github
/
OpenID-Connect-Java-Spring-Server
mirror of https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
2,846 Commits
17 Branches
69 Tags
78 MiB
Commit Graph

2846 Commits (7021f119a3c898c797d2562564dc953fbf68306b)

Author SHA1 Message Date
Christopher Elkins a465559ac5 Revert incorrect key-encoding change in SymmetricCacheService 2014-06-18 18:10:33 -04:00
Christopher Elkins 1dc204f975 Validate HMAC-signed ID tokens 2014-06-18 18:10:33 -04:00
Justin Richer 5773fe195b set proper content type on user info JWT response 2014-06-18 18:05:11 -04:00
Justin Richer 5f97ce0ca1 fixed error code string 2014-06-18 14:50:17 -04:00
Justin Richer 6589cd717d disallow fragments in redirect uris for dynamic clients, closes #622 2014-06-18 14:49:29 -04:00
Justin Richer 4e52543091 more properly respond to some client registration errors 2014-06-18 14:45:55 -04:00
Justin Richer c493f438e7 applied token rotation to protected resources 2014-06-12 19:37:50 -04:00
Justin Richer f4edd3164f made timeout field optional, tokens don't expire in the default case 2014-06-12 19:37:32 -04:00
tjain 276d846f4c Configuration Property Bean to load the OP wide registration token life 
time
 2014-06-12 19:12:32 -04:00
Trilok Jain 4e09ec687b Registration Token regeneration - when they are beyond their lifetime 
(in read/update calls)
 2014-06-12 19:12:32 -04:00
Trilok Jain ed3e6a2814 https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server/issues/431: 
Generating a new registration access token on read/update call and
revoking the token issued earlier.
 2014-06-12 19:12:32 -04:00
Justin Richer 199131ba77 fixed stats pluralization flub 2014-06-11 16:19:05 -04:00
Justin Richer e4bb30bd58 cleaned up resource registration model 2014-06-11 15:54:53 -04:00
Justin Richer 413768f3d3 made sidebar menus react to current page/section 2014-06-11 15:50:01 -04:00
Justin Richer c49b347cb3 re-attached options for backbone upgrade compatibility 2014-06-11 15:32:11 -04:00
Justin Richer 5e2fbd49c0 upgraded backbone.js 2014-06-11 15:14:48 -04:00
Justin Richer 271698272f added auto-collapse to action menu (for mobile devices) 2014-06-11 14:44:32 -04:00
Justin Richer ed0dc9acde updated top bar to work better on mobile touch browsers (I hope) 2014-06-11 14:10:06 -04:00
Justin Richer 5b1f9c1aeb removed extraneous references to app-connect Views (removed in f33726a) 2014-06-10 22:40:27 -04:00
Justin Richer d922a98783 fixed some liveliness problems in the client UI 2014-06-10 21:46:17 -04:00
Justin Richer bd1685b8d8 added live counts to tabs 2014-06-10 21:38:20 -04:00
Justin Richer f8dd8b32c7 added tabs to token page 2014-06-10 21:16:37 -04:00
Justin Richer c80acaa3f0 added copyable clientid display to client table 2014-06-10 21:03:42 -04:00
Justin Richer 0def26b7ed added tabs to grant display 2014-06-10 16:58:06 -04:00
Justin Richer a106121af3 created blacklist aware redirect resolver and wired it in, closes #549 2014-06-10 16:29:45 -04:00
Justin Richer d0e40d7cbd propagated filter order change to other endpoints for consistency (shouldn't actually matter) 2014-06-10 11:19:59 -04:00
Justin Richer ba266d7224 swapped order of client auth filters, closes #610 2014-06-10 11:18:05 -04:00
Justin Richer a97f3e2d65 don't throw away creation time on protected resource update (oops) 2014-06-09 20:22:58 -04:00
Justin Richer 6df68fc97a fixed client secret display on dynreg and res reg pages 2014-06-09 20:20:58 -04:00
Justin Richer e0fe22e4ba don't regenerate client secrets every single time 2014-06-09 20:20:36 -04:00
Justin Richer 04de4e8483 updated display of saved client secret 2014-06-09 19:27:27 -04:00
Justin Richer d844b8e444 ported credential handling UI to dyn reg and res reg pages 2014-06-09 18:13:43 -04:00
Justin Richer bafd951dac removed extraneous data checks from resource registration 2014-06-09 17:41:48 -04:00
Justin Richer 53148f2c87 better auth method checking in dynamic registration and resource registration 2014-06-09 17:41:27 -04:00
Justin Richer f15b4a0f74 resource registration returned the wrong URL 2014-06-09 17:41:01 -04:00
Justin Richer b81e8e7ed5 got rid of extraneous "require client secret" box 2014-06-09 16:35:47 -04:00
Justin Richer 47cc005fe5 more sanity checking for client secrets 2014-06-09 16:06:57 -04:00
Justin Richer cac645484f client API now generates client secret only for clients that require a client secret 2014-06-09 16:00:55 -04:00
Justin Richer 71fa796b42 Allow public clients to use token endpoint, closes #611, closes #613 2014-06-09 15:55:06 -04:00
Josh Mandel 5ec7404e7b Fix missing redirect URIs in dynreg view 
Fix more property names in dynreg view
 2014-06-06 12:21:38 -07:00
Justin Richer 52e53ba219 extracted validation exception, refactored protected resource registration endpoint to use this format 2014-06-06 11:13:41 -04:00
Justin Richer b7a8bbdddc cleanup, error wrappers on protected resource registration 2014-06-06 10:58:40 -04:00
Justin Richer deaccf437e refactored dynamic registration endpoint's checks for client consistency 2014-06-06 10:18:40 -04:00
Justin Richer 22ab1173a7 cleaned up dynreg self-service page to account for single-selection of grant types 2014-06-05 19:44:49 -04:00
Justin Richer 04f7a698ea added response type consistency checking, closes #430 2014-06-05 19:41:06 -04:00
Justin Richer 32101ff7b2 added parsing checks, fixed inverted logic, cleaned up redundant settings, closes #597 2014-06-05 19:06:03 -04:00
Justin Richer ab083c0963 added checks to dynamic registration endpoint that disallow registration of multiple incompatible grant types 2014-06-05 17:16:35 -04:00
Justin Richer cdd23df7ee token introspection now returns user "sub" when available in addition to "user_id", closes #507 (might cause incompatibility problems) 2014-06-04 17:27:38 -04:00
Justin Richer 85acfa90db [maven-release-plugin] prepare for next development iteration 2014-06-04 14:51:32 -04:00
Justin Richer d5e4cb45a2 [maven-release-plugin] prepare release mitreid-connect-1.1.7 2014-06-04 14:51:29 -04:00