4f9ea0b474
Improve state handling in handleAuthorizationCodeResponse
...
Fail fast when there is no state in session, e.g. because the session
cookie was removed.
Resolves #949
2015-11-23 21:34:35 -05:00
a3d01727f9
Make FILTER_PROCESSES_URL public
...
Currently hardcoded in the filter and the client's Spring Security config; would be nicer to reference the value instead.
c5e70ebd5c/src/main/webapp/WEB-INF/spring/appServlet/servlet-context.xml (L54)
2015-11-23 21:03:08 -05:00
6129cfa61a
added scope-based authorities granter for introspections services, closes #835
2015-10-13 18:51:21 -04:00
ebb4f2c3d4
Upgraded to nimbus 4.2, closes #934
2015-10-13 04:40:01 -04:00
98e1d26134
limited when login_hint is sent to the server, closes #963
2015-10-12 17:56:31 -04:00
acb3d03052
added 'kid' to all signed tokens, closes #899
2015-10-01 18:54:38 -04:00
48bc26901a
added JTI to client auth
2015-10-01 18:54:15 -04:00
9fe98e0132
OIDCAuthenticationFilter: Make authenticationSignerService optional so
...
it must not be provided in Spring config
OIDCAuthenticationProvider: Setter for UserInfoFetcher, so own
implementation can be wired
UserInfoFetcher: Call to DefaultUserInfo.fromJson moved to method, so it
can be overwritten by own implementation to use own UserInfo
implementation
2015-08-21 17:33:23 -04:00
489450b1c2
automated code format cleanup
2015-08-05 12:04:14 -04:00
3c297ba18f
collapsed error clause
2015-07-08 14:35:45 -04:00
42b93be492
added uri-encoded client service, closes #857
2015-07-07 17:55:56 -04:00
667c766273
reverted over-reaching check on webfinger fetcher
2015-07-03 20:16:32 -04:00
d2a393f7f9
converted error handlers to a single @ControllerAdvice class, closes #788
2015-06-24 17:26:10 -04:00
7df3597757
split client's auth token into pending and authorized classes
2015-06-24 16:00:40 -04:00
b4520c170e
ID Token carried through as parsed JWT instead of string, closes #832
2015-06-24 16:00:40 -04:00
f4a1b27e2e
better handling of HTTP and JSON errors on network fetches, added http-forcing behavior for webfinger client and sector URL service
2015-06-23 22:21:18 -04:00
9ae92b983a
added http and json error handling to webfinger service
2015-06-23 21:50:16 -04:00
c166cbe49c
added login hint capability to client library
2015-06-23 21:21:41 -04:00
a259841eaf
Added getters and setters to IntrospectingTokenService
...
Fixed TokenCacheObject constructor for setting TCO's expire time
2015-06-09 13:37:07 -04:00
698fe55b85
IntrospectingTokenService now takes parameters (cacheTokens, cacheNonExpiringTokens, defaultExpireTime, forceCacheExpireTime) to change the behavior or even disable the caching of responses from the IntrospectionEndpoint.
2015-06-04 16:33:37 -04:00
9e74e40453
Use diamond syntax instead of explicit types
2015-06-03 10:24:48 -04:00
13f5e4f8a6
Collapse identical catch branches
2015-06-03 10:24:48 -04:00
6dc2b2cb5e
Various small improvements/bugfixes
2015-06-03 10:24:41 -04:00
54fbf0d0ac
Added null check for expiration during introspection. Making assumption that null exp means tokens dont expire.
2015-06-03 09:57:22 -04:00
d1e8529a7b
expose ID Token and UserInfo to the AuthoritiesProvider and AuthoritiesMapper, both extensible
...
closes #699
closes #761
2015-06-01 21:11:19 -04:00
effe955953
Fix blacklist/whitelist for DynamicRegistrationClientConfigurationService
...
ClientConfigurationService#getClientConfiguration has ServerConfiguration as parameter, not String
2015-05-28 17:05:55 -04:00
caf85b990d
Revert "added option to send skip sending nonce if desired, closes #704 , closes #683,"
...
This reverts commit bbeaeb06e3
2015-05-28 16:44:26 -04:00
d32118d017
Revert "added unit tests for nonce-less url builders (exception cases)"
...
This reverts commit ada1b0d24e
2015-05-28 16:41:24 -04:00
0d6775dfa8
made auth request url builder handle multiple keys
2015-05-22 13:04:21 -04:00
da72ce02ad
added token endpoint options to client filter, closes #803
2015-05-13 16:53:35 -04:00
617d485478
updated all references to media types to use constants instead of literals, closes #767
2015-03-11 12:06:38 -04:00
c09b63c69f
made logger declarations consistent across project, closes #780
2015-03-08 21:56:33 -04:00
7a1480bb07
moved and consolidated json utilities
2015-02-26 16:20:01 -05:00
b376bc6059
removed some vestigial service/repository calls, closes #513
2015-02-17 16:22:40 -05:00
05f03f7c90
yet more year updates
2015-02-17 13:09:45 -05:00
994ce6c743
consistently named JOSE-based classes, closes #529
2015-02-17 12:11:58 -05:00
685960358c
formatting cleanup
2015-02-17 11:08:46 -05:00
e2349984b8
happy new year 2015!
2015-02-17 10:24:08 -05:00
a9544059cf
flagged spurious serialization warnings from the libraries (we're not actually serializing things here)
2015-02-16 12:31:43 -05:00
77c06e9557
replaced deprecated http components calls, closes #744
2015-02-16 12:31:16 -05:00
3708b531df
moved requirement to different component, closes #759
...
also cleaned up comments in filter
2015-02-16 11:16:24 -05:00
ada1b0d24e
added unit tests for nonce-less url builders (exception cases)
2014-12-19 20:55:40 -05:00
bbeaeb06e3
added option to send skip sending nonce if desired, closes #704 , closes #683 ,
2014-12-18 23:22:59 -05:00
9aa45f8efb
Made the constructor public for OIDCAuthentication filter.
2014-12-18 20:55:15 -05:00
69c19d35fa
moved test into test package
2014-11-13 22:17:45 -10:00
775b77b367
updated date format of token introspection response, closes #719
2014-11-13 11:08:20 -10:00
bc9942e929
relaxed issuer constraints in client, closes #638
2014-11-01 23:46:57 +00:00
3f5e2acfeb
if no alg is explicitly set, use the default from the signer
2014-10-23 22:09:02 -04:00
659880b4dc
fix broken dependency declaration, that follow up to org.springframework.beans.NotWritablePropertyException: Invalid property 'jwkKeyList' of bean class exception
2014-10-14 20:30:50 -04:00
134909a82f
import cleanup
2014-10-07 19:40:38 -04:00
Mark Janssen