51073a7f8d
Refactor part 3
2012-09-18 15:01:05 -04:00
ef80676dc1
Cleaned up web package a bit - lots of unused imports and variables
2012-09-18 14:39:07 -04:00
dd2abd94d1
Refactoring part 2
2012-09-18 14:36:27 -04:00
c40efda6b5
Refactor part 1
2012-09-18 14:24:34 -04:00
0b6aebfefe
Revert "removed postrender function, use render function instead"
...
This reverts commit 2b1e78d195
2012-09-13 11:27:50 -04:00
ebf77bea68
Updated timeout functions
2012-09-13 11:24:48 -04:00
6fdd088125
Updated client secret panel display
2012-09-13 11:24:29 -04:00
be17133a99
Changed "submit" label to "save"
2012-09-13 11:02:53 -04:00
2b1e78d195
removed postrender function, use render function instead
2012-09-13 10:33:52 -04:00
ece1b56095
added missing brackets
2012-09-13 10:33:52 -04:00
fe3e890bb3
changed to table head for input control
2012-09-13 10:33:52 -04:00
d8221a2a35
added missing semicolon
2012-09-13 10:33:52 -04:00
ed75b38ecc
changed list view table styling
2012-09-13 10:33:52 -04:00
a4a40ffae5
unit test for x509 endpoint
2012-09-12 14:14:15 -04:00
d9771f2322
Timout Bugfixes
2012-09-12 13:55:30 -04:00
26c3cf5989
Timout UI refactor
2012-09-12 13:48:01 -04:00
19df5ae032
Timeout form updates. Logo URL updates
2012-09-11 15:06:20 -04:00
cb6767dfb4
Timout form updates
2012-09-11 15:06:17 -04:00
a9d1799eda
added getter/setter to UIE schema-to-view map
2012-09-11 12:44:47 -04:00
920b2a59ba
Fixed error logging
2012-09-10 17:17:03 -04:00
2d24435365
Created custom resolver, handler mapper
...
moved endpoint back to server
2012-09-10 17:17:03 -04:00
7eb0a6f3d2
Moved JWK to commons
2012-09-10 17:17:03 -04:00
f3c225d8f2
Updated SECOAUTH reference, made required alterations to our configuration
2012-09-07 16:08:15 -04:00
ea16f4e2b6
Fixed merge weirdness
2012-09-07 14:09:10 -04:00
b58ed8b616
Added logoURL stuff
2012-09-07 13:51:58 -04:00
61b828e182
Fixed bug - removed service layer @Transactional annotations, which negated need for flush at repository level; moved @Transactional annotations.
2012-09-04 17:53:02 -04:00
c8f9a3de76
Merge remote-tracking branch 'origin/UI-form-updates'
2012-09-04 13:25:16 -04:00
ee7a5fd2e1
added registration URL to discovery endpoint
2012-08-30 17:18:36 -04:00
332fe282be
List Widget UI values cannot be null
2012-08-29 14:40:23 -04:00
fe837c4fa5
comment edit
2012-08-29 13:56:10 -04:00
4fcbbe639f
visual error indicators for redirect uri and scope
2012-08-29 13:54:04 -04:00
15359a236a
Scope UI Auto-complete
2012-08-29 13:36:46 -04:00
11b35267b4
Refactored stats processor into a service, made home page into a smart page.
2012-08-28 17:42:43 -04:00
85e13bd11d
Initial Scope UI updates
2012-08-28 15:59:03 -04:00
bc0ee4cbab
force id consistency
2012-08-28 15:28:55 -04:00
8876217baf
Added cleanups to client service
2012-08-28 15:28:55 -04:00
d041ddb0e1
Added approvedSite API and support structure
2012-08-28 15:28:55 -04:00
2bf5cfc041
service bug fix
2012-08-28 15:28:55 -04:00
b462d6dd96
added empty http code view
2012-08-28 15:28:55 -04:00
8ae1b376fe
updated whitelist service and repository
2012-08-28 15:28:55 -04:00
6a180acf3c
added preliminary whitelist api
2012-08-28 15:28:55 -04:00
59e2f0e127
Backbone List View Widget Initial Commit
2012-08-28 12:49:33 -04:00
4af3dd89be
cleaned up client api
2012-08-28 12:29:59 -04:00
72c125ba64
refactored binder into two parts
2012-08-28 12:29:33 -04:00
be54696603
Generic GSON entity printer
2012-08-28 12:29:10 -04:00
0aa6da67de
Bootstrap JS Upgrade
2012-08-28 12:03:08 -04:00
306e07bc36
UI Dynamic List updates
2012-08-27 23:46:06 -04:00
5377a2bac4
Redirect URI UI updates
2012-08-27 17:12:02 -04:00
0b1bb4f8aa
call the right service api
2012-08-27 16:57:52 -04:00
407c14d0dc
added missing bean annotation
2012-08-27 16:52:00 -04:00
3e423e9e04
explicitly exposed registration url
2012-08-27 16:46:58 -04:00
a674589db0
added client editing capability
2012-08-27 16:46:45 -04:00
a45c8bf96d
upped default client secret strength
2012-08-27 16:46:25 -04:00
e39dcb63dd
added views, fixed registration for SECOAUTH required parameter
2012-08-27 16:25:43 -04:00
d8037c0513
Redirect URL UI initial commit
2012-08-27 16:17:22 -04:00
83873f8ae2
added defaults for SECOAUTH
2012-08-27 16:09:01 -04:00
9f84126cb8
more dynamic registration
2012-08-27 16:00:47 -04:00
aeb6644d38
exploded version of attribute binding/processing
2012-08-27 14:47:04 -04:00
e4470c9361
mapped the invalid scope exception, addresses #102
...
