github
/
OpenID-Connect-Java-Spring-Server
mirror of https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
1,159 Commits
17 Branches
69 Tags
78 MiB
Commit Graph

759 Commits (8290d198c257da49879ade3805d5d61e759d6a92)

Author SHA1 Message Date
Amanda Anganes 1630814b9f Marked classes where error handling needs to be added/changed 2013-03-07 11:51:18 -05:00
Justin Richer 0f6faf3609 removed old namespace config files 2013-03-07 10:46:25 -05:00
Justin Richer 6320fce9fd url -> uri in approval page 2013-03-07 10:39:33 -05:00
Justin Richer 7c36f9fb38 made sidebar size-responsive, added sticky footer 2013-03-06 17:52:38 -05:00
Justin Richer ad3a22e5d4 changed client defaults for JOSE bits 2013-03-06 15:24:46 -05:00
Justin Richer 3268726747 changed to dict-based model for saving 2013-03-06 15:17:11 -05:00
Justin Richer 8f4ecac8d5 forgot a field 2013-03-06 15:16:48 -05:00
Justin Richer 27a8bcf440 now with more documentation and actual deletion 2013-03-06 11:53:16 -05:00
Justin Richer eaa9e1ded4 typo for grant types in parser 2013-03-06 11:33:54 -05:00
Justin Richer a6a2d43e8f added Read, Update, and Delete operations to dynreg endpoint 2013-03-06 11:33:31 -05:00
Justin Richer d37bac1775 simplification and documentation of client api views 2013-03-06 11:33:06 -05:00
Justin Richer 4c3c2dce52 removed sessions from endpoints, properly mapped registration endpoint 2013-03-06 11:31:54 -05:00
Justin Richer 217916603f cleaned out broken unit tests -- now we can start fresh 2013-03-06 09:48:04 -05:00
Justin Richer c9bdba3f3a API now bound to USER for read, ADMIN for write, addresses #267 2013-03-05 17:45:33 -05:00
Justin Richer 1daf5bd357 dispatch to different views based on user role 2013-03-05 17:34:24 -05:00
Justin Richer 70b2342864 fixed split client views, fixed typos in various places 2013-03-05 17:26:25 -05:00
Justin Richer f07c31bbe2 JOSE selectors 2013-03-05 16:52:34 -05:00
Justin Richer 51a7ccc397 entity -> embed 2013-03-05 16:33:13 -05:00
Justin Richer 7b8623edbb typo 2013-03-05 16:15:21 -05:00
Justin Richer 93851ab94d request URIs and default ACR values 2013-03-05 16:11:32 -05:00
Justin Richer 6c136b5696 contacts 2013-03-05 15:43:38 -05:00
Justin Richer 79bf862924 added Not Yet Implemented tags 2013-03-05 15:32:08 -05:00
Justin Richer 9b6dfd4e1d require auth time, reuse refresh token, and default max age 2013-03-05 15:01:25 -05:00
Justin Richer ff53d71e6f sector identifier, initiate login, and post logout URIs ; reuse refresh tokens 2013-03-05 14:44:40 -05:00
Justin Richer 23bd6a2ffb response types 2013-03-05 14:29:51 -05:00
Justin Richer 82ecef144d token endpoint auth method 2013-03-05 14:05:46 -05:00
Justin Richer c9b769818e changed script loading methods to help debugging, fixed subjectype data pull 2013-03-05 13:34:18 -05:00
Justin Richer 1fcb67e885 JWKS and subject type 2013-03-05 12:33:14 -05:00
Justin Richer 29b46bfd58 stupid javascript templates 2013-03-05 12:21:06 -05:00
Justin Richer 0d25d4cb17 null-preserving static parsers instead of constructors 2013-03-05 12:10:33 -05:00
Justin Richer 9244d6413c application type 2013-03-05 11:50:47 -05:00
Justin Richer e7282d53fe added client URI bits 2013-03-05 11:22:55 -05:00
Justin Richer 6a88c13675 split client view into two classes 2013-03-04 17:50:02 -05:00
