github
/
OpenID-Connect-Java-Spring-Server
mirror of https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
681 Commits
17 Branches
69 Tags
78 MiB
Commit Graph

681 Commits (d7455dba14a7d5152aea58a81909aae71c70edc0)

Author SHA1 Message Date
Justin Richer 74b4fab58c Client secret processing 2012-08-20 16:06:12 -04:00
Justin Richer 05fa7b148c added checks for generated client secret 2012-08-20 12:23:02 -04:00
Justin Richer 9e60da2675 added controls for client secret processing 2012-08-20 12:22:38 -04:00
Justin Richer a02f37cec3 added generators to client service API 2012-08-20 12:22:18 -04:00
Justin Richer b47dcf8e6b fixed timestamp math 
(I hate timestamp math)
 2012-08-17 16:35:27 -04:00
Justin Richer 26d5a846e0 Updated validator structure and id token checking. 2012-08-17 16:18:08 -04:00
Justin Richer a0df7ad04b client documentation updates, addresses #135 2012-08-17 15:35:08 -04:00
Justin Richer 012bb4afd7 Changed casing on "URI" to "Url" to match other parameters. 2012-08-17 15:32:04 -04:00
Justin Richer d14f55004c added parser to userinfo object, userinfo url in filter, fixed bug in user_id check 2012-08-17 14:40:13 -04:00
Justin Richer fbd6e67af8 Refactored auth provider to call the userinfo endpoint and provide info inside the auth token. 2012-08-17 14:40:13 -04:00
Justin Richer 8520fcbf72 removed deprecated granted authority reference 2012-08-17 14:40:13 -04:00
Justin Richer 6ccbf480b3 added token values into the OpenIDConnectAuthToken class and authenticator, still need to do authuserdetailsservice 2012-08-15 16:11:57 -04:00
Justin Richer a65504c0cb added new exception for userinfo, addresses #133 2012-08-15 16:02:06 -04:00
Justin Richer c5244db1a2 moved nonce from cookie to session, added state processing, cleaned up unused classes 2012-08-15 14:52:49 -04:00
Justin Richer 209fc2d249 refactored request object endpoint to avoid urlspace conflict with SECOAUTH 2012-08-15 12:06:37 -04:00
Justin Richer 269c2c9835 fixed nonce cookie handling 2012-08-14 12:11:51 -04:00
Mike Derryberry d1218efb2a cleaned up imports 2012-08-14 10:55:08 -04:00
Mike Derryberry 55e7a4d707 moved request object auth endpoint in project setup 2012-08-14 10:55:08 -04:00
Mike Derryberry ec286b9644 removed auth bean from application-context. Added extra parameter checks in request object auth endpoint 2012-08-14 10:55:08 -04:00
Mike Derryberry 04d8faa90a updated autowired annotation 2012-08-14 10:55:08 -04:00
Mike Derryberry 20a7ebc576 autowired all member variables in request object auth endpoint 2012-08-14 10:55:08 -04:00
Mike Derryberry 694074ee58 moved endpoint, added param processing 2012-08-14 10:55:08 -04:00
Mike Derryberry 36b9c805d9 added reference to abstract endpoint class to get token granter 2012-08-14 10:55:08 -04:00
Mike Derryberry 2bdbb283b7 removed dependency on abstract endpoint class. added methods needed to authRequestObjectEndpoint (afterPropertiesSet()) 2012-08-14 10:55:08 -04:00
Mike Derryberry 51ec529861 readded implementation of initializingBean 2012-08-14 10:55:08 -04:00
Mike Derryberry 638ebf2010 cleaned up AuthRequestObjectEndpoint class 2012-08-14 10:55:08 -04:00
Mike Derryberry d93f5f18e5 added state value to jwt that gets passed as request object. certain methods from SECOAUTH use this 2012-08-14 10:55:08 -04:00
Mike Derryberry 3486ea28f1 updated mimicked methods to not use jwt, but rather a jwt in an auth request 2012-08-14 10:55:08 -04:00
Mike Derryberry 1a20dcbc6e added methods that mimic behavior of private SECOATH methods 2012-08-14 10:55:08 -04:00
Mike Derryberry d5caa0b543 changed server endpoint to act like an endpoint. WIP to accept request objects, validate, and redirect 2012-08-14 10:55:08 -04:00
Mike Derryberry 7d6211afd7 cleaned up some imports, added serverEndpointRequest class 2012-08-14 10:55:08 -04:00
Mike Derryberry eff7a2c504 changed nonce claim addition 2012-08-14 10:55:08 -04:00
Mike Derryberry 28344a3c91 auth endpoint got into client code. removed 2012-08-14 10:55:08 -04:00
Mike Derryberry 9d73cd2243 cleaned up imports in filter class 2012-08-14 10:55:07 -04:00
Mike Derryberry 2888c08083 changed cookie claim to include the response 2012-08-14 10:55:07 -04:00
Mike Derryberry bc216785b8 added cookie to response in auth filter for request objects 2012-08-14 10:55:07 -04:00
Mike Derryberry f7cfb39777 updated imports of signed request filter 2012-08-14 10:55:07 -04:00
Mike Derryberry c0d353d7ce removed state parameter from claims. added way to create random nonce value 2012-08-14 10:55:07 -04:00
Mike Derryberry 8e95734f22 changed response-type to code rather than token 2012-08-14 10:55:07 -04:00
Mike Derryberry f8d938630e added passthrough parameters to server config 2012-08-14 10:55:07 -04:00
Mike Derryberry c4ebf5c145 updated signer service 2012-08-14 10:55:07 -04:00
Mike Derryberry d6b0b87769 added state parameter to reqeuest object 2012-08-14 10:55:07 -04:00
Mike Derryberry 1efe7a1fc3 updated check of algorithm in signing method" 2012-08-14 10:55:07 -04:00
Mike Derryberry 99bc1294e3 removed repetative check of "token" parameter in signed request object 2012-08-14 10:55:07 -04:00
Mike Derryberry 685734ce35 updated signing request object in OIDC client by pulling out construction of JWT to its own method. 2012-08-14 10:55:07 -04:00
Mike Derryberry 76c91ea79f removed encrypted request object for OIDC client. will deal with it at a later point 2012-08-14 10:55:07 -04:00
Mike Derryberry 8f22517c81 encrypted request object wip. need to add header parameters to allow encryption. also need to get public key for encryption 2012-08-14 10:55:07 -04:00
Mike Derryberry 70c4c25fa3 finished signed request object for client, created encrypted request object for client 2012-08-14 10:55:07 -04:00
Mike Derryberry 42a9b67f5e updated signed request filter to create jwt from parameters, sign it, create url for request, and send a redirect 2012-08-14 10:55:07 -04:00
Mike Derryberry b0eca780d1 changed class to request filter rather than jwt filter 2012-08-14 10:55:07 -04:00