Dynamic Registration : Fix software_statement validation behavior #1444
Assignees
Labels
Milestone
Comments
yuriyz
added
enhancement
yuriyz
changed the title
yuriyz
added a commit
to GluuFederation/oxCore
that referenced
this issue
Aug 14, 2020
yuriyz
added a commit
to GluuFederation/oxCore
that referenced
this issue
Aug 14, 2020
yuriyz
added a commit
to GluuFederation/oxCore
that referenced
this issue
Aug 14, 2020
yuriyz
added a commit
to GluuFederation/oxCore
that referenced
this issue
Aug 14, 2020
yuriyz
added a commit
to GluuFederation/oxCore
that referenced
this issue
Aug 14, 2020
yuriyz
added a commit
to GluuFederation/oxCore
that referenced
this issue
Aug 14, 2020
yuriyz
added a commit
that referenced
this issue
Aug 14, 2020
…script, via configurable jwks claim, via configurable jwks_uri claim. #1444
yuriyz
added a commit
that referenced
this issue
Aug 14, 2020
…: via script, via configurable jwks claim, via configurable jwks_uri claim. #1444
yuriyz
added a commit
to GluuFederation/oxTrust
that referenced
this issue
Aug 14, 2020
yuriyz
added a commit
to GluuFederation/oxTrust
that referenced
this issue
Aug 14, 2020
…es to UI. GluuFederation/oxAuth#1444 (cherry picked from commit d32feac)
yuriyz
added a commit
to GluuFederation/oxTrust
that referenced
this issue
Aug 14, 2020
…es on UI. GluuFederation/oxAuth#1444 (cherry picked from commit d32feac)
yuriyz
added a commit
to GluuFederation/oxTrust
that referenced
this issue
Aug 14, 2020
…operties on UI. GluuFederation/oxAuth#1444 (cherry picked from commit d32feac)
yuriyz
added a commit
that referenced
this issue
Aug 14, 2020
yuriyz
added a commit
that referenced
this issue
Aug 14, 2020
|
There are following options for software statement validation:
Done in 4.2.1 and master. |
yuriyz
added a commit
to GluuFederation/community-edition-setup
that referenced
this issue
Aug 17, 2020
yuriyz
added a commit
to GluuFederation/community-edition-setup
that referenced
this issue
Aug 17, 2020
GluuFederation/oxAuth#1444 (cherry picked from commit add9c5c)
yuriyz
added a commit
to GluuFederation/docs-gluu-server-prod
that referenced
this issue
Aug 17, 2020
yurem
added a commit
to GluuFederation/oxCore
that referenced
this issue
Oct 5, 2021
* Version 4.2.0.Final * Version 4.2.1.Final * Remove uncrypter redis password * Simple test to check session ttl. (cherry picked from commit 4027666) * Simple test to check session ttl. (cherry picked from commit 59bedca) * (4.2.1) During CB entry update make sure TTL is updated too. #199 (cherry picked from commit 956a06f) * Update to conform Couchbase 6.5 * Don't load entry from DB afte merge #200 * Sample for session replacement * Store issued tokens count metrics #1436 * disabled manual tests * Add uniq identifier for each metric entry to allow find whcih node addded this record oxAuth #1438 * Change javax.faces with jakarta.faces * Injection: Cross-Site Scripting oxTrust #2012 * Move some log from DEBUG to TRACE #201 * Update methods to store oxExternalUid as multivalued by default oxAuth #1442 * Update sample to add user with oxExternalUid and search by this attribute * Added new methods related to software_statement validation. GluuFederation/oxAuth#1444 * Renamed new methods related to software_statement validation. GluuFederation/oxAuth#1444 * Corrected DummyClientRegistrationType. GluuFederation/oxAuth#1444 * Fix variable name spelling * Use CustomObjectAttribute instead of CustomAttribute in user services to use JSON data types #1445 * Rename method to get value as object * JAXB-API implementation error oxTrust #2005 * Add new utility methods to xml service * Add ScriptService in oxCore * Add scope to ScriptService * Add methods * Fix dependecy issue * Merge ScriptService into AbstractCustomScriptService * Merge ScriptService into AbstractCustomScriptService * Default custom ScriptService * Version 4.2.1.Final * Load scripts during startup instead of send async even to load them