github
/
OpenID-Connect-Java-Spring-Server
mirror of https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
1,516 Commits
17 Branches
69 Tags
78 MiB
Commit Graph

384 Commits (ef01de168d581ca014d934261fff6f62d7839af4)

Author SHA1 Message Date
William Kim 9f89f84da1 junit test added for signing service. 2013-08-26 14:57:26 -04:00
William Kim c957d59f7c removed the plain verifer. validating a no-signature is simply handled as a special case in validateSignature(). Also, doing some type safety checks. 2013-08-26 14:55:52 -04:00
William Kim 02078ebccb implemented alg:none at the signing service. 2013-08-26 14:21:09 -04:00
William Kim d763a954da placeholder 2013-08-26 11:48:23 -04:00
William Kim e0b56bc72a refactored code to use the more generic JWT declaration. 2013-08-26 11:32:46 -04:00
William Kim 30d7aaa66a PlainSigner and PlainVerifier created for alg:none JWS support. 2013-08-23 14:07:19 -04:00
Justin Richer da915d8b35 explicitly try to initialize the JWK set if it's null by the time the getter is called 2013-08-22 14:08:54 -04:00
Amanda Anganes 0059c7b4cc Use clients preferred algorithm, if any, to sign 2013-08-19 16:33:18 -04:00
Justin Richer a80c19384f added 'use server default' to JOSE options, addresses #462 2013-08-19 15:52:00 -04:00
Justin Richer ba0c3c5d78 id tokens always expire, addresses #416 2013-08-19 12:42:37 -04:00
Justin Richer 21068f57e6 cached jwk services expire after an hour 2013-08-16 12:06:49 -04:00
William Kim 6e2baa3ec4 updated comments for jwe service. 2013-08-08 09:13:54 -04:00
William Kim e1b072c991 Updated nimbusds library version to 2.17.2 and made relevant changes in enc./dec. service and test 2013-08-07 18:07:58 -04:00
William Kim 372675fd2a changed encrypt/decrypt parameter to use JWEObject instead of EncryptedJWT 2013-08-07 18:07:58 -04:00
William Kim f0b77f8614 RSA encryption service tested. 2013-08-07 18:07:58 -04:00
William Kim 3a1c551ff7 implemented symmetric key encryption. 2013-08-07 18:07:58 -04:00
William Kim dfbefe0780 encrypt/decrypt implemented. initial commit for unit testing of jwe service. 2013-08-07 18:07:58 -04:00
William Kim ae6721dd10 jwe service accessor methods and private initializing method done. 2013-08-07 18:07:58 -04:00
William Kim 887338b2d9 jwe service init commit. 2013-08-07 18:07:57 -04:00
Amanda Anganes be97aedbc7 Used Predicates to filter expired tokens and approved sites; 2013-08-06 16:42:49 -04:00
Amanda Anganes b3bb43881d Moved getExpired to service layers 2013-08-06 16:33:27 -04:00
Amanda Anganes eea37cf79c Fixed token expiration bug by removing jsql queries. Instead expired tokens or approved sites are filtered at the repository level 2013-08-06 11:28:13 -04:00
Amanda Anganes 2f711c88a7 Removed nonce service 2013-08-02 10:56:28 -04:00
Amanda Anganes d4fbb4f599 Removed Event class 2013-08-02 10:06:41 -04:00
Justin Richer beaeaa4ccc I can spell "consortium", I promise 2013-07-29 17:40:26 -04:00
Justin Richer b2b6fd6448 further cleanup 2013-07-29 17:00:35 -04:00
Justin Richer 856c0ea0b5 Merge commit '023dd440d4a0e6e59a14c88013837d79a77c74e0' into 1.1-merge 
Conflicts:
	openid-connect-client/pom.xml
	openid-connect-client/src/main/java/org/mitre/oauth2/introspectingfilter/AuthorizationRequestImpl.java
	openid-connect-client/src/main/java/org/mitre/oauth2/introspectingfilter/IntrospectingTokenService.java
	openid-connect-client/src/main/java/org/mitre/oauth2/introspectingfilter/IntrospectionAuthorityGranter.java
	openid-connect-client/src/main/java/org/mitre/oauth2/introspectingfilter/IntrospectionUrlProvider.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/OIDCAuthenticationFilter.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/OIDCAuthenticationProvider.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/keypublisher/ClientKeyPublisher.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/keypublisher/ClientKeyPublisherMapping.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/keypublisher/JwkViewResolver.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/AuthRequestUrlBuilder.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/ClientConfigurationService.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/impl/StaticClientConfigurationService.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/impl/StaticServerConfigurationService.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/impl/StaticSingleIssuerService.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/impl/ThirdPartyIssuerService.java
