Commit Graph

182 Commits (fd2253303e9afe45425c67cc1f5d01f8cac6c28f)

Author SHA1 Message Date
Amanda Anganes 4b76cc514b Added a database-backed authorization-code system. Untested; needs to be injected into configuration in the place of the in-memory one and tested
12 years ago
Amanda Anganes dc61068702 Split approved site and whitelisted site scope tables.
12 years ago
Justin Richer a02f37cec3 added generators to client service API
12 years ago
Justin Richer 26d5a846e0 Updated validator structure and id token checking.
12 years ago
Justin Richer 012bb4afd7 Changed casing on "URI" to "Url" to match other parameters.
12 years ago
Justin Richer d14f55004c added parser to userinfo object, userinfo url in filter, fixed bug in user_id check
12 years ago
Justin Richer fbd6e67af8 Refactored auth provider to call the userinfo endpoint and provide info inside the auth token.
12 years ago
Mike Derryberry 1efe7a1fc3 updated check of algorithm in signing method"
12 years ago
Justin Richer 155974d8e3 moved services and api over to using new client Id field (instead of client_id)
12 years ago
Justin Richer eb5a24690f added method to get client by its (new) Long id
12 years ago
Justin Richer 47ff885032 removed unnecessary cached token values
12 years ago
Justin Richer 74a40fc973 changed auth holder reference, moved dates to timestamps
12 years ago
Justin Richer bb7d6b2e94 split scopes table
12 years ago
Justin Richer ed99bd36cf changed clientdetails entity to use @Enumerated, cleaned up .sql file foreign keys
12 years ago
Justin Richer 2d8a5763a3 javafied auth holder class
12 years ago
Amanda Anganes 97d7bc9c13 added field to indicate whether the client has been dynamically registered
12 years ago
Amanda Anganes f724d3a9fe updated userinfo table definitions
12 years ago
Amanda Anganes 617e9568d8 Fixed bugs; I can get tokens now. User approval handler seems to be working corrrectly.
12 years ago
Amanda Anganes 49cb8bd0cb fixing bugs; needed to make all ids BIGINT AUTO-INCREMENT PRIMARY KEY in sql files
12 years ago
Amanda Anganes 0757642e67 removed "s" from allowed_scopes
12 years ago
Amanda Anganes 9c32e92da5 Cleaned up sql tables some more; sticking to _ naming convention
12 years ago
Amanda Anganes d7deda1699 Propogated AuthenticationHolder effects; this is untested but compiles and I think it is mostly correct
12 years ago
Amanda Anganes 90df91c351 Added AuthenticationHolder object, got references squared away for AccessToken side. Compiles.
12 years ago
Amanda Anganes cf348590b0 Removed unused ClientGeneratorFactory
12 years ago
Amanda Anganes d6d80c3e60 Gave OAuth2RefreshTokenEntity a Long Id
12 years ago
Amanda Anganes 6b1dad7215 Gave OAuth2AccessTokenEntity a Long Id
12 years ago
Amanda Anganes 780839dbf9 Made things compile after ClientDetailsEntity refactoring
12 years ago
Amanda Anganes a68a4f9796 Organized ClientDetailsEntity, updated JPA annotations. Updated sql files to match. Naming conventions: table and column names with multiple words should be seperated by underscores; table and column names should be singular.
12 years ago
Amanda Anganes 15428a875e Added additional fields to ClientDetailsEntity and did some reorganization, still some more to do. Added "id" field to the sql file, but the sql still needs all of the other additional fields.
12 years ago
Amanda Anganes 8d4e046408 All logging is now org.slf4j. We had a mix of org.slf4j and apache commons-logging. Added error logging to all view which throw errors.
