|  Justin Richer | dbdc2e777d | added pairwise identifier service and repository | 2013-09-10 17:15:58 -04:00 | 
				
					
						|  Justin Richer | bdf62eaa36 | need to check the sector identifier at some point | 2013-09-10 16:35:51 -04:00 | 
				
					
						|  Justin Richer | 914f2e4d93 | added new call to get the UserInfo in context with the requesting client to allow for pairwise identifiers. temporary implementation of pairwise identifiers in place | 2013-09-10 16:01:17 -04:00 | 
				
					
						|  Justin Richer | 149fb1bac1 | services shouldn't be transactional | 2013-09-10 15:26:09 -04:00 | 
				
					
						|  Justin Richer | 29d1c7d54a | userinfo endpoint now uses OAuth2Authentication exclusively (which is all it was really doing before) | 2013-09-10 14:16:34 -04:00 | 
				
					
						|  Justin Richer | ac42c00062 | id token now uses userinfo's sub | 2013-09-10 13:50:49 -04:00 | 
				
					
						|  Justin Richer | f139541485 | added randomized subs to demo users | 2013-09-10 13:48:37 -04:00 | 
				
					
						|  Justin Richer | b9da10d176 | look up by username instead of subject | 2013-09-10 11:39:00 -04:00 | 
				
					
						|  Justin Richer | 9ea82aacf0 | clean up unused getter/setter | 2013-09-10 11:38:42 -04:00 | 
				
					
						|  Justin Richer | 9720b60f05 | allow loading of structured scopes from scopes.sql file (and temp tables) | 2013-09-06 16:07:25 -04:00 | 
				
					
						|  Justin Richer | 5e676e0e59 | fixed scope UI | 2013-09-06 16:07:25 -04:00 | 
				
					
						|  Justin Richer | 2b663bb23c | UI for scope editing | 2013-09-06 16:07:25 -04:00 | 
				
					
						|  Justin Richer | 469e722f72 | defer to system scope matcher in approval handler | 2013-09-06 16:07:25 -04:00 | 
				
					
						|  Justin Richer | 99ad9b883e | added validator that knows how to deal with structured scopes | 2013-09-06 16:07:25 -04:00 | 
				
					
						|  Justin Richer | 59187d47e4 | use new unified parsing for approval page | 2013-09-06 16:07:25 -04:00 | 
				
					
						|  Justin Richer | 85533d50cf | scope comparison for TofuUserApprovalHandler | 2013-09-06 16:07:25 -04:00 | 
				
					
						|  Justin Richer | 1c4c53f252 | scope comparison for introspection endpoint | 2013-09-06 16:07:24 -04:00 | 
				
					
						|  Justin Richer | 6152a943d8 | serialize structured scopes properly (with tests) | 2013-09-06 16:07:24 -04:00 | 
				
					
						|  Justin Richer | 72f0ab631d | added transient structured value to system scope, added scope matcher function to scope service | 2013-09-06 16:07:24 -04:00 | 
				
					
						|  Justin Richer | 3fc34f15c8 | added structured scope update to mysql (affects #455) | 2013-09-06 16:07:24 -04:00 | 
				
					
						|  Josh Mandel | b416888b07 | Structured Scopes from BB+ | 2013-09-06 16:07:24 -04:00 | 
				
					
						|  Justin Richer | 127507246e | if the client doesn't ask for any system scopes, but asks for some non-system scopes, they'll now get the defaults instead of none addresses #498 | 2013-09-06 13:30:22 -04:00 | 
				
					
						|  Justin Richer | 64bbb73d1b | cleaned up CORS filter implementation | 2013-09-03 16:01:19 -04:00 | 
				
					
						|  Justin Richer | 6ff4ae1458 | added CORS filter | 2013-09-03 15:17:18 -04:00 | 
				
					
						|  Justin Richer | 81cb60ad7b | made introspection and revocation work with basic auth (and possible OAuth tokens, but that needs more work) | 2013-09-03 15:17:16 -04:00 | 
				
					
						|  Justin Richer | bdbff8d45c | tell spring to not stuff model into the redirects, partially addresses #492 | 2013-08-30 16:38:07 -04:00 | 
				
					
						|  Justin Richer | 84f097edf4 | removed outdated client credentials filter, addresses #491 | 2013-08-30 11:48:52 -04:00 | 
				
					
						|  Justin Richer | d7be122a21 | added basic user profile view implementation | 2013-08-29 17:33:42 -04:00 | 
				
					
						|  Justin Richer | 55ea880396 | hide admin panels from non-admin users, addresses #472 | 2013-08-29 17:15:13 -04:00 | 
				
					
						|  Justin Richer | 235029ba0e | inject user's authorities into javascript context | 2013-08-29 16:58:36 -04:00 | 
				
					
						|  Justin Richer | eab4563551 | inject user's email address into contacts on dynamic registration | 2013-08-29 16:58:24 -04:00 | 
				
