github
/
OpenID-Connect-Java-Spring-Server
mirror of https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
2,533 Commits
17 Branches
69 Tags
78 MiB
Commit Graph

366 Commits (db50a88fe5806b8dd057a49a331e811079e2db7c)

Author SHA1 Message Date
Stephen Moore 698fe55b85 IntrospectingTokenService now takes parameters (cacheTokens, cacheNonExpiringTokens, defaultExpireTime, forceCacheExpireTime) to change the behavior or even disable the caching of responses from the IntrospectionEndpoint. 2015-06-04 16:33:37 -04:00
Mark Janssen 9e74e40453 Use diamond syntax instead of explicit types 2015-06-03 10:24:48 -04:00
Mark Janssen 13f5e4f8a6 Collapse identical catch branches 2015-06-03 10:24:48 -04:00
Mark Janssen 6dc2b2cb5e Various small improvements/bugfixes 2015-06-03 10:24:41 -04:00
William Kim 54fbf0d0ac Added null check for expiration during introspection. Making assumption that null exp means tokens dont expire. 2015-06-03 09:57:22 -04:00
Justin Richer d1e8529a7b expose ID Token and UserInfo to the AuthoritiesProvider and AuthoritiesMapper, both extensible 
closes #699
closes #761
 2015-06-01 21:11:19 -04:00
Mark Janssen effe955953 Fix blacklist/whitelist for DynamicRegistrationClientConfigurationService 
ClientConfigurationService#getClientConfiguration has ServerConfiguration as parameter, not String
 2015-05-28 17:05:55 -04:00
Justin Richer caf85b990d Revert "added option to send skip sending nonce if desired, closes #704, closes #683," 
This reverts commit bbeaeb06e3.

Conflicts:
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/OIDCAuthenticationFilter.java
	openid-connect-common/src/main/java/org/mitre/openid/connect/config/ServerConfiguration.java
 2015-05-28 16:44:26 -04:00
Justin Richer d32118d017 Revert "added unit tests for nonce-less url builders (exception cases)" 
This reverts commit ada1b0d24e.

