Colm O hEigeartaigh [Thu, 23 Nov 2017 14:33:50 +0000 (14:33 +0000)] 
[maven-release-plugin] prepare release fediz-1.4.3
Colm O hEigeartaigh [Thu, 23 Nov 2017 13:06:33 +0000 (13:06 +0000)]
Adding 1.4.3 release notes
(cherry picked from commit
d9391674db8dd20a76f0b441cbfd364a38c36b8d)
gonzalad [Fri, 17 Nov 2017 00:27:38 +0000 (01:27 +0100)] 
IDP maxParameter size is set only if positive
maxParameter size should be set only if positive,
otherwise, we'll use default value.
gonzalad [Tue, 14 Nov 2017 21:59:08 +0000 (22:59 +0100)]
fix ut Spring Plugin relativePath
Fix unit tests for Spring Plugin relativePath.
gonzalad [Tue, 14 Nov 2017 17:39:41 +0000 (18:39 +0100)]
id_token exp should be computed at creation time
id_token expiry claim is now computed at id_token generation time.
It was previously computed from SAML token expiry.
Since SAML token is generated once per OIDC httpSession
and can be reused for generating multiple id_token, it introduced
some issues where the id_token is generated with an already expired claim.
We now compute the exp claim as :
* use timeToLive attribute of FedizSubjectCreator if it is strictly positive.
* use maxInactiveInterval from httpSession if it is strictly positive.
* otherwise use the default of 1 hour.
gonzalad [Tue, 14 Nov 2017 17:40:27 +0000 (18:40 +0100)]
Add relativePath to Spring RP Plugin
The new relativePath allows to reference files
in fediz_config.xml from a relative location.
gonzalad [Sun, 12 Nov 2017 22:58:00 +0000 (23:58 +0100)]
DBLoaderSpring propagates caller environment
DBLoaderSpring now propagates the Spring
environment from the calling context.
gonzalad [Tue, 14 Nov 2017 17:49:33 +0000 (18:49 +0100)]
FEDIZ-212: fix logout when no httpSession present
* FEDIZ-212: fix logout when no httpSession present
Add allowAnonymousLogout attribute.
When this attribute is explicitly set to true, if a non-logged-in user
tries to logout, logout process continues without raising a OAuthServiceException.
Otherwise, it works as before : OIDC throws a OAuthServiceException if a non
logged-in user tries to logout.
Colm O hEigeartaigh [Tue, 14 Nov 2017 15:41:17 +0000 (15:41 +0000)]
Updating Tomcat
(cherry picked from commit
dd2e6ce7fdbfd7f1444d076259dc58cfc355ad56)
Colm O hEigeartaigh [Tue, 7 Nov 2017 10:34:31 +0000 (10:34 +0000)]
Updating CXF
Matthew Broadhead [Sat, 28 Oct 2017 18:20:07 +0000 (20:20 +0200)] 
Update HowToGenerateKeysREADME.html
- This closes #22
idp-ssl-key.jks is mentioned as idp-ssl-server.jks
Matthew Broadhead [Thu, 26 Oct 2017 08:53:04 +0000 (10:53 +0200)]
Update HowToGenerateKeysREADME.html
examples/samplekeys/ststrust.jks contains alias idpcert but this how to does not mention that it should be added
Colm O hEigeartaigh [Thu, 26 Oct 2017 11:34:43 +0000 (12:34 +0100)]
Compiler plugin upgrade
Colm O hEigeartaigh [Wed, 25 Oct 2017 11:10:00 +0000 (12:10 +0100)]
Updating BUILDING.txt for 1.4.x
Colm O hEigeartaigh [Wed, 25 Oct 2017 11:08:34 +0000 (12:08 +0100)]
Updating BUILDING.txt
Colm O hEigeartaigh [Wed, 25 Oct 2017 10:52:52 +0000 (11:52 +0100)]
Fixing formatting
Colm O hEigeartaigh [Thu, 19 Oct 2017 14:20:59 +0000 (15:20 +0100)]
Adding CSRF part for the login form
Colm O hEigeartaigh [Wed, 18 Oct 2017 11:49:10 +0000 (12:49 +0100)]
Updating surefire
Colm O hEigeartaigh [Wed, 11 Oct 2017 08:42:51 +0000 (09:42 +0100)]
FEDIZ-213 - Spring plugins don't handle token expiration properly
Colm O hEigeartaigh [Tue, 10 Oct 2017 15:21:23 +0000 (16:21 +0100)]
Missing files from last commit
