github
/
OpenID-Connect-Java-Spring-Server
mirror of https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
1,422 Commits
17 Branches
69 Tags
78 MiB
Commit Graph

932 Commits (94ddc776681102d2ae59af41d1021bf8ccce6ae2)

Author SHA1 Message Date
William Kim aad432c5d7 replaced stracktrace-printing with logger messages. removed some unused imports. 2013-07-16 13:52:32 -04:00
William Kim f483d41b88 getCustomClaim -> getClaim. Also, removed outdated TODOs. 2013-07-16 13:17:25 -04:00
William Kim 17a96ca122 removed resolved TODOs. Fixed by the resolution of issue #345. 2013-07-15 14:54:01 -04:00
William Kim 0d882faeca added a TODO and fixed some comment typos. 2013-07-15 14:24:04 -04:00
Amanda Anganes 15aea61fbe Applied code cleanup 2013-07-12 16:58:41 -04:00
Amanda Anganes 3e23967b46 Updated code to reflect SECOAUTH changes 2013-07-12 16:21:05 -04:00
William Kim 9a6f345e15 yes, allow default scoping if the client doesn't ask for any. 2013-07-12 15:05:17 -04:00
William Kim 3d312b7eb5 Deleted PermissionDeniedException class. Unused. 2013-07-12 11:40:11 -04:00
William Kim c5743dc810 updated unit tests to reflect new exception-throwing behavior. 2013-07-12 11:36:34 -04:00
William Kim ada54c297d addresses issue #382. Throw an exception when client tries to upscope. 2013-07-12 11:36:33 -04:00
Justin Richer 0d8c2442d2 [maven-release-plugin] prepare for next development iteration 2013-07-12 10:09:41 -04:00
Justin Richer 9bf5f70957 [maven-release-plugin] prepare release mitreid-connect-1.0.5 2013-07-12 10:09:38 -04:00
Amanda Anganes 12cb672c6d Added new file for task config 2013-07-12 09:46:18 -04:00
Amanda Anganes 059c2545c9 Split task configuration out into its own spring file 2013-07-12 09:46:18 -04:00
William Kim 910839e5d9 fixed typo referring to client id as a client secret in code comments. 2013-07-10 16:53:49 -04:00
Amanda Anganes 2d3f43e3b8 Added task scheduling for deleting expired tokens and approved sites. Configuration is all done in application-context.xml so that it is easy to configure 2013-07-10 14:34:37 -04:00
Justin Richer 93a0492e97 made optional parameters optional 2013-07-10 12:50:57 -04:00
Justin Richer a9da88fb79 brought introspection endpoint and introspection token services into compliance with draft, addresses #376 2013-07-10 12:50:57 -04:00
Josh Mandel 34373d777c base URL of the server is set by the issuer. 2013-07-08 13:06:52 -04:00
William Kim 3eddd58ae4 added unit test for checking expiration date of refreshed tokens. 2013-07-05 15:35:23 -04:00
William Kim 24b24f6fa3 More unit tests for refreshing access tokens--specifically, checking scope processing. 2013-07-05 15:22:45 -04:00
William Kim 5ffe1a50a2 Added null-handling for Scope values from the auth request. (Without this, a NullPointerException gets thrown with null scope values). 2013-07-05 15:14:56 -04:00
William Kim ed2223cae3 unit tests of exceptions cases for refreshing access tokens. 2013-07-05 12:32:45 -04:00
William Kim 3353b92426 deeper unit tests on access token creation. 2013-07-05 12:03:56 -04:00
Justin Richer 936f581a0b [maven-release-plugin] prepare for next development iteration 2013-06-28 16:00:52 -04:00
Justin Richer 27edec1a56 [maven-release-plugin] prepare release mitreid-connect-1.0.4 2013-06-28 16:00:46 -04:00
William Kim 10f9858870 fixed typo on the about page. 2013-06-28 15:44:08 -04:00