Conflicts:
	openid-connect-client/src/test/java/org/mitre/openid/connect/client/service/impl/TestPlainAuthRequestUrlBuilder.java
 2015-05-28 16:41:24 -04:00
Justin Richer 0d6775dfa8 made auth request url builder handle multiple keys 2015-05-22 13:04:21 -04:00
Justin Richer da72ce02ad added token endpoint options to client filter, closes #803 2015-05-13 16:53:35 -04:00
Justin Richer 617d485478 updated all references to media types to use constants instead of literals, closes #767 2015-03-11 12:06:38 -04:00
Justin Richer c09b63c69f made logger declarations consistent across project, closes #780 2015-03-08 21:56:33 -04:00
Justin Richer 7a1480bb07 moved and consolidated json utilities 2015-02-26 16:20:01 -05:00
Justin Richer b376bc6059 removed some vestigial service/repository calls, closes #513 2015-02-17 16:22:40 -05:00
Justin Richer 05f03f7c90 yet more year updates 2015-02-17 13:09:45 -05:00
Justin Richer 994ce6c743 consistently named JOSE-based classes, closes #529 2015-02-17 12:11:58 -05:00
Justin Richer 685960358c formatting cleanup 2015-02-17 11:08:46 -05:00
Justin Richer e2349984b8 happy new year 2015! 2015-02-17 10:24:08 -05:00
Justin Richer 70779a69ea reorganized dependency management section, managed cross-module dependencies, updated Nimbus JWT library 2015-02-16 14:45:13 -05:00
Justin Richer 587d4b2db6 further pom file cleanup 2015-02-16 14:24:48 -05:00
Justin Richer a9544059cf flagged spurious serialization warnings from the libraries (we're not actually serializing things here) 2015-02-16 12:31:43 -05:00
Justin Richer 77c06e9557 replaced deprecated http components calls, closes #744 2015-02-16 12:31:16 -05:00
Justin Richer 3708b531df moved requirement to different component, closes #759 
also cleaned up comments in filter
 2015-02-16 11:16:24 -05:00
Justin Richer ada1b0d24e added unit tests for nonce-less url builders (exception cases) 2014-12-19 20:55:40 -05:00
Justin Richer bbeaeb06e3 added option to send skip sending nonce if desired, closes #704, closes #683, 2014-12-18 23:22:59 -05:00
William Kim 9aa45f8efb Made the constructor public for OIDCAuthentication filter. 2014-12-18 20:55:15 -05:00
Justin Richer 69c19d35fa moved test into test package 2014-11-13 22:17:45 -10:00
Justin Richer 775b77b367 updated date format of token introspection response, closes #719 2014-11-13 11:08:20 -10:00
Justin Richer e6d10b67a4 update to Spring 4 and other related libraries 2014-11-10 18:29:54 -10:00
Justin Richer bc9942e929 relaxed issuer constraints in client, closes #638 2014-11-01 23:46:57 +00:00
Justin Richer 3f5e2acfeb if no alg is explicitly set, use the default from the signer 2014-10-23 22:09:02 -04:00
David Steinkopff 659880b4dc fix broken dependency declaration, that follow up to org.springframework.beans.NotWritablePropertyException: Invalid property 'jwkKeyList' of bean class exception 2014-10-14 20:30:50 -04:00
Justin Richer db052f11ca Moved development branch to 1.2 2014-10-07 21:02:07 -04:00
Justin Richer 134909a82f import cleanup 2014-10-07 19:40:38 -04:00
Justin Richer c683131f12 externalized view name strings and tied them to view beans 2014-09-28 22:25:39 -04:00
Justin Richer a704277652 Removed exceptions from @PostConstruct methods, closes #663 2014-09-28 21:12:46 -04:00
Justin Richer 6f2f807b0b [maven-release-plugin] prepare for next development iteration 2014-08-05 21:54:51 -04:00
Justin Richer 93ae1516a5 [maven-release-plugin] prepare release mitreid-connect-1.1.9 2014-08-05 21:54:47 -04:00
Justin Richer b0cce924a2 JsonFileRegisteredClientService now writes out entire client registration to disk, closes #651 2014-08-01 00:01:56 -04:00
Brenden Keyes 863dbd17b8 Added setClientConfigurationService method. 2014-07-31 22:26:04 -04:00
Justin Richer 325a200f16 added configurable support for different token presentation methods in user info fetcher, closes #632 2014-07-20 09:27:02 -07:00
Justin Richer c7a6c4fafe added support for unsigned ID tokens in client, use client configuration to turn this on, closes #633 2014-07-16 22:18:07 -04:00
Kristina Sahlmann 306c8cff17 update nimbus-jose-jwt dependency to 2.26 and fix the affected files 2014-07-02 11:37:42 -04:00
Justin Richer adf477c64e [maven-release-plugin] prepare for next development iteration 2014-06-18 18:27:27 -04:00
Justin Richer 8d97ed61ec [maven-release-plugin] prepare release mitreid-connect-1.1.8 2014-06-18 18:27:25 -04:00
Justin Richer 9f9b49fc63 refactored validator checks to cascade better, throw an authentication exception if we can't find a validator for the ID Token 2014-06-18 18:17:14 -04:00
Christopher Elkins 1dc204f975 Validate HMAC-signed ID tokens 2014-06-18 18:10:33 -04:00
Justin Richer 85acfa90db [maven-release-plugin] prepare for next development iteration 2014-06-04 14:51:32 -04:00
Justin Richer d5e4cb45a2 [maven-release-plugin] prepare release mitreid-connect-1.1.7 2014-06-04 14:51:29 -04:00
Justin Richer be98b9cd0b [maven-release-plugin] prepare for next development iteration 2014-05-27 14:00:40 -04:00
Justin Richer 8320f0eefe [maven-release-plugin] prepare release mitreid-connect-1.1.6 2014-05-27 14:00:37 -04:00
Justin Richer 0c8cacd59a added missing copyright headers 2014-05-27 13:46:47 -04:00
Justin Richer 525f3aa2a8 Cleaned up indentation, whitespace, and imports. 2014-05-27 13:02:49 -04:00
Justin Richer 27e68f1d56 added service to optionally check "target_uri" links, closes #547 2014-05-23 16:50:18 -04:00
Justin Richer e4d5f4a540 added system wide cache for all symmetric validators, closes # 557 2014-05-23 16:16:06 -04:00
Justin Richer ca333d256b Appropriately catch runtime exceptions in all guava caches, closes #603 2014-05-23 15:00:40 -04:00
Justin Richer 880014176f [maven-release-plugin] prepare for next development iteration 2014-05-13 18:23:11 -04:00
Justin Richer ca8a003e3d [maven-release-plugin] prepare release mitreid-connect-1.1.5 2014-05-13 18:23:08 -04:00
Justin Richer 37af569890 cleaned up unintentional pom version override 2014-04-25 20:59:35 -04:00
Justin Richer b8129bf60d [maven-release-plugin] prepare for next development iteration 2014-04-21 19:19:10 -04:00
Justin Richer a9e34ac9bd [maven-release-plugin] prepare release mitreid-connect-1.1.4 2014-04-21 19:19:07 -04:00
Brenden Keyes 90b10d7bad Added Getter/Setter for IntospectionAuthorityGranter. Still defaults to SimpleIntrospectionAuthorityGranter 2014-04-18 23:06:06 -04:00
Justin Richer 79bd7e420c made scope handling consistent for introspection services (now a space-separated string), closes #570 2014-04-03 22:47:28 -04:00
Justin Richer 97cd00e06c [maven-release-plugin] prepare for next development iteration 2014-03-19 21:40:21 -04:00
Justin Richer 23c7cf6996 [maven-release-plugin] prepare release mitreid-connect-1.1.3 2014-03-19 21:40:18 -04:00
Justin Richer 762fe11ab1 Update README.md 
removed outdated configuration information and pointed to wiki, closes #561
 2014-03-17 16:41:28 -04:00
Justin Richer ad5ffb64e8 [maven-release-plugin] prepare for next development iteration 2014-03-08 11:17:40 +00:00
Justin Richer 1635cf957d [maven-release-plugin] prepare release mitreid-connect-1.1.2 2014-03-08 11:17:35 +00:00
Justin Richer 53cc7ef447 Fixed audience claim on client auth assertion 2014-03-06 19:45:05 +00:00
Justin Richer 3629ff5e2f added signed authentication assertion support to client, closes #558 2014-03-06 16:44:31 +00:00
Justin Richer 9395c3802d [maven-release-plugin] prepare for next development iteration 2014-02-10 15:28:14 -05:00
Justin Richer 4f8311962a [maven-release-plugin] prepare release mitreid-connect-1.1.1 2014-02-10 15:28:11 -05:00
Justin Richer 1289d4737a Changed references of DefaultHttpClient to SystemDefaultHttpClient to inherit system proxy settings, should address #548 2014-02-04 10:51:14 -05:00
Justin Richer d946cfb4a7 added support for target uri parameter in third party issuer (or other custom issuer that sets the right flag on return), closes #539 2014-01-20 17:07:35 -05:00
Justin Richer 3b52ce8201 happy new year! 2014-01-20 12:38:42 -05:00
Justin Richer ebbc7209aa automated code formatting and cleanup 2013-12-03 14:19:34 -05:00
Justin Richer e1e7f7a579 [maven-release-plugin] prepare for next development iteration 2013-12-02 12:18:11 -05:00
Justin Richer 42fe973f7b [maven-release-plugin] prepare release mitreid-connect-1.1.0 2013-12-02 12:18:08 -05:00
Justin Richer 49a7db6c6e Sanity check on client template object for dynamic registration client-side service 2013-11-27 11:37:07 -05:00
Justin Richer 27f391ef01 Fixed compilation errors for SECOAUTH milestone updates 2013-11-25 09:31:50 -05:00
Justin Richer c896bef2e8 Created hybrid issuer service, addresses #509 2013-09-24 22:02:02 -04:00
Justin Richer 0ff7cb75a0 made userinfo fetching optional, addresses #510 2013-09-24 22:01:56 -04:00
Justin Richer 8fc6de0a6d hybrid service instantiates inner members, addresses #508 2013-09-24 22:01:48 -04:00
Justin Richer 8a5a16f374 refactored project into four modules: 
Common
 Client
 Server Library
 Server Webapp