	openid-connect-client/src/test/java/org/mitre/openid/connect/client/AbstractOIDCAuthenticationFilterTest.java
	openid-connect-common/pom.xml
	openid-connect-common/src/main/java/org/mitre/jose/keystore/JWKSetKeyStore.java
	openid-connect-common/src/main/java/org/mitre/jwt/signer/service/JwtSigningAndValidationService.java
	openid-connect-common/src/main/java/org/mitre/jwt/signer/service/impl/DefaultJwtSigningAndValidationService.java
	openid-connect-common/src/main/java/org/mitre/jwt/signer/service/impl/JWKSetSigningAndValidationServiceCacheService.java
	openid-connect-common/src/main/java/org/mitre/oauth2/model/AuthorizationCodeEntity.java
	openid-connect-common/src/main/java/org/mitre/oauth2/model/ClientDetailsEntity.java
	openid-connect-common/src/main/java/org/mitre/oauth2/model/OAuth2AccessTokenEntity.java
	openid-connect-common/src/main/java/org/mitre/oauth2/model/OAuth2RefreshTokenEntity.java
	openid-connect-common/src/main/java/org/mitre/oauth2/model/SystemScope.java
	openid-connect-common/src/main/java/org/mitre/oauth2/repository/AuthorizationCodeRepository.java
	openid-connect-common/src/main/java/org/mitre/oauth2/repository/OAuth2TokenRepository.java
	openid-connect-common/src/main/java/org/mitre/oauth2/service/OAuth2TokenEntityService.java
	openid-connect-common/src/main/java/org/mitre/openid/connect/config/ConfigurationPropertiesBean.java
	openid-connect-common/src/main/java/org/mitre/openid/connect/config/ServerConfiguration.java
	openid-connect-common/src/main/java/org/mitre/openid/connect/model/ApprovedSite.java
	openid-connect-common/src/main/java/org/mitre/openid/connect/model/BlacklistedSite.java
	openid-connect-common/src/main/java/org/mitre/openid/connect/model/Event.java
	openid-connect-common/src/main/java/org/mitre/openid/connect/model/OIDCAuthenticationToken.java
	openid-connect-common/src/main/java/org/mitre/openid/connect/model/WhitelistedSite.java
	openid-connect-common/src/main/java/org/mitre/util/jpa/JpaUtil.java
	openid-connect-server/.gitignore
	openid-connect-server/pom.xml
	openid-connect-server/src/main/java/org/mitre/oauth2/repository/impl/JpaAuthorizationCodeRepository.java
	openid-connect-server/src/main/java/org/mitre/oauth2/service/impl/DefaultOAuth2AuthorizationCodeService.java
	openid-connect-server/src/main/java/org/mitre/oauth2/service/impl/DefaultOAuth2ClientDetailsEntityService.java
	openid-connect-server/src/main/java/org/mitre/oauth2/service/impl/DefaultOAuth2ProviderTokenService.java
	openid-connect-server/src/main/java/org/mitre/oauth2/service/impl/DefaultSystemScopeService.java
	openid-connect-server/src/main/java/org/mitre/oauth2/token/ChainedTokenGranter.java
	openid-connect-server/src/main/java/org/mitre/oauth2/token/JwtAssertionTokenGranter.java
	openid-connect-server/src/main/java/org/mitre/oauth2/view/TokenIntrospectionView.java
	openid-connect-server/src/main/java/org/mitre/oauth2/web/IntrospectionEndpoint.java
	openid-connect-server/src/main/java/org/mitre/oauth2/web/OAuthConfirmationController.java