Still can't access userinfo if you're not using OAuth2
2012-08-27 13:28:54 -04:00
259e84c871
put null check into interceptor, addresses #183
2012-08-27 11:55:06 -04:00
8361f74932
removed innocuous change
2012-08-24 16:00:58 -04:00
42287edc9b
junk comentt showwhich brnach we'ron
2012-08-24 15:27:39 -04:00
a61d94e07e
Cancel buttons on client forms
2012-08-24 14:32:13 -04:00
149080f776
Breadcrumbs are now fully dynamic.
2012-08-24 12:57:10 -04:00
37d6d63772
inject userinfo into context for use in JSPs
...
addresses #99 (for real this time)
2012-08-23 18:23:52 -04:00
b5ce8d5e8b
added getByUsername to userinfo repositories and supporting classes, updated calling classes to use this
...
fixed namedquery
2012-08-23 18:23:47 -04:00
6cb0269629
Merge remote branch 'origin/master'
2012-08-23 18:08:13 -04:00
dc1f1965af
Refactoring breadcrumbs. The breadcrumb bar will disappear momentarily.
2012-08-23 18:07:22 -04:00
ba5572b28a
Tidied up a bit, added javadoc comments to new classes
2012-08-23 11:05:10 -04:00
c23b176567
Database backed authorization-code-service now works.
2012-08-23 10:46:08 -04:00
4b76cc514b
Added a database-backed authorization-code system. Untested; needs to be injected into configuration in the place of the in-memory one and tested
2012-08-22 16:54:00 -04:00
e5b62e8935
fixed patterns and expressions on http blocks
2012-08-21 14:02:35 -04:00
9eb328831f
changed to proper prefix
2012-08-21 13:55:47 -04:00
af01e26e10
Split up permitAll on enpoints
2012-08-21 12:54:55 -04:00
d2f7e8edf9
Moved SPEL to app-context, and added enpoint permitAlls
2012-08-21 12:53:48 -04:00
bdfdbbadbc
stats summary, addresses #62
2012-08-21 12:20:05 -04:00
6cb7e74046
updated default handling to user proper backbone model handling
2012-08-20 16:49:39 -04:00
74b4fab58c
Client secret processing
2012-08-20 16:06:12 -04:00
05fa7b148c
added checks for generated client secret
2012-08-20 12:23:02 -04:00
9e60da2675
added controls for client secret processing
2012-08-20 12:22:38 -04:00
a02f37cec3
added generators to client service API
2012-08-20 12:22:18 -04:00
8520fcbf72
removed deprecated granted authority reference
2012-08-17 14:40:13 -04:00
a65504c0cb
added new exception for userinfo, addresses #133
2012-08-15 16:02:06 -04:00
209fc2d249
refactored request object endpoint to avoid urlspace conflict with SECOAUTH
2012-08-15 12:06:37 -04:00
d1218efb2a
cleaned up imports
2012-08-14 10:55:08 -04:00
55e7a4d707
moved request object auth endpoint in project setup
2012-08-14 10:55:08 -04:00
ec286b9644
removed auth bean from application-context. Added extra parameter checks in request object auth endpoint
2012-08-14 10:55:08 -04:00
04d8faa90a
updated autowired annotation
2012-08-14 10:55:08 -04:00
20a7ebc576
autowired all member variables in request object auth endpoint
2012-08-14 10:55:08 -04:00
694074ee58
moved endpoint, added param processing
2012-08-14 10:55:08 -04:00
36b9c805d9
added reference to abstract endpoint class to get token granter
2012-08-14 10:55:08 -04:00
2bdbb283b7
removed dependency on abstract endpoint class. added methods needed to authRequestObjectEndpoint (afterPropertiesSet())
2012-08-14 10:55:08 -04:00
51ec529861
