Age | Commit message (Collapse) | Author | Files | Lines |
|
|
|
Bug fix: OA URL escape
Verify Country-Code in Foreign Identities Mode (AT login not possible)
|
|
--change BKU selection templates and SendAssertion Templates to responsive design. Therefore, OA parameter "useIframe" is not required anymore.
|
|
|
|
- add two TestModules
- test Database connectivity
- test IdentityLink verification (inkl. MOA-SP test)
|
|
|
|
|
|
insert "errorRedirectURL" parameter to proxy configuration
if an error occurs, the user is redirected to this error page
|
|
resigned in case of businessservice by using MOASS
-- GeneralConfigReloadDaemon: Reload general MOA-ID configuration from database every minute if it has changed
|
|
|
|
https://gitlab.iaik.tugraz.at/afitzek/moa-idspss into moa2_0_tlenz
Conflicts:
id/server/idserverlib/src/main/resources/resources/properties/id_messages_de.properties
|
|
|
|
|
|
Update MOA-ID sample configs (new ES Test-PEPS Url)
WAI compliant template
|
|
|
|
|
|
-- OW BPK calculation
-- OA specific SL-Templates
-- update MOA-ID configuration XML
-- PVP2: QA Level and BPK calculation updated
-- PVP2: add two attribute builder
-- MOA-ID BKU selection: bugfix local BKU selection
|
|
WSDL location updated
|
|
- Setting of hashcache parameter in MOA
- Update MOA-SP Response (Source attribute in QualifiedCertificate and SecureSignatureCreationDevice element)
- Hidden truststores (for TSL enabled truststore: given certificates are copied to hidden truststore, where TSL certificates are copied)
- Update of QC and SSCD detection
- Update MOA-SPSS config: EU TSL URL can be set via configuration
|
|
@ConfigurationTool
- AuthenticationFilter: handle of non authenticated requests after restart
- Legacy Import: update legacy Configuration import process
@MOA-ID
- Change Legacy Configuration import
|
|
>>PVP2 Metadata:
- Load OA only if Authentication is required
- Load Metadata enityID from Database
>>LegacyConfigParser
- Solve problems if no OnlineMandate or STORK config is included
- try to load DefaultBKUURLs from TrustedBKUs
- if old MOA-ID 2.x config exists, use this DefaultBKUs to import OnlineApplications
>> ConfigurationTool
- change LayOut
|
|
|
|
|
|
|
|
|
|
- ConfigDB Thread Problem (JPA does not close session automatically. Close JPA session manually in every Servlet)
- Change general MOAID config operations at AuthConfigurationProvider.java
|
|
https://gitlab.iaik.tugraz.at/afitzek/moa-idspss into moa2_0_tlenz
|
|
- starts with general MOAID Config
|
|
|
|
- OA Configuration
TODO:
- General Configuration
- Import
- User Management
|
|
Database Session management
|
|
- handle Error if more then one authentication is started for one Online-Application
- handle MultiThread error if more then one authentication process is active in one user session
Add:
- Add UserData database. (is required for the web-based configuration tool)
- Add additional OA parameter in MOA-ID 2.x configuration scheme to set OAs active or not
TODO: change 'searchOAWith....' to only get results with active=true
|
|
- SSO Session is not closed if a new single authentication operation is started
- PVP2 Configuration from Database (but without Metadata) --> TODO: change MetaDataProvider
- Add additional UserFrame in case of SSO
- MOASession encryption
TODO: MetaDataProvider, IdentityLink resign, SSO with Mandates, Legacy Template generation
|
|
TODO:
--PVP2 from configuration
--UseIFrame for OAs
--SSO with mandates
--Resign IdentityLink
--Encrypted MOASession in Database
|
|
-SSO deaktivated
-Login with mandate and normal tested
|
|
Split MOASession database from config database
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Die daraus erforderlichen PVP2 Änderungen sind zu prüfen!!!!
|
|
This requires also some changes in PVP2 module
|
|
-- Der IdentityLink beinhaltet ab diesem Commit wieder die Stammzahl!!!
-- Diese wird für den AuthBlock und zur Generierung des AuthData Objekts umgerechnet.
-- AuthData.IdentityLinkValue hält jetzt ebenfalls die Stammzahl!!!
-- Die bPK oder wbPK sind im jeweiligen Element AuthData.bPK oder AuthData.wbPK abgelegt.
|
|
|
|
-alte SSO Session IDs
-angemeldete OAs
|