after startup oxCore #202 * Add property to specify when exernal service is loaded * Override default timeout in bucket infor request * Fail isConnected method check if at least one bucket is not online * Version 4.2.2-SNAPSHOT * Add additional methods * Added CouchbaseConnectionConfiguration (config api) https://github.com/GluuFederation/oxauth-config/issues/136 * Added config id https://github.com/GluuFederation/oxauth-config/issues/136 * During CB entry update make sure TTL is updated too. #199 * Turn off metric reported by default if there is no configuration * Simple test to check session ttl. * disabled manual test * Simple test to check session ttl. * Revert " During CB entry update make sure TTL is updated too. #199" This reverts commit d2f8041 * Moving noisy log lines to trace * oxAuth reloads custom scripts (file method) * (4.2.2) Avoid race condition during saving grant object in cache GluuFederation/oxAuth#1478 * (4.2.2) oxcore : added revoke token custom script GluuFederation/oxAuth#1502 * Destroy CouchbaseEnvironment object on container restart #207 * Destroy CouchbaseEnvironment object on container restart #207 * Fix typo in method name * Metric Service clean all entries when DB is Couchbase #206 * Metric Service clean all entries when DB is Couchbase #206 * Fix method to update log level #204 * Don't fail in javadocs error * Add boolean switcher for id token in logout uri #2046 * Persistence extension script still running after disabled oxAuth #1514 * Version 4.2.2.Final * Version 4.2.3-SNAPSHOT * (4.2.2) oxcore : removed printing password from JcaDocumentStoreConfiguration and WebDavDocumentStoreConfiguration * Use UTF-8 encodeing during convertion base64 to XML * Fix XML doc reading and signature validation * Commented updateAppendersAndLogLevel() method which cause memory leak #204 * Temporary enabled back old solution. #204 * Version 4.2.3.Final * Version 4.3.0.Final * New interceptions script to modify id_token oxAuth #1523 * Add license * Convert decrypted data to UTF-8 string * Add keepAliveInterval CB SDK support * (4.2.3) ORM : allow to ignore TTL update on merging. GluuFederation/oxAuth#1528 * Revert "(4.2.3) ORM : allow to ignore TTL update on merging." This reverts commit 478a71b * Allow to skip TTL set on Couchbase document update Jans ORM #6 * Don't update ttl on docuemnt update by default * (4.2.3) Avoid NPE in BaseEntryManager.getExpirationValue() GluuFederation/oxAuth#1528 * Revert "Don't update ttl on docuemnt update by default" This reverts commit 8707a19 * fix: issue #216 * feat: move ORM to oxOrm * feat: move ORM to oxOrm * feat: move ORM to oxOrm * feat: move ORM to oxOrm * feat: move ORM to oxOrm * feat: move ORM to oxOrm * feat: move ORM to oxOrm * feat: move ORM to oxOrm * feat: merge ORM from Jans * fix: skip metrics clean up because we do this in oxAuth * fix: merge cache changes from Jans * fix: add application type * Remove unused attributes * feat: add method to determine if DB is Spanner * fix: #217 * feat: allow to use unecrypted password in JCA config * feat: decryptedPassword should be ignored * fix: fix annotation type in JCA config * fix: add removed from JDK 11 group interface * feat: upgrade libs * feat: upgrade libs * feat: update libs * feat: update libs * feat: Add methods, see GluuFederation/scim#18 * feat: augment scim protection modes GluuFederation/scim#20 * feat: simplify interface GluuFederation/scim#18 * feat: add field for GluuFederation/scim#22 * feat: add class to check if proxy specified * feat: add method to lookup typed entry * feat: check if OC is null * feat: add no-protection scim mode GluuFederation/scim#26 * Version 4.3.0.Final * Merge with 4.3.0 Co-authored-by: Gasmyr <thomas@gluu.org> Co-authored-by: YuriyZ <yzabrovarniy@gmail.com> Co-authored-by: Jose <bonustrack310@gmail.com>
yurem
added a commit
to GluuFederation/oxOrm
that referenced
this issue
Oct 5, 2021