					
						|  Justin Richer | be6179d1ac | inject the current user into the javascript context | 2013-08-29 16:44:01 -04:00 | 
				
					
						|  Justin Richer | 5c10eef8b7 | added delete function | 2013-08-29 14:18:54 -04:00 | 
				
					
						|  Justin Richer | d92b7c4810 | changed display of core client components, added warning | 2013-08-29 11:50:05 -04:00 | 
				
					
						|  Justin Richer | 4009d9ea82 | added create and update functions | 2013-08-29 11:11:37 -04:00 | 
				
					
						|  Justin Richer | 8e6da2b936 | json view and form elements | 2013-08-28 16:42:43 -04:00 | 
				
					
						|  Justin Richer | 36151975c1 | added client read and oauth token support for CRUD abilities | 2013-08-28 15:32:18 -04:00 | 
				
					
						|  Justin Richer | ead99474be | fixed panels for client form | 2013-08-28 14:38:03 -04:00 | 
				
					
						|  Justin Richer | fb66af2071 | added form editor and control for newly-registered clients | 2013-08-28 14:20:20 -04:00 | 
				
					
						|  Justin Richer | 51973ea595 | added dev page for self-service client registration | 2013-08-28 14:17:30 -04:00 | 
				
					
						|  William Kim | 2108311d65 | Revert "refactored code to use the more generic JWT declaration." This reverts commit e0b56bc72a. | 2013-08-26 15:33:08 -04:00 | 
				
					
						|  William Kim | e0b56bc72a | refactored code to use the more generic JWT declaration. | 2013-08-26 11:32:46 -04:00 | 
				
					
						|  Justin Richer | ca777f7dc4 | proper null check for client's preferred signature method | 2013-08-20 16:45:45 -04:00 | 
				
					
						|  William Kim | 07bec462cc | added comment about why we can't use set intersection method. | 2013-08-20 14:09:14 -04:00 | 
				
					
						|  William Kim | b89436d7b9 | UserInfoView returning intersection of claims request parameter and request object claims in effect now. | 2013-08-20 08:55:56 -04:00 | 
				
					
						|  Justin Richer | bd3d2a5cee | created crypto tab | 2013-08-19 17:35:05 -04:00 | 
				
					
						|  Justin Richer | 3f66d16236 | removed NYI tag from ID token signing alg | 2013-08-19 17:31:13 -04:00 | 
				
					
						|  Justin Richer | 48a9202f79 | fixed jquery.on regex to be less aggressive | 2013-08-19 17:20:29 -04:00 | 
				
					
						|  Amanda Anganes | 941e9544e2 | Compare client_ids instead of Client objects | 2013-08-19 16:55:56 -04:00 | 
				
					
						|  Amanda Anganes | 3eae6f2789 | Changed client algorithm check to look for null instead of JWSAlgorithm.NONE, which is a valid value. | 2013-08-19 16:55:29 -04:00 | 
				
					
						|  Amanda Anganes | 0059c7b4cc | Use clients preferred algorithm, if any, to sign | 2013-08-19 16:33:18 -04:00 | 
				
					
						|  Justin Richer | 2fb138aa19 | fixed jquery.on syntax bug, addresses #346 | 2013-08-19 16:07:34 -04:00 | 
				
					
						|  Justin Richer | 8edc8cc69a | Disable unsupported JOSE algorithms in UI, addresses #476 | 2013-08-19 15:52:00 -04:00 | 
				
					
						|  Justin Richer | 8c91861188 | load server configuration into JS app | 2013-08-19 15:52:00 -04:00 | 
				
					
						|  Justin Richer | e40b1cf850 | animated loading bar for management console | 2013-08-19 15:52:00 -04:00 | 
				
					
						|  Justin Richer | a80c19384f | added 'use server default' to JOSE options, addresses #462 | 2013-08-19 15:52:00 -04:00 | 
				
					
						|  William Kim | b54f33d0db | fixed json elements of "claims" and "userinfo" being processed out of order. | 2013-08-19 14:15:53 -04:00 | 
				
					
						|  William Kim | 7b813c79ee | parsing "claims" parameter directly from userinfoendpoint requests. | 2013-08-19 13:32:34 -04:00 | 
				
					
						|  William Kim | 1ffbb39a2b | refactored json parser to a private static field. | 2013-08-19 13:30:56 -04:00 | 
				
					
						|  William Kim | 89056bd911 | removed test-specific constructor and default constructor. | 2013-08-19 13:30:56 -04:00 | 
				
					
						|  Justin Richer | ba0c3c5d78 | id tokens always expire, addresses #416 | 2013-08-19 12:42:37 -04:00 | 
				
					
						|  William Kim | 7e51a361ba | changed to using relative em lengths instead of hard px length values for token timeout form elements. | 2013-08-15 16:19:47 -04:00 | 
				
					
						|  Justin Richer | c1ee5141a4 | added back default timeouts and fixed refresh token check | 2013-08-15 15:50:36 -04:00 | 
				
