17 Aug, 2013

1 commit

  • Implemented a servlet filter to filter incoming requests and redirect them XUI based on the result of a new attribute openam-xui-interface-enabled.  Since OPENAM-2811 affects XUI and the ability to login, this filter is currently disabled by default on all installations and upgrades until OPENAM-2811 is fixed.
    
    git-svn-id: https://svn.forgerock.org/openam/trunk@6304 0f4defcf-c51a-4c67-9f44-6fb5eba73c5d
    travis.papp
     

16 Aug, 2013

4 commits


15 Aug, 2013

3 commits

  • * Removing obsolete code
    * Moving lockhart to console
    * Separating out configurator and upgrade tool from openam-core
    * Moving LDIF files to their correct location
    * Removing unnecessary files
    * Fixing component builds after removing openam-locale
    * Updates based on review comments
    
    git-svn-id: https://svn.forgerock.org/openam/trunk@6286 0f4defcf-c51a-4c67-9f44-6fb5eba73c5d
    peter.major
     
  • * Moving resources to their correct locations
    
    git-svn-id: https://svn.forgerock.org/openam/trunk@6285 0f4defcf-c51a-4c67-9f44-6fb5eba73c5d
    peter.major
     
  • * Use commons-lang 2 consistently, and remove commons-lang3
    * Remove JMQ/JMS dependencies
    * Removing backport-util-concurrent
    * Aligning license headers
    * Moving amadmtools to openam-core for now (it may be extracted in the
    future, when all the CLI tools have their own modules)
    * Consolidating POMs
    
    git-svn-id: https://svn.forgerock.org/openam/trunk@6284 0f4defcf-c51a-4c67-9f44-6fb5eba73c5d
    peter.major
     

14 Aug, 2013

5 commits


13 Aug, 2013

2 commits


09 Aug, 2013

1 commit


08 Aug, 2013

3 commits

  • This merge also includes changes for:
    * short reports were always generated when clicking on an actionlink, even
    though the report isn't actually displayed.
    
    * Implementation of OPENAM-1630
    SAML2 metadata signatures are now compliant with the specification.
    Within this change two new realm level option has been introduced:
    metadataSigningKey
    metadataSigningKeyPass
    These will tell OpenAM which private key to use for signing the SAML2
    metadata. In case the SAML entity is remote, OpenAM will try to maintain
    the original XML signature (if present), otherwise it will be signed with
    the configured key.
    
    * Fixing minor bug with configurator in case the system is already upgraded.
    The problem was that the request for upgrade.htm resulted in a redirect
    which has been automatically followed, so the final response code was 200,
    and that confused the configurator.
    
    * Fix for OPENAM-2710
    
    * Fix for OPENAM-2064
    Dashboard service has been extracted to a separate LDIF file and the schema
    is now available for all supported data store types.
    
    git-svn-id: https://svn.forgerock.org/openam/trunk@6187 0f4defcf-c51a-4c67-9f44-6fb5eba73c5d
    peter.major
     
  • By throwing a ServletException in Servlet#init we prevent the continuation
    of the init process and essentually the application deployment will fail
    as well.
    
    git-svn-id: https://svn.forgerock.org/openam/trunk@6173 0f4defcf-c51a-4c67-9f44-6fb5eba73c5d
    peter.major
     
  • Adding the brand new client parameter to authenticate, so remote
    clients can send the IP address of the user for the sake of
    audit logs.
    
    git-svn-id: https://svn.forgerock.org/openam/trunk@6171 0f4defcf-c51a-4c67-9f44-6fb5eba73c5d
    peter.major
     

07 Aug, 2013

1 commit


06 Aug, 2013

1 commit


02 Aug, 2013

1 commit


31 Jul, 2013

2 commits


29 Jul, 2013

4 commits


28 Jul, 2013

3 commits

  • git-svn-id: https://svn.forgerock.org/openam/trunk@6031 0f4defcf-c51a-4c67-9f44-6fb5eba73c5d
    sachiko
     
  • The solution involved following changes:
    * changed the way the login URL is being saved for forwarded request, now
    we only save the forwarded request parameters, hence the originally used
    parameters (like SAMLRequest) are no longer saved
    * changed the SAML redirectAuthentication implementation to include some
    extra request parameters for the goto URL, this way we can ensure that we
    can send back a SAML error response to the SP even when the AuthnRequest is
    no longer available.
    * In case the AuthnRequest is not available (by any means) now we send back
    a SAML error response to the SP instead of showing an HTTP-500
    
    git-svn-id: https://svn.forgerock.org/openam/trunk@6027 0f4defcf-c51a-4c67-9f44-6fb5eba73c5d
    peter.major
     
  • git-svn-id: https://svn.forgerock.org/openam/trunk@6025 0f4defcf-c51a-4c67-9f44-6fb5eba73c5d
    peter.major
     

25 Jul, 2013

1 commit


24 Jul, 2013

2 commits


22 Jul, 2013

3 commits


19 Jul, 2013

3 commits