Commit Graph

329 Commits (da72ce02ad8a6fc9a42ae4a7d5835c7e21b13684)

Author SHA1 Message Date
Justin Richer 76b25e13c1 made offline access non-default 2014-11-22 23:46:25 -05:00
Justin Richer e371ad345f fixed checking of refresh token permissions in client service, clients can now request either refresh_token grant type or offline_access scope and it will work. added checkbox to dynreg page for ease-of-use
closes #734
2014-11-22 23:46:25 -05:00
Justin Richer b4f3039c5a applied list widget catch to all objects 2014-11-13 14:16:00 -10:00
Justin Richer 51b10dbe96 more comprehensive list widget leftover object handling in client 2014-11-13 13:41:45 -10:00
Justin Richer 89f46fa872 client scopes now added appropriately 2014-11-13 13:15:11 -10:00
Justin Richer d9d9903c55 removed blur detection, started work on alternative 2014-11-13 11:42:50 -10:00
Justin Richer d7f8a846c3 made claim popover more friendly to mobile environments 2014-11-13 11:35:59 -10:00
Justin Richer b14dfa6458 approval page defaults to "ask again" when prompt=consent is passed, closes #669 2014-11-13 11:23:54 -10:00
Justin Richer 4e4d9337b6 added assertion authentication to introspection and revocation endpoints, closes #724 2014-11-12 16:32:48 -10:00
Justin Richer 34afe21e8a clean tabs, closes #727 2014-11-12 15:47:32 -10:00
Justin Richer b50facd4c2 explicitly added Jackson2 to support secoauth serialization, added string converter to work with our API 2014-11-11 00:17:03 -10:00
Justin Richer e6d10b67a4 update to Spring 4 and other related libraries 2014-11-10 18:29:54 -10:00
Justin Richer 841e4b4d68 added click through sanity check to registration token rotation, closes #698 2014-10-23 23:30:34 -04:00
Justin Richer 9e1bd8d8c1 updated icons list, enhanced editor display
Addresses #679
2014-10-23 23:30:34 -04:00
Justin Richer e814c3abd4 changed color of "matched" element list in client search 2014-10-07 21:44:17 -04:00
Justin Richer 793740cf08 added warnings for empty scopes and empty redirect URI lists 2014-10-07 21:43:53 -04:00
John Brooks 55a906ae40 Change this.model.id to this.model.get('id') 2014-10-07 19:40:39 -04:00
John Brooks 2d6deeb6f3 Change whitelist references from .id to .get('id') 2014-10-07 19:40:38 -04:00
Justin Richer f12d37f84e added registration token rotation function to UI 2014-10-07 19:40:38 -04:00
Justin Richer 78ebcd030d fixed button sizes on dynreg and rsreg 2014-10-07 19:40:38 -04:00
Justin Richer ec8f708472 swapped exception class for existing BeanCreationException, added example flag in config file (commented out)
closes #528
closes #689
2014-10-04 14:59:36 -04:00
James Agnew fd472e3bb4 Use locally bundled html5shim 2014-09-28 20:43:23 -04:00
Justin Richer 9e88a62479 moved the API endpoints, made resource tokens accessible too 2014-09-22 23:38:12 -04:00
Justin Richer cf198cccc2 added view of registration token 2014-09-22 23:24:17 -04:00
Justin Richer bf56fc34bb turned off ajax cache, switched to callback-based template loading
adresses #668
2014-09-22 21:57:48 -04:00
James Agnew e09c9af306 Update mitreid-connect.css 2014-09-15 21:34:59 -04:00
James Agnew d6cc626241 Fix IE8/9 issue where form elements don't display 2014-09-15 21:34:59 -04:00
Justin Richer 54c95c39d2 redirect URI display within table 2014-09-14 22:02:59 -04:00
Justin Richer 094bb6108e cleaner introspection label 2014-09-14 21:41:09 -04:00
Justin Richer 7e35ed0100 renamed client table item template to something sensible 2014-09-14 21:13:46 -04:00
Justin Richer fc93f1b36c fixed whitelist edit button 2014-09-14 21:09:54 -04:00
Justin Richer 3cb76f1810 cleaned up extraneous console.log() debug calls 2014-09-14 21:06:30 -04:00
Justin Richer ed0b476bb7 removed resource server filter from default <security:http> block 2014-08-24 21:46:40 -04:00
