github
/
OpenID-Connect-Java-Spring-Server
mirror of https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
1,112 Commits
17 Branches
69 Tags
78 MiB
Commit Graph

369 Commits (6a20e7aaa915e19f7f883b95533d3cca5ed5b275)

Author SHA1 Message Date
Justin Richer 27a8bcf440 now with more documentation and actual deletion 2013-03-06 11:53:16 -05:00
Justin Richer eaa9e1ded4 typo for grant types in parser 2013-03-06 11:33:54 -05:00
Justin Richer a6a2d43e8f added Read, Update, and Delete operations to dynreg endpoint 2013-03-06 11:33:31 -05:00
Justin Richer d37bac1775 simplification and documentation of client api views 2013-03-06 11:33:06 -05:00
Justin Richer c9bdba3f3a API now bound to USER for read, ADMIN for write, addresses #267 2013-03-05 17:45:33 -05:00
Justin Richer 1daf5bd357 dispatch to different views based on user role 2013-03-05 17:34:24 -05:00
Justin Richer 70b2342864 fixed split client views, fixed typos in various places 2013-03-05 17:26:25 -05:00
Justin Richer 51a7ccc397 entity -> embed 2013-03-05 16:33:13 -05:00
Justin Richer 0d25d4cb17 null-preserving static parsers instead of constructors 2013-03-05 12:10:33 -05:00
Justin Richer 6a88c13675 split client view into two classes 2013-03-04 17:50:02 -05:00
Justin Richer 4095f2179c added custom client view for API 2013-03-04 17:33:18 -05:00
Justin Richer 9aebca2e97 fixed gson parser in client API 2013-03-04 16:38:11 -05:00
Justin Richer 23efdf9f51 fix viewbean name, nullsafe client creation time, fixed default scope handling 2013-03-04 16:12:06 -05:00
Justin Richer 26f03ec070 timestamp for creation date 2013-03-04 16:11:20 -05:00
Justin Richer 235a3bf2c4 added client information response view 2013-03-04 15:45:35 -05:00
Justin Richer a2d6894f62 started serialization for client information view 2013-03-04 15:13:55 -05:00
Justin Richer db24c203ec added parser to client registration endpoint 2013-03-04 15:01:02 -05:00
Justin Richer 5c044b9eff added extra client fields to DB model, moved services to use new client model object 2013-03-04 14:22:42 -05:00
Justin Richer bd877dde82 added signature checking to request objects 2013-03-01 17:44:44 -05:00
Justin Richer 6c1e6b2d74 refactored signing and validation, added jwk-based cache, removed keyfetcher, refactored client side class structure 2013-03-01 17:44:44 -05:00
Justin Richer 385853fa1f refactored signing and validation, added jwk-based cache, removed keyfetcher, refactored client side class structure 2013-03-01 17:44:44 -05:00
Justin Richer 13a3e97113 updated request object forwarding hack 2013-03-01 17:42:48 -05:00
Amanda Anganes 60b679e942 First steps towards adding display variables to config bean 2013-02-22 17:10:14 -05:00
Justin Richer 4d725b88dd more updates to track nimbus-jose-jwt classes and use them properly 2013-02-22 12:08:01 -05:00
Justin Richer 9a98d241e8 updates to track Nimbus JOSE API changes to audience and date fields 2013-02-22 12:08:01 -05:00
Justin Richer 03e7337b9f client registration endpoint needs general rewrite to fit new spec. 
Most of the problematic references will change with the rewrite, so this is a slapdash patch to make things compile for now.
