sling-org-apache-sling-auth-saml2.git
8 months agoSLING-11051 - Fixing JavaDoc badge master
Dan Klco [Tue, 11 Jan 2022 13:10:23 +0000 (08:10 -0500)] 
SLING-11051 - Fixing JavaDoc badge

13 months agoallow noKey for org.reflections due to missing key as described in https://github...
Cris Rockwell [Wed, 25 Aug 2021 17:50:38 +0000 (13:50 -0400)] 
allow noKey for org.reflections due to missing key as described in https://github.com/ronmamo/reflections/issues/330

13 months agoupdate pgpverify-maven-plugin version to latest
Cris Rockwell [Wed, 25 Aug 2021 17:13:40 +0000 (13:13 -0400)] 
update pgpverify-maven-plugin version to latest

14 months agoSLING-10676 - remove SECURITY.md which is not needed
Bertrand Delacretaz [Fri, 30 Jul 2021 08:46:07 +0000 (10:46 +0200)] 
SLING-10676 - remove SECURITY.md which is not needed

14 months agoSLING-10676 - add or update SECURITY.md
Bertrand Delacretaz [Wed, 28 Jul 2021 14:24:34 +0000 (16:24 +0200)] 
SLING-10676 - add or update SECURITY.md

14 months agoSLING-10676 - add or update SECURITY.md
Bertrand Delacretaz [Wed, 28 Jul 2021 14:12:47 +0000 (16:12 +0200)] 
SLING-10676 - add or update SECURITY.md

14 months ago[maven-release-plugin] prepare for next development iteration
Cris Rockwell [Fri, 2 Jul 2021 15:06:29 +0000 (11:06 -0400)] 
[maven-release-plugin] prepare for next development iteration

14 months ago[maven-release-plugin] prepare release org.apache.sling.auth.saml2-0.2.6 org.apache.sling.auth.saml2-0.2.6
Cris Rockwell [Fri, 2 Jul 2021 15:06:20 +0000 (11:06 -0400)] 
[maven-release-plugin] prepare release org.apache.sling.auth.saml2-0.2.6

14 months agoremove duplicated dependency checker-qual from pom
Cris Rockwell [Fri, 2 Jul 2021 15:02:23 +0000 (11:02 -0400)] 
remove duplicated dependency checker-qual from pom

15 months agoadded tests for Saml2UserMgtServiceImpl NPE scenarios
Cris Rockwell [Wed, 30 Jun 2021 15:02:10 +0000 (11:02 -0400)] 
added tests for Saml2UserMgtServiceImpl NPE scenarios

15 months agoadded tests for Saml2UserMgtServiceImpl NPE scenarios
Cris Rockwell [Tue, 29 Jun 2021 22:27:34 +0000 (18:27 -0400)] 
added tests for Saml2UserMgtServiceImpl NPE scenarios

15 months agoRemoved embeds for xmlsec, metrics-core, velocity-engine-core, and commons-lang....
Cris Rockwell [Tue, 29 Jun 2021 21:54:49 +0000 (17:54 -0400)] 
Removed embeds for xmlsec, metrics-core, velocity-engine-core, and commons-lang. These are now bundle dependencies instead of embeded jars in the saml classpath

15 months agocheck for null to fix sonarcloud
Cris Rockwell [Tue, 29 Jun 2021 17:23:16 +0000 (13:23 -0400)] 
check for null to fix sonarcloud

15 months agocatch possible NPE when setting up Saml2UserMgtService
Cris Rockwell [Tue, 29 Jun 2021 17:10:31 +0000 (13:10 -0400)] 
catch possible NPE when setting up Saml2UserMgtService

15 months agoClear security hotspot updating SHA to SHA-256
Cris Rockwell [Tue, 29 Jun 2021 14:34:59 +0000 (10:34 -0400)] 
Clear security hotspot updating SHA to SHA-256

15 months agoRemoved maven dependency ranges notation [1.x,2.x] in place of version or greater...
Cris Rockwell [Tue, 29 Jun 2021 14:23:29 +0000 (10:23 -0400)] 
Removed maven dependency ranges notation [1.x,2.x] in place of version or greater notation 1.x

