TouchInstinct
/
java-cas-client
305
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
638 Commits 17 Branches 36 Tags 2.3 MiB
Commit Graph

638 Commits

Author SHA1 Message Date
Misagh Moayyed f96fc84e28
handle un-encoded query strings in url parameters 2018-01-31 14:11:00 +03:30
Dmitriy Kopylenko 3e43a606c9 [maven-release-plugin] prepare for next development iteration 2018-01-12 11:56:32 -05:00
Dmitriy Kopylenko 43c7d1da8d [maven-release-plugin] prepare release cas-client-3.5.0 2018-01-12 11:56:28 -05:00
Dmitriy Kopylenko e7c00ea7ef prepare for the release 2018-01-12 11:46:12 -05:00
Dmitriy Kopylenko daa413db4d Polishing 2018-01-11 10:41:28 -05:00
Misagh Moayyed 7e866d9170 Merge pull request #209 from tkd-yas/master 
Fix missing parameter key in service url (#208)
 2017-10-06 04:31:21 -07:00
Misagh Moayyed d9997452dc Merge pull request #220 from mmoayyed/tomcat85x 
Add support for tomcat 8.5.x
 2017-10-06 04:30:25 -07:00
Misagh Moayyed c2a75e9966 Fix travis URLs: point to apereo rather than jasig 2017-07-11 16:58:14 -07:00
Misagh Moayyed 4fc3f42619
updated docs 2017-07-06 14:06:24 -07:00
Misagh Moayyed e3112f9629
Add support for tomcat 8.5.x 2017-07-06 14:01:21 -07:00
Scott aee4676272 Merge pull request #213 from lxbzmy/patch-1 
Add JIRA Rest API support
 2017-06-21 23:20:17 -04:00
Misagh Moayyed 9f48e75394
Fixed logging issue; returning null in case principal cannot be determined 2017-06-20 09:21:04 -07:00
Misagh Moayyed 544939ef52 Merge pull request #188 from eghm/master 
Log an error message if CAS principal has no corresponding Confluence principal
 2017-06-20 09:18:46 -07:00
Misagh Moayyed 970a0f5db9 Merge pull request #212 from mmoayyed/json-validator 
New Json ticket validator to accept CAS responses in JSON.
 2017-06-20 09:16:37 -07:00
Scott 9203f55b68 Merge pull request #214 from hdeadman/master 
Improve error logging when getting response from CAS server fails
 2017-06-02 12:38:55 -04:00
Hal Deadman ec61628d15 Improve error logging when getting response fails 2017-06-02 10:59:16 -04:00
Misagh Moayyed 7f2dae573c Merge pull request #156 from joeschweitzer/master 
Return existing user if session is already authenticated
 2017-06-01 21:06:42 -04:00
Misagh Moayyed 3bb2494ea2
Apply changes after code review by @serac 2017-06-01 21:03:51 -04:00
Alex Lei 雷 06b6b0c718 Add JIRA Rest API support 
new JIRA 6 has rest api begin with url /rest when I use cas authentication filter which skip filter /rest ,there will be thrown exception:

java.lang.NullPointerException
    at com.atlassian.jira.security.login.JiraSeraphAuthenticator.getUserFromBasicAuthentication(JiraSeraphAuthenticator.java:149) 
    at com.atlassian.seraph.auth.DefaultAuthenticator.getUser(DefaultAuthenticator.java:339) [atlassian-seraph-3.0.3.jar:?]
    at org.jasig.cas.client.integration.atlassian.Jira44CasAuthenticator.getUser(Jira44CasAuthenticator.java:76) [cas-client-integration-atlassian-3.4.1.jar:3.4.1] 
    at com.atlassian.seraph.auth.AbstractAuthenticator.getUser(AbstractAuthenticator.java:45) [atlassian-seraph-3.0.3.jar:?]
    at com.atlassian.seraph.filter.BaseLoginFilter$SecurityHttpRequestWrapper.getUserPrincipal(BaseLoginFilter.java:238) [atlassian-seraph-3.0.3.jar:?]
    at com.atlassian.seraph.filter.BaseLoginFilter$SecurityHttpRequestWrapper.getRemoteUser(BaseLoginFilter.java:225) [atlassian-seraph-3.0.3.jar:?]
    at javax.servlet.http.HttpServletRequestWrapper.getRemoteUser(HttpServletRequestWrapper.java:168) [servlet-api.jar:?]
    at com.atlassian.jira.web.filters.accesslog.AccessLogFilter.preFilterCallStep(AccessLogFilter.java:175) [classes/:?]
    at com.atlassian.jira.web.filters.accesslog.AccessLogFilter.executeRequest(AccessLogFilter.java:86) [classes/:?]
    at com.atlassian.jira.web.filters.accesslog.AccessLogFilter.doFilter(AccessLogFilter.java:78) [classes/:?]

After hard debug work I found key program flow different from default authenitcator  :

in `com.atlassian.seraph.filter.BaseLoginFilter#SecurityHttpRequestWrapper#getUserPrincipal()`

public Principal getUserPrincipal() {
            return BaseLoginFilter.this.getAuthenticator().getClass().isAnnotationPresent(AuthenticationContextAwareAuthenticator.class)?BaseLoginFilter.this.getAuthenticationContext().getUser():BaseLoginFilter.this.getAuthenticator().getUser(this.delegateHttpServletRequest);
        }

The `AuthenticationContextAwareAuthenticator` annotation cause different flow.

So, add `AuthenticationContextAwareAuthenticator` annotation can slow problem.
 2017-05-27 11:13:09 +08:00
Misagh Moayyed 8e468933ee Merge pull request #124 from leleuj/casc-121 
Upgrade to Java 6
 2017-05-24 09:23:51 -04:00
leleuj c0ded8f897 merge with master 2017-05-24 08:36:57 +02:00
Misagh Moayyed 2a5e854f0d Merge pull request #187 from Unicon/Frontchannel-slo 
Handle front-channel SLO
 2017-05-22 12:25:15 -04:00
Misagh Moayyed d6a6f669a5
Exclude transaction dependency 2017-05-22 09:19:54 -07:00
Misagh Moayyed f07e2abc7e
add test cases 2017-05-18 14:09:11 -07:00
Misagh Moayyed 7770e2adbf
Fix test cases with attribute encoding 2017-05-18 12:31:44 -07:00
Misagh Moayyed a9b734b0b9
update readme 2017-05-17 16:50:13 -07:00
Misagh Moayyed 733f6599e8
clean up JIRA dependencies so project can compile 2017-05-17 16:42:09 -07:00
Misagh Moayyed 24f22bdea4
clean up JIRA dependencies so project can compile 2017-05-17 16:31:50 -07:00
Misagh Moayyed 0457035b7b
allow extension points for JSON validation parsing. add filter and validator 2017-05-17 16:13:46 -07:00
Misagh Moayyed a4f622833e
allow extension points for JSON validation parsing. add filter and validator 2017-05-17 16:00:24 -07:00
Misagh Moayyed 6f353a954d
allow extension points for JSON validation parsing. add filter and validator 2017-05-17 15:59:20 -07:00
Misagh Moayyed c00627c244
allow extension points for JSON validation parsing. add filter and validator 2017-05-17 15:04:42 -07:00
Misagh Moayyed 4cb1eb4946 Fix formatting issues with the markdown title 2017-04-25 09:28:10 -07:00
Yasuhiro Takada 092db55945 fix test faiiure 2017-04-17 20:36:40 +09:00
Yasuhiro Takada b9f66147ec fix missing parameter key in service url when parameter value not provided. 2017-04-17 19:22:41 +09:00
Misagh Moayyed 675eeab740 Merge pull request #200 from zhixiangli/master 
add setter to ignoreUrlPatternMatcherStrategyClass
 2017-01-05 19:29:56 +03:30
lizhixiang 3a02f3d592 add setter to ignoreUrlPatternMatcherStrategyClass, with purpose of 
injecting UrlPatternMatcherStrategy to AuthenticationFilter by Spring
IOC
 2017-01-05 12:16:16 +08:00
Misagh Moayyed f2415d4579 Merge pull request #184 from Unicon/Skew-assertion-date 
Handle date equality when checking for assertion validity
 2016-09-23 10:24:02 +03:30
eghm 7e994b37b9 Use parameterized log statement when logging CAS only principle. 2016-09-19 10:14:22 -10:00
eghm 3f7d7e9309 Log an error message if CAS principle has no corresponding Confluence principle. 2016-09-15 13:57:11 -10:00
Misagh Moayyed 2ca6503a0f Fixed test cases 2016-09-09 16:22:32 +04:30
Misagh Moayyed c3589440f8 Updated front-channel SLO handling 2016-09-09 16:14:06 +04:30
Misagh Moayyed 6f05fe0e28 Merge pull request #181 from Unicon/Tostring 
Let ConfigurationKey toString() the name
 2016-09-07 20:53:38 +04:30
Misagh Moayyed 02544ee0ae Merge pull request #185 from Unicon/Redundant-GroupId 
Remove redundant groupId from POM defns
 2016-09-07 20:53:21 +04:30
Misagh Moayyed 5ce675434b Remove redundant groupId from POM defns 2016-09-07 16:12:34 +04:30
Misagh Moayyed f404a2ae74 Handle date equality when checking for saml assertion validity 2016-09-07 16:10:16 +04:30
Scott 41be540261 Merge pull request #182 from Unicon/Refact 
Minor code adjustments to CommonUtils to use String.isEmpty()
 2016-09-07 07:30:43 -04:00
Misagh Moayyed 5e36559b15 Let assertion validity checks to be more flexible 
when comparing dates.
 2016-09-07 15:47:04 +04:30
Misagh Moayyed ad1ccbd64b Minor code adjustments to CommonUtils to use String.isEmpty() 2016-09-07 15:38:46 +04:30
Misagh Moayyed 72a2ba238f Merge pull request #180 from serac/logpt 
Log proxy ticket returned from /proxy protocol endpoint.
 2016-09-07 15:32:49 +04:30