:59 -04:00
Justin Richer b0cce924a2 JsonFileRegisteredClientService now writes out entire client registration to disk, closes #651 2014-08-01 00:01:56 -04:00
Justin Richer 78f3e68e8b update unit test for Windows environment, closes #647 2014-07-31 23:22:06 -04:00
Justin Richer 62a43165f0 added json member type checking for json utils, won't die if a string is found where an array was expected
closes #637
2014-07-20 09:42:57 -07:00
Justin Richer 325a200f16 added configurable support for different token presentation methods in user info fetcher, closes #632 2014-07-20 09:27:02 -07:00
Justin Richer 1db4227ce5 reformat / reorder 2014-07-20 09:02:42 -07:00
Justin Richer f997049eff key service can now deal with missing 'kid' fields in JWKs
closes #639
2014-07-20 08:40:04 -07:00
tsitkov 5c2cb75407 Better test coverage for JWS/EAlgorithmEmbed, JWEEncryptionMethodEmbed 2014-07-16 21:39:13 -04:00
Justin Richer 3412c1877e removed unnecessary unit test 2014-07-02 15:05:37 -04:00
tsitkov e1b4df74f0 Added tests for DefaultJwtEncryptionAndDecryptionService 2014-07-02 14:57:56 -04:00
Justin Richer 5223d88e0a updated unit test to fit new nimbus version 2014-07-02 11:41:38 -04:00
Kristina Sahlmann 7bf8e2ad08 change the OctetSequenceKey constructor in SymmetricCacheService 2014-07-02 11:37:42 -04:00
Kristina Sahlmann 306c8cff17 update nimbus-jose-jwt dependency to 2.26 and fix the affected files 2014-07-02 11:37:42 -04:00
tsitkov 48431fd5c7 Unit test for JWKSetKeyStore class 2014-06-30 13:21:07 -04:00
Justin Richer acf039a1f7 wrapped auth method check, added SECRET_JWT, closes #621 2014-06-18 18:24:05 -04:00
Christopher Elkins a465559ac5 Revert incorrect key-encoding change in SymmetricCacheService 2014-06-18 18:10:33 -04:00
Christopher Elkins 1dc204f975 Validate HMAC-signed ID tokens 2014-06-18 18:10:33 -04:00
tjain 276d846f4c Configuration Property Bean to load the OP wide registration token life
time
2014-06-12 19:12:32 -04:00
Justin Richer 71fa796b42 Allow public clients to use token endpoint, closes #611, closes #613 2014-06-09 15:55:06 -04:00
Justin Richer 257312d5da made user info interceptor more null safe for client side 2014-05-29 22:15:30 -04:00
Justin Richer 943fae25a1 make user info interceptor more compatible with standalone OIDC client software (with no user info service) 2014-05-29 12:13:38 -04:00
Justin Richer 0c8cacd59a added missing copyright headers 2014-05-27 13:46:47 -04:00
Justin Richer 525f3aa2a8 Cleaned up indentation, whitespace, and imports. 2014-05-27 13:02:49 -04:00
Justin Richer c34357a433 added resource registration endpoint with basic functionality and specialized tokens 2014-05-26 16:30:24 -04:00
Justin Richer 05e9624ae3 added support for encrypted and symmetrically signed id tokens and user info responses 2014-05-23 21:15:50 -04:00
Justin Richer e4d5f4a540 added system wide cache for all symmetric validators, closes # 557 2014-05-23 16:16:06 -04:00
Justin Richer ca333d256b Appropriately catch runtime exceptions in all guava caches, closes #603 2014-05-23 15:00:40 -04:00
Alexander Imfeld 7cd36b471f Make introspection endpoint access authorization pluggable. 2014-05-07 16:44:56 +02:00
Justin Richer 521017c5c2 updated stats service to have a resettable cache triggered by other service events 2014-04-16 21:39:37 -04:00
Justin Richer 26c464e440 fixed bad JPQL in auth holder cleanup class 2014-04-16 21:17:56 -04:00