e9c813e3da
Fixed typo
2013-09-23 14:30:51 -04:00
a0b7b2dbff
Remove @PostConstruct from JWKSetKeyStore
2013-09-20 11:59:22 -04:00
34a81c25dc
if there's only one key, return it as the default
2013-09-20 11:59:05 -04:00
a769c972eb
spelling, property access, and cleanup
2013-09-20 11:59:01 -04:00
6b96fbb4e9
refactored some json utils to their own static class
2013-09-20 11:58:48 -04:00
1e120d90b5
added encryption method list to encryption/decryption service
2013-09-20 11:58:40 -04:00
20b5adfd23
updated comments for jwe service.
2013-09-20 11:57:38 -04:00
3b12765b9b
Updated nimbusds library version to 2.17.2 and made relevant changes in enc./dec. service and test
2013-09-20 11:57:32 -04:00
1bdcf26443
changed encrypt/decrypt parameter to use JWEObject instead of EncryptedJWT
2013-09-20 11:57:30 -04:00
4192350401
RSA encryption service tested.
2013-09-20 11:57:27 -04:00
e5d64d8f2e
implemented symmetric key encryption.
2013-09-20 11:57:24 -04:00
8cb72dc9de
encrypt/decrypt implemented. initial commit for unit testing of jwe service.
2013-09-20 11:57:22 -04:00
59f13a66b6
jwe service accessor methods and private initializing method done.
2013-09-20 11:57:20 -04:00
fc146433f9
jwe service init commit.
2013-09-20 11:57:18 -04:00
b9f545d75b
added encryption/decryption to cached JWK-URI service
...
Conflicts:
openid-connect-server/src/main/java/org/mitre/openid/connect/ConnectOAuth2RequestFactory.java
2013-09-20 11:29:46 -04:00
672efa722c
added additional discoverable fields to ServerConfig object
2013-09-20 11:27:46 -04:00
07ac661910
Removed @PostConstruct; placed buildSignersAndVerifiers() calls inside both constructors.
2013-09-20 11:27:32 -04:00
452b89414a
Added null check;
2013-09-20 11:27:30 -04:00
678b6aa580
Testing removing extra method calls
2013-09-20 11:27:28 -04:00
e11c0386d1
added transient passthroughs to JOSE algorithms for client
...
Conflicts:
openid-connect-server/src/main/java/org/mitre/openid/connect/ConnectOAuth2RequestFactory.java
2013-09-20 11:22:18 -04:00
edeef5de23
added equality checks to data model objects
2013-09-20 11:19:17 -04:00
aa2ec7ce0d
interceptor shouldn't ever overwrite stuff from the base model
2013-09-20 11:18:26 -04:00
5c38a3393a
stopgap to prevent some leaks due to #492
2013-08-30 16:38:36 -04:00
a59704559a
inject user's authorities into javascript context
2013-08-29 17:40:01 -04:00
61acbbe3b8
inject the current user into the javascript context
...
Conflicts:
openid-connect-server/src/main/webapp/WEB-INF/tags/header.tag
2013-08-29 17:39:59 -04:00
1840a67aad
explicitly try to initialize the JWK set if it's null by the time the getter is called
2013-08-22 14:26:06 -04:00
9df10d3871
id tokens always expire, addresses #416
...
Conflicts:
openid-connect-server/src/main/webapp/resources/template/client.html
2013-08-20 16:07:25 -04:00
682d9b9406
added 'use server default' to JOSE options, addresses #462
2013-08-20 14:46:35 -04:00
f866e5addc
Use clients preferred algorithm, if any, to sign
2013-08-20 14:33:36 -04:00
5c40539561
cached jwk services expire after an hour
2013-08-20 14:12:41 -04:00
44f0e89048
I can spell "consortium"!
2013-08-14 14:15:42 -04:00
f58141e6a7
Fixed token expiration bug by removing jsql queries. Instead expired tokens or approved sites are filtered at the repository level
...
Moved getExpired to service layers
Used Predicates to filter expired tokens and approved sites;
2013-08-09 13:55:41 -04:00
e658ffd7fc
format/cleanup and copyright
2013-07-29 11:28:51 -04:00
906db0ac86
Opened token api access to all users; restricted to only show currently-logged-in-users tokens
2013-07-29 09:18:08 -04:00
fb448a246a
converted test data to map, use new serializer
2013-07-26 12:55:22 -04:00
8edd6da136
added serializer for non-heirarchical URIs
2013-07-26 12:55:03 -04:00
5893d8f8f8
fixed up parsing regular expression
2013-07-26 12:54:09 -04:00
f565688e59
changed name issuer->normalized. the result of normalization is not necessarily the issuer.
2013-07-25 18:12:02 -04:00
d80aaced9a
reorganized test data and test methods.
2013-07-25 17:56:33 -04:00
809a243b64
tests for webfinger url normalization.
2013-07-25 15:00:10 -04:00
eaa7298ef1
init commit for Webfinger normilizer utility class.
2013-07-25 12:15:50 -04:00
b397f0ae15
First go at adding token API; needs to be tested
2013-07-24 09:14:46 -04:00
88db457fc4
Removed .springBeans from tracking; removed initializingbean in favor of @PostConstruct
2013-07-18 09:34:52 -04:00
a4a18fd54c
externalized introspection URL from client's introspecting token service, addresses #435
...
added service to parses token as JWT and pulls out issuer to find server
added introspection url to serverconfig object
added introspection parsing (and parse checks) to dynamic server config object
2013-07-16 17:00:40 -04:00
aad432c5d7
replaced stracktrace-printing with logger messages. removed some unused imports.
2013-07-16 13:52:32 -04:00
e00d696c60
deleted auto-generated TODO.
2013-07-12 11:40:11 -04:00
e9c246808f
only our entity version may be stored in our storage layer. removed TODO.
2013-07-12 11:40:11 -04:00
77be0d0ea8
implemented getExpiresIn() for oauth access token entities.
2013-07-11 15:22:35 -04:00
2d3f43e3b8
Added task scheduling for deleting expired tokens and approved sites. Configuration is all done in application-context.xml so that it is easy to configure
2013-07-10 14:34:37 -04:00
a668fb964d
changed String comparison implementation for better readability
2013-06-28 15:31:50 -04:00
Amanda Anganes