Colm O hEigeartaigh [Tue, 10 Oct 2017 14:52:48 +0000 (15:52 +0100)]
Adding token expiration tests for the plugins
Colm O hEigeartaigh [Fri, 6 Oct 2017 16:48:57 +0000 (17:48 +0100)]
Porting fix to spring2
Colm O hEigeartaigh [Fri, 6 Oct 2017 16:20:40 +0000 (17:20 +0100)]
Minor fix
Colm O hEigeartaigh [Fri, 6 Oct 2017 15:16:19 +0000 (16:16 +0100)]
Some improvements to the Spring plugins
Colm O hEigeartaigh [Thu, 5 Oct 2017 14:23:14 +0000 (15:23 +0100)]
FEDIZ-211 - Local IdP redirection (after token expiry) is not working
Colm O hEigeartaigh [Fri, 29 Sep 2017 12:20:48 +0000 (13:20 +0100)]
FEDIZ-210 - Limit IdP request parameter size
Colm O hEigeartaigh [Tue, 12 Sep 2017 15:05:57 +0000 (16:05 +0100)]
[maven-release-plugin] prepare for next development iteration
Colm O hEigeartaigh [Tue, 12 Sep 2017 14:59:07 +0000 (15:59 +0100)]
[maven-release-plugin] prepare release fediz-1.4.2
Colm O hEigeartaigh [Tue, 12 Sep 2017 14:44:25 +0000 (15:44 +0100)]
Fixing tests with Java 7
Colm O hEigeartaigh [Tue, 12 Sep 2017 13:40:00 +0000 (14:40 +0100)]
Fixing scm stuff
Colm O hEigeartaigh [Tue, 12 Sep 2017 12:10:23 +0000 (13:10 +0100)]
Updating release notes for 1.4.2
Colm O hEigeartaigh [Tue, 12 Sep 2017 12:10:09 +0000 (13:10 +0100)]
FEDIZ-209 - Make FedizResponse properly serializable
Colm O hEigeartaigh [Mon, 11 Sep 2017 16:25:09 +0000 (17:25 +0100)]
Updating to released CXF version
Sergey Beryozkin [Fri, 8 Sep 2017 10:58:40 +0000 (11:58 +0100)] 
Adding an option to strip a path comp off from the dynamically calculated issuer uri
Colm O hEigeartaigh [Tue, 5 Sep 2017 15:59:47 +0000 (16:59 +0100)]
Revert "Temporarily revert to CXF 3.1.12"
This reverts commit
8a1e688ec57a99d648316dafc989f65930a10d46.
Sergey Beryozkin [Tue, 5 Sep 2017 15:52:19 +0000 (16:52 +0100)]
[FEDIZ-208] Strating from 3.1.13-SNAPSHOT
Sergey Beryozkin [Tue, 5 Sep 2017 10:04:35 +0000 (11:04 +0100)]
[FEDIZ-207] Properly reverting in 1.4.x
Colm O hEigeartaigh [Mon, 4 Sep 2017 17:05:48 +0000 (18:05 +0100)]
WSS4J + Kerby update
Sergey Beryozkin [Wed, 30 Aug 2017 15:54:51 +0000 (16:54 +0100)]
Merge branch '1.4.x-fixes' of https://git-wip-us.apache.org/repos/asf/cxf-fediz into 1.4.x-fixes
Sergey Beryozkin [Wed, 30 Aug 2017 15:54:41 +0000 (16:54 +0100)]
[FEDIZ-207] Introducing FedizPrincipal.getId()
Colm O hEigeartaigh [Wed, 30 Aug 2017 14:19:13 +0000 (15:19 +0100)]
Updating Tomcat8
Sergey Beryozkin [Tue, 29 Aug 2017 14:37:30 +0000 (15:37 +0100)]
[FEDIZ-207] Using the login name for a moment
Sergey Beryozkin [Mon, 28 Aug 2017 10:44:22 +0000 (11:44 +0100)]
Adding a name claim hint to the logout token
Sergey Beryozkin [Fri, 18 Aug 2017 10:28:57 +0000 (11:28 +0100)]
Tweaking a bit a stack trace related log message
Sergey Beryozkin [Fri, 18 Aug 2017 10:19:29 +0000 (11:19 +0100)]
And adding some logging to BackChannelLogoutHandler as suggested by Ievgen
Sergey Beryozkin [Fri, 18 Aug 2017 09:47:05 +0000 (10:47 +0100)]
Fixing a typo in BackChannelLogoutHandler as spotted by Ievgen Tarasov
Colm O hEigeartaigh [Wed, 16 Aug 2017 10:50:32 +0000 (11:50 +0100)]
Some dependency updates
Colm O hEigeartaigh [Mon, 14 Aug 2017 16:03:29 +0000 (17:03 +0100)]
[maven-release-plugin] prepare for next development iteration
Colm O hEigeartaigh [Mon, 14 Aug 2017 16:03:11 +0000 (17:03 +0100)]
[maven-release-plugin] prepare release fediz-1.4.1
Colm O hEigeartaigh [Mon, 14 Aug 2017 15:49:21 +0000 (16:49 +0100)]
Revert "[maven-release-plugin] prepare release fediz-1.4.1"
This reverts commit
079831f883b19a7aa1abdae5a27d601505f54b3f.