Justin Richer 4095f2179c added custom client view for API 2013-03-04 17:33:18 -05:00
Justin Richer a0c2e94922 added in all extra fields to JS processor 2013-03-04 17:11:44 -05:00
Justin Richer ac44020305 grant types rename 2013-03-04 17:11:25 -05:00
Justin Richer 33c488d9ae logo url -> uri 2013-03-04 16:53:09 -05:00
Justin Richer 7c3ddd0a86 redirect uri with new name 2013-03-04 16:49:17 -05:00
Justin Richer 9aebca2e97 fixed gson parser in client API 2013-03-04 16:38:11 -05:00
Justin Richer 23efdf9f51 fix viewbean name, nullsafe client creation time, fixed default scope handling 2013-03-04 16:12:06 -05:00
Justin Richer 26f03ec070 timestamp for creation date 2013-03-04 16:11:20 -05:00
Justin Richer ea034f7d4a database preload fixed to match new schema 2013-03-04 16:10:32 -05:00
Justin Richer 1f5f7c8aac updates for java 7 2013-03-04 16:00:12 -05:00
Justin Richer 235a3bf2c4 added client information response view 2013-03-04 15:45:35 -05:00
Justin Richer fc978ac994 made require_auth_time nullable again 2013-03-04 15:44:49 -05:00
Justin Richer a2d6894f62 started serialization for client information view 2013-03-04 15:13:55 -05:00
Justin Richer db24c203ec added parser to client registration endpoint 2013-03-04 15:01:02 -05:00
Justin Richer 5c044b9eff added extra client fields to DB model, moved services to use new client model object 2013-03-04 14:22:42 -05:00
Justin Richer 3f8d7d70e5 updated client model to match OAuth Dyn Reg and OIDC Reg 2013-03-04 12:48:05 -05:00
Justin Richer 5b9422ffdf cleaned up old unit tests 2013-03-04 11:37:49 -05:00
Justin Richer f8f925c08f removed exploded war (no longer needed), addresses #260 2013-03-04 10:59:04 -05:00
Justin Richer bd877dde82 added signature checking to request objects 2013-03-01 17:44:44 -05:00
Justin Richer 6c1e6b2d74 refactored signing and validation, added jwk-based cache, removed keyfetcher, refactored client side class structure 2013-03-01 17:44:44 -05:00
Justin Richer 385853fa1f refactored signing and validation, added jwk-based cache, removed keyfetcher, refactored client side class structure 2013-03-01 17:44:44 -05:00
Justin Richer 7e64c4bffc deleted duplicate login button, addresses #276 2013-03-01 17:42:48 -05:00
Justin Richer 13a3e97113 updated request object forwarding hack 2013-03-01 17:42:48 -05:00
Justin Richer 0712d8c340 updated spring version 2013-03-01 17:42:48 -05:00
Amanda Anganes 42ea2468c9 Split up about, contact, stats tags into two each and removed logic from the *Content tag files 2013-02-28 13:56:09 -05:00
Amanda Anganes 8677f6516d Template-ized most of the home page UI 2013-02-28 11:25:37 -05:00
Amanda Anganes 987a05302d Added configured logo url 2013-02-25 13:01:26 -05:00
Amanda Anganes 60b679e942 First steps towards adding display variables to config bean 2013-02-22 17:10:14 -05:00
Justin Richer 4d725b88dd more updates to track nimbus-jose-jwt classes and use them properly 2013-02-22 12:08:01 -05:00
Justin Richer 9a98d241e8 updates to track Nimbus JOSE API changes to audience and date fields 2013-02-22 12:08:01 -05:00
Justin Richer cc727cee3e patched unit test to new format 2013-02-22 12:08:01 -05:00
Justin Richer 03e7337b9f client registration endpoint needs general rewrite to fit new spec. 
Most of the problematic references will change with the rewrite, so this is a slapdash patch to make things compile for now.