James Agnew c3c8df3dd1 Updating spring security versions 2014-08-06 13:57:35 -04:00
Justin Richer d38ee185fb tweaked styling on self-service registration pages 2014-08-05 21:52:23 -04:00
Justin Richer 2ae06b2611 fixed corrupted template, closes #644 2014-07-31 23:11:05 -04:00
Justin Richer f974f95138 added better hooks for local CSS overrides 2014-07-20 22:15:32 -07:00
Justin Richer dc4fd404ad made login button green 2014-07-20 22:06:09 -07:00
Justin Richer 2a2a86a14d further escaping on approval page
closes #634
2014-07-19 23:32:05 -07:00
Justin Richer a192cc4620 added escaping to JSP display 2014-07-19 23:18:04 -07:00
Justin Richer 91e00d79e3 changed all templates to print escaped characters 2014-07-19 22:39:48 -07:00
Justin Richer 38b6ab7a1b changed user button on top bar to drop down, tweaked login page, closes #635 2014-07-17 00:11:27 -04:00
Justin Richer 285f5ef10b added some header icons 2014-07-14 00:01:23 -04:00
Justin Richer 042a109312 grouped buttons in admin panel, closes #459 2014-07-04 22:15:51 -04:00
Justin Richer 55491c9979 enhanced client searching, closes #565 closes #566 2014-07-04 22:00:50 -04:00
Justin Richer 343e95d161 refresh token table displays count of currently active access tokens, closes #554 2014-07-02 18:23:02 -04:00
Justin Richer 665df2b29c grants table displays number of access tokens associated with grant (not id or refresh tokens), closes #555 2014-07-02 18:06:48 -04:00
Justin Richer 112154a2d8 cleaned up contacts handling across all classes of client, added text to address #626 2014-06-26 13:10:19 -04:00
Justin Richer a8185e5ae2 changed display text for unknown registration time on clients 2014-06-26 12:59:35 -04:00
Justin Richer 9a3bf818cd added icon for token introspection enabled clients 2014-06-26 12:59:19 -04:00
Justin Richer 683776e031 removed extraneous yup, closes #623 2014-06-26 11:51:23 -04:00
Justin Richer 0e02a4c7ca fixed wonky CSS on login page ... again
(backport from MIT)
2014-06-26 11:27:44 -04:00
Justin Richer d35f1fa014 added element scope to query for logo preview, closes #624 2014-06-26 11:11:12 -04:00
Justin Richer 08d62473be removed placeholder log-in box on lefthand side for non-logged-in users, replaced with a half-width spacer 2014-06-25 15:29:45 -04:00
Justin Richer f4edd3164f made timeout field optional, tokens don't expire in the default case 2014-06-12 19:37:32 -04:00
Trilok Jain 4e09ec687b Registration Token regeneration - when they are beyond their lifetime
(in read/update calls)
2014-06-12 19:12:32 -04:00
Justin Richer 199131ba77 fixed stats pluralization flub 2014-06-11 16:19:05 -04:00
Justin Richer e4bb30bd58 cleaned up resource registration model 2014-06-11 15:54:53 -04:00
Justin Richer 413768f3d3 made sidebar menus react to current page/section 2014-06-11 15:50:01 -04:00
Justin Richer c49b347cb3 re-attached options for backbone upgrade compatibility 2014-06-11 15:32:11 -04:00
Justin Richer 5e2fbd49c0 upgraded backbone.js 2014-06-11 15:14:48 -04:00
Justin Richer 271698272f added auto-collapse to action menu (for mobile devices) 2014-06-11 14:44:32 -04:00
Justin Richer ed0dc9acde updated top bar to work better on mobile touch browsers (I hope) 2014-06-11 14:10:06 -04:00
Justin Richer 5b1f9c1aeb removed extraneous references to app-connect Views (removed in f33726a) 2014-06-10 22:40:27 -04:00
Justin Richer d922a98783 fixed some liveliness problems in the client UI 2014-06-10 21:46:17 -04:00
Justin Richer bd1685b8d8 added live counts to tabs 2014-06-10 21:38:20 -04:00
Justin Richer f8dd8b32c7 added tabs to token page 2014-06-10 21:16:37 -04:00
Justin Richer c80acaa3f0 added copyable clientid display to client table 2014-06-10 21:03:42 -04:00
Justin Richer 0def26b7ed added tabs to grant display 2014-06-10 16:58:06 -04:00
Justin Richer a106121af3 created blacklist aware redirect resolver and wired it in, closes #549 2014-06-10 16:29:45 -04:00