 2013-02-22 12:08:01 -05:00
Justin Richer 25b9940a68 request object endpoint is a placeholder, cleaning out for now 2013-02-22 12:08:01 -05:00
Justin Richer e5732da857 added system default signing algorithm, converted token provider and enhancer to use nimbus-jose 2013-02-22 12:08:01 -05:00
Justin Richer c01e873019 request object processor moved to nimbus-jose 2013-02-22 12:08:01 -05:00
Justin Richer 0f99e0e06d assertion token granter moved to nimbus-jose 2013-02-22 12:08:01 -05:00
Justin Richer 10ab55a7e2 moved jwk/x509 publishing over to nimbus-jose (mostly) 2013-02-22 12:08:01 -05:00
Justin Richer a078f7d202 patched userinfo view to use nimbus 2013-02-22 12:08:01 -05:00
Justin Richer c7d1b47b38 converted bearer assertion framework to nimbus-jose 2013-02-22 12:08:01 -05:00
Justin Richer 910a6cf1a0 remvoed idtoken repository that was never used 2013-02-22 12:08:01 -05:00
Justin Richer d0fdf8140e sorting on approval page 2013-02-05 15:47:32 -05:00
Justin Richer 02846c0a8d typo fix, DB constraints 2013-02-05 14:40:06 -05:00
Justin Richer e622202e9e display scopes based on request, pull scope information dynamically, addresses #208 2013-02-05 11:36:59 -05:00
Justin Richer eb4773ce46 beginning dynamic scopes on auth page 2013-02-05 11:28:39 -05:00
Justin Richer c2b9fd4db1 system scope ordering consistency 2013-02-05 11:11:41 -05:00
Justin Richer 801a45cc49 several bugfixes to scopes UI, works now 2013-02-03 22:04:56 -05:00
Justin Richer a3037a18a7 system scope service applied to client creation UI 2013-02-03 22:04:55 -05:00
Justin Richer cab36a2b80 added appropriate filterered and transformative actions to scope service 2013-02-03 22:04:55 -05:00
Justin Richer ab35186696 added scope service, repository, and API 2013-02-03 22:02:24 -05:00
Justin Richer a2e548c261 fixed claims processor for request object from user info endpoint 2013-02-03 22:02:23 -05:00
Justin Richer 3c190e044a inject parsed parameters to make SECOAUTH happy 2013-02-03 22:02:23 -05:00
Justin Richer 1144d511af inject scopes 2013-02-03 22:02:23 -05:00
Justin Richer f9d50db1f1 don't treat openid scope special here -- by default client gets access to *all* scopes it's registered for 2013-02-03 22:02:23 -05:00
Justin Richer 078342715b moved request object to request manager 2013-02-03 22:02:22 -05:00
Amanda Anganes 3399eed45a Added about, contact, and stats pages. Still largely placeholders, but the topbar works correctly now at least. 2013-01-31 11:34:07 -05:00
Justin Richer 0be254c99a updated token introspection output to match spec and client filter 2013-01-30 15:31:32 -05:00
Justin Richer c1d33bb55b bugfix in assertion processor 2013-01-30 14:34:16 -05:00
Amanda Anganes 2e2c0e8e6c Fixed bug in nonce processing 2013-01-29 13:07:41 -05:00
Amanda Anganes 3db74100a4 working on bug 2013-01-29 13:07:41 -05:00
Amanda Anganes dd8b48e863 Reset ConnectAuthorizationRequestManager to version from master 2013-01-29 13:07:41 -05:00
Amanda Anganes 06f970e61b Trying to fix nonce service 2013-01-29 13:07:41 -05:00
Amanda Anganes 86bf51f0a7 Added java reflection code for request object handling, needs to be tested 2013-01-29 13:07:41 -05:00
Amanda Anganes 677f0f2d4c Stubbed out required functionality for request object filtering 2013-01-29 13:07:41 -05:00
Amanda Anganes 67e8714671 Working on request object userinfo parsing 2013-01-29 13:07:41 -05:00
Justin Richer 7269700dc6 switched injector from repository to service 2013-01-24 19:32:55 -05:00
Justin Richer f0ee36dad2 auth_type -> auth_method (addresses #258) 2013-01-18 18:26:55 -05:00
Justin Richer 8831bc64a2 offline -> offline_access (addresses #248) 2013-01-18 18:03:39 -05:00
Justin Richer 27a26e0a35 (user_id/prn) -> sub 2013-01-18 16:40:05 -05:00
Justin Richer 0ab4ad4bbe added "birthdate", addresses #253 2013-01-18 15:38:41 -05:00
