github
/
OpenID-Connect-Java-Spring-Server
mirror of https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
755 Commits
17 Branches
69 Tags
78 MiB
Commit Graph

448 Commits (f091343d8439d9e1da378a68ca9b154484cc06e3)

Author SHA1 Message Date
Michael Jett 4fcbbe639f visual error indicators for redirect uri and scope 2012-08-29 13:54:04 -04:00
Michael Jett 15359a236a Scope UI Auto-complete 2012-08-29 13:36:46 -04:00
Justin Richer 11b35267b4 Refactored stats processor into a service, made home page into a smart page. 2012-08-28 17:42:43 -04:00
Michael Jett 85e13bd11d Initial Scope UI updates 2012-08-28 15:59:03 -04:00
Justin Richer bc0ee4cbab force id consistency 2012-08-28 15:28:55 -04:00
Justin Richer 8876217baf Added cleanups to client service 2012-08-28 15:28:55 -04:00
Justin Richer d041ddb0e1 Added approvedSite API and support structure 2012-08-28 15:28:55 -04:00
Justin Richer 2bf5cfc041 service bug fix 2012-08-28 15:28:55 -04:00
Justin Richer b462d6dd96 added empty http code view 2012-08-28 15:28:55 -04:00
Justin Richer 8ae1b376fe updated whitelist service and repository 2012-08-28 15:28:55 -04:00
Justin Richer 6a180acf3c added preliminary whitelist api 2012-08-28 15:28:55 -04:00
Michael Jett 59e2f0e127 Backbone List View Widget Initial Commit 2012-08-28 12:49:33 -04:00
Justin Richer 4af3dd89be cleaned up client api 2012-08-28 12:29:59 -04:00
Justin Richer 72c125ba64 refactored binder into two parts 2012-08-28 12:29:33 -04:00
Justin Richer be54696603 Generic GSON entity printer 2012-08-28 12:29:10 -04:00
Michael Jett 0aa6da67de Bootstrap JS Upgrade 2012-08-28 12:03:08 -04:00
Michael Jett 306e07bc36 UI Dynamic List updates 2012-08-27 23:46:06 -04:00
Michael Jett 5377a2bac4 Redirect URI UI updates 2012-08-27 17:12:02 -04:00
Justin Richer 0b1bb4f8aa call the right service api 2012-08-27 16:57:52 -04:00
Justin Richer 407c14d0dc added missing bean annotation 2012-08-27 16:52:00 -04:00
Justin Richer 3e423e9e04 explicitly exposed registration url 2012-08-27 16:46:58 -04:00
Justin Richer a674589db0 added client editing capability 2012-08-27 16:46:45 -04:00
Justin Richer a45c8bf96d upped default client secret strength 2012-08-27 16:46:25 -04:00
Justin Richer e39dcb63dd added views, fixed registration for SECOAUTH required parameter 2012-08-27 16:25:43 -04:00
Michael Jett d8037c0513 Redirect URL UI initial commit 2012-08-27 16:17:22 -04:00
Justin Richer 83873f8ae2 added defaults for SECOAUTH 2012-08-27 16:09:01 -04:00
Justin Richer 9f84126cb8 more dynamic registration 2012-08-27 16:00:47 -04:00
Justin Richer aeb6644d38 exploded version of attribute binding/processing 2012-08-27 14:47:04 -04:00
Justin Richer e4470c9361 mapped the invalid scope exception, addresses #102 
Still can't access userinfo if you're not using OAuth2
 2012-08-27 13:28:54 -04:00
Justin Richer 259e84c871 put null check into interceptor, addresses #183 2012-08-27 11:55:06 -04:00
Michael Jett 8361f74932 removed innocuous change 2012-08-24 16:00:58 -04:00
Michael Jett 42287edc9b junk comentt showwhich brnach we'ron 2012-08-24 15:27:39 -04:00
Michael Jett a61d94e07e Cancel buttons on client forms 2012-08-24 14:32:13 -04:00
Michael Jett 149080f776 Breadcrumbs are now fully dynamic. 2012-08-24 12:57:10 -04:00
