Amanda Anganes
|
cb449c25b1
|
Made a UserInfoSerializer class, attempted to switch UserInfoInterceptor over to use it, but it requires a bad hack. I might be missing something.
|
11 years ago |
|
Justin Richer
|
73863302e9
|
added spring-tx dependency to server
|
11 years ago |
|
Justin Richer
|
8a5a16f374
|
refactored project into four modules:
Common
Client
Server Library
Server Webapp
addresses #367
|
11 years ago |
|
Justin Richer
|
bf3e0033fe
|
initial refactor of userinfoview for new model components
|
11 years ago |
|
Justin Richer
|
9debf1486d
|
pass authorized and requested claims as strings to view
|
11 years ago |
|
Justin Richer
|
b396610f35
|
refactor processing of request object
|
11 years ago |
|
Amanda Anganes
|
47d304851d
|
Created token service for OIDC special tokens; removed creation of id tokens and registration_access_tokens to the new service.
|
11 years ago |
|
Amanda Anganes
|
66e837f650
|
Move extension parameters into OAuth2Request.extensions map; remove all calls to OAuth2Request.getRequestParameters.
|
11 years ago |
|
Justin Richer
|
e1ed53a229
|
added missing parts to discovery
|
11 years ago |
|
Justin Richer
|
6605877a1b
|
added encryption/decryption to cached JWK-URI service
|
11 years ago |
|
Justin Richer
|
9f13dc8f77
|
wrap errors in saving the client in an HTTP 400 (instead of HTTP 500) error
|
11 years ago |
|
Justin Richer
|
9b72c6b1f3
|
check sector identifier URI's contents and match against redirect URIs, addresses #504
|
11 years ago |
|
Justin Richer
|
1aa5fe25c6
|
re-decrypt request object at userinfo endpoint (this shouldn't need to happen)
|
11 years ago |
|
Justin Richer
|
09cd752c86
|
added basic support for encrypted request objects, addresses #475
|
11 years ago |
|
Justin Richer
|
a52f86db49
|
removed NYI tags from request object algorithm fields
|
11 years ago |
|
Justin Richer
|
d09b3b50d6
|
call encode() instead of new() on Base64URL utility
|
11 years ago |
|
Justin Richer
|
35bd9c8eda
|
throw appropriate errors from request factory
|
11 years ago |
|
Justin Richer
|
e67a41c556
|
added transient passthroughs to JOSE algorithms for client
|
11 years ago |
|
Justin Richer
|
c9aa42dbef
|
better processing for signed request objects
|
11 years ago |
|
Justin Richer
|
f9ca15139d
|
added phone-number verified, addresses #505
affects #455
|
11 years ago |
|
Justin Richer
|
6cbed133b2
|
let user know that the client is using a pairwise identifier on approval
|
11 years ago |
|
Justin Richer
|
a9f639a718
|
moved subject type and sector identifier controls to the 'access' tab
|
11 years ago |
|
Justin Richer
|
6b66139ead
|
added unit test for uuid service
|
11 years ago |
|
Justin Richer
|
0281cf02fe
|
calculate pairwise based on redirect uri rather than client id
|
11 years ago |
|
Justin Richer
|
f6a8ac4529
|
added unit test for default userinfo service (with pairwise checks)
|
11 years ago |
|
Justin Richer
|
77c0473438
|
fixed comparison order to be null safe
cleaned up type check
|
11 years ago |
|
Justin Richer
|
dbdc2e777d
|
added pairwise identifier service and repository
|
11 years ago |
|
Justin Richer
|
bdf62eaa36
|
need to check the sector identifier at some point
|
11 years ago |
|
Justin Richer
|
914f2e4d93
|
added new call to get the UserInfo in context with the requesting client to allow for pairwise identifiers.
