github
/
OpenID-Connect-Java-Spring-Server
mirror of https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
1,516 Commits
17 Branches
69 Tags
78 MiB
Commit Graph

989 Commits (ef01de168d581ca014d934261fff6f62d7839af4)

Author SHA1 Message Date
Justin Richer 59187d47e4 use new unified parsing for approval page 2013-09-06 16:07:25 -04:00
Justin Richer 85533d50cf scope comparison for TofuUserApprovalHandler 2013-09-06 16:07:25 -04:00
Justin Richer 1c4c53f252 scope comparison for introspection endpoint 2013-09-06 16:07:24 -04:00
Justin Richer 6152a943d8 serialize structured scopes properly (with tests) 2013-09-06 16:07:24 -04:00
Justin Richer 72f0ab631d added transient structured value to system scope, added scope matcher function to scope service 2013-09-06 16:07:24 -04:00
Justin Richer 3fc34f15c8 added structured scope update to mysql (affects #455) 2013-09-06 16:07:24 -04:00
Josh Mandel b416888b07 Structured Scopes from BB+ 2013-09-06 16:07:24 -04:00
Justin Richer 127507246e if the client doesn't ask for any system scopes, but asks for some non-system scopes, they'll now get the defaults instead of none 
addresses #498
 2013-09-06 13:30:22 -04:00
Justin Richer 64bbb73d1b cleaned up CORS filter implementation 2013-09-03 16:01:19 -04:00
Justin Richer 6ff4ae1458 added CORS filter 2013-09-03 15:17:18 -04:00
Justin Richer 81cb60ad7b made introspection and revocation work with basic auth (and possible OAuth tokens, but that needs more work) 2013-09-03 15:17:16 -04:00
Justin Richer bdbff8d45c tell spring to not stuff model into the redirects, partially addresses #492 2013-08-30 16:38:07 -04:00
Justin Richer 84f097edf4 removed outdated client credentials filter, addresses #491 2013-08-30 11:48:52 -04:00
Justin Richer d7be122a21 added basic user profile view implementation 2013-08-29 17:33:42 -04:00
Justin Richer 55ea880396 hide admin panels from non-admin users, addresses #472 2013-08-29 17:15:13 -04:00
Justin Richer 235029ba0e inject user's authorities into javascript context 2013-08-29 16:58:36 -04:00
Justin Richer eab4563551 inject user's email address into contacts on dynamic registration 2013-08-29 16:58:24 -04:00
Justin Richer be6179d1ac inject the current user into the javascript context 2013-08-29 16:44:01 -04:00
Justin Richer 5c10eef8b7 added delete function 2013-08-29 14:18:54 -04:00
Justin Richer d92b7c4810 changed display of core client components, added warning 2013-08-29 11:50:05 -04:00
Justin Richer 4009d9ea82 added create and update functions 2013-08-29 11:11:37 -04:00
Justin Richer 8e6da2b936 json view and form elements 2013-08-28 16:42:43 -04:00
Justin Richer 36151975c1 added client read and oauth token support for CRUD abilities 2013-08-28 15:32:18 -04:00
Justin Richer ead99474be fixed panels for client form 2013-08-28 14:38:03 -04:00
Justin Richer fb66af2071 added form editor and control for newly-registered clients 2013-08-28 14:20:20 -04:00
Justin Richer 51973ea595 added dev page for self-service client registration 2013-08-28 14:17:30 -04:00
William Kim 2108311d65 Revert "refactored code to use the more generic JWT declaration." 
This reverts commit e0b56bc72a.
