github
/
OpenID-Connect-Java-Spring-Server
mirror of https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
1,917 Commits
17 Branches
69 Tags
78 MiB
Commit Graph

1167 Commits (714acb8bdd8381887b2c2171d6a6d09e95b96022)

Author SHA1 Message Date
Justin Richer caeaa7dd78 added registration token API 2014-10-07 17:06:29 -04:00
Justin Richer 9c732fd1cd Ported date format changes from 1.0.x 2014-10-07 16:20:01 -04:00
arielak 01448d99c1 Separated date formatting and parsing functions to DateUtil class. Modified how timezone is printed to workaround Java date formatting issue. 
Conflicts:
	openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/MITREidDataService_1_0.java
 2014-10-07 16:20:01 -04:00
Justin Richer 44715bd230 made binary encode/decode null safe 2014-10-07 16:20:01 -04:00
arielak 274b3dae18 Fixed reading/writing of approved access tokens 2014-10-07 16:20:00 -04:00
arielak 500b13f374 Fixed netbeans copyright weirdness 2014-10-07 16:20:00 -04:00
arielak a444850898 Added support for 1.1 config import/export, and separated common functions into 1_X abstract class 2014-10-07 16:20:00 -04:00
arielak cc8718c83d Added support for whitelisted and blacklisted site export 2014-10-07 16:20:00 -04:00
arielak a44e5e22fe Added support for whitelisted and blacklisted site import from a 1.0 config 2014-10-07 16:20:00 -04:00
arielak 942696c99f NPE fix 2014-10-07 16:20:00 -04:00
arielak b677b96595 Re-enabled reading of system scopes. Added 1.1 data export functionality 2014-10-07 16:20:00 -04:00
arielak e2119884a5 Added services for data import/export and modified JpaAuthenticationHolderEntity and Repository to allow getting all objects 2014-10-07 16:20:00 -04:00
Justin Richer b617fe0c4b externalized view name strings and tied them to view beans 2014-10-07 16:19:59 -04:00
Justin Richer f18f1701a3 moved the API endpoints, made resource tokens accessible too 2014-10-07 16:19:59 -04:00
Justin Richer 71da72de81 import cleanup 2014-10-07 16:19:59 -04:00
Justin Richer 9fcc5077ca added API for getting tokens by clientid 2014-10-07 16:19:59 -04:00
Justin Richer 9ebeeb4b79 fixed missing null check in request object parser 2014-10-07 16:19:58 -04:00
Justin Richer 6f2f807b0b [maven-release-plugin] prepare for next development iteration 2014-08-05 21:54:51 -04:00
Justin Richer 93ae1516a5 [maven-release-plugin] prepare release mitreid-connect-1.1.9 2014-08-05 21:54:47 -04:00
Justin Richer 39c50b76f4 added null checks to endpoint auth method switches, closes #652 2014-07-31 23:05:17 -04:00
Justin Richer 8768188133 makes the grant types checker softer, closes #640 2014-07-19 23:54:02 -07:00
Justin Richer 9666404d54 added "none" to discovery endpoint 2014-07-16 23:48:18 -04:00
Justin Richer 7476edb310 added unsigned ID token support to server 2014-07-16 22:29:13 -04:00
Justin Richer 538c4031bb added in better default checks for content negotiation 2014-07-02 16:01:26 -04:00
Justin Richer 078bf5e464 combine HTTP content negotiation with client preferences for user info endpoint 2014-06-28 23:44:37 -04:00
Justin Richer 1de2a61176 made accept header optional for user info request 2014-06-28 22:20:05 -04:00
Justin Richer 04acc21eea removed injection of admin email address from client API, will happen browser-side now 2014-06-26 13:00:36 -04:00
Justin Richer adf477c64e [maven-release-plugin] prepare for next development iteration 2014-06-18 18:27:27 -04:00
Justin Richer 8d97ed61ec [maven-release-plugin] prepare release mitreid-connect-1.1.8 2014-06-18 18:27:25 -04:00
Justin Richer 5773fe195b set proper content type on user info JWT response 2014-06-18 18:05:11 -04:00
Justin Richer 5f97ce0ca1 fixed error code string 2014-06-18 14:50:17 -04:00
Justin Richer 6589cd717d disallow fragments in redirect uris for dynamic clients, closes #622 2014-06-18 14:49:29 -04:00
Justin Richer 4e52543091 more properly respond to some client registration errors 2014-06-18 14:45:55 -04:00
Justin Richer c493f438e7 applied token rotation to protected resources 2014-06-12 19:37:50 -04:00
Justin Richer f4edd3164f made timeout field optional, tokens don't expire in the default case 2014-06-12 19:37:32 -04:00
Trilok Jain 4e09ec687b Registration Token regeneration - when they are beyond their lifetime 
(in read/update calls)
 2014-06-12 19:12:32 -04:00
Trilok Jain ed3e6a2814 https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server/issues/431: 
Generating a new registration access token on read/update call and
revoking the token issued earlier.
