e61a369089
NIFI-655:
...
- Pre-populating the login-identity-providers.xml file with necessary properties and documentation.
- Renaming the Authentication Duration property name.
2015-11-23 09:19:32 -05:00
91573cb807
NIFI-655:
...
- Fixing issue detecting the presence of DN column
2015-11-23 08:45:24 -05:00
48c65e0498
NIFI-655:
...
- Removing deprecated authentication strategy.
- Renaming TLS to START_TLS.
- Allowing the protocol to be configured.
2015-11-23 08:09:49 -05:00
2a0439ca06
NIFI-655:
...
- Fixing checkstyle issues.
- Showing the progress spinner while submitting account justification.
2015-11-19 08:29:39 -05:00
9f60411b15
NIFI-655:
...
- Removing unnecessary class.
2015-11-18 18:37:12 -05:00
242949ee98
NIFI-655:
...
- Showing a logging in notification during the log in process.
2015-11-18 18:23:59 -05:00
3da198135e
NIFI-655:
...
- Fixing typo when loading the ldap connect timeout.
- Providing a better experience for session expiration.
- Using ellipsis for lengthly user name.
- Adding an issuer to the authentication response so the LIP can specify the appropriate value.
2015-11-18 15:44:47 -05:00
0fa68a5bac
NIFI-655. - Updated JwtService and JwtServiceTest to use Key POJO instead of raw String key from KeyService.
...
Signed-off-by: Matt Gilman <matt.c.gilman@gmail.com>
2015-11-18 15:41:08 -05:00
c94d0271d9
NIFI-655:
...
- Refactoring key service to expose the key id.
- Handling client side expiration better.
- Removing specialized active directory provider and abstract ldap provider.
2015-11-18 14:01:45 -05:00
7d04dfeac0
NIFI-655. - Changed issuer field to use FQ class name because some classes return an empty string for getSimpleName(). - Finished refactoring JWT logic from request parsing logic in JwtService. - Updated AccessResource and JwtAuthenticationFilter to call new JwtService methods decoupled from request header parsing. - Added extensive unit tests for JWT logic.
...
Signed-off-by: Matt Gilman <matt.c.gilman@gmail.com>
2015-11-18 08:31:39 -05:00
3bc11e13d7
NIFI-655. - Added issuer field to LoginAuthenticationToken. - Updated AccessResource to pass identity provider class name when creating LoginAuthenticationTokens. - Began refactoring JWT logic from request parsing logic in JwtService. - Added unit tests for JWT logic.
...
Signed-off-by: Matt Gilman <matt.c.gilman@gmail.com>
2015-11-18 08:31:23 -05:00
caeede5773
NIFI-655. - Added logback-test.xml configuration resource for nifi-web-security.
...
Signed-off-by: Matt Gilman <matt.c.gilman@gmail.com>
2015-11-18 08:31:08 -05:00
45b24a4b60
NIFI-655: - Fixed typo in error message for unrecognized authentication strategy.
...
Signed-off-by: Matt Gilman <matt.c.gilman@gmail.com>
2015-11-18 08:30:44 -05:00
16608aa850
NIFI-655:
...
- Using the user identity provided by the login identity provider.
2015-11-17 19:01:07 -05:00
4bb8b137f0
NIFI-655:
...
- Keeping token expiration between 1 minute and 12 hours.
2015-11-17 18:58:22 -05:00
a196207725
NIFI-655:
...
- Refactoring certificate extraction and validation.
- Refactoring how expiration is specified in the login identity providers.
- Adding unit tests for the access endpoints.
- Code clean up.
2015-11-17 17:02:41 -05:00
7529694f23
NIFI-655:
...
- Added an endpoint for access details including configuration, creating tokens, and checking status.
- Updated DTOs and client side to utilize new endpoints.
2015-11-16 21:18:04 -05:00
9ccf61aff1
NIFI-655:
...
- Adding configuration options for referrals and connect/read timeouts
2015-11-16 21:16:23 -05:00
c659485ee4
NIFI-655:
...
- Ensuring the logout link is rendered when appropriate.
2015-11-13 16:35:29 -05:00
749f4e9be1
NIFI-655:
...
- Adding automatic client side token renewal.
2015-11-13 16:19:05 -05:00
06cb7cfc10
NIFI-655:
...
- Fixing checkstyle issues.
2015-11-12 21:48:58 -05:00
09cb608859
NIFI-655:
...
- Adding support for specifying the user search base and user search filter in the active directory provider.
2015-11-12 21:37:55 -05:00
6f82802f7a
NIFI-655:
...