 2013-02-22 12:08:01 -05:00
Justin Richer 25b9940a68 request object endpoint is a placeholder, cleaning out for now 2013-02-22 12:08:01 -05:00
Justin Richer e5732da857 added system default signing algorithm, converted token provider and enhancer to use nimbus-jose 2013-02-22 12:08:01 -05:00
Justin Richer c01e873019 request object processor moved to nimbus-jose 2013-02-22 12:08:01 -05:00
Justin Richer 0f99e0e06d assertion token granter moved to nimbus-jose 2013-02-22 12:08:01 -05:00
Justin Richer 10ab55a7e2 moved jwk/x509 publishing over to nimbus-jose (mostly) 2013-02-22 12:08:01 -05:00
Justin Richer fca30cd13f added provisions to bootstrap signing and validation service from config files 2013-02-22 12:08:01 -05:00
Justin Richer a078f7d202 patched userinfo view to use nimbus 2013-02-22 12:08:01 -05:00
Justin Richer c7d1b47b38 converted bearer assertion framework to nimbus-jose 2013-02-22 12:08:01 -05:00
Justin Richer 910a6cf1a0 remvoed idtoken repository that was never used 2013-02-22 12:08:01 -05:00
Justin Richer 46a3e70377 removed idtoken class, removed all jwe/jwt tests 2013-02-22 12:08:01 -05:00
Justin Richer 46f0e6f3cb restyled login page 2013-02-20 16:39:46 -05:00
Justin Richer b840b31c74 added cleaner login/logout failure handling and processing 2013-02-20 16:11:08 -05:00
Amanda Anganes 1398575061 Added additional joda time dependency 2013-02-20 15:44:53 -05:00
Justin Richer 58ea01f0f8 added hints to login form to discourage mobile browsers from trying to do something clever like autocorrect 2013-02-13 13:27:31 -05:00
Justin Richer 991f37a1e6 refactored javascript and template files into components 2013-02-13 10:12:31 -05:00
Justin Richer 137e5e5ca1 added placeholder blocks in place of empty tables, addresses #244 2013-02-06 17:42:10 -05:00
Justin Richer 62b931ee0d scope icons now show up everywhere 2013-02-05 17:39:38 -05:00
Justin Richer d0fdf8140e sorting on approval page 2013-02-05 15:47:32 -05:00
Justin Richer 328fa221bd scope bootstrapping 2013-02-05 15:08:49 -05:00
Justin Richer 02846c0a8d typo fix, DB constraints 2013-02-05 14:40:06 -05:00
Justin Richer 88f2ea3e7e icon selector 2013-02-05 14:33:58 -05:00
Justin Richer e622202e9e display scopes based on request, pull scope information dynamically, addresses #208 2013-02-05 11:36:59 -05:00
Justin Richer eb4773ce46 beginning dynamic scopes on auth page 2013-02-05 11:28:39 -05:00
Justin Richer c2b9fd4db1 system scope ordering consistency 2013-02-05 11:11:41 -05:00
Justin Richer 173281f039 DB consistency fix 2013-02-05 11:11:15 -05:00
Justin Richer 801a45cc49 several bugfixes to scopes UI, works now 2013-02-03 22:04:56 -05:00
Justin Richer e5171a196a minor bugfixes 2013-02-03 22:04:55 -05:00
Justin Richer d1968f624a scope ui bugfixes 2013-02-03 22:04:55 -05:00
Justin Richer fbfc977f3b system scope ui updates 2013-02-03 22:04:55 -05:00
Justin Richer 9dc603a759 scope management UI 2013-02-03 22:04:55 -05:00
Justin Richer 1ceee853f9 scope management UI 2013-02-03 22:04:55 -05:00
Justin Richer a3037a18a7 system scope service applied to client creation UI 2013-02-03 22:04:55 -05:00
Justin Richer cab36a2b80 added appropriate filterered and transformative actions to scope service 2013-02-03 22:04:55 -05:00
Justin Richer ab35186696 added scope service, repository, and API 2013-02-03 22:02:24 -05:00
Justin Richer 19e7b62a42 removed persistence.xml and moved to pure spring-based config, addresses #194 2013-02-03 22:02:23 -05:00
Justin Richer a3619240e6 added site scope 2013-02-03 22:02:23 -05:00
Justin Richer a2e548c261 fixed claims processor for request object from user info endpoint 2013-02-03 22:02:23 -05:00
Justin Richer 899150d636 tweak display on auth revoke page 2013-02-03 22:02:23 -05:00
Justin Richer 3c190e044a inject parsed parameters to make SECOAUTH happy 2013-02-03 22:02:23 -05:00
Justin Richer 1144d511af inject scopes 2013-02-03 22:02:23 -05:00
Justin Richer f9d50db1f1 don't treat openid scope special here -- by default client gets access to *all* scopes it's registered for 2013-02-03 22:02:23 -05:00
Justin Richer 078342715b moved request object to request manager 2013-02-03 22:02:22 -05:00
Amanda Anganes 3399eed45a Added about, contact, and stats pages. Still largely placeholders, but the topbar works correctly now at least. 2013-01-31 11:34:07 -05:00
