github
/
OpenID-Connect-Java-Spring-Server
mirror of https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
2,696 Commits
17 Branches
69 Tags
78 MiB
Commit Graph

2696 Commits (e135d67655d86640de49a6a5ab7a176097bc20e2)

Author SHA1 Message Date
Harry Smith e135d67655
Merge pull request #5 from gresham-computing/sanitseUserName 
Sanitse user name
 2020-03-25 13:37:39 +00:00
Harry Smith 7f75f4d2a6 DWN-31921 : bump open id connect to next version 2020-03-25 13:34:04 +00:00
Harry Smith 2c8c545556 DWN-31929 : add further XSS attacks to test 2020-02-17 13:55:03 +00:00
Harry Smith acaa64b4d5 DWN-31929 : move whitelist to class level 2020-02-17 12:51:17 +00:00
Harry Smith dd92d8473e DWN-31929 : updated dependencies and made method void 2020-02-17 10:19:19 +00:00
Harry Smith 28e69c377f DWN-31929 : mitigate open id common XSS vulnerability 2020-02-17 08:36:39 +00:00
Harry Smith d451075fb3
Merge pull request #4 from gresham-computing/nexusIqUpgrades 
Nexus iq upgrades
 2019-12-04 09:04:31 +00:00
Harry Smith a30b999ea7 No Jira : alter building mechanism to be independent on Jenkins build numbers 2019-12-04 08:57:08 +00:00
Harry Smith df84942311 DWN-30574 : upgrade nimbus-jose-jwt to 7.9 2019-10-29 07:52:48 +00:00
Harry Smith e91a153f49 DWN-30463 : update spring security bom 2019-10-25 10:53:52 +01:00
Harry Smith 18c7993e75 DWN-30296 : upgrade jackson to 2.10.0 2019-10-25 10:53:19 +01:00
Dominic Murch 976d439053
Merge pull request #3 from gresham-computing/spring-oauth-update 
DWN-27799 - update spring-security-oauth2 for CVE-2019-3778
 2019-03-19 10:04:22 +00:00
Carling Knight a628162dca Appends our changes to the CHANGELOG 2019-03-14 11:49:24 +00:00
Dominic Murch 3aa9cb90d3 DWN-27799 - update spring-security-oauth2 for CVE-2019-3778 2019-03-06 09:45:36 +00:00
Carling Knight 12f91b1901
Merge pull request #2 from gresham-computing/client-secret-security 
DWN-27040: Changes when the client secret is given to the UI
 2018-12-14 10:37:35 +00:00
Carling Knight 2008404afd DWN-27040: Bit of refactoring, Protected Resources now protected 2018-12-05 14:36:38 +00:00
Carling Knight 5abebb7c36 DWN-27040: Adds the same secret key limiting to client registration 
Also removes the client secrets from the client listing
 2018-12-04 15:33:50 +00:00
Carling Knight c12cb18197 DWN-27040: Changes when the client secret is given to the UI 2018-12-04 12:56:29 +00:00
Carling Knight 0ae12c2e5d DWN-25861: Manually specifies the scope column name 2018-11-28 16:20:16 +00:00
Gaurav Katiyar 028972c359 DWN-26566: Added password encoded to the client entity service and changed the Introspection token service to allow parsing of client authorities for api level access 2018-11-14 09:54:41 +00:00
Carling Knight b7b2c2d817 DWN-25303: Bumps a couple versions 2018-11-13 08:03:53 +00:00
Gaurav Katiyar b13874b5db DWN-26583: Upgraded spring oauth to version 2.1.3 for security 2018-11-01 11:43:07 +00:00
Gaurav Katiyar 34d1425fc5 Jenkinsfile and maven build fixes 2018-09-26 13:51:28 +01:00