William Kim 42027e451c added REQUIRED response types to discovery doc. Also, fixed 2 typos in the list of supported grant types. 2013-06-28 15:31:50 -04:00
William Kim 2a92185433 added introspection endpoint URL to discovery document. 2013-06-28 15:31:50 -04:00
William Kim 741946d1ae updated server discovery code comments. 2013-06-28 15:31:50 -04:00
William Kim f27b69d06b removed Version field from server discovery configuration. 2013-06-28 15:31:50 -04:00
Justin Richer 5505b26aac Form fix for login elements 
addresses #352
 2013-06-28 13:17:58 -04:00
William Kim 4f9cbb4b3f added check for null 2013-06-27 09:29:47 -04:00
William Kim 1528c93acd TestDefaultSystemScopeService unit tests done. 2013-06-25 16:31:45 -04:00
William Kim eca62f2d36 initial commit for TestDefaultSystemScopeService. 2013-06-25 16:31:45 -04:00
William Kim d0dc3c79cb more unit tests for TestDefaultOAuth2ProviderTokenService. 2013-06-25 16:31:45 -04:00
William Kim dc51af5b83 removed testing builder inner class from DefaultOAuth2ProviderTokenService. Also, added more unit tests. 2013-06-25 16:31:45 -04:00
William Kim 5ee7aae5d2 initial commit TestDefaultOAuth2ProviderTokenService. 2013-06-25 16:31:45 -04:00
William Kim abc4f01dde TestDefaultStatsService done. 2013-06-25 16:31:45 -04:00
Amanda Anganes c212821267 Fixed ChainedTokenGranter setup 2013-06-24 10:14:10 -04:00
Amanda Anganes 530c3a75ee Applyed refactoring 2013-06-24 09:44:59 -04:00
William Kim f0f2fbea40 updated secoauth library version in poms 2013-06-21 14:23:58 -04:00
Amanda Anganes 8b1a538464 Updated msql table definitions 2013-06-20 16:28:09 -04:00
William Kim cf3cee5ec2 removed lolcat :( 2013-06-20 11:14:29 -04:00
William Kim 37dd7e7042 changed demo user accounts for server 2013-06-19 16:08:06 -04:00
Justin Richer 2b3376e0ed [maven-release-plugin] prepare for next development iteration 2013-06-18 16:13:04 -04:00
Justin Richer 7fe4bc3b56 [maven-release-plugin] prepare release mitreid-connect-1.0.3 2013-06-18 16:12:59 -04:00
Justin Richer d6f5ca68bf Added time skew to nonce service test 2013-06-18 15:30:36 -04:00
William Kim 8935a87c23 TestDefaultWhitelistedSiteService done. Removed constructors from DefaultWhitelistedSiteService. 2013-06-18 15:20:06 -04:00
William Kim 5fb1ef3aca Revised test methods for checking for offline_access scope. Previous tests were doing trivial checking. 2013-06-18 15:19:55 -04:00
William Kim 8851f4d037 TestDefaultOAuth2ClientDetailsEntityService done. Removed constructors from DefaultOAuth2ClientDetailsEntityService. 2013-06-18 15:19:55 -04:00
William Kim 701217d98c TestDefaultNonceService done. 2013-06-18 15:19:55 -04:00
William Kim 4ee904cbfd removed setter/getter from DefaultUserInfoUserDetailsService and updated test class with Mockito annotations. 2013-06-18 15:19:46 -04:00
William Kim 5428848627 updated TestDefaultApprovedSiteService to use annotation style Mocking. Allows for removal of injector constructor. 2013-06-18 15:19:46 -04:00
William Kim 01fcb4828d removed test constructors for DefaultBlacklistedSiteService.java. Used annotation method of injecting mock objects into testing class (@InjectMocks). 2013-06-18 15:19:33 -04:00
William Kim 9a3625ae2b made unit test for checking blacklisted sites. Introduced a new constructor to be able to inject repository for testing. 2013-06-18 15:19:33 -04:00
Justin Richer c577b691c7 moved OIDC auth token and userinfo interception filter to common package, addresses #353 2013-06-12 14:45:03 -04:00