16 months ago[maven-release-plugin] prepare for next development iteration
Cris Rockwell [Thu, 27 May 2021 18:37:59 +0000 (14:37 -0400)] 
[maven-release-plugin] prepare for next development iteration

16 months ago[maven-release-plugin] prepare release org.apache.sling.auth.saml2-0.2.4 org.apache.sling.auth.saml2-0.2.4
Cris Rockwell [Thu, 27 May 2021 18:37:51 +0000 (14:37 -0400)] 
[maven-release-plugin] prepare release org.apache.sling.auth.saml2-0.2.4

16 months agoupdated the shibboleth repo from public to releases
Cris Rockwell [Wed, 19 May 2021 19:54:11 +0000 (15:54 -0400)] 
updated the shibboleth repo from public to releases

16 months ago[maven-release-plugin] prepare for next development iteration
Cris Rockwell [Wed, 19 May 2021 13:33:03 +0000 (09:33 -0400)] 
[maven-release-plugin] prepare for next development iteration

16 months ago[maven-release-plugin] prepare release org.apache.sling.auth.saml2-0.2.2 org.apache.sling.auth.saml2-0.2.2
Cris Rockwell [Wed, 19 May 2021 13:32:54 +0000 (09:32 -0400)] 
[maven-release-plugin] prepare release org.apache.sling.auth.saml2-0.2.2

16 months agoreset version to redo release prep
Cris Rockwell [Wed, 19 May 2021 13:27:55 +0000 (09:27 -0400)] 
reset version to redo release prep

16 months agoremoved old empty scm tag
Cris Rockwell [Wed, 19 May 2021 13:21:49 +0000 (09:21 -0400)] 
removed old empty scm tag

16 months agoadded scm to the pom.xml properties
Cris Rockwell [Wed, 19 May 2021 13:19:56 +0000 (09:19 -0400)] 
added scm to the pom.xml properties

16 months agoremoved files unintended while preparing release
Cris Rockwell [Wed, 19 May 2021 12:49:21 +0000 (08:49 -0400)] 
removed files unintended while preparing release

16 months ago[maven-release-plugin] prepare release org.apache.sling.auth.saml2-0.2.2
Cris Rockwell [Tue, 18 May 2021 21:26:04 +0000 (17:26 -0400)] 
[maven-release-plugin] prepare release org.apache.sling.auth.saml2-0.2.2

16 months agoupdate javadocs
Cris Rockwell [Tue, 18 May 2021 21:18:41 +0000 (17:18 -0400)] 
update javadocs

16 months agoupdate javadocs
Cris Rockwell [Tue, 18 May 2021 21:15:43 +0000 (17:15 -0400)] 
update javadocs

16 months agoupdate version to odd numbered snapshot in preparation for even number release
Cris Rockwell [Mon, 17 May 2021 15:53:06 +0000 (11:53 -0400)] 
update version to odd numbered snapshot in preparation for even number release

16 months agoupdate version to odd numbered snapshot in preparation for even number release
Cris Rockwell [Mon, 17 May 2021 15:38:01 +0000 (11:38 -0400)] 
update version to odd numbered snapshot in preparation for even number release

16 months agoMerge pull request #3 from apache/feature/check-sign-of-embedded
Cris Rockwell [Mon, 17 May 2021 13:32:43 +0000 (09:32 -0400)] 
Merge pull request #3 from apache/feature/check-sign-of-embedded

Feature/check sign of embedded

16 months agoConfigure pgpverify-maven-plugin to verify signatures of all embedded artifacts using... feature/check-sign-of-embedded 3/head
Cris Rockwell [Thu, 13 May 2021 21:40:41 +0000 (17:40 -0400)] 
Configure pgpverify-maven-plugin to verify signatures of all embedded artifacts using independently verified keys. Check signature of all other dependencies using in-band keys if available.

