github
/
OpenID-Connect-Java-Spring-Server
mirror of https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
1,399 Commits
17 Branches
69 Tags
78 MiB
Commit Graph

909 Commits (a1ca3cadef4ba566e373aea85c97ae5b8ef7adb1)

Author SHA1 Message Date
Justin Richer c5edb1ba1e [maven-release-plugin] prepare release mitreid-connect-1.0.9 2013-08-20 16:51:10 -04:00
Justin Richer 897e4cbfed proper null check for client's preferred signature method 2013-08-20 16:45:26 -04:00
Justin Richer 9df10d3871 id tokens always expire, addresses #416 
Conflicts:

	openid-connect-server/src/main/webapp/resources/template/client.html
 2013-08-20 16:07:25 -04:00
William Kim bc4d52dc18 unit select box appropriately disabled after saving now. 2013-08-20 15:20:13 -04:00
William Kim 85a8532cc7 clear token timeout form fields when disabled and also disable unit selector. 2013-08-20 15:20:01 -04:00
William Kim 95bdf12f4d renamed token expiration form field ids from -seconds to -time. 2013-08-20 15:19:52 -04:00
William Kim 3e45f62360 shortened token timeout form fields. 2013-08-20 15:19:44 -04:00
William Kim 33559b1ed9 dropdown time unit chooser added for token expiration. 2013-08-20 15:19:35 -04:00
William Kim 11f47e85a9 refactor js. getFormTokenValue() -> getFormTokenNumberValue(). 2013-08-20 15:19:29 -04:00
Justin Richer 895e257432 Disable unsupported JOSE algorithms in UI, addresses #476 2013-08-20 14:46:35 -04:00
Justin Richer 682d9b9406 added 'use server default' to JOSE options, addresses #462 2013-08-20 14:46:35 -04:00
Justin Richer 143f1efafb created crypto tab 2013-08-20 14:46:35 -04:00
Justin Richer b787270ff0 removed NYI tag from ID token signing alg 2013-08-20 14:46:35 -04:00
Amanda Anganes ed7ff435ba Changed client algorithm check to look for null instead of JWSAlgorithm.NONE, which is a valid value. 2013-08-20 14:46:35 -04:00
Amanda Anganes f866e5addc Use clients preferred algorithm, if any, to sign 2013-08-20 14:33:36 -04:00
Amanda Anganes 99cd6068dc Compare client_ids instead of Client objects 2013-08-20 14:33:14 -04:00
Justin Richer baac4c4f32 load server configuration into JS app 2013-08-20 14:24:50 -04:00
Justin Richer 028f15c039 animated loading bar for management console 2013-08-20 14:24:28 -04:00
Justin Richer ae3ecc2638 fixed jquery.on regex to be less aggressive 2013-08-20 14:12:01 -04:00
Justin Richer 60ab2b457e fixed jquery.on syntax bug, addresses #346 2013-08-20 14:11:55 -04:00
Justin Richer 3640f4b02d added back default timeouts and fixed refresh token check 2013-08-15 15:51:15 -04:00
William Kim f2af7d31bc addresses issue #471. setting default timeout values in the backbone model to null. 2013-08-15 15:51:11 -04:00
Justin Richer ca01c55f39 added prompt=login support, addresses #323 2013-08-15 12:13:37 -04:00
Justin Richer 44f0e89048 I can spell "consortium"! 2013-08-14 14:15:42 -04:00
Justin Richer 91b2be284d [maven-release-plugin] prepare for next development iteration 2013-08-09 14:13:31 -04:00
Justin Richer 074ea6f903 [maven-release-plugin] prepare release mitreid-connect-1.0.8 2013-08-09 14:13:28 -04:00
Justin Richer 0fcecd27e5 renamed JWSUtils -> IdTokenHashUtils, renamed internal variables 
Conflicts:

	openid-connect-server/src/main/java/org/mitre/openid/connect/token/ConnectTokenEnhancer.java
 2013-08-09 14:09:52 -04:00
William Kim 6866d2e428 TestJWSUtils done. 2013-08-09 14:08:57 -04:00
William Kim b6ebde2b15 updated hash tests. 2013-08-09 14:08:54 -04:00
William Kim 7acdc47fce changed at_hash/c_hash impl. HMAC-SHA --> regular SHA. 2013-08-09 14:08:26 -04:00
Amanda Anganes 63cf621f2f Had to hand-merge some things; git got confused 
Conflicts:

	openid-connect-server/src/main/java/org/mitre/openid/connect/token/ConnectTokenEnhancer.java
 2013-08-09 14:07:52 -04:00
Amanda Anganes 546fb24019 Added c_hash function, added stub of unit test for JWSUtils 2013-08-09 14:04:43 -04:00
Amanda Anganes b05a34a825 JWSUtils uses JWSAlgorithm to match bit length; ConnectTokenEnhancer calls the util method now 
Conflicts:

	openid-connect-server/src/main/java/org/mitre/openid/connect/token/ConnectTokenEnhancer.java
 2013-08-09 14:04:26 -04:00
Amanda Anganes b6c443c931 Added JWSUtils class; 2013-08-09 13:56:41 -04:00
Amanda Anganes f58141e6a7 Fixed token expiration bug by removing jsql queries. Instead expired tokens or approved sites are filtered at the repository level 
Moved getExpired to service layers