Justin Richer 37d6d63772 inject userinfo into context for use in JSPs 
addresses #99 (for real this time)
 2012-08-23 18:23:52 -04:00
Justin Richer b5ce8d5e8b added getByUsername to userinfo repositories and supporting classes, updated calling classes to use this 
fixed namedquery
 2012-08-23 18:23:47 -04:00
Michael Jett 6cb0269629 Merge remote branch 'origin/master' 2012-08-23 18:08:13 -04:00
Michael Jett dc1f1965af Refactoring breadcrumbs. The breadcrumb bar will disappear momentarily. 2012-08-23 18:07:22 -04:00
Amanda Anganes ba5572b28a Tidied up a bit, added javadoc comments to new classes 2012-08-23 11:05:10 -04:00
Amanda Anganes c23b176567 Database backed authorization-code-service now works. 2012-08-23 10:46:08 -04:00
Amanda Anganes 4b76cc514b Added a database-backed authorization-code system. Untested; needs to be injected into configuration in the place of the in-memory one and tested 2012-08-22 16:54:00 -04:00
Amanda Anganes dc61068702 Split approved site and whitelisted site scope tables. 2012-08-22 15:21:42 -04:00
Justin Richer e5b62e8935 fixed patterns and expressions on http blocks 2012-08-21 14:02:35 -04:00
Justin Richer 9eb328831f changed to proper prefix 2012-08-21 13:55:47 -04:00
Stephen Moore af01e26e10 Split up permitAll on enpoints 2012-08-21 12:54:55 -04:00
Stephen Moore d2f7e8edf9 Moved SPEL to app-context, and added enpoint permitAlls 2012-08-21 12:53:48 -04:00
Justin Richer bdfdbbadbc stats summary, addresses #62 2012-08-21 12:20:05 -04:00
Justin Richer 6cb7e74046 updated default handling to user proper backbone model handling 2012-08-20 16:49:39 -04:00
Justin Richer 74b4fab58c Client secret processing 2012-08-20 16:06:12 -04:00
Justin Richer 05fa7b148c added checks for generated client secret 2012-08-20 12:23:02 -04:00
Justin Richer 9e60da2675 added controls for client secret processing 2012-08-20 12:22:38 -04:00
Justin Richer a02f37cec3 added generators to client service API 2012-08-20 12:22:18 -04:00
Justin Richer 8520fcbf72 removed deprecated granted authority reference 2012-08-17 14:40:13 -04:00
Justin Richer a65504c0cb added new exception for userinfo, addresses #133 2012-08-15 16:02:06 -04:00
Justin Richer 209fc2d249 refactored request object endpoint to avoid urlspace conflict with SECOAUTH 2012-08-15 12:06:37 -04:00
Mike Derryberry d1218efb2a cleaned up imports 2012-08-14 10:55:08 -04:00
Mike Derryberry 55e7a4d707 moved request object auth endpoint in project setup 2012-08-14 10:55:08 -04:00
Mike Derryberry ec286b9644 removed auth bean from application-context. Added extra parameter checks in request object auth endpoint 2012-08-14 10:55:08 -04:00
Mike Derryberry 04d8faa90a updated autowired annotation 2012-08-14 10:55:08 -04:00
Mike Derryberry 20a7ebc576 autowired all member variables in request object auth endpoint 2012-08-14 10:55:08 -04:00
Mike Derryberry 694074ee58 moved endpoint, added param processing 2012-08-14 10:55:08 -04:00
Mike Derryberry 36b9c805d9 added reference to abstract endpoint class to get token granter 2012-08-14 10:55:08 -04:00
Mike Derryberry 2bdbb283b7 removed dependency on abstract endpoint class. added methods needed to authRequestObjectEndpoint (afterPropertiesSet()) 2012-08-14 10:55:08 -04:00
Mike Derryberry 51ec529861 readded implementation of initializingBean 2012-08-14 10:55:08 -04:00