17 months agoShib repo is needed feature/remove-unused-repo 1/head
Cris Rockwell [Mon, 26 Apr 2021 20:20:53 +0000 (16:20 -0400)] 
Shib repo is needed

17 months agoRemoved shibboleth repo from project. Configured pgpverify-maven-plugin to validate...
Cris Rockwell [Mon, 26 Apr 2021 17:00:38 +0000 (13:00 -0400)] 
Removed shibboleth repo from project. Configured pgpverify-maven-plugin to validate Sling and SAML deps using asc.txt included. Others will validate artifacts using in-band signatures

17 months agoUpgrade to parent version 41, version 40 is affected by SLING-9972
Robert Munteanu [Mon, 26 Apr 2021 12:32:16 +0000 (14:32 +0200)] 
Upgrade to parent version 41, version 40 is affected by SLING-9972

17 months agoadd shib repo back to see if build works again with verified signatures
Cris Rockwell [Fri, 23 Apr 2021 21:06:20 +0000 (17:06 -0400)] 
add shib repo back to see if build works again with verified signatures

17 months agoremoved unused dependency
Cris Rockwell [Fri, 23 Apr 2021 20:38:19 +0000 (16:38 -0400)] 
removed unused dependency

17 months agoAdded plugin that verifies dependency signatures
Cris Rockwell [Fri, 23 Apr 2021 19:44:44 +0000 (15:44 -0400)] 
Added plugin that verifies dependency signatures

17 months agoRemoved unused Maven repository
Robert Munteanu [Fri, 23 Apr 2021 14:44:55 +0000 (16:44 +0200)] 
Removed unused Maven repository

17 months agochange algorithm for SAML2 token store from HmacSHA1 to HmacSHA256
Cris Rockwell [Tue, 20 Apr 2021 16:33:08 +0000 (12:33 -0400)] 
change algorithm for SAML2 token store from HmacSHA1 to HmacSHA256

17 months agoupdate asf label
Cris Rockwell [Fri, 16 Apr 2021 18:35:13 +0000 (14:35 -0400)] 
update asf label

17 months agoCI to build with Java 11
Cris Rockwell [Fri, 16 Apr 2021 16:25:31 +0000 (12:25 -0400)] 
CI to build with Java 11

17 months agoadd project boilerplate and update README.md
Cris Rockwell [Fri, 16 Apr 2021 15:48:53 +0000 (11:48 -0400)] 
add project boilerplate and update README.md

17 months agoadd git ignore file
Cris Rockwell [Fri, 16 Apr 2021 13:59:52 +0000 (09:59 -0400)] 
add git ignore file

17 months agofix merge conflicts and sonarcloud code smells
Cris Rockwell, College of LSA University of Michigan [Fri, 9 Apr 2021 17:55:09 +0000 (13:55 -0400)] 
fix merge conflicts and sonarcloud code smells

17 months agoSling 9397/update removed saml config service (#69)
Cris Rockwell [Fri, 9 Apr 2021 12:35:07 +0000 (08:35 -0400)] 
Sling 9397/update removed saml config service (#69)

* removed optional transititve for Spring's org.relaxng.datatype from dom4j, which itself is not needed

* saml-handler: pom.xml / bnd usage cleanups

* Added method to validate subject confirmation

* plugin renamed from maven-sling-plugin to sling-maven-plugin

* clean up bugs and code smell

* added noticeStatement property

* merged upstream master

* Upgraded SAML2 Handler to OpenSAML V4. Java 11. Sling 12. Reviewed and optimized embedded OpenSAML dependencies and updated versions.

update docs

made encryption and signing an optional configuration

Backed out SLO for now and moved that to a different branch. Logout in this branch simply drops the credentials for this Service Provider and redirects the client to the URL configured

Added error handling runtime exception if the userID is not configured properly. JCR Group ID's now seem to slash in front so added condition to allow that. Updated realm-sling-export.json (for Keycloak demo) adding attribute mappers for client, http://localhost:8080

updated readme and added localhost test package

* Added custom runtime exception class for unhandled exceptions. Removed commented and unused code