 2014-06-12 19:12:32 -04:00
Justin Richer a106121af3 created blacklist aware redirect resolver and wired it in, closes #549 2014-06-10 16:29:45 -04:00
Justin Richer a97f3e2d65 don't throw away creation time on protected resource update (oops) 2014-06-09 20:22:58 -04:00
Justin Richer e0fe22e4ba don't regenerate client secrets every single time 2014-06-09 20:20:36 -04:00
Justin Richer 53148f2c87 better auth method checking in dynamic registration and resource registration 2014-06-09 17:41:27 -04:00
Justin Richer f15b4a0f74 resource registration returned the wrong URL 2014-06-09 17:41:01 -04:00
Justin Richer 47cc005fe5 more sanity checking for client secrets 2014-06-09 16:06:57 -04:00
Justin Richer cac645484f client API now generates client secret only for clients that require a client secret 2014-06-09 16:00:55 -04:00
Justin Richer 52e53ba219 extracted validation exception, refactored protected resource registration endpoint to use this format 2014-06-06 11:13:41 -04:00
Justin Richer b7a8bbdddc cleanup, error wrappers on protected resource registration 2014-06-06 10:58:40 -04:00
Justin Richer deaccf437e refactored dynamic registration endpoint's checks for client consistency 2014-06-06 10:18:40 -04:00
Justin Richer 04f7a698ea added response type consistency checking, closes #430 2014-06-05 19:41:06 -04:00
Justin Richer 32101ff7b2 added parsing checks, fixed inverted logic, cleaned up redundant settings, closes #597 2014-06-05 19:06:03 -04:00
Justin Richer ab083c0963 added checks to dynamic registration endpoint that disallow registration of multiple incompatible grant types 2014-06-05 17:16:35 -04:00
Justin Richer cdd23df7ee token introspection now returns user "sub" when available in addition to "user_id", closes #507 (might cause incompatibility problems) 2014-06-04 17:27:38 -04:00
Justin Richer 85acfa90db [maven-release-plugin] prepare for next development iteration 2014-06-04 14:51:32 -04:00
Justin Richer d5e4cb45a2 [maven-release-plugin] prepare release mitreid-connect-1.1.7 2014-06-04 14:51:29 -04:00
Justin Richer 8861220632 stats on home page are now loaded in the background (makes main site load much faster) 2014-06-04 14:39:30 -04:00
Justin Richer 3e4aae6c8a hash tests now pass on Java8 2014-05-29 17:41:56 -04:00
Justin Richer dfdc4ed52d fixed information leaks from approved site API 2014-05-28 18:21:46 -04:00
Alexander Imfeld a84c10fc1c Change copyright from Netcetera to MITRE/MIT-KIT. 2014-05-28 08:52:31 +02:00
Justin Richer 2797731597 fixed unit test to account for cascading tokens 2014-05-27 20:39:19 -04:00
Justin Richer d2c83104fb cascade token saves 2014-05-27 19:28:38 -04:00
Josh Mandel 7f8cbcea39 Use return value from TokenEnhancer.enhance 2014-05-27 19:23:44 -04:00
Justin Richer be98b9cd0b [maven-release-plugin] prepare for next development iteration 2014-05-27 14:00:40 -04:00
Justin Richer 8320f0eefe [maven-release-plugin] prepare release mitreid-connect-1.1.6 2014-05-27 14:00:37 -04:00
Justin Richer 0c8cacd59a added missing copyright headers 2014-05-27 13:46:47 -04:00
Justin Richer 525f3aa2a8 Cleaned up indentation, whitespace, and imports. 2014-05-27 13:02:49 -04:00
Justin Richer 8185171119 minor clean up 2014-05-27 11:54:45 -04:00
Justin Richer 5ab516de48 prevent clients from registering with special resource scope 2014-05-26 17:39:20 -04:00
Justin Richer c34357a433 added resource registration endpoint with basic functionality and specialized tokens 2014-05-26 16:30:24 -04:00
Justin Richer 960319b796 improved logging configuration, removed transactional from service 2014-05-25 15:38:44 -04:00
Justin Richer 85fd4e71ce typo in error message 2014-05-25 15:37:58 -04:00
Justin Richer 2af51dc77a better URI check for prompt filter short circuit 2014-05-25 14:24:25 -04:00