temporary implementation of pairwise identifiers in place
|
11 years ago |
|
Justin Richer
|
149fb1bac1
|
services shouldn't be transactional
|
11 years ago |
|
Justin Richer
|
29d1c7d54a
|
userinfo endpoint now uses OAuth2Authentication exclusively
(which is all it was really doing before)
|
11 years ago |
|
Justin Richer
|
ac42c00062
|
id token now uses userinfo's sub
|
11 years ago |
|
Justin Richer
|
f139541485
|
added randomized subs to demo users
|
11 years ago |
|
Justin Richer
|
b9da10d176
|
look up by username instead of subject
|
11 years ago |
|
Justin Richer
|
9ea82aacf0
|
clean up unused getter/setter
|
11 years ago |
|
Justin Richer
|
9720b60f05
|
allow loading of structured scopes from scopes.sql file (and temp tables)
|
11 years ago |
|
Justin Richer
|
5e676e0e59
|
fixed scope UI
|
11 years ago |
|
Justin Richer
|
2b663bb23c
|
UI for scope editing
|
11 years ago |
|
Justin Richer
|
469e722f72
|
defer to system scope matcher in approval handler
|
11 years ago |
|
Justin Richer
|
99ad9b883e
|
added validator that knows how to deal with structured scopes
|
11 years ago |
|
Justin Richer
|
59187d47e4
|
use new unified parsing for approval page
|
11 years ago |
|
Justin Richer
|
85533d50cf
|
scope comparison for TofuUserApprovalHandler
|
11 years ago |
|
Justin Richer
|
1c4c53f252
|
scope comparison for introspection endpoint
|
11 years ago |
|
Justin Richer
|
6152a943d8
|
serialize structured scopes properly (with tests)
|
11 years ago |
|
Justin Richer
|
72f0ab631d
|
added transient structured value to system scope, added scope matcher function to scope service
|
11 years ago |
|
Justin Richer
|
3fc34f15c8
|
added structured scope update to mysql (affects #455)
|
11 years ago |
|
Josh Mandel
|
b416888b07
|
Structured Scopes from BB+
|
11 years ago |
|
Justin Richer
|
127507246e
|
if the client doesn't ask for any system scopes, but asks for some non-system scopes, they'll now get the defaults instead of none
addresses #498
|
11 years ago |
|
Justin Richer
|
64bbb73d1b
|
cleaned up CORS filter implementation
|
11 years ago |
|
Justin Richer
|
6ff4ae1458
|
added CORS filter
|
11 years ago |
|
Justin Richer
|
81cb60ad7b
|
made introspection and revocation work with basic auth (and possible OAuth tokens, but that needs more work)
|
11 years ago |
|
Justin Richer
|
bdbff8d45c
|
tell spring to not stuff model into the redirects, partially addresses #492
|
11 years ago |
|
Justin Richer
|
84f097edf4
|
removed outdated client credentials filter, addresses #491
|
11 years ago |
|
Justin Richer
|
d7be122a21
|
added basic user profile view implementation
|
11 years ago |
|
Justin Richer
|
55ea880396
|
hide admin panels from non-admin users, addresses #472
|
11 years ago |
|
Justin Richer
|
235029ba0e
|
inject user's authorities into javascript context
|
11 years ago |
|
Justin Richer
|
eab4563551
|
inject user's email address into contacts on dynamic registration
|
11 years ago |
|
Justin Richer
|
be6179d1ac
|
inject the current user into the javascript context
|
11 years ago |
|
Justin Richer
|
5c10eef8b7
|
added delete function
|
11 years ago |
|
Justin Richer
|
d92b7c4810
|
changed display of core client components, added warning
|
11 years ago |
|
Justin Richer
|
4009d9ea82
|
added create and update functions
|
11 years ago |
|
Justin Richer
|
8e6da2b936
|
json view and form elements
|
11 years ago |
|
Justin Richer
|
36151975c1
|
added client read and oauth token support for CRUD abilities
|
11 years ago |
|
Justin Richer
|
ead99474be
|
fixed panels for client form
|
11 years ago |
|
Justin Richer
|
fb66af2071
|
added form editor and control for newly-registered clients
|
11 years ago |
|
Justin Richer
|
51973ea595
|
added dev page for self-service client registration
|
11 years ago |
|
William Kim
|
2108311d65
|
Revert "refactored code to use the more generic JWT declaration."