readded implementation of initializingBean
2012-08-14 10:55:08 -04:00
638ebf2010
cleaned up AuthRequestObjectEndpoint class
2012-08-14 10:55:08 -04:00
d93f5f18e5
added state value to jwt that gets passed as request object. certain methods from SECOAUTH use this
2012-08-14 10:55:08 -04:00
3486ea28f1
updated mimicked methods to not use jwt, but rather a jwt in an auth request
2012-08-14 10:55:08 -04:00
1a20dcbc6e
added methods that mimic behavior of private SECOATH methods
2012-08-14 10:55:08 -04:00
d5caa0b543
changed server endpoint to act like an endpoint. WIP to accept request objects, validate, and redirect
2012-08-14 10:55:08 -04:00
7d6211afd7
cleaned up some imports, added serverEndpointRequest class
2012-08-14 10:55:08 -04:00
28344a3c91
auth endpoint got into client code. removed
2012-08-14 10:55:08 -04:00
2888c08083
changed cookie claim to include the response
2012-08-14 10:55:07 -04:00
c0a61fe47a
moved jquery to page header instead of footer, added focus call on login form
2012-08-14 10:48:38 -04:00
484abc4915
fixed client delete
2012-08-10 17:24:21 -04:00
5e898a7b0b
Id toke timeout binding for UI
2012-08-10 17:20:23 -04:00
aaa38a761d
Mis-type for client secret
2012-08-10 17:18:43 -04:00
b99d2ed9dc
Client Id null fix
2012-08-10 17:15:35 -04:00
935b5ed43a
Client Id is now editable
2012-08-10 17:11:13 -04:00
0f9d4ef255
Id refactor UI
2012-08-10 17:05:28 -04:00
155974d8e3
moved services and api over to using new client Id field (instead of client_id)
2012-08-10 16:53:31 -04:00
eb5a24690f
added method to get client by its (new) Long id
2012-08-10 16:29:16 -04:00
480fb8e593
Id refactor UI
2012-08-10 16:26:54 -04:00
ae5e1ca859
Merge remote branch 'origin/master'
2012-08-10 16:12:54 -04:00
3f9e2cfa52
Horizontal UI refactor
2012-08-10 15:29:11 -04:00
bb7d6b2e94
split scopes table
2012-08-10 14:26:47 -04:00
66e5cf3f04
Client table button UI tweaks
2012-08-10 14:23:54 -04:00
8d57e0e9ef
Issue # 81 Client UI - Creating new client creates duplicate
2012-08-10 14:19:33 -04:00
a5a102bbe4
Github Issue #116
2012-08-10 11:25:50 -04:00
170036e0b8
Added expiration to id tokens
2012-08-09 12:44:22 -04:00
49cb8bd0cb
fixing bugs; needed to make all ids BIGINT AUTO-INCREMENT PRIMARY KEY in sql files
2012-08-09 12:44:21 -04:00
d7deda1699
Propogated AuthenticationHolder effects; this is untested but compiles and I think it is mostly correct
2012-08-09 12:44:21 -04:00
90df91c351
Added AuthenticationHolder object, got references squared away for AccessToken side. Compiles.
2012-08-09 12:44:21 -04:00
cf348590b0
Removed unused ClientGeneratorFactory
2012-08-09 12:44:21 -04:00
d6d80c3e60
Gave OAuth2RefreshTokenEntity a Long Id
2012-08-09 12:44:21 -04:00
6b1dad7215
Gave OAuth2AccessTokenEntity a Long Id
2012-08-09 12:44:21 -04:00
780839dbf9
Made things compile after ClientDetailsEntity refactoring
2012-08-09 12:44:21 -04:00
09e528e113
added discovery info for x509 and client auth
2012-08-07 17:30:36 -04:00
dc7aac12f9
added custom login form, changed footer to only optionally load app
2012-08-07 12:09:32 -04:00
8d4e046408
All logging is now org.slf4j. We had a mix of org.slf4j and apache commons-logging. Added error logging to all view which throw errors.