* Version 4.2.0.Final * Version 4.2.1.Final * Remove uncrypter redis password * Simple test to check session ttl. (cherry picked from commit 4027666) * Simple test to check session ttl. (cherry picked from commit 59bedca) * (4.2.1) During CB entry update make sure TTL is updated too. GluuFederation/oxCore#199 (cherry picked from commit 956a06f) * Update to conform Couchbase 6.5 * Don't load entry from DB afte merge #200 * Sample for session replacement * Store issued tokens count metrics #1436 * disabled manual tests * Add uniq identifier for each metric entry to allow find whcih node addded this record oxAuth #1438 * Change javax.faces with jakarta.faces * Injection: Cross-Site Scripting oxTrust #2012 * Move some log from DEBUG to TRACE #201 * Update methods to store oxExternalUid as multivalued by default oxAuth #1442 * Update sample to add user with oxExternalUid and search by this attribute * Added new methods related to software_statement validation. GluuFederation/oxAuth#1444 * Renamed new methods related to software_statement validation. GluuFederation/oxAuth#1444 * Corrected DummyClientRegistrationType. GluuFederation/oxAuth#1444 * Fix variable name spelling * Use CustomObjectAttribute instead of CustomAttribute in user services to use JSON data types #1445 * Rename method to get value as object * JAXB-API implementation error oxTrust #2005 * Add new utility methods to xml service * Add ScriptService in oxCore * Add scope to ScriptService * Add methods * Fix dependecy issue * Merge ScriptService into AbstractCustomScriptService * Merge ScriptService into AbstractCustomScriptService * Default custom ScriptService * Version 4.2.1.Final * Load scripts during startup instead of send async even to load them after startup oxCore #202 * Add property to specify when exernal service is loaded * Override default timeout in bucket infor request * Fail isConnected method check if at least one bucket is not online * Version 4.2.2-SNAPSHOT * Add additional methods * Added CouchbaseConnectionConfiguration (config api) https://github.com/GluuFederation/oxauth-config/issues/136 * Added config id https://github.com/GluuFederation/oxauth-config/issues/136 * During CB entry update make sure TTL is updated too. #199 * Turn off metric reported by default if there is no configuration * Simple test to check session ttl. * disabled manual test * Simple test to check session ttl. * Revert " During CB entry update make sure TTL is updated too. #199" This reverts commit d2f8041 * Moving noisy log lines to trace * oxAuth reloads custom scripts (file method) * (4.2.2) Avoid race condition during saving grant object in cache GluuFederation/oxAuth#1478 * (4.2.2) oxcore : added revoke token custom script GluuFederation/oxAuth#1502 * Destroy CouchbaseEnvironment object on container restart #207 * Destroy CouchbaseEnvironment object on container restart #207 * Fix typo in method name * Metric Service clean all entries when DB is Couchbase #206 * Metric Service clean all entries when DB is Couchbase #206 * Fix method to update log level #204 * Don't fail in javadocs error * Add boolean switcher for id token in logout uri #2046 * Persistence extension script still running after disabled oxAuth #1514 * Version 4.2.2.Final * Version 4.2.3-SNAPSHOT * (4.2.2) oxcore : removed printing password from JcaDocumentStoreConfiguration and WebDavDocumentStoreConfiguration * Use UTF-8 encodeing during convertion base64 to XML * Fix XML doc reading and signature validation * Commented updateAppendersAndLogLevel() method which cause memory leak GluuFederation/oxCore#204 * Temporary enabled back old solution. GluuFederation/oxCore#204 * Version 4.2.3.Final * Version 4.3.0.Final * New interceptions script to modify id_token oxAuth #1523 * Add license * Convert decrypted data to UTF-8 string * Add keepAliveInterval CB SDK support * (4.2.3) ORM : allow to ignore TTL update on merging. GluuFederation/oxAuth#1528 * Revert "(4.2.3) ORM : allow to ignore