Start with version 6 #291
Merged
Start with version 6 #291
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
* Require lcobucci/jwt v5 * Accommodate for new immutable behavior of Builder * Update expected error message for RP initiated logout conformance test * Update upgrade.md --------- Co-authored-by: Marko Ivančić <[email protected]>
* Fix psalm errors
* Use {} instead of
* Use v3 everywhere for actions/cache
* Add PHP v8.3 to tests
* Enclose key in quotes to suppress unexpected dash warning
---------
Co-authored-by: Marko Ivančić <[email protected]>
* Start with EntityStatementController * Refactor JWT and JWKS builders to support OpenID Federation PKI configuration * Cover ModuleConfig with unit tests * Stop using NotFound exception bc it is imposibble to mock * Start with SimpleSAMLphp bridge classes * Start using enums for common options, keys... * Bump PHP version requirement to v8.2 * Start testing on SSP v2.2 * Initial federation entity configuration endpoint implementation --------- Co-authored-by: Marko Ivančić <[email protected]>
…_code_and_pkce (#219) * Support single page app browser clients using authorization code and pkce * phpunit: mock all dependencies. Make the csrfprotection the injected dependency instead of the session. * Use mock for ModuleConfig * psalm changes * Add CsrfProtection as a service --------- Co-authored-by: Patrick Radtke <[email protected]> Co-authored-by: Marko Ivančić <[email protected]>
* Replace use-statements with fqdn phpdocs (src) * Replace use-statements with fqdn phpdocs (tests) * Remove duplicate sniffs - already part of SSP test-framework
Move client State and Type to radio buttons Hide reset secret for public client
* Add content type header for entity configuration response * Add Registration Types property to clients * Initial fetch endpoint implementation --------- Co-authored-by: Marko Ivančić <[email protected]>
* Move to PHP syntax for Symfony routing * Make authorization endpoint available as Symfony route * Make token endpoint available as Symfony route * Make userinfo endpoint available as Symfony route * Make end_session endpoint available as Symfony route * Make jwks endpoint available as Symfony route * Update OpenID Configuration path * Update UPGRADE doc * Handle situation with Apache stripping of Authorization HTTP header in requests * Leave authorization header in Docker container --------- Co-authored-by: Marko Ivančić <[email protected]>
* DB Migration: handle sqlite outside of phpunit tests * Fix warning for exampleauth:UserPass
Co-authored-by: Marko Ivančić <[email protected]>
…onsent_mod (#228) * Switch to ProcessingChain for authproc filters * Add more tests. * Fix psalm errors * Add some manual testing tips for authproc testing; run an authproc as part of conformance tests * Update documentation --------- Co-authored-by: Marko Ivančić <[email protected]> Co-authored-by: Patrick <[email protected]>
* Bump laminas/laminas-diactoros to v3 * Refactor client registration types namespace * Require openid-tools package * Add federation_jwks property to clients * Switch to docker compose --------- Co-authored-by: Marko Ivančić <[email protected]>
* Add support for HTTP POST method on authorization endpoint * Update request rules so to check request params based on HTTP methods * Change namespace for request rules * Get rid of GetClientFromRequestTrait --------- Co-authored-by: Marko Ivančić <[email protected]>
* Introduce RequestParamsResolver * Add jwks client property * Add Request Object support --------- Co-authored-by: Marko Ivančić <[email protected]>
* Do not assume the database will accept integer for boolean * Use PDO::PARAM_BOOL when binding boolean values. Do not assume boolean value to be a tinyint. * Add tests for RevokeTokenByAuthCodeIdTrait * run migrations for tests * fixing test memory db configuration * Testcontainer multiple databases * README.md update * README.md update * Improve Mac docker support; set DB timeouts * move integration and unit tests into different directories.Using different phpunit configuration files for unit and integration tests. * Run only the phpunit tests by default * split the tests into two runs instead of one * Try to merge the coverage reports --------- Co-authored-by: Patrick Radtke <[email protected]>
* New `jwks_uri`, `signed_jwks_uri`, `registration_type`, `updated_at`, `created_at`, `expires_at`, `is_federated` client properties * Federation Request Object support * Trust Chain Resolution support * Automatic Client Registration support --------- Co-authored-by: Marko Ivančić <[email protected]>
…#250) * Initial private_key_jwt implementation * Introduce Protocol Cache for Client Assertion token reuse check --------- Co-authored-by: Marko Ivančić <[email protected]>
* Remove iss param requirement from fetch endpoint, per OIDF draft 39 * Update notions of .well-known URLs * Update readme * Add other supported algos in federation context * Update jwt signature config * Fix psalm --------- Co-authored-by: Marko Ivančić <[email protected]>
* Add cache to client repository * Add cache to access token repository * Add cache to AllowedOriginRepository * Add cache to AuthCodeRepository * Add cache to RefreshTokenRepository * Move PDO logic from entities to repositories * Get rid off RevokeTokenByAuthCodeIdTrait * Add coverage * Update readme
* Add Trust Mark validation capabilities * Add federation participation limiting capabilities based on Trust Marks
* Move module_oidc.php to module_oidc.php.dist * Adjust path to config in tests * Adjust path to config in integration tests
… scenario (#283) * Add key rollover options * Add coverage * Update docs
* Remove OAuth2 Implicit flow * Update docs * Add some coverage
Merge pull request #292 from simplesamlphp/wip-version-6-cleanup
Codecov ReportAttention: Patch coverage is
Additional details and impacted files@@ Coverage Diff @@
## master #291 +/- ##
============================================
- Coverage 53.35% 52.66% -0.70%
- Complexity 984 1463 +479
============================================
Files 109 140 +31
Lines 3812 6361 +2549
============================================
+ Hits 2034 3350 +1316
- Misses 1778 3011 +1233 ☔ View full report in Codecov by Sentry. |
* Start with text message IDs * Update translations * Fix some of the Dutch translations * Add Croatian language * Add es, fr, it langs back as empty translation files --------- Co-authored-by: Tim van Dijen <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
I'll go over some final cleaning up, and then plan to go out with v6 of the module.
If anyone thinks that something crucial should also be done for v6, please let me know.