					
						|  William Kim | 00db39dab9 | addresses issue #471. setting default timeout values in the backbone model to null. | 2013-08-15 15:29:16 -04:00 | 
				
					
						|  Justin Richer | 1b674b6420 | restored bootstrap to out-of-the-box formatting, addresses #454 | 2013-08-15 14:50:18 -04:00 | 
				
					
						|  William Kim | a6bb56ed9a | unit select box appropriately disabled after saving now. | 2013-08-15 14:03:25 -04:00 | 
				
					
						|  William Kim | 86c6a0ea8b | clear token timeout form fields when disabled and also disable unit selector. | 2013-08-15 13:09:53 -04:00 | 
				
					
						|  William Kim | 3f01ae1a71 | renamed token expiration form field ids from -seconds to -time. | 2013-08-15 11:13:29 -04:00 | 
				
					
						|  William Kim | 2242db5c11 | shortened token timeout form fields. | 2013-08-15 11:13:29 -04:00 | 
				
					
						|  William Kim | 6f8143937e | dropdown time unit chooser added for token expiration. | 2013-08-15 11:13:29 -04:00 | 
				
					
						|  William Kim | 7ab53795b1 | refactor js. getFormTokenValue() -> getFormTokenNumberValue(). | 2013-08-15 11:13:29 -04:00 | 
				
					
						|  Justin Richer | 7d51335055 | added prompt=login support, addresses #323 | 2013-08-14 17:00:56 -04:00 | 
				
					
						|  Justin Richer | a0646452ab | test for max_age, force login if not fresh enough, addresses #467 | 2013-08-14 16:50:51 -04:00 | 
				
					
						|  Justin Richer | 6c1e91b7e3 | auth_time is now tracked, addresses #288 | 2013-08-14 15:39:41 -04:00 | 
				
					
						|  Amanda Anganes | e88c6c4943 | Changed predicates methods to use Collections2.filter rather than Sets.filter | 2013-08-13 10:31:39 -04:00 | 
				
					
						|  William Kim | f1357cceb4 | corrected output for badly-formatted timeout date. | 2013-08-12 16:20:42 -04:00 | 
				
					
						|  William Kim | 025eb05d3a | added date format validity check for moment.js usage. | 2013-08-12 16:15:06 -04:00 | 
				
					
						|  William Kim | c1607b53e4 | null-checking in date display for approved sites. | 2013-08-12 15:52:30 -04:00 | 
				
					
						|  William Kim | d67a492b6c | date display logic to use moment.js. | 2013-08-12 15:03:46 -04:00 | 
				
					
						|  William Kim | ba7e791985 | initial moment time formatting commit. | 2013-08-12 12:15:47 -04:00 | 
				
					
						|  William Kim | a72ba6d98b | importing moment.js library. | 2013-08-12 11:23:43 -04:00 | 
				
					
						|  William Kim | 6687e3a831 | override createOAuth2Request method for factory iss #465. | 2013-08-09 13:03:46 -04:00 | 
				
					
						|  Amanda Anganes | ef4482249c | Dyn-reg endpoint now creates the registration access token from scratch instead of calling token services; token services no longer needs to check for RAT scope to avoid expiring RATs | 2013-08-09 11:49:11 -04:00 | 
				
					
						|  Justin Richer | 15e512cec3 | renamed JWSUtils -> IdTokenHashUtils, renamed internal variables | 2013-08-08 14:34:19 -04:00 | 
				
					
						|  William Kim | 0f16bacc63 | TestJWSUtils done. | 2013-08-08 14:10:35 -04:00 | 
				
					
						|  William Kim | 2ba8ad71f1 | updated hash tests. | 2013-08-08 14:10:35 -04:00 | 
				
					
						|  William Kim | cdd3a6d478 | changed at_hash/c_hash impl. HMAC-SHA --> regular SHA. | 2013-08-08 14:10:35 -04:00 | 
				
					
						|  Amanda Anganes | fd611ce353 | Had an unsaved file hanging around - formatting JSPs | 2013-08-08 14:03:59 -04:00 | 
				
					
						|  Amanda Anganes | a91f160e34 | Fixed formatting in tag files | 2013-08-08 14:00:01 -04:00 | 
				
					
						|  Amanda Anganes | 5beac9d50d | Fixed formatting in JSPs | 2013-08-08 13:18:14 -04:00 | 
				
					
						|  Amanda Anganes | 2d4d7f7be9 | Had to hand-merge some things; git got confused | 2013-08-07 10:59:55 -04:00 | 
				
					
						|  Amanda Anganes | 861beeba64 | Added c_hash function, added stub of unit test for JWSUtils | 2013-08-07 10:43:26 -04:00 | 
				
					
						|  Amanda Anganes | 37580cc21e | JWSUtils uses JWSAlgorithm to match bit length; ConnectTokenEnhancer calls the util method now | 2013-08-07 10:41:53 -04:00 | 
				