* added license

* Removed attribution under license. Refactored JKS password to char[]. Reduced duplication Credentials classes. Removed Notice. Removed JCR test package from resources

* removed unused imports. added missing license

* started demo saml2 project

* updated comments

* To get repoinit working, moved configs from /apps/sling/saml/runmodes/config  to /apps/runmodes/configs

* fix 'catch multiple exceptions at once' code smell

* Started Example SAML2 project that will provide faster test setup providing JKS, service user, ACL's, dependencies, and SlingJunit tests

* space change

* fix pom error

* fix sonar bug and smells

* Fixed startup problem by setting startLevel to 19

* Refactor example setup and configuration project (saml-example)

* moved example realm to example project

* Export Package of oak-auth-external dependency simplifies setup

* update documentation

* Updated READMME Docs for clarifying processes for SSL and SAML credentials

* Refactored and removed saml2 config service

* fix bugs identified by sonarcloud

* added javadocs to Saml2UserMgtService, update usage in AuthenticationHandlerSAML2Impl

* Reduce complexity of extractCredentials in AuthenticationHandlerSAML2Impl. Change path to single value property since AuthenticationHandlerSAML2Config is used as a factory

* sonarcloud code smell fixes

* started junit tests for AuthenticationHandlerSAML2Impl

* Started PAX tests for saml-handler. IT tests seem inoperational in this commit

* WIP: continuing work to increase test converage

* continued struggling with test setup

* continuing work on pax tests

* cont'd with SAML2 tests after initializing OpenSAML in OsgiSamlTest.java

* added tests for issuer and nameIDpolicy

* added Endpoint unit tests

* Sling 9397/improve test coverage (#70)

* Started PAX tests for saml-handler. IT tests seem inoperational in this commit

* WIP: continuing work to increase test converage

* continued struggling with test setup

* continuing work on pax tests

* cont'd with SAML2 tests after initializing OpenSAML in OsgiSamlTest.java

* added tests for issuer and nameIDpolicy

* added Endpoint unit tests

* continuing progress on pax exam it tests

* continuing progress on pax exam it tests

* attempt to fix the paxexam test environment

1. export the org.apache.sling.auth.saml2 package
2. don't change the startlevel in the Activator
3. provide the required configuration for the
AuthenticationHandlerSAML2Impl service

* SLING-10193 Added test coverage for Saml2User.java and Saml2UserMgtService.java. Moved Saml2User.java into saml2 package so that it accesses by tests

* SLING-9397 Updated the example configs to reflect the new PID for configuting AuthenticationHandlerSAML2

* clean up

* SLING-9397 Added IT test coverage for Saml2UserMgtService

* add java coco to pom

* code coverage tool not working, commented out

* Added tests for Helpers

* trying to get jacoco to report IT test coverage

* fixed parent version

* SAML Handler manages user sync with Saml2UserSyncService so extending Jackrabbit ExternalUser is not needed

* continued doUserManagement testing

* Sling 10193/test coverage (#72)

* SAML Handler manages user sync with Saml2UserSyncService so extending Jackrabbit ExternalUser is not needed

* continued doUserManagement testing

* Added setup for Java Keystore tests, added tests for JksCredentials, KeyPairCredentials and VerifySignatureCredentials

* Refactor TokenStore.java and AuthenticationHandlerSAML2Impl.java to allow junit tests

* remove unimplemented constructor

* improve unit test coverage

* add one IT test and clean up

* updated pom.xml with dependency version ranges

* continued improving test coverage

* continued improving test coverage

* text coverage

* SLING-10193 set and remove JAAS config upon bundle activator start and stop

* improve testing for user management and sync

* Updated properties sync to use a mapping defined in the OSGI configs such that the name and relative path of the save property can be configured (instead of using the saml attribute's Friendly Name)

Co-authored-by: Robert Munteanu <rombert@apache.org>
Co-authored-by: Eric Norman <enorman@apache.org>
2 years agoSaml2 auth handler/upgrade sling12 open samlv4 java11 (#62)
Cris Rockwell [Thu, 13 Aug 2020 14:41:13 +0000 (10:41 -0400)] 
Saml2 auth handler/upgrade sling12 open samlv4 java11 (#62)

* removed optional transititve for Spring's org.relaxng.datatype from dom4j, which itself is not needed

* saml-handler: pom.xml / bnd usage cleanups

* Added method to validate subject confirmation

* plugin renamed from maven-sling-plugin to sling-maven-plugin

* clean up bugs and code smell

* added noticeStatement property

* merged upstream master

* Upgraded SAML2 Handler to OpenSAML V4. Java 11. Sling 12. Reviewed and optimized embedded OpenSAML dependencies and updated versions.

update docs

made encryption and signing an optional configuration

Backed out SLO for now and moved that to a different branch. Logout in this branch simply drops the credentials for this Service Provider and redirects the client to the URL configured

Added error handling runtime exception if the userID is not configured properly. JCR Group ID's now seem to slash in front so added condition to allow that. Updated realm-sling-export.json (for Keycloak demo) adding attribute mappers for client, http://localhost:8080

updated readme and added localhost test package

* Added custom runtime exception class for unhandled exceptions. Removed commented and unused code

* added license

* Removed attribution under license. Refactored JKS password to char[]. Reduced duplication Credentials classes. Removed Notice. Removed JCR test package from resources

* removed unused imports. added missing license

* started demo saml2 project

* updated comments

* To get repoinit working, moved configs from /apps/sling/saml/runmodes/config  to /apps/runmodes/configs

* fix 'catch multiple exceptions at once' code smell

* Started Example SAML2 project that will provide faster test setup providing JKS, service user, ACL's, dependencies, and SlingJunit tests

* space change

* fix pom error

* fix sonar bug and smells

* Fixed startup problem by setting startLevel to 19

* Refactor example setup and configuration project (saml-example)

* moved example realm to example project

* Export Package of oak-auth-external dependency simplifies setup

* update documentation

* Updated READMME Docs for clarifying processes for SSL and SAML credentials

Co-authored-by: Robert Munteanu <rombert@apache.org>
2 years agoUpdated READMME Docs for clarifying processes for SSL and SAML credentials
Cris Rockwell, College of LSA University of Michigan [Wed, 1 Jul 2020 19:57:02 +0000 (15:57 -0400)] 
Updated READMME Docs for clarifying processes for SSL and SAML credentials

2 years agoupdate documentation
Cris Rockwell, College of LSA University of Michigan [Tue, 30 Jun 2020 19:53:27 +0000 (15:53 -0400)] 
update documentation

2 years agoExport Package of oak-auth-external dependency simplifies setup
Cris Rockwell, College of LSA University of Michigan [Tue, 30 Jun 2020 19:52:08 +0000 (15:52 -0400)] 
Export Package of oak-auth-external dependency simplifies setup

2 years agomoved example realm to example project
Cris Rockwell, College of LSA University of Michigan [Tue, 30 Jun 2020 19:50:02 +0000 (15:50 -0400)] 
moved example realm to example project

2 years agoFixed startup problem by setting startLevel to 19
Cris Rockwell, College of LSA University of Michigan [Mon, 29 Jun 2020 20:55:20 +0000 (16:55 -0400)] 
Fixed startup problem by setting startLevel to 19

2 years agofix sonar bug and smells
Cris Rockwell, College of LSA University of Michigan [Fri, 26 Jun 2020 21:55:50 +0000 (17:55 -0400)] 
fix sonar bug and smells

2 years agospace change
Cris Rockwell, College of LSA University of Michigan [Fri, 26 Jun 2020 21:30:07 +0000 (17:30 -0400)] 
space change

2 years agofix 'catch multiple exceptions at once' code smell
Cris Rockwell, College of LSA University of Michigan [Thu, 25 Jun 2020 19:45:21 +0000 (15:45 -0400)] 
fix 'catch multiple exceptions at once' code smell

2 years agoupdated comments
Cris Rockwell, College of LSA University of Michigan [Thu, 25 Jun 2020 17:54:38 +0000 (13:54 -0400)] 
updated comments

2 years agoremoved unused imports. added missing license
Cris Rockwell, College of LSA University of Michigan [Thu, 25 Jun 2020 13:35:17 +0000 (09:35 -0400)] 
removed unused imports. added missing license

2 years agoRemoved attribution under license. Refactored JKS password to char[]. Reduced duplica...
Cris Rockwell, College of LSA University of Michigan [Thu, 25 Jun 2020 12:59:19 +0000 (08:59 -0400)] 
Removed attribution under license. Refactored JKS password to char[]. Reduced duplication Credentials classes. Removed Notice. Removed JCR test package from resources

2 years agoadded license
Cris Rockwell [Wed, 24 Jun 2020 18:10:17 +0000 (14:10 -0400)] 
added license

2 years agoAdded custom runtime exception class for unhandled exceptions. Removed commented...
Cris Rockwell [Wed, 24 Jun 2020 17:52:39 +0000 (13:52 -0400)] 
Added custom runtime exception class for unhandled exceptions. Removed commented and unused code

2 years agoUpgraded SAML2 Handler to OpenSAML V4. Java 11. Sling 12. Reviewed and optimized...
Cris Rockwell [Thu, 18 Jun 2020 17:21:37 +0000 (13:21 -0400)] 
Upgraded SAML2 Handler to OpenSAML V4. Java 11. Sling 12. Reviewed and optimized embedded OpenSAML dependencies and updated versions.

update docs

made encryption and signing an optional configuration

Backed out SLO for now and moved that to a different branch. Logout in this branch simply drops the credentials for this Service Provider and redirects the client to the URL configured

Added error handling runtime exception if the userID is not configured properly. JCR Group ID's now seem to slash in front so added condition to allow that. Updated realm-sling-export.json (for Keycloak demo) adding attribute mappers for client, http://localhost:8080

updated readme and added localhost test package

2 years agomerged upstream master
Cris Rockwell [Thu, 14 May 2020 13:54:04 +0000 (09:54 -0400)] 
merged upstream master

2 years agomerged upstream master
Cris Rockwell [Thu, 14 May 2020 13:51:03 +0000 (09:51 -0400)] 
merged upstream master

2 years agoSLING-9397 - SAML2 Authentication Handler [initial submission]
Robert Munteanu [Thu, 14 May 2020 07:25:26 +0000 (09:25 +0200)] 
SLING-9397 - SAML2 Authentication Handler [initial submission]

Switch NOTICE to pom property so that it ends up in the notice file
from the Jar.

Slightly tweaked the wording as well.

2 years agoadded noticeStatement property
Cris Rockwell [Fri, 8 May 2020 14:15:01 +0000 (10:15 -0400)] 
added noticeStatement property

2 years agoclean up bugs and code smell
Cris Rockwell [Wed, 6 May 2020 22:18:38 +0000 (18:18 -0400)] 
clean up bugs and code smell

2 years agoplugin renamed from maven-sling-plugin to sling-maven-plugin
Cris Rockwell [Wed, 6 May 2020 20:19:57 +0000 (16:19 -0400)] 
plugin renamed from maven-sling-plugin to sling-maven-plugin

2 years agoAdded method to validate subject confirmation
Cris Rockwell [Wed, 6 May 2020 20:05:58 +0000 (16:05 -0400)] 
Added method to validate subject confirmation

2 years agoclean up bugs and code smell
Cris Rockwell [Wed, 6 May 2020 22:18:38 +0000 (18:18 -0400)] 
clean up bugs and code smell

2 years agosaml-handler: pom.xml / bnd usage cleanups
Robert Munteanu [Wed, 6 May 2020 13:47:24 +0000 (15:47 +0200)] 
saml-handler: pom.xml / bnd usage cleanups

2 years agoplugin renamed from maven-sling-plugin to sling-maven-plugin
Cris Rockwell [Wed, 6 May 2020 20:19:57 +0000 (16:19 -0400)] 
plugin renamed from maven-sling-plugin to sling-maven-plugin

2 years agoMerge remote-tracking branch 'upstream/feature/saml-handler-pom-cleanups' into sling...
Cris Rockwell [Wed, 6 May 2020 20:11:50 +0000 (16:11 -0400)] 
Merge remote-tracking branch 'upstream/feature/saml-handler-pom-cleanups' into sling-saml2-service-provider

2 years agoAdded method to validate subject confirmation
Cris Rockwell [Wed, 6 May 2020 20:05:58 +0000 (16:05 -0400)] 
Added method to validate subject confirmation

2 years agosaml-handler: pom.xml / bnd usage cleanups
Robert Munteanu [Wed, 6 May 2020 13:47:24 +0000 (15:47 +0200)] 
saml-handler: pom.xml / bnd usage cleanups

2 years agoremoved optional transititve for Spring's org.relaxng.datatype from dom4j, which...
Cris Rockwell [Tue, 5 May 2020 17:08:14 +0000 (13:08 -0400)] 
removed optional transititve for Spring's org.relaxng.datatype from dom4j, which itself is not needed

2 years agoremoved optional transititve for Spring's org.relaxng.datatype from dom4j, which...
Cris Rockwell [Tue, 5 May 2020 17:08:14 +0000 (13:08 -0400)] 
removed optional transititve for Spring's org.relaxng.datatype from dom4j, which itself is not needed

2 years agoUpdated the notice as recommended
Cris Rockwell [Fri, 24 Apr 2020 19:04:58 +0000 (15:04 -0400)] 
Updated the notice as recommended

2 years agoRemoved the instructions about importing the keycloak settings and using the JKS...
Cris Rockwell [Thu, 23 Apr 2020 22:29:40 +0000 (18:29 -0400)] 
Removed the instructions about importing the keycloak settings and using the JKS from resources. I needed to do this to recover my own local IDP instance configuration, and it just didn't work. Probably best to just describe how I did manually. Also added an link keycloak standalone instead of docker

2 years agoadded attribution for files or methods
Cris Rockwell [Wed, 22 Apr 2020 22:03:19 +0000 (18:03 -0400)] 
added attribution for files or methods

2 years agoAdded original LICENSE from project from which this was derived, https://bitbucket...
Cris Rockwell [Wed, 22 Apr 2020 22:01:44 +0000 (18:01 -0400)] 
Added original LICENSE from project from which this was derived, https://bitbucket.org/srasmusson/webprofile-ref-project-v3/src/master/LICENSE

2 years agoremoved unneeded array variabled, removed default for path configuration
Cris Rockwell [Wed, 15 Apr 2020 13:50:01 +0000 (09:50 -0400)] 
removed unneeded array variabled, removed default for path configuration

2 years agoFixed NPE when sync'ed attrs config is empty. Reverted last commit to extractCredentials
Cris Rockwell [Wed, 15 Apr 2020 04:02:07 +0000 (00:02 -0400)] 
Fixed NPE when sync'ed attrs config is empty. Reverted last commit to extractCredentials

2 years agoFixed login bug for paths under /content, returning AuthenticationInfo.FAIL_AUTH...
Cris Rockwell [Wed, 15 Apr 2020 02:51:39 +0000 (22:51 -0400)] 
Fixed login bug for paths under /content, returning AuthenticationInfo.FAIL_AUTH ensures the requestCredentials method is called

2 years agoAdded SAML2 configs that allow admins to specify which attributes to copy from users...
Cris Rockwell [Wed, 15 Apr 2020 00:54:56 +0000 (20:54 -0400)] 
Added SAML2 configs that allow admins to specify which attributes to copy from users' IDP Assertion to the JCR users properties

2 years agoUpdated README with complete instructions for configuring the SAML SP, and Keycloak...
Cris Rockwell [Mon, 13 Apr 2020 17:34:36 +0000 (13:34 -0400)] 
Updated README with complete instructions for configuring the SAML SP, and Keycloak IDP.

