21a7dedf73d1ce1a0280e04ecedeea1075ffae81 |
|
28-Nov-2016 |
Ram Anaswara <ram.anaswara@forgerock.com> |
AME-12520 Add CTS Notification broker based notifications for PolicySet events
Remove Notifier and NotificationServlet classes and unused properties
Add Notifications to client-sdk
Null notification broker binding for ssoadm |
da2818d9363a5ce6d77d2273e2d5a1cb3d83bbe8 |
|
14-Nov-2016 |
Ram Anaswara <ram.anaswara@forgerock.com> |
Revert "AME-12520 Add CTS Notification broker based notifications for policy and PolicySet events"
This reverts commit c7f8d57a4005a15718d8cad9fd966f5ffea6e1b0. |
c7f8d57a4005a15718d8cad9fd966f5ffea6e1b0 |
|
11-Nov-2016 |
Ram Anaswara <ram.anaswara@forgerock.com> |
AME-12520 Add CTS Notification broker based notifications for policy and PolicySet events
Remove Notifier and NotificationServlet classes |
65e9e8f64c87ef17367f132e86cf5f2da33512e3 |
|
10-Nov-2016 |
Peter Major <peter.major@forgerock.com> |
OPENAM-9874 |
9d9fe1fc09ded5c22489a661631e1f34c2a7e989 |
|
27-Oct-2016 |
Tom Rumsey <tom.rumsey@forgerock.com> |
AME-12293 Remove restricted token code from ClientSdkOperations |
455c8aed1502eb55279bc9bf39b5ac6dbb2dbfff |
|
21-Oct-2016 |
Joe Bandenburg <joe.bandenburg@forgerock.com> |
AME-12306 Add servlet filter to authenticate WebSocket requests |
f4e5874c8953942c0f98a7b5d54a881da20dc4f5 |
|
27-Jul-2016 |
Diego Colantoni <diego.colantoni@forgerock.com> |
Revert "AME-11110 Update to use Guice 4.0"
This reverts commit 053760e2fe72d86e76511cfe0eddc90230c5373b. |
053760e2fe72d86e76511cfe0eddc90230c5373b |
|
26-Jul-2016 |
Phill Cunnington <phill.cunnington@forgerock.com> |
AME-11110 Update to use Guice 4.0 |
1a14164f86e24531eae1bf21e492e7bce721ad1c |
|
29-Apr-2016 |
Phill Cunnington <phill.cunnington@forgerock.com> |
AME-10490 Remove deprecated OAuth 1 implementation |
4bec808ce266fd8d84d8d25c03443cfbbdc1ae9c |
|
08-Jan-2016 |
Neil Madden <neil.madden@forgerock.com> |
OPENAM-7395 |
412e1e94939e06eaec3523eafe3e1130349f9486 |
|
07-Jan-2016 |
Tom Rumsey <Tom Rumsey> |
OPENAM-7340 Add a servlet filter for invalid FQDNs, and reject REST calls that use an invalid FQDN |
c3323789511ac5199d6f6d000a407d77072182eb |
|
21-Dec-2015 |
James Phillpotts <james.github@potes.org.uk> |
OPENAM-7915 Corrected Servlet 3.0 schema declaration |
87e1cbcd02820f55e1816ee4efe9e9127be22a11 |
|
17-Dec-2015 |
James Phillpotts <james.github@potes.org.uk> |
OPENAM-7761 Use Servlet v3.0 |
572b3f4160547f20cff24cd1b18f60cb5b541329 |
|
02-Dec-2015 |
Phill Cunnington <phill.cunnington@forgerock.com> |
Add access filter for jato pages in web.xml |
2fe1e6ab330f5f88e97684012ff29cde7e61c9c4 |
|
24-Nov-2015 |
Dirk Hogan <dirk.hogan@forgerock.com> |
AME-8505 Removal of legacy sts code |
9446b3153033ef93a59c5288074e6c688e7fdf5d |
|
13-Nov-2015 |
Phill Cunnington <phill.cunnington@forgerock.com> |
AME-9098/AME-9100 Refactoring AMSetupFilter |
449854c2a07b50ea64d9d6a8b03d18d4afeeee43 |
|
27-Oct-2015 |
Ken Stubbings <ken.stubbings@forgerock.com> |
AME-7905 - Refactor SAML code base
AME-8078 - SAML2 Authentication Module
AME-8598 - SAML2 AuthModule: Code Review
Large Commit covering the work on the SAML2 refactor and authentication module.