Gaurav Katiyar 6e60beb6c3 Jenkinsfile fix for repo address 2018-09-26 12:19:01 +01:00
Gaurav Katiyar e6b816efc8 Created internal release for MitreID Connect 2018-09-26 12:11:08 +01:00
Gaurav Katiyar 6ea19c724a Modified Jenkins file 2018-05-30 15:24:51 +01:00
Gaurav Katiyar 65fbca8870 Modified Jenkins file 2018-05-30 14:29:14 +01:00
Gaurav Katiyar 2393a4d252 Modified Jenkins file 2018-05-30 13:15:38 +01:00
Gaurav Katiyar 7cab117e96 Modified Jenkins file 2018-05-30 13:09:39 +01:00
Gaurav Katiyar 98021f411a Modified Jenkins file 2018-05-30 12:51:38 +01:00
Gaurav Katiyar 67f584fa08 Added jenkins file 2018-05-30 12:41:53 +01:00
Gaurav Katiyar d9d48cbea2 Upgraded libraries for mitigating known vulnerabilities 2018-05-30 11:36:50 +01:00
Gaurav Katiyar 1cc3b8f287 Merge remote-tracking branch 'upstream/1.3.x' into 1.3.x 2018-05-28 11:51:20 +01:00
Justin Richer a5a16f27c7
Merge pull request #1353 from col-panic/master 
Minor typo in en/messages.json (Registrered -> Registered)
 2018-02-08 16:49:44 -05:00
Justin Richer 4dd907ea16
Merge pull request #1357 from praseodym/spring-security-4.2.4 
Upgrade to Spring Security 4.2.4
 2018-02-08 15:34:30 -05:00
Mark Janssen d119559d4d Upgrade to Spring Security 4.2.4 
https://spring.io/blog/2018/01/30/cve-2018-1199-spring-security-5-0-1-4-2-4-4-1-5-released
 2018-02-08 21:03:31 +01:00
Justin Richer b804f22bc8 [maven-release-plugin] prepare for next development iteration 2018-02-07 09:14:16 -05:00
Justin Richer f72e6b3e08 [maven-release-plugin] prepare release mitreid-connect-1.3.2 2018-02-07 09:14:10 -05:00
Justin Richer 1feb0958bd prepare for release 2018-02-07 09:09:07 -05:00
Justin Richer 6497af40e8 removed erroneous not yet implemented tag from client page 2018-02-07 09:05:43 -05:00
Justin Richer 7dc309c5af
Update CHANGELOG.md 2018-02-07 09:03:09 -05:00
Justin Richer 7f956a5854
Merge pull request #1355 from ocadotechnology/jwt_fix 
Throwing exception on all other JWT types than SignedJWT
 2018-02-07 08:52:59 -05:00
Tomasz Borowiec 37fba622b9 Throwing exception on all other JWT types than SignedJWT 2018-02-07 11:00:28 +01:00
Tomasz Borowiec c38b9d7a42 added PlainJWT and EncryptedJWT support + tests 2018-02-07 11:00:15 +01:00
Marco Descher 36ec1b82e6
Minor type (Registrered -> Registered) 2018-02-06 08:41:14 +01:00
Justin Richer fcb119ff6a
Merge pull request #1270 from bodewig/custom_claim_friendly_token_enhancer 
add hook for custom JWT claims to ConnectTokenEnhancer
 2018-02-05 16:01:09 -05:00
Justin Richer 8fb9adefc1
Merge pull request #1342 from bodewig/custom_claims_in_id_token 
add hook for custom JWT claims to DefaultOIDCTokenService
 2018-02-05 15:43:22 -05:00
Justin Richer 0ce55d079a
Merge pull request #1352 from blm126/upgrade-nimbus 
Upgrade nimbus-jose-jwt to 5.4.
 2018-02-05 15:26:50 -05:00
Brady Mulhollem f7da25fbe8 Upgrade nimbus-jose-jwt to 5.4. 2018-02-05 13:28:48 -05:00
Justin Richer 1c7b9d5b44
Merge pull request #1346 from praseodym/fix-admin-interface-without-trailing-slash 
Fix interface for issuer URI without trailing slash
 2018-01-22 05:54:25 -05:00