d337e14de3
Remove transitive commons-logging dependencies
...
We use slf4j instead; jcl-over-slf4j needs to be a compile-time dependency because we use it in several classes.
Unfortunately Maven does not have a way to exclude commons-logging globally, so we need to figure out which dependencies include it through `mvn dependency:tree` and specify an `<exclusion>` for each of them.
Finally, we upgrade to slf4j 1.7.12: http://www.slf4j.org/news.html .
2015-10-12 20:17:51 -04:00
301802abd3
Speed up servlet start
...
- Set metadata-complete="true" attribute on the <web-app> element.
- Add an empty <absolute-ordering /> element.
See:
https://wiki.apache.org/tomcat/HowTo/FasterStartUp#Configure_your_web_ap
plication
On my (old) machine, this reduces startup time with Jetty from 137580ms
to 20166ms.
2015-10-12 13:10:04 -04:00
90e4cb97ff
Upgrade jetty-maven-plugin and configure war path
...
Configuring war path enables `mvn jetty:run-war`.
2015-10-12 13:10:04 -04:00
8b7fc5de68
Update HikariCP to 2.4.1
...
https://github.com/brettwooldridge/HikariCP/blob/dev/CHANGES
2015-10-12 13:08:32 -04:00
9117e7fe31
Add SQL indexes for PostgreSQL and HSQLDB
2015-10-12 13:08:16 -04:00
7871ee0f26
Improve error message
2015-10-12 13:07:18 -04:00
58543ac9c4
Fix ID token icon description
2015-10-12 12:59:44 -04:00
b5c298e0ca
Remove legacy CSRF protection for approve page
...
Instead, we rely on the Spring Security CSRF protection, like we already do for the login page. Additionally, we remove the authentication check in`isApproved`, because this is already done by Spring Security (and if not, we have bigger problems to worry about).
2015-10-09 17:09:46 +02:00
8b362f23f3
[maven-release-plugin] prepare for next development iteration
2015-10-02 18:53:48 -04:00
e384a6257b
[maven-release-plugin] prepare release mitreid-connect-1.2.1
2015-10-02 18:53:45 -04:00
3c222b0d79
rewrote blacklist UI, fixed delete functions on rest of UI, closes #905
2015-10-02 18:37:57 -04:00
43e9fbc29c
fixed issuer on login page, added CSRF to login / logout, closes #870 , closes #824 , closes #875
2015-10-01 21:16:38 -04:00
74f5a248c7
Added indexes to MySQL file, closes #902
2015-10-01 18:59:28 -04:00
31374c0f7b
added spring security to logger configuration, closes #917
2015-10-01 15:32:55 -04:00
8d0355a513
Fix commented-out datasource config for postgresql and mysql to user HikariDataSource instead of Apache's BasicDataSource (since the class isn't in the project by default)
2015-08-21 17:27:12 -04:00
54d8d890e5
restricted access to /authorize to ROLE_USER accounts, closes #892
2015-08-21 10:20:26 -04:00
22c05ec51b
[maven-release-plugin] prepare for next development iteration
2015-08-05 12:07:47 -04:00
e6b64cd9cd
[maven-release-plugin] prepare release mitreid-connect-1.2.0
2015-08-05 12:07:44 -04:00
cd46994fb3
removed old DB upgrade scripts (use the upgrade API instead)
2015-08-05 12:04:14 -04:00
15c2b57730
[maven-release-plugin] prepare for next development iteration
2015-07-30 14:00:20 -04:00
8317c759f1
[maven-release-plugin] prepare release mitreid-connect-1.2.0-RC2
2015-07-30 14:00:18 -04:00
0740443768
added claims redirect uri set to client model for UMA usage
2015-07-30 13:56:14 -04:00
658b5e1456
updated all available javascript libraries to latest versions
2015-07-10 16:04:36 -04:00
99fbda3d13
fix scope icon overlay in scope editor for safari/chrome/IE, closes #867
2015-07-10 11:40:50 -04:00
71c52d1a39
restored default scopes
2015-07-10 11:39:49 -04:00
a4e75ed733
[maven-release-plugin] prepare for next development iteration
2015-07-09 18:29:14 -04:00
58a47d0e46
[maven-release-plugin] prepare release mitreid-connect-1.2.0-RC1
2015-07-09 18:29:12 -04:00
e18fa60054
database sync
2015-07-09 18:24:56 -04:00
064f36ef6c
clean up resource sets when clients are deleted
2015-07-09 18:07:19 -04:00
7345a03aaa
added UMA import, closes #811 even harder
2015-07-09 11:48:52 -04:00
8c822c0f54
detached whitelist from approved sites, closes #781
2015-07-08 17:22:55 -04:00
2d6be48732
made error page responsive to HTTP status codes.