TTL update on merging." This reverts commit 478a71b * Allow to skip TTL set on Couchbase document update Jans ORM #6 * Don't update ttl on docuemnt update by default * (4.2.3) Avoid NPE in BaseEntryManager.getExpirationValue() GluuFederation/oxAuth#1528 * Revert "Don't update ttl on docuemnt update by default" This reverts commit 8707a19 * fix: issue #216 * feat: merge from jans-orm * feat: merge from jans-orm * feat: merge ORM from Jans * feat: merge ORM from Jans * feat: merge ORM from Jans * feat: merge ORM from Jans * fix: move schema bean to right location * fix: Fix license and config prefix * fix: fix test failues * fix: fix test failures * fix: fix compilation issues * fix: fix tests failures * feat: merge ORM from Jans * fix: issue #216 * fix: fix eq conversion if table column is JSON * feat: update tests to conform SQL ORM API * feat: add sample to search if user belong to group * feat: throw exception when objectClass used in filter is unknown * feat: add entry class type to MappingException message * fix: fix filter test * fix: fix filter tests * chore: sync with jans-orm * fix: throw exception if table not exists * fix: fix typo in code * feat: don't use lower case in authenticate if DB is Spanner * Throw ORM exception is entryClass is not defined * feat: throw right exception when column is undefined * fix(4.3) : transfered TTL 30 days bugfix to cb specific manager https://github.com/JanssenProject/jans-orm/issues/25 * fix(4.3) : avoid npe https://github.com/JanssenProject/jans-orm/issues/25 https://github.com/JanssenProject/jans-auth-server/issues/126 * fix(4.3.0) : added missed parethesis https://github.com/JanssenProject/jans-orm/issues/25 * feat: Support Fpis Truststores * chore: make baseEntry extend Entry * fix(oxOrm-oxtrust): cache Refresh not working on 4.3.0 version. #2072 * feat: reffactor exception catch in connection provider * fix: fix properties helper split method * Revert "fix: fix properties helper split method" This reverts commit 2403686. * Revert "fix(oxOrm-oxtrust): cache Refresh not working on 4.3.0 version. #2072" This reverts commit 3377a6a. * feat: add test to check custom field removal * fix: fix search by multivalued column in SQL * Version 4.3.0.Final * fix: fix tests * fix: fix tests * fix: fix tests * fix(4.3) : corrected attributes according to existing schema GluuFederation/oxAuth#1552 * Merge with 4.3.0 Co-authored-by: Gasmyr <thomas@gluu.org> Co-authored-by: YuriyZ <yzabrovarniy@gmail.com> Co-authored-by: Jose <bonustrack310@gmail.com>
yurem
added a commit
to GluuFederation/oxTrust
that referenced
this issue
Oct 5, 2021
* Version 4.2.0.Final * Version 4.2.1.Final * Remove unencrypted redis password from database * reset password when Secret question and Secret Answer are active. #2001 * Not able to delete claims redirect uri for any client #2002 * Use same resource messages varible name in oxAuth and oxTrust * Remove temporary file * Add .metadata to ingore list * Fix i18n messages issue * Remove old dependencies * Fix Some UI issues * Add health-check controller to oxtrust-server * buttons in json configuration ? #2003 * Device authz grant type supported and configuration manage. GluuFederation/oxAuth#141 * Remove old dependency * Store issued tokens count metrics #1436 * Use libs versions defined in bom file * Changes in this commit: * Re-introduced oxtrust-api into oxTrust * oxtrust : added dynamicRegistrationAllowedPasswordGrantScopes to oxauth conf GluuFederation/oxAuth#1130 * oxtrust : added description for dynamicRegistrationAllowedPasswordGrantScopes GluuFederation/oxAuth#1130 (cherry picked from commit 1e71ea5) * Change javax.faces with jakarta.faces * Injection: Cross-Site Scripting #2012 * Injection: Cross-Site Scripting #2012 * oxtrust : added new software statement related configuration properties to UI. GluuFederation/oxAuth#1444 (cherry picked from commit d32feac) * oxtrust : corrected software statement