Mike Derryberry 638ebf2010 cleaned up AuthRequestObjectEndpoint class 2012-08-14 10:55:08 -04:00
Mike Derryberry d93f5f18e5 added state value to jwt that gets passed as request object. certain methods from SECOAUTH use this 2012-08-14 10:55:08 -04:00
Mike Derryberry 3486ea28f1 updated mimicked methods to not use jwt, but rather a jwt in an auth request 2012-08-14 10:55:08 -04:00
Mike Derryberry 1a20dcbc6e added methods that mimic behavior of private SECOATH methods 2012-08-14 10:55:08 -04:00
Mike Derryberry d5caa0b543 changed server endpoint to act like an endpoint. WIP to accept request objects, validate, and redirect 2012-08-14 10:55:08 -04:00
Mike Derryberry 7d6211afd7 cleaned up some imports, added serverEndpointRequest class 2012-08-14 10:55:08 -04:00
Mike Derryberry 28344a3c91 auth endpoint got into client code. removed 2012-08-14 10:55:08 -04:00
Mike Derryberry 2888c08083 changed cookie claim to include the response 2012-08-14 10:55:07 -04:00
Justin Richer c0a61fe47a moved jquery to page header instead of footer, added focus call on login form 2012-08-14 10:48:38 -04:00
Justin Richer 484abc4915 fixed client delete 2012-08-10 17:24:21 -04:00
Michael Jett 5e898a7b0b Id toke timeout binding for UI 2012-08-10 17:20:23 -04:00
Michael Jett aaa38a761d Mis-type for client secret 2012-08-10 17:18:43 -04:00
Michael Jett b99d2ed9dc Client Id null fix 2012-08-10 17:15:35 -04:00
Michael Jett 935b5ed43a Client Id is now editable 2012-08-10 17:11:13 -04:00
Michael Jett 0f9d4ef255 Id refactor UI 2012-08-10 17:05:28 -04:00
Justin Richer 155974d8e3 moved services and api over to using new client Id field (instead of client_id) 2012-08-10 16:53:31 -04:00
Justin Richer eb5a24690f added method to get client by its (new) Long id 2012-08-10 16:29:16 -04:00
Michael Jett 480fb8e593 Id refactor UI 2012-08-10 16:26:54 -04:00
Michael Jett ae5e1ca859 Merge remote branch 'origin/master' 2012-08-10 16:12:54 -04:00
Michael Jett 3f9e2cfa52 Horizontal UI refactor 2012-08-10 15:29:11 -04:00
Justin Richer 74a40fc973 changed auth holder reference, moved dates to timestamps 2012-08-10 14:26:47 -04:00
Justin Richer bb7d6b2e94 split scopes table 2012-08-10 14:26:47 -04:00
Justin Richer ed99bd36cf changed clientdetails entity to use @Enumerated, cleaned up .sql file foreign keys 2012-08-10 14:26:47 -04:00
Michael Jett 66e5cf3f04 Client table button UI tweaks 2012-08-10 14:23:54 -04:00
Michael Jett 8d57e0e9ef Issue # 81 Client UI - Creating new client creates duplicate 2012-08-10 14:19:33 -04:00
Michael Jett a5a102bbe4 Github Issue #116 2012-08-10 11:25:50 -04:00
Amanda Anganes 97d7bc9c13 added field to indicate whether the client has been dynamically registered 2012-08-09 15:55:07 -04:00
Amanda Anganes 170036e0b8 Added expiration to id tokens 2012-08-09 12:44:22 -04:00
Amanda Anganes 6bb9f67f5e Removed individual .sql files. All table definitions are now concatenated in database_tables.sql. 2012-08-09 12:44:22 -04:00
Amanda Anganes f724d3a9fe updated userinfo table definitions 2012-08-09 12:44:22 -04:00
Amanda Anganes 617e9568d8 Fixed bugs; I can get tokens now. User approval handler seems to be working corrrectly. 2012-08-09 12:44:22 -04:00
