7292766b51
implemented prompt=consent
2013-04-24 14:08:14 -04:00
ce2c90fb30
fixed error messages in auth request manager
2013-04-24 12:10:59 -04:00
94aa279290
[maven-release-plugin] prepare for next development iteration
2013-04-19 16:17:53 -04:00
cc92743888
[maven-release-plugin] prepare release mitreid-connect-0.9.2
2013-04-19 16:17:45 -04:00
d7689152b8
fixed inadvertent consistency bug in granting offline_access to clients
2013-04-19 16:12:09 -04:00
0e2d5830a4
updated newly-registered clients to not get refresh tokens unless they ask for offline_access scope explicitly
2013-04-19 15:40:20 -04:00
fb859fc39a
added client dynamic registration service, extracted clientdetails<->json processing into its own static class
2013-04-19 14:23:11 -04:00
fc1088c841
fixed display of algorithms in discovery endpoint
2013-04-19 13:39:53 -04:00
895690df54
added webfinger discovery to server, addresses #279
2013-04-16 17:22:18 -04:00
9c6b08d919
effectively removed auth_time calculations
2013-04-16 16:04:26 -04:00
33af3b1ad6
updated discovery endpoint to latest spec, removed surplus specialized view
2013-04-16 15:00:57 -04:00
8e8e14c638
added at_hash
2013-04-15 17:12:47 -04:00
3bb43f417a
added auth time tracking
2013-04-15 16:16:18 -04:00
ce2e630304
fixed login page display (thanks to Jett), addresses #289
2013-04-15 12:47:35 -04:00
e665aec36f
dependency cleanup
2013-04-12 16:53:55 -04:00
98fff8fe99
updated error handling on introspection and revocation endpoints
2013-04-12 16:34:51 -04:00
35cb14a73f
fixed comment
2013-04-12 16:08:32 -04:00
743a3023dc
removed old error handlers
2013-04-12 16:04:40 -04:00
31e3c5e5e7
moved user approval page
2013-04-12 15:57:32 -04:00
694761c026
cleaned up userinfo view
2013-04-12 15:40:05 -04:00
71d6dc6afe
removed special stats view
2013-04-12 15:15:43 -04:00
1630648925
updated logo, added large logo
2013-04-11 17:24:32 -04:00
7e59421f33
Commented out XRD endpoint and added TODO reference to webfinger issue
2013-04-11 10:33:27 -04:00
34b243e0e1
Added back discovery endpoint, but renamed to not say SWD
2013-04-11 10:27:31 -04:00
ac2993c402
[maven-release-plugin] prepare for next development iteration
2013-04-10 16:12:04 -04:00
f0d75f9144
[maven-release-plugin] prepare release mitreid-connect-0.9.1
2013-04-10 16:11:38 -04:00
23c318f6c2
Updating guava to 14.0.1
2013-04-10 15:31:32 -04:00
5f54777109
[maven-release-plugin] prepare for next development iteration
2013-04-03 10:01:58 -04:00
620a60ddc2
[maven-release-plugin] prepare release mitreid-connect-0.9.0
2013-04-03 10:01:52 -04:00
54f1ae972b
Added properties and updated poms for sync to central
2013-04-02 12:42:40 -04:00
f101dcc512
moved to released version of SECOAUTH
2013-04-01 11:59:40 -04:00
c0c1847f38
fixed bean name
2013-04-01 11:59:23 -04:00
02220a411a
Fixed typo
2013-03-29 12:59:49 -04:00
0f327a772b
Updated js files to use results returned from JsonErrorView; factored out markup into modal definition.
2013-03-29 12:47:03 -04:00
2265a3f8c3
Updated error handling messages for scope, approved site, blacklist, whitelist, and client APIs using new JsonErrorView
2013-03-29 12:47:03 -04:00
ee5b21b542
Added JsonErrorView
2013-03-29 12:47:03 -04:00
07686d8e00
Removed superfluous try/catch around save call in ScopeAPI.
2013-03-29 12:47:03 -04:00
4538d8fb14
made signing and verification service construction safe for public-only keys
2013-03-28 17:03:18 -04:00
6cc50e7cd5
switched signing & validation service to use JWK natively for keys
2013-03-28 16:43:26 -04:00
f54dddd8c0
fixed blacklisted field name, addresses #295
2013-03-28 16:06:02 -04:00
5a04198eac
moved to JPSK based key store
2013-03-28 15:06:30 -04:00
e2ad4d2e8f
cleaned up spurious nosuchalgorithm exceptions, addresses #285
2013-03-28 15:06:30 -04:00
5b321b9c86
Updated whitelist api for ui error handling
2013-03-28 12:43:47 -04:00
666573cd34
Updated blacklist and client api for ui error handling
2013-03-28 12:37:18 -04:00
218fe9328c
Updated approved site API for error handling
2013-03-27 16:49:33 -04:00
435fff3b1c
Updated scope API for error handling
2013-03-27 16:27:55 -04:00
18e319379e
Got bootstrap modal alert working, but not sure if it is the right approach. It looks different than the confirmation window.