2012-08-07 10:04:38 -04:00
a061e64abf
Merge branch 'user-approval-handler-updated-rebase'
2012-08-06 16:30:03 -04:00
32dc92119f
Cleanup completed, this works for the most part. TODO: need to make an upstream change in order to inject a new set of scopes into the AuthorizationRequest.
2012-08-06 16:29:22 -04:00
5fb67ab7bb
Did a lot of cleanup; untested but compiles
2012-08-06 14:33:16 -04:00
ae44bd5e0c
Works; about to do some cleanup
2012-08-06 13:40:27 -04:00
2f28cf33e7
Changed UserInfo refs in WhitelistedSite to String ids; updated the user approval handler to check if "remember this decision" is checked and only make a new AP if so, and to pull in the scopes selected on the approval page as the saved allowed scopes for that AP.
2012-08-03 16:43:37 -04:00
b87d54b06e
Changed UserInfo references to String "userId" references
2012-08-03 13:32:17 -04:00
845976b8ac
First stages of getting the graylist portion to work. Currently no mechanism for telling the system NOT to remember your decision; that will come later. All approvals will be automatically stored with this code.
2012-08-03 12:49:40 -04:00
51b8dbe065
Revert "updated jwtHeader typ to use an enum" -- set things back to using a string
...
This reverts commit 3b2268c622
2012-08-02 14:16:55 -04:00
9a7e40fee7
moved all bean definitions to annotations, removed orphaned CheckID view
2012-08-02 12:46:35 -04:00
1508369548
now with Walsh-flavored certificate generation
2012-08-01 18:04:26 -04:00
61a8d4a787
x509 take -- bouncycastley version
2012-08-01 17:19:33 -04:00
db415bfa2b
Working on user approval handler
2012-07-31 14:50:24 -04:00
a223565364
updating user approval handler
2012-07-31 14:50:24 -04:00
676808bdac
got things to deploy - could not reference UserInfo directly in ApprovedSite and WhitelistedSite; needed to reference DefaultUserInfo instead.
2012-07-31 14:50:24 -04:00
4e10fce7ef
Implementing user approval handler; made some modifications to ApprovedSite and WhitelistedSite models, repositories, and service layers.
2012-07-31 14:50:24 -04:00
7c33e19950
Changed authorization endpoint to /authorize rather than /auth; updated SWD entry. Also removed checkid entry from SWD.
2012-07-31 14:39:27 -04:00
863693cf59
Merge pull request #128 from mtderryberry/jwe-and-jwt-fixes
...
Jwe and jwt fixes
2012-07-31 10:52:04 -07:00
3982561a5b
Removing "throws exception" from views. Addresses issue #70
2012-07-31 12:28:46 -04:00
5cf6359f7d
Merge branch 'master' of github.com:mitreid-connect/OpenID-Connect-Java-Spring-Server
2012-07-31 12:14:19 -04:00
686412757f
shortened urls
2012-07-31 12:02:21 -04:00
3b2268c622
updated jwtHeader typ to use an enum
2012-07-31 11:29:48 -04:00
1b5f99efec
added .json mapping to SWD
2012-07-31 10:42:42 -04:00
02da9fceed
fixed imports
2012-07-31 09:16:05 -04:00
d07667576e
cleaned up old code
2012-07-30 16:50:44 -04:00
40f39a18e0
cleaning up introspection endpoint
2012-07-30 16:50:44 -04:00
e7449901a6
Removed IdTokenGeneratorService. Addresses issue #75
2012-07-30 16:46:20 -04:00
ee9288a72a
turned down cache in default
2012-07-30 16:16:02 -04:00
c80f7f1fcd
removed keystore dependency where it is not needed
2012-07-30 14:58:29 -04:00
319568d971
refactored JWA algorithm markers to use enum instead of string as stored class
2012-07-23 20:21:31 -04:00
165f3ea292
fixed some unit tests, broke others
2012-07-23 18:44:47 -04:00
1f68c835c0
updated openid connect image
2012-07-16 15:12:35 -06:00
7a3ae5a757
Merge remote branch 'origin/master'
2012-07-10 17:00:30 -04:00
30addb5439
Redirect URI now displayed on approval page.
2012-07-10 16:54:55 -04:00
9f16f309bd
updated userinfouserdetailsservice to use username instead of userid -- this should actually be a wrapper class though
2012-07-10 16:44:29 -04:00
b0a7ebd9b1
fixed JWK algorithm display
2012-07-10 14:57:12 -04:00
84aa451095
Added comment for spring-servlet.xml
2012-07-10 13:29:53 -04:00
5657bc8f28
updated configuration, confirmed works pending SECOAUTH-299
2012-07-09 11:25:45 -04:00
e5eb2e03d8
added implicit beans
2012-07-09 11:25:45 -04:00
01793ec57f
added preferred_username claim to userinfo endpoint
2012-07-06 16:02:11 -04:00
8abbce3a2d
fixed broken unit tests - they were pointing to the wrong spring context file;
2012-07-06 14:22:06 -04:00
50241e4da1
changed UserInfo.verified to UserInfo.emailVerified.