					
						|  Amanda Anganes | 3a591dc1f4 | Added JWSUtils class; | 2013-08-07 10:38:28 -04:00 | 
				
					
						|  Amanda Anganes | be97aedbc7 | Used Predicates to filter expired tokens and approved sites; | 2013-08-06 16:42:49 -04:00 | 
				
					
						|  Amanda Anganes | b3bb43881d | Moved getExpired to service layers | 2013-08-06 16:33:27 -04:00 | 
				
					
						|  Amanda Anganes | eea37cf79c | Fixed token expiration bug by removing jsql queries. Instead expired tokens or approved sites are filtered at the repository level | 2013-08-06 11:28:13 -04:00 | 
				
					
						|  Amanda Anganes | ce4ab6a766 | Updated spring version to 3.2.3; added a 10-minute initial delay to the scheduled tasks in task-config.xml | 2013-08-05 16:31:56 -04:00 | 
				
					
						|  Amanda Anganes | 265214511c | Renamed oAuth2RequestFactory | 2013-08-05 14:04:48 -04:00 | 
				
					
						|  Amanda Anganes | a4c1a7a37d | Issue 449 | 2013-08-02 11:20:47 -04:00 | 
				
					
						|  Amanda Anganes | 9dda789488 | Updated database tables | 2013-08-02 11:16:11 -04:00 | 
				
					
						|  Amanda Anganes | 2f711c88a7 | Removed nonce service | 2013-08-02 10:56:28 -04:00 | 
				
					
						|  Amanda Anganes | d4fbb4f599 | Removed Event class | 2013-08-02 10:06:41 -04:00 | 
				
					
						|  William Kim | 88863f4910 | replaced mock TokenRequest and the storedAuth test field with concrete objects. test should pass now. | 2013-07-30 11:42:11 -04:00 | 
				
					
						|  William Kim | 1392faa83c | replaced mock client auth with concrete OAuth2Request object | 2013-07-30 11:42:11 -04:00 | 
				
					
						|  Amanda Anganes | ad2ace6d74 | Do not expire registration tokens | 2013-07-30 11:33:15 -04:00 | 
				
					
						|  Justin Richer | beaeaa4ccc | I can spell "consortium", I promise | 2013-07-29 17:40:26 -04:00 | 
				
