- changed 3 files
Sunday 20 Apr
Adding new contributor.
Saturday 19 Apr
Updating to OpenSAML 2.6.1
Extract TokenStore implementations into a sub-package (anti-cycle)
Remove cycle in common util
Add utility endpoints for token consumers (resource servers)Added /oauth/check_token (POST token=$TOKEN) and /oauth/token_keyfor token decoding and (JWT only by default) token key sharing.The check_token endpoint always requires client credentials andBasic auth. The token_key endpoint requires client credentialsfor a shared key and is open if the key is public. Even whenauthenticated both endpoints are locked down (denyAll()) bydefault and have to be unlocked by adding tokenKeyAccess()or checkTokenAccess() to the AuthorizationServerSecurityConfigurer.A side effect is a change to the configuration semantics. Formerlyapps could declare a @Bean of type TokenStore and not have toexplicitly add it to the AuthorizationServerEndpointsConfigurer.Now it has to be added explicitly, unless as a bonus, theAuthorizationServerEndpointsConfigurer has an explicitAccessTokenConverter that is a JwtAccessTokenConverter, inwhich case the JwtTokenStore is added automatically.
Only display username in generic connection view if a username is available.
Add Spring Boot version of lite-device-resolver sample application
Friday 18 Apr
Rename project folders
CredentialsException is now only used for time errors in AuthnStatement. Changed exception in ArtifactResolution. Documentation update.
Minor improvements to error messages.
Adding missing check for issueInstant in artifact resolution profile.
Adding documentation for time checks.
Fix wrong version id in poms
Validate client details in DefaultTokenServices.loadAuthentication(token)If the ClientDetailsService is not-null it is used to validate the clientstill exists and still has access to the scopes in the token. This commitonly addresses the existence of the client. Scope checking is somethingthat ought to be ain a strategy and we don't have an appropriate oneright now so more thinking required.See gh-185
[maven-release-plugin] prepare for next development iteration
[maven-release-plugin] prepare release 2.0.0.RC1
Use artifactory repos directly
Fixup .mailmap fileFix a few issues with the `.mailmap` file.(cherry picked from commit 3a5de00c)
Fixup .mailmap fileFix a few issues with the `.mailmap` file.
Merge pull request #33 from nurkiewicz/ordered
Merge pull request #516 from GrahamLea/mailmap
Upgrade to Spring Framework 4.0.3
Added a Git .mailmap file
Added a Git .mailmap file(cherry picked from commit a5e1932c)
JMS Docbook PolishingClarify the use of a `TemporaryQueue` with a `<reply-listener/>`only applies when no `reply-destination` is provided.