github
/
OpenID-Connect-Java-Spring-Server
mirror of https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
1,802 Commits
17 Branches
69 Tags
78 MiB
Commit Graph

279 Commits (d2079fcdc559af091b05208fbff36f34b9cf932a)

Author SHA1 Message Date
Justin Richer 2b62042696 unshadowed Jwe header, unshadowed IdTokenClaims, added smart copy constructor to ClaimSet 2012-09-06 17:20:22 -04:00
Stephen Moore e8eaf48efd Added check for token NotBefore 
Added timeSkewAllowance magic
 2012-08-28 15:42:29 -04:00
Justin Richer b47dcf8e6b fixed timestamp math 
(I hate timestamp math)
 2012-08-17 16:35:27 -04:00
Justin Richer 26d5a846e0 Updated validator structure and id token checking. 2012-08-17 16:18:08 -04:00
Justin Richer a0df7ad04b client documentation updates, addresses #135 2012-08-17 15:35:08 -04:00
Justin Richer 012bb4afd7 Changed casing on "URI" to "Url" to match other parameters. 2012-08-17 15:32:04 -04:00
Justin Richer d14f55004c added parser to userinfo object, userinfo url in filter, fixed bug in user_id check 2012-08-17 14:40:13 -04:00
Justin Richer fbd6e67af8 Refactored auth provider to call the userinfo endpoint and provide info inside the auth token. 2012-08-17 14:40:13 -04:00
Justin Richer 6ccbf480b3 added token values into the OpenIDConnectAuthToken class and authenticator, still need to do authuserdetailsservice 2012-08-15 16:11:57 -04:00
Justin Richer c5244db1a2 moved nonce from cookie to session, added state processing, cleaned up unused classes 2012-08-15 14:52:49 -04:00
Justin Richer 269c2c9835 fixed nonce cookie handling 2012-08-14 12:11:51 -04:00
Mike Derryberry d93f5f18e5 added state value to jwt that gets passed as request object. certain methods from SECOAUTH use this 2012-08-14 10:55:08 -04:00
Mike Derryberry eff7a2c504 changed nonce claim addition 2012-08-14 10:55:08 -04:00
Mike Derryberry 9d73cd2243 cleaned up imports in filter class 2012-08-14 10:55:07 -04:00
Mike Derryberry 2888c08083 changed cookie claim to include the response 2012-08-14 10:55:07 -04:00
Mike Derryberry bc216785b8 added cookie to response in auth filter for request objects 2012-08-14 10:55:07 -04:00
Mike Derryberry f7cfb39777 updated imports of signed request filter 2012-08-14 10:55:07 -04:00
Mike Derryberry c0d353d7ce removed state parameter from claims. added way to create random nonce value 2012-08-14 10:55:07 -04:00
Mike Derryberry 8e95734f22 changed response-type to code rather than token 2012-08-14 10:55:07 -04:00
Mike Derryberry f8d938630e added passthrough parameters to server config 2012-08-14 10:55:07 -04:00
Mike Derryberry c4ebf5c145 updated signer service 2012-08-14 10:55:07 -04:00
Mike Derryberry d6b0b87769 added state parameter to reqeuest object 2012-08-14 10:55:07 -04:00
Mike Derryberry 99bc1294e3 removed repetative check of "token" parameter in signed request object 2012-08-14 10:55:07 -04:00
Mike Derryberry 685734ce35 updated signing request object in OIDC client by pulling out construction of JWT to its own method. 2012-08-14 10:55:07 -04:00
Mike Derryberry 76c91ea79f removed encrypted request object for OIDC client. will deal with it at a later point 2012-08-14 10:55:07 -04:00
Mike Derryberry 8f22517c81 encrypted request object wip. need to add header parameters to allow encryption. also need to get public key for encryption 2012-08-14 10:55:07 -04:00
Mike Derryberry 70c4c25fa3 finished signed request object for client, created encrypted request object for client 2012-08-14 10:55:07 -04:00
Mike Derryberry 42a9b67f5e updated signed request filter to create jwt from parameters, sign it, create url for request, and send a redirect 2012-08-14 10:55:07 -04:00
Mike Derryberry b0eca780d1 changed class to request filter rather than jwt filter 2012-08-14 10:55:07 -04:00
Mike Derryberry 5f0ea41e0e added class for signed request object 2012-08-14 10:55:07 -04:00
Jon Kranes 1fd4d8a4b8 fixed signer map in client/AbstractOIDCAuthenticationFilter.java 2012-07-31 12:17:01 -04:00
Mike Derryberry 4deaffd686 updated hmac and rsa signer to use afterPropertiesSet(), abstract oidc auth filter now adds multiple signers to map and then picks the one it needs, and key fetcher now gets jwk 2012-07-23 18:31:27 -04:00
Mike Derryberry caf2a7b494 updated encryption service to encrypt key and claims and then sign the jwe. decryption updated to decrypt encrypted key and ciphertext 2012-07-17 10:49:29 -04:00
Mike Derryberry e252951612 added encrypter/decrypter for claims to get ciphertext 2012-07-17 10:48:07 -04:00
Mike Derryberry 33cc3fa899 Added spring simple web app for testing, encryption and decryption classes for rsa and hmac, still WIP 2012-07-17 10:47:41 -04:00
Justin Richer a03129f70a added documentation updates 2012-07-02 14:18:25 -04:00
Justin Richer c619e736f9 removed eclipse files from repository 2012-06-29 15:13:52 -04:00