addresses #367
 2013-09-23 17:19:09 -04:00
Justin Richer b2b915b4ae explcitly set alg and enc instead of trying to guess 2013-09-16 17:27:05 -04:00
Justin Richer fb2f2f9792 spelling, property access, and cleanup 2013-09-16 17:27:04 -04:00
Justin Richer 2ca713c7f2 added encrypted request object service to client, addresses #475 2013-09-16 17:27:04 -04:00
Justin Richer 1d0560edbc refactored some json utils to their own static class 2013-09-16 17:27:04 -04:00
Justin Richer 6605877a1b added encryption/decryption to cached JWK-URI service 2013-09-16 17:27:04 -04:00
Justin Richer c3b90b9d71 removed old form value from fetcher 2013-09-10 15:06:38 -04:00
Justin Richer ded7c66c78 fixed misleading error message 2013-09-10 13:46:49 -04:00
Justin Richer 6851224e42 fixed token expiration parsing 2013-09-06 15:55:34 -04:00
Justin Richer 94ddc77668 fixed scope parsing on token implementation, too 
Conflicts:

	openid-connect-client/src/main/java/org/mitre/oauth2/introspectingfilter/AuthorizationRequestImpl.java
 2013-09-06 15:55:18 -04:00
Justin Richer a9710899cd removed vestigial client config service 2013-09-06 15:53:24 -04:00
Justin Richer 2201206f0e refactored token introspection packages to support different client credentials at different services 2013-09-06 15:53:24 -04:00
William Kim 2108311d65 Revert "refactored code to use the more generic JWT declaration." 
This reverts commit e0b56bc72a.
 2013-08-26 15:33:08 -04:00
William Kim e0b56bc72a refactored code to use the more generic JWT declaration. 2013-08-26 11:32:46 -04:00
Justin Richer 6a9650d2a7 added configurable support for clients to send extra parameters like display and prompt, addresses #426 2013-08-22 13:52:07 -04:00
Justin Richer 3360117b7b Client library no longer serializes nulls on registration, addresses #478 2013-08-21 10:52:36 -04:00