	openid-connect-server/src/main/java/org/mitre/oauth2/web/RevocationEndpoint.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/ConnectOAuth2RequestFactory.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/assertion/JwtBearerAuthenticationProvider.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/assertion/JwtBearerClientAssertionTokenEndpointFilter.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/exception/InvalidJwtSignatureException.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/exception/UnknownUserInfoSchemaException.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/exception/UserNotFoundException.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/repository/impl/JpaApprovedSiteRepository.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/repository/impl/JpaUserInfoRepository.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/DefaultApprovedSiteService.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/DefaultNonceService.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/DefaultStatsService.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/DefaultUserInfoUserDetailsService.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/DefaultWhitelistedSiteService.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/token/ConnectTokenEnhancer.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/token/TofuUserApprovalHandler.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/view/AbstractClientEntityView.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/view/ClientInformationResponseView.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/view/ExceptionAsJSONView.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/view/JsonEntityView.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/view/JsonErrorView.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/view/POCOUserInfoView.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/view/StatsSummary.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/view/UserInfoView.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/ApprovedSiteAPI.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/BlacklistAPI.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/ClientAPI.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/ClientDynamicRegistrationEndpoint.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/ManagerController.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/RequestObjectAuthorizationEndpoint.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/StatsAPI.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/UserInfoEndpoint.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/UserInfoInterceptor.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/WhitelistAPI.java
	openid-connect-server/src/main/webapp/WEB-INF/tags/aboutContent.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/breadcrumbs.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/contactContent.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/copyright.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/header.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/landingPageAbout.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/landingPageContact.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/landingPageStats.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/landingPageWelcome.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/sidebar.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/statsContent.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/topbar.tag
	openid-connect-server/src/main/webapp/WEB-INF/views/about.jsp
	openid-connect-server/src/main/webapp/WEB-INF/views/approve.jsp
	openid-connect-server/src/main/webapp/WEB-INF/views/contact.jsp
	openid-connect-server/src/main/webapp/WEB-INF/views/exception/usernotfound.jsp
	openid-connect-server/src/main/webapp/WEB-INF/views/login.jsp
	openid-connect-server/src/main/webapp/WEB-INF/views/manage.jsp
	openid-connect-server/src/main/webapp/WEB-INF/views/stats.jsp
	pom.xml
 2013-07-29 16:21:20 -04:00
Justin Richer 023dd440d4 [maven-release-plugin] prepare for next development iteration 2013-07-29 11:30:08 -04:00
Justin Richer 5e8f93cf15 [maven-release-plugin] prepare release mitreid-connect-1.0.6 2013-07-29 11:30:04 -04:00
Justin Richer e658ffd7fc format/cleanup and copyright 2013-07-29 11:28:51 -04:00
Amanda Anganes 906db0ac86 Opened token api access to all users; restricted to only show currently-logged-in-users tokens 2013-07-29 09:18:08 -04:00