 2013-08-26 15:33:08 -04:00
William Kim e0b56bc72a refactored code to use the more generic JWT declaration. 2013-08-26 11:32:46 -04:00
Justin Richer ca777f7dc4 proper null check for client's preferred signature method 2013-08-20 16:45:45 -04:00
William Kim 07bec462cc added comment about why we can't use set intersection method. 2013-08-20 14:09:14 -04:00
William Kim b89436d7b9 UserInfoView returning intersection of claims request parameter and request object claims in effect now. 2013-08-20 08:55:56 -04:00
Justin Richer bd3d2a5cee created crypto tab 2013-08-19 17:35:05 -04:00
Justin Richer 3f66d16236 removed NYI tag from ID token signing alg 2013-08-19 17:31:13 -04:00
Justin Richer 48a9202f79 fixed jquery.on regex to be less aggressive 2013-08-19 17:20:29 -04:00
Amanda Anganes 941e9544e2 Compare client_ids instead of Client objects 2013-08-19 16:55:56 -04:00
Amanda Anganes 3eae6f2789 Changed client algorithm check to look for null instead of JWSAlgorithm.NONE, which is a valid value. 2013-08-19 16:55:29 -04:00
Amanda Anganes 0059c7b4cc Use clients preferred algorithm, if any, to sign 2013-08-19 16:33:18 -04:00
Justin Richer 2fb138aa19 fixed jquery.on syntax bug, addresses #346 2013-08-19 16:07:34 -04:00
Justin Richer 8edc8cc69a Disable unsupported JOSE algorithms in UI, addresses #476 2013-08-19 15:52:00 -04:00
Justin Richer 8c91861188 load server configuration into JS app 2013-08-19 15:52:00 -04:00
Justin Richer e40b1cf850 animated loading bar for management console 2013-08-19 15:52:00 -04:00
Justin Richer a80c19384f added 'use server default' to JOSE options, addresses #462 2013-08-19 15:52:00 -04:00
William Kim b54f33d0db fixed json elements of "claims" and "userinfo" being processed out of order. 2013-08-19 14:15:53 -04:00
William Kim 7b813c79ee parsing "claims" parameter directly from userinfoendpoint requests. 2013-08-19 13:32:34 -04:00
William Kim 1ffbb39a2b refactored json parser to a private static field. 2013-08-19 13:30:56 -04:00
William Kim 89056bd911 removed test-specific constructor and default constructor. 2013-08-19 13:30:56 -04:00
Justin Richer ba0c3c5d78 id tokens always expire, addresses #416 2013-08-19 12:42:37 -04:00
William Kim 7e51a361ba changed to using relative em lengths instead of hard px length values for token timeout form elements. 2013-08-15 16:19:47 -04:00
Justin Richer c1ee5141a4 added back default timeouts and fixed refresh token check 2013-08-15 15:50:36 -04:00
William Kim 00db39dab9 addresses issue #471. setting default timeout values in the backbone model to null. 2013-08-15 15:29:16 -04:00
Justin Richer 1b674b6420 restored bootstrap to out-of-the-box formatting, addresses #454 2013-08-15 14:50:18 -04:00
William Kim a6bb56ed9a unit select box appropriately disabled after saving now. 2013-08-15 14:03:25 -04:00
William Kim 86c6a0ea8b clear token timeout form fields when disabled and also disable unit selector. 2013-08-15 13:09:53 -04:00
William Kim 3f01ae1a71 renamed token expiration form field ids from -seconds to -time. 2013-08-15 11:13:29 -04:00
William Kim 2242db5c11 shortened token timeout form fields. 2013-08-15 11:13:29 -04:00
William Kim 6f8143937e dropdown time unit chooser added for token expiration. 2013-08-15 11:13:29 -04:00
William Kim 7ab53795b1 refactor js. getFormTokenValue() -> getFormTokenNumberValue(). 2013-08-15 11:13:29 -04:00
Justin Richer 7d51335055 added prompt=login support, addresses #323 2013-08-14 17:00:56 -04:00
Justin Richer a0646452ab test for max_age, force login if not fresh enough, addresses #467 2013-08-14 16:50:51 -04:00
Justin Richer 6c1e91b7e3 auth_time is now tracked, addresses #288 2013-08-14 15:39:41 -04:00
Amanda Anganes e88c6c4943 Changed predicates methods to use Collections2.filter rather than Sets.filter 2013-08-13 10:31:39 -04:00
William Kim f1357cceb4 corrected output for badly-formatted timeout date. 2013-08-12 16:20:42 -04:00
William Kim 025eb05d3a added date format validity check for moment.js usage. 2013-08-12 16:15:06 -04:00
William Kim c1607b53e4 null-checking in date display for approved sites. 2013-08-12 15:52:30 -04:00