					
						|  Justin Richer | b2b6fd6448 | further cleanup | 2013-07-29 17:00:35 -04:00 | 
				
					
						|  Justin Richer | 856c0ea0b5 | Merge commit '023dd440d4a0e6e59a14c88013837d79a77c74e0' into 1.1-merge Conflicts:
	openid-connect-client/pom.xml
	openid-connect-client/src/main/java/org/mitre/oauth2/introspectingfilter/AuthorizationRequestImpl.java
	openid-connect-client/src/main/java/org/mitre/oauth2/introspectingfilter/IntrospectingTokenService.java
	openid-connect-client/src/main/java/org/mitre/oauth2/introspectingfilter/IntrospectionAuthorityGranter.java
	openid-connect-client/src/main/java/org/mitre/oauth2/introspectingfilter/IntrospectionUrlProvider.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/OIDCAuthenticationFilter.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/OIDCAuthenticationProvider.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/keypublisher/ClientKeyPublisher.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/keypublisher/ClientKeyPublisherMapping.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/keypublisher/JwkViewResolver.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/AuthRequestUrlBuilder.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/ClientConfigurationService.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/impl/StaticClientConfigurationService.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/impl/StaticServerConfigurationService.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/impl/StaticSingleIssuerService.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/impl/ThirdPartyIssuerService.java
	openid-connect-client/src/test/java/org/mitre/openid/connect/client/AbstractOIDCAuthenticationFilterTest.java
	openid-connect-common/pom.xml
	openid-connect-common/src/main/java/org/mitre/jose/keystore/JWKSetKeyStore.java
	openid-connect-common/src/main/java/org/mitre/jwt/signer/service/JwtSigningAndValidationService.java
	openid-connect-common/src/main/java/org/mitre/jwt/signer/service/impl/DefaultJwtSigningAndValidationService.java
	openid-connect-common/src/main/java/org/mitre/jwt/signer/service/impl/JWKSetSigningAndValidationServiceCacheService.java
	openid-connect-common/src/main/java/org/mitre/oauth2/model/AuthorizationCodeEntity.java
	openid-connect-common/src/main/java/org/mitre/oauth2/model/ClientDetailsEntity.java
	openid-connect-common/src/main/java/org/mitre/oauth2/model/OAuth2AccessTokenEntity.java
	openid-connect-common/src/main/java/org/mitre/oauth2/model/OAuth2RefreshTokenEntity.java
	openid-connect-common/src/main/java/org/mitre/oauth2/model/SystemScope.java
	openid-connect-common/src/main/java/org/mitre/oauth2/repository/AuthorizationCodeRepository.java
	openid-connect-common/src/main/java/org/mitre/oauth2/repository/OAuth2TokenRepository.java
	openid-connect-common/src/main/java/org/mitre/oauth2/service/OAuth2TokenEntityService.java
	openid-connect-common/src/main/java/org/mitre/openid/connect/config/ConfigurationPropertiesBean.java
	openid-connect-common/src/main/java/org/mitre/openid/connect/config/ServerConfiguration.java
	openid-connect-common/src/main/java/org/mitre/openid/connect/model/ApprovedSite.java
	openid-connect-common/src/main/java/org/mitre/openid/connect/model/BlacklistedSite.java
	openid-connect-common/src/main/java/org/mitre/openid/connect/model/Event.java
	openid-connect-common/src/main/java/org/mitre/openid/connect/model/OIDCAuthenticationToken.java
	openid-connect-common/src/main/java/org/mitre/openid/connect/model/WhitelistedSite.java
	openid-connect-common/src/main/java/org/mitre/util/jpa/JpaUtil.java
	openid-connect-server/.gitignore
	openid-connect-server/pom.xml
	openid-connect-server/src/main/java/org/mitre/oauth2/repository/impl/JpaAuthorizationCodeRepository.java
	openid-connect-server/src/main/java/org/mitre/oauth2/service/impl/DefaultOAuth2AuthorizationCodeService.java
	openid-connect-server/src/main/java/org/mitre/oauth2/service/impl/DefaultOAuth2ClientDetailsEntityService.java
	openid-connect-server/src/main/java/org/mitre/oauth2/service/impl/DefaultOAuth2ProviderTokenService.java
	openid-connect-server/src/main/java/org/mitre/oauth2/service/impl/DefaultSystemScopeService.java
	openid-connect-server/src/main/java/org/mitre/oauth2/token/ChainedTokenGranter.java
	openid-connect-server/src/main/java/org/mitre/oauth2/token/JwtAssertionTokenGranter.java
	openid-connect-server/src/main/java/org/mitre/oauth2/view/TokenIntrospectionView.java
	openid-connect-server/src/main/java/org/mitre/oauth2/web/IntrospectionEndpoint.java
	openid-connect-server/src/main/java/org/mitre/oauth2/web/OAuthConfirmationController.java
	openid-connect-server/src/main/java/org/mitre/oauth2/web/RevocationEndpoint.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/ConnectOAuth2RequestFactory.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/assertion/JwtBearerAuthenticationProvider.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/assertion/JwtBearerClientAssertionTokenEndpointFilter.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/exception/InvalidJwtSignatureException.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/exception/UnknownUserInfoSchemaException.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/exception/UserNotFoundException.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/repository/impl/JpaApprovedSiteRepository.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/repository/impl/JpaUserInfoRepository.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/DefaultApprovedSiteService.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/DefaultNonceService.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/DefaultStatsService.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/DefaultUserInfoUserDetailsService.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/DefaultWhitelistedSiteService.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/token/ConnectTokenEnhancer.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/token/TofuUserApprovalHandler.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/view/AbstractClientEntityView.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/view/ClientInformationResponseView.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/view/ExceptionAsJSONView.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/view/JsonEntityView.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/view/JsonErrorView.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/view/POCOUserInfoView.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/view/StatsSummary.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/view/UserInfoView.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/ApprovedSiteAPI.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/BlacklistAPI.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/ClientAPI.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/ClientDynamicRegistrationEndpoint.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/ManagerController.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/RequestObjectAuthorizationEndpoint.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/StatsAPI.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/UserInfoEndpoint.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/UserInfoInterceptor.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/WhitelistAPI.java
	openid-connect-server/src/main/webapp/WEB-INF/tags/aboutContent.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/breadcrumbs.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/contactContent.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/copyright.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/header.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/landingPageAbout.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/landingPageContact.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/landingPageStats.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/landingPageWelcome.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/sidebar.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/statsContent.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/topbar.tag
	openid-connect-server/src/main/webapp/WEB-INF/views/about.jsp
	openid-connect-server/src/main/webapp/WEB-INF/views/approve.jsp
	openid-connect-server/src/main/webapp/WEB-INF/views/contact.jsp
	openid-connect-server/src/main/webapp/WEB-INF/views/exception/usernotfound.jsp
	openid-connect-server/src/main/webapp/WEB-INF/views/login.jsp
	openid-connect-server/src/main/webapp/WEB-INF/views/manage.jsp
	openid-connect-server/src/main/webapp/WEB-INF/views/stats.jsp
	pom.xml | 2013-07-29 16:21:20 -04:00 | 
				
					
						|  Justin Richer | 023dd440d4 | [maven-release-plugin] prepare for next development iteration | 2013-07-29 11:30:08 -04:00 | 
				
					
						|  Justin Richer | 5e8f93cf15 | [maven-release-plugin] prepare release mitreid-connect-1.0.6 | 2013-07-29 11:30:04 -04:00 | 
				
					
						|  Justin Richer | e658ffd7fc | format/cleanup and copyright | 2013-07-29 11:28:51 -04:00 | 
				