2015-07-08 14:36:03 -04:00
e96eda0990
save dynamically registered clients to the server's database, closes #799
2015-07-08 14:35:20 -04:00
44dce71888
fixed database syntax, closes #860
2015-07-07 17:57:42 -04:00
42b93be492
added uri-encoded client service, closes #857
2015-07-07 17:55:56 -04:00
a42920355c
updated error page, closes #858
2015-07-07 14:48:46 -04:00
0360d35c3b
updated to servlet 3.0
2015-07-07 14:48:31 -04:00
de72311c95
updated key to 2048-bit version to set a good example
2015-07-07 13:50:57 -04:00
ee9413b882
database sync
2015-07-03 20:20:51 -04:00
2cfaa1c1d7
renamed RequiredClaimSet to Policy
2015-07-03 20:16:32 -04:00
b8a5486995
made required claims sets stick in the database
2015-07-03 20:16:32 -04:00
cd47d32e2d
split required claim sets out as separate indirection structure, closes #813
2015-07-03 20:16:32 -04:00
50cbeb3e4c
DB table sync
2015-06-25 12:11:31 -04:00
2f4d9ce54b
clearing out refresh tokens is now configurable, closes #409
2015-06-25 12:07:38 -04:00
b18bea6b9f
switched connection pool to use HikariCP, closes #821
2015-06-24 16:21:31 -04:00
445099fc74
Sync database changes across all three platforms
2015-06-23 20:31:28 -04:00
84b595ea6f
Synch with HSQLDB version
...
Few fields were missing, e.g. user_info::src, causing an application crash with MySQL.
2015-06-23 20:24:29 -04:00
2d5e53c0f2
Fix syntax error: , at the end of table creation
...
Fix syntax error: , at the end of table creation
2015-06-03 14:56:03 +03:00
d1e8529a7b
expose ID Token and UserInfo to the AuthoritiesProvider and AuthoritiesMapper, both extensible
...
closes #699
closes #761
2015-06-01 21:11:19 -04:00
23e1e87368
dressed up error message a little
2015-06-01 19:39:09 -04:00
0aabb7226d
internationalized the error and login pages
2015-06-01 19:34:43 -04:00
4655650a68
added OAuth error display page, closes #559
2015-06-01 19:21:32 -04:00
54e3b7e8d3
added new messages for JWK Set handling
2015-06-01 19:08:51 -04:00
49c8804a1c
JWK Set by value UI added to resource registration
2015-06-01 15:35:21 -04:00
d09b003bc3
JWK Set by value UI added to dynamic registration
2015-06-01 15:35:21 -04:00
79317d5b70
JWK Set by value added to admin UI, addresses #826
2015-06-01 15:35:21 -04:00
30162f6baa
added direct JWK set to data model
2015-05-29 13:00:13 -04:00
285504cba1
sync database tables across different vendors
2015-05-28 17:26:30 -04:00
742ceea182
Support for PostgreSQL
2015-05-28 17:07:41 -04:00
d583499a07
Add X-Frame-Options header
2015-05-28 17:07:06 -04:00
98e414b6df
broke out authentication holder class into parts, no more serializable pieces in the database, closes #696
2015-05-26 22:00:20 -04:00
cb8abca0f6
removed embedded JOSE classes in favor of converters
2015-05-22 13:04:21 -04:00
e9aeb8318e
added labels for new UI bits
2015-05-22 13:04:21 -04:00
6be2b4f65e
added ES* and PS* support for signed objects
2015-05-22 13:04:21 -04:00
eb1ea4c0b8
Update topbar.tag
...
