github
/
OpenID-Connect-Java-Spring-Server
mirror of https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
1,098 Commits
17 Branches
69 Tags
78 MiB
Commit Graph

719 Commits (d7689152b8b7dd514158231b96119714afec4005)

Author SHA1 Message Date
Justin Richer 26f03ec070 timestamp for creation date 2013-03-04 16:11:20 -05:00
Justin Richer ea034f7d4a database preload fixed to match new schema 2013-03-04 16:10:32 -05:00
Justin Richer 1f5f7c8aac updates for java 7 2013-03-04 16:00:12 -05:00
Justin Richer 235a3bf2c4 added client information response view 2013-03-04 15:45:35 -05:00
Justin Richer fc978ac994 made require_auth_time nullable again 2013-03-04 15:44:49 -05:00
Justin Richer a2d6894f62 started serialization for client information view 2013-03-04 15:13:55 -05:00
Justin Richer db24c203ec added parser to client registration endpoint 2013-03-04 15:01:02 -05:00
Justin Richer 5c044b9eff added extra client fields to DB model, moved services to use new client model object 2013-03-04 14:22:42 -05:00
Justin Richer 3f8d7d70e5 updated client model to match OAuth Dyn Reg and OIDC Reg 2013-03-04 12:48:05 -05:00
Justin Richer 5b9422ffdf cleaned up old unit tests 2013-03-04 11:37:49 -05:00
Justin Richer f8f925c08f removed exploded war (no longer needed), addresses #260 2013-03-04 10:59:04 -05:00
Justin Richer bd877dde82 added signature checking to request objects 2013-03-01 17:44:44 -05:00
Justin Richer 6c1e6b2d74 refactored signing and validation, added jwk-based cache, removed keyfetcher, refactored client side class structure 2013-03-01 17:44:44 -05:00
Justin Richer 385853fa1f refactored signing and validation, added jwk-based cache, removed keyfetcher, refactored client side class structure 2013-03-01 17:44:44 -05:00
Justin Richer 7e64c4bffc deleted duplicate login button, addresses #276 2013-03-01 17:42:48 -05:00
Justin Richer 13a3e97113 updated request object forwarding hack 2013-03-01 17:42:48 -05:00
Justin Richer 0712d8c340 updated spring version 2013-03-01 17:42:48 -05:00
Amanda Anganes 42ea2468c9 Split up about, contact, stats tags into two each and removed logic from the *Content tag files 2013-02-28 13:56:09 -05:00
Amanda Anganes 8677f6516d Template-ized most of the home page UI 2013-02-28 11:25:37 -05:00
Amanda Anganes 987a05302d Added configured logo url 2013-02-25 13:01:26 -05:00
Amanda Anganes 60b679e942 First steps towards adding display variables to config bean 2013-02-22 17:10:14 -05:00
Justin Richer 4d725b88dd more updates to track nimbus-jose-jwt classes and use them properly 2013-02-22 12:08:01 -05:00
Justin Richer 9a98d241e8 updates to track Nimbus JOSE API changes to audience and date fields 2013-02-22 12:08:01 -05:00
Justin Richer cc727cee3e patched unit test to new format 2013-02-22 12:08:01 -05:00
Justin Richer 03e7337b9f client registration endpoint needs general rewrite to fit new spec. 
Most of the problematic references will change with the rewrite, so this is a slapdash patch to make things compile for now.