Justin Richer 0be254c99a updated token introspection output to match spec and client filter 2013-01-30 15:31:32 -05:00
Justin Richer e02e08563c changed order or custom filters to make assertions work, added client credentials token granter to default 2013-01-30 14:34:16 -05:00
Justin Richer c1d33bb55b bugfix in assertion processor 2013-01-30 14:34:16 -05:00
Amanda Anganes 2e2c0e8e6c Fixed bug in nonce processing 2013-01-29 13:07:41 -05:00
Amanda Anganes 3db74100a4 working on bug 2013-01-29 13:07:41 -05:00
Amanda Anganes dd8b48e863 Reset ConnectAuthorizationRequestManager to version from master 2013-01-29 13:07:41 -05:00
Amanda Anganes 06f970e61b Trying to fix nonce service 2013-01-29 13:07:41 -05:00
Amanda Anganes 86bf51f0a7 Added java reflection code for request object handling, needs to be tested 2013-01-29 13:07:41 -05:00
Amanda Anganes 677f0f2d4c Stubbed out required functionality for request object filtering 2013-01-29 13:07:41 -05:00
Amanda Anganes 67e8714671 Working on request object userinfo parsing 2013-01-29 13:07:41 -05:00
Justin Richer 779001a8c8 updated copyright year 2013-01-28 13:39:25 -05:00
Justin Richer 7269700dc6 switched injector from repository to service 2013-01-24 19:32:55 -05:00
Justin Richer f0ee36dad2 auth_type -> auth_method (addresses #258) 2013-01-18 18:26:55 -05:00
Justin Richer fd2253303e changed pointer on tabs, addresses #252 2013-01-18 18:17:39 -05:00
Justin Richer 899e306683 fixed JS crash on "new client" operation 2013-01-18 18:15:19 -05:00
Justin Richer 8831bc64a2 offline -> offline_access (addresses #248) 2013-01-18 18:03:39 -05:00
Justin Richer 27a26e0a35 (user_id/prn) -> sub 2013-01-18 16:40:05 -05:00
Justin Richer 1ab29882b4 fixed user prepoulation table 2013-01-18 15:38:53 -05:00
Justin Richer 0ab4ad4bbe added "birthdate", addresses #253 2013-01-18 15:38:41 -05:00
Justin Richer 6ef4dc817e genericized nimbus code, added caching 2013-01-18 15:10:48 -05:00
Justin Richer 2d21a72e7e switched to nimbus to check JWT signature 2013-01-18 15:10:48 -05:00
Justin Richer 60bda31c54 updated custom filter 2013-01-18 15:10:48 -05:00
Justin Richer c17bc05b0e wiring configuration 2013-01-18 15:10:48 -05:00
Justin Richer 4262be1fd3 added jwt processing to client auth provider 2013-01-18 15:06:00 -05:00
Justin Richer abd64eccd6 added framework for processing assertions for client auth 2013-01-18 15:06:00 -05:00
Amanda Anganes ad5e77f7ff Made nonce storage duration configurable in application-context.xml; 2013-01-10 10:34:40 -05:00
Amanda Anganes 59f1b1f05e Testing, nonce handling seems to be working now 2013-01-07 13:28:30 -05:00
Amanda Anganes a1a117cfde Added default constructor to ConnectAuthorizationRequestManager 2013-01-07 10:54:33 -05:00
Amanda Anganes af81e371fb Updated application-context to use new authorization request manager 2013-01-07 10:46:55 -05:00
Amanda Anganes 77b932f5a7 Added implementation of AuthorizationRequestManager. Nonce checking will go in here 2013-01-04 15:30:24 -05:00
Amanda Anganes 1af6513499 Removed nonce checking from token service impl 2013-01-04 15:30:24 -05:00
Amanda Anganes 7e7b2527db Added nonce to persistence.xml 2013-01-04 15:30:24 -05:00
Amanda Anganes 246ed962bb Added stub of repository test 2013-01-04 15:30:24 -05:00
Amanda Anganes e1dffb959c Added NonceReuseException 2013-01-04 15:30:24 -05:00
Amanda Anganes 8f8a3754db Added database tables for Nonce 2013-01-04 15:30:24 -05:00
Amanda Anganes a4637ec395 Fleshed out nonce service classes, added code to token service impl to check for and store nonces. Added JodaTime library for working with dates. 2013-01-04 15:30:24 -05:00
Amanda Anganes c7ae315e98 Added initial files for nonce service. Repository and service impls are stubs 2013-01-04 15:30:24 -05:00
Justin Richer cbcfe55bb9 added introspection flag to client bootstrap 2013-01-02 14:16:31 -05:00
Justin Richer 4068952a81 fixed well size, added comment 2013-01-02 10:19:55 -05:00
Justin Richer 655092a12b added introspection checkbox, added access tab 
Signed-off-by: Justin Richer <jricher@mitre.org>
 2012-12-21 16:38:52 -05:00
Justin Richer 9a1b2d7fac made client edit page tabbable (that was seriously easy) 2012-12-21 16:26:34 -05:00
Justin Richer 48866c15f2 button display cleanup 2012-12-21 16:07:59 -05:00