Justin Richer d0e40d7cbd propagated filter order change to other endpoints for consistency (shouldn't actually matter) 2014-06-10 11:19:59 -04:00
Justin Richer ba266d7224 swapped order of client auth filters, closes #610 2014-06-10 11:18:05 -04:00
Justin Richer 6df68fc97a fixed client secret display on dynreg and res reg pages 2014-06-09 20:20:58 -04:00
Justin Richer 04de4e8483 updated display of saved client secret 2014-06-09 19:27:27 -04:00
Justin Richer d844b8e444 ported credential handling UI to dyn reg and res reg pages 2014-06-09 18:13:43 -04:00
Justin Richer bafd951dac removed extraneous data checks from resource registration 2014-06-09 17:41:48 -04:00
Justin Richer b81e8e7ed5 got rid of extraneous "require client secret" box 2014-06-09 16:35:47 -04:00
Josh Mandel 5ec7404e7b Fix missing redirect URIs in dynreg view
Fix more property names in dynreg view
2014-06-06 12:21:38 -07:00
Justin Richer 22ab1173a7 cleaned up dynreg self-service page to account for single-selection of grant types 2014-06-05 19:44:49 -04:00
Justin Richer ab083c0963 added checks to dynamic registration endpoint that disallow registration of multiple incompatible grant types 2014-06-05 17:16:35 -04:00
Justin Richer 72c4a394fe cleaner display for user profiles 2014-06-04 14:39:47 -04:00
Justin Richer 8861220632 stats on home page are now loaded in the background (makes main site load much faster) 2014-06-04 14:39:30 -04:00
Justin Richer 0059e78b69 made content wrapper a div instead of a span 2014-06-04 13:36:38 -04:00
Justin Richer dd5ee4bf80 created generic "loading" page to sit behind loading sheet, avoids sheet getting re-used (which doesn't tend to work) 2014-06-04 13:34:08 -04:00
Justin Richer 737eec432a fixed blacklist loading sheet 2014-06-04 13:33:31 -04:00
Justin Richer 00b35ddd9d cleaned references to app-attached views 2014-06-04 13:19:04 -04:00
Justin Richer 580f6d990e cleaned up "cancel" button behavior, also closes #608 2014-06-03 22:43:09 -04:00
Justin Richer f33726a778 don't re-use view objects, closes #608 2014-06-03 22:42:42 -04:00
Justin Richer e57adc048a don't allow empty blacklists either 2014-05-31 11:14:16 -04:00
Justin Richer 1a7de8cf29 disambiguate list items in event model 2014-05-31 11:10:53 -04:00
Josh Mandel ff3a210064 Don't delete the entire client when a single email address is removed 2014-05-30 11:01:58 -07:00
Justin Richer 0c8cacd59a added missing copyright headers 2014-05-27 13:46:47 -04:00
Justin Richer ab15a65c93 internalized logo placeholder image block 2014-05-26 17:58:51 -04:00
Justin Richer 82a4b954e7 removed client description from dynamic registration pages (nonstandard field, doesn't get saved by the server anyway) 2014-05-26 17:44:09 -04:00
Justin Richer 7e2109f617 added oauth filters to resource registration endpoint 2014-05-26 17:40:08 -04:00
Justin Richer c34357a433 added resource registration endpoint with basic functionality and specialized tokens 2014-05-26 16:30:24 -04:00
Justin Richer 0775785ce3 added in UI shell for creating/editing resources (clients with "introspection" set and no grants or other parameters) 2014-05-26 15:41:50 -04:00
Justin Richer b8908b6efe cleaned up old test file 2014-05-26 15:41:00 -04:00
Justin Richer 960319b796 improved logging configuration, removed transactional from service 2014-05-25 15:38:44 -04:00
Justin Richer 6d5a967d8a fixed client editor lazy loading 2014-05-25 07:58:25 -04:00
Justin Richer 73b00905bb cleaned up UI components for client creation (fixed defaults and loading) 2014-05-24 22:13:00 -04:00
Justin Richer 5c6e75bd53 cleaned up UI for client editing 2014-05-24 20:56:54 -04:00
Justin Richer 4e890a4d7d enforce clients using a redirect flow have at least one redirect uri registered when using dynamic registration, made error handling more consistent across all APIs
