GitHub user michaelarusso opened a pull request: https://github.com/apache/usergrid/pull/547
Add support for validating Apigee JWTs. You can merge this pull request into a Git repository by running: $ git pull https://github.com/apache/usergrid apigee-sso-provider Alternatively you can review and apply these changes as the patch at: https://github.com/apache/usergrid/pull/547.patch To close this pull request, make a commit to your master/trunk branch with (at least) the following in the commit message: This closes #547 ---- commit c23f16a350d6c653c61884406a3fabbfcf06254a Author: Ayesha Dastagiri <ayesha.am...@gmail.com> Date: 2016-06-23T10:54:13Z initial commit for ApogeeSSO2-Usergrid integration. Added an interface for ExternalToken providers and ApigeeSSO2Provider class which validates the jwt tokens. commit c60aaa751e57b380d8c489f7e91a63094da7f41b Author: Ayesha Dastagiri <ayesha.am...@gmail.com> Date: 2016-06-24T00:11:51Z adding a separate class for UsergridCentral (implements ExternalTokenProvider). Cleaning up tokenServiceImpl -> first check if its user grid token else if SSOProvider is enabled then validate the external token. commit 6756035f77416c237e570291d117c29356f62d3c Author: Ayesha Dastagiri <ayesha.am...@gmail.com> Date: 2016-06-24T17:54:20Z Merge remote-tracking branch 'upstream/master' into SSO2-Usergrid commit ead9e89c27d2cec84ed3d9bff09f83aa24b20292 Author: Michael Russo <mru...@apigee.com> Date: 2016-06-24T17:57:54Z Update README to better reflect tested ES versions. commit b21e477807ea11e167bdd3ad2cd53e8d8d21c1c8 Author: Michael Russo <mru...@apigee.com> Date: 2016-06-24T18:06:31Z Merge commit 'refs/pull/542/head' of github.com:apache/usergrid into apigee-sso-provider commit 7cf07b4ede4ac97df9c7d993755a36e6082d1d08 Author: Michael Russo <mru...@apigee.com> Date: 2016-06-24T23:57:33Z Reconfigure using factory pattern for external SSO providers. Implement JWT token validation ( expiry for example). commit 6c36882e2231863f1628e3fbf0cf93227b957183 Author: Michael Russo <mru...@apigee.com> Date: 2016-06-24T23:58:29Z Removed files that were moved elsewhere. commit 87dad4977d5541ebe31ef120eba399b2eb17f9b1 Author: Ayesha Dastagiri <ayesha.am...@gmail.com> Date: 2016-06-25T00:03:10Z Merge branch 'apigee-sso-provider' of https://github.com/apache/usergrid into SSO2-Usergrid commit 71cbd8e59499ea18c91c2fbaf3343d82652bb116 Author: Michael Russo <mru...@apigee.com> Date: 2016-06-25T00:14:20Z Add license header to new files. commit f097e35eecfbb62bca7344d91a6c68e057c09420 Author: Ayesha Dastagiri <ayesha.am...@gmail.com> Date: 2016-06-27T07:20:31Z Merge branch 'apigee-sso-provider' of https://github.com/apache/usergrid into SSO2-Usergrid commit 37642347b684cedd657101073f7a6b512300d83a Author: Michael Russo <mru...@apigee.com> Date: 2016-06-27T20:38:33Z Allow UG to inject this class even if public key URL is not specified because external SSO is disabled. commit 526748bba4e40c0c2eb79d816be98f0dd62b3e39 Author: Ayesha Dastagiri <ayesha.am...@gmail.com> Date: 2016-06-27T20:39:54Z Merge branch 'apigee-sso-provider' of https://github.com/apache/usergrid into SSO2-Usergrid commit 8d79d365c8bc2387086bdaa72fff13de205ea94e Author: Michael Russo <mru...@apigee.com> Date: 2016-07-06T21:58:00Z Disable new token generation on get user details. commit 66ca27c6fadcd322dcb9f32f3fca2fd14f6bf1d0 Author: Ayesha Dastagiri <ayesha.am...@gmail.com> Date: 2016-07-07T23:34:47Z disabling activationWorkFlow if external SSO provider is enabled. commit 8413f212ee7bdfdd729d4f3f7d93200362e01751 Author: Michael Russo <mru...@apigee.com> Date: 2016-07-08T00:47:52Z Allow CORS pre-flight requests to come through unauthenticated ( bad creds shouldn't stop browsers from trying the real request ). commit 2c59bd8ee5c4313142a929e2f8301b83c00f3a1b Author: Ayesha Dastagiri <ayesha.am...@gmail.com> Date: 2016-07-08T00:52:46Z adding a check to ensure activationConfirmation emails are not sent for external sos provider enabled requests. commit 3ba4e596c5bccffea4d7fd481e55c1590886322e Author: Ayesha Dastagiri <ayesha.am...@gmail.com> Date: 2016-07-08T00:56:39Z Merge branch 'apigee-sso-provider' of https://github.com/apache/usergrid into SSO2-Usergrid commit b583207ab9ce373300af0e19ea9a04014461a431 Author: Ayesha Dastagiri <ayesha.am...@gmail.com> Date: 2016-07-08T15:34:03Z Handling Exception - when admin user is not found in UG as it needs to be activated via external provider. commit 930308d7e30f31f7d9f0f25f0bbb02982c30e86e Author: Ayesha Dastagiri <ayesha.am...@gmail.com> Date: 2016-07-08T18:20:36Z made changes for PR comments.. commit 897d373e1e7916802177f09993712dab65f91bcc Author: Ayesha Dastagiri <ayesha.am...@gmail.com> Date: 2016-07-08T18:32:39Z adding comments. commit 6a790a8ef44a0d64eb4833b1cecb10b68032f8b4 Author: Ayesha Dastagiri <ayesha.am...@gmail.com> Date: 2016-07-08T18:38:46Z removed unnecessary NPE check.. adding it in the methods call it. commit 5c54d15e024229d99c78aa0ca5ae6c9beeab4430 Author: Ayesha Dastagiri <ayesha.am...@gmail.com> Date: 2016-07-08T19:33:43Z changing the import to point to the correct one. commit d393445f19b214788a3b75ea74fb5e93265bedf4 Author: Ayesha Dastagiri <ayesha.am...@gmail.com> Date: 2016-07-11T23:40:45Z reading token from SecurityUtils rather than queryParams. commit 6e093bc0b156c371a461440784180cf0c5487118 Author: Ayesha Dastagiri <ayesha.am...@gmail.com> Date: 2016-07-12T18:40:18Z for users with SSO2 enabled, the admin users cannot reset the password. commit fad65a8dff462c0521ceb46585b1bc5f969a926a Author: Ayesha Dastagiri <ayesha.am...@gmail.com> Date: 2016-07-14T07:48:56Z 1. added /management/tokendetails?token=&provider=&keyurl 2. POST /management/token -> with grant_type : password and super user â> should create a UG token and return. 3. GET /management/me?access_token= â> with super user token -> should return superuser info. 4. Inprogress --> superuser be able to add an org without providing all the administer details. commit 4e93bd6199c47a7da3de4886bced22720c947ab1 Author: Michael Russo <mru...@apigee.com> Date: 2016-07-14T20:26:04Z Fix typo in default properties file. ---- --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---