William Kim d67a492b6c date display logic to use moment.js. 2013-08-12 15:03:46 -04:00
William Kim ba7e791985 initial moment time formatting commit. 2013-08-12 12:15:47 -04:00
William Kim a72ba6d98b importing moment.js library. 2013-08-12 11:23:43 -04:00
William Kim 6687e3a831 override createOAuth2Request method for factory iss #465. 2013-08-09 13:03:46 -04:00
Amanda Anganes ef4482249c Dyn-reg endpoint now creates the registration access token from scratch instead of calling token services; token services no longer needs to check for RAT scope to avoid expiring RATs 2013-08-09 11:49:11 -04:00
Justin Richer 15e512cec3 renamed JWSUtils -> IdTokenHashUtils, renamed internal variables 2013-08-08 14:34:19 -04:00
William Kim 0f16bacc63 TestJWSUtils done. 2013-08-08 14:10:35 -04:00
William Kim 2ba8ad71f1 updated hash tests. 2013-08-08 14:10:35 -04:00
William Kim cdd3a6d478 changed at_hash/c_hash impl. HMAC-SHA --> regular SHA. 2013-08-08 14:10:35 -04:00
Amanda Anganes fd611ce353 Had an unsaved file hanging around - formatting JSPs 2013-08-08 14:03:59 -04:00
Amanda Anganes a91f160e34 Fixed formatting in tag files 2013-08-08 14:00:01 -04:00
Amanda Anganes 5beac9d50d Fixed formatting in JSPs 2013-08-08 13:18:14 -04:00
Amanda Anganes 2d4d7f7be9 Had to hand-merge some things; git got confused 2013-08-07 10:59:55 -04:00
Amanda Anganes 861beeba64 Added c_hash function, added stub of unit test for JWSUtils 2013-08-07 10:43:26 -04:00
Amanda Anganes 37580cc21e JWSUtils uses JWSAlgorithm to match bit length; ConnectTokenEnhancer calls the util method now 2013-08-07 10:41:53 -04:00
Amanda Anganes 3a591dc1f4 Added JWSUtils class; 2013-08-07 10:38:28 -04:00
Amanda Anganes be97aedbc7 Used Predicates to filter expired tokens and approved sites; 2013-08-06 16:42:49 -04:00
Amanda Anganes b3bb43881d Moved getExpired to service layers 2013-08-06 16:33:27 -04:00
Amanda Anganes eea37cf79c Fixed token expiration bug by removing jsql queries. Instead expired tokens or approved sites are filtered at the repository level 2013-08-06 11:28:13 -04:00
Amanda Anganes ce4ab6a766 Updated spring version to 3.2.3; added a 10-minute initial delay to the scheduled tasks in task-config.xml 2013-08-05 16:31:56 -04:00
Amanda Anganes 265214511c Renamed oAuth2RequestFactory 2013-08-05 14:04:48 -04:00
Amanda Anganes a4c1a7a37d Issue 449 2013-08-02 11:20:47 -04:00
Amanda Anganes 9dda789488 Updated database tables 2013-08-02 11:16:11 -04:00
Amanda Anganes 2f711c88a7 Removed nonce service 2013-08-02 10:56:28 -04:00
Amanda Anganes d4fbb4f599 Removed Event class 2013-08-02 10:06:41 -04:00
William Kim 88863f4910 replaced mock TokenRequest and the storedAuth test field with concrete objects. test should pass now. 2013-07-30 11:42:11 -04:00
William Kim 1392faa83c replaced mock client auth with concrete OAuth2Request object 2013-07-30 11:42:11 -04:00
Amanda Anganes ad2ace6d74 Do not expire registration tokens 2013-07-30 11:33:15 -04:00
Justin Richer beaeaa4ccc I can spell "consortium", I promise 2013-07-29 17:40:26 -04:00
Justin Richer b2b6fd6448 further cleanup 2013-07-29 17:00:35 -04:00
Justin Richer 856c0ea0b5 Merge commit '023dd440d4a0e6e59a14c88013837d79a77c74e0' into 1.1-merge 
Conflicts:
	openid-connect-client/pom.xml
	openid-connect-client/src/main/java/org/mitre/oauth2/introspectingfilter/AuthorizationRequestImpl.java
	openid-connect-client/src/main/java/org/mitre/oauth2/introspectingfilter/IntrospectingTokenService.java
	openid-connect-client/src/main/java/org/mitre/oauth2/introspectingfilter/IntrospectionAuthorityGranter.java
	openid-connect-client/src/main/java/org/mitre/oauth2/introspectingfilter/IntrospectionUrlProvider.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/OIDCAuthenticationFilter.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/OIDCAuthenticationProvider.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/keypublisher/ClientKeyPublisher.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/keypublisher/ClientKeyPublisherMapping.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/keypublisher/JwkViewResolver.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/AuthRequestUrlBuilder.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/ClientConfigurationService.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/impl/StaticClientConfigurationService.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/impl/StaticServerConfigurationService.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/impl/StaticSingleIssuerService.java