closes #596
2014-05-21 18:29:51 -04:00
Justin Richer c38761cc23 fix dynamic registration of public clients 2014-05-21 18:00:54 -04:00
Justin Richer fa418402de externalized application CSS, closes #221
added favicon, cleaned up header and footer code
2014-05-21 17:14:43 -04:00
Justin Richer a253ebc908 added CSRF protection to approval page 2014-05-13 09:27:02 -04:00
Justin Richer b6304e268a blacklist control uses URI model, closes #423 2014-04-25 21:09:30 -04:00
Justin Richer 761d015bf7 made all placeholder URLs https 2014-04-25 20:59:17 -04:00
Josh Mandel 3b59e7ff48 Make placeholder dynreg URLs use "https://" 2014-04-25 10:17:48 -07:00
Justin Richer 84f1fe631b clean up time display 2014-04-19 08:42:26 -04:00
Justin Richer 376403fa4a account for registration time in approval page, closes #550 2014-04-19 07:28:20 -04:00
Justin Richer 1d2f968bd1 configuration cleanup, closes #568 2014-04-18 22:11:58 -04:00
Justin Richer fcb3ccb0ff fixed subjectType typo, closes #579 2014-04-10 23:03:01 -04:00
kangelov 41e76fd6c9 fixed an incorrect name to one of the fields in the underlying model causing errors once a user logs in. 2014-04-10 22:39:31 -04:00
Justin Richer d59d0d41e9 extracted JPA configuration, closes #569 2014-04-10 22:02:58 -04:00
Justin Richer 78ae6ff322 fix JS errors in scope management page 2014-04-10 21:36:10 -04:00
Justin Richer 292b160918 fixed icons on scope page 2014-04-10 21:16:31 -04:00
Justin Richer c6eea670c8 fixed lazy loading in self-service, closes #571 2014-04-03 22:44:06 -04:00
Justin Richer 0d82710ee1 updated "more information" display 2014-03-19 21:31:06 -04:00
Justin Richer 95a876ffec added second paginator to client page 2014-03-19 21:22:33 -04:00
Justin Richer c620917d53 added paginator to the token page 2014-03-19 21:12:03 -04:00
Justin Richer 17b4f12103 added pagination to client display, closes #439 2014-03-19 21:12:02 -04:00
Justin Richer 5c861c418d changed icon style to white on red background 2014-03-19 08:55:06 -04:00
Justin Richer 1680eaad8c enhanced "more info" panel 2014-03-17 23:21:23 -04:00
Justin Richer 515c481d79 fixed search, added clear button 2014-03-17 23:10:54 -04:00
Justin Richer 0e343b936d added realtime search to clients table 2014-03-17 22:48:40 -04:00
Justin Richer 7b1477c24e added sub indicators to loading sheets 2014-03-16 21:46:57 -04:00
Justin Richer 6f5d689f7f added in preventDefault calls 2014-03-16 20:32:07 -04:00
Justin Richer 70b9ac36b1 skip cache on table refresh 2014-03-16 19:40:25 -04:00
Justin Richer 200b332dc6 some fun in the sheets 2014-03-16 14:23:59 -04:00
Justin Richer 6b94c0418a removed unused font files 2014-03-16 13:55:02 -04:00
Justin Richer 70a81dd1ee even lazier loading
closes #503
2014-03-16 00:23:38 -04:00
Justin Richer 68580dad72 lazy loading for everybody! 2014-03-16 00:18:28 -04:00
Justin Richer a10761b889 lazy load for client list 2014-03-15 23:34:22 -04:00
Justin Richer 5fdfbbd968 removed breadcrumbs tag (not used), moved loading box in jsp 2014-03-15 23:26:07 -04:00
Justin Richer f0ee06b7f3 cleaned up top bar image CSS 2014-03-15 23:24:39 -04:00
Justin Richer 1ef767462e local patch to retina.js to make it play nicer in firefox 2014-03-13 20:05:20 -04:00
Justin Richer 06a86f4830 added support for retina displays on logo, added logo to homepage, changed logo inclusion in top bar, fixed organizational links
closes #552
2014-03-13 19:58:50 -04:00
Justin Richer c9637bcede Consolidated client "more info" views 2014-03-08 22:00:39 +00:00
Justin Richer 9b084db3cb cleaned extraneous "contacts" display 2014-03-08 21:25:57 +00:00
Justin Richer 82f1ba61f3 cleaned out some global variables 2014-03-08 21:20:40 +00:00
Justin Richer ff4c0ab289 fixed some titles 2014-03-08 20:48:13 +00:00
