GitHub user michaelarusso opened a pull request:
https://github.com/apache/usergrid/pull/547
Add support for validating Apigee JWTs.
You can merge this pull request into a Git repository by running:
$ git pull https://github.com/apache/usergrid apigee-sso-provider
Alternatively you can review and apply these changes as the patch at:
https://github.com/apache/usergrid/pull/547.patch
To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:
This closes #547
----
commit c23f16a350d6c653c61884406a3fabbfcf06254a
Author: Ayesha Dastagiri <ayesha.am...@gmail.com>
Date: 2016-06-23T10:54:13Z
initial commit for ApogeeSSO2-Usergrid integration. Added an interface for
ExternalToken providers and ApigeeSSO2Provider class which validates the jwt
tokens.
commit c60aaa751e57b380d8c489f7e91a63094da7f41b
Author: Ayesha Dastagiri <ayesha.am...@gmail.com>
Date: 2016-06-24T00:11:51Z
adding a separate class for UsergridCentral (implements
ExternalTokenProvider).
Cleaning up tokenServiceImpl -> first check if its user grid token else if
SSOProvider is enabled then validate the external token.
commit 6756035f77416c237e570291d117c29356f62d3c
Author: Ayesha Dastagiri <ayesha.am...@gmail.com>
Date: 2016-06-24T17:54:20Z
Merge remote-tracking branch 'upstream/master' into SSO2-Usergrid
commit ead9e89c27d2cec84ed3d9bff09f83aa24b20292
Author: Michael Russo <mru...@apigee.com>
Date: 2016-06-24T17:57:54Z
Update README to better reflect tested ES versions.
commit b21e477807ea11e167bdd3ad2cd53e8d8d21c1c8
Author: Michael Russo <mru...@apigee.com>
Date: 2016-06-24T18:06:31Z
Merge commit 'refs/pull/542/head' of github.com:apache/usergrid into
apigee-sso-provider
commit 7cf07b4ede4ac97df9c7d993755a36e6082d1d08
Author: Michael Russo <mru...@apigee.com>
Date: 2016-06-24T23:57:33Z
Reconfigure using factory pattern for external SSO providers. Implement
JWT token validation ( expiry for example).
commit 6c36882e2231863f1628e3fbf0cf93227b957183
Author: Michael Russo <mru...@apigee.com>
Date: 2016-06-24T23:58:29Z
Removed files that were moved elsewhere.
commit 87dad4977d5541ebe31ef120eba399b2eb17f9b1
Author: Ayesha Dastagiri <ayesha.am...@gmail.com>
Date: 2016-06-25T00:03:10Z
Merge branch 'apigee-sso-provider' of https://github.com/apache/usergrid
into SSO2-Usergrid
commit 71cbd8e59499ea18c91c2fbaf3343d82652bb116
Author: Michael Russo <mru...@apigee.com>
Date: 2016-06-25T00:14:20Z
Add license header to new files.
commit f097e35eecfbb62bca7344d91a6c68e057c09420
Author: Ayesha Dastagiri <ayesha.am...@gmail.com>
Date: 2016-06-27T07:20:31Z
Merge branch 'apigee-sso-provider' of https://github.com/apache/usergrid
into SSO2-Usergrid
commit 37642347b684cedd657101073f7a6b512300d83a
Author: Michael Russo <mru...@apigee.com>
Date: 2016-06-27T20:38:33Z
Allow UG to inject this class even if public key URL is not specified
because external SSO is disabled.
commit 526748bba4e40c0c2eb79d816be98f0dd62b3e39
Author: Ayesha Dastagiri <ayesha.am...@gmail.com>
Date: 2016-06-27T20:39:54Z
Merge branch 'apigee-sso-provider' of https://github.com/apache/usergrid
into SSO2-Usergrid
commit 8d79d365c8bc2387086bdaa72fff13de205ea94e
Author: Michael Russo <mru...@apigee.com>
Date: 2016-07-06T21:58:00Z
Disable new token generation on get user details.
commit 66ca27c6fadcd322dcb9f32f3fca2fd14f6bf1d0
Author: Ayesha Dastagiri <ayesha.am...@gmail.com>
Date: 2016-07-07T23:34:47Z
disabling activationWorkFlow if external SSO provider is enabled.
commit 8413f212ee7bdfdd729d4f3f7d93200362e01751
Author: Michael Russo <mru...@apigee.com>
Date: 2016-07-08T00:47:52Z
Allow CORS pre-flight requests to come through unauthenticated ( bad creds
shouldn't stop browsers from trying the real request ).
commit 2c59bd8ee5c4313142a929e2f8301b83c00f3a1b
Author: Ayesha Dastagiri <ayesha.am...@gmail.com>
Date: 2016-07-08T00:52:46Z
adding a check to ensure activationConfirmation emails are not sent for
external sos provider enabled requests.
commit 3ba4e596c5bccffea4d7fd481e55c1590886322e
Author: Ayesha Dastagiri <ayesha.am...@gmail.com>
Date: 2016-07-08T00:56:39Z
Merge branch 'apigee-sso-provider' of https://github.com/apache/usergrid
into SSO2-Usergrid
commit b583207ab9ce373300af0e19ea9a04014461a431
Author: Ayesha Dastagiri <ayesha.am...@gmail.com>
Date: 2016-07-08T15:34:03Z
Handling Exception - when admin user is not found in UG as it needs to be
activated via external provider.
commit 930308d7e30f31f7d9f0f25f0bbb02982c30e86e
Author: Ayesha Dastagiri <ayesha.am...@gmail.com>
Date: 2016-07-08T18:20:36Z
made changes for PR comments..
commit 897d373e1e7916802177f09993712dab65f91bcc
Author: Ayesha Dastagiri <ayesha.am...@gmail.com>
Date: 2016-07-08T18:32:39Z
adding comments.
commit 6a790a8ef44a0d64eb4833b1cecb10b68032f8b4
Author: Ayesha Dastagiri <ayesha.am...@gmail.com>
Date: 2016-07-08T18:38:46Z
removed unnecessary NPE check.. adding it in the methods call it.
commit 5c54d15e024229d99c78aa0ca5ae6c9beeab4430
Author: Ayesha Dastagiri <ayesha.am...@gmail.com>
Date: 2016-07-08T19:33:43Z
changing the import to point to the correct one.
commit d393445f19b214788a3b75ea74fb5e93265bedf4
Author: Ayesha Dastagiri <ayesha.am...@gmail.com>
Date: 2016-07-11T23:40:45Z
reading token from SecurityUtils rather than queryParams.
commit 6e093bc0b156c371a461440784180cf0c5487118
Author: Ayesha Dastagiri <ayesha.am...@gmail.com>
Date: 2016-07-12T18:40:18Z
for users with SSO2 enabled, the admin users cannot reset the password.
commit fad65a8dff462c0521ceb46585b1bc5f969a926a
Author: Ayesha Dastagiri <ayesha.am...@gmail.com>
Date: 2016-07-14T07:48:56Z
1. added /management/tokendetails?token=&provider=&keyurl
2. POST /management/token -> with grant_type : password and super user â>
should create a UG token and return.
3. GET /management/me?access_token= â> with super user token -> should
return superuser info.
4. Inprogress --> superuser be able to add an org without providing all the
administer details.
commit 4e93bd6199c47a7da3de4886bced22720c947ab1
Author: Michael Russo <mru...@apigee.com>
Date: 2016-07-14T20:26:04Z
Fix typo in default properties file.
----
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at infrastruct...@apache.org or file a JIRA ticket
with INFRA.
---