More detail on the individual commits is preservered in the branch feature/AME-8078-saml2-authentication-module on the fork repository openam-newton |
eca6c70374c07de3d21cfbca0915fb9e5285d108 |
|
25-Aug-2015 |
Pavel Shapovalov <pshapovalov@exadel.com> |
CR-8034 / AME-8176 & AME-8177. Remove old PE and SE |
c7c09754c30011ad8f85141f9e73b5679feae6d8 |
|
14-Aug-2015 |
Phill Cunnington <phill.cunnington@forgerock.com> |
AME-6274 Add authentication to /xacml endpoint, bind OAuth2 CREST endpoints and startup fixes |
61f4bb8d03701927c71c456f32904bb83092547b |
|
13-Aug-2015 |
Phill Cunnington <phill.cunnington@forgerock.com> |
AME-6274 Start of refactoring the RestEndpoints registration mechanism |
d72b59ef0fcc0226a5a655ad967e4c24729afa3e |
|
13-Aug-2015 |
Phill Cunnington <phill.cunnington@forgerock.com> |
AME-6274 CR-7525 Add integration with commons HTTP Framework |
aa3a2aee90d1c61946a08c839d9838be7658b453 |
|
10-Jul-2015 |
Craig McDonnell <craig.mcdonnell@forgerock.com> |
AME-7672 CR-7567 Add an API for creating & publishing audit events |
4a3945617c7cc1af94aab5d239c5bae74e00facc |
|
15-Jun-2015 |
Peter Major <majorpetya@gmail.com> |
OPENAM-5941 CR-7218 CR-7252 Server-side fixes for XUI caching issue |
5ac19d529aefc79504464993970692f150c44166 |
|
17-May-2015 |
Craig McDonnell <craig.mcdonnell@forgerock.com> |
AME-6913 CR-6950 CR-6952 CR-6953 CR-6954 Implement Audit TransactionId |
11d06b0c73fb3f8ffd03bffe3b415ddc05a918c0 |
|
22-Apr-2015 |
Sachiko Wallace <sachiko.wallace@forgerock.com> |
OPENAM-5624 CR-6430 Reintroduce dashboard endpoint on 11.0.x |
95641bdea6a861276e67ad4d22dc28b0dd856836 |
|
24-Mar-2015 |
David Luna <david.luna@forgerock.com> |
OPENAM-5438 - resolve iss references in oidc/oauth discovery |
cf7c84e5f2b84fcf20141093797090e4f819a8e0 |
|
02-Mar-2015 |
Quentin CASTEL <quentin.castel@forgerock.com> |
OPENAM-5326 Make OAuth2 properly realm-aware
Reverse OPENAM-5232 and apply OPENAM-4556, OPENAM-4333 and OPENAM-5457 |
70893ec9c113a0893a6c128528765eebba7ba5db |
|
25-Feb-2015 |
Phill Cunnington <phill.cunnington@forgerock.com> |
AME-5570 CR-6144 Create policy application on the fly |
a093731116a8c24d49b903df7602cf586e499b45 |
|
12-Feb-2015 |
Phill Cunnington <phill.cunnington@forgerock.com> |
Epic: AME-3550 - UMA
Commit contains stories: AME-5385, AME-5386 (CR-5922), AME-5391 (CR-5924), AME-5382 (CR-5813),
AME-5383 (CR-5846), AME-5384 (CR-5847), AME-5387 (CR-5869), AME-5390 (CR-5822),
AME-5392 (CR-5839), AME-5535 (CR-5936), AME-5534 (CR-5921), AME-5498 (CR-5933),
AME-5537 (CR-6037), AME-5539 (CR-5980)
initial_uma@r12470 |
61ea54c309169801a1833f99729723071c24c047 |
|
03-Feb-2015 |
Dirk Hogan <dirk.hogan@forgerock.com> |
soap-sts: AME-3998, AME-5401, AME-5501; CR-5776, CR-5895, CR-5894 |
c0202e5a338212ae386c672821f6dc4931c50f45 |
|
18-Dec-2014 |
James Phillpotts <james.phillpotts@forgerock.com> |
OPENAM-5232 OPENAM-4333 Make OAuth2 properly realm-aware |