- Ensuring identities are unique in the key table.
2015-11-12 21:37:10 -05:00
5ce44b1fe2
NIFI-655:
...
- Persisting keys to sign user tokens.
- Allowing the identity provider to specify the token expiration.
- Code clean up.
2015-11-12 15:38:33 -05:00
b3ae3e3149
NIFI-655:
...
- Allowing the ldap provider to specify if client authentication is required/desired.
2015-11-12 09:10:29 -05:00
cfee612a78
NIFI-655:
...
- Initial commit of the LDAP based identity providers.
- Fixed issue when attempting to log into a NiFi that does not support new account requests.
2015-11-11 19:40:40 -05:00
0281e2773f
NIFI-655:
...
- Ensuring the login identity provider is able to switch context classloaders via the standard NAR mechanisms.
2015-11-10 14:58:04 -05:00
e61ccea7a0
NIFI-655:
...
- Updating the login API authenticate method to use a richer set of exceptions.
- UI code clean.
2015-11-10 14:55:02 -05:00
2e158d15be
NIFI-655:
...
- Removing unused filter.
2015-11-10 12:14:03 -05:00
e2f7eba7cf
NIFI-655:
...
- Removing unused dependencies.
2015-11-09 21:08:47 -05:00
a16d8c35c9
NIFI-655:
...
- Making the auto wiring more explicit.
2015-11-09 17:49:44 -05:00
1925392a98
NIFI-655:
...
- Removing unused spring configuration files.
2015-11-09 17:46:09 -05:00
7851a4f506
NIFI-655:
...
- Removing file based implementation.
2015-11-09 15:01:05 -05:00
f250560474
NIFI-655:
...
- Removing registration support.
- Removing file based implementation.
2015-11-09 15:00:33 -05:00
efa1939fc5
NIFI-655:
...
- Updating packages for log in filters.
- Handling new registration exceptions.
- Code clean up.
2015-11-09 10:52:18 -05:00
1350483d36
NIFI-655:
...
- Fixing checkstyle issues.
2015-11-09 10:19:18 -05:00
bed35d81a5
NIFI-655:
...
- Disabling log in by default initially.
- Restoring authorization service unit test.
2015-11-09 10:04:19 -05:00
3cf3addd85
NIFI-655:
...
- Adding a few new exceptions for the login identity provider.
2015-11-09 09:20:49 -05:00
018c0864e3
NIFI-655:
...
- Fixing checkstyle issues.
2015-11-06 18:28:31 -05:00
d47c00f00e
NIFI-655:
...
- Adding more/better support for logging out.
2015-11-06 18:06:47 -05:00
d41b83c19b
NIFI-655:
...
- Fixing checkstyle issues.
2015-11-06 10:10:54 -05:00
06a4736a58
NIFI-655:
...
- Allowing the user to link back to the log in page from the new account page.
- Renaming DN to identity where possible.
2015-11-06 09:55:40 -05:00
b6d09b86b6
NIFI-655:
...
- Starting to implement the JWT service.
- Parsing JWT on client side in order to render who the user currently is when logged in.
2015-11-05 18:26:00 -05:00
93aa09dace
NIFI-655:
...
- Starting to add support for registration.
- Creating registration form.
2015-11-04 22:03:52 -05:00
2214592865
NIFI-655:
...
- Extracting certificate validation into a utility class.
- Fixing checkstyle issues.
- Cleaning up the web security context.
- Removing proxy chain checking where possible.
2015-11-04 09:07:27 -05:00
7799deeaa1
NIFI-655:
...
- Starting to style the login page.
- Added simple 'login' support by identifying username/password. Issuing JWT token coming...
- Added logout support
- Rendering the username when appropriate.
2015-11-03 17:08:37 -05:00
ed27ed0449
NIFI-655:
...
- Ensuring we know the necessary state before we attempt to render the login page.
- Building the proxy chain in the JWT authentication filter.
- Only rendering the login when appropriate.
2015-11-03 12:45:37 -05:00
71d84117e4
NIFI-655:
...
- Adding a new endpoint to obtain the status of a user registration.
- Updated the login page loading to ensure all possible states work.
2015-11-03 11:10:32 -05:00
7f9807f461
NIFI-655:
...
- Making nf-storage available in the login page.
- Requiring use of local storage.
- Ignoring security for GET requests when obtaining the login configuration.
2015-11-02 22:55:57 -05:00
5e341214a6
NIFI-655:
...
- Addressing checkstyle issues.
2015-11-02 14:54:51 -05:00
Matt Gilman
Andy LoPresto