0b1f9000db
check for missing refresh token value on refresh, closes #1242
2017-05-26 20:30:09 -04:00
661c242a9f
Updated copyrights
2017-05-26 20:17:17 -04:00
c11e47a75b
fixed unit test for new default redirect behavior
2017-05-11 11:27:41 -04:00
2f31ceddf8
set redirect URI matching to strict by default
2017-05-10 17:39:59 -04:00
713e872b8a
fixed discovery endpoint, closes #1230
2017-04-29 15:01:15 -04:00
9baacc0eaf
Completed end session endpoint
...
Addresses #1129 , addresses #972 , addresses #891 , addresses #1223
2017-04-29 14:58:37 -04:00
2aa12fc0e3
end session endpoint
2017-04-28 19:05:30 -04:00
0c46e7cb7a
skeleton of end session endpoint, maybe need a change to user info lookup
2017-04-27 14:29:05 -04:00
0d564d9714
made token service transactional, closes #1222
2017-04-14 15:27:16 -04:00
11f3cccab9
fix JWKS parsing in software statements, closes #1220
2017-04-14 14:42:49 -04:00
702a775881
handle creation time stamp in clients, closes #1210
2017-04-13 11:50:57 -04:00
45ea899de8
made user codes case insensitive
2017-04-12 16:00:23 -04:00
d317cf5024
added exception handling to device code creation step
2017-04-12 15:59:17 -04:00
cc0622edd0
internalized random string generation for device codes
2017-04-12 14:59:18 -04:00
903168a949
Decrease log level of trailing slash warning
...
Having an issuer without trailing slash configured is just fine, so
there is no reason to log a warning for this every time the discovery
endpoint is called.
2017-04-07 14:59:58 -04:00
835a326627
allow polling of device codes, fixed UI for device code input
2017-03-27 14:39:40 -05:00
32ce21b5cd
automated code formatting and cleanup
2017-03-21 14:07:20 -04:00
2a75535dce
fix unit tests and downstream calls
2017-03-16 18:00:05 -04:00
a926a8f0ab
cleaned up server-side stats service, UI now uses per-client calls
2017-03-16 17:31:26 -04:00
256b79ae51
lazy load client stats in UI
2017-03-16 17:20:04 -04:00
02928b048f
added software ID and version to data API
2017-03-15 17:38:46 -04:00
8406a89fd1
added device flow expiration
2017-03-14 17:40:30 -04:00
f54d44cd9d
added device code to discovery, moved device endpoints
2017-03-14 17:40:30 -04:00
f915196c2e
fix approval display
2017-03-14 17:40:29 -04:00
cbf5bf742b
added messages for display pages, better error handling in user-facing pages
2017-03-14 17:40:29 -04:00
153776ecb5
Don’t catch OAuth2 errors, let the framework handle them here
2017-03-14 17:40:28 -04:00
44b24af466
database storage for device flow
2017-03-14 17:40:28 -04:00
548dad4e29
added expiration to device codes
2017-03-14 17:40:27 -04:00
9cb5377ce8
added device code validity seconds to client model
2017-03-14 17:40:27 -04:00
a5b4115169
functioning device code flow
2017-03-14 17:40:26 -04:00
3326eee934
shell for device flow
2017-03-14 17:40:26 -04:00
c42fe57367
changed task operations to print out name of operation on run
2017-03-14 17:40:26 -04:00
72fd3c2b99
added ID Token Validity Seconds to data import/export API
2017-03-11 15:36:45 -05:00
98a4d56cdd
made extraction function less side-effect-ful
2017-03-03 17:20:15 -05:00
00ecd3dd22
Fix NPE if no claims are requested for the userinfo object
...
This happens if clients only requests id_token claims, or just send an empty claims parameter.
Change-Id: I8bd176ad271bda8a1e2f26b6221bd8e2d0a3ebfb
2017-03-03 16:09:51 -05:00
141f4da7f1
added PKCE editing capabilities to UI
2017-02-20 15:40:16 -05:00
c79b6da9d9
Javascript files for UI functionality loaded from configuration bean
2017-02-17 17:34:03 -05:00
b176d4d77e
cleaned up old endpoints
2017-02-16 18:24:21 -05:00
8178af87f0
further modularized data import/export service
2017-02-16 18:24:05 -05:00
52d2298f99
begin modularization of data import/export API
2017-02-15 11:51:32 -05:00
db50a88fe5
Happy New Year 2017
2017-01-17 17:09:14 -05:00
b17a7f43ae
removed structured scopes
2017-01-17 17:06:04 -05:00
46046b574a
Implemented paged operations and used for database cleanup tasks.
2017-01-17 15:36:57 -05:00
099211593c
Fix high load performance issue in token expiration task
2017-01-17 15:36:57 -05:00
91da3935f5
Made ID tokens ephemeral, made access token’s “additional information” extensible
2016-12-21 13:01:15 -05:00
4f4c8de1c8
Fix JPA issues to allow using Hibernate
2016-12-09 15:15:50 -05:00
22fa3605ef
Patched unit tests, still needs updates for checking approved site to token mapping on data import/export
2016-12-09 12:56:06 -05:00
55b1b00b73
Updated relationship between approved sites and access tokens, closes #874
2016-12-09 12:55:42 -05:00
d875d52be7
updated data import/export services for 1.3
2016-12-08 17:01:55 -05:00
7725fcfa2b
createAuthorizationCode should be @Transactional
...
An Authentication should not exist without its matching AuthorizationCode, but typically an AuthorizationCode will have a foreign key on an Authentication, meaning it can't be saved first. This block should be wrapped in a transaction so that other DB clients (say, for example, clearExpiredAuthorizationCodes) don't see an inconsistent snapshot and then misbehave.
2016-12-02 16:29:48 -05:00
Justin Richer