This reverts commit e0b56bc72a.
|
11 years ago |
|
William Kim
|
e0b56bc72a
|
refactored code to use the more generic JWT declaration.
|
11 years ago |
|
Justin Richer
|
ca777f7dc4
|
proper null check for client's preferred signature method
|
11 years ago |
|
William Kim
|
07bec462cc
|
added comment about why we can't use set intersection method.
|
11 years ago |
|
William Kim
|
b89436d7b9
|
UserInfoView returning intersection of claims request parameter and request object claims in effect now.
|
11 years ago |
|
Justin Richer
|
bd3d2a5cee
|
created crypto tab
|
11 years ago |
|
Justin Richer
|
3f66d16236
|
removed NYI tag from ID token signing alg
|
11 years ago |
|
Justin Richer
|
48a9202f79
|
fixed jquery.on regex to be less aggressive
|
11 years ago |
|
Amanda Anganes
|
941e9544e2
|
Compare client_ids instead of Client objects
|
11 years ago |
|
Amanda Anganes
|
3eae6f2789
|
Changed client algorithm check to look for null instead of JWSAlgorithm.NONE, which is a valid value.
|
11 years ago |
|
Amanda Anganes
|
0059c7b4cc
|
Use clients preferred algorithm, if any, to sign
|
11 years ago |
|
Justin Richer
|
2fb138aa19
|
fixed jquery.on syntax bug, addresses #346
|
11 years ago |
|
Justin Richer
|
8edc8cc69a
|
Disable unsupported JOSE algorithms in UI, addresses #476
|
11 years ago |
|
Justin Richer
|
8c91861188
|
load server configuration into JS app
|
11 years ago |
|
Justin Richer
|
e40b1cf850
|
animated loading bar for management console
|
11 years ago |
|
Justin Richer
|
a80c19384f
|
added 'use server default' to JOSE options, addresses #462
|
11 years ago |
|
William Kim
|
b54f33d0db
|
fixed json elements of "claims" and "userinfo" being processed out of order.
|
11 years ago |
|
William Kim
|
7b813c79ee
|
parsing "claims" parameter directly from userinfoendpoint requests.
|
11 years ago |
|
William Kim
|
1ffbb39a2b
|
refactored json parser to a private static field.
|
11 years ago |
|
William Kim
|
89056bd911
|
removed test-specific constructor and default constructor.
|
11 years ago |
|
Justin Richer
|
ba0c3c5d78
|
id tokens always expire, addresses #416
|
11 years ago |
|
William Kim
|
7e51a361ba
|
changed to using relative em lengths instead of hard px length values for token timeout form elements.
|
11 years ago |
|
Justin Richer
|
c1ee5141a4
|
added back default timeouts and fixed refresh token check
|
11 years ago |
|
William Kim
|
00db39dab9
|
addresses issue #471. setting default timeout values in the backbone model to null.
|
11 years ago |
|
Justin Richer
|
1b674b6420
|
restored bootstrap to out-of-the-box formatting, addresses #454
|
11 years ago |
|
William Kim
|
a6bb56ed9a
|
unit select box appropriately disabled after saving now.
|
11 years ago |
|
William Kim
|
86c6a0ea8b
|
clear token timeout form fields when disabled and also disable unit selector.
|
11 years ago |
|
William Kim
|
3f01ae1a71
|
renamed token expiration form field ids from -seconds to -time.
|
11 years ago |
|
William Kim
|
2242db5c11
|
shortened token timeout form fields.
|
11 years ago |
|
William Kim
|
6f8143937e
|
dropdown time unit chooser added for token expiration.
|
11 years ago |
|
William Kim
|
7ab53795b1
|
refactor js. getFormTokenValue() -> getFormTokenNumberValue().
|
11 years ago |
|
Justin Richer
|
7d51335055
|
added prompt=login support, addresses #323
|
11 years ago |
|
Justin Richer
|
a0646452ab
|
test for max_age, force login if not fresh enough, addresses #467
|
11 years ago |
|
Justin Richer
|
6c1e91b7e3
|
auth_time is now tracked, addresses #288
|
11 years ago |
|
Amanda Anganes
|
e88c6c4943
|
Changed predicates methods to use Collections2.filter rather than Sets.filter
|
11 years ago |
|
William Kim
|
f1357cceb4
|
corrected output for badly-formatted timeout date.
|
11 years ago |
|
William Kim
|
025eb05d3a
|
added date format validity check for moment.js usage.
|
11 years ago |
|
William Kim
|
c1607b53e4
|
null-checking in date display for approved sites.
|
11 years ago |
|
William Kim
|
d67a492b6c
|
date display logic to use moment.js.
|
11 years ago |
|
William Kim
|
ba7e791985
|
initial moment time formatting commit.
|
11 years ago |
|
William Kim
|
a72ba6d98b
|
importing moment.js library.
