summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2023-05-22chore(saml2): optimize metadata signature-verification filterThomas2-11/+121
Select trusted X509 certificates based on KeyInfo from XML-Signature, if possible
2023-05-15chore(utils): optimize type-specific deserializationThomas3-2/+6
2023-05-15refact(core): change process-data holder-implementation to use Jackson ↵Thomas17-24/+210
serialization for storage
2023-05-15feat(utils): add custom Jackson (de)serialization for polymorph class structuresThomas2-0/+170
2023-05-15feat(utils): optimize custom Java serialization implementationThomas3-21/+335
2023-05-13refact(core): remove double serialization in central error handlingThomas4-82/+40
2023-05-11refact(core): make data class Pair JSON serialisableThomas1-7/+9
2023-05-11chore(core): update third-party libsThomas4-10/+26
2023-05-11feat(spring): add authorisation configuration for multi-modul projectsThomas3-3/+62
2023-05-11build(core): add internal EGIZ repositorityThomas1-1/+11
2023-05-10feat(spring): add BasicAuth user object and new Interface to load users in ↵Thomas3-0/+121
multi-module projects
2023-05-08chore(moa-sig): switch to latest moa-sig version 3.1.9Thomas1-1/+1
2023-05-08refactor(moa-sig): rename IAIK dependencyThomas2-0/+0
2023-05-08style(core): fix codestyle issuesThomas2-3/+5
2023-05-08build(core): change maven repo id because it was already usedThomas1-1/+1
2023-05-08feat(core): add in-line method to KeyStoreFactoryThomas13-2/+701
The keystore type 'inline' can be used to build a keystore by using PEM encoded certificate and key files. Example: pkcs12:keystore?private=certs/key.pem&cert=certs/certificate.pem
2023-05-08chore(moa-sig): add new versions of IAIK libs.Thomas18-19/+91
2023-04-26feat(core): add extension-point to central errorHandler service to set ↵Thomas11-31/+230
application specific information into error-GUI model
2023-04-21chore(log): update to latest version of MDC logger filter from BRZThomas2-21/+75
Based on spring-boot-auto-configuration 2.7.3
2023-04-21feat(log): add MDC based ID to correlate single HTTP requestsThomas1-2/+43
2023-04-12build(core): switch to next snapshot versionThomas12-12/+12
2023-04-12build(core): switch to next release version1.3.14Thomas12-12/+12
2023-03-22chore(core): update third-party libsThomas1-3/+32
Inlcude Spring 5.3.26 to fix CVE-2023-20859, CVE-2023-20861, CVE-2023-20860
2023-03-20fix(gui): escape error parameters that contains a '{' because that is not ↵Thomas1-1/+3
supported by error template
2023-03-10fix(ux): add error parameters, if they are available, in case of specific ↵Thomas1-1/+2
exceptions too
2023-02-21test(hsm): fix broken test, because HSM-Facade change an error messageThomas1-1/+1
2023-02-21chore(libs): update third-party libsThomas1-10/+10
- commons-fileupload to 1.5 to fix CVE-2023-24998
2023-02-06build(core): re-name reporting module to mitigate problem with some IDE'sThomas1-3/+3
2023-02-06feat(http): add request interceptor to pre-emptive HTTP Basic authenticationThomas4-0/+99
2023-02-06fix(core): add missing parameter to log messageThomas1-2/+3
2023-01-18build(core): switch to next snapshot versionThomas12-12/+12
2023-01-18build(core): switch to next release version1.3.13Thomas12-12/+12
2023-01-18fix(saml2): support XML decryption by using key from HSM-FacadeThomas6-15/+239
Details: openSAML4 uses org.apache.xml.security.algorithms.JCEMapper to define JCE cryptoprovider for openSAML crypto. operations. However, this JCEMapper is not used for openSAML Decrypter, so it must be set manually.
2023-01-17test(jose): add JWE encryption/decryptio test that uses a wrong decryption keyThomas1-0/+80
2023-01-09build(core): switch to next snapshot versionThomas12-12/+12
2023-01-09chore(core): change loglevel from 'error' to 'info'1.3.12Thomas1-1/+1
2023-01-09build(core): switch to next snapshot versionThomas12-12/+12
2022-12-19build(core): switch to next release version1.3.11Thomas12-12/+12
2022-12-19feat(core): support not-notified eIDAS LoAThomas4-12/+23
2022-12-19chore(pvp2): read LoA matching-mode from service-provider configurationThomas1-6/+6
2022-11-30chore(core): switch log-level to INFO because log-level classification will ↵Thomas1-1/+1
be done by centrial error-handling
2022-11-29feat(core): add ticket-based error-handling service as EAAF core functionalityThomas12-1/+1066
2022-11-24build(core): switch to next snapshot versionThomas12-12/+12
2022-11-24build(core): switch to next release version1.3.10Thomas12-12/+12
2022-11-24fix(sl20): remove full http response body from Exception messageThomas1-3/+3
Reason: Exception messages are illustrated as UX errors
2022-11-23build(core): switch to next snapshot versionThomas12-12/+12
2022-11-23build(core): switch to next release version1.3.9Thomas12-12/+12
2022-11-23fix(sl20): use valid encoded log-message parametersThomas1-3/+3
2022-11-21build(core): switch to next snapshot versionThomas12-12/+12
2022-11-21build(core): switch to next release version1.3.8Thomas12-12/+12