4f407a3a11
added rsa1024 key to keystore
2012-03-28 18:02:03 -04:00
c84c751991
client refactoring, and javadocing
2012-03-26 14:18:54 -04:00
b8c953281e
integration changes to client
2012-03-23 17:01:43 -04:00
1a1ae4c5b5
Removed Replacer plugin
2012-03-23 15:55:30 -04:00
c50f968748
Merged to use idToken.setNonce().
2012-03-23 11:11:38 -04:00
268b82e31d
Merge branch 'Branch_master3-23-2012'
2012-03-23 11:09:27 -04:00
8b10b83516
Added setNonce to JwtClaims.
2012-03-23 11:08:49 -04:00
34f24deb3e
Merge branch 'mitreaccounts'
2012-03-23 10:52:36 -04:00
4a15e51e12
pass through nonce
2012-03-23 10:52:04 -04:00
6c3552ebfa
changed mitre account names
2012-03-23 10:37:58 -04:00
02d0471acf
scope wasn't quite right, needed a space
2012-03-22 17:55:59 -04:00
b4836a0302
mods to auth filter including config comments, http socket time out...
2012-03-22 17:49:30 -04:00
27fe3c9eca
Implemented signing. Works, but validation does not fail if you remove the signature.
2012-03-22 14:49:02 -04:00
68c8d1a9d2
Changed parameter for check id endpoint to access_token instead of auth_token
2012-03-22 14:19:45 -04:00
826be5a1a1
changed parameter name to match spec change
2012-03-22 14:10:50 -04:00
5fe036878a
fixed view for idtoken in checkid endpoint
2012-03-22 14:09:25 -04:00
c51bb72fe5
merged keystore changes
2012-03-22 13:50:47 -04:00
6c01134095
JWK display support for key maps, still no key ids
2012-03-22 13:48:16 -04:00
776748f908
Merge branch '3-22-2012'
2012-03-22 13:43:59 -04:00
ae9b5e792a
Added a ConfigurationPropertiesBean.java to hold configuration properties. Fixed up CheckIDEndpoint.java a bit - it works, but is outputting the wrong thing.
2012-03-22 13:43:30 -04:00
d5e7000365
disabled custom namespace parsers for keystores
2012-03-22 13:39:51 -04:00
524a8e153e
signers turned into a map
2012-03-22 13:37:21 -04:00
3f2631367f
added comments on configuration of client
2012-03-22 12:16:24 -04:00
664dd1df46
JWT claims can now have nulls in them without barfing
2012-03-22 11:46:48 -04:00
c59d3fe963
it spits out JWTs! and id tokens! JWT still needs to handle nulls
2012-03-21 17:59:48 -04:00
ebe72412fe
Authorization Grant flow works up to serializing the returned Access Token. Justin is investigating serialization problems.
2012-03-21 16:44:16 -04:00
d94eb338ee
Auth code flow works through user approval page. Current problem is that it doesn't seem to be matching up auth codes correctly (I keep getting "invalid code" error). But, it looks like it's going through our custom token granter so that is good.
2012-03-20 15:07:18 -04:00
626779b58e
refactored client package name to something sensible
2012-03-16 17:07:49 -04:00
8263ce0dd5
added external class to persistence context
2012-03-16 17:01:24 -04:00
b463cabc69
fixed configuration, moved sql file
2012-03-16 16:46:46 -04:00
2f29cc52b2
Merge branch 'client_refactor'
2012-03-16 16:28:51 -04:00
409a5295f6
Commented out properties on ClientDetailsEntity.java that were not annotated. TODO: uncomment and annotate with JPA annotations.
...
Added resource_ids.sql, table definition for resource ids. This needs to be added to everyone's databases in order to run the Authorization Server.
Testing & working on AuthZ server. @ needing to set up user-approval page.
2012-03-16 16:22:02 -04:00
baf7c1c166
fixed dependencies and project configurations
2012-03-16 16:18:33 -04:00
e6e7504213
added files and shuffled things to new packages
2012-03-16 15:46:23 -04:00
a0cdd8bf2f
moved server to new package location
2012-03-16 15:01:53 -04:00
13eeb433a9
Accidentally removed "spring project nature". It is put back now.
2012-03-15 12:23:24 -04:00
0da11be4f9
This should be a working version with the AuthZ server deployed. I cleaned up a bunch of files that were generating compiler warnings. Changed use of GrantedAuthorithyImpl to SimpleGrantedAuthority, as GrantedAuthorityImpl is deprecated and SGA is its replacement.
...
Added stub for public OAuth2AccessToken readAccessToken(String accessToken) to DefaultOAuth2ProviderTokenService.java. This method IS in the superclass and should be implemented, but was not before and for some reason the compiler only started complaining about it now, on my machine.
Moved @Autowired for ClientDetailsEntityService in OAuthConfirmationController.java from setter method to field declaration, as it was failing to deploy on my machine in the other position. If others have issues with this change please let me know.
2012-03-15 12:13:50 -04:00
9be02af93c
Other patch was bad - was on wrong version of original file, had wrong line numbers. This is the correct patch to use.
2012-03-14 15:42:46 -04:00
0e0ef578e5
Merge branch 'master' of github.com:jricher/OpenID-Connect-Java-Spring-Server
2012-03-13 16:42:49 -04:00
daf6b53da2
Added patch to fix authorization server config
2012-03-13 16:42:10 -04:00
c23d31bc54
Initial commit of admin client management section
2012-03-13 16:28:13 -04:00
c015329e52
Altering resig js tmpl library. JSP has a hate passion for it.
2012-03-13 16:27:21 -04:00
f3e53386f9
Updating approval page to use oauth2 libs
2012-03-12 12:50:13 -04:00
663d7cce9f
Merge branch 'march9'
2012-03-12 11:57:04 -04:00
c68762877d
Needs more testing, but this doesn't break anything existing and I *think* the SECOAUTH AuthZ server is up now. /oauth/authorize IS mapped, but I am getting a "GET not allowed" (POST looks like it is) when I try to access the authorization endpoint with my browser.
2012-03-12 11:54:19 -04:00
3c820edb9c
/oauth/authorize is MAPPED. Failing when trying to access /openidconnect/auth url with java.lang.IllegalStateException: No WebApplicationContext found: no ContextLoaderListener registered?
...
org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:251)
2012-03-09 16:06:27 -05:00
ba376dfd61
Merge remote branch 'origin/master'
2012-03-08 15:53:57 -05:00
efefdff915
bare-bones for the access approval page and mockup
2012-03-08 15:53:41 -05:00
c925a18a04
copyright is now in it's own tag file
2012-03-08 15:52:52 -05:00
539778e2c2
pulled the id_token from the Token Endpoint response, and msg the OpenIdConnectAuthenticationToken constructor w/; with other code tightening in the OpenIdConnectAuthenticationToken and OpenIdConnectAuthenticationProvider.
2012-03-08 15:50:46 -05:00
nemonik