Justin Richer 6ef4dc817e genericized nimbus code, added caching 2013-01-18 15:10:48 -05:00
Justin Richer 2d21a72e7e switched to nimbus to check JWT signature 2013-01-18 15:10:48 -05:00
Justin Richer 60bda31c54 updated custom filter 2013-01-18 15:10:48 -05:00
Justin Richer c17bc05b0e wiring configuration 2013-01-18 15:10:48 -05:00
Justin Richer 4262be1fd3 added jwt processing to client auth provider 2013-01-18 15:06:00 -05:00
Justin Richer abd64eccd6 added framework for processing assertions for client auth 2013-01-18 15:06:00 -05:00
Amanda Anganes ad5e77f7ff Made nonce storage duration configurable in application-context.xml; 2013-01-10 10:34:40 -05:00
Amanda Anganes 59f1b1f05e Testing, nonce handling seems to be working now 2013-01-07 13:28:30 -05:00
Amanda Anganes a1a117cfde Added default constructor to ConnectAuthorizationRequestManager 2013-01-07 10:54:33 -05:00
Amanda Anganes 77b932f5a7 Added implementation of AuthorizationRequestManager. Nonce checking will go in here 2013-01-04 15:30:24 -05:00
Amanda Anganes 1af6513499 Removed nonce checking from token service impl 2013-01-04 15:30:24 -05:00
Amanda Anganes 246ed962bb Added stub of repository test 2013-01-04 15:30:24 -05:00
Amanda Anganes e1dffb959c Added NonceReuseException 2013-01-04 15:30:24 -05:00
Amanda Anganes a4637ec395 Fleshed out nonce service classes, added code to token service impl to check for and store nonces. Added JodaTime library for working with dates. 2013-01-04 15:30:24 -05:00
Amanda Anganes c7ae315e98 Added initial files for nonce service. Repository and service impls are stubs 2013-01-04 15:30:24 -05:00
Justin Richer 87788f0710 let users visit home page without logging in 2012-12-18 13:56:46 -05:00
Justin Richer f265347311 tweaked error messages 2012-12-18 12:08:36 -05:00
Justin Richer 18ddd8333f added flag to allow introspection, relaxed same-client restrictions on introspection and chained tokens 2012-12-18 11:07:24 -05:00
Justin Richer 1f53f41648 generic entity view now takes optional HttpStatus argument 2012-12-14 17:35:21 -05:00
Justin Richer a3790f943e cleaned up introspection endpoint to use exceptions 2012-12-14 17:35:20 -05:00
Justin Richer e5206f2b92 implemented jwt assertions for id tokens 2012-12-14 17:35:20 -05:00
Justin Richer 51b67ebc03 added queries to get access token from id token 2012-12-14 17:35:20 -05:00
Justin Richer 1853bd7117 added assertion token granter 2012-12-14 17:35:20 -05:00
Justin Richer cda6163d0d null and blank handling 2012-12-12 12:29:14 -05:00
Justin Richer 06fad3a41c moved view for client API 2012-12-11 15:19:11 -05:00
Justin Richer 6344a72519 missed a few applicationName references, fixed API JSON rendering 2012-12-11 15:16:18 -05:00
Justin Richer dfd8e9c7c7 removed unused view 2012-12-11 15:15:52 -05:00
Justin Richer 179903b074 propagated client changes to service 2012-12-11 12:31:01 -05:00
Justin Richer 33ceedb283 added scope and grant_type, switched to timeunit 2012-12-11 12:11:09 -05:00
Justin Richer e2bc15c2b2 beginning of client registration refactor to track IETF dynreg spec 2012-12-10 17:36:33 -05:00
Justin Richer 94c37f5815 added redelegate scope to client list, fixed inconsistency with refresh token issuance (addresses #239) 2012-12-10 16:53:05 -05:00
Justin Richer 510ddb48b7 override the correct part of the token granter class 2012-12-10 15:54:37 -05:00
Justin Richer bdcc6af096 temporary sanity check for client ID's 2012-12-10 11:40:03 -05:00
Justin Richer cab0839430 added workarounds for quirks in SECOAUTH 2012-12-10 11:27:28 -05:00
Justin Richer edc96d646c added chained token grant 2012-12-10 10:48:38 -05:00
Justin Richer 54708fb0ac fixed id token scopes (shouldn't inherit from parent token) 2012-12-10 10:11:02 -05:00
Justin Richer e38b2b0ba5 shortened revocation endpoint url 2012-12-07 17:16:03 -05:00