af7b94ef7fa9a904280a01df099ca01c123e4d81 |
|
29-Oct-2014 |
Rich Riley <rich.j.riley@gmail.com> |
OPENAM-4277 CR-5043 - Allow cookie and header token validation via REST |
692a2338ea74582dceacca33772ca2ab7fffa70b |
|
13-Oct-2014 |
Dirk Hogan <dirk.hogan@forgerock.com> |
AME-4264, CR-4815. Registered SetupListener with AMStartupServlet to publish previously-published rest-sts instances in site deployment. |
35579419d6433dcf5ed882de02c6eb1739749733 |
|
08-Oct-2014 |
Dirk Hogan <dirk.hogan@forgerock.com> |
AME-2712, CR-4746. Authz filtering for rest-sts-publish service and token generation service |
686c8ee4288680b0048ebd68fae8dea680c8f003 |
|
07-Oct-2014 |
Peter Major <majorpetya@gmail.com> |
OPENAM-4513 CR-4749 Improve CORS filter example declaration in web.xml |
6844ba67b94a6962decb2128480f6b8a29053949 |
|
30-Sep-2014 |
Craig McDonnell <craig.mcdonnell@forgerock.com> |
AME-4616 CR-4649 Add XACML Restlet endpoint ; AME-4610 CR-4670 XACML import updates existing entities |
7b09ff83c4ae53ff29b28d7c359ac90fe015a3a3 |
|
05-Sep-2014 |
Dirk Hogan <dirk.hogan@forgerock.com> |
AME-4014, CR-4405: supporting X509->SAML2 token transformations. AME-4364, CR-4432 - adding version information to CREST service invocations. |
b1d33c0a07fc2bb7ed7d4712f62492aee8dcc650 |
|
05-Sep-2014 |
David Luna <david.luna@forgerock.com> |
OPENAM-3848, FR-354 - Update OpenAM's REST routing mechanism to allow authorization filters to be added via new fluent API. |
9f80f4f537152f3b88b0c3327601c9215474d9f2 |
|
25-Jun-2014 |
Dirk Hogan <dirk.hogan@forgerock.com> |
AME-3538, AME-3539, CR-3797, CR-3849 |
f3781d2501d9988405e075c423412fe5d6ae4557 |
|
24-May-2014 |
Peter Major <majorpetya@gmail.com> |
Fix for OPENAM-4005 - review: FR-197
Modifying RestAuthorizationDispatcherFilter to handle /sessions
authorization. |
f19f604ac8c1bb7f593d18dd7983c068571dd7ec |
|
24-May-2014 |
Peter Major <majorpetya@gmail.com> |
Fix for OPENAM-3277 - review: FR-196
Modifying RestAuthorizationDispatcherFilter to handle /serverinfo
authorization. |
49debee05a15c73103169394f6c43b30825e5e29 |
|
23-May-2014 |
Peter Major <majorpetya@gmail.com> |
Fix for OPENAM-4005 - review: FR-197
Modifying RestAuthorizationDispatcherFilter to handle /sessions
authorization. |
3d728eb531f902b995028e323f6337458089c8af |
|
23-May-2014 |
Peter Major <majorpetya@gmail.com> |
Fix for OPENAM-3277 - review: FR-196
Modifying RestAuthorizationDispatcherFilter to handle /serverinfo
authorization. |
520a5e615cfc90c2567e0a2250e1184b8997c589 |
|
16-May-2014 |
David Luna <david.luna@forgerock.com> |
OPENAM-3569, FR-184 - Update web.xml to include example configuration for CORS Filter |
9d406c6b25ce9f6bf266b077443e723b95962914 |
|
06-May-2014 |
Dirk Hogan <dirk.hogan@forgerock.com> |
AME-3383. CR-3453. New TokenGenerationService for consumption by STS to issue SAML2 assertions. |
db82b8637db6d9aa4ceddcada46454b2026809e8 |
|
30-Apr-2014 |