Amanda Anganes 49cb8bd0cb fixing bugs; needed to make all ids BIGINT AUTO-INCREMENT PRIMARY KEY in sql files 2012-08-09 12:44:21 -04:00
Amanda Anganes 0757642e67 removed "s" from allowed_scopes 2012-08-09 12:44:21 -04:00
Amanda Anganes 9c32e92da5 Cleaned up sql tables some more; sticking to _ naming convention 2012-08-09 12:44:21 -04:00
Amanda Anganes d7deda1699 Propogated AuthenticationHolder effects; this is untested but compiles and I think it is mostly correct 2012-08-09 12:44:21 -04:00
Amanda Anganes 90df91c351 Added AuthenticationHolder object, got references squared away for AccessToken side. Compiles. 2012-08-09 12:44:21 -04:00
Amanda Anganes cf348590b0 Removed unused ClientGeneratorFactory 2012-08-09 12:44:21 -04:00
Amanda Anganes d6d80c3e60 Gave OAuth2RefreshTokenEntity a Long Id 2012-08-09 12:44:21 -04:00
Amanda Anganes 6b1dad7215 Gave OAuth2AccessTokenEntity a Long Id 2012-08-09 12:44:21 -04:00
Amanda Anganes 780839dbf9 Made things compile after ClientDetailsEntity refactoring 2012-08-09 12:44:21 -04:00
Amanda Anganes a68a4f9796 Organized ClientDetailsEntity, updated JPA annotations. Updated sql files to match. Naming conventions: table and column names with multiple words should be seperated by underscores; table and column names should be singular. 2012-08-09 12:44:21 -04:00
Amanda Anganes 15428a875e Added additional fields to ClientDetailsEntity and did some reorganization, still some more to do. Added "id" field to the sql file, but the sql still needs all of the other additional fields. 2012-08-09 12:44:21 -04:00
Justin Richer 09e528e113 added discovery info for x509 and client auth 2012-08-07 17:30:36 -04:00
Justin Richer dc7aac12f9 added custom login form, changed footer to only optionally load app 2012-08-07 12:09:32 -04:00
Amanda Anganes 8d4e046408 All logging is now org.slf4j. We had a mix of org.slf4j and apache commons-logging. Added error logging to all view which throw errors. 2012-08-07 10:04:38 -04:00
Amanda Anganes a061e64abf Merge branch 'user-approval-handler-updated-rebase' 2012-08-06 16:30:03 -04:00
Amanda Anganes 32dc92119f Cleanup completed, this works for the most part. TODO: need to make an upstream change in order to inject a new set of scopes into the AuthorizationRequest. 2012-08-06 16:29:22 -04:00
Amanda Anganes 5fb67ab7bb Did a lot of cleanup; untested but compiles 2012-08-06 14:33:16 -04:00
Amanda Anganes ae44bd5e0c Works; about to do some cleanup 2012-08-06 13:40:27 -04:00
Amanda Anganes 2f28cf33e7 Changed UserInfo refs in WhitelistedSite to String ids; updated the user approval handler to check if "remember this decision" is checked and only make a new AP if so, and to pull in the scopes selected on the approval page as the saved allowed scopes for that AP. 2012-08-03 16:43:37 -04:00
Amanda Anganes b87d54b06e Changed UserInfo references to String "userId" references 2012-08-03 13:32:17 -04:00
Amanda Anganes 845976b8ac First stages of getting the graylist portion to work. Currently no mechanism for telling the system NOT to remember your decision; that will come later. All approvals will be automatically stored with this code. 2012-08-03 12:49:40 -04:00
Justin Richer 51b8dbe065 Revert "updated jwtHeader typ to use an enum" -- set things back to using a string 
This reverts commit 3b2268c622.