Justin Richer 597870132c got rid of extraneous parentheses 2014-03-08 20:45:25 +00:00
Justin Richer 8203aaaa35 fixed UI for token endpoint auth method 2014-03-06 19:30:27 +00:00
Justin Richer 485e17c893 user profile display improvements 2014-03-02 01:12:47 +00:00
Justin Richer f8e82037fe client display improvements 2014-03-02 01:03:15 +00:00
Justin Richer 5da3e85f4f added refresh token display, closes #192 2014-03-01 11:05:47 +00:00
Justin Richer 028feeaab4 added full token value display, scope display, and expiration display to token ui 2014-03-01 11:05:47 +00:00
Justin Richer 9d981d034e added description hover to scopes 2014-03-01 11:05:46 +00:00
Justin Richer c9bea0f180 access token display and delete works 2014-03-01 11:05:46 +00:00
Justin Richer 0137f182ff Start of token management UI (runs) 2014-03-01 11:05:46 +00:00
Justin Richer b989af0da9 Empty lists now display placeholders when empty. closes #502 2014-03-01 11:05:46 +00:00
Justin Richer f559673090 hide client secret until clicked, closes #517 2014-02-18 23:35:59 -05:00
Justin Richer 15f4b0abd2 fix syntax for on click 2014-02-18 23:35:59 -05:00
Justin Richer b9d684fe1a client id and (sometimes) secret shown on save, addresses #517 2014-02-18 23:35:58 -05:00
Justin Richer d12751a5b6 move modal definition to management page 2014-02-18 22:21:05 -05:00
Justin Richer 8736c24310 top bar now reacts to pagename variable, login page doesn't show top bar contents anymore, closes #371 2014-02-18 22:20:30 -05:00
Justin Richer 478463bd5a remote NYI tags from client template
closes #515, #419
2014-02-16 22:37:34 -05:00
Justin Richer dd391ebf3c Display contacts, popup for image, cleanup of more info 2014-02-16 21:58:16 -05:00
Justin Richer bf6e6b64c3 more approval page enhancements 2014-02-16 18:31:38 -05:00
Justin Richer 1615dd88cc Upgrade bootstrap to 2.3.2 2014-02-16 18:26:44 -05:00
Justin Richer dab52ca8a0 enhancements to approval page 2014-02-16 18:25:05 -05:00
Justin Richer 896e49f8e8 drop temporary tables on upgrade script, closes #536 2014-02-16 00:58:37 -05:00
Justin Richer 59b1373460 oops. missed a couple things. this should actually do it for us now. addresses #490 2014-01-21 21:02:53 -05:00
Justin Richer df589b39df added "OPTIONS" option to /token filter with no auth, addresses #527 2014-01-21 20:54:01 -05:00
Justin Richer ed4537b4f8 switched to popover based display, closes #490 2014-01-20 21:56:10 -05:00
Justin Richer 91ecf62cff tooltip-based claims display 2014-01-20 21:51:12 -05:00
Justin Richer 8518c6f907 slightly better displays for claim information 2014-01-20 21:17:48 -05:00
Justin Richer 19dbe92d4e initial support for displaying claim values for requested scopes 2014-01-20 20:56:04 -05:00
Justin Richer 3b52ce8201 happy new year! 2014-01-20 12:38:42 -05:00
Justin Richer dd8b17c67d added UNIQUE constraint to client_id 2014-01-20 11:31:09 -05:00
Justin Richer ea1f52cdf9 updated syntax of default values to allow file to run inside HSQLDB GUI (it ran fine on the back end for some reason), addresses #545 2014-01-20 11:29:46 -05:00
Justin Richer 29b1cb4202 fixed variable name on approved sites page, addresses #518 (again) 2013-12-02 11:56:02 -05:00
Justin Richer 3410d2c6ad added separate filter for authorization endpoint 2013-11-27 11:24:20 -05:00
Justin Richer ca5288e182 grant table displays correct scope list, addresses #518 2013-11-27 10:41:19 -05:00
Justin Richer 3b37294f76 wired in custom request validator 2013-11-25 13:44:06 -05:00
Justin Richer 59da1960eb added token_endpoint_auth_signing_alg, addresses #511
affects #455
2013-09-26 11:11:09 -04:00
Justin Richer 0691c98183 added database upgrade files, addresses #455 2013-09-26 10:28:16 -04:00
Justin Richer 8a5a16f374 refactored project into four modules:
Common
 Client
 Server Library
 Server Webapp

addresses #367
2013-09-23 17:19:09 -04:00