|
11 years ago |
|
William Kim
|
6687e3a831
|
override createOAuth2Request method for factory iss #465.
|
11 years ago |
|
Amanda Anganes
|
ef4482249c
|
Dyn-reg endpoint now creates the registration access token from scratch instead of calling token services; token services no longer needs to check for RAT scope to avoid expiring RATs
|
11 years ago |
|
Justin Richer
|
15e512cec3
|
renamed JWSUtils -> IdTokenHashUtils, renamed internal variables
|
11 years ago |
|
William Kim
|
0f16bacc63
|
TestJWSUtils done.
|
11 years ago |
|
William Kim
|
2ba8ad71f1
|
updated hash tests.
|
11 years ago |
|
William Kim
|
cdd3a6d478
|
changed at_hash/c_hash impl. HMAC-SHA --> regular SHA.
|
11 years ago |
|
Amanda Anganes
|
fd611ce353
|
Had an unsaved file hanging around - formatting JSPs
|
11 years ago |
|
Amanda Anganes
|
a91f160e34
|
Fixed formatting in tag files
|
11 years ago |
|
Amanda Anganes
|
5beac9d50d
|
Fixed formatting in JSPs
|
11 years ago |
|
Amanda Anganes
|
2d4d7f7be9
|
Had to hand-merge some things; git got confused
|
11 years ago |
|
Amanda Anganes
|
861beeba64
|
Added c_hash function, added stub of unit test for JWSUtils
|
11 years ago |
|
Amanda Anganes
|
37580cc21e
|
JWSUtils uses JWSAlgorithm to match bit length; ConnectTokenEnhancer calls the util method now
|
11 years ago |
|
Amanda Anganes
|
3a591dc1f4
|
Added JWSUtils class;
|
11 years ago |
|
Amanda Anganes
|
be97aedbc7
|
Used Predicates to filter expired tokens and approved sites;
|
11 years ago |
|
Amanda Anganes
|
b3bb43881d
|
Moved getExpired to service layers
|
11 years ago |
|
Amanda Anganes
|
eea37cf79c
|
Fixed token expiration bug by removing jsql queries. Instead expired tokens or approved sites are filtered at the repository level
|
11 years ago |
|
Amanda Anganes
|
ce4ab6a766
|
Updated spring version to 3.2.3; added a 10-minute initial delay to the scheduled tasks in task-config.xml
|
11 years ago |
|
Amanda Anganes
|
265214511c
|
Renamed oAuth2RequestFactory
|
11 years ago |
|
Amanda Anganes
|
a4c1a7a37d
|
Issue 449
|
11 years ago |
|
Amanda Anganes
|
9dda789488
|
Updated database tables
|
11 years ago |
|
Amanda Anganes
|
2f711c88a7
|
Removed nonce service
|
11 years ago |
|
Amanda Anganes
|
d4fbb4f599
|
Removed Event class
|
11 years ago |
|
William Kim
|
88863f4910
|
replaced mock TokenRequest and the storedAuth test field with concrete objects. test should pass now.
|
11 years ago |
|
William Kim
|
1392faa83c
|
replaced mock client auth with concrete OAuth2Request object
|
11 years ago |
|
Amanda Anganes
|
ad2ace6d74
|
Do not expire registration tokens
|
11 years ago |
|
Justin Richer
|
beaeaa4ccc
|
I can spell "consortium", I promise
|
11 years ago |
|
Justin Richer
|
b2b6fd6448
|
further cleanup
|
11 years ago |
|
Justin Richer
|
856c0ea0b5
|
Merge commit '023dd440d4a0e6e59a14c88013837d79a77c74e0' into 1.1-merge
Conflicts:
openid-connect-client/pom.xml
openid-connect-client/src/main/java/org/mitre/oauth2/introspectingfilter/AuthorizationRequestImpl.java
openid-connect-client/src/main/java/org/mitre/oauth2/introspectingfilter/IntrospectingTokenService.java
openid-connect-client/src/main/java/org/mitre/oauth2/introspectingfilter/IntrospectionAuthorityGranter.java
openid-connect-client/src/main/java/org/mitre/oauth2/introspectingfilter/IntrospectionUrlProvider.java
openid-connect-client/src/main/java/org/mitre/openid/connect/client/OIDCAuthenticationFilter.java
openid-connect-client/src/main/java/org/mitre/openid/connect/client/OIDCAuthenticationProvider.java
openid-connect-client/src/main/java/org/mitre/openid/connect/client/keypublisher/ClientKeyPublisher.java
openid-connect-client/src/main/java/org/mitre/openid/connect/client/keypublisher/ClientKeyPublisherMapping.java