2 years agoRefactor project by removing the Internal (development) IDP. Deleted anything used...
Cris Rockwell [Mon, 13 Apr 2020 17:17:49 +0000 (13:17 -0400)] 
Refactor project by removing the Internal (development) IDP. Deleted anything used only by the IDP code.

2 years agoAdding immediate = true for AuthenticationHandler seems to make configurations saved...
Cris Rockwell [Fri, 10 Apr 2020 18:38:57 +0000 (14:38 -0400)] 
Adding immediate = true for AuthenticationHandler seems to make configurations saved take effect. Without this property, the bundle needs to be started again.

2 years agocleaned up dependencies and pom comments
Cris Rockwell [Wed, 8 Apr 2020 18:29:15 +0000 (14:29 -0400)] 
cleaned up dependencies and pom comments

2 years agoChanged from bundle plugin from maven-bundle-plugin to bnd-maven-plugin. Removed...
Cris Rockwell [Wed, 8 Apr 2020 18:14:52 +0000 (14:14 -0400)] 
Changed from bundle plugin from maven-bundle-plugin to bnd-maven-plugin. Removed invalid component names.

2 years agoMade service ranking and ACS path a osgi configuration. Fixed bugs with incorrect...
Cris Rockwell [Mon, 6 Apr 2020 21:17:17 +0000 (17:17 -0400)] 
Made service ranking and ACS path a osgi configuration. Fixed bugs with incorrect binding type and in building the ACS url

2 years agostart resolving some pom.xml setup stuff by removing dependencies already provided...
Cris Rockwell [Mon, 6 Apr 2020 21:02:18 +0000 (17:02 -0400)] 
start resolving some pom.xml setup stuff by removing dependencies already provided by parent

2 years agoUpdated readme with Java Keystore instructions for signing cert and SP credentials
Cris Rockwell [Mon, 6 Apr 2020 18:32:30 +0000 (14:32 -0400)] 
Updated readme with Java Keystore instructions for signing cert and SP credentials

2 years agoAdded Shibboleth Repo based on shib devs wiki and advice.
Cris Rockwell [Sat, 4 Apr 2020 21:38:07 +0000 (17:38 -0400)] 
Added Shibboleth Repo based on shib devs wiki and advice.

2 years agoDeleted unused SOAP dependencies. Deleted unused SP Keystore
Cris Rockwell [Sat, 4 Apr 2020 16:58:35 +0000 (12:58 -0400)] 
Deleted unused SOAP dependencies. Deleted unused SP Keystore

2 years agoUpdates needed to use a Java Keystore from the file system, and the associated items...
Cris Rockwell [Fri, 3 Apr 2020 21:26:04 +0000 (17:26 -0400)] 
Updates needed to use a Java Keystore from the file system, and the associated items added to SAML2ConfigServiceImpl for OSGI configs

2 years agoRemoved unneeded static credential code
Cris Rockwell [Fri, 3 Apr 2020 21:24:05 +0000 (17:24 -0400)] 
Removed unneeded static credential code

2 years agoRefactored IDP and SP static credential helpers to use JKS according to the OSGI...
Cris Rockwell [Fri, 3 Apr 2020 21:16:57 +0000 (17:16 -0400)] 
Refactored IDP and SP static credential helpers to use JKS according to the OSGI configs. Also renamed to make it clear what they do

2 years agostarted NOTICE file updated README with JKS info
Cris Rockwell [Fri, 3 Apr 2020 17:10:00 +0000 (13:10 -0400)] 
started NOTICE file updated README with JKS info

2 years agostarted NOTICE file
Cris Rockwell [Fri, 3 Apr 2020 16:39:22 +0000 (12:39 -0400)] 
started NOTICE file

2 years agoThere was an error with cookiePayload at least with openJDK it was doing arithmetic...
Cris Rockwell [Thu, 2 Apr 2020 15:42:30 +0000 (11:42 -0400)] 
There was an error with cookiePayload at least with openJDK it was doing arithmetic operations before String concats. Adding  + makes it clear for whatever JDK that the intent is only Sting concat and all the other types will be cohersed to string