Switch JWT library implementations from cxf to nimbus #3421
Commits on Aug 29, 2023
-
Replace JWT library with Nimbus Jose + JWT
Looking into an alternative library implementation for the JWT provider Signed-off-by: Peter Nied <petern@amazon.com>
Commits on Sep 28, 2023
-
Signed-off-by: Maciej Mierzwa <dev.maciej.mierzwa@gmail.com>
Commits on Sep 29, 2023
-
remove all usages of cxf.rs.security.jose
Signed-off-by: Maciej Mierzwa <dev.maciej.mierzwa@gmail.com>
Commits on Oct 2, 2023
-
Signed-off-by: Maciej Mierzwa <dev.maciej.mierzwa@gmail.com>
Commits on Oct 3, 2023
-
naming, add padding to JwtVendor secret
Signed-off-by: Maciej Mierzwa <dev.maciej.mierzwa@gmail.com>
-
small refactor, spotless, tests, use raw settings to create jwk
Signed-off-by: Maciej Mierzwa <dev.maciej.mierzwa@gmail.com>
-
Merge remote-tracking branch 'origin/main' into nimbus-jose-jwt
Signed-off-by: Maciej Mierzwa <dev.maciej.mierzwa@gmail.com> # Conflicts: # src/main/java/org/opensearch/security/authtoken/jwt/JwtVendor.java
-
Merge remote-tracking branch 'origin/main' into nimbus-jose-jwt
# Conflicts: # src/main/java/com/amazon/dlic/auth/http/saml/AuthTokenProcessorHandler.java
-
Signed-off-by: Maciej Mierzwa <dev.maciej.mierzwa@gmail.com>
Commits on Oct 4, 2023
-
Signed-off-by: Maciej Mierzwa <dev.maciej.mierzwa@gmail.com>
-
correct HMAC padding, escape chars in tests
Signed-off-by: Maciej Mierzwa <dev.maciej.mierzwa@gmail.com>
-
Signed-off-by: Maciej Mierzwa <dev.maciej.mierzwa@gmail.com>
-
remove org.apache.cxf:cxf-rt-rs-security-jose import, add rule forbid…
…ding import Signed-off-by: Maciej Mierzwa <dev.maciej.mierzwa@gmail.com>
-
PR suggestions, null checks, java.util.Date
Signed-off-by: Maciej Mierzwa <dev.maciej.mierzwa@gmail.com>
Commits on Oct 5, 2023
-
-
Signed-off-by: Maciej Mierzwa <dev.maciej.mierzwa@gmail.com>
-
-
Exception -> IllegalArgumentException
Signed-off-by: Maciej Mierzwa <dev.maciej.mierzwa@gmail.com>
Commits on Oct 6, 2023
-
Merge remote-tracking branch 'origin/main' into nimbus-jose-jwt
Signed-off-by: Maciej Mierzwa <dev.maciej.mierzwa@gmail.com> # Conflicts: # src/main/java/com/amazon/dlic/auth/http/jwt/AbstractHTTPJwtAuthenticator.java # src/main/java/com/amazon/dlic/auth/http/saml/AuthTokenProcessorHandler.java # src/main/java/com/amazon/dlic/auth/http/saml/HTTPSamlAuthenticator.java # src/test/java/com/amazon/dlic/auth/http/jwt/keybyoidc/HTTPJwtKeyByOpenIdConnectAuthenticatorTest.java # src/test/java/com/amazon/dlic/auth/http/saml/HTTPSamlAuthenticatorTest.java
Commits on Oct 17, 2023
-
Merge remote-tracking branch 'origin/main' into nimbus-jose-jwt
Signed-off-by: Maciej Mierzwa <dev.maciej.mierzwa@gmail.com> # Conflicts: # src/test/java/org/opensearch/security/authtoken/jwt/JwtVendorTest.java
-
Signed-off-by: Maciej Mierzwa <dev.maciej.mierzwa@gmail.com>
Commits on Oct 20, 2023
-
Fix the seconds into milli seconds in jwt vendor
Signed-off-by: Ryan Liang <jiallian@amazon.com>
-
Signed-off-by: Ryan Liang <jiallian@amazon.com>
-
Signed-off-by: Ryan Liang <jiallian@amazon.com>
-
Signed-off-by: Ryan Liang <jiallian@amazon.com>
Commits on Oct 23, 2023
-
Add padding back but not for obo
Signed-off-by: Ryan Liang <jiallian@amazon.com>
Commits on Oct 24, 2023
-
Signed-off-by: Maciej Mierzwa <dev.maciej.mierzwa@gmail.com>
-
Signed-off-by: Maciej Mierzwa <dev.maciej.mierzwa@gmail.com>
-
Signed-off-by: Maciej Mierzwa <dev.maciej.mierzwa@gmail.com>
-
Add tests and relocate KeyPaddingUtil
Signed-off-by: Ryan Liang <jiallian@amazon.com>
-
Add comment for cxf code generation
Signed-off-by: Ryan Liang <jiallian@amazon.com>
-
Reloacate the comment for cxf lib
Signed-off-by: Ryan Liang <jiallian@amazon.com>
-
Fix testParsePrevGeneratedJwt()
Signed-off-by: Ryan Liang <jiallian@amazon.com>
-
Signed-off-by: Ryan Liang <jiallian@amazon.com>
-
Revert the changes for padding test config
Signed-off-by: Ryan Liang <jiallian@amazon.com>