diff --git a/forms/common-themes/src/main/resources/theme/base/login/validate-reset-email.ftl b/forms/common-themes/src/main/resources/theme/base/login/validate-reset-email.ftl deleted file mode 100755 index eb23517f67..0000000000 --- a/forms/common-themes/src/main/resources/theme/base/login/validate-reset-email.ftl +++ /dev/null @@ -1,31 +0,0 @@ -<#import "template.ftl" as layout> -<@layout.registrationLayout displayInfo=true; section> - <#if section = "title"> - ${msg("emailForgotTitle")} - <#elseif section = "header"> - ${msg("emailForgotTitle")} - <#elseif section = "form"> -
-
-
- -
-
- -
-
- -
-
- -
-
- - -
-
-
- <#elseif section = "info" > - ${msg("validateResetEmailInstruction")} - - \ No newline at end of file diff --git a/integration/adapter-core/src/main/java/org/keycloak/adapters/AuthenticatedActionsHandler.java b/integration/adapter-core/src/main/java/org/keycloak/adapters/AuthenticatedActionsHandler.java index 4ba3f1dfb2..0a73404ad9 100755 --- a/integration/adapter-core/src/main/java/org/keycloak/adapters/AuthenticatedActionsHandler.java +++ b/integration/adapter-core/src/main/java/org/keycloak/adapters/AuthenticatedActionsHandler.java @@ -90,8 +90,7 @@ public class AuthenticatedActionsHandler { if (allowedOrigins == null || (!allowedOrigins.contains("*") && !allowedOrigins.contains(origin))) { if (allowedOrigins == null) { log.debugv("allowedOrigins was null in token"); - } - if (!allowedOrigins.contains("*") && !allowedOrigins.contains(origin)) { + } else { log.debugv("allowedOrigins did not contain origin"); } diff --git a/integration/adapter-core/src/main/java/org/keycloak/adapters/RequestAuthenticator.java b/integration/adapter-core/src/main/java/org/keycloak/adapters/RequestAuthenticator.java index 624c682168..04cf79e22b 100755 --- a/integration/adapter-core/src/main/java/org/keycloak/adapters/RequestAuthenticator.java +++ b/integration/adapter-core/src/main/java/org/keycloak/adapters/RequestAuthenticator.java @@ -52,10 +52,6 @@ public abstract class RequestAuthenticator { completeAuthentication(bearer, "KEYCLOAK"); log.debug("Bearer AUTHENTICATED"); return AuthOutcome.AUTHENTICATED; - } else if (deployment.isBearerOnly()) { - challenge = bearer.getChallenge(); - log.debug("NOT_ATTEMPTED: bearer only"); - return AuthOutcome.NOT_ATTEMPTED; } if (deployment.isEnableBasicAuth()) { @@ -76,6 +72,12 @@ public abstract class RequestAuthenticator { } } + if (deployment.isBearerOnly()) { + challenge = bearer.getChallenge(); + log.debug("NOT_ATTEMPTED: bearer only"); + return AuthOutcome.NOT_ATTEMPTED; + } + if (log.isTraceEnabled()) { log.trace("try oauth"); } diff --git a/testsuite/integration/src/test/resources/adapter-test/customