Clone Tools
  • last updated 13 mins ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
Upgrade CXF to 3.3.x

  1. … 8 more files in changeset.
Fixed some NPEs in the Fediz OIDC client registration console.

    • -0
    • +12
    ./clients/ClientRegistrationService.java
Fixed some NPEs in the Fediz OIDC client registration console.

    • -0
    • +12
    ./clients/ClientRegistrationService.java
Upgrading PMD + Errorprone

    • -1
    • +1
    ./clients/ClientRegistrationService.java
  1. … 4 more files in changeset.
FEDIZ-234 - Escape logging output in LoginHintHomeRealmDiscovery

    • -3
    • +4
    ./handler/hrd/LoginHintHomeRealmDiscovery.java
  1. … 2 more files in changeset.
FEDIZ-234 - Escape logging output in LoginHintHomeRealmDiscovery

    • -3
    • +4
    ./handler/hrd/LoginHintHomeRealmDiscovery.java
  1. … 2 more files in changeset.
More diamond operator cleanup

    • -2
    • +2
    ./clients/ClientRegistrationService.java
  1. … 2 more files in changeset.
Diamond operator cleanup

    • -1
    • +1
    ./clients/ClientRegistrationService.java
Removing some redundant type declarations

    • -4
    • +4
    ./clients/ClientRegistrationService.java
    • -1
    • +1
    ./logout/BackChannelLogoutHandler.java
  1. … 3 more files in changeset.
FEDIZ-228 - Add the "jti" claim in FedizSubjectCreator

FEDIZ-228 - Add the "jti" claim in FedizSubjectCreator

Use "L" when defining a long constant

Use "L" when defining a long constant

FEDIZ-212: fix logout when no httpSession present

* FEDIZ-212: fix logout when no httpSession present

Add allowAnonymousLogout attribute.

When this attribute is explicitly set to true, if a non-logged-in user

tries to logout, logout process continues without raising a OAuthServiceException.

Otherwise, it works as before : OIDC throws a OAuthServiceException if a non

logged-in user tries to logout.

FEDIZ-212: fix logout when no httpSession present

* FEDIZ-212: fix logout when no httpSession present

Add allowAnonymousLogout attribute.

When this attribute is explicitly set to true, if a non-logged-in user

tries to logout, logout process continues without raising a OAuthServiceException.

Otherwise, it works as before : OIDC throws a OAuthServiceException if a non

logged-in user tries to logout.

id_token exp should be computed at creation time

id_token expiry claim is now computed at id_token generation time.

It was previously computed from SAML token expiry.

Since SAML token is generated once per OIDC httpSession

and can be reused for generating multiple id_token, it introduced

some issues where the id_token is generated with an already expired claim.

We now compute the exp claim as :

* use timeToLive attribute of FedizSubjectCreator if it is strictly positive.

* use maxInactiveInterval from httpSession if it is strictly positive.

* otherwise use the default of 1 hour.

id_token exp should be computed at creation time

id_token expiry claim is now computed at id_token generation time.

It was previously computed from SAML token expiry.

Since SAML token is generated once per OIDC httpSession

and can be reused for generating multiple id_token, it introduced

some issues where the id_token is generated with an already expired claim.

We now compute the exp claim as :

* use timeToLive attribute of FedizSubjectCreator if it is strictly positive.

* use maxInactiveInterval from httpSession if it is strictly positive.

* otherwise use the default of 1 hour.

Adding an option to strip a path comp off from the dynamically calculated issuer uri

Adding an option to strip a path comp off from the dynamically calculated issuer uri

Revert "Temporarily revert to CXF 3.1.12"

This reverts commit 8a1e688ec57a99d648316dafc989f65930a10d46.

[FEDIZ-207] Properly reverting in 1.4.x

  1. … 10 more files in changeset.
[FEDIZ-207] Introducing FedizPrincipal.getId()

  1. … 10 more files in changeset.
[FEDIZ-207] Using the login name for a moment

[FEDIZ-207] Using the login name for a moment

Adding a name claim hint to the logout token

    • -1
    • +5
    ./logout/BackChannelLogoutHandler.java
Adding a name claim hint to the logout token

    • -1
    • +5
    ./logout/BackChannelLogoutHandler.java
Tweaking a bit a stack trace related log message

    • -1
    • +1
    ./logout/BackChannelLogoutHandler.java
Tweaking a bit a stack trace related log message

    • -1
    • +1
    ./logout/BackChannelLogoutHandler.java
And adding some logging to BackChannelLogoutHandler as suggested by Ievgen

    • -3
    • +10
    ./logout/BackChannelLogoutHandler.java
And adding some logging to BackChannelLogoutHandler as suggested by Ievgen

    • -3
    • +10
    ./logout/BackChannelLogoutHandler.java