related configuration properties on UI. GluuFederation/oxAuth#1444 (cherry picked from commit d32feac) * Fix autocomplete issues, update bootsfaces to latest * Initiate user logout upon successfull password reset * add spacer * Fix security question field on forgot password reset form * Change label / values for Scope visibility #2015 * (4.2.1) oxtrust : added description of refreshTokenExtendLifetimeOnRotation configuration property GluuFederation/oxAuth#1449 (cherry picked from commit bf86387) * Visual issues on OIDC client advanced settings page #2018 * U2F enrollments not shown in User's Authentication Methods panel #2017 * Fix issues after Richfaces version changed * Fix popup issue after richfaces upgrade * UI fixes * Password reset functionality is not working when security Question and security answer is entered. #2019 * Password reset functionality is not working when security Question and security answer is entered. #2019 * oxtrust : forbid fragment in redirect_uri #2020 * JAXB-API implementation error #2005 * Convert trust contact from xml to json * Forgot password functionality not working with captcha #2022 * fixed scopes inventory * Disable browser's autocomplete for password fields * gluu-release-attributes-post-processor * CR copy binary attributes to local LDAP as base64 string #2025 * Remove CustomScriptService * Remove CustomScriptService * Use CustomScriptManager instead of ScriptService * Fix compilation issue * Use CustomScriptService * Add U2F checkU2fAttestations option * Fix search person by uid in person add action * Fix search user by e-mail and uniqueness check * Add checkU2fAttestations Fido2 property * Fix search user by uid when uid is case sensetive * Fix search person by uid in person add action * Revert "Fix search person by uid in person add action" This reverts commit c964095. * Fix search person by uid in person add action * Version 4.2.1.Final * Saml Configured relay party : assertionlifetime value box is so small its value cannot be read . #2026 * Use latest 5.4.x hibernate validator * Improve health check * 503-fix * Error Viewing InCommon Metadata #2029 * unverified-rp fix * double nameid fix * Re-try to download UMA metadata * Add ability to specify oxauth address instead of calling FQDN #2032 * Branch for 4.2.2 * Version 4.2.2-SNAPSHOT * oxTrust should use acr level to check acr instead of acr_name #2033 * oxTrust should use acr level to check acr instead of acr_name #2033 * Fix possibles memory leak * Remove static fields usage to improve memory usage * Move some noisy log lines to debug/trace * Prevent registration of the attribute with the same name #2040 * Prevent registration of the attribute with the same name #2040 * 7 day statistics on home screen has strange behavior * (4.2.2) oxtrust : added discoveryCacheLifetimeInMinutes to GUI GluuFederation/oxAuth#1487 (cherry picked from commit f415f14) * On oxtrust passport provider, the automatically generated callback url is invalid when using containers #2041 * Fix compilation error * Fix missing parent metric branch bug * Fix missing parent metric branch bug * (4.2.2) oxtrust : added keySelectionStrategy to GUI GluuFederation/oxAuth#1494 * (4.2.2) oxtrust : set format=select GluuFederation/oxAuth#1494 * Add flag field, see GluuFederation/oxAuth#1499 * Fix compilation issue * Remove sector_identifier_uri menu with dialogs and provide ability #2044 * Remove sector_identifier_uri menu with dialogs and provide ability to enter it as text with automatic population of redirect_uris #2044 * Passport Config: field mapping dropdown #2027 * Passport Config: field mapping dropdown #2027 * Passport Config: field mapping dropdown #2027 * (4.2.2) oxtrust : added subjectIdentifierBasedOnWholeUriBackwardCompatibility and sectorIdentifierCacheLifetimeInMinutes configuration properties GluuFederation/oxAuth#1503 * (4.2.2) oxtrust : added REVOKE_TOKEN custom script type GluuFederation/oxAuth#1502 * Don't stop on unsuccessfull BC installation * Use oxAuth configuration to check if application should render login graph on home page #2045 * Fix method to update log level oxAuth #204 * Fix OIDC error * Passport Config: field mapping dropdown #2027 * Missing information on server status view #2047 * The request is missing a required parameter error obtained in flow 3 #2046 * Version 4.2.2.Final * Use MetricService to prepare base branches * 4.2.2-SNAPSHOT -> 4.2.2.Final * Version 4.2.3-SNAPSHOT * Fix OIDC error * Passport Config: field mapping dropdown #2027 * The request is missing a required parameter error obtained in flow 3 #2046 * (4.2.3) oxtrust : Added stat related configurations to UI. GluuFederation/oxAuth#1512 * Remove swagger file from oxTrust repo * Remove swagger file from oxTrust repo * Version 4.2.3.Final * Version 4.3.0.Final * Use documentStoreService instead of local file system to load metadata file * New interceptions script to modify id_token oxAuth #1523 * oxtrust: added keyAlgsAllowedForGeneration configuration property. GluuFederation/oxAuth#1525 * Backport: Added cibaEnabled flag in the configuration. GluuFederation/oxAuth#1404 * Add defaults passport strategies * feat(oxtrust): design configuration for openid-client new passport provider strategy #2052 * feat(oxtrust): design configuration for openid-client new passport provider strategy #2052 * fix(oxtrust): remove sector identifier pages from the code #2057 * fix(oxtrust): support custom app schema and appschema #2057 * fix(oxtrust): add pagination for search feature against a big enough userbase #2061 * fix(oxtrust): add pagination for search feature against a big enough userbase #2061 * fix(oxtrust): add pagination for search feature against a big enough userbase #2061 * fix(oxtrust): add pagination for search feature against a big enough userbase #2061 * fix(oxtrust): add pagination for search feature against a big enough userbase #2061 * feat: move ORM to oxOrm * feat: update to conform latest ORM * feat: update to conform ORM * feat: update to conform ORM * feat: update to conform ORM * fix: update to conform new API * fix: update to conform new API * fix: compilation fixes * feat: add SQL/Spanner support * feat: update models * fix: cache Refresh: Don't print ldap password in log #2055 * feat: merge ORM from Jans * feat: merge ORM from Jans * feat: update to conform new API * fix: fix search when DB is table based * fix: remove deprecated attributes * fix: remove unused attribute * feat: sync gluuOxtrustStat with bean * fix: missing oxAuth dynamic configuration after save #2067 * fix: update cleaner job to use more effective RDBS methods #2066 * fix: missing oxAuth dynamic configuration after save #2067 * fix: don't update GluuConfiguration bean attributes in get method #2065 * feat: add new ORM dependecies * fix: remove userPassword from client * fix: remove userPassword from client * fix: don't attempt ot create branches * feat: don't use lower case in authenticate if DB is Spanner * feat(oxtrust): setting custom acr-value for idp-initiated flow #2051 * feat(oxtrust): enable custom validation checked by default (incorrectly) #2070 * feat(oxtrust): fido device service log for new registered user with scim should be in warn log #2068 * feat(oxtrust): Rremove 'generate sp metadata' feature #2043 * feat(oxtrust): add person form nrashes with new objectclass #2069 * Fix(oxTrust): saml nameid configuration is not working in cloud edition #2073 * Fix(oxTrust): saml nameid configuration is not working in cloud edition #2073 * feat: show JCA document store password properly * feat: show JCA document store password properly * Fix(oxTrust): saml nameid configuration is not working in cloud edition #2073 * Fix(oxTrust): first uma rpt token after starting up #2060 * Fix(oxTrust): saml nameid configuration is not working in cloud edition #2073 * fix(oxtrust): saml nameid configuration is