2012-07-06 14:11:43 -04:00
8fe132cb53
formatting
2012-07-05 18:32:31 -04:00
830e07c35c
moved whole configuration from servlet context into application context
2012-07-05 18:26:12 -04:00
dbd563f3f2
attempting to allow make use of SPEL
2012-07-05 18:21:52 -04:00
f0c949fd09
added scope-based filter for userinfo
2012-07-05 17:14:51 -04:00
5c1b07ae65
don't overwrite an existing JWT nonce
2012-06-28 17:04:21 -04:00
29731d52f6
Merge branch 'refreshtokens' of file:///home/jricher/Projects/workspace-sts/OpenIDConnect-MITRE/OpenID-Connect-Java-Spring-Server into refreshtokens
2012-06-28 17:00:17 -04:00
de1597b214
refresh token handling fixed, removed token factory references
2012-06-28 16:55:11 -04:00
0dc568e5d0
Fixed more information link on approval page
2012-06-28 14:54:59 -04:00
a022f4d713
Authorized grant types now supported client-side
2012-06-28 14:40:37 -04:00
bff34f647c
Allowing a null value for redirectURIs
2012-06-28 12:07:02 -04:00
8fbea2516a
Updated client side variable names to reflect name changes to access token and refresh token timeout
2012-06-28 11:37:34 -04:00
4e3c99abe4
Merge branch 'validityIntegers'
2012-06-26 13:55:26 -04:00
81d1af40bd
Updated our ClientDetailsEntity *TokenTimeout fields to be *ValiditySeconds, which are now typed as proper Integers in the SECOAUTH ClientDetails interface
2012-06-26 13:54:01 -04:00
b6e00b9884
Base white-list functionality and template
2012-06-26 12:50:13 -04:00
1127a7cfbc
refactored JWKs, updated signing servier to use them
2012-06-25 17:19:25 -04:00
adb8499bee
merged derryberry code, plus tweaks, still WIP
2012-06-25 16:42:41 -04:00
b94fbd7439
updated -common and -client code by removing throws exception, changing to rest templates, and updating test cases to use annotations
2012-06-20 09:36:55 -04:00
94256d95a1
added crypto configuration file
2012-06-19 16:25:13 -04:00
a38dc0ce29
added crypto configuration file
2012-06-19 16:24:50 -04:00
fe3bbfb3d5
Further cleanups. Still missing:
...
- All tests extend TestCase, should use annotations instead
- Several elements throw Exception
- Key Fetchers should use RESTTemplates and be in a separate utility set
2012-06-15 17:11:58 -04:00
b86abdd761
merge from pull request, plus cleanup
2012-06-15 15:36:14 -04:00
731ad2e2e2
updated SECOAUTH reference, fixed some SQL files, temporarily closed token timeout issue
2012-06-15 12:05:08 -04:00
ace5dd1f1e
imported userinfouserdetails filter from MITRE codebase
2012-06-13 16:33:55 -04:00
65dc3daaf8
smart client
2012-06-12 16:09:01 -04:00
bbf9591c92
Merge branch 'master' into issue52
...
Conflicts:
openid-connect-server/src/main/java/org/mitre/oauth2/service/impl/DefaultOAuth2ProviderTokenService.java
openid-connect-server/src/main/webapp/WEB-INF/spring-servlet.xml
openid-connect-server/src/main/webapp/WEB-INF/views/oauth/approve.jsp
2012-06-11 15:04:01 -04:00
7a207dc162
Merge branch 'discoveryupdate'
2012-06-05 16:37:04 -04:00
250e0c730e
Merge branch 'jwtupdate'
2012-06-05 16:36:32 -04:00
7df2663e00
added final slashification of configuration URLs
2012-06-05 16:36:11 -04:00
fbdccdb78e
added Xrd support ( fixes #63 ), updated configuration locations ( fixes #47 )
2012-06-05 16:32:49 -04:00
e44697cef9
updated JWK display to latest, closes #58
2012-06-05 16:07:19 -04:00
3b4e95ac10
Approval page updates
2012-06-05 15:52:09 -04:00
Amanda Anganes