Justin Richer 8290d198c2 added passthrough of userinfo for remote OIDC users 2013-06-12 14:22:13 -04:00
Justin Richer aea562f565 moved mockito dependency to core project 2013-06-10 14:11:43 -04:00
Justin Richer 6ed7477bc0 added stats to admin UI page, restyled scopes and dynamically registered flags 2013-06-07 18:05:07 -04:00
Justin Richer 6ec8b77f81 beans version update (is this a config file? should this even be in here?) 2013-06-07 18:05:07 -04:00
William Kim 338edcce31 fixed typos in admin.js 2013-06-07 15:41:13 -04:00
Justin Richer 9388c664ab moved reuse refresh token checkbox to its own div/label, addresses #345 2013-06-06 16:42:26 -04:00
Justin Richer 567a3314d6 [maven-release-plugin] prepare for next development iteration 2013-06-06 16:05:59 -04:00
Justin Richer 1286726188 [maven-release-plugin] prepare release mitreid-connect-1.0.2 2013-06-06 16:05:52 -04:00
Justin Richer dc9d5c667e cleaned up error log messages 2013-06-06 13:44:50 -04:00
William Kim 1b601abd6f Removed previous constructor from DefaultUserInforUserDetailsService.java and put in getter/setter for UserInfoRepository as a replacement. 2013-06-04 16:58:14 -04:00
Amanda Anganes 3f7fe30f5c Added comments to unit tests 2013-05-31 15:31:54 -04:00
Amanda Anganes a7f2e605fa Added two unit tests using the Mockito framework 2013-05-31 15:04:18 -04:00
Josh Mandel b0dc5fb4e2 Fix a bug where a client is deleted before details looked up. Also return 204 on success 2013-05-31 14:30:51 -04:00
Amanda Anganes 3c5025c52b Updated version number for secoauth 2013-05-28 15:38:36 -04:00
Amanda Anganes 76e5ff8053 Finished cleanup, ready to create pull request 2013-05-28 12:43:33 -04:00
Josh Mandel c46095b6a3 Warning message for unimplemented UI features 2013-05-22 22:41:35 -07:00
Justin Richer 25d75a1b30 [maven-release-plugin] prepare for next development iteration 2013-05-20 17:38:01 -04:00
Justin Richer 5418bdef5a [maven-release-plugin] prepare release mitreid-connect-1.0.1 2013-05-20 17:37:52 -04:00
Justin Richer 81cd13f6d3 added RegisteredClient class to facilitate client configuration and dynamic registration, addresses #335 2013-05-20 17:19:28 -04:00
Justin Richer 545ddace95 updated registration URI, addresses #321 2013-05-10 11:54:48 -07:00
Justin Richer cc9eea5b3d updated issuer to more common deployment pattern for simple Tomcat instances, addresses #333 2013-05-10 11:46:16 -07:00
Amanda Anganes 713f0a4d25 Renamed OAuth2Request authorizatoinParameters map to requestParameters 2013-05-03 17:07:04 -04:00
Amanda Anganes 967b3f2953 Cleanup from renaming 2013-05-03 16:15:42 -04:00
Amanda Anganes 1e24b31cc3 Propogating rename of AuthorizationRequest to OAuth2Request 2013-05-03 13:53:57 -04:00
Justin Richer defa5b8fbc [maven-release-plugin] prepare for next development iteration 2013-05-02 15:01:59 -04:00
Justin Richer dbdc99361e [maven-release-plugin] prepare release mitreid-connect-1.0.0 2013-05-02 15:01:53 -04:00
Justin Richer 4276a14978 fixed stats api view 2013-05-02 14:55:37 -04:00
Justin Richer a7c92524f3 Updated contact page text 2013-05-02 11:56:42 -04:00
Justin Richer e99bfc256d cleaned about page text 2013-05-02 11:54:47 -04:00
Justin Richer 1e870703f8 added licence/copyright header 2013-05-02 11:45:20 -04:00
Justin Richer 8afab04544 whitespace, import, brace, annotation, and format cleanups 2013-05-02 10:47:15 -04:00
