980d0ff116
CASC-196
...
real XML parsing example if using <cas:attributes>. Updated tests to make sure it works if there are line breaks.
2013-01-06 23:40:46 -05:00
ac8a134192
CASC-168
...
added ability to specify class name in order to use a sub-class.
2013-01-06 19:36:37 -05:00
5ad57084cc
CASC-191
...
isValid method with simple implementation
2013-01-06 18:45:05 -05:00
41e7258af3
CASC-192
...
cast to XSAny in order to actually get the text content.
2013-01-06 18:24:11 -05:00
dcd9bda3df
CASC-195
...
null check in ProxyGrantingTicketStorageImpl.
2013-01-06 18:14:42 -05:00
5f1a30a314
CASC-199: Allow for an additional option to exclude empty proxy chains.
2012-12-10 21:10:10 -07:00
3deac9e1a9
Corrected JavaDoc (force if useSession=false force redirect=false)
2012-09-21 04:11:22 +02:00
5f1e5e0ed4
make default value of useRedirect visible. Add some JavaDoc for the
...
options.
2012-09-21 01:32:06 +02:00
bacf0c6142
Merge pull request #13 from serac/casc-166
...
CASC-166 Fix race condition in cached assertion cleanup.
2012-08-01 18:59:09 -07:00
ee2b719098
CASC-166 Address code review feedback.
...
Use ConcurrentHashMap to avoid explicit synchronization.
Use TimeUnit to allow more user-friendly configuration of the units of the cache timeout (e.g. MINUTES, SECONDS) and rename option from cacheTimeoutUnits to cacheTimeoutUnit for consistency.
2012-07-26 10:25:06 -04:00
ec0c7d5162
CASC-166 Fix race condition in cached assertion cleanup.
...
Perform assertion cleanup on same thread as JAAS module invocations to ensure that cleanup of expired assertions occurs before the cache is interrogated. A verifying test case accompanies this fix. The test case required a new module option, cacheTimeoutUnits, in order to complete on a time scale suitable for unit tests.
2012-07-25 16:58:36 -04:00
b2f038a174
Merge pull request #12 from battags/CASC-185
...
CASC-185 - Merged.
2012-07-25 09:34:46 -07:00
bae8e68f55
CASC-185
...
add authentication time to assertion and also actually use the validity period for Assertion.
2012-07-24 23:01:35 -04:00
3816e29861
CASC-169
...
change to hashmap to allow values to be added
2012-07-24 22:39:06 -04:00
6e3f802cba
CASC-184
...
improved SAML support. Also execute old AND new XML in the unit tests.
cr for the first round of changes: serac
2012-07-24 22:13:25 -04:00
616bbfa403
CASC-184
...
upgrade to OpenSAML2
2012-07-23 22:09:09 -04:00
37b4058640
CASC-182: Combined logging statements into one.
2012-07-11 10:12:20 -07:00
09ffc2c05d
CASC-182 - reset the redirectAfterValidation parameter to false when useSession is false.
2012-07-10 14:52:20 -07:00
d0ecca4274
CAS-172
...
don't log proxy message when there is no PGTIOU
2012-04-23 00:00:56 -04:00
eff195aaa9
CASC-171
...
check x-forwarded host header
2012-04-22 23:38:22 -04:00
7302ca6a99
CASC-175
...
ensure state can be shared
2012-04-22 23:29:38 -04:00
4b454e1e2e
Parsing the attributes using xml dom parser.
2012-03-15 11:04:47 +04:00
26e959c3d0
The result of parsing the xml document should not depend on the "\n" symbols.
2012-03-13 15:08:13 +04:00
a19c27f75b
CASC-165
...
disable DTD reading.
2011-10-31 02:44:07 +00:00
80693a3db9
CASC-157
...
added pre and post hooks
2011-09-22 02:02:03 +00:00
477fc582f0
CASC-163
...
SSO filter supports ticket over POST.
2011-09-22 01:10:19 +00:00
84aa06629f
CASC-160
...
added a check to make sure we really wanted to gateway.