2013-03-27 15:27:34 -04:00
49863e70ae
Got scope "value" error handling set
2013-03-27 15:27:34 -04:00
d24ecd2e7c
Removed extra scope validation endpoint
2013-03-27 15:27:34 -04:00
96e333afa6
Working on error handling
2013-03-27 15:27:34 -04:00
fa0a6a7b4e
Finding my way around Backbone, Underscore, and Bootstrap
2013-03-27 15:27:34 -04:00
5704271973
Fixed client error: added all client fields to model in client.js; lined them up with the fields in ClientDetailsEntity.java for easier comparison
2013-03-22 17:15:14 -04:00
36b08dcd6e
Removed SWD code
2013-03-22 15:23:08 -04:00
fcc95f8a0a
Moved nonce processing stuff into nonce service and out of ConnectAuthorizationRequestManager
2013-03-22 14:38:37 -04:00
d38c5b4200
Pared down nonce reuse exception message to just say that the nonce has already been used
2013-03-22 12:36:24 -04:00
b28b0615fa
removed vestigial ClientDetailsEntityService references
2013-03-22 12:32:31 -04:00
08eaaa0a12
updated repository to use proper concrete class
2013-03-21 15:20:36 -04:00
8fccbf3483
added Id field to DefaultUserInfo object, switched "userId" terminology to "subject"
2013-03-20 14:29:00 -04:00
f44c704472
major refactor of client filter
...
Collapsed filter into single class
pulled server config and client config management into service classes
created service for issuer (will handle account chooser)
created auth request services (handle signed and unsigned requests)
2013-03-14 18:05:50 -04:00
2b45dd1104
cleaned up stats display
2013-03-14 18:05:50 -04:00
8992506a1d
Fixing up logging changes
2013-03-08 09:52:24 -05:00
f9b0670ae9
Merged ClientAPI and ClientDynamicRegistrationEndpoitn by hand
2013-03-07 12:12:27 -05:00
5cac7055a9
Standardized error handling and added logging for error conditions in endpoints
2013-03-07 11:56:57 -05:00
dbc68e4074
Working on error handling
2013-03-07 11:51:18 -05:00
1630814b9f
Marked classes where error handling needs to be added/changed
2013-03-07 11:51:18 -05:00
0f6faf3609
removed old namespace config files
2013-03-07 10:46:25 -05:00
6320fce9fd
url -> uri in approval page
2013-03-07 10:39:33 -05:00
7c36f9fb38
made sidebar size-responsive, added sticky footer
2013-03-06 17:52:38 -05:00
ad3a22e5d4
changed client defaults for JOSE bits
2013-03-06 15:24:46 -05:00
3268726747
changed to dict-based model for saving
2013-03-06 15:17:11 -05:00
8f4ecac8d5
forgot a field
2013-03-06 15:16:48 -05:00
27a8bcf440
now with more documentation and actual deletion
2013-03-06 11:53:16 -05:00
eaa9e1ded4
typo for grant types in parser
2013-03-06 11:33:54 -05:00
a6a2d43e8f
added Read, Update, and Delete operations to dynreg endpoint
2013-03-06 11:33:31 -05:00
d37bac1775
simplification and documentation of client api views
2013-03-06 11:33:06 -05:00
4c3c2dce52
removed sessions from endpoints, properly mapped registration endpoint
2013-03-06 11:31:54 -05:00
217916603f
cleaned out broken unit tests -- now we can start fresh
2013-03-06 09:48:04 -05:00
c9bdba3f3a
API now bound to USER for read, ADMIN for write, addresses #267
2013-03-05 17:45:33 -05:00
1daf5bd357
dispatch to different views based on user role
2013-03-05 17:34:24 -05:00
70b2342864
fixed split client views, fixed typos in various places
2013-03-05 17:26:25 -05:00
f07c31bbe2
JOSE selectors
2013-03-05 16:52:34 -05:00
51a7ccc397
entity -> embed
2013-03-05 16:33:13 -05:00
7b8623edbb
typo
2013-03-05 16:15:21 -05:00
93851ab94d
request URIs and default ACR values
2013-03-05 16:11:32 -05:00
6c136b5696
contacts
2013-03-05 15:43:38 -05:00
79bf862924
added Not Yet Implemented tags
2013-03-05 15:32:08 -05:00
9b6dfd4e1d
require auth time, reuse refresh token, and default max age
2013-03-05 15:01:25 -05:00
ff53d71e6f
sector identifier, initiate login, and post logout URIs ; reuse refresh tokens
2013-03-05 14:44:40 -05:00
23bd6a2ffb
response types
2013-03-05 14:29:51 -05:00
82ecef144d
token endpoint auth method
2013-03-05 14:05:46 -05:00
c9b769818e
changed script loading methods to help debugging, fixed subjectype data pull
2013-03-05 13:34:18 -05:00
1fcb67e885
JWKS and subject type
2013-03-05 12:33:14 -05:00
29b46bfd58
stupid javascript templates
2013-03-05 12:21:06 -05:00
0d25d4cb17
null-preserving static parsers instead of constructors
2013-03-05 12:10:33 -05:00
9244d6413c
application type
2013-03-05 11:50:47 -05:00
e7282d53fe
added client URI bits
2013-03-05 11:22:55 -05:00
6a88c13675
split client view into two classes
2013-03-04 17:50:02 -05:00
4095f2179c
added custom client view for API
2013-03-04 17:33:18 -05:00
a0c2e94922
added in all extra fields to JS processor
2013-03-04 17:11:44 -05:00
ac44020305
grant types rename
2013-03-04 17:11:25 -05:00
Justin Richer