not working in cloud edition #2073 * fix(oxtrust): saml nameid configuration is not working in cloud edition #2073 * fix(oxtrust): fill correct provider options as per type in passport provider configuration #2074 * fix(oxtrust): email attribute validation Not working on view profile section. #2054 * feat(admin-ui): add option to show only enables or disabled scripts * chore: remove joda lib usage * feat(oxtrust): update morris.js library to latest #2078 * feat(oxtrust): update morris.js library to latest #2078 * fix: include postAuthenticationFlows for relying-party shibboleth config * feat(oxtrust): fill correct provider options as per type in passport provider configuration #2074 * feat(oxtrust): adding extra libraries created wrong classpath in oxauth.xml #2077 * feat(oxtrust): adding extra libraries created wrong classpath in oxauth.xml #2077 * feat(oxtrust): cache refresh not working on 4.3.0 version. #2072 * fix(oxTrust): oops error on clicking Other custom Scripts #2081 * feat: update libs * feat(oxtrust): password reset success completion redirection #2082 * fix: add shibboleth transcoding rules generation Added code to generate Shibboleth 4 style transcoding rules which are useful in the resolution of issue #74 in oxShibboleth * fix: minor code style fixes and SAML1 references removal * fix: remove SAML1 reference from gluu-attribute-rules.xml.vm * fix(oxtrust): fix active scripts checkbox label * feat: adjust json-config UI form as per GluuFederation/scim#20 * feat: remove test mode property usage GluuFederation/scim#20 * feat: add OAuth protection mechanism for scim GluuFederation/scim#20 * feat: add OAuth protection mechanism for scim pt 2. GluuFederation/scim#20 * feat: remove extra logging statements GluuFederation/scim#20 * feat: fix commit 0ff85f7 GluuFederation/scim#20 * feat(oxtrust): enhance usability of scopes picker in client edition form #2085 * feat(oxtrust): updating client id in passport IDP-initiated flow config throws Oops error. #2084 * feat: added http request extraction for shibboleth * fix: malformed gluu-attribute-rules.xml.vm * fix: relying-party template generated incorrect config data for shibboleth * feat: adjust json-config UI form as per GluuFederation/scim#22 * feat: use URL Connection client executor when proxy is required * fix: "Organization Configuration" throwing error #2075 * feat: use new method to lookup manger group * feat: register new method in gluufn library * fix: fix NPE when version is not exists * fix: create connection provider before checking it's status * fix: update to conform new ORM * fix: fix AD server configuration * (oxTrust) fix oops error when the sector identifier uri is not valid or the content is not valid * chore: refactor REST services protection logic Related GluuFederation/scim#26 * feat: add no-protection mode GluuFederation/scim#26 * feat: store acr in user profile to allow use it in IDP * Version 4.3.0.Final * fix: use Final binaries * fix: don't fail on javadoc * fix(oxtrust): identity throws oops error on providing invalid sector uri which is not friendly, returning “oops” is a bug, and must be escalated. #2091 * feat: shorten sentence GluuFederation/scim#26 Co-authored-by: Gasmyr <thomas@gluu.org> Co-authored-by: Milton BO <jmcm578@gmail.com> Co-authored-by: YuriyZ <yzabrovarniy@gmail.com> Co-authored-by: Dzouato Djeumen Rolain Bonaventure <uprightech@gmail.com> Co-authored-by: Harjinder Dhanjal <malotian@gmail.com> Co-authored-by: Jose <bonustrack310@gmail.com> Co-authored-by: gasmyr <gasmyrmougang@yahoo.fr>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the issue
Currently if
software_statementis provided to AS withoutjwksorjwks_uriclaim it is rejected. There many problems with it:We will provide both:
a) configurable claims which can be forced if needed
b) make jwks fetching via dynamic registration custom script.
The text was updated successfully, but these errors were encountered: