github
/
OpenID-Connect-Java-Spring-Server
mirror of https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
1,128 Commits
17 Branches
69 Tags
78 MiB
Commit Graph

741 Commits (cc9eea5b3df2718bc70f8ed1186eb68be38942cf)

Author SHA1 Message Date
Justin Richer 7b8623edbb typo 2013-03-05 16:15:21 -05:00
Justin Richer 93851ab94d request URIs and default ACR values 2013-03-05 16:11:32 -05:00
Justin Richer 6c136b5696 contacts 2013-03-05 15:43:38 -05:00
Justin Richer 79bf862924 added Not Yet Implemented tags 2013-03-05 15:32:08 -05:00
Justin Richer 9b6dfd4e1d require auth time, reuse refresh token, and default max age 2013-03-05 15:01:25 -05:00
Justin Richer ff53d71e6f sector identifier, initiate login, and post logout URIs ; reuse refresh tokens 2013-03-05 14:44:40 -05:00
Justin Richer 23bd6a2ffb response types 2013-03-05 14:29:51 -05:00
Justin Richer 82ecef144d token endpoint auth method 2013-03-05 14:05:46 -05:00
Justin Richer c9b769818e changed script loading methods to help debugging, fixed subjectype data pull 2013-03-05 13:34:18 -05:00
Justin Richer 1fcb67e885 JWKS and subject type 2013-03-05 12:33:14 -05:00
Justin Richer 29b46bfd58 stupid javascript templates 2013-03-05 12:21:06 -05:00
Justin Richer 0d25d4cb17 null-preserving static parsers instead of constructors 2013-03-05 12:10:33 -05:00
Justin Richer 9244d6413c application type 2013-03-05 11:50:47 -05:00
Justin Richer e7282d53fe added client URI bits 2013-03-05 11:22:55 -05:00
Justin Richer 6a88c13675 split client view into two classes 2013-03-04 17:50:02 -05:00
Justin Richer 4095f2179c added custom client view for API 2013-03-04 17:33:18 -05:00
Justin Richer a0c2e94922 added in all extra fields to JS processor 2013-03-04 17:11:44 -05:00
Justin Richer ac44020305 grant types rename 2013-03-04 17:11:25 -05:00
Justin Richer 33c488d9ae logo url -> uri 2013-03-04 16:53:09 -05:00
Justin Richer 7c3ddd0a86 redirect uri with new name 2013-03-04 16:49:17 -05:00
Justin Richer 9aebca2e97 fixed gson parser in client API 2013-03-04 16:38:11 -05:00
Justin Richer 23efdf9f51 fix viewbean name, nullsafe client creation time, fixed default scope handling 2013-03-04 16:12:06 -05:00
Justin Richer 26f03ec070 timestamp for creation date 2013-03-04 16:11:20 -05:00
Justin Richer ea034f7d4a database preload fixed to match new schema 2013-03-04 16:10:32 -05:00
Justin Richer 1f5f7c8aac updates for java 7 2013-03-04 16:00:12 -05:00
Justin Richer 235a3bf2c4 added client information response view 2013-03-04 15:45:35 -05:00
Justin Richer fc978ac994 made require_auth_time nullable again 2013-03-04 15:44:49 -05:00
Justin Richer a2d6894f62 started serialization for client information view 2013-03-04 15:13:55 -05:00
Justin Richer db24c203ec added parser to client registration endpoint 2013-03-04 15:01:02 -05:00
Justin Richer 5c044b9eff added extra client fields to DB model, moved services to use new client model object 2013-03-04 14:22:42 -05:00
Justin Richer 3f8d7d70e5 updated client model to match OAuth Dyn Reg and OIDC Reg 2013-03-04 12:48:05 -05:00
Justin Richer 5b9422ffdf cleaned up old unit tests 2013-03-04 11:37:49 -05:00
Justin Richer f8f925c08f removed exploded war (no longer needed), addresses #260 2013-03-04 10:59:04 -05:00
Justin Richer bd877dde82 added signature checking to request objects 2013-03-01 17:44:44 -05:00
Justin Richer 6c1e6b2d74 refactored signing and validation, added jwk-based cache, removed keyfetcher, refactored client side class structure 2013-03-01 17:44:44 -05:00
Justin Richer 385853fa1f refactored signing and validation, added jwk-based cache, removed keyfetcher, refactored client side class structure 2013-03-01 17:44:44 -05:00
Justin Richer 7e64c4bffc deleted duplicate login button, addresses #276 2013-03-01 17:42:48 -05:00
Justin Richer 13a3e97113 updated request object forwarding hack 2013-03-01 17:42:48 -05:00
Justin Richer 0712d8c340 updated spring version 2013-03-01 17:42:48 -05:00
Amanda Anganes 42ea2468c9 Split up about, contact, stats tags into two each and removed logic from the *Content tag files 2013-02-28 13:56:09 -05:00
Amanda Anganes 8677f6516d Template-ized most of the home page UI 2013-02-28 11:25:37 -05:00
Amanda Anganes 987a05302d Added configured logo url 2013-02-25 13:01:26 -05:00
Amanda Anganes 60b679e942 First steps towards adding display variables to config bean 2013-02-22 17:10:14 -05:00
Justin Richer 4d725b88dd more updates to track nimbus-jose-jwt classes and use them properly 2013-02-22 12:08:01 -05:00
Justin Richer 9a98d241e8 updates to track Nimbus JOSE API changes to audience and date fields 2013-02-22 12:08:01 -05:00
Justin Richer cc727cee3e patched unit test to new format 2013-02-22 12:08:01 -05:00
Justin Richer 03e7337b9f client registration endpoint needs general rewrite to fit new spec. 
Most of the problematic references will change with the rewrite, so this is a slapdash patch to make things compile for now.
 2013-02-22 12:08:01 -05:00
Justin Richer 25b9940a68 request object endpoint is a placeholder, cleaning out for now 2013-02-22 12:08:01 -05:00
Justin Richer e5732da857 added system default signing algorithm, converted token provider and enhancer to use nimbus-jose 2013-02-22 12:08:01 -05:00
Justin Richer c01e873019 request object processor moved to nimbus-jose 2013-02-22 12:08:01 -05:00
Justin Richer 0f99e0e06d assertion token granter moved to nimbus-jose 2013-02-22 12:08:01 -05:00
Justin Richer 10ab55a7e2 moved jwk/x509 publishing over to nimbus-jose (mostly) 2013-02-22 12:08:01 -05:00
Justin Richer fca30cd13f added provisions to bootstrap signing and validation service from config files 2013-02-22 12:08:01 -05:00
Justin Richer a078f7d202 patched userinfo view to use nimbus 2013-02-22 12:08:01 -05:00
Justin Richer c7d1b47b38 converted bearer assertion framework to nimbus-jose 2013-02-22 12:08:01 -05:00
Justin Richer 910a6cf1a0 remvoed idtoken repository that was never used 2013-02-22 12:08:01 -05:00
Justin Richer 46a3e70377 removed idtoken class, removed all jwe/jwt tests 2013-02-22 12:08:01 -05:00
Justin Richer 46f0e6f3cb restyled login page 2013-02-20 16:39:46 -05:00
Justin Richer b840b31c74 added cleaner login/logout failure handling and processing 2013-02-20 16:11:08 -05:00
Amanda Anganes 1398575061 Added additional joda time dependency 2013-02-20 15:44:53 -05:00
Justin Richer 58ea01f0f8 added hints to login form to discourage mobile browsers from trying to do something clever like autocorrect 2013-02-13 13:27:31 -05:00
Justin Richer 991f37a1e6 refactored javascript and template files into components 2013-02-13 10:12:31 -05:00
Justin Richer 137e5e5ca1 added placeholder blocks in place of empty tables, addresses #244 2013-02-06 17:42:10 -05:00
Justin Richer 62b931ee0d scope icons now show up everywhere 2013-02-05 17:39:38 -05:00
Justin Richer d0fdf8140e sorting on approval page 2013-02-05 15:47:32 -05:00
Justin Richer 328fa221bd scope bootstrapping 2013-02-05 15:08:49 -05:00
Justin Richer 02846c0a8d typo fix, DB constraints 2013-02-05 14:40:06 -05:00
Justin Richer 88f2ea3e7e icon selector 2013-02-05 14:33:58 -05:00
Justin Richer e622202e9e display scopes based on request, pull scope information dynamically, addresses #208 2013-02-05 11:36:59 -05:00
Justin Richer eb4773ce46 beginning dynamic scopes on auth page 2013-02-05 11:28:39 -05:00
Justin Richer c2b9fd4db1 system scope ordering consistency 2013-02-05 11:11:41 -05:00
Justin Richer 173281f039 DB consistency fix 2013-02-05 11:11:15 -05:00
Justin Richer 801a45cc49 several bugfixes to scopes UI, works now 2013-02-03 22:04:56 -05:00
Justin Richer e5171a196a minor bugfixes 2013-02-03 22:04:55 -05:00
Justin Richer d1968f624a scope ui bugfixes 2013-02-03 22:04:55 -05:00
Justin Richer fbfc977f3b system scope ui updates 2013-02-03 22:04:55 -05:00
Justin Richer 9dc603a759 scope management UI 2013-02-03 22:04:55 -05:00
Justin Richer 1ceee853f9 scope management UI 2013-02-03 22:04:55 -05:00
Justin Richer a3037a18a7 system scope service applied to client creation UI 2013-02-03 22:04:55 -05:00
Justin Richer cab36a2b80 added appropriate filterered and transformative actions to scope service 2013-02-03 22:04:55 -05:00
Justin Richer ab35186696 added scope service, repository, and API 2013-02-03 22:02:24 -05:00
Justin Richer 19e7b62a42 removed persistence.xml and moved to pure spring-based config, addresses #194 2013-02-03 22:02:23 -05:00
Justin Richer a3619240e6 added site scope 2013-02-03 22:02:23 -05:00
Justin Richer a2e548c261 fixed claims processor for request object from user info endpoint 2013-02-03 22:02:23 -05:00
Justin Richer 899150d636 tweak display on auth revoke page 2013-02-03 22:02:23 -05:00
Justin Richer 3c190e044a inject parsed parameters to make SECOAUTH happy 2013-02-03 22:02:23 -05:00
Justin Richer 1144d511af inject scopes 2013-02-03 22:02:23 -05:00
Justin Richer f9d50db1f1 don't treat openid scope special here -- by default client gets access to *all* scopes it's registered for 2013-02-03 22:02:23 -05:00
Justin Richer 078342715b moved request object to request manager 2013-02-03 22:02:22 -05:00
Amanda Anganes 3399eed45a Added about, contact, and stats pages. Still largely placeholders, but the topbar works correctly now at least. 2013-01-31 11:34:07 -05:00
Justin Richer 0be254c99a updated token introspection output to match spec and client filter 2013-01-30 15:31:32 -05:00
Justin Richer e02e08563c changed order or custom filters to make assertions work, added client credentials token granter to default 2013-01-30 14:34:16 -05:00
Justin Richer c1d33bb55b bugfix in assertion processor 2013-01-30 14:34:16 -05:00
Amanda Anganes 2e2c0e8e6c Fixed bug in nonce processing 2013-01-29 13:07:41 -05:00
Amanda Anganes 3db74100a4 working on bug 2013-01-29 13:07:41 -05:00
Amanda Anganes dd8b48e863 Reset ConnectAuthorizationRequestManager to version from master 2013-01-29 13:07:41 -05:00
Amanda Anganes 06f970e61b Trying to fix nonce service 2013-01-29 13:07:41 -05:00
Amanda Anganes 86bf51f0a7 Added java reflection code for request object handling, needs to be tested 2013-01-29 13:07:41 -05:00
Amanda Anganes 677f0f2d4c Stubbed out required functionality for request object filtering 2013-01-29 13:07:41 -05:00
Amanda Anganes 67e8714671 Working on request object userinfo parsing 2013-01-29 13:07:41 -05:00
Justin Richer 779001a8c8 updated copyright year 2013-01-28 13:39:25 -05:00
Justin Richer 7269700dc6 switched injector from repository to service 2013-01-24 19:32:55 -05:00
Justin Richer f0ee36dad2 auth_type -> auth_method (addresses #258) 2013-01-18 18:26:55 -05:00
Justin Richer fd2253303e changed pointer on tabs, addresses #252 2013-01-18 18:17:39 -05:00
Justin Richer 899e306683 fixed JS crash on "new client" operation 2013-01-18 18:15:19 -05:00
Justin Richer 8831bc64a2 offline -> offline_access (addresses #248) 2013-01-18 18:03:39 -05:00
Justin Richer 27a26e0a35 (user_id/prn) -> sub 2013-01-18 16:40:05 -05:00
Justin Richer 1ab29882b4 fixed user prepoulation table 2013-01-18 15:38:53 -05:00
Justin Richer 0ab4ad4bbe added "birthdate", addresses #253 2013-01-18 15:38:41 -05:00
Justin Richer 6ef4dc817e genericized nimbus code, added caching 2013-01-18 15:10:48 -05:00
Justin Richer 2d21a72e7e switched to nimbus to check JWT signature 2013-01-18 15:10:48 -05:00
Justin Richer 60bda31c54 updated custom filter 2013-01-18 15:10:48 -05:00
Justin Richer c17bc05b0e wiring configuration 2013-01-18 15:10:48 -05:00
Justin Richer 4262be1fd3 added jwt processing to client auth provider 2013-01-18 15:06:00 -05:00
Justin Richer abd64eccd6 added framework for processing assertions for client auth 2013-01-18 15:06:00 -05:00
Amanda Anganes ad5e77f7ff Made nonce storage duration configurable in application-context.xml; 2013-01-10 10:34:40 -05:00