					
						|  Justin Richer | d4b544d519 | disable token API (for now) | 2013-07-29 11:23:07 -04:00 | 
				
					
						|  Amanda Anganes | 906db0ac86 | Opened token api access to all users; restricted to only show currently-logged-in-users tokens | 2013-07-29 09:18:08 -04:00 | 
				
					
						|  Justin Richer | 71da5b3d94 | clean up some discovery values | 2013-07-26 17:07:28 -04:00 | 
				
					
						|  Justin Richer | c62bed37ff | convert server to use normalizer | 2013-07-26 17:07:08 -04:00 | 
				
					
						|  William Kim | 93c3e7906f | put in line breaks into the extra long comments in DiscoveryEndpoint.java | 2013-07-25 09:25:06 -04:00 | 
				
					
						|  Justin Richer | 20871852c0 | updated dependencies for secoauth 1.1 | 2013-07-24 09:38:47 -04:00 | 
				
					
						|  Amanda Anganes | b397f0ae15 | First go at adding token API; needs to be tested | 2013-07-24 09:14:46 -04:00 | 
				
					
						|  Amanda Anganes | 88db457fc4 | Removed .springBeans from tracking; removed initializingbean in favor of @PostConstruct | 2013-07-18 09:34:52 -04:00 | 
				
					
						|  Amanda Anganes | dfbf01c9e3 | Added .springBeans to gitignore | 2013-07-16 15:03:44 -04:00 | 
				
					
						|  William Kim | aad432c5d7 | replaced stracktrace-printing with logger messages. removed some unused imports. | 2013-07-16 13:52:32 -04:00 | 
				
					
						|  William Kim | f483d41b88 | getCustomClaim -> getClaim. Also, removed outdated TODOs. | 2013-07-16 13:17:25 -04:00 | 
				
					
						|  William Kim | 17a96ca122 | removed resolved TODOs. Fixed by the resolution of issue #345. | 2013-07-15 14:54:01 -04:00 | 
				
					
						|  William Kim | 0d882faeca | added a TODO and fixed some comment typos. | 2013-07-15 14:24:04 -04:00 | 
				
					
						|  Amanda Anganes | 15aea61fbe | Applied code cleanup | 2013-07-12 16:58:41 -04:00 | 
				
					
						|  Amanda Anganes | 3e23967b46 | Updated code to reflect SECOAUTH changes | 2013-07-12 16:21:05 -04:00 | 
				
					
						|  William Kim | 9a6f345e15 | yes, allow default scoping if the client doesn't ask for any. | 2013-07-12 15:05:17 -04:00 | 
				
					
						|  William Kim | 3d312b7eb5 | Deleted PermissionDeniedException class. Unused. | 2013-07-12 11:40:11 -04:00 | 
				
					
						|  William Kim | c5743dc810 | updated unit tests to reflect new exception-throwing behavior. | 2013-07-12 11:36:34 -04:00 | 
				
					
						|  William Kim | ada54c297d | addresses issue #382. Throw an exception when client tries to upscope. | 2013-07-12 11:36:33 -04:00 | 
				
					
						|  Justin Richer | 0d8c2442d2 | [maven-release-plugin] prepare for next development iteration | 2013-07-12 10:09:41 -04:00 | 
				
					
						|  Justin Richer | 9bf5f70957 | [maven-release-plugin] prepare release mitreid-connect-1.0.5 | 2013-07-12 10:09:38 -04:00 | 
				
					
						|  Amanda Anganes | 12cb672c6d | Added new file for task config | 2013-07-12 09:46:18 -04:00 | 
				
					
						|  Amanda Anganes | 059c2545c9 | Split task configuration out into its own spring file | 2013-07-12 09:46:18 -04:00 | 
				
					
						|  William Kim | 910839e5d9 | fixed typo referring to client id as a client secret in code comments. | 2013-07-10 16:53:49 -04:00 | 
				
					
						|  Amanda Anganes | 2d3f43e3b8 | Added task scheduling for deleting expired tokens and approved sites. Configuration is all done in application-context.xml so that it is easy to configure | 2013-07-10 14:34:37 -04:00 | 
				
					
						|  Justin Richer | 93a0492e97 | made optional parameters optional | 2013-07-10 12:50:57 -04:00 | 
				
					
						|  Justin Richer | a9da88fb79 | brought introspection endpoint and introspection token services into compliance with draft, addresses #376 | 2013-07-10 12:50:57 -04:00 | 
				
					
						|  Josh Mandel | 34373d777c | base URL of the server is set by the issuer. | 2013-07-08 13:06:52 -04:00 | 
				
					
						|  William Kim | 3eddd58ae4 | added unit test for checking expiration date of refreshed tokens. | 2013-07-05 15:35:23 -04:00 | 
				
					
						|  William Kim | 24b24f6fa3 | More unit tests for refreshing access tokens--specifically, checking scope processing. | 2013-07-05 15:22:45 -04:00 | 
				
					
						|  William Kim | 5ffe1a50a2 | Added null-handling for Scope values from the auth request. (Without this, a NullPointerException gets thrown with null scope values). | 2013-07-05 15:14:56 -04:00 | 
				
					
						|  William Kim | ed2223cae3 | unit tests of exceptions cases for refreshing access tokens. | 2013-07-05 12:32:45 -04:00 | 
				
					
						|  William Kim | 3353b92426 | deeper unit tests on access token creation. | 2013-07-05 12:03:56 -04:00 | 
				
					
						|  Justin Richer | 936f581a0b | [maven-release-plugin] prepare for next development iteration | 2013-06-28 16:00:52 -04:00 | 
				
					
						|  Justin Richer | 27edec1a56 | [maven-release-plugin] prepare release mitreid-connect-1.0.4 | 2013-06-28 16:00:46 -04:00 | 
				
					
						|  William Kim | 10f9858870 | fixed typo on the about page. | 2013-06-28 15:44:08 -04:00 | 
				
					
						|  William Kim | 42027e451c | added REQUIRED response types to discovery doc. Also, fixed 2 typos in the list of supported grant types. | 2013-06-28 15:31:50 -04:00 | 
				
					
						|  William Kim | 2a92185433 | added introspection endpoint URL to discovery document. | 2013-06-28 15:31:50 -04:00 | 
				
					
						|  William Kim | 741946d1ae | updated server discovery code comments. | 2013-06-28 15:31:50 -04:00 | 
				
					
						|  William Kim | f27b69d06b | removed Version field from server discovery configuration. | 2013-06-28 15:31:50 -04:00 | 
				
					
						|  Justin Richer | 5505b26aac | Form fix for login elements addresses #352 | 2013-06-28 13:17:58 -04:00 | 
				
					
						|  William Kim | 4f9cbb4b3f | added check for null | 2013-06-27 09:29:47 -04:00 | 
				
					
						|  William Kim | 1528c93acd | TestDefaultSystemScopeService unit tests done. | 2013-06-25 16:31:45 -04:00 | 
				
					
						|  William Kim | eca62f2d36 | initial commit for TestDefaultSystemScopeService. | 2013-06-25 16:31:45 -04:00 | 
				
					
						|  William Kim | d0dc3c79cb | more unit tests for TestDefaultOAuth2ProviderTokenService. | 2013-06-25 16:31:45 -04:00 | 
				
					
						|  William Kim | dc51af5b83 | removed testing builder inner class from DefaultOAuth2ProviderTokenService. Also, added more unit tests. | 2013-06-25 16:31:45 -04:00 | 
				
					
						|  William Kim | 5ee7aae5d2 | initial commit TestDefaultOAuth2ProviderTokenService. | 2013-06-25 16:31:45 -04:00 | 
				
					
						|  William Kim | abc4f01dde | TestDefaultStatsService done. | 2013-06-25 16:31:45 -04:00 | 
				
					
						|  Amanda Anganes | c212821267 | Fixed ChainedTokenGranter setup | 2013-06-24 10:14:10 -04:00 | 
				
					
						|  Amanda Anganes | 530c3a75ee | Applyed refactoring | 2013-06-24 09:44:59 -04:00 | 
				
					
						|  William Kim | f0f2fbea40 | updated secoauth library version in poms | 2013-06-21 14:23:58 -04:00 | 
				
					
						|  Amanda Anganes | 8b1a538464 | Updated msql table definitions | 2013-06-20 16:28:09 -04:00 | 
				
					
						|  William Kim | cf3cee5ec2 | removed lolcat :( | 2013-06-20 11:14:29 -04:00 | 
				
					
						|  William Kim | 37dd7e7042 | changed demo user accounts for server | 2013-06-19 16:08:06 -04:00 | 
				
					
						|  Justin Richer | 2b3376e0ed | [maven-release-plugin] prepare for next development iteration | 2013-06-18 16:13:04 -04:00 | 
				
					
						|  Justin Richer | 7fe4bc3b56 | [maven-release-plugin] prepare release mitreid-connect-1.0.3 | 2013-06-18 16:12:59 -04:00 | 
				
					
						|  Justin Richer | d6f5ca68bf | Added time skew to nonce service test | 2013-06-18 15:30:36 -04:00 | 
				
					
						|  William Kim | 8935a87c23 | TestDefaultWhitelistedSiteService done. Removed constructors from DefaultWhitelistedSiteService. | 2013-06-18 15:20:06 -04:00 | 
				
					
						|  William Kim | 5fb1ef3aca | Revised test methods for checking for offline_access scope. Previous tests were doing trivial checking. | 2013-06-18 15:19:55 -04:00 | 
				
					
						|  William Kim | 8851f4d037 | TestDefaultOAuth2ClientDetailsEntityService done. Removed constructors from DefaultOAuth2ClientDetailsEntityService. | 2013-06-18 15:19:55 -04:00 | 
				
