summaryrefslogtreecommitdiff
path: root/eaaf_modules/eaaf_module_auth_sl20/src/main
AgeCommit message (Collapse)AuthorFilesLines
2023-08-21fix(sl20): remove line-of-code that was a copy&past mistakeThomas1-6/+1
2023-08-21feat(sl20): add basic certificate-validity check into JWS validationThomas2-2/+10
The check can be disabled by using the configuration property: modules.sl20.security.truststore.need.valid.certificate
2023-08-21refact(sl20): clean-up SL20 response handlerThomas1-147/+177
2023-05-31refact(core): change some more internal representation to make it JSON ↵Thomas1-4/+7
serializable
2023-05-15refact(core): change process-data holder-implementation to use Jackson ↵Thomas2-0/+13
serialization for storage
2023-04-26feat(core): add extension-point to central errorHandler service to set ↵Thomas2-1/+54
application specific information into error-GUI model
2022-11-24fix(sl20): remove full http response body from Exception messageThomas1-3/+3
Reason: Exception messages are illustrated as UX errors
2022-11-23fix(sl20): use valid encoded log-message parametersThomas1-3/+3
2022-11-07feat(sl20): add response property for IDA eIDAS-comply flagThomas1-0/+4
2022-09-22fix(sl20): refactor signature and encryption validation because it can be ↵Thomas2-50/+84
skipped - SBA Pentest finds a pattern that skip security validation SBA(202209-10.2)
2022-08-24refact(sl20): use custom static JSON Mapper implementationThomas1-1/+1
2022-08-18refact(sl20): switch to one single JSONMapper instsanceThomas5-166/+46
2022-08-11refact(core): move JoseUtils into 'eaaf-utils' moduleThomas2-375/+2
2022-07-04feat(sl20): add 'eidasAuthLevel' flag into IDA authentication request to VDAThomas2-6/+10
2022-01-08[fix] solve circular dependencies between 'AuthenticationManager', ↵Thomas1-6/+4
'ModuleRegistration', and 'AuthModule' implementations
2021-08-10remove misplaced log message in request VDA taskThomas1-3/+2
2021-08-05fix wrong error handling and missing TransactionId in case of an error ↵Thomas2-11/+0
during restart of process-engine (OEGVEID-2053)
2021-06-18update some log messagesThomas2-6/+9
2021-03-25add additional logging into SL2.0 tasksThomas2-3/+15
2021-03-22switch to RC1 build of next moa-sig versionThomas1-9/+9
2021-03-11update error-handling in SL2.0 binding-utilsThomas1-7/+17
2021-03-09refactor SL20EidDataValidationException to optimize error handlingThomas1-3/+13
2021-02-18update error-handling in case of a VDA communication failedThomas1-5/+8
2021-01-22code-style and logging optimizationsThomas Lenz1-7/+7
2020-12-04set global transactionId as SL2.0 transactionIdThomas Lenz1-2/+2
2020-11-04refactoring of SL2.0 response processing to mitigate problems with ↵Thomas Lenz3-104/+153
ConnectionPool of Apache http-client
2020-11-02change order of IAIK CryptoProvider registrationThomas Lenz2-4/+20
Update JWS and JWE impl. to mitigate problems if IAIK and BC provider are loaded
2020-10-21add new configuration property to switch between log-level "WARN" and "INFO" ↵Thomas Lenz1-13/+12
based on internal errorIds remove duplicated logging
2020-10-13Merge branch 'nightlyBuild' of gitlab.iaik.tugraz.at:egiz/eaaf_components ↵Thomas Lenz2-30/+86
into nightlyBuild
2020-10-13Serialize exceptions in error-handler manually to fix problems with ↵Thomas Lenz1-8/+4
Serialization in some caching frameworks
2020-10-07implement work-around to fix possible incompatibility between IAIK ↵Thomas Lenz2-30/+86
JCE/Eccelerate and JWS lib in case of ECC keys
2020-08-26refactor JWS and JWE implementation in SL2.0 module to reuse JWS and JWE ↵Thomas Lenz4-159/+390
specific implementation in other classes
2020-07-01update log message in case of SL2.0 VDA connection errorThomas Lenz1-3/+8
2020-06-22fix problem with JOSE encryption in combination with HSM-FacadeThomas Lenz2-2/+16
add jUnit test for JoseUtils
2020-06-19fix bug in SL20 JOSE-Utils that prohibits HSM-Facade Usage and only allows ↵Thomas Lenz1-6/+34
RSA keys
2020-06-10fix codestyle and moa-sig module clean-upThomas Lenz1-2/+0
2020-06-10add i18n parameter into SL2.0 requestThomas Lenz2-54/+77
2020-06-03add jUnit test for EAAF process-engineThomas Lenz2-2/+3
2020-04-08change http parameter name for active Session on VDA sideThomas Lenz1-2/+2
2020-04-07fix CodestyleThomas Lenz1-1/+1
2020-04-07set VDA sessionId into SL2.0 VDA request if it is availableThomas Lenz2-1/+31
2020-04-07inject VDA sessionId from SL2.0 error-response into internal error holderThomas Lenz3-24/+80
2020-03-26fix codestyleThomas Lenz2-0/+3
2020-03-20add JOSE header into JWS verificationresult DAOThomas Lenz2-18/+29
2020-03-19add 'smartphone' as parameter for authType on VDA sideThomas Lenz1-1/+1
2020-03-19codestyle problemThomas Lenz1-0/+1
2020-03-19inject authType parameter in VDA request to select a specific authentication ↵Thomas Lenz2-0/+75
method
2020-03-11refactor HttpClientFactory.java to build HTTP clients with different ↵Thomas Lenz1-1/+1
authentication mechanisms
2020-03-10inject X509 certificates into JOSE signature-verification response if availableThomas Lenz1-1/+1
2020-02-17Update sign method to add parameter for JOSE x509c headerThomas Lenz2-27/+68
Inject special Java Security Provider if KeyStore needs a specific one