 2013-02-22 12:08:01 -05:00
Justin Richer 25b9940a68 request object endpoint is a placeholder, cleaning out for now 2013-02-22 12:08:01 -05:00
Justin Richer e5732da857 added system default signing algorithm, converted token provider and enhancer to use nimbus-jose 2013-02-22 12:08:01 -05:00
Justin Richer c01e873019 request object processor moved to nimbus-jose 2013-02-22 12:08:01 -05:00
Justin Richer 0f99e0e06d assertion token granter moved to nimbus-jose 2013-02-22 12:08:01 -05:00
Justin Richer 10ab55a7e2 moved jwk/x509 publishing over to nimbus-jose (mostly) 2013-02-22 12:08:01 -05:00
Justin Richer fca30cd13f added provisions to bootstrap signing and validation service from config files 2013-02-22 12:08:01 -05:00
Justin Richer a078f7d202 patched userinfo view to use nimbus 2013-02-22 12:08:01 -05:00
Justin Richer c7d1b47b38 converted bearer assertion framework to nimbus-jose 2013-02-22 12:08:01 -05:00
Justin Richer 910a6cf1a0 remvoed idtoken repository that was never used 2013-02-22 12:08:01 -05:00
Justin Richer 46a3e70377 removed idtoken class, removed all jwe/jwt tests 2013-02-22 12:08:01 -05:00
Justin Richer 46f0e6f3cb restyled login page 2013-02-20 16:39:46 -05:00
Justin Richer b840b31c74 added cleaner login/logout failure handling and processing 2013-02-20 16:11:08 -05:00
Amanda Anganes 1398575061 Added additional joda time dependency 2013-02-20 15:44:53 -05:00
Justin Richer 58ea01f0f8 added hints to login form to discourage mobile browsers from trying to do something clever like autocorrect 2013-02-13 13:27:31 -05:00
Justin Richer 991f37a1e6 refactored javascript and template files into components 2013-02-13 10:12:31 -05:00
Justin Richer 137e5e5ca1 added placeholder blocks in place of empty tables, addresses #244 2013-02-06 17:42:10 -05:00
Justin Richer 62b931ee0d scope icons now show up everywhere 2013-02-05 17:39:38 -05:00
Justin Richer d0fdf8140e sorting on approval page 2013-02-05 15:47:32 -05:00
Justin Richer 328fa221bd scope bootstrapping 2013-02-05 15:08:49 -05:00
Justin Richer 02846c0a8d typo fix, DB constraints 2013-02-05 14:40:06 -05:00
Justin Richer 88f2ea3e7e icon selector 2013-02-05 14:33:58 -05:00
Justin Richer e622202e9e display scopes based on request, pull scope information dynamically, addresses #208 2013-02-05 11:36:59 -05:00
Justin Richer eb4773ce46 beginning dynamic scopes on auth page 2013-02-05 11:28:39 -05:00
Justin Richer c2b9fd4db1 system scope ordering consistency 2013-02-05 11:11:41 -05:00
Justin Richer 173281f039 DB consistency fix 2013-02-05 11:11:15 -05:00
Justin Richer 801a45cc49 several bugfixes to scopes UI, works now 2013-02-03 22:04:56 -05:00
Justin Richer e5171a196a minor bugfixes 2013-02-03 22:04:55 -05:00
Justin Richer d1968f624a scope ui bugfixes 2013-02-03 22:04:55 -05:00
Justin Richer fbfc977f3b system scope ui updates 2013-02-03 22:04:55 -05:00
Justin Richer 9dc603a759 scope management UI 2013-02-03 22:04:55 -05:00
Justin Richer 1ceee853f9 scope management UI 2013-02-03 22:04:55 -05:00
Justin Richer a3037a18a7 system scope service applied to client creation UI 2013-02-03 22:04:55 -05:00
Justin Richer cab36a2b80 added appropriate filterered and transformative actions to scope service 2013-02-03 22:04:55 -05:00
Justin Richer ab35186696 added scope service, repository, and API 2013-02-03 22:02:24 -05:00
Justin Richer 19e7b62a42 removed persistence.xml and moved to pure spring-based config, addresses #194 2013-02-03 22:02:23 -05:00
Justin Richer a3619240e6 added site scope 2013-02-03 22:02:23 -05:00
Justin Richer a2e548c261 fixed claims processor for request object from user info endpoint 2013-02-03 22:02:23 -05:00
Justin Richer 899150d636 tweak display on auth revoke page 2013-02-03 22:02:23 -05:00
Justin Richer 3c190e044a inject parsed parameters to make SECOAUTH happy 2013-02-03 22:02:23 -05:00
Justin Richer 1144d511af inject scopes 2013-02-03 22:02:23 -05:00
Justin Richer f9d50db1f1 don't treat openid scope special here -- by default client gets access to *all* scopes it's registered for 2013-02-03 22:02:23 -05:00