Justin Richer fb448a246a converted test data to map, use new serializer 2013-07-26 12:55:22 -04:00
Justin Richer 8edd6da136 added serializer for non-heirarchical URIs 2013-07-26 12:55:03 -04:00
Justin Richer 5893d8f8f8 fixed up parsing regular expression 2013-07-26 12:54:09 -04:00
William Kim f565688e59 changed name issuer->normalized. the result of normalization is not necessarily the issuer. 2013-07-25 18:12:02 -04:00
William Kim d80aaced9a reorganized test data and test methods. 2013-07-25 17:56:33 -04:00
William Kim 809a243b64 tests for webfinger url normalization. 2013-07-25 15:00:10 -04:00
William Kim eaa7298ef1 init commit for Webfinger normilizer utility class. 2013-07-25 12:15:50 -04:00
Justin Richer 20871852c0 updated dependencies for secoauth 1.1 2013-07-24 09:38:47 -04:00
Amanda Anganes b397f0ae15 First go at adding token API; needs to be tested 2013-07-24 09:14:46 -04:00
Amanda Anganes 88db457fc4 Removed .springBeans from tracking; removed initializingbean in favor of @PostConstruct 2013-07-18 09:34:52 -04:00
Justin Richer a4a18fd54c externalized introspection URL from client's introspecting token service, addresses #435 
added service to parses token as JWT and pulls out issuer to find server
added introspection url to serverconfig object
added introspection parsing (and parse checks) to dynamic server config object
 2013-07-16 17:00:40 -04:00
William Kim aad432c5d7 replaced stracktrace-printing with logger messages. removed some unused imports. 2013-07-16 13:52:32 -04:00
Amanda Anganes 15aea61fbe Applied code cleanup 2013-07-12 16:58:41 -04:00
William Kim e00d696c60 deleted auto-generated TODO. 2013-07-12 11:40:11 -04:00
William Kim e9c246808f only our entity version may be stored in our storage layer. removed TODO. 2013-07-12 11:40:11 -04:00
Justin Richer 0d8c2442d2 [maven-release-plugin] prepare for next development iteration 2013-07-12 10:09:41 -04:00
Justin Richer 9bf5f70957 [maven-release-plugin] prepare release mitreid-connect-1.0.5 2013-07-12 10:09:38 -04:00
William Kim 77be0d0ea8 implemented getExpiresIn() for oauth access token entities. 2013-07-11 15:22:35 -04:00
Amanda Anganes 2d3f43e3b8 Added task scheduling for deleting expired tokens and approved sites. Configuration is all done in application-context.xml so that it is easy to configure 2013-07-10 14:34:37 -04:00
Justin Richer 936f581a0b [maven-release-plugin] prepare for next development iteration 2013-06-28 16:00:52 -04:00
Justin Richer 27edec1a56 [maven-release-plugin] prepare release mitreid-connect-1.0.4 2013-06-28 16:00:46 -04:00
William Kim a668fb964d changed String comparison implementation for better readability 2013-06-28 15:31:50 -04:00
William Kim ab4d1da9d4 added logger warning if issuer url does not use http scheme. 2013-06-28 15:31:50 -04:00
William Kim b438e87f98 passed wire testing and updated unit tests. 2013-06-24 15:09:12 -04:00
William Kim e74444e3d1 addresses issue #366 2013-06-24 15:09:12 -04:00
Amanda Anganes 530c3a75ee Applyed refactoring 2013-06-24 09:44:59 -04:00
William Kim f0f2fbea40 updated secoauth library version in poms 2013-06-21 14:23:58 -04:00
Justin Richer 2b3376e0ed [maven-release-plugin] prepare for next development iteration 2013-06-18 16:13:04 -04:00
Justin Richer 7fe4bc3b56 [maven-release-plugin] prepare release mitreid-connect-1.0.3 2013-06-18 16:12:59 -04:00
William Kim d6109fd1ae explicitly mapped missing JPA columns in common->openid.connect.model #317 2013-06-18 15:19:17 -04:00
William Kim 46641a2fa1 explicitly mapped missing JPA columns in common-oauth2.model #317 2013-06-18 15:19:17 -04:00
Justin Richer c577b691c7 moved OIDC auth token and userinfo interception filter to common package, addresses #353 2013-06-12 14:45:03 -04:00
Justin Richer 6ed7477bc0 added stats to admin UI page, restyled scopes and dynamically registered flags 2013-06-07 18:05:07 -04:00
Justin Richer 567a3314d6 [maven-release-plugin] prepare for next development iteration 2013-06-06 16:05:59 -04:00