Used Predicates to filter expired tokens and approved sites;
 2013-08-09 13:55:41 -04:00
Amanda Anganes 3134c34606 Dyn-reg endpoint now creates the registration access token from scratch instead of calling token services; token services no longer needs to check for RAT scope to avoid expiring RATs 
lientDynamicRegistrationEndpoint.java
 2013-08-09 13:55:33 -04:00
Justin Richer 5edde48481 [maven-release-plugin] prepare for next development iteration 2013-07-30 13:10:48 -04:00
Justin Richer 4de9895d23 [maven-release-plugin] prepare release mitreid-connect-1.0.7 2013-07-30 13:10:45 -04:00
Amanda Anganes e589f608c0 Do not expire registration tokens 2013-07-30 11:41:53 -04:00
Justin Richer 023dd440d4 [maven-release-plugin] prepare for next development iteration 2013-07-29 11:30:08 -04:00
Justin Richer 5e8f93cf15 [maven-release-plugin] prepare release mitreid-connect-1.0.6 2013-07-29 11:30:04 -04:00
Justin Richer e658ffd7fc format/cleanup and copyright 2013-07-29 11:28:51 -04:00
Justin Richer d4b544d519 disable token API (for now) 2013-07-29 11:23:07 -04:00
Amanda Anganes 906db0ac86 Opened token api access to all users; restricted to only show currently-logged-in-users tokens 2013-07-29 09:18:08 -04:00
Justin Richer 71da5b3d94 clean up some discovery values 2013-07-26 17:07:28 -04:00
Justin Richer c62bed37ff convert server to use normalizer 2013-07-26 17:07:08 -04:00
William Kim 93c3e7906f put in line breaks into the extra long comments in DiscoveryEndpoint.java 2013-07-25 09:25:06 -04:00
Amanda Anganes b397f0ae15 First go at adding token API; needs to be tested 2013-07-24 09:14:46 -04:00
Amanda Anganes 88db457fc4 Removed .springBeans from tracking; removed initializingbean in favor of @PostConstruct 2013-07-18 09:34:52 -04:00
Amanda Anganes dfbf01c9e3 Added .springBeans to gitignore 2013-07-16 15:03:44 -04:00
William Kim aad432c5d7 replaced stracktrace-printing with logger messages. removed some unused imports. 2013-07-16 13:52:32 -04:00
William Kim f483d41b88 getCustomClaim -> getClaim. Also, removed outdated TODOs. 2013-07-16 13:17:25 -04:00
William Kim 17a96ca122 removed resolved TODOs. Fixed by the resolution of issue #345. 2013-07-15 14:54:01 -04:00
William Kim 0d882faeca added a TODO and fixed some comment typos. 2013-07-15 14:24:04 -04:00
William Kim 9a6f345e15 yes, allow default scoping if the client doesn't ask for any. 2013-07-12 15:05:17 -04:00
William Kim 3d312b7eb5 Deleted PermissionDeniedException class. Unused. 2013-07-12 11:40:11 -04:00
William Kim c5743dc810 updated unit tests to reflect new exception-throwing behavior. 2013-07-12 11:36:34 -04:00
William Kim ada54c297d addresses issue #382. Throw an exception when client tries to upscope. 2013-07-12 11:36:33 -04:00
Justin Richer 0d8c2442d2 [maven-release-plugin] prepare for next development iteration 2013-07-12 10:09:41 -04:00
Justin Richer 9bf5f70957 [maven-release-plugin] prepare release mitreid-connect-1.0.5 2013-07-12 10:09:38 -04:00
Amanda Anganes 12cb672c6d Added new file for task config 2013-07-12 09:46:18 -04:00
Amanda Anganes 059c2545c9 Split task configuration out into its own spring file 2013-07-12 09:46:18 -04:00
William Kim 910839e5d9 fixed typo referring to client id as a client secret in code comments. 2013-07-10 16:53:49 -04:00
Amanda Anganes 2d3f43e3b8 Added task scheduling for deleting expired tokens and approved sites. Configuration is all done in application-context.xml so that it is easy to configure 2013-07-10 14:34:37 -04:00
Justin Richer 93a0492e97 made optional parameters optional 2013-07-10 12:50:57 -04:00
Justin Richer a9da88fb79 brought introspection endpoint and introspection token services into compliance with draft, addresses #376 2013-07-10 12:50:57 -04:00
Josh Mandel 34373d777c base URL of the server is set by the issuer. 2013-07-08 13:06:52 -04:00
William Kim 3eddd58ae4 added unit test for checking expiration date of refreshed tokens. 2013-07-05 15:35:23 -04:00