2011-09-22 00:55:15 +00:00
5cd43c2139
CASC-101
...
additional protected getters
2011-09-12 04:12:37 +00:00
d754bc8d8c
NOJIRA
...
ignore to get the CI to run.
2011-09-11 16:54:16 +00:00
fb42fefaf9
NOJIRA
...
fixed some bugs and updated pom to 3.3-SNAPSHOT
2011-09-11 16:46:53 +00:00
97e6573e32
NOJIRA
...
accidental Java 1.6 dependency
2011-09-11 16:35:23 +00:00
e055585cf2
CASC-144
...
added support for multiple hosts with a space separated value
2011-09-11 16:15:30 +00:00
3b6ccaac0a
CASC-154
...
added method to AbstractCasFilter that can be overwritten in ticket validation and authentication to support other methods of retrieving the ticket.
2011-09-11 15:11:43 +00:00
6a98fc61a5
CASC-156
...
call sendError
2011-07-31 19:01:17 +00:00
413837e4df
CASC-153
...
added check to make sure only serverName or serviceName is set, but not both.
2011-06-27 03:00:45 +00:00
f3b6ae5a4d
CASC-149
...
parse the trailing slash on a path. Added a javadoc to explain a bit better, as well as an INFO level message.
2011-06-27 02:58:51 +00:00
49f556575e
CASC-149
...
parse the trailing slash on a path. Added test cases.
2011-06-21 02:33:15 +00:00
d5bc8e3757
CASC-148
...
update documentation about JNDI loading order.
2011-06-21 02:12:11 +00:00
7d4c35417f
CASC-146
...
added encoding for SAML request.
2011-06-21 01:54:37 +00:00
8941d96a99
CASC-147
...
ignore logout requests for multipart forms
2011-06-21 01:39:49 +00:00
e9569564d7
CASC-143
...
fix for the changes Atlassian made to seraph
2011-03-27 18:17:44 +00:00
3b1c1ac85f
CASC-139
...
generate correct identifier value.
2011-02-27 05:06:50 +00:00
84ad620b34
CASC-138
...
added hostnameVerifier to the list of reserved keywords
2011-02-12 22:00:45 +00:00
8c53e4b0e6
CASC-138
...
added hostnameVerifier to the list of reserved keywords
2011-02-12 22:00:06 +00:00
90d6625e7f
CASC-137
...
fix null pointer exception when the anyhostname verifier is used.
2011-02-12 18:30:25 +00:00
ec87c31ecd
NOJIRA
...
switch to stringbuilder since we're on Java 5
2011-02-12 18:29:41 +00:00
18b70ee8ce
NOJIRA
...
updated Atlassian dependencies and documented where to download provided jars
2010-12-08 04:16:23 +00:00
cbb51b0506
CASC-135
...
added encryption mechanism to distributed proxy granting ticket storage mechanisms
2010-11-27 23:23:24 +00:00
4a36b023a6
CASC-134
...
change to get Attributes instead of just getAttribute in case there are multiple values.
2010-11-20 06:05:40 +00:00
befd53e456
CASC-128
...
ability to disable SAML 1.1 schema validation
2010-11-16 04:43:08 +00:00
1abdee8399
CASC-133
...
fixed the fact that we were logging value3 when we meant to log value4.
2010-11-15 04:17:50 +00:00
c6b1bc775a
CASC-120
...
Add type parameters to fix unchecked compiler warnings where possible,
otherwise add SuppressWarnings("unchecked") compiler directive in a couple
places.
Use ReflectUtils.newInstance for creating new instances of objects from
class names.
2010-10-28 17:44:53 +00:00
5faf72b876
CASC-120
...
Use Collections.enumeration.
2010-10-28 16:06:32 +00:00
aa4afd9c5f
NOJIRA
...
migrated to Java 5
2010-10-25 03:59:14 +00:00
f68afc177c
NOJIRA:
...
upgrade to Java 1.5, upgrade Clover, Ehcache version, switch to 3.2.0-SNAPSHOT, and Jasig Parent pom. Switch to Apache license.