Colm O hEigeartaigh [Mon, 14 Aug 2017 15:49:15 +0000 (16:49 +0100)]
Revert "[maven-release-plugin] prepare for next development iteration"
This reverts commit
0179e99a946141c29c117f06d570cd7caa134965.
Colm O hEigeartaigh [Mon, 14 Aug 2017 14:26:14 +0000 (15:26 +0100)]
[maven-release-plugin] prepare for next development iteration
Colm O hEigeartaigh [Mon, 14 Aug 2017 14:25:55 +0000 (15:25 +0100)]
[maven-release-plugin] prepare release fediz-1.4.1
Colm O hEigeartaigh [Mon, 14 Aug 2017 14:09:29 +0000 (15:09 +0100)]
Revert "[maven-release-plugin] prepare release fediz-1.4.1"
This reverts commit
d30b76f2b8fa94933eb1a10a54cb51b04350f842.
Colm O hEigeartaigh [Mon, 14 Aug 2017 14:08:18 +0000 (15:08 +0100)]
[maven-release-plugin] prepare release fediz-1.4.1
Colm O hEigeartaigh [Mon, 14 Aug 2017 13:53:01 +0000 (14:53 +0100)]
Revert "[maven-release-plugin] prepare release fediz-1.4.1"
This reverts commit
b18ffd9cef246bbbcfe4bab64b8bfbdc0a1d5012.
Colm O hEigeartaigh [Mon, 14 Aug 2017 13:52:54 +0000 (14:52 +0100)]
Revert "[maven-release-plugin] prepare for next development iteration"
This reverts commit
91460b8287de1f3d9422d6cfd20b563bcb0acf22.
Colm O hEigeartaigh [Mon, 14 Aug 2017 13:27:17 +0000 (14:27 +0100)]
[maven-release-plugin] prepare for next development iteration
Colm O hEigeartaigh [Mon, 14 Aug 2017 13:26:57 +0000 (14:26 +0100)]
[maven-release-plugin] prepare release fediz-1.4.1
Colm O hEigeartaigh [Mon, 14 Aug 2017 12:04:56 +0000 (13:04 +0100)]
Fixing release with JDK7
Colm O hEigeartaigh [Mon, 14 Aug 2017 11:12:37 +0000 (12:12 +0100)]
Updating release notes
Colm O hEigeartaigh [Fri, 11 Aug 2017 14:45:58 +0000 (15:45 +0100)]
Fixing merge
Colm O hEigeartaigh [Fri, 11 Aug 2017 14:44:47 +0000 (15:44 +0100)]
Updating a few dependencies
Colm O hEigeartaigh [Thu, 10 Aug 2017 16:43:29 +0000 (17:43 +0100)]
Removing accidental commit
Colm O hEigeartaigh [Wed, 9 Aug 2017 17:02:11 +0000 (18:02 +0100)]
Upgrading Spring Webflow
Colm O hEigeartaigh [Wed, 9 Aug 2017 14:58:44 +0000 (15:58 +0100)]
Temporarily revert to CXF 3.1.12
Colm O hEigeartaigh [Wed, 9 Aug 2017 14:25:45 +0000 (15:25 +0100)]
Fix to default to taking the RACS URL from the application configuration.
Colm O hEigeartaigh [Wed, 9 Aug 2017 11:41:34 +0000 (12:41 +0100)]
FEDIZ-205 - Support creating IdP Metadata for SAML SSO
Colm O hEigeartaigh [Wed, 9 Aug 2017 11:39:19 +0000 (12:39 +0100)]
Fixing tests
Colm O hEigeartaigh [Wed, 9 Aug 2017 10:45:37 +0000 (11:45 +0100)]
Switch the SAML issuer to be the IDP URL as opposed to the realm
Colm O hEigeartaigh [Wed, 9 Aug 2017 09:26:38 +0000 (10:26 +0100)]
Return the IdP metadata if no realm is specified.
