github
/
OpenID-Connect-Java-Spring-Server
mirror of https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
1,713 Commits
17 Branches
69 Tags
78 MiB
Commit Graph

1077 Commits (53148f2c8770ced14f6ea0dee997b560558adb81)

Author SHA1 Message Date
Justin Richer 53148f2c87 better auth method checking in dynamic registration and resource registration 2014-06-09 17:41:27 -04:00
Justin Richer f15b4a0f74 resource registration returned the wrong URL 2014-06-09 17:41:01 -04:00
Justin Richer 47cc005fe5 more sanity checking for client secrets 2014-06-09 16:06:57 -04:00
Justin Richer cac645484f client API now generates client secret only for clients that require a client secret 2014-06-09 16:00:55 -04:00
Justin Richer 52e53ba219 extracted validation exception, refactored protected resource registration endpoint to use this format 2014-06-06 11:13:41 -04:00
Justin Richer b7a8bbdddc cleanup, error wrappers on protected resource registration 2014-06-06 10:58:40 -04:00
Justin Richer deaccf437e refactored dynamic registration endpoint's checks for client consistency 2014-06-06 10:18:40 -04:00
Justin Richer 04f7a698ea added response type consistency checking, closes #430 2014-06-05 19:41:06 -04:00
Justin Richer 32101ff7b2 added parsing checks, fixed inverted logic, cleaned up redundant settings, closes #597 2014-06-05 19:06:03 -04:00
Justin Richer ab083c0963 added checks to dynamic registration endpoint that disallow registration of multiple incompatible grant types 2014-06-05 17:16:35 -04:00
Justin Richer cdd23df7ee token introspection now returns user "sub" when available in addition to "user_id", closes #507 (might cause incompatibility problems) 2014-06-04 17:27:38 -04:00
Justin Richer 85acfa90db [maven-release-plugin] prepare for next development iteration 2014-06-04 14:51:32 -04:00
Justin Richer d5e4cb45a2 [maven-release-plugin] prepare release mitreid-connect-1.1.7 2014-06-04 14:51:29 -04:00
Justin Richer 8861220632 stats on home page are now loaded in the background (makes main site load much faster) 2014-06-04 14:39:30 -04:00
Justin Richer 3e4aae6c8a hash tests now pass on Java8 2014-05-29 17:41:56 -04:00
Justin Richer dfdc4ed52d fixed information leaks from approved site API 2014-05-28 18:21:46 -04:00
Alexander Imfeld a84c10fc1c Change copyright from Netcetera to MITRE/MIT-KIT. 2014-05-28 08:52:31 +02:00
Justin Richer 2797731597 fixed unit test to account for cascading tokens 2014-05-27 20:39:19 -04:00
Justin Richer d2c83104fb cascade token saves 2014-05-27 19:28:38 -04:00
Josh Mandel 7f8cbcea39 Use return value from TokenEnhancer.enhance 2014-05-27 19:23:44 -04:00
Justin Richer be98b9cd0b [maven-release-plugin] prepare for next development iteration 2014-05-27 14:00:40 -04:00
Justin Richer 8320f0eefe [maven-release-plugin] prepare release mitreid-connect-1.1.6 2014-05-27 14:00:37 -04:00
Justin Richer 0c8cacd59a added missing copyright headers 2014-05-27 13:46:47 -04:00
Justin Richer 525f3aa2a8 Cleaned up indentation, whitespace, and imports. 2014-05-27 13:02:49 -04:00
Justin Richer 8185171119 minor clean up 2014-05-27 11:54:45 -04:00
Justin Richer 5ab516de48 prevent clients from registering with special resource scope 2014-05-26 17:39:20 -04:00
Justin Richer c34357a433 added resource registration endpoint with basic functionality and specialized tokens 2014-05-26 16:30:24 -04:00
Justin Richer 960319b796 improved logging configuration, removed transactional from service 2014-05-25 15:38:44 -04:00
Justin Richer 85fd4e71ce typo in error message 2014-05-25 15:37:58 -04:00
Justin Richer 2af51dc77a better URI check for prompt filter short circuit 2014-05-25 14:24:25 -04:00
Justin Richer f4a1a2acff fixed prompt filter coding error 2014-05-24 23:16:29 -04:00
Justin Richer 89d55e3d33 added support for default max auth age and require auth time, made prompt filter only work on authorization endpoint 2014-05-24 22:12:41 -04:00
Justin Richer 5c6e75bd53 cleaned up UI for client editing 2014-05-24 20:56:54 -04:00
Justin Richer 05e9624ae3 added support for encrypted and symmetrically signed id tokens and user info responses 2014-05-23 21:15:50 -04:00
Justin Richer ffe1b29906 Added Signed JWT support to UserInfo endpoint response, closes #593 2014-05-23 19:15:03 -04:00
Justin Richer e4d5f4a540 added system wide cache for all symmetric validators, closes # 557 2014-05-23 16:16:06 -04:00
Justin Richer ca333d256b Appropriately catch runtime exceptions in all guava caches, closes #603 2014-05-23 15:00:40 -04:00
Justin Richer df9c9747ce more reasonable check for whether or not a user auth is present, addresses #602 2014-05-23 11:49:51 -04:00
Justin Richer 4e890a4d7d enforce clients using a redirect flow have at least one redirect uri registered when using dynamic registration, made error handling more consistent across all APIs 
closes #596
 2014-05-21 18:29:51 -04:00
Justin Richer a225b00920 added null check and permissions check to ID token generation, closes #602 2014-05-21 17:45:25 -04:00
Justin Richer 880014176f [maven-release-plugin] prepare for next development iteration 2014-05-13 18:23:11 -04:00
Justin Richer ca8a003e3d [maven-release-plugin] prepare release mitreid-connect-1.1.5 2014-05-13 18:23:08 -04:00
Justin Richer dcf36234c4 moved CSRF generator to request parser instead of confirmation controller 2014-05-13 09:48:34 -04:00
Justin Richer a253ebc908 added CSRF protection to approval page 2014-05-13 09:27:02 -04:00
Justin Richer fcfbf1080f renamed auth request variable 2014-05-13 09:26:27 -04:00
Alexander Imfeld 7cd36b471f Make introspection endpoint access authorization pluggable. 2014-05-07 16:44:56 +02:00
Justin Richer 4b697ba909 webfinger checks host on acct: URIs, closes #404 2014-04-25 21:21:00 -04:00
Justin Richer b8129bf60d [maven-release-plugin] prepare for next development iteration 2014-04-21 19:19:10 -04:00
Justin Richer a9e34ac9bd [maven-release-plugin] prepare release mitreid-connect-1.1.4 2014-04-21 19:19:07 -04:00
Justin Richer 376403fa4a account for registration time in approval page, closes #550 2014-04-19 07:28:20 -04:00