David Luna <david.luna@forgerock.com> |
AME-3080 - Admin-only filter applied to the new policies endpoint |
c432a6f868b6a2afe8822bd98f4b92334a51b121 |
|
29-Apr-2014 |
David Luna <david.luna@forgerock.com> |
AME-3292, CR-3435 - New CREST endpoint for ConditionTypes |
756d4b8bce5a58e5bd8fe686688b6c42d2e7052b |
|
28-Apr-2014 |
Phill Cunnington <phill.cunnington@forgerock.com> |
CR-3445 - AME-3113 - Prepare for OAuth2 and OpenID Connect Provider to become a common library - part 2 |
e2bcc5d8b425102df9a060f6292d75efd9d0b1c8 |
|
17-Apr-2014 |
David Luna <david.luna@forgerock.com> |
AME-3268, CR-3392 - New CREST end point for conditions |
87f8fb2e00fe51edba803ad3c1e27f104e3e1775 |
|
08-Apr-2014 |
David Luna <david.luna@forgerock.com> |
AME-3285, CR-3337 - New CREST ernd point for application types. See bug (sub-task) for documentation. |
073875d677d0cc89aa2cc1187c975225a2ead9d3 |
|
11-Mar-2014 |
Phill Cunnington <phill.cunnington@forgerock.com> |
CR-3161 - AME-3114 - Break OAuth2/OpenID Connect compile dependency on OpenAM |
db971b011e196ad5265a044272ea0f593ab034ae |
|
04-Mar-2014 |
Dirk Hogan <dirk.hogan@forgerock.com> |
AME-2711 - programmatic deployment of rest STS instances, CR-3122 |
39c9951d7ad4ba6a178ca1a1d821d52d461643e3 |
|
24-Feb-2014 |
Phill Cunnington <phill.cunnington@forgerock.com> |
CR-3070 - CAF-33 - Update OpenAMs Authz Modules |
20f5623265019e171eea2c55da2cd32688877506 |
|
20-Feb-2014 |
Phill Cunnington <phill.cunnington@forgerock.com> |
CR-3054 - AME-3008 - Update OpenAM to use forgerock-guice in commons |
421876caa0de41cedd6b9a4fdbbfb5b466ae1028 |
|
14-Feb-2014 |
Dirk Hogan <dirk.hogan@forgerock.com> |
adding build and config-related changes to support new sts |
d306f3c6dba4560f469157d1d822563facc3c8f6 |
|
05-Feb-2014 |
Phill Cunnington <phill.cunnington@forgerock.com> |
CR-2940 - AME-2827 - Remove RestSecurityContextMapper |
7f874541de09fed43949a7a54ff99cdf3a935382 |
|
21-Jan-2014 |
Phill Cunnington <phill.cunnington@forgerock.com> |
CR-2834 - AME-2647 - Authenticate REST endpoint to be able to contain realm(s) in URI |
bac066aba91585304ce46b92b923c344ab8d2150 |
|
15-Jan-2014 |
Phill Cunnington <phill.cunnington@forgerock.com> |
AME-2703 Update REST endpoint protection to work with forgerock-auth-filters 1.3.0-SNAPSHOT updates |
e98243b974b7e971bdfed8be4ea7bb32aa7a2366 |
|
07-Jan-2014 |
Phill Cunnington <phill.cunnington@forgerock.com> |
OPENAM-3303 - CR-2767 - Replace Jersey dependency with Restlet in REST auth endpoint |
540cd5e8f46a63b02abfce19909d63dc9b6d54b0 |
|
13-Dec-2013 |
Peter Major <majorpetya@gmail.com> |
Fix for OPENAM-3156 - review: CR-2667
Removing distributable element from web.xml to prevent web containers from
enabling HTTP session clustering unnecessarily. |
6e3fa65282111f21b972dabb00384cc550742f8d |
|
13-Dec-2013 |
Peter Major <majorpetya@gmail.com> |
Fix for OPENAM-3156 - review: CR-2667
