github
/
OpenID-Connect-Java-Spring-Server
mirror of https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
1,875 Commits
17 Branches
69 Tags
78 MiB
Commit Graph

1042 Commits (4ccd948ad2bd676871ecac5d297d0b13795d0b6b)

Author SHA1 Message Date
Justin Richer 4ccd948ad2 fixed checking of refresh token permissions in client service, clients can now request either refresh_token grant type or offline_access scope and it will work. added checkbox to dynreg page for ease-of-use 
closes #734
 2014-11-22 22:43:01 -05:00
Justin Richer e983e8a0c9 make sure that client presenting refresh token is the same client the refresh token was issued to 
closes #735
 2014-11-22 21:33:10 -05:00
Justin Richer 5561b75f48 removed java 1.7 operator 2014-11-13 22:22:28 -10:00
Justin Richer 8a2883f80b approval page defaults to "ask again" when prompt=consent is passed, closes #669 2014-11-13 16:35:38 -10:00
Justin Richer 0fd4e04725 updated date format of token introspection response, closes #719 2014-11-13 16:35:38 -10:00
Justin Richer 3513289b00 added key id to id token, closes #725 2014-11-13 16:35:38 -10:00
Justin Richer 0396157543 added ROLE_CLIENT to assertion client authentication, cleaned up roles on client secret authentication, closes #728, closes #401 2014-11-13 16:35:38 -10:00
Alexander Imfeld d30ec3dc03 Introduce introspection result assembler to allow for customized introspection results 2014-11-13 16:35:17 -10:00
arielak 1815aa0be1 RefreshToken to AuthHolder linkage test now using AuthHolder ID to verify 2014-10-13 11:48:00 -04:00
arielak 797acd73f3 Added tests for ensuring the references between a refresh token and its authentication holder are preserved over import. Minor cleanup of other tests. 2014-10-10 17:48:20 -04:00
arielak fc2b544b25 Better method of creating test AuthenticationHolderEntity, added some more testing to testImport/ExportGrants 
Conflicts:

	openid-connect-server/src/test/java/org/mitre/openid/connect/service/impl/TestMITREidDataService_1_1.java
 2014-10-10 15:13:27 -04:00
arielak 9e138647de Added new data service tests, separated date parsing/formatting utilities into DateUtil class 
Conflicts:

	openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/MITREidDataService_1_0.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/MITREidDataService_1_X.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/util/DateUtil.java
 2014-10-10 15:09:31 -04:00
Justin Richer f133bc9b24 added null check to confirmation controller, closes #684 2014-10-07 21:58:00 -04:00
Justin Richer 09cbecc540 import cleanup 2014-10-07 17:49:05 -04:00
Justin Richer 3fa4c5bbc6 added more generic rotation capability 2014-10-07 17:48:53 -04:00
Justin Richer caeaa7dd78 added registration token API 2014-10-07 17:06:29 -04:00
Justin Richer 9c732fd1cd Ported date format changes from 1.0.x 2014-10-07 16:20:01 -04:00
arielak 01448d99c1 Separated date formatting and parsing functions to DateUtil class. Modified how timezone is printed to workaround Java date formatting issue. 
Conflicts:
	openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/MITREidDataService_1_0.java
 2014-10-07 16:20:01 -04:00
Justin Richer 44715bd230 made binary encode/decode null safe 2014-10-07 16:20:01 -04:00
arielak 274b3dae18 Fixed reading/writing of approved access tokens 2014-10-07 16:20:00 -04:00
arielak 500b13f374 Fixed netbeans copyright weirdness 2014-10-07 16:20:00 -04:00
arielak a444850898 Added support for 1.1 config import/export, and separated common functions into 1_X abstract class 2014-10-07 16:20:00 -04:00
arielak cc8718c83d Added support for whitelisted and blacklisted site export 2014-10-07 16:20:00 -04:00
arielak a44e5e22fe Added support for whitelisted and blacklisted site import from a 1.0 config 2014-10-07 16:20:00 -04:00
arielak 942696c99f NPE fix 2014-10-07 16:20:00 -04:00
arielak b677b96595 Re-enabled reading of system scopes. Added 1.1 data export functionality 2014-10-07 16:20:00 -04:00
arielak e2119884a5 Added services for data import/export and modified JpaAuthenticationHolderEntity and Repository to allow getting all objects 2014-10-07 16:20:00 -04:00
Justin Richer b617fe0c4b externalized view name strings and tied them to view beans 2014-10-07 16:19:59 -04:00
Justin Richer f18f1701a3 moved the API endpoints, made resource tokens accessible too 2014-10-07 16:19:59 -04:00
Justin Richer 71da72de81 import cleanup 2014-10-07 16:19:59 -04:00
Justin Richer 9fcc5077ca added API for getting tokens by clientid 2014-10-07 16:19:59 -04:00
Justin Richer 9ebeeb4b79 fixed missing null check in request object parser 2014-10-07 16:19:58 -04:00
Justin Richer 39c50b76f4 added null checks to endpoint auth method switches, closes #652 2014-07-31 23:05:17 -04:00
Justin Richer 8768188133 makes the grant types checker softer, closes #640 2014-07-19 23:54:02 -07:00
Justin Richer 9666404d54 added "none" to discovery endpoint 2014-07-16 23:48:18 -04:00
Justin Richer 7476edb310 added unsigned ID token support to server 2014-07-16 22:29:13 -04:00
Justin Richer 538c4031bb added in better default checks for content negotiation 2014-07-02 16:01:26 -04:00
Justin Richer 078bf5e464 combine HTTP content negotiation with client preferences for user info endpoint 2014-06-28 23:44:37 -04:00
Justin Richer 1de2a61176 made accept header optional for user info request 2014-06-28 22:20:05 -04:00
Justin Richer 04acc21eea removed injection of admin email address from client API, will happen browser-side now 2014-06-26 13:00:36 -04:00
Justin Richer 5773fe195b set proper content type on user info JWT response 2014-06-18 18:05:11 -04:00
Justin Richer 5f97ce0ca1 fixed error code string 2014-06-18 14:50:17 -04:00
Justin Richer 6589cd717d disallow fragments in redirect uris for dynamic clients, closes #622 2014-06-18 14:49:29 -04:00
Justin Richer 4e52543091 more properly respond to some client registration errors 2014-06-18 14:45:55 -04:00
Justin Richer c493f438e7 applied token rotation to protected resources 2014-06-12 19:37:50 -04:00
Justin Richer f4edd3164f made timeout field optional, tokens don't expire in the default case 2014-06-12 19:37:32 -04:00
Trilok Jain 4e09ec687b Registration Token regeneration - when they are beyond their lifetime 
(in read/update calls)
 2014-06-12 19:12:32 -04:00
Trilok Jain ed3e6a2814 https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server/issues/431: 
Generating a new registration access token on read/update call and
revoking the token issued earlier.
 2014-06-12 19:12:32 -04:00
Justin Richer a106121af3 created blacklist aware redirect resolver and wired it in, closes #549 2014-06-10 16:29:45 -04:00
Justin Richer a97f3e2d65 don't throw away creation time on protected resource update (oops) 2014-06-09 20:22:58 -04:00