openid-connect-client/src/main/java/org/mitre/openid/connect/client/keypublisher/JwkViewResolver.java
openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/AuthRequestUrlBuilder.java
openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/ClientConfigurationService.java
openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/impl/StaticClientConfigurationService.java
openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/impl/StaticServerConfigurationService.java
openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/impl/StaticSingleIssuerService.java
openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/impl/ThirdPartyIssuerService.java
openid-connect-client/src/test/java/org/mitre/openid/connect/client/AbstractOIDCAuthenticationFilterTest.java
openid-connect-common/pom.xml
openid-connect-common/src/main/java/org/mitre/jose/keystore/JWKSetKeyStore.java
openid-connect-common/src/main/java/org/mitre/jwt/signer/service/JwtSigningAndValidationService.java
openid-connect-common/src/main/java/org/mitre/jwt/signer/service/impl/DefaultJwtSigningAndValidationService.java
openid-connect-common/src/main/java/org/mitre/jwt/signer/service/impl/JWKSetSigningAndValidationServiceCacheService.java
openid-connect-common/src/main/java/org/mitre/oauth2/model/AuthorizationCodeEntity.java
openid-connect-common/src/main/java/org/mitre/oauth2/model/ClientDetailsEntity.java
openid-connect-common/src/main/java/org/mitre/oauth2/model/OAuth2AccessTokenEntity.java
openid-connect-common/src/main/java/org/mitre/oauth2/model/OAuth2RefreshTokenEntity.java
openid-connect-common/src/main/java/org/mitre/oauth2/model/SystemScope.java
openid-connect-common/src/main/java/org/mitre/oauth2/repository/AuthorizationCodeRepository.java
openid-connect-common/src/main/java/org/mitre/oauth2/repository/OAuth2TokenRepository.java
openid-connect-common/src/main/java/org/mitre/oauth2/service/OAuth2TokenEntityService.java
openid-connect-common/src/main/java/org/mitre/openid/connect/config/ConfigurationPropertiesBean.java
openid-connect-common/src/main/java/org/mitre/openid/connect/config/ServerConfiguration.java
openid-connect-common/src/main/java/org/mitre/openid/connect/model/ApprovedSite.java
openid-connect-common/src/main/java/org/mitre/openid/connect/model/BlacklistedSite.java
openid-connect-common/src/main/java/org/mitre/openid/connect/model/Event.java
openid-connect-common/src/main/java/org/mitre/openid/connect/model/OIDCAuthenticationToken.java
openid-connect-common/src/main/java/org/mitre/openid/connect/model/WhitelistedSite.java
openid-connect-common/src/main/java/org/mitre/util/jpa/JpaUtil.java
openid-connect-server/.gitignore
openid-connect-server/pom.xml
openid-connect-server/src/main/java/org/mitre/oauth2/repository/impl/JpaAuthorizationCodeRepository.java
openid-connect-server/src/main/java/org/mitre/oauth2/service/impl/DefaultOAuth2AuthorizationCodeService.java
openid-connect-server/src/main/java/org/mitre/oauth2/service/impl/DefaultOAuth2ClientDetailsEntityService.java
openid-connect-server/src/main/java/org/mitre/oauth2/service/impl/DefaultOAuth2ProviderTokenService.java
openid-connect-server/src/main/java/org/mitre/oauth2/service/impl/DefaultSystemScopeService.java
openid-connect-server/src/main/java/org/mitre/oauth2/token/ChainedTokenGranter.java
openid-connect-server/src/main/java/org/mitre/oauth2/token/JwtAssertionTokenGranter.java
openid-connect-server/src/main/java/org/mitre/oauth2/view/TokenIntrospectionView.java
openid-connect-server/src/main/java/org/mitre/oauth2/web/IntrospectionEndpoint.java
openid-connect-server/src/main/java/org/mitre/oauth2/web/OAuthConfirmationController.java
openid-connect-server/src/main/java/org/mitre/oauth2/web/RevocationEndpoint.java
openid-connect-server/src/main/java/org/mitre/openid/connect/ConnectOAuth2RequestFactory.java
openid-connect-server/src/main/java/org/mitre/openid/connect/assertion/JwtBearerAuthenticationProvider.java
openid-connect-server/src/main/java/org/mitre/openid/connect/assertion/JwtBearerClientAssertionTokenEndpointFilter.java
openid-connect-server/src/main/java/org/mitre/openid/connect/exception/InvalidJwtSignatureException.java
openid-connect-server/src/main/java/org/mitre/openid/connect/exception/UnknownUserInfoSchemaException.java
openid-connect-server/src/main/java/org/mitre/openid/connect/exception/UserNotFoundException.java
openid-connect-server/src/main/java/org/mitre/openid/connect/repository/impl/JpaApprovedSiteRepository.java
openid-connect-server/src/main/java/org/mitre/openid/connect/repository/impl/JpaUserInfoRepository.java
openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/DefaultApprovedSiteService.java
openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/DefaultNonceService.java
openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/DefaultStatsService.java
openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/DefaultUserInfoUserDetailsService.java
openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/DefaultWhitelistedSiteService.java
openid-connect-server/src/main/java/org/mitre/openid/connect/token/ConnectTokenEnhancer.java
openid-connect-server/src/main/java/org/mitre/openid/connect/token/TofuUserApprovalHandler.java
openid-connect-server/src/main/java/org/mitre/openid/connect/view/AbstractClientEntityView.java
openid-connect-server/src/main/java/org/mitre/openid/connect/view/ClientInformationResponseView.java
openid-connect-server/src/main/java/org/mitre/openid/connect/view/ExceptionAsJSONView.java
openid-connect-server/src/main/java/org/mitre/openid/connect/view/JsonEntityView.java
openid-connect-server/src/main/java/org/mitre/openid/connect/view/JsonErrorView.java
openid-connect-server/src/main/java/org/mitre/openid/connect/view/POCOUserInfoView.java
openid-connect-server/src/main/java/org/mitre/openid/connect/view/StatsSummary.java
openid-connect-server/src/main/java/org/mitre/openid/connect/view/UserInfoView.java
openid-connect-server/src/main/java/org/mitre/openid/connect/web/ApprovedSiteAPI.java
openid-connect-server/src/main/java/org/mitre/openid/connect/web/BlacklistAPI.java
openid-connect-server/src/main/java/org/mitre/openid/connect/web/ClientAPI.java
openid-connect-server/src/main/java/org/mitre/openid/connect/web/ClientDynamicRegistrationEndpoint.java
openid-connect-server/src/main/java/org/mitre/openid/connect/web/ManagerController.java
openid-connect-server/src/main/java/org/mitre/openid/connect/web/RequestObjectAuthorizationEndpoint.java
openid-connect-server/src/main/java/org/mitre/openid/connect/web/StatsAPI.java
openid-connect-server/src/main/java/org/mitre/openid/connect/web/UserInfoEndpoint.java
openid-connect-server/src/main/java/org/mitre/openid/connect/web/UserInfoInterceptor.java
openid-connect-server/src/main/java/org/mitre/openid/connect/web/WhitelistAPI.java
openid-connect-server/src/main/webapp/WEB-INF/tags/aboutContent.tag
openid-connect-server/src/main/webapp/WEB-INF/tags/breadcrumbs.tag
openid-connect-server/src/main/webapp/WEB-INF/tags/contactContent.tag
openid-connect-server/src/main/webapp/WEB-INF/tags/copyright.tag
openid-connect-server/src/main/webapp/WEB-INF/tags/header.tag
openid-connect-server/src/main/webapp/WEB-INF/tags/landingPageAbout.tag
openid-connect-server/src/main/webapp/WEB-INF/tags/landingPageContact.tag
openid-connect-server/src/main/webapp/WEB-INF/tags/landingPageStats.tag
openid-connect-server/src/main/webapp/WEB-INF/tags/landingPageWelcome.tag
openid-connect-server/src/main/webapp/WEB-INF/tags/sidebar.tag
openid-connect-server/src/main/webapp/WEB-INF/tags/statsContent.tag
openid-connect-server/src/main/webapp/WEB-INF/tags/topbar.tag
openid-connect-server/src/main/webapp/WEB-INF/views/about.jsp
openid-connect-server/src/main/webapp/WEB-INF/views/approve.jsp
openid-connect-server/src/main/webapp/WEB-INF/views/contact.jsp
openid-connect-server/src/main/webapp/WEB-INF/views/exception/usernotfound.jsp
openid-connect-server/src/main/webapp/WEB-INF/views/login.jsp
openid-connect-server/src/main/webapp/WEB-INF/views/manage.jsp
openid-connect-server/src/main/webapp/WEB-INF/views/stats.jsp
pom.xml
|
11 years ago |
|
Justin Richer
|
023dd440d4
|
[maven-release-plugin] prepare for next development iteration
|
11 years ago |
|
Justin Richer
|
5e8f93cf15
|
[maven-release-plugin] prepare release mitreid-connect-1.0.6
|
11 years ago |
|
Justin Richer
|
e658ffd7fc
|
format/cleanup and copyright
|
11 years ago |
|
Justin Richer
|
d4b544d519
|
disable token API (for now)
|
11 years ago |
|
Amanda Anganes
|
906db0ac86
|
Opened token api access to all users; restricted to only show currently-logged-in-users tokens
|
11 years ago |
|
Justin Richer
|
71da5b3d94
|
clean up some discovery values
|
12 years ago |
|
Justin Richer
|
c62bed37ff
|
convert server to use normalizer
|
12 years ago |
|
William Kim
|
93c3e7906f
|
put in line breaks into the extra long comments in DiscoveryEndpoint.java
|
12 years ago |
|
Justin Richer
|
20871852c0
|
updated dependencies for secoauth 1.1
|
12 years ago |
|
Amanda Anganes
|
b397f0ae15
|
First go at adding token API; needs to be tested
|
12 years ago |
|
Amanda Anganes
|
88db457fc4
|
Removed .springBeans from tracking; removed initializingbean in favor of @PostConstruct
|
12 years ago |
|
Amanda Anganes
|
dfbf01c9e3
|
Added .springBeans to gitignore
|
12 years ago |
|
William Kim
|
aad432c5d7
|
replaced stracktrace-printing with logger messages. removed some unused imports.
|
12 years ago |
|
William Kim
|
f483d41b88
|
getCustomClaim -> getClaim. Also, removed outdated TODOs.
|
12 years ago |
|
William Kim
|
17a96ca122
|
removed resolved TODOs. Fixed by the resolution of issue #345.
|
12 years ago |
|
William Kim
|
0d882faeca
|
added a TODO and fixed some comment typos.
|
12 years ago |
|
Amanda Anganes
|
15aea61fbe
|
Applied code cleanup
|
12 years ago |
|
Amanda Anganes
|
3e23967b46
|
Updated code to reflect SECOAUTH changes
|
12 years ago |
|
William Kim
|
9a6f345e15
|
yes, allow default scoping if the client doesn't ask for any.
|
12 years ago |
|
William Kim
|
3d312b7eb5
|
Deleted PermissionDeniedException class. Unused.
|
12 years ago |
|
William Kim
|
c5743dc810
|
updated unit tests to reflect new exception-throwing behavior.
|
12 years ago |
|
William Kim
|
ada54c297d
|
addresses issue #382. Throw an exception when client tries to upscope.
|
12 years ago |
|
Justin Richer
|
0d8c2442d2
|
[maven-release-plugin] prepare for next development iteration
|
12 years ago |
|
Justin Richer
|
9bf5f70957
|
[maven-release-plugin] prepare release mitreid-connect-1.0.5
|
12 years ago |
|
Amanda Anganes
|
12cb672c6d
|
Added new file for task config
|
12 years ago |
|
Amanda Anganes
|
059c2545c9
|
Split task configuration out into its own spring file
|
12 years ago |
|
William Kim
|
910839e5d9
|
fixed typo referring to client id as a client secret in code comments.
|
12 years ago |
|
Amanda Anganes
|
2d3f43e3b8
|
Added task scheduling for deleting expired tokens and approved sites. Configuration is all done in application-context.xml so that it is easy to configure
|
12 years ago |
|
Justin Richer
|
93a0492e97
|
made optional parameters optional
|
12 years ago |
|
Justin Richer
|
a9da88fb79
|
brought introspection endpoint and introspection token services into compliance with draft, addresses #376
|
12 years ago |
|
Josh Mandel
|
34373d777c
|
base URL of the server is set by the issuer.
