github
/
OpenID-Connect-Java-Spring-Server
mirror of https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
1,896 Commits
17 Branches
69 Tags
78 MiB
Commit Graph

1142 Commits (a61759bf745816bdaf0e8d4b91bcedea2d47c14e)

Author SHA1 Message Date
Justin Richer 166c53cd6a fixed comparison of client IDs in refresh token, closes #752 
Also addresses #735 (again)
 2015-01-24 07:47:50 -05:00
Justin Richer 6c88d7c54b removed old owner_id field, closes #636 2015-01-17 08:18:36 -05:00
Justin Richer ba97fcb88a changed name of clientAuthorization to authorizationRequest (which is more accurate), closes #697 2014-12-19 00:55:06 -05:00
John Brooks a1228d19b5 Changed lastWeek logic back to correct form, removed logic used for 
testing.
 2014-12-19 00:39:07 -05:00
Justin Richer e9d764e53e added support for login_hint, closes #250 2014-11-26 09:55:39 -05:00
Justin Richer 3e7ade9a67 fixed unit tests 2014-11-22 23:46:25 -05:00
Justin Richer 1a2ca25359 relaxed scope constraints on protected resources registered through self-service page 2014-11-22 23:46:25 -05:00
Justin Richer e371ad345f fixed checking of refresh token permissions in client service, clients can now request either refresh_token grant type or offline_access scope and it will work. added checkbox to dynreg page for ease-of-use 
closes #734
 2014-11-22 23:46:25 -05:00
Justin Richer 56344fa12b make sure that client presenting refresh token is the same client the refresh token was issued to 
closes #735
 2014-11-22 23:46:25 -05:00
Justin Richer 0e776762c2 set up data API for 1.2 format (currently the same as 1.1 format) 2014-11-15 19:59:47 -10:00
Justin Richer b14dfa6458 approval page defaults to "ask again" when prompt=consent is passed, closes #669 2014-11-13 11:23:54 -10:00
Justin Richer 775b77b367 updated date format of token introspection response, closes #719 2014-11-13 11:08:20 -10:00
Justin Richer c600787f1c added key id to id token, closes #725 2014-11-12 16:22:10 -10:00
Justin Richer d87bdb2120 added ROLE_CLIENT to assertion client authentication, cleaned up roles on client secret authentication, closes #728, closes #401 2014-11-12 16:03:06 -10:00
Justin Richer e6d10b67a4 update to Spring 4 and other related libraries 2014-11-10 18:29:54 -10:00
Alexander Imfeld 9dfac35912 Introduce introspection result assembler to allow for customized introspection results 2014-10-14 21:06:09 -04:00
arielak d557b1e2c2 RefreshToken to AuthHolder linkage test now using AuthHolder ID to verify 2014-10-14 20:30:50 -04:00
arielak ff436a6738 Added tests for ensuring the references between a refresh token and its authentication holder are preserved over import. Minor cleanup of other tests. 2014-10-14 20:30:50 -04:00
arielak d18d325c0c Better method of creating test AuthenticationHolderEntity, added some more testing to testImport/ExportGrants 
Conflicts:

	openid-connect-server/src/test/java/org/mitre/openid/connect/service/impl/TestMITREidDataService_1_1.java
 2014-10-14 20:30:50 -04:00
arielak ff28e1a383 Added new data service tests, separated date parsing/formatting utilities into DateUtil class 
Conflicts:

	openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/MITREidDataService_1_0.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/MITREidDataService_1_X.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/util/DateUtil.java
 2014-10-14 20:30:50 -04:00
Justin Richer 188818dc0d added null check to confirmation controller, closes #684 2014-10-07 21:58:15 -04:00
Justin Richer db052f11ca Moved development branch to 1.2 2014-10-07 21:02:07 -04:00
Justin Richer 134909a82f import cleanup 2014-10-07 19:40:38 -04:00
Justin Richer 1e71749c23 added more generic rotation capability 2014-10-07 19:40:38 -04:00
Justin Richer 0b8dbc4f68 added registration token API 2014-10-07 19:40:38 -04:00
Justin Richer 13cee6bf06 Ported date format changes from 1.0.x 2014-10-06 23:41:33 -04:00
arielak 98ace5c9fb Separated date formatting and parsing functions to DateUtil class. Modified how timezone is printed to workaround Java date formatting issue. 
Conflicts:
	openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/MITREidDataService_1_0.java
 2014-10-06 23:28:20 -04:00
Justin Richer 1fbdd240f1 made binary encode/decode null safe 2014-10-06 23:25:48 -04:00
arielak a8377513a6 Fixed reading/writing of approved access tokens 2014-10-06 22:59:27 -04:00
arielak 0320bae15c Fixed netbeans copyright weirdness 2014-10-06 22:59:27 -04:00
arielak dcf66fadc4 Added support for 1.1 config import/export, and separated common functions into 1_X abstract class 2014-10-06 22:59:27 -04:00
arielak ad841a03df Added support for whitelisted and blacklisted site export 2014-10-06 22:59:27 -04:00
arielak 8495617aed Added support for whitelisted and blacklisted site import from a 1.0 config 2014-10-06 22:59:27 -04:00
arielak 16f15cc3c8 NPE fix 2014-10-06 22:59:27 -04:00
arielak 6333b1e4b1 Re-enabled reading of system scopes. Added 1.1 data export functionality 2014-10-06 22:59:27 -04:00
arielak d5551e9692 Added services for data import/export and modified JpaAuthenticationHolderEntity and Repository to allow getting all objects 2014-10-06 22:58:26 -04:00
Justin Richer c683131f12 externalized view name strings and tied them to view beans 2014-09-28 22:25:39 -04:00
Justin Richer 9e88a62479 moved the API endpoints, made resource tokens accessible too 2014-09-22 23:38:12 -04:00
Justin Richer 6d80a00d65 import cleanup 2014-09-22 23:04:23 -04:00
Justin Richer 81634e6165 added API for getting tokens by clientid 2014-09-22 22:55:13 -04:00
Justin Richer dee78c130c fixed missing null check in request object parser 2014-08-25 22:48:42 -04:00
James Agnew e0b84069d4 Update to latest spring-security-oauth2 module 2014-08-06 11:12:40 -04:00
Justin Richer 6f2f807b0b [maven-release-plugin] prepare for next development iteration 2014-08-05 21:54:51 -04:00
Justin Richer 93ae1516a5 [maven-release-plugin] prepare release mitreid-connect-1.1.9 2014-08-05 21:54:47 -04:00
Justin Richer 39c50b76f4 added null checks to endpoint auth method switches, closes #652 2014-07-31 23:05:17 -04:00
Justin Richer 8768188133 makes the grant types checker softer, closes #640 2014-07-19 23:54:02 -07:00
Justin Richer 9666404d54 added "none" to discovery endpoint 2014-07-16 23:48:18 -04:00
Justin Richer 7476edb310 added unsigned ID token support to server 2014-07-16 22:29:13 -04:00
Justin Richer 538c4031bb added in better default checks for content negotiation 2014-07-02 16:01:26 -04:00
Justin Richer 078bf5e464 combine HTTP content negotiation with client preferences for user info endpoint 2014-06-28 23:44:37 -04:00