org.forgerock / org.forgerock.openig

26 Jun, 2015

1 commit

  • d5d69d9e   CR-7358 OPENIG-282 Update doc for new package organization ... Browse Dir » 
    This patch (thanks, Guillaume) builds appropriate Javadoc,
and updates the documentation to match the changed implementation.

It requires the use of -Pforgerock-release when installing
and building the site in order to build the Javadoc.

This patch also moves openig-doc-samples to openig-doc
because the module handles both samples and Javadoc.

git-svn-id: https://svn.forgerock.org/openig/trunk@1058 dbb9e58e-28e6-4ce0-90e8-f11d9605b710
    mark
     

18 Jun, 2015

1 commit

13 May, 2015

1 commit

  • 3dcd0b02   OPENIG-528 Remove `ExceptionFilter` ... Browse Dir » 
    This change is a follow-up on CHF-34 change (`Promise<Response, NeverThrowsException>`).
There is no more any exception to use in the `ExceptionFilter`.
In other words, `ExceptionFilter` is useless in this new context.

User of `ExceptionFilter` are encouraged to use a `SwitchFilter` instead
(leveraging the response status in the condition expression):

```
{
    "name": string,
    "type": "SwitchFilter",
    "config": {
        "onResponse": [
            {
                "condition": "exchange.response.status.code == 500",
                "handler": Handler reference,
            },
            ...
        ]
    }
}
```

Documentation has been cleaned out too.

git-svn-id: https://svn.forgerock.org/openig/trunk@1008 dbb9e58e-28e6-4ce0-90e8-f11d9605b710
    guillaume.sauthier
     

30 Apr, 2015

1 commit

23 Mar, 2015

1 commit

11 Mar, 2015

1 commit

  • 769ff63b   CR-6336 OPENIG-487 Document OAuth2Provider ... Browse Dir » 
    This patch updates docs to account for the new OAuth2Provider.

Apply review suggestions from Violette.

Apply review suggestions from Jean-Charles.

git-svn-id: https://svn.forgerock.org/openig/trunk@915 dbb9e58e-28e6-4ce0-90e8-f11d9605b710
    mark
     

24 Feb, 2015

2 commits

23 Feb, 2015

1 commit

19 Feb, 2015

1 commit

18 Feb, 2015

1 commit

  • e162a3de   CR-6122 OPENIG-273 Simplify password capture configuration ... Browse Dir » 
    This patch adds a handler to generate a DES key.
By using the handler, the reader can avoid
the convoluted steps for generating a key with OpenAM.

Applied review suggestions from Guillaume

git-svn-id: https://svn.forgerock.org/openig/trunk@900 dbb9e58e-28e6-4ce0-90e8-f11d9605b710
    mark
     

13 Feb, 2015

1 commit

05 Feb, 2015

2 commits

29 Jan, 2015

2 commits

23 Jan, 2015

1 commit

19 Jan, 2015

1 commit

14 Jan, 2015

1 commit

12 Dec, 2014

1 commit

05 Dec, 2014

3 commits

  • 4604aaa1   Formatting ... Browse Dir » 
    git-svn-id: https://svn.forgerock.org/openig/trunk@792 dbb9e58e-28e6-4ce0-90e8-f11d9605b710
    mark
     
  • 902f027f   Typo ... Browse Dir » 
    git-svn-id: https://svn.forgerock.org/openig/trunk@791 dbb9e58e-28e6-4ce0-90e8-f11d9605b710
    mark
     
  • 0bb8e078   Fix markup ... Browse Dir » 
    git-svn-id: https://svn.forgerock.org/openig/trunk@790 dbb9e58e-28e6-4ce0-90e8-f11d9605b710
    mark
     

03 Dec, 2014

2 commits

02 Dec, 2014

3 commits

  • 25c457c0   OPENIG-412 Fix logoutURI property description ... Browse Dir » 
    Reviewed onscreen by Jean-Charles.

git-svn-id: https://svn.forgerock.org/openig/trunk@776 dbb9e58e-28e6-4ce0-90e8-f11d9605b710
    mark
     
  • bab15cbc   OPENIG-370 (CR-5528) Rework Console and File LogSinks ... Browse Dir » 
    `ConsoleLogSink` is now rendering each `LogEntry` on 2 lines with a line separator
between entries, the objective being to improve console log readability. The first line
is the header line and display the timestamp of the event (in the current system Locale),
the entry's `LogLevel` and ends with the `Name` (leaf part) of the heap object that is
the source of the log statement.

```
MON DEC 01 20:39:16 CET 2014 (INFO) _Router
Added route 'oauth2-resources.json' defined in file '/Users/guillaume/tmp/demo/config/routes/oauth2-resources.json'
------------------------------
```