Justin Richer f4a1a2acff fixed prompt filter coding error 2014-05-24 23:16:29 -04:00
Justin Richer 89d55e3d33 added support for default max auth age and require auth time, made prompt filter only work on authorization endpoint 2014-05-24 22:12:41 -04:00
Justin Richer 5c6e75bd53 cleaned up UI for client editing 2014-05-24 20:56:54 -04:00
Justin Richer 05e9624ae3 added support for encrypted and symmetrically signed id tokens and user info responses 2014-05-23 21:15:50 -04:00
Justin Richer ffe1b29906 Added Signed JWT support to UserInfo endpoint response, closes #593 2014-05-23 19:15:03 -04:00
Justin Richer e4d5f4a540 added system wide cache for all symmetric validators, closes # 557 2014-05-23 16:16:06 -04:00
Justin Richer ca333d256b Appropriately catch runtime exceptions in all guava caches, closes #603 2014-05-23 15:00:40 -04:00
Justin Richer df9c9747ce more reasonable check for whether or not a user auth is present, addresses #602 2014-05-23 11:49:51 -04:00
Justin Richer 4e890a4d7d enforce clients using a redirect flow have at least one redirect uri registered when using dynamic registration, made error handling more consistent across all APIs 
closes #596
 2014-05-21 18:29:51 -04:00
Justin Richer a225b00920 added null check and permissions check to ID token generation, closes #602 2014-05-21 17:45:25 -04:00
Justin Richer 880014176f [maven-release-plugin] prepare for next development iteration 2014-05-13 18:23:11 -04:00
Justin Richer ca8a003e3d [maven-release-plugin] prepare release mitreid-connect-1.1.5 2014-05-13 18:23:08 -04:00
Justin Richer dcf36234c4 moved CSRF generator to request parser instead of confirmation controller 2014-05-13 09:48:34 -04:00
Justin Richer a253ebc908 added CSRF protection to approval page 2014-05-13 09:27:02 -04:00
Justin Richer fcfbf1080f renamed auth request variable 2014-05-13 09:26:27 -04:00
Alexander Imfeld 7cd36b471f Make introspection endpoint access authorization pluggable. 2014-05-07 16:44:56 +02:00
Justin Richer 4b697ba909 webfinger checks host on acct: URIs, closes #404 2014-04-25 21:21:00 -04:00
Justin Richer b8129bf60d [maven-release-plugin] prepare for next development iteration 2014-04-21 19:19:10 -04:00
Justin Richer a9e34ac9bd [maven-release-plugin] prepare release mitreid-connect-1.1.4 2014-04-21 19:19:07 -04:00
Justin Richer 376403fa4a account for registration time in approval page, closes #550 2014-04-19 07:28:20 -04:00
Justin Richer 1d2f968bd1 configuration cleanup, closes #568 2014-04-18 22:11:58 -04:00
Justin Richer 318a28ddf8 added stats mock to unit tests 2014-04-16 22:05:03 -04:00
Justin Richer 521017c5c2 updated stats service to have a resettable cache triggered by other service events 2014-04-16 21:39:37 -04:00
Justin Richer 7f310400b1 simple cache for stats 2014-04-16 21:18:12 -04:00
kangelov 39509bfdc4 Performance improvement of token cleanup: 
an alternative token cleanup mechanism designed to maintain a very compact memory footprint while performing cleanup in consecutive runs of the cleanup thread. This serves to address OutOfMemoryException issues of the original token cleanup mechanism when process is under load. Also, added cleanup of the authentication_holder table.
 2014-04-10 23:38:37 -04:00
kangelov 265624b285 a fix for a NullPointerException whenever a client requests a client scope to be granted. 2014-04-10 22:41:20 -04:00
Justin Richer 97cd00e06c [maven-release-plugin] prepare for next development iteration 2014-03-19 21:40:21 -04:00
Justin Richer 23c7cf6996 [maven-release-plugin] prepare release mitreid-connect-1.1.3 2014-03-19 21:40:18 -04:00
Justin Richer ad5ffb64e8 [maven-release-plugin] prepare for next development iteration 2014-03-08 11:17:40 +00:00
Justin Richer 1635cf957d [maven-release-plugin] prepare release mitreid-connect-1.1.2 2014-03-08 11:17:35 +00:00