Amanda Anganes 59f1b1f05e Testing, nonce handling seems to be working now 2013-01-07 13:28:30 -05:00
Amanda Anganes a1a117cfde Added default constructor to ConnectAuthorizationRequestManager 2013-01-07 10:54:33 -05:00
Amanda Anganes af81e371fb Updated application-context to use new authorization request manager 2013-01-07 10:46:55 -05:00
Amanda Anganes 77b932f5a7 Added implementation of AuthorizationRequestManager. Nonce checking will go in here 2013-01-04 15:30:24 -05:00
Amanda Anganes 1af6513499 Removed nonce checking from token service impl 2013-01-04 15:30:24 -05:00
Amanda Anganes 7e7b2527db Added nonce to persistence.xml 2013-01-04 15:30:24 -05:00
Amanda Anganes 246ed962bb Added stub of repository test 2013-01-04 15:30:24 -05:00
Amanda Anganes e1dffb959c Added NonceReuseException 2013-01-04 15:30:24 -05:00
Amanda Anganes 8f8a3754db Added database tables for Nonce 2013-01-04 15:30:24 -05:00
Amanda Anganes a4637ec395 Fleshed out nonce service classes, added code to token service impl to check for and store nonces. Added JodaTime library for working with dates. 2013-01-04 15:30:24 -05:00
Amanda Anganes c7ae315e98 Added initial files for nonce service. Repository and service impls are stubs 2013-01-04 15:30:24 -05:00
Justin Richer cbcfe55bb9 added introspection flag to client bootstrap 2013-01-02 14:16:31 -05:00
Justin Richer 4068952a81 fixed well size, added comment 2013-01-02 10:19:55 -05:00
Justin Richer 655092a12b added introspection checkbox, added access tab 
Signed-off-by: Justin Richer <jricher@mitre.org>
 2012-12-21 16:38:52 -05:00
Justin Richer 9a1b2d7fac made client edit page tabbable (that was seriously easy) 2012-12-21 16:26:34 -05:00
Justin Richer 48866c15f2 button display cleanup 2012-12-21 16:07:59 -05:00
Justin Richer a85b1f5d74 split approved sites into two tables 2012-12-21 15:35:33 -05:00
Justin Richer 198a45369a buttonsize tweak 2012-12-21 15:03:45 -05:00
Justin Richer f12efc1b80 added dynreg caution block 2012-12-21 14:48:15 -05:00
Justin Richer 231e81a426 updated icons 2012-12-21 14:28:07 -05:00
Justin Richer 797d521691 cleaned up logged-in button 2012-12-21 13:04:33 -05:00
Justin Richer 7ebbe3acc4 removed mockups 2012-12-21 11:01:22 -05:00
Justin Richer 7459767646 fixed validation problem with new backbone 2012-12-20 17:46:34 -05:00
Justin Richer 37bca0d5fb cleaned out backbone validation plugin 2012-12-20 17:31:22 -05:00
Justin Richer 9dd54d47bb updated versions of backbone and underscore 2012-12-20 17:31:08 -05:00
Justin Richer e0672757bf update to bootstrap 2.2.2 2012-12-20 12:44:02 -05:00
Justin Richer 8ad28b41aa fixing CSS and collapsing headerbar 2012-12-20 12:35:30 -05:00
Justin Richer 67a682d53a added default router to backbone app 2012-12-18 13:56:57 -05:00
Justin Richer 87788f0710 let users visit home page without logging in 2012-12-18 13:56:46 -05:00
Justin Richer f265347311 tweaked error messages 2012-12-18 12:08:36 -05:00
Justin Richer 18ddd8333f added flag to allow introspection, relaxed same-client restrictions on introspection and chained tokens 2012-12-18 11:07:24 -05:00
Justin Richer 6eabc895b9 moved database file to a reasonable name 2012-12-17 13:45:39 -05:00
Justin Richer 1f53f41648 generic entity view now takes optional HttpStatus argument 2012-12-14 17:35:21 -05:00
Justin Richer a3790f943e cleaned up introspection endpoint to use exceptions 2012-12-14 17:35:20 -05:00