2010-10-23 04:03:14 +00:00
54964cb5a4
CASC-129
...
updated exception message thrown when there no valid assertions to better indicate that it may be a clock drift issue.
2010-10-13 02:51:53 +00:00
ff5a99ea0a
CASC-126
...
improved logging of errors.
2010-10-06 03:30:57 +00:00
ac08968c30
NOJIRA
...
extremely minor formatting fixes
2010-10-06 03:27:37 +00:00
a947490c04
CASC-33
...
Add SingleSignOutValve, which required some refactoring in core
org.jasig.cas.client.session package to facilitate code reuse.
2010-09-23 15:03:50 +00:00
f64a23b1ae
CASC-125
...
added default auth filter for saml1.1 and made sure that it and the validation filter set the required saml parameters.
2010-09-20 03:33:49 +00:00
cd3ecb8e3c
CASC-33
...
support for Tomcat: more authentication mechanisms. Just need to do the abstract class now.
2010-09-01 03:56:46 +00:00
9ffca231a0
CASC-33
...
support for Tomcat: logout, proxy callback.
2010-08-29 21:53:32 +00:00
74a8cff651
CASC-115
...
applied Marvin's patch. Made changes to check for debug enabled before doing any concatenation and to renable the initCause
2010-08-16 03:15:45 +00:00
649b39b1c8
CASC-116
...
removed secondary call to response.encodeRedirectUrl because according to the Tomcat source code they essentially do the same thing.
2010-07-20 02:33:36 +00:00
b1f6e24f7e
CASC-117
...
added init cause to login exceptions
2010-07-20 02:12:02 +00:00
a57e3d401f
CASC-108
...
Minor logging fixes/improvements.
2010-06-07 15:29:23 +00:00
01fd618436
CASC-112
...
added brackets around the pgtIou to make it more obvious the message isn't cut off.
2010-06-05 17:25:34 +00:00
23711eb6a1
CASC-108
...
commit before we move to the new repository. We cannot release this yet because we're missing a contributor license agreement.
2010-06-01 22:56:09 +00:00
b9208f9077
CASC-109
...
changed location of redirect to successful block
2010-05-27 03:32:03 +00:00
975bf7700c
CASC-110
...
added the reserved keyword to the list.
2010-05-27 03:09:39 +00:00
b76ce0dcc9
CASC-103
...
updated javadoc to explain the purpose of the method
2010-05-09 05:07:52 +00:00
f5984a088d
CASC-107
...
enabled providing a specific encoding
2010-05-09 04:18:51 +00:00
92c2b081cd
CASC-106
...
made some changes to explicitly use UTC.
2010-05-09 03:51:18 +00:00
d6f11f89a2
CASC-105
...
changed log level to debug instead of warn.
2010-05-09 03:26:32 +00:00
4ef10cd168
CASC-80
...
Add support for setting HostnameVerifier for CAS validation filters in
web.xml.
2010-02-24 14:55:51 +00:00
856d2b07f9
CASC-102
...
moved the call to initialize the ticket validator to after the setting of the proxy granting ticket storage.
2009-12-18 03:12:15 +00:00
3f2a1c4c69
CASC-96
...
reworked logic
2009-11-24 15:34:32 +00:00
6459137bb2
CASC-99
...
moved the line to make sure we're not accidentally prepending "&"
2009-11-24 15:19:15 +00:00
ff84c43b45
CASC-100
...
moved call to create url
2009-11-24 15:08:57 +00:00
c652557f8a
CASC-96
...
corrected session call
2009-10-14 16:02:03 +00:00
b16412731d
CASC-93
...
added check for role
2009-09-22 15:26:49 +00:00
bdb354531e
CASC-95
...
use ehcache for distributed support
2009-09-20 16:09:56 +00:00
ccdd0596c7
CASC-94
...
moved HttpConnection to CommonUtils
2009-09-20 14:50:43 +00:00
5435445f11
CASC-89
...
revert behavior for POST requests for the "logoutRequest" parameter.
2009-09-11 12:39:58 +00:00
95f63d7743
CASC-92
...
changed config parameter to determine where properties came from in logs.
2009-09-11 11:50:52 +00:00
8a32fd2061
NOJIRA
...
forgot a check for null. Whoops.
2009-08-12 13:43:57 +00:00
f0a78e0edf
CASC-85
...
added safeGetParameter method
2009-08-11 18:22:09 +00:00
f9e3ae8abb
CASC-85
...
moved the reading of parameters
2009-07-30 16:49:55 +00:00
a14767c232
CASC-86
...
fixed the random id generation and the issue instant that Joe pointed out.
2009-07-29 14:27:48 +00:00
745c45718c
CASC-88
...
imported Marvin's patch with some modifications to fix support for proxying in a non-Spring environment.
2009-07-29 13:54:29 +00:00
9b1ba497e3
CASC-87
...
improved utility to allow for arbitrary parameters to be passed at login
2009-07-29 12:26:17 +00:00
cbbab079a7
NOJIRA
...
transfered over old tests
2009-05-26 15:47:13 +00:00
ad62b2fc2a
NOJIRA
...
transfered over old tests
2009-05-26 15:47:00 +00:00
e78706747a
CASC-84
...
added property to override configuration init param
2009-05-23 03:33:41 +00:00
1031f01ee0
NOJIRA
...
updated so that we rely on the filter instead of the listener.
2009-05-22 19:37:53 +00:00
de82cb0a85
CASC-82
...
updated logging
2009-05-22 17:57:06 +00:00
7dd013cb9f
CASC-81
...
Set validator renew property from servlet configuration. Testing shows this resolves issue.
2009-05-06 13:17:29 +00:00
b38a27626a
CASC-77
...
removed the CleanUpRegistry, Cleanable interface, etc. and just use a simple static getter on the Filter that returns the Storage. The TimerTask just calls this static getter directly. This was deemed simpler than the CleanUpRegistry solution.
for Spring config: rather than use Quartz, we just use the java.util.Timer support in Spring
2009-03-21 21:24:31 +00:00
866e2b99ba
NOJIRA
...
sleep long enough for the ticket to timeout
2009-02-20 14:10:04 +00:00
5761e0cb61
CASC-77
...
summary: fixed classloader leak by making the thread stop on webapp unload
this fix requires clients (those using proxy authentication) to configure either
a) a listener in web.xml (see CleanUpListener)
b) quartz in a spring xml config file (see CleanUpJob)
each of these starts a thread which runs the clean up operation
the listener will shut itself down on app undeploy
Spring's SchedulerFactoryBean (a quartz helper) must be configured with a destroy-method="destroy" in the spring xml config, otherwise a classloader leak may occur on webapp undeploy/hot deploy
2009-02-13 22:30:38 +00:00
c71748d104
CASC-79 (not enough synchronization on HashMap)
...
also, made nested classes static (they didn't have to be non-static, so this version is slightly more flexible and takes up slightly less memory: see Effective Java 2nd Edition Item 22)
2009-02-11 19:44:33 +00:00
7191670c4e
CASC-74
...
updated javadoc about serverName
2009-01-30 00:40:22 +00:00
d0be75e7b3
CASC-73
...
reduced warning message
2009-01-05 04:27:10 +00:00
fb1e4e5a84
CASC-71
...
removed Java 1.5 code
2008-12-05 19:08:18 +00:00
720c840eec
CASC-70
...
check the request for the assertion if there is no session.
2008-10-24 13:36:09 +00:00
af2530d57d
CASC-66
...
added support for configuration via JNDI
2008-08-27 16:37:36 +00:00
e0ca0a6e35
CASC-64
...
added a default error redirect page
2008-08-27 12:35:12 +00:00
eee667a611
CASC-68
...
enabled redirect after ticket validation by default
2008-08-27 12:03:00 +00:00
3d09247029
CASC-58
...
allow to determine gateway features potentially via alternate methods
2008-08-06 14:45:22 +00:00
415d118b5c
CASC-65
...
added an explicit call to remove an entry from the backing storage before adding it just in case it already exists under another key
2008-08-06 13:07:03 +00:00
e8f438db55
CASC-64
...
capture and send redirect
2008-08-05 19:23:56 +00:00
e3d38a70a9
CASC-63
...
added synchronized methods
2008-07-11 13:51:38 +00:00
e1f533c759
NOJIRA
...
added another test
2008-06-19 18:54:20 +00:00
2e0e6c85c0
NOJIRA
...