Justin Richer 1286726188 [maven-release-plugin] prepare release mitreid-connect-1.0.2 2013-06-06 16:05:52 -04:00
Justin Richer de77f2c75a commentary! 2013-05-31 15:48:56 -04:00
Justin Richer d0eb98b8ff tests for embedded JOSE objects 2013-05-31 15:46:27 -04:00
Justin Richer 8ee299aab3 added tests for ClientDetailsEntity and RegisteredClient data objects 2013-05-31 15:46:27 -04:00
Justin Richer c760ebf4a4 changed expires_at -> client_secret_expires_at, issued_at -> client_id_issued_at 2013-05-31 15:46:27 -04:00
Justin Richer 317526b1ad unit tests for basic data classes 2013-05-29 17:47:04 -04:00
Justin Richer cc1da67639 fixed expires_at property, hid helper functions 2013-05-29 17:46:54 -04:00
Amanda Anganes 3c5025c52b Updated version number for secoauth 2013-05-28 15:38:36 -04:00
Justin Richer 25d75a1b30 [maven-release-plugin] prepare for next development iteration 2013-05-20 17:38:01 -04:00
Justin Richer 5418bdef5a [maven-release-plugin] prepare release mitreid-connect-1.0.1 2013-05-20 17:37:52 -04:00
Justin Richer 81cd13f6d3 added RegisteredClient class to facilitate client configuration and dynamic registration, addresses #335 2013-05-20 17:19:28 -04:00
Justin Richer defa5b8fbc [maven-release-plugin] prepare for next development iteration 2013-05-02 15:01:59 -04:00
Justin Richer dbdc99361e [maven-release-plugin] prepare release mitreid-connect-1.0.0 2013-05-02 15:01:53 -04:00
Justin Richer 1e870703f8 added licence/copyright header 2013-05-02 11:45:20 -04:00
Justin Richer 8afab04544 whitespace, import, brace, annotation, and format cleanups 2013-05-02 10:47:15 -04:00
Justin Richer b8c385e5c9 pom file cleanups 2013-04-29 11:47:15 -04:00
Justin Richer 9b03801f9d [maven-release-plugin] prepare for next development iteration 2013-04-26 13:21:36 -04:00
Justin Richer d76304b9a6 [maven-release-plugin] prepare release mitreid-connect-0.9.3 2013-04-26 13:21:31 -04:00
Amanda Anganes c80b1081cc Cleaning up approvedsite => token linkage 2013-04-24 11:52:03 -04:00
Amanda Anganes 939a801048 Redid approved site -> token mapping so it is unidirectional from ApprovedSite side. Fixed some error logging, added a new view for ApprovedSite which will only show the IDs of the tokens in the approvedTokens list 2013-04-23 17:40:22 -04:00
Amanda Anganes a79aca906e Fixed error logging; added ApprovedSite tracking to tokens 2013-04-22 15:49:06 -04:00
Justin Richer 94aa279290 [maven-release-plugin] prepare for next development iteration 2013-04-19 16:17:53 -04:00
Justin Richer cc92743888 [maven-release-plugin] prepare release mitreid-connect-0.9.2 2013-04-19 16:17:45 -04:00
Justin Richer 7307b4b19d added tostring to system scope to help with debugging 2013-04-19 16:11:42 -04:00
Justin Richer fb859fc39a added client dynamic registration service, extracted clientdetails<->json processing into its own static class 2013-04-19 14:23:11 -04:00
Justin Richer cf39b49657 added registration uri to server config, changed index of client config service to be server config not just issuer 2013-04-19 14:21:53 -04:00
Justin Richer f76f44b999 added dynamic discovery to client 2013-04-16 15:01:08 -04:00
Justin Richer 33af3b1ad6 updated discovery endpoint to latest spec, removed surplus specialized view 2013-04-16 15:00:57 -04:00
Justin Richer ac2993c402 [maven-release-plugin] prepare for next development iteration 2013-04-10 16:12:04 -04:00
Justin Richer f0d75f9144 [maven-release-plugin] prepare release mitreid-connect-0.9.1 2013-04-10 16:11:38 -04:00
Stephen Moore 23c318f6c2 Updating guava to 14.0.1 2013-04-10 15:31:32 -04:00
Justin Richer 86a42ce294 fixed typo for older versions of java/maven 2013-04-09 21:48:23 -04:00
Justin Richer 5f54777109 [maven-release-plugin] prepare for next development iteration 2013-04-03 10:01:58 -04:00
Justin Richer 620a60ddc2 [maven-release-plugin] prepare release mitreid-connect-0.9.0 2013-04-03 10:01:52 -04:00
Justin Richer 54f1ae972b Added properties and updated poms for sync to central 2013-04-02 12:42:40 -04:00