Colm O hEigeartaigh [Fri, 4 Aug 2017 11:57:52 +0000 (12:57 +0100)]
Used StandardCharsets in a few places
Jan Bernhardt [Fri, 28 Jul 2017 16:33:15 +0000 (18:33 +0200)] 
[Fediz-203] Making roles available for custom userInfoProvider
Colm O hEigeartaigh [Mon, 24 Jul 2017 16:38:48 +0000 (17:38 +0100)]
Make sure we have an IdP token
Colm O hEigeartaigh [Wed, 12 Jul 2017 17:03:30 +0000 (18:03 +0100)]
Removing some printlns
Colm O hEigeartaigh [Wed, 12 Jul 2017 15:39:05 +0000 (16:39 +0100)]
Adding a test to show how to federate "unknown" subjects in the local STS
Sergey Beryozkin [Wed, 12 Jul 2017 14:40:13 +0000 (15:40 +0100)]
[FEDIZ-203] Adding Jan's test too
Sergey Beryozkin [Wed, 12 Jul 2017 13:45:30 +0000 (14:45 +0100)]
[FEDIZ-203] Fediz-level work based on Jan's contribution
Colm O hEigeartaigh [Mon, 10 Jul 2017 10:48:47 +0000 (11:48 +0100)]
Adding roles tests
Colm O hEigeartaigh [Mon, 10 Jul 2017 10:40:13 +0000 (11:40 +0100)]
Fixing typo with using URI as the key instead of a String
Sergey Beryozkin [Fri, 7 Jul 2017 12:11:31 +0000 (13:11 +0100)]
Reporting the roles as JSON array only
Sergey Beryozkin [Fri, 7 Jul 2017 11:50:09 +0000 (12:50 +0100)]
And setting it on the subjectCreator
Sergey Beryozkin [Fri, 7 Jul 2017 11:42:42 +0000 (12:42 +0100)]
Making the roles supported OOB
Sergey Beryozkin [Fri, 7 Jul 2017 11:28:08 +0000 (12:28 +0100)]
Adjusting a bit the way the role claim is checked
Colm O hEigeartaigh [Mon, 3 Jul 2017 14:01:16 +0000 (15:01 +0100)]
Fixing system test to always send Basic Auth creds to the token endpoint
Colm O hEigeartaigh [Mon, 3 Jul 2017 09:01:48 +0000 (10:01 +0100)]
CXF upgrade
Sergey Beryozkin [Fri, 23 Jun 2017 10:26:55 +0000 (11:26 +0100)]
Normalizing logout service URIs, patch from Adrian Gonzalez applied, This closes #19
Colm O hEigeartaigh [Thu, 8 Jun 2017 09:18:58 +0000 (10:18 +0100)]
Exclude bouncyCastle from the IdP
Colm O hEigeartaigh [Wed, 7 Jun 2017 16:16:25 +0000 (17:16 +0100)]
Remove unused version
Colm O hEigeartaigh [Wed, 7 Jun 2017 10:18:08 +0000 (11:18 +0100)]
Apache DS upgrade
Colm O hEigeartaigh [Tue, 6 Jun 2017 16:26:10 +0000 (17:26 +0100)]
Adding token hint test
Sergey Beryozkin [Fri, 2 Jun 2017 16:02:00 +0000 (17:02 +0100)]
Using the right Client instance for handling back channel requests
Sergey Beryozkin [Fri, 2 Jun 2017 15:58:11 +0000 (16:58 +0100)]
Making sure a given Client only gets a single back channel logout request
Sergey Beryozkin [Fri, 2 Jun 2017 12:43:21 +0000 (13:43 +0100)]
Minonr update
Sergey Beryozkin [Fri, 2 Jun 2017 12:42:31 +0000 (13:42 +0100)]
Making sure BackChannel handler can use id_token_hint if it is available
Sergey Beryozkin [Fri, 2 Jun 2017 12:22:45 +0000 (13:22 +0100)]
Prototyping the initial back channel logout code
Sergey Beryozkin [Wed, 31 May 2017 15:39:13 +0000 (16:39 +0100)]
Converting JoseException to 400
Sergey Beryozkin [Wed, 31 May 2017 13:39:10 +0000 (14:39 +0100)]
idp_token_hint support for LogoutService
Sergey Beryozkin [Wed, 31 May 2017 10:15:18 +0000 (11:15 +0100)]
Enforcing that if a client provides a logout_uri a size of the list of post_logout_uris is 1 then the values must match
Colm O hEigeartaigh [Thu, 25 May 2017 19:30:42 +0000 (20:30 +0100)]
Updating BouncyCastle
projects / cxf-fediz.git / log