Justin Richer 5c1b07ae65 don't overwrite an existing JWT nonce 2012-06-28 17:04:21 -04:00
Justin Richer 29731d52f6 Merge branch 'refreshtokens' of file:///home/jricher/Projects/workspace-sts/OpenIDConnect-MITRE/OpenID-Connect-Java-Spring-Server into refreshtokens 2012-06-28 17:00:17 -04:00
Justin Richer d4b45006d5 settings file, will be removed shortly 2012-06-28 16:55:37 -04:00
Justin Richer de1597b214 refresh token handling fixed, removed token factory references 2012-06-28 16:55:11 -04:00
nemonik ef6c2b56e8 oidc client README.md tweaks 2012-06-27 16:09:05 -04:00
Justin Richer 1127a7cfbc refactored JWKs, updated signing servier to use them 2012-06-25 17:19:25 -04:00
Justin Richer adb8499bee merged derryberry code, plus tweaks, still WIP 2012-06-25 16:42:41 -04:00
Mike Derryberry b1fc07bcb8 updated -common code to get a validation service from a server configuration 2012-06-21 14:37:30 -04:00
Amanda Anganes baa7ce5e7b Merge branch 'master' of github.com:mitreid-connect/OpenID-Connect-Java-Spring-Server 2012-06-20 15:10:58 -04:00
Amanda Anganes 2930719700 Added architecture diagram 2012-06-20 15:07:37 -04:00
Mike Derryberry b94fbd7439 updated -common and -client code by removing throws exception, changing to rest templates, and updating test cases to use annotations 2012-06-20 09:36:55 -04:00
nemonik 488f01cada existence of nonce claim check added 2012-06-19 18:14:51 -04:00
Justin Richer fe3bbfb3d5 Further cleanups. Still missing: 
- All tests extend TestCase, should use annotations instead
- Several elements throw Exception
- Key Fetchers should use RESTTemplates and be in a separate utility set
 2012-06-15 17:11:58 -04:00
Justin Richer b86abdd761 merge from pull request, plus cleanup 2012-06-15 15:36:14 -04:00
Justin Richer 731ad2e2e2 updated SECOAUTH reference, fixed some SQL files, temporarily closed token timeout issue 2012-06-15 12:05:08 -04:00
U-MITRE\mjwalsh f9558f0955 stripped out check id endpoint interaction as it deprecated, refactored nonce checking based on spec change, pull user_id as id_token token claim 2012-06-13 18:31:13 -04:00
Mike Derryberry 65dc3daaf8 smart client 2012-06-12 16:09:01 -04:00
Amanda Anganes 2a05ff995d Added support for additional field in ClientDetailsEntity.java. 2012-06-11 16:27:35 -04:00
Mike Derryberry ee28d56031 initial implementation of x509 and JWK key retrieval 2012-06-01 10:51:28 -04:00
nemonik 8917e75010 see issue #19 2012-05-30 15:14:15 -04:00
Michael Joseph Walsh e5720b9ce9 added UserDetailsService example 2012-05-21 16:02:28 -04:00
Michael Joseph Walsh 579954f966 grammar tune up 2012-05-21 15:28:55 -04:00
Michael Joseph Walsh 6f43040587 slight sequence diagrams tweaks, mods to account-chooser and openid-connect-client 2012-05-16 21:12:58 -04:00
Michael Joseph Walsh 7e3ce2d583 mods to reflect client <-> account chooser protocol, and refactoring... 2012-05-15 18:43:45 -04:00
Amanda Anganes e33f277bbe Updated classes to track newest version of SECOAUTH. This update closes issues #3, #4, #8, and #36 (infinite redirects). This revision changes the authorization and token endpoints to be /openidconnect/auth and /openidconnect/token, respectively. 2012-05-09 15:16:56 -04:00
Michael Joseph Walsh 77e630473a readme tweaks. 2012-05-08 20:04:51 -04:00
Michael Joseph Walsh 755d0d4c88 issue #39 2012-05-08 19:52:13 -04:00
Stephen Moore 2cf12d4078 Made getAll use ? extends UserInfo 2012-05-08 16:23:36 -04:00
Justin Richer 97dffb6414 added copyright to all java files. closes #11 2012-04-27 17:55:58 -04:00
Justin Richer 59ecb03548 added getter/setter for userinforepository, closes #40 2012-04-27 15:11:25 -04:00
nemonik 6eb8284695 version needed to be modified to 0.1-SNAPSHOT in order to deploy snapshot to nexus 2012-04-13 13:43:39 -04:00
nemonik f215cfc50c fix for issue 5, code refactoring across signers 2012-03-29 12:34:51 -04:00
U-MITRE\mjwalsh c84c751991 client refactoring, and javadocing 2012-03-26 14:18:54 -04:00
U-MITRE\mjwalsh b8c953281e integration changes to client 2012-03-23 17:01:43 -04:00
Stephen Moore 1a1ae4c5b5 Removed Replacer plugin 2012-03-23 15:55:30 -04:00
U-MITRE\mjwalsh 02d0471acf scope wasn't quite right, needed a space 2012-03-22 17:55:59 -04:00
U-MITRE\mjwalsh b4836a0302 mods to auth filter including config comments, http socket time out... 2012-03-22 17:49:30 -04:00
nemonik 3f2631367f added comments on configuration of client 2012-03-22 12:16:24 -04:00
Justin Richer 626779b58e refactored client package name to something sensible 2012-03-16 17:07:49 -04:00
Justin Richer b463cabc69 fixed configuration, moved sql file 2012-03-16 16:46:46 -04:00
Justin Richer baf7c1c166 fixed dependencies and project configurations 2012-03-16 16:18:33 -04:00
Justin Richer e6e7504213 added files and shuffled things to new packages 2012-03-16 15:46:23 -04:00