13 years ago
Amanda Anganes a061e64abf Merge branch 'user-approval-handler-updated-rebase'
13 years ago
Amanda Anganes 5fb67ab7bb Did a lot of cleanup; untested but compiles
13 years ago
Amanda Anganes 2f28cf33e7 Changed UserInfo refs in WhitelistedSite to String ids; updated the user approval handler to check if "remember this decision" is checked and only make a new AP if so, and to pull in the scopes selected on the approval page as the saved allowed scopes for that AP.
13 years ago
Amanda Anganes b87d54b06e Changed UserInfo references to String "userId" references
13 years ago
Amanda Anganes 845976b8ac First stages of getting the graylist portion to work. Currently no mechanism for telling the system NOT to remember your decision; that will come later. All approvals will be automatically stored with this code.
13 years ago
Justin Richer 51b8dbe065 Revert "updated jwtHeader typ to use an enum" -- set things back to using a string
13 years ago
Justin Richer 164090e9d5 added jwt string stability to several places, fixed jwe parser
13 years ago
Amanda Anganes 676808bdac got things to deploy - could not reference UserInfo directly in ApprovedSite and WhitelistedSite; needed to reference DefaultUserInfo instead.
13 years ago
Amanda Anganes 4e10fce7ef Implementing user approval handler; made some modifications to ApprovedSite and WhitelistedSite models, repositories, and service layers.
13 years ago
Mike Derryberry 3b2268c622 updated jwtHeader typ to use an enum
13 years ago
Mike Derryberry 95dcb10472 updated encrypter/decrypter to store keys as member variables rather than to pass them in
13 years ago
Mike Derryberry 61c7231d9a updated encrypter and decrypter to use enum class rather than fragile parsing
13 years ago
Mike Derryberry 5f80ebc89a changing encryption/decryption code to use enum classes rather than shady parsing techniques
13 years ago
Justin Richer 789f41bdbe fixed client details regression
13 years ago
Justin Richer 3e6f66e2dc Merge branch 'master' of https://github.com/ssayer/OpenID-Connect-Java-Spring-Server into ssayer-pullreq-124
13 years ago
Justin Richer d07667576e cleaned up old code
13 years ago
Justin Richer 40f39a18e0 cleaning up introspection endpoint
13 years ago
Justin Richer f9dd9df7cd added skip to test for encryption if not running unlimited strength java
13 years ago
Justin Richer 92e779257d testing key sizes, still failing outside of bouncycastle
13 years ago
Samuel Sayer 1dd2aaf8a1 add JsonObject export for JWK keys
13 years ago
Justin Richer 319568d971 refactored JWA algorithm markers to use enum instead of string as stored class
13 years ago
Justin Richer 165f3ea292 fixed some unit tests, broke others
13 years ago
Mike Derryberry e4bc66ba33 small TODO statements cleared up
13 years ago
Mike Derryberry 4deaffd686 updated hmac and rsa signer to use afterPropertiesSet(), abstract oidc auth filter now adds multiple signers to map and then picks the one it needs, and key fetcher now gets jwk
13 years ago
Justin Richer 8b848af0fb cleaned up signer initialization calls and algorithm-setting code, cleaned up algorithm names, renamed encrypter/decrypter classes
13 years ago
Mike Derryberry d204ff1e69 removed constructor for RsaDecrypter and RsaEncrypter
13 years ago
Mike Derryberry 4f78c3db80 removed verification of signature in decryption
13 years ago
Mike Derryberry 1dbf2808c1 changed imports
13 years ago
Mike Derryberry e380d85ad7 updated encryption/decryption to dynamically get mode for cipher. also made the keyDataLen come from the kdf parameter rather than enc
13 years ago
Mike Derryberry 5d3d888c3f finished testing. fixed MessageDigest problems in generating cek and cik
13 years ago
Mike Derryberry 13e0a7c4bb tests for encryption/decryption done
13 years ago