Fixes #816
2015-05-22 18:21:07 +02:00
aeed2fa003
issue new refresh tokens for clients who are configured for it, closes #408
2015-05-13 18:01:49 -04:00
5b02e18f7c
added a simplified user menu and login button for collapsed navbars, closes #801
2015-05-13 17:16:03 -04:00
e52fff58f5
added hierarchical user info display, closes #787
2015-05-13 16:48:01 -04:00
52b1bda8d8
version match and cleanup
2015-05-12 21:00:44 -04:00
cdf6107b25
reverted changes related to UMA server
2015-05-12 20:09:31 -04:00
f077579b29
moved UMA-specific files to the UMA webapp package
2015-05-12 17:39:17 -04:00
582c52ebf5
display error on webfinger failure
2015-05-12 11:36:48 -04:00
7188a06488
added deletion functionality to UI
2015-05-12 11:16:51 -04:00
c63651626f
added simple display for required claims into resource set display
2015-05-12 10:57:34 -04:00
396ed472a9
cleaned up external login page
2015-04-12 22:26:11 -05:00
9c6f12087d
fixed javascript bug on resource set save
2015-04-12 21:47:09 -05:00
b2912b944a
tweaked configuration of login pages to allow parallel logins
2015-03-31 17:06:26 -04:00
08413302eb
configured OIDC client on claims collection endpoint
2015-03-31 15:35:20 -04:00
2a4cceff5a
object consistency across commits
2015-03-30 18:03:49 -04:00
6e095e3266
can now add and remove email address claims from the UI
2015-03-30 17:54:16 -04:00
1ad1813239
claim removal and policy saving
2015-03-30 14:47:58 -04:00
e89d8cd985
added webfinger lookup helper service
2015-03-30 11:49:49 -04:00
06ae8545ae
Merge branch 'master' into uma
2015-03-20 18:15:27 -04:00
332cb22a99
claim forms displayed
2015-03-20 18:15:05 -04:00
3e931c68b4
added policy editing overview page
2015-03-20 17:27:10 -04:00
ba0c679e60
made "en" the default locale explicitly
2015-03-20 10:20:37 -04:00
aee2544fbf
updated tables for MySQL
2015-03-18 19:40:16 -04:00
7df31f1e87
completed rudimentary UMA authorization API.
...
Working: resource set registration, permission ticket creation, RPT creation from ticket
Still missing: adding required claims to resource set, adding provided claims to permission ticket
2015-03-17 22:26:12 -04:00
e1769d1545
added (optional) permissions sets to access tokens
2015-03-17 21:42:36 -04:00
1be9da52c6
separated ticket object from permission object to facilitate re-use of permission object with tokens
2015-03-17 21:16:29 -04:00
2993b76dad
added auth request endpoint to context configuration
2015-03-17 18:59:43 -04:00
1393251da9
added value to claim
2015-03-17 18:57:35 -04:00
2aadb09f49
started claims service, added expiration to permissions
2015-03-16 22:52:21 -04:00
a57c336e11
added uma_authorization to default scope set
2015-03-16 12:29:17 -04:00
8352145d82
Merge branch 'master' into authorization-api
...
Conflicts:
openid-connect-common/src/main/java/org/mitre/oauth2/service/SystemScopeService.java
openid-connect-server-webapp/src/main/webapp/WEB-INF/application-context.xml
openid-connect-server/src/main/java/org/mitre/discovery/web/DiscoveryEndpoint.java
openid-connect-server/src/main/java/org/mitre/oauth2/web/IntrospectionEndpoint.java
openid-connect-server/src/main/java/org/mitre/openid/connect/web/ClientAPI.java
openid-connect-server/src/test/java/org/mitre/oauth2/service/impl/TestDefaultIntrospectionAuthorizer.java
2015-03-13 18:39:26 -04:00
ba51df0c37
consolidated client credential filter beans
...
(note: imports magic from secoauth)
2015-03-13 18:30:09 -04:00
4f12fab56b
made unused auth codes expired (they're still single-use), refactored auth code service layer
2015-03-13 13:45:49 -04:00
7e9ee525a8
cleaned up old i18n files and references
2015-03-13 11:33:20 -04:00
f39e2e9412
ported the remainder of the swedish language file to the JSON format
2015-03-12 20:56:26 -04:00
9b0e504cea
transferred remainder of English text to new configuration
2015-03-12 18:03:05 -04:00
Mark Janssen