	openid-connect-client/src/main/java/org/mitre/openid/connect/client/service/impl/ThirdPartyIssuerService.java
	openid-connect-client/src/test/java/org/mitre/openid/connect/client/AbstractOIDCAuthenticationFilterTest.java
	openid-connect-common/pom.xml
	openid-connect-common/src/main/java/org/mitre/jose/keystore/JWKSetKeyStore.java
	openid-connect-common/src/main/java/org/mitre/jwt/signer/service/JwtSigningAndValidationService.java
	openid-connect-common/src/main/java/org/mitre/jwt/signer/service/impl/DefaultJwtSigningAndValidationService.java
	openid-connect-common/src/main/java/org/mitre/jwt/signer/service/impl/JWKSetSigningAndValidationServiceCacheService.java
	openid-connect-common/src/main/java/org/mitre/oauth2/model/AuthorizationCodeEntity.java
	openid-connect-common/src/main/java/org/mitre/oauth2/model/ClientDetailsEntity.java
	openid-connect-common/src/main/java/org/mitre/oauth2/model/OAuth2AccessTokenEntity.java
	openid-connect-common/src/main/java/org/mitre/oauth2/model/OAuth2RefreshTokenEntity.java
	openid-connect-common/src/main/java/org/mitre/oauth2/model/SystemScope.java
	openid-connect-common/src/main/java/org/mitre/oauth2/repository/AuthorizationCodeRepository.java
	openid-connect-common/src/main/java/org/mitre/oauth2/repository/OAuth2TokenRepository.java
	openid-connect-common/src/main/java/org/mitre/oauth2/service/OAuth2TokenEntityService.java
	openid-connect-common/src/main/java/org/mitre/openid/connect/config/ConfigurationPropertiesBean.java
	openid-connect-common/src/main/java/org/mitre/openid/connect/config/ServerConfiguration.java
	openid-connect-common/src/main/java/org/mitre/openid/connect/model/ApprovedSite.java
	openid-connect-common/src/main/java/org/mitre/openid/connect/model/BlacklistedSite.java
	openid-connect-common/src/main/java/org/mitre/openid/connect/model/Event.java
	openid-connect-common/src/main/java/org/mitre/openid/connect/model/OIDCAuthenticationToken.java
	openid-connect-common/src/main/java/org/mitre/openid/connect/model/WhitelistedSite.java
	openid-connect-common/src/main/java/org/mitre/util/jpa/JpaUtil.java
	openid-connect-server/.gitignore
	openid-connect-server/pom.xml
	openid-connect-server/src/main/java/org/mitre/oauth2/repository/impl/JpaAuthorizationCodeRepository.java
	openid-connect-server/src/main/java/org/mitre/oauth2/service/impl/DefaultOAuth2AuthorizationCodeService.java
	openid-connect-server/src/main/java/org/mitre/oauth2/service/impl/DefaultOAuth2ClientDetailsEntityService.java
	openid-connect-server/src/main/java/org/mitre/oauth2/service/impl/DefaultOAuth2ProviderTokenService.java
	openid-connect-server/src/main/java/org/mitre/oauth2/service/impl/DefaultSystemScopeService.java
	openid-connect-server/src/main/java/org/mitre/oauth2/token/ChainedTokenGranter.java
	openid-connect-server/src/main/java/org/mitre/oauth2/token/JwtAssertionTokenGranter.java
	openid-connect-server/src/main/java/org/mitre/oauth2/view/TokenIntrospectionView.java
	openid-connect-server/src/main/java/org/mitre/oauth2/web/IntrospectionEndpoint.java
	openid-connect-server/src/main/java/org/mitre/oauth2/web/OAuthConfirmationController.java