					
						|  William Kim | 701217d98c | TestDefaultNonceService done. | 2013-06-18 15:19:55 -04:00 | 
				
					
						|  William Kim | 4ee904cbfd | removed setter/getter from DefaultUserInfoUserDetailsService and updated test class with Mockito annotations. | 2013-06-18 15:19:46 -04:00 | 
				
					
						|  William Kim | 5428848627 | updated TestDefaultApprovedSiteService to use annotation style Mocking. Allows for removal of injector constructor. | 2013-06-18 15:19:46 -04:00 | 
				
					
						|  William Kim | 01fcb4828d | removed test constructors for DefaultBlacklistedSiteService.java. Used annotation method of injecting mock objects into testing class (@InjectMocks). | 2013-06-18 15:19:33 -04:00 | 
				
					
						|  William Kim | 9a3625ae2b | made unit test for checking blacklisted sites. Introduced a new constructor to be able to inject repository for testing. | 2013-06-18 15:19:33 -04:00 | 
				
					
						|  Justin Richer | c577b691c7 | moved OIDC auth token and userinfo interception filter to common package, addresses #353 | 2013-06-12 14:45:03 -04:00 | 
				
					
						|  Justin Richer | 8290d198c2 | added passthrough of userinfo for remote OIDC users | 2013-06-12 14:22:13 -04:00 | 
				
					
						|  Justin Richer | aea562f565 | moved mockito dependency to core project | 2013-06-10 14:11:43 -04:00 | 
				
					
						|  Justin Richer | 6ed7477bc0 | added stats to admin UI page, restyled scopes and dynamically registered flags | 2013-06-07 18:05:07 -04:00 | 
				
					
						|  Justin Richer | 6ec8b77f81 | beans version update (is this a config file? should this even be in here?) | 2013-06-07 18:05:07 -04:00 | 
				
					
						|  William Kim | 338edcce31 | fixed typos in admin.js | 2013-06-07 15:41:13 -04:00 | 
				
					
						|  Justin Richer | 9388c664ab | moved reuse refresh token checkbox to its own div/label, addresses #345 | 2013-06-06 16:42:26 -04:00 | 
				
					
						|  Justin Richer | 567a3314d6 | [maven-release-plugin] prepare for next development iteration | 2013-06-06 16:05:59 -04:00 | 
				
					
						|  Justin Richer | 1286726188 | [maven-release-plugin] prepare release mitreid-connect-1.0.2 | 2013-06-06 16:05:52 -04:00 | 
				
					
						|  Justin Richer | dc9d5c667e | cleaned up error log messages | 2013-06-06 13:44:50 -04:00 | 
				
					
						|  William Kim | 1b601abd6f | Removed previous constructor from DefaultUserInforUserDetailsService.java and put in getter/setter for UserInfoRepository as a replacement. | 2013-06-04 16:58:14 -04:00 | 
				
					
						|  Amanda Anganes | 3f7fe30f5c | Added comments to unit tests | 2013-05-31 15:31:54 -04:00 | 
				
					
						|  Amanda Anganes | a7f2e605fa | Added two unit tests using the Mockito framework | 2013-05-31 15:04:18 -04:00 | 
				
					
						|  Josh Mandel | b0dc5fb4e2 | Fix a bug where a client is deleted before details looked up. Also return 204 on success | 2013-05-31 14:30:51 -04:00 | 
				
					
						|  Amanda Anganes | 3c5025c52b | Updated version number for secoauth | 2013-05-28 15:38:36 -04:00 | 
				
					
						|  Amanda Anganes | 76e5ff8053 | Finished cleanup, ready to create pull request | 2013-05-28 12:43:33 -04:00 | 
				
					
						|  Josh Mandel | c46095b6a3 | Warning message for unimplemented UI features | 2013-05-22 22:41:35 -07:00 | 
				
					
						|  Justin Richer | 25d75a1b30 | [maven-release-plugin] prepare for next development iteration | 2013-05-20 17:38:01 -04:00 | 
				
					
						|  Justin Richer | 5418bdef5a | [maven-release-plugin] prepare release mitreid-connect-1.0.1 | 2013-05-20 17:37:52 -04:00 | 
				
					
						|  Justin Richer | 81cd13f6d3 | added RegisteredClient class to facilitate client configuration and dynamic registration, addresses #335 | 2013-05-20 17:19:28 -04:00 | 
				
					
						|  Justin Richer | 545ddace95 | updated registration URI, addresses #321 | 2013-05-10 11:54:48 -07:00 | 
				
					
						|  Justin Richer | cc9eea5b3d | updated issuer to more common deployment pattern for simple Tomcat instances, addresses #333 | 2013-05-10 11:46:16 -07:00 | 
				
					
						|  Amanda Anganes | 713f0a4d25 | Renamed OAuth2Request authorizatoinParameters map to requestParameters | 2013-05-03 17:07:04 -04:00 |