William Kim 24b24f6fa3 More unit tests for refreshing access tokens--specifically, checking scope processing. 2013-07-05 15:22:45 -04:00
William Kim 5ffe1a50a2 Added null-handling for Scope values from the auth request. (Without this, a NullPointerException gets thrown with null scope values). 2013-07-05 15:14:56 -04:00
William Kim ed2223cae3 unit tests of exceptions cases for refreshing access tokens. 2013-07-05 12:32:45 -04:00
William Kim 3353b92426 deeper unit tests on access token creation. 2013-07-05 12:03:56 -04:00
Justin Richer 936f581a0b [maven-release-plugin] prepare for next development iteration 2013-06-28 16:00:52 -04:00
Justin Richer 27edec1a56 [maven-release-plugin] prepare release mitreid-connect-1.0.4 2013-06-28 16:00:46 -04:00
William Kim 10f9858870 fixed typo on the about page. 2013-06-28 15:44:08 -04:00
William Kim 42027e451c added REQUIRED response types to discovery doc. Also, fixed 2 typos in the list of supported grant types. 2013-06-28 15:31:50 -04:00
William Kim 2a92185433 added introspection endpoint URL to discovery document. 2013-06-28 15:31:50 -04:00
William Kim 741946d1ae updated server discovery code comments. 2013-06-28 15:31:50 -04:00
William Kim f27b69d06b removed Version field from server discovery configuration. 2013-06-28 15:31:50 -04:00
Justin Richer 5505b26aac Form fix for login elements 
addresses #352
 2013-06-28 13:17:58 -04:00
William Kim 1528c93acd TestDefaultSystemScopeService unit tests done. 2013-06-25 16:31:45 -04:00
William Kim eca62f2d36 initial commit for TestDefaultSystemScopeService. 2013-06-25 16:31:45 -04:00
William Kim d0dc3c79cb more unit tests for TestDefaultOAuth2ProviderTokenService. 2013-06-25 16:31:45 -04:00
William Kim dc51af5b83 removed testing builder inner class from DefaultOAuth2ProviderTokenService. Also, added more unit tests. 2013-06-25 16:31:45 -04:00
William Kim 5ee7aae5d2 initial commit TestDefaultOAuth2ProviderTokenService. 2013-06-25 16:31:45 -04:00
William Kim abc4f01dde TestDefaultStatsService done. 2013-06-25 16:31:45 -04:00
William Kim cf3cee5ec2 removed lolcat :( 2013-06-20 11:14:29 -04:00
William Kim 37dd7e7042 changed demo user accounts for server 2013-06-19 16:08:06 -04:00
Justin Richer 2b3376e0ed [maven-release-plugin] prepare for next development iteration 2013-06-18 16:13:04 -04:00
Justin Richer 7fe4bc3b56 [maven-release-plugin] prepare release mitreid-connect-1.0.3 2013-06-18 16:12:59 -04:00
Justin Richer d6f5ca68bf Added time skew to nonce service test 2013-06-18 15:30:36 -04:00
William Kim 8935a87c23 TestDefaultWhitelistedSiteService done. Removed constructors from DefaultWhitelistedSiteService. 2013-06-18 15:20:06 -04:00
William Kim 5fb1ef3aca Revised test methods for checking for offline_access scope. Previous tests were doing trivial checking. 2013-06-18 15:19:55 -04:00
William Kim 8851f4d037 TestDefaultOAuth2ClientDetailsEntityService done. Removed constructors from DefaultOAuth2ClientDetailsEntityService. 2013-06-18 15:19:55 -04:00
William Kim 701217d98c TestDefaultNonceService done. 2013-06-18 15:19:55 -04:00
William Kim 4ee904cbfd removed setter/getter from DefaultUserInfoUserDetailsService and updated test class with Mockito annotations. 2013-06-18 15:19:46 -04:00
William Kim 5428848627 updated TestDefaultApprovedSiteService to use annotation style Mocking. Allows for removal of injector constructor. 2013-06-18 15:19:46 -04:00
William Kim 01fcb4828d removed test constructors for DefaultBlacklistedSiteService.java. Used annotation method of injecting mock objects into testing class (@InjectMocks). 2013-06-18 15:19:33 -04:00
William Kim 9a3625ae2b made unit test for checking blacklisted sites. Introduced a new constructor to be able to inject repository for testing. 2013-06-18 15:19:33 -04:00
Justin Richer c577b691c7 moved OIDC auth token and userinfo interception filter to common package, addresses #353 2013-06-12 14:45:03 -04:00