|
12 years ago |
|
William Kim
|
3eddd58ae4
|
added unit test for checking expiration date of refreshed tokens.
|
12 years ago |
|
William Kim
|
24b24f6fa3
|
More unit tests for refreshing access tokens--specifically, checking scope processing.
|
12 years ago |
|
William Kim
|
5ffe1a50a2
|
Added null-handling for Scope values from the auth request. (Without this, a NullPointerException gets thrown with null scope values).
|
12 years ago |
|
William Kim
|
ed2223cae3
|
unit tests of exceptions cases for refreshing access tokens.
|
12 years ago |
|
William Kim
|
3353b92426
|
deeper unit tests on access token creation.
|
12 years ago |
|
Justin Richer
|
936f581a0b
|
[maven-release-plugin] prepare for next development iteration
|
12 years ago |
|
Justin Richer
|
27edec1a56
|
[maven-release-plugin] prepare release mitreid-connect-1.0.4
|
12 years ago |
|
William Kim
|
10f9858870
|
fixed typo on the about page.
|
12 years ago |
|
William Kim
|
42027e451c
|
added REQUIRED response types to discovery doc. Also, fixed 2 typos in the list of supported grant types.
|
12 years ago |
|
William Kim
|
2a92185433
|
added introspection endpoint URL to discovery document.
|
12 years ago |
|
William Kim
|
741946d1ae
|
updated server discovery code comments.
|
12 years ago |
|
William Kim
|
f27b69d06b
|
removed Version field from server discovery configuration.
|
12 years ago |
|
Justin Richer
|
5505b26aac
|
Form fix for login elements
addresses #352
|
12 years ago |
|
William Kim
|
4f9cbb4b3f
|
added check for null
|
12 years ago |
|
William Kim
|
1528c93acd
|
TestDefaultSystemScopeService unit tests done.
|
12 years ago |
|
William Kim
|
eca62f2d36
|
initial commit for TestDefaultSystemScopeService.
|
12 years ago |
|
William Kim
|
d0dc3c79cb
|
more unit tests for TestDefaultOAuth2ProviderTokenService.
|
12 years ago |
|
William Kim
|
dc51af5b83
|
removed testing builder inner class from DefaultOAuth2ProviderTokenService. Also, added more unit tests.
|
12 years ago |
|
William Kim
|
5ee7aae5d2
|
initial commit TestDefaultOAuth2ProviderTokenService.
|
12 years ago |
|
William Kim
|
abc4f01dde
|
TestDefaultStatsService done.
|
12 years ago |
|
Amanda Anganes
|
c212821267
|
Fixed ChainedTokenGranter setup
|
12 years ago |
|
Amanda Anganes
|
530c3a75ee
|
Applyed refactoring
|
12 years ago |
|
William Kim
|
f0f2fbea40
|
updated secoauth library version in poms
|
12 years ago |
|
Amanda Anganes
|
8b1a538464
|
Updated msql table definitions
|
12 years ago |
|
William Kim
|
cf3cee5ec2
|
removed lolcat :(
|
12 years ago |
|
William Kim
|
37dd7e7042
|
changed demo user accounts for server
|
12 years ago |
|
Justin Richer
|
2b3376e0ed
|
[maven-release-plugin] prepare for next development iteration
|
12 years ago |
|
Justin Richer
|
7fe4bc3b56
|
[maven-release-plugin] prepare release mitreid-connect-1.0.3
|
12 years ago |
|
Justin Richer
|
d6f5ca68bf
|
Added time skew to nonce service test
|
12 years ago |
|
William Kim
|
8935a87c23
|
TestDefaultWhitelistedSiteService done. Removed constructors from DefaultWhitelistedSiteService.
|
12 years ago |
|
William Kim
|
5fb1ef3aca
|
Revised test methods for checking for offline_access scope. Previous tests were doing trivial checking.
|
12 years ago |
|
William Kim
|
8851f4d037
|
TestDefaultOAuth2ClientDetailsEntityService done. Removed constructors from DefaultOAuth2ClientDetailsEntityService.
|
12 years ago |
|
William Kim
|
701217d98c
|
TestDefaultNonceService done.
|
12 years ago |
|
William Kim
|
4ee904cbfd
|
removed setter/getter from DefaultUserInfoUserDetailsService and updated test class with Mockito annotations.
|
12 years ago |