Notice that a special treatment is done when logging a `Throwable`: a condensed stack
trace is printed on the console and if (and only if) the `LogSink` has been assigned
a `DEBUG` or `TRACE` level, the full stack trace is printed (independently of the
entry's level).

```
MON DEC 01 15:28:10 CET 2014 (DEBUG) ResourceServer
Initial token resolution has failed
[     OAuth2TokenException] > Initial token resolution has failed
[     OAuth2TokenException] > Authorization Server returned an error
                              (error: bad_request, description: Could not read token in CTS)

org.forgerock.openig.filter.oauth2.OAuth2TokenException: Initial token resolution has failed
  at org.forgerock.openig.filter.oauth2.cache.CachingAccessTokenResolver.resolve(CachingAccessTokenResolver.java:62)
... 33 more
------------------------------
```

A new `stream` property has been added to `ConsoleLogSink` to let the user choose
which PrintStream to use for printing messages:
 * `ERR`: Use System.err (default value, keep compatibility)
 * `OUT`: Use System.out
 * `AUTO`: Select System.out for `TRACE` to `INFO` messages, switching to System.err
   for `WARNING` and `ERROR`.

`FileLogSink` implements a machine parseable `LogEntry` rendering: each entry is on
one line and includes:
 * timestamp of the event (in the current system Locale), always have the same length
 * the entry's `LogLevel`, always 1 word, uppercase
 * the `Name` (leaf part) of the heap object that is the source of the log statement.
 * a `---` separator that segregates the beginning of the line (log statement's context)
   from the entry's message (the rest of the line)

Notice that in the case of `Throwable` printing, the full stack trace is printed as commented lines.

```
MON DEC 01 17:46:21 CET 2014 DEBUG ResourceServer --- Initial token resolution has failed
 # org.forgerock.openig.filter.oauth2.OAuth2TokenException: Initial token resolution has failed
 # 	at org.forgerock.openig.filter.oauth2.cache.CachingAccessTokenResolver.resolve(CachingAccessTokenResolver.java:62)
 # 	at org.forgerock.openig.filter.oauth2.OAuth2ResourceServerFilter.filter(OAuth2ResourceServerFilter.java:205)
 # 	at org.forgerock.openig.decoration.capture.CaptureFilter.filter(CaptureFilter.java:62)
```

git-svn-id: https://svn.forgerock.org/openig/trunk@771 dbb9e58e-28e6-4ce0-90e8-f11d9605b710
    guillaume.sauthier
     
  • 43d750fb   CR-5513 OPENIG-408 Update doc for refinement of decorators ... Browse Dir » 
    git-svn-id: https://svn.forgerock.org/openig/trunk@770 dbb9e58e-28e6-4ce0-90e8-f11d9605b710
    mark
     

01 Dec, 2014

1 commit

28 Nov, 2014

2 commits

26 Nov, 2014

1 commit

25 Nov, 2014

3 commits

24 Nov, 2014

1 commit

22 Nov, 2014

1 commit

21 Nov, 2014

1 commit

20 Nov, 2014

2 commits

  • 0503020c   CR-5343 OPENIG-381 Update doc for change to global decorator config ... Browse Dir » 
    git-svn-id: https://svn.forgerock.org/openig/trunk@738 dbb9e58e-28e6-4ce0-90e8-f11d9605b710
    mark
     
  • 95f1d731   OPENIG-368 (CR-5326) Use exchange.originalUri in OAuth2ClientFilter ... Browse Dir » 
    The Client filter heavily use the `exchange.request.uri` property to compute URIs.

That was causing issues because, in the set of upstream filters/handlers, someone
could have rebased the request URI (usually to globally 'redirect' the message
to the protected application). That was causing wrong URI computations (like an
OAuth2 `redirect_uri` with the hostname of the protected application, instead of
the user-facing one of OpenIG).

This changes fix this behaviour with the introduction of an immutable
`exchange.originalUri` property that is the original request URI, as received by the
web container.

The Client filter is now using this instead of the mutable one (`exchange.request.uri`).

Updated the Nascar page sample of the documentation to limit copy/paste errors.

git-svn-id: https://svn.forgerock.org/openig/trunk@735 dbb9e58e-28e6-4ce0-90e8-f11d9605b710
    guillaume.sauthier