Removing distributable element from web.xml to prevent web containers from
enabling HTTP session clustering unnecessarily. |
5dbd3b4ab6fc3d8e661a7710cab483dd5981b5bd |
|
05-Dec-2013 |
Peter Major <majorpetya@gmail.com> |
OPENAM-3183 - CR-2527 - The forgerock-REST authN filters inside of web.xml only handle top-level-realm use cases |
f9d5331ccbf5f3076dc6e127f0c133d6ef369938 |
|
01-Nov-2013 |
Phill Cunnington <phill.cunnington@forgerock.com> |
OPENAM-3183 - CR-2527 - The forgerock-REST authN filters inside of web.xml only handle top-level-realm use cases |
fc2d5b36e404fcb59b8b138e27d2ad0c04018e4e |
|
26-Sep-2013 |
Jason Lemay <jason.lemay@forgerock.com> |
CR-2373 OpenAM-3024 put the OAuth 2 rest endpoints under the common rest auth filter. |
3d55bad5ebea221363fcb00684dd148fa5b9c0fe |
|
20-Sep-2013 |
Phill Cunnington <phill.cunnington@forgerock.com> |
AME-2446 - CR-2335 - CR-2336 Align versioning with platform-wide REST API versioning |
d24963503621d0fc1c93ede10a86aa9657497fcf |
|
18-Sep-2013 |
Phill Cunnington <phill.cunnington@forgerock.com> |
OPENAM-2929 - CR-2325 REST ?_action=idFromSession returning 403 when containing cookie of similar name |
3ca7360f3bfa1ad8a63bf5e2ac80e055a552511b |
|
04-Sep-2013 |
Andrew Forrest <andrew.forrest@forgerock.com> |
OPENAM-2880: Included request dispatcher to the XUI filter |
1e91f841b41d31431a3ddc3e0025e86f4ddc12ce |
|
04-Sep-2013 |
Andrew Forrest <andrew.forrest@forgerock.com> |
OPENAM-2880 (CR-2261): Modified the XUIFilter configuration to allow forwarded URLs |
c955bac1dcc9c48f1d3554ec79bffa835077738d |
|
17-Aug-2013 |
Travis Papp <travis.papp@forgerock.com> |
CR-2174 AME-1913
Implemented a servlet filter to filter incoming requests and redirect them XUI based on the result of a new attribute openam-xui-interface-enabled. Since OPENAM-2811 affects XUI and the ability to login, this filter is currently disabled by default on all installations and upgrades until OPENAM-2811 is fixed. |
93ec516f9f64e9474816cd56a19b6d297796e83b |
|
17-Aug-2013 |
Jason Lemay <jason.lemay@forgerock.com> |
CR-2171 AME-397 OpenID Session Management |
ffa4b06ba6ac4ba2f4d4e41c5e4b732b2e461c0a |
|
14-Aug-2013 |
Phill Cunnington <phill.cunnington@forgerock.com> |
AME-2375 - CR-2146 CREST library upgrade |
27633ea37022e8a3ce11c7f292657470e03c33c2 |
|
05-Aug-2013 |
Phill Cunnington <phill.cunnington@forgerock.com> |
AME-2158 - CR-2111 Protect users, groups and agents REST API's with authn and authz filter |
74550b867b679f5cbf5454acfbb07adc36afa4ad |
|
05-Aug-2013 |
Phill Cunnington <phill.cunnington@forgerock.com> |
OPENAM-2723 - CR-2110 |
7cc5a14908d2df7fb51e834a804c75c04e61d742 |
|
01-Aug-2013 |
Phill Cunnington <phill.cunnington@forgerock.com> |
OPENAM-2680 - CR-2076 XUI logout only works with administrator |
3a5224be692ea5be3b308187af013d17d04abcb0 |
|
23-Jul-2013 |
Phill Cunnington <phill.cunnington@forgerock.com> |
AME-2157 fix for incorrect package name in web.xml |