Justin Richer b663cd5f8d style system scopes and non-system scopes differently in the admin UI, addresses #269 2013-04-29 17:00:12 -04:00
Justin Richer 6a20e7aaa9 re-fixed enter key handling in lists, addresses #236 2013-04-29 16:57:26 -04:00
Justin Richer 39e06292fd made page title dynamic and configurable, addresses #310 #311 2013-04-29 14:59:53 -04:00
Justin Richer b78d499801 added version number to footer 2013-04-29 14:44:15 -04:00
Justin Richer b8c385e5c9 pom file cleanups 2013-04-29 11:47:15 -04:00
Amanda Anganes a3771177a1 Updated json serialization of approved site objects 2013-04-29 11:17:36 -04:00
Justin Richer 9b03801f9d [maven-release-plugin] prepare for next development iteration 2013-04-26 13:21:36 -04:00
Justin Richer d76304b9a6 [maven-release-plugin] prepare release mitreid-connect-0.9.3 2013-04-26 13:21:31 -04:00
Justin Richer dcf41eaa9e tried to make prompt=login work, backed off for now 2013-04-25 15:19:11 -04:00
Justin Richer 8d53149d03 added functionality for prompt=none 2013-04-25 11:38:10 -04:00
Justin Richer 37723e3757 opened up access to /resources/** 2013-04-24 16:43:49 -04:00
Justin Richer 7292766b51 implemented prompt=consent 2013-04-24 14:08:14 -04:00
Justin Richer ce2c90fb30 fixed error messages in auth request manager 2013-04-24 12:10:59 -04:00
Amanda Anganes c80b1081cc Cleaning up approvedsite => token linkage 2013-04-24 11:52:03 -04:00
Amanda Anganes 939a801048 Redid approved site -> token mapping so it is unidirectional from ApprovedSite side. Fixed some error logging, added a new view for ApprovedSite which will only show the IDs of the tokens in the approvedTokens list 2013-04-23 17:40:22 -04:00
Amanda Anganes a79aca906e Fixed error logging; added ApprovedSite tracking to tokens 2013-04-22 15:49:06 -04:00
Justin Richer 94aa279290 [maven-release-plugin] prepare for next development iteration 2013-04-19 16:17:53 -04:00
Justin Richer cc92743888 [maven-release-plugin] prepare release mitreid-connect-0.9.2 2013-04-19 16:17:45 -04:00
Justin Richer d7689152b8 fixed inadvertent consistency bug in granting offline_access to clients 2013-04-19 16:12:09 -04:00
Justin Richer 0e2d5830a4 updated newly-registered clients to not get refresh tokens unless they ask for offline_access scope explicitly 2013-04-19 15:40:20 -04:00
Justin Richer fb859fc39a added client dynamic registration service, extracted clientdetails<->json processing into its own static class 2013-04-19 14:23:11 -04:00
Justin Richer fc1088c841 fixed display of algorithms in discovery endpoint 2013-04-19 13:39:53 -04:00
Amanda Anganes 82fca45412 Removed RequestObjectAuthorizationEndpoint as it is no longer needed with the changes to the AuthorizationEndpoint. 2013-04-17 13:10:40 -04:00
Amanda Anganes 9db8119930 Fixed request object processing, had a small bug 2013-04-17 11:28:35 -04:00
Amanda Anganes e708f77eb3 Fixed up OIDC code so that it runs with new SECOAUTH changes; removed old AuthorizationRequestImpl class which is no longer needed 2013-04-17 09:52:09 -04:00
Justin Richer 895690df54 added webfinger discovery to server, addresses #279 2013-04-16 17:22:18 -04:00
Justin Richer 9c6b08d919 effectively removed auth_time calculations 2013-04-16 16:04:26 -04:00
Justin Richer 33af3b1ad6 updated discovery endpoint to latest spec, removed surplus specialized view 2013-04-16 15:00:57 -04:00
Justin Richer 8e8e14c638 added at_hash 2013-04-15 17:12:47 -04:00
