aldaris · August 28, 2017 10:13
diff --git a/OpenAM improvements b/OpenAM improvements
 * modify the Session object so that it tracks when it was last refreshed and when one asks for timeleft/etc fields, it would take that time difference into account instead of forcing people to refresh sessions even during cache period.
 * make XUI CSP friendly
 * change push authentication to display a code in both browser and app to allow end-users correlate authentication requests
 * Write credential storage system a'la Jenkins
 * Come up with a special token/name that can be used in SAML and OAuth2/OIDC settings that maps to the user's group/role/filteredrole memberships (retrieved via idrepo APIs)
 * Move openam-auth-securid to an external project as an extension
 * Create LDAPConnectionFactoryBuilder 
 * Update @UpgradeStepInfo (or create a new annotation even for service helpers) to contain metadata about which version the step is necessary for - get rid of legacy upgrade steps.
	* modify the Session object so that it tracks when it was last refreshed and when one asks for timeleft/etc fields, it would take that time difference into account instead of forcing people to refresh sessions even during cache period.
	* make XUI CSP friendly
	* change push authentication to display a code in both browser and app to allow end-users correlate authentication requests
	* Write credential storage system a'la Jenkins
	* Come up with a special token/name that can be used in SAML and OAuth2/OIDC settings that maps to the user's group/role/filteredrole memberships (retrieved via idrepo APIs)
	* Move openam-auth-securid to an external project as an extension
	* Create LDAPConnectionFactoryBuilder
	* Update @UpgradeStepInfo (or create a new annotation even for service helpers) to contain metadata about which version the step is necessary for - get rid of legacy upgrade steps.