 2012-08-02 14:16:55 -04:00
Justin Richer 9a7e40fee7 moved all bean definitions to annotations, removed orphaned CheckID view 2012-08-02 12:46:35 -04:00
Justin Richer 1508369548 now with Walsh-flavored certificate generation 2012-08-01 18:04:26 -04:00
Justin Richer 61a8d4a787 x509 take -- bouncycastley version 2012-08-01 17:19:33 -04:00
Amanda Anganes db415bfa2b Working on user approval handler 2012-07-31 14:50:24 -04:00
Amanda Anganes a223565364 updating user approval handler 2012-07-31 14:50:24 -04:00
Amanda Anganes 676808bdac got things to deploy - could not reference UserInfo directly in ApprovedSite and WhitelistedSite; needed to reference DefaultUserInfo instead. 2012-07-31 14:50:24 -04:00
Amanda Anganes 4e10fce7ef Implementing user approval handler; made some modifications to ApprovedSite and WhitelistedSite models, repositories, and service layers. 2012-07-31 14:50:24 -04:00
Amanda Anganes 7c33e19950 Changed authorization endpoint to /authorize rather than /auth; updated SWD entry. Also removed checkid entry from SWD. 2012-07-31 14:39:27 -04:00
Justin Richer 863693cf59 Merge pull request #128 from mtderryberry/jwe-and-jwt-fixes 
Jwe and jwt fixes
 2012-07-31 10:52:04 -07:00
Amanda Anganes 3982561a5b Removing "throws exception" from views. Addresses issue #70 2012-07-31 12:28:46 -04:00
Amanda Anganes 5cf6359f7d Merge branch 'master' of github.com:mitreid-connect/OpenID-Connect-Java-Spring-Server 2012-07-31 12:14:19 -04:00
Amanda Anganes 686412757f shortened urls 2012-07-31 12:02:21 -04:00
Mike Derryberry 3b2268c622 updated jwtHeader typ to use an enum 2012-07-31 11:29:48 -04:00
Justin Richer 1b5f99efec added .json mapping to SWD 2012-07-31 10:42:42 -04:00
Amanda Anganes 02da9fceed fixed imports 2012-07-31 09:16:05 -04:00
Justin Richer d07667576e cleaned up old code 2012-07-30 16:50:44 -04:00
Justin Richer 40f39a18e0 cleaning up introspection endpoint 2012-07-30 16:50:44 -04:00
Amanda Anganes e7449901a6 Removed IdTokenGeneratorService. Addresses issue #75 2012-07-30 16:46:20 -04:00
Justin Richer ee9288a72a turned down cache in default 2012-07-30 16:16:02 -04:00
Justin Richer c80f7f1fcd removed keystore dependency where it is not needed 2012-07-30 14:58:29 -04:00
Justin Richer 319568d971 refactored JWA algorithm markers to use enum instead of string as stored class 2012-07-23 20:21:31 -04:00
Justin Richer 165f3ea292 fixed some unit tests, broke others 2012-07-23 18:44:47 -04:00
Justin Richer 1f68c835c0 updated openid connect image 2012-07-16 15:12:35 -06:00
Michael Jett 7a3ae5a757 Merge remote branch 'origin/master' 2012-07-10 17:00:30 -04:00
Michael Jett 30addb5439 Redirect URI now displayed on approval page. 2012-07-10 16:54:55 -04:00
Justin Richer 9f16f309bd updated userinfouserdetailsservice to use username instead of userid -- this should actually be a wrapper class though 2012-07-10 16:44:29 -04:00
Justin Richer b0a7ebd9b1 fixed JWK algorithm display 2012-07-10 14:57:12 -04:00
Stephen Moore 84aa451095 Added comment for spring-servlet.xml 2012-07-10 13:29:53 -04:00
Justin Richer 5657bc8f28 updated configuration, confirmed works pending SECOAUTH-299 2012-07-09 11:25:45 -04:00
Justin Richer e5eb2e03d8 added implicit beans 2012-07-09 11:25:45 -04:00
Amanda Anganes 01793ec57f added preferred_username claim to userinfo endpoint 2012-07-06 16:02:11 -04:00
Amanda Anganes 8abbce3a2d fixed broken unit tests - they were pointing to the wrong spring context file; 2012-07-06 14:22:06 -04:00
Amanda Anganes 50241e4da1 changed UserInfo.verified to UserInfo.emailVerified. 2012-07-06 14:11:43 -04:00