TouchInstinct
/
java-cas-client
303
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
450 Commits 17 Branches 36 Tags 2.3 MiB
Commit Graph

270 Commits

Author SHA1 Message Date
Scott 117f32006f Merge pull request #79 from battags/CASC-229 
CASC-229 Make Front Channel SSO Optional so that backwards compatibility...
 2014-08-13 10:13:45 -04:00
Scott db53818de7 Merge pull request #80 from battags/CASC-230 
CASC-230 Call HttpServletRequest#logout() via Reflection to Improve Back...
 2014-08-13 10:13:28 -04:00
Scott Battaglia b34c4e104f Updated code to abstract the reflection logic a bit more behind a strategy interface. 2014-08-11 23:04:24 -04:00
Scott Battaglia a0f8845ecf CASC-230 Call HttpServletRequest#logout() via Reflection to Improve Backwards Compatibility with Spring Security 2014-08-11 22:50:23 -04:00
Scott Battaglia b18dbfe0a9 CASC-229 Make Front Channel SSO Optional so that backwards compatibility is maintained. 
Problem: Spring Security adopters will fail to be able to drop in a new version of CAS Client for Java if this feature is enabled by default/required.
Solution: Force a fail-safe optional mode if the value is not provided.
 2014-08-11 22:36:27 -04:00
Scott Battaglia 42ce676ef0 CASC-225 Restore Removed Constructor for Backwards Compatibility 
Problem: We removed the two string constructor which breaks Spring Security compatibility.
Solution: Add it back as deprecated so that Spring Security can upgrade.
 2014-08-11 22:09:27 -04:00
Scott Battaglia d191ac8ee6 Added missing license header. 2014-08-03 00:03:25 -04:00
Scott Battaglia 61a92c0e7f CASC-224 Replace URL with String to remain compatible with Spring Security 2014-07-20 20:31:35 -04:00
Scott Battaglia 9de2be91a2 CASC-228 URL Encode Paramaters Passed to Server via Validate 
Problem: We currently don't pass encoded values to the server, possibly resolving in parsing/extraction errors.
Solution: URL Encode all values instead of just the service url.

QA Notes: Added unit test.
 2014-06-24 18:44:45 -04:00
Scott 566c8690c8 Merge pull request #72 from battags/CASC-223 
CASC-223 Backwards Compatibility for Initializing Sign Out Handler in Filter
 2014-05-22 22:03:26 -04:00
Scott Battaglia a44b4c1229 Removed no-longer valid test. 2014-05-06 23:17:32 -04:00
Scott Battaglia a4e984e4ea Synchronize the init method in case we have multiple concurrent requests at the same time. 2014-05-06 22:53:05 -04:00
Scott Battaglia 2c9090155a CASC-223 SingleSignOutFilter requires init method to be called which changes the contract with previous versions 
Problem: Some clients such as Spring Security configure the filter via Spring configuration, meaning the handler's init method
is not called vai the Filter#init method.

Solution: For now, have an atomic boolean to determine if init was called or not and call it if necessary as part of the flow.
 2014-05-06 22:35:55 -04:00
Scott Battaglia b4fbf23361 CASC-224 Public API Method Removed without Deprecation 
Problem: Previous versions of the CAS Client remove a public API method without sufficient deprecation time resulting in
problems for clients who want to upgrade.