0168f5460b1b03f6a299a576af3b42e37015b804 |
|
22-Jul-2013 |
Phill Cunnington <phill.cunnington@forgerock.com> |
AME-2157 - CR-2029 Extend authorization filter to add flexible configuration and logging |
961910c1409211a8d9223dddd568af1d70ccb7fc |
|
11-Jul-2013 |
Robert Wapshott <robert.wapshott@forgerock.com> |
OPENAM-2198 CR-1934 The Session REST endpoint is now protected by an admin level SSOToken Filter to prevent unauthorised access. |
ac5abaa43bb3f660295d002e94650a1770dc1c68 |
|
10-Jul-2013 |
Phill Cunnington <phill.cunnington@forgerock.com> |
AME-2075 - CR-1976 |
f720a6e4cf0eab17d4a0fc5177e85bb34fbfd74d |
|
12-Jun-2013 |
Phill Cunnington <phill.cunnington@forgerock.com> |
AME-521 LocalSSOTokenSessionModule for JASPI commons authn filter |
750edb9389556d71164ec69c342a5ad52c05fea4 |
|
12-Jun-2013 |
Jason Lemay <jason.lemay@forgerock.com> |
AME-396 CR-1802 |
8f7e975b2c8f8ca4e108d632b8cfa8281b561381 |
|
01-May-2013 |
Phill Cunnington <phill.cunnington@forgerock.com> |
AME-1306 Implement modular Guice mappings |
9472a3f03dfdf23d419d53f6c6b9021da39ee12b |
|
24-Mar-2013 |
jeff.schenk <jeff.schenk@forgerock.com> |
AME-1451 -- Remove XACML3 Prototype End-Point, fixed comment. |
9719b217ca84a440a685f8f0d1ff60e509069f2c |
|
24-Mar-2013 |
jeff.schenk <jeff.schenk@forgerock.com> |
AME-1451 -- Remove XACML3 Prototype End-Point |
a393c458f24ae38c8259dea2245aa436abe248f9 |
|
20-Mar-2013 |
Phill Cunnington <phill.cunnington@forgerock.com> |
AME-1046 Rest Auth Service Improvements and AME-1158 Rest Auth Service with IWA Authentication |
64d3fa08513695d9a3c20bdd22593aa9d0d900b4 |
|
05-Mar-2013 |
Alin Brici <alin.brici@forgerock.com> |
AME-349. CR-1326. |
73308f54e60e4cdb893e8b02955497e8f45b5893 |
|
21-Feb-2013 |
jeff.schenk <jeff.schenk@forgerock.com> |
AME-407 / CR-1293, as well as additional Function Objects. For Sprint 18. |
5dc171fcee4f9e3e144b120a10a51dadbde01f69 |
|
18-Feb-2013 |
Phill Cunnington <phill.cunnington@forgerock.com> |
AME-350 Merging in AME-350 Implement REST Auth service |
4a48635cccc646ac479830fd4df0ee8e10c5bd8d |
|
02-Feb-2013 |
jeff.schenk <jeff.schenk@forgerock.com> |
AME-302/AME-712/AME-722 -- Refactoring of locale's and applicable property files from openam-server-only to openam-locale. A couple of additional changes to fix NPE's and latest XACML3 development. |
bd563314e425c4bf7675643269f2b4633ad39f42 |
|
30-Nov-2012 |
Allan Foster <allan.foster@forgerock.com> |
Checking in AME-237 and CR 987 |
ee933bfd59c32ed501b81213e88f2f1c56053888 |
|
21-Nov-2012 |
Mark de Reeper <mark.dereeper@forgerock.com> |
Fix for OPENAM-1871, review CR-918. |
f58c87ece2202b8f85310d8885c7e39a7f435c09 |
|
09-Nov-2012 |
Jason Lemay <jason.lemay@forgerock.com> |
AME-186 CR-788 moving OAuth 2.0 provider into trunk |
e8721886dbfd32e88cc7077cbee4b6bb1b44b443 |
|
31-Oct-2012 |
Peter Major <majorpetya@gmail.com> |
Fix for AME-202 - review: CR-802 |