3.1.4 snapshot
2008-06-19 14:48:42 +00:00
2863bd39e5
NOJIRA
...
removed unnecessary system.outs
2008-06-16 13:35:05 +00:00
9673f33f53
NOJIRA
...
added one more debug logging statement
2008-06-10 03:32:22 +00:00
4252731534
NOJIRA
...
factored out common code for proxying
2008-06-09 18:18:32 +00:00
88b87074dc
CASC-37
...
added significantly more logging
2008-06-09 17:24:31 +00:00
88b89a3756
CASC-56
...
implemented adding Content-Type to fix problem
2008-06-09 12:43:26 +00:00
2445b49e0a
NOJIRA
...
added some Saml11 tests and updated to RC3
2008-06-03 19:33:33 +00:00
56d0d2e023
CASC-54
...
added support for parsing custom attributes. Added a basic model that is easily overrideable.
2008-05-29 21:10:25 +00:00
fe8e8d8bb3
CASC-52
...
switched to the PropertyEditor method which seems to work better.
2008-05-29 15:49:09 +00:00
a7d06fd666
CASC-55
...
added the check for the "/" to both the proxy retriever and the validators.
2008-05-28 21:15:32 +00:00
74b3d60843
CASC-51
...
try/catch around the invalidate call incase its already invalidated.
2008-05-28 20:59:09 +00:00
c12836c9d6
CASC-52
...
started reworking beaninfo to proxylist
2008-05-28 19:05:14 +00:00
ef520c834f
CASC-50
...
getRemoteUser checks if the principal is null now
2008-05-27 17:01:38 +00:00
f92005dd8e
CASC-48
...
added ability to provide a map of custom attributes
2008-05-07 15:55:18 +00:00
5bf8ccfa4a
CASC-46
...
added required id for serialization.
2008-04-17 21:01:38 +00:00
44cf029138
CASC-46
...
added serializable
2008-04-17 20:47:14 +00:00
dbd1017a8a
CASC-44
...
added Adam's trace statements
2008-04-11 18:35:00 +00:00
a9f0ed72e6
CASC-42
...
parse out soap headers
2008-03-03 17:06:51 +00:00
ccbf08d8aa
CASC-41
...
fixed property name
2008-03-03 15:41:24 +00:00
36f5a7280f
CASC-39
...
changed EMPTY_MAP to HashMap
2008-02-13 16:26:34 +00:00
16202ffaf4
NOJIRA
...
re-added DelegatingFilter. Note this can only be configured in Spring and if the other filters are configured in Spring
2008-02-08 15:19:17 +00:00
ac6268509d
CASC-38
...
added ability to remove jsession from service urls (not all servers can work with them)
2008-02-08 15:08:30 +00:00
a11f29ee0f
NOJIRA
...
reworked to have pluggable backing store.
2008-01-31 18:33:53 +00:00
cfa290756c
CASC-36
...
added test cases and fixed bug
2008-01-31 16:09:39 +00:00
d8eca22cff
NOJIRA
...
updated copyright header
2008-01-31 16:08:05 +00:00
341df9a29e
NOJIRA updated license
2008-01-30 16:39:19 +00:00
a5ffbe8d95
NOJIRA
...
added serializable fields
2008-01-29 14:32:12 +00:00
daac416c7f
CASC-34
...
added template methods and documentation on when they are called.
2008-01-29 13:44:26 +00:00
bcc80606eb
NOJIRA
...
added Serializable to AttributePrincipal
2008-01-07 13:22:13 +00:00
5fe7a7bfac
NOJIRA
...
added Serializable to Assertion
2008-01-07 13:07:23 +00:00
5689e1a1d0
NOJIRA
...
check to make sure a proxygrantingticket is set before attempting to use it
2007-12-11 16:14:49 +00:00
5a378d5a61
NOJIRA
...
clean up
2007-11-15 20:15:59 +00:00
14b32f0549
NOJIRA
...
bug fixes for required dependencies
2007-11-14 21:24:30 +00:00
89f936d66b
NOJIRA
...
updated tests
2007-11-14 21:24:03 +00:00
da8d4a79d5
NOJIRA
...
updated tests
2007-11-14 21:22:44 +00:00
3ed64f6660
NOJIRA
...
added serializable id
2007-11-14 21:12:38 +00:00
5a9b250559
NOJIRA
...
updated for javadocs and configuration initialization checking
2007-11-13 19:47:28 +00:00
34b92ea884
NOJIRA
...
first attempt at commit
2007-10-24 20:34:01 +00:00
5b4154dd48
NOJIRA
...
removed in prepration for new files
2007-10-24 20:04:05 +00:00
5686f256d6
CASC-29
...
compare names directly for SAMLSubject since it does not implement equals
2007-02-12 20:21:02 +00:00
30fad36127
CASC-27
...
updated xml file
2007-02-12 19:58:43 +00:00
c6284f1d1e
refactored encoding method
2007-02-09 19:33:43 +00:00
506620a61e
CASC-28
...
added UrlEncoder to url construction.
2007-02-08 16:39:23 +00:00
2527aef900
CASC-26
...
Use ArgumentExtractor to control protocol
2007-02-07 20:44:16 +00:00
f38cfd96ba
updated javadoc
2007-01-24 17:10:47 +00:00
8a02b687fe
updated SAML
2007-01-04 20:09:03 +00:00
d29e11838d
added SAML validator
2007-01-03 18:39:01 +00:00
fc7633ab02
updated constructors and setter properties
2007-01-03 18:37:26 +00:00
2833903e6d
updated javadocs
2007-01-03 18:37:03 +00:00
f754e2f38c
CASC-22
...
fixed constructors for all filters
2007-01-02 20:54:15 +00:00
2c1ad449cc
CASC-19
...
added option of not throwing an exception on validation failure
2006-11-15 13:50:30 +00:00
243e5ecd86
removed
2006-10-11 19:10:28 +00:00
44b8c86586
CASC-15
...
added more debugging
2006-10-11 18:41:10 +00:00
0b996ed4d6
update to spring 2.0 and hide un-needed dependencies
2006-10-05 18:03:58 +00:00
58524d068a
updated examples
2006-10-04 02:10:39 +00:00
9ee25d4ab6
updated examples
2006-10-04 01:33:40 +00:00
877cd5fc6d
updated tests
2006-10-04 01:33:16 +00:00
a68b4e8a08
updated to reflect that Assertion now has a reference to ProxyRetriever
2006-10-03 13:14:02 +00:00
e9467826ae
renamed to remove "Cas" from names since its in th CAS package
2006-10-03 13:08:27 +00:00
a862741129
renamed to remove "Cas" from Filter names since its in th CAS package
2006-10-03 13:07:58 +00:00
7a608c2e4f
refactored to provide one abstract method to override
2006-09-28 13:41:41 +00:00
1771f0a51f
renamed to remove CAS
2006-09-28 13:38:36 +00:00
d2509c07dd
formatting
2006-09-27 15:27:21 +00:00
80748794ca
CASC-16
...
upgraded to Spring's filter to bean proxy stuff
2006-09-27 15:23:56 +00:00
5e804608df
updated formatting
2006-09-26 18:22:30 +00:00
808160eed7
CASC-13
...
support for threadlocal
2006-09-26 18:20:43 +00:00
20ba0578e8
CASC-7
...
updated to put redirect within code that looks for ticket
2006-08-31 04:00:06 +00:00
86514a31c1
CASC-7
...
updated to put redirect within code that looks for ticket
2006-08-13 02:44:37 +00:00
7268afa0f4
no message
2006-08-09 19:17:44 +00:00
a91cc02aa1
initial commit
2006-08-07 18:07:18 +00:00
Scott Battaglia
Misagh Moayyed
Bernd Eckenfels
Marvin S. Addison
unknown
lavrovdv
Brad Cupit