134909a82f
import cleanup
2014-10-07 19:40:38 -04:00
1e71749c23
added more generic rotation capability
2014-10-07 19:40:38 -04:00
8495617aed
Added support for whitelisted and blacklisted site import from a 1.0 config
2014-10-06 22:59:27 -04:00
03f2d8f8a0
Added service interface for data import/export service and modified AuthenticationHolderEntity and Repository to allow getting all objects
2014-10-06 22:58:26 -04:00
ec8f708472
swapped exception class for existing BeanCreationException, added example flag in config file (commented out)
...
closes #528
closes #689
2014-10-04 14:59:36 -04:00
3e3613f471
Corrected bean setup for checkForHttps case tests.
2014-10-04 11:21:01 -04:00
acc4cf16bd
Separated checkForHttps cases into separate test methods.
2014-10-04 11:21:01 -04:00
cf2837f678
Initialized forceHttps to false.
2014-10-04 11:21:00 -04:00
0461e51ddc
Changed parent class from Exception to RuntimeException; added copyright
...
language.
2014-10-04 11:21:00 -04:00
e1015e1194
Create flag to force HTTPS of value of issuer on server startup, addresses #528
2014-10-04 11:21:00 -04:00
c683131f12
externalized view name strings and tied them to view beans
2014-09-28 22:25:39 -04:00
a704277652
Removed exceptions from @PostConstruct methods, closes #663
2014-09-28 21:12:46 -04:00
81634e6165
added API for getting tokens by clientid
2014-09-22 22:55:13 -04:00
1a79949d51
made user info less transient
2014-09-14 22:03:19 -04:00
b0cce924a2
JsonFileRegisteredClientService now writes out entire client registration to disk, closes #651
2014-08-01 00:01:56 -04:00
78f3e68e8b
update unit test for Windows environment, closes #647
2014-07-31 23:22:06 -04:00
62a43165f0
added json member type checking for json utils, won't die if a string is found where an array was expected
...
closes #637
2014-07-20 09:42:57 -07:00
325a200f16
added configurable support for different token presentation methods in user info fetcher, closes #632
2014-07-20 09:27:02 -07:00
1db4227ce5
reformat / reorder
2014-07-20 09:02:42 -07:00
f997049eff
key service can now deal with missing 'kid' fields in JWKs
...
closes #639
2014-07-20 08:40:04 -07:00
5c2cb75407
Better test coverage for JWS/EAlgorithmEmbed, JWEEncryptionMethodEmbed
2014-07-16 21:39:13 -04:00
3412c1877e
removed unnecessary unit test
2014-07-02 15:05:37 -04:00
e1b4df74f0
Added tests for DefaultJwtEncryptionAndDecryptionService
2014-07-02 14:57:56 -04:00
5223d88e0a
updated unit test to fit new nimbus version
2014-07-02 11:41:38 -04:00
7bf8e2ad08
change the OctetSequenceKey constructor in SymmetricCacheService
2014-07-02 11:37:42 -04:00
306c8cff17
update nimbus-jose-jwt dependency to 2.26 and fix the affected files
2014-07-02 11:37:42 -04:00
48431fd5c7
Unit test for JWKSetKeyStore class
2014-06-30 13:21:07 -04:00
acf039a1f7
wrapped auth method check, added SECRET_JWT, closes #621
2014-06-18 18:24:05 -04:00
a465559ac5
Revert incorrect key-encoding change in SymmetricCacheService
2014-06-18 18:10:33 -04:00
1dc204f975
Validate HMAC-signed ID tokens
2014-06-18 18:10:33 -04:00
276d846f4c
Configuration Property Bean to load the OP wide registration token life
...
time
2014-06-12 19:12:32 -04:00
71fa796b42
Allow public clients to use token endpoint, closes #611 , closes #613
2014-06-09 15:55:06 -04:00
257312d5da
made user info interceptor more null safe for client side
2014-05-29 22:15:30 -04:00
943fae25a1
make user info interceptor more compatible with standalone OIDC client software (with no user info service)
2014-05-29 12:13:38 -04:00
0c8cacd59a
added missing copyright headers
2014-05-27 13:46:47 -04:00
525f3aa2a8
Cleaned up indentation, whitespace, and imports.
2014-05-27 13:02:49 -04:00
c34357a433
added resource registration endpoint with basic functionality and specialized tokens
2014-05-26 16:30:24 -04:00
05e9624ae3
added support for encrypted and symmetrically signed id tokens and user info responses
2014-05-23 21:15:50 -04:00
e4d5f4a540
added system wide cache for all symmetric validators, closes # 557
2014-05-23 16:16:06 -04:00
ca333d256b
Appropriately catch runtime exceptions in all guava caches, closes #603
2014-05-23 15:00:40 -04:00
7cd36b471f
Make introspection endpoint access authorization pluggable.
2014-05-07 16:44:56 +02:00
521017c5c2
updated stats service to have a resettable cache triggered by other service events
2014-04-16 21:39:37 -04:00
26c464e440
fixed bad JPQL in auth holder cleanup class
2014-04-16 21:17:56 -04:00
39509bfdc4
Performance improvement of token cleanup:
...
an alternative token cleanup mechanism designed to maintain a very compact memory footprint while performing cleanup in consecutive runs of the cleanup thread. This serves to address OutOfMemoryException issues of the original token cleanup mechanism when process is under load. Also, added cleanup of the authentication_holder table.
2014-04-10 23:38:37 -04:00
b67121f0cd
added client_secret_jwt auth method support, closes #174
2014-03-04 23:45:36 +00:00
1289d4737a
Changed references of DefaultHttpClient to SystemDefaultHttpClient to inherit system proxy settings, should address #548
2014-02-04 10:51:14 -05:00
3b52ce8201
happy new year!
2014-01-20 12:38:42 -05:00
ebbc7209aa
automated code formatting and cleanup
2013-12-03 14:19:34 -05:00
d330bd1c9b
cleanup, added revocation uri to server config
2013-11-27 12:23:04 -05:00
a24eadeb11
cleaned up responseType calls, addresses #451
2013-11-27 11:03:15 -05:00
Justin Richer