Solution: Add Method back and mark it as deprecated.
 2014-05-06 22:12:59 -04:00
LELEU Jérôme 4e7bf66d68 Merge pull request #68 from leleuj/CASC-220 
CASC-220: Support front channel SLO logout
 2014-04-09 08:10:42 +02:00
Jérôme LELEU c4c3223140 CASC-220: Support front channel SLO logout 
Update after new Misagh's comments
 2014-04-07 18:54:40 +02:00
LELEU Jerome 4a0e960c32 CASC-220: Support front channel SLO logout 
Updates after Marvin's code review
 2014-04-01 16:46:19 +02:00
Jérôme LELEU 7069a4f6fb CASC-220: Support front channel SLO logout 
Update after Scott's code review
 2014-03-27 21:02:30 +01:00
Jérôme LELEU 6aa2379268 CASC-220: Support front channel SLO logout 
Updates after Misagh's code review
 2014-03-21 14:10:33 +01:00
Scott Battaglia 72766daac5 Added in missing license header. 2014-03-18 19:26:45 -04:00
unknown 9714053f07 Merge remote-tracking branch 'upstream/master' into CASC-220 2014-03-18 08:16:29 +01:00
Misagh Moayyed 286105266f Merge pull request #67 from battags/CASC-214 
CASC-214 Improve Service Url Construction to Add Non-Standard Ports
 2014-03-17 09:15:29 -07:00
Misagh Moayyed ed4802f943 CASC-219: added final 2014-03-17 00:18:56 -07:00
LELEU Jerome 9b33321cc2 CASC-220: Support front channel SLO logout 
specific front logout parameter + Tomcat valves update
 2014-03-14 10:52:42 +01:00
LELEU Jerome 47f825871e CASC-220: Support front channel SLO logout 
First commit
 2014-03-13 19:03:41 +01:00
Misagh Moayyed d2b93a237f CASC-219: added exact-matcher strategy 2014-03-13 08:26:22 -07:00
Misagh Moayyed 0a8fd79a44 CASC-219: changed exact to contains 2014-03-13 03:20:39 -07:00
Misagh Moayyed 00ee9e378d CASC-219: renamed matcher class to match behavior 2014-03-12 07:37:59 -07:00
Misagh Moayyed 248643cf30 CASC-219: switched warn to error, fixed typo and this refs 2014-03-11 08:46:00 -07:00
Misagh Moayyed dfb3629dc2 CASC-219: updated internal map to be a static ref instead 2014-03-11 07:11:53 -07:00
Misagh Moayyed 511bce2471 CASC-219: allowed extensions for ignoring urls 2014-03-11 05:04:59 -07:00
Misagh Moayyed 3773fc9e54 CASC-219: updated javadocs and added map to keep track of pattern matchers 2014-03-11 04:24:27 -07:00
Misagh Moayyed b97d03d126 CASC-219: Cleaned up formatting issues 2014-03-10 05:22:44 -07:00
Scott Battaglia a4df6582ee Removed debug statements used to confirm private methods worked. 2014-03-09 23:18:14 -04:00
Scott Battaglia 75584a2c33 CASC-214 Improve Service Url Construction to Add Non-Standard Ports if Missing from Configuration 
Problem: sometimes the port is missing from the configuration.  This generates the wrong service url.
Solution: Add the server port if the server configuration does not have one.
QA Notes: Added unit tests to confirm behavior (and old unit tests still pass)
 2014-03-09 23:13:04 -04:00
Misagh Moayyed 71b366cbf3 CASC-219: Provide support for certain urls to be excluded from CAS filters. 2014-03-07 11:17:14 -07:00
Misagh Moayyed b9ac92cf25 CASC-219: Provide support for certain urls to be excluded from CAS filters. 2014-03-07 01:52:50 -07:00
Misagh Moayyed 44d1413fa7 CAS-219: Provide support for certain urls to be excluded from CAS filters. 2014-03-02 03:03:24 -07:00
Misagh Moayyed c857e4610b CAS-219: Provide support for certain urls to be excluded from CAS filters. 2014-02-27 22:02:19 -07:00
Scott Battaglia 36b8db1e86 CASC-203 Properly Parse Response to Keep Line Breaks 
Problem: The CAS Client uses a buffer reader which strips out the returned line breaks.
Solution: Switch to a normal input stream reader and add appropriate test.
 2014-02-17 23:09:32 -05:00
Scott Battaglia 89e6bfd521 Fixed license files 2014-01-05 23:04:03 -05:00
Scott Battaglia 6ba3f6f884 Added missing license headers 2014-01-05 22:53:17 -05:00
Marvin S. Addison 5b1bd87e7a Put HttpServletRequest#logout() in separate try/catch block. 2013-10-28 16:07:28 -04:00
Marvin S. Addison 82c95aaf19 Respond to code review feedback. 
1. Call HttpServletRequest#logout() on SLO callback since it is available.
2. Use final for local variables where possible.
 2013-10-28 15:58:40 -04:00
Marvin S. Addison 328692bb40 Remove cached assertions on logout to prevent credential replay attack. 2013-10-24 12:57:25 -04:00
Marvin S. Addison 5ce3bcb3d3 CASC-174 Remove @version javadoc tag. 2013-08-15 11:05:32 -04:00
Marvin S. Addison 75406c916e CASC-174 Remove JBoss verbiage from error message. 2013-08-01 14:10:38 -04:00
Marvin S. Addison 517f94bd97 CASC-174 Provide facility for Servlet 3.0 programmatic JAAS login. 
Servlet3AuthenticationFilter supersede the JBoss-specific
WebAuthenticationFilter for JBoss 7. It should also provide support for
programmatic JAAS login for any container that is Servlet 3.0/JEE6
compliant.
 2013-08-01 14:05:01 -04:00
Scott 15103333e5 Merge pull request #52 from battags/CASC-211 
CASC-211 Better Ticket Validation Error Logic
 2013-06-20 16:31:59 -07:00
Scott Battaglia 8ab75b883a Renamed arguments 2013-06-20 19:28:35 -04:00