Mike Derryberry 88a052019a added testing for encryption and decryption. slight bug where [ ] gets appended to clearText. working on that
13 years ago
Mike Derryberry 5152fa1c69 added tests for encryption and decryption. WIP
13 years ago
Mike Derryberry 26792d2fba updated decryption to generate cik and cek based off of key derivation
13 years ago
Mike Derryberry d86ee2329b updated encryption to generate cek and cik through key derivation. also fixed signers to use afterPropertiesSet()
13 years ago
Mike Derryberry 7e7cd4f480 update to encryption/decryption. added cmk, cek, and cik use
13 years ago
Mike Derryberry bc1ff0d964 updated jwe, jwt, and jwk models to have new parameters that were released in latest JOSE update
13 years ago
Mike Derryberry 70e90bc4c1 updated decryption
13 years ago
Mike Derryberry 025f7f3d66 updated encryption to sign using int value rather than alg
13 years ago
Justin Richer cd222ad66e got rid of ghost dependency in pom.xml for common
13 years ago
Mike Derryberry 754e8406bb removed web app from this git repository
13 years ago
Mike Derryberry 99a574d303 encryption completed, decryption WIP
13 years ago
Mike Derryberry cee44de3d1 updated encryption class to include AbstractJwtEncrypter
13 years ago
Mike Derryberry caf2a7b494 updated encryption service to encrypt key and claims and then sign the jwe. decryption updated to decrypt encrypted key and ciphertext
13 years ago
Mike Derryberry cf0ce7b1fb updated encryption and decryption for claims. WIP
13 years ago
Mike Derryberry e252951612 added encrypter/decrypter for claims to get ciphertext
13 years ago
Mike Derryberry 33cc3fa899 Added spring simple web app for testing, encryption and decryption classes for rsa and hmac, still WIP
13 years ago
Amanda Anganes 01793ec57f added preferred_username claim to userinfo endpoint
13 years ago
Amanda Anganes 50241e4da1 changed UserInfo.verified to UserInfo.emailVerified.
13 years ago
Justin Richer f0c949fd09 added scope-based filter for userinfo
13 years ago
Justin Richer c24a2206e9 updated jwtheader parser
13 years ago
Justin Richer ac7a53b234 bugfix: call setNonce instead of setType
13 years ago
Justin Richer a03129f70a added documentation updates
13 years ago
Justin Richer c619e736f9 removed eclipse files from repository
13 years ago
Justin Richer de1597b214 refresh token handling fixed, removed token factory references
13 years ago
Amanda Anganes 4e3c99abe4 Merge branch 'validityIntegers'
13 years ago
Amanda Anganes 81d1af40bd Updated our ClientDetailsEntity *TokenTimeout fields to be *ValiditySeconds, which are now typed as proper Integers in the SECOAUTH ClientDetails interface
13 years ago
Justin Richer 1127a7cfbc refactored JWKs, updated signing servier to use them
13 years ago
Justin Richer adb8499bee merged derryberry code, plus tweaks, still WIP
13 years ago
Mike Derryberry b1fc07bcb8 updated -common code to get a validation service from a server configuration
13 years ago
Amanda Anganes 2930719700 Added architecture diagram
13 years ago
Mike Derryberry b94fbd7439 updated -common and -client code by removing throws exception, changing to rest templates, and updating test cases to use annotations
13 years ago
Justin Richer fe3bbfb3d5 Further cleanups. Still missing:
13 years ago
Justin Richer b86abdd761 merge from pull request, plus cleanup
13 years ago
Justin Richer 731ad2e2e2 updated SECOAUTH reference, fixed some SQL files, temporarily closed token timeout issue
13 years ago
Justin Richer ace5dd1f1e imported userinfouserdetails filter from MITRE codebase
13 years ago
Mike Derryberry 65dc3daaf8 smart client
13 years ago
Amanda Anganes 2a05ff995d Added support for additional field in ClientDetailsEntity.java.
13 years ago
Mike Derryberry 3e810cb5dc Merge remote-tracking branch 'mitre/master'
13 years ago
Mike Derryberry fad6caa968 Added testing for signers for Hmac, Rsa, and Plaintext
13 years ago