Justin Richer 078342715b moved request object to request manager 2013-02-03 22:02:22 -05:00
Amanda Anganes 3399eed45a Added about, contact, and stats pages. Still largely placeholders, but the topbar works correctly now at least. 2013-01-31 11:34:07 -05:00
Justin Richer 0be254c99a updated token introspection output to match spec and client filter 2013-01-30 15:31:32 -05:00
Justin Richer e02e08563c changed order or custom filters to make assertions work, added client credentials token granter to default 2013-01-30 14:34:16 -05:00
Justin Richer c1d33bb55b bugfix in assertion processor 2013-01-30 14:34:16 -05:00
Amanda Anganes 2e2c0e8e6c Fixed bug in nonce processing 2013-01-29 13:07:41 -05:00
Amanda Anganes 3db74100a4 working on bug 2013-01-29 13:07:41 -05:00
Amanda Anganes dd8b48e863 Reset ConnectAuthorizationRequestManager to version from master 2013-01-29 13:07:41 -05:00
Amanda Anganes 06f970e61b Trying to fix nonce service 2013-01-29 13:07:41 -05:00
Amanda Anganes 86bf51f0a7 Added java reflection code for request object handling, needs to be tested 2013-01-29 13:07:41 -05:00
Amanda Anganes 677f0f2d4c Stubbed out required functionality for request object filtering 2013-01-29 13:07:41 -05:00
Amanda Anganes 67e8714671 Working on request object userinfo parsing 2013-01-29 13:07:41 -05:00
Justin Richer 779001a8c8 updated copyright year 2013-01-28 13:39:25 -05:00
Justin Richer 7269700dc6 switched injector from repository to service 2013-01-24 19:32:55 -05:00
Justin Richer f0ee36dad2 auth_type -> auth_method (addresses #258) 2013-01-18 18:26:55 -05:00
Justin Richer fd2253303e changed pointer on tabs, addresses #252 2013-01-18 18:17:39 -05:00
Justin Richer 899e306683 fixed JS crash on "new client" operation 2013-01-18 18:15:19 -05:00
Justin Richer 8831bc64a2 offline -> offline_access (addresses #248) 2013-01-18 18:03:39 -05:00
Justin Richer 27a26e0a35 (user_id/prn) -> sub 2013-01-18 16:40:05 -05:00
Justin Richer 1ab29882b4 fixed user prepoulation table 2013-01-18 15:38:53 -05:00
Justin Richer 0ab4ad4bbe added "birthdate", addresses #253 2013-01-18 15:38:41 -05:00
Justin Richer 6ef4dc817e genericized nimbus code, added caching 2013-01-18 15:10:48 -05:00
Justin Richer 2d21a72e7e switched to nimbus to check JWT signature 2013-01-18 15:10:48 -05:00
Justin Richer 60bda31c54 updated custom filter 2013-01-18 15:10:48 -05:00
Justin Richer c17bc05b0e wiring configuration 2013-01-18 15:10:48 -05:00
Justin Richer 4262be1fd3 added jwt processing to client auth provider 2013-01-18 15:06:00 -05:00
Justin Richer abd64eccd6 added framework for processing assertions for client auth 2013-01-18 15:06:00 -05:00
Amanda Anganes ad5e77f7ff Made nonce storage duration configurable in application-context.xml; 2013-01-10 10:34:40 -05:00
Amanda Anganes 59f1b1f05e Testing, nonce handling seems to be working now 2013-01-07 13:28:30 -05:00
Amanda Anganes a1a117cfde Added default constructor to ConnectAuthorizationRequestManager 2013-01-07 10:54:33 -05:00
Amanda Anganes af81e371fb Updated application-context to use new authorization request manager 2013-01-07 10:46:55 -05:00
Amanda Anganes 77b932f5a7 Added implementation of AuthorizationRequestManager. Nonce checking will go in here 2013-01-04 15:30:24 -05:00
Amanda Anganes 1af6513499 Removed nonce checking from token service impl 2013-01-04 15:30:24 -05:00
Amanda Anganes 7e7b2527db Added nonce to persistence.xml 2013-01-04 15:30:24 -05:00
Amanda Anganes 246ed962bb Added stub of repository test 2013-01-04 15:30:24 -05:00
Amanda Anganes e1dffb959c Added NonceReuseException 2013-01-04 15:30:24 -05:00
Amanda Anganes 8f8a3754db Added database tables for Nonce 2013-01-04 15:30:24 -05:00
Amanda Anganes a4637ec395 Fleshed out nonce service classes, added code to token service impl to check for and store nonces. Added JodaTime library for working with dates. 2013-01-04 15:30:24 -05:00
Amanda Anganes c7ae315e98 Added initial files for nonce service. Repository and service impls are stubs 2013-01-04 15:30:24 -05:00
Justin Richer cbcfe55bb9 added introspection flag to client bootstrap 2013-01-02 14:16:31 -05:00
Justin Richer 4068952a81 fixed well size, added comment 2013-01-02 10:19:55 -05:00
Justin Richer 655092a12b added introspection checkbox, added access tab 
Signed-off-by: Justin Richer <jricher@mitre.org>
 2012-12-21 16:38:52 -05:00
Justin Richer 9a1b2d7fac made client edit page tabbable (that was seriously easy) 2012-12-21 16:26:34 -05:00
Justin Richer 48866c15f2 button display cleanup 2012-12-21 16:07:59 -05:00
Justin Richer a85b1f5d74 split approved sites into two tables 2012-12-21 15:35:33 -05:00
Justin Richer 198a45369a buttonsize tweak 2012-12-21 15:03:45 -05:00
Justin Richer f12efc1b80 added dynreg caution block 2012-12-21 14:48:15 -05:00
Justin Richer 231e81a426 updated icons 2012-12-21 14:28:07 -05:00
Justin Richer 797d521691 cleaned up logged-in button 2012-12-21 13:04:33 -05:00
Justin Richer 7ebbe3acc4 removed mockups 2012-12-21 11:01:22 -05:00
Justin Richer 7459767646 fixed validation problem with new backbone 2012-12-20 17:46:34 -05:00
Justin Richer 37bca0d5fb cleaned out backbone validation plugin 2012-12-20 17:31:22 -05:00
Justin Richer 9dd54d47bb updated versions of backbone and underscore 2012-12-20 17:31:08 -05:00
Justin Richer e0672757bf update to bootstrap 2.2.2 2012-12-20 12:44:02 -05:00
Justin Richer 8ad28b41aa fixing CSS and collapsing headerbar 2012-12-20 12:35:30 -05:00
Justin Richer 67a682d53a added default router to backbone app 2012-12-18 13:56:57 -05:00
Justin Richer 87788f0710 let users visit home page without logging in 2012-12-18 13:56:46 -05:00
Justin Richer f265347311 tweaked error messages 2012-12-18 12:08:36 -05:00
Justin Richer 18ddd8333f added flag to allow introspection, relaxed same-client restrictions on introspection and chained tokens 2012-12-18 11:07:24 -05:00
Justin Richer 6eabc895b9 moved database file to a reasonable name 2012-12-17 13:45:39 -05:00
Justin Richer 1f53f41648 generic entity view now takes optional HttpStatus argument 2012-12-14 17:35:21 -05:00
Justin Richer a3790f943e cleaned up introspection endpoint to use exceptions 2012-12-14 17:35:20 -05:00
Justin Richer e5206f2b92 implemented jwt assertions for id tokens 2012-12-14 17:35:20 -05:00
Justin Richer 51b67ebc03 added queries to get access token from id token 2012-12-14 17:35:20 -05:00
Justin Richer 1853bd7117 added assertion token granter 2012-12-14 17:35:20 -05:00
Justin Richer 0d6c96f410 moved JPA adapter to data-context, addresses #242 2012-12-14 09:43:42 -05:00
Justin Richer 2a74be5baf bringing mysql tables up to date 2012-12-13 16:54:21 -05:00
Justin Richer 2c104a71e2 cleaned up mysql table 2012-12-13 16:04:45 -05:00
Justin Richer cda6163d0d null and blank handling 2012-12-12 12:29:14 -05:00
Justin Richer 06fad3a41c moved view for client API 2012-12-11 15:19:11 -05:00
Justin Richer 6344a72519 missed a few applicationName references, fixed API JSON rendering 2012-12-11 15:16:18 -05:00
Justin Richer dfd8e9c7c7 removed unused view 2012-12-11 15:15:52 -05:00
Justin Richer dd04df6a22 fixed javascript bugs 2012-12-11 14:08:10 -05:00
Justin Richer f12d3c7d30 fixed variable reference 2012-12-11 13:37:14 -05:00
Justin Richer 920777128d switched to uncompressed jquery 2012-12-11 13:29:19 -05:00
Justin Richer 829c8ae5f4 tweaked functionality of grant types and scopes 2012-12-11 13:16:33 -05:00
Justin Richer cc36851bdd propagated field name change to UI 2012-12-11 12:38:55 -05:00
Justin Richer 179903b074 propagated client changes to service 2012-12-11 12:31:01 -05:00
Justin Richer 2f7891d02c updated mysql table to new schema 2012-12-11 12:27:24 -05:00
Justin Richer bcfa37040e missed one 2012-12-11 12:18:51 -05:00
Justin Richer 33ceedb283 added scope and grant_type, switched to timeunit 2012-12-11 12:11:09 -05:00
Justin Richer e2bc15c2b2 beginning of client registration refactor to track IETF dynreg spec 2012-12-10 17:36:33 -05:00
Justin Richer 94c37f5815 added redelegate scope to client list, fixed inconsistency with refresh token issuance (addresses #239) 2012-12-10 16:53:05 -05:00
Justin Richer 510ddb48b7 override the correct part of the token granter class 2012-12-10 15:54:37 -05:00