	openid-connect-server/src/main/java/org/mitre/oauth2/web/RevocationEndpoint.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/ConnectOAuth2RequestFactory.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/assertion/JwtBearerAuthenticationProvider.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/assertion/JwtBearerClientAssertionTokenEndpointFilter.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/exception/InvalidJwtSignatureException.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/exception/UnknownUserInfoSchemaException.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/exception/UserNotFoundException.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/repository/impl/JpaApprovedSiteRepository.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/repository/impl/JpaUserInfoRepository.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/DefaultApprovedSiteService.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/DefaultNonceService.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/DefaultStatsService.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/DefaultUserInfoUserDetailsService.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/service/impl/DefaultWhitelistedSiteService.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/token/ConnectTokenEnhancer.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/token/TofuUserApprovalHandler.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/view/AbstractClientEntityView.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/view/ClientInformationResponseView.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/view/ExceptionAsJSONView.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/view/JsonEntityView.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/view/JsonErrorView.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/view/POCOUserInfoView.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/view/StatsSummary.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/view/UserInfoView.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/ApprovedSiteAPI.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/BlacklistAPI.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/ClientAPI.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/ClientDynamicRegistrationEndpoint.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/ManagerController.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/RequestObjectAuthorizationEndpoint.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/StatsAPI.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/UserInfoEndpoint.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/UserInfoInterceptor.java
	openid-connect-server/src/main/java/org/mitre/openid/connect/web/WhitelistAPI.java
	openid-connect-server/src/main/webapp/WEB-INF/tags/aboutContent.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/breadcrumbs.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/contactContent.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/copyright.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/header.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/landingPageAbout.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/landingPageContact.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/landingPageStats.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/landingPageWelcome.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/sidebar.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/statsContent.tag
	openid-connect-server/src/main/webapp/WEB-INF/tags/topbar.tag
	openid-connect-server/src/main/webapp/WEB-INF/views/about.jsp
	openid-connect-server/src/main/webapp/WEB-INF/views/approve.jsp
	openid-connect-server/src/main/webapp/WEB-INF/views/contact.jsp
	openid-connect-server/src/main/webapp/WEB-INF/views/exception/usernotfound.jsp
	openid-connect-server/src/main/webapp/WEB-INF/views/login.jsp
	openid-connect-server/src/main/webapp/WEB-INF/views/manage.jsp
	openid-connect-server/src/main/webapp/WEB-INF/views/stats.jsp
	pom.xml
 2013-07-29 16:21:20 -04:00
Justin Richer 023dd440d4 [maven-release-plugin] prepare for next development iteration 2013-07-29 11:30:08 -04:00
Justin Richer 5e8f93cf15 [maven-release-plugin] prepare release mitreid-connect-1.0.6 2013-07-29 11:30:04 -04:00
Justin Richer e658ffd7fc format/cleanup and copyright 2013-07-29 11:28:51 -04:00
Justin Richer d4b544d519 disable token API (for now) 2013-07-29 11:23:07 -04:00
Amanda Anganes 906db0ac86 Opened token api access to all users; restricted to only show currently-logged-in-users tokens 2013-07-29 09:18:08 -04:00