Justin Richer 3bb43f417a added auth time tracking 2013-04-15 16:16:18 -04:00
Justin Richer ce2e630304 fixed login page display (thanks to Jett), addresses #289 2013-04-15 12:47:35 -04:00
Justin Richer e665aec36f dependency cleanup 2013-04-12 16:53:55 -04:00
Justin Richer 98fff8fe99 updated error handling on introspection and revocation endpoints 2013-04-12 16:34:51 -04:00
Justin Richer 35cb14a73f fixed comment 2013-04-12 16:08:32 -04:00
Justin Richer 743a3023dc removed old error handlers 2013-04-12 16:04:40 -04:00
Justin Richer 31e3c5e5e7 moved user approval page 2013-04-12 15:57:32 -04:00
Justin Richer 694761c026 cleaned up userinfo view 2013-04-12 15:40:05 -04:00
Justin Richer 71d6dc6afe removed special stats view 2013-04-12 15:15:43 -04:00
Justin Richer 1630648925 updated logo, added large logo 2013-04-11 17:24:32 -04:00
Amanda Anganes 7e59421f33 Commented out XRD endpoint and added TODO reference to webfinger issue 2013-04-11 10:33:27 -04:00
Amanda Anganes 34b243e0e1 Added back discovery endpoint, but renamed to not say SWD 2013-04-11 10:27:31 -04:00
Justin Richer ac2993c402 [maven-release-plugin] prepare for next development iteration 2013-04-10 16:12:04 -04:00
Justin Richer f0d75f9144 [maven-release-plugin] prepare release mitreid-connect-0.9.1 2013-04-10 16:11:38 -04:00
Stephen Moore 23c318f6c2 Updating guava to 14.0.1 2013-04-10 15:31:32 -04:00
Amanda Anganes a723c9d921 Removed references to DefaultAuthorizationRequest in connect code 2013-04-08 10:37:13 -04:00
Amanda Anganes e17eaa499e Cleaned up classes affected by SECOAUTH changes; added Connect implementation of AuthorizationRequest and updated manager class to reflect new class & updated interface; 
;
 2013-04-08 10:13:27 -04:00
Justin Richer 5f54777109 [maven-release-plugin] prepare for next development iteration 2013-04-03 10:01:58 -04:00
Justin Richer 620a60ddc2 [maven-release-plugin] prepare release mitreid-connect-0.9.0 2013-04-03 10:01:52 -04:00
Justin Richer 54f1ae972b Added properties and updated poms for sync to central 2013-04-02 12:42:40 -04:00
Justin Richer f63ea94b37 fixed bean name 2013-04-01 12:05:39 -04:00
Justin Richer f101dcc512 moved to released version of SECOAUTH 2013-04-01 11:59:40 -04:00
Justin Richer c0c1847f38 fixed bean name 2013-04-01 11:59:23 -04:00
Amanda Anganes 72e2c7cb6c Updated build references 2013-04-01 10:59:25 -04:00
Amanda Anganes 02220a411a Fixed typo 2013-03-29 12:59:49 -04:00
Amanda Anganes 0f327a772b Updated js files to use results returned from JsonErrorView; factored out markup into modal definition. 2013-03-29 12:47:03 -04:00
Amanda Anganes 2265a3f8c3 Updated error handling messages for scope, approved site, blacklist, whitelist, and client APIs using new JsonErrorView 2013-03-29 12:47:03 -04:00
Amanda Anganes ee5b21b542 Added JsonErrorView 2013-03-29 12:47:03 -04:00
Amanda Anganes 07686d8e00 Removed superfluous try/catch around save call in ScopeAPI. 2013-03-29 12:47:03 -04:00
Justin Richer 4538d8fb14 made signing and verification service construction safe for public-only keys 2013-03-28 17:03:18 -04:00
Justin Richer 6cc50e7cd5 switched signing & validation service to use JWK natively for keys 2013-03-28 16:43:26 -04:00
Justin Richer f54dddd8c0 fixed blacklisted field name, addresses #295 2013-03-28 16:06:02 -04:00
Justin Richer 5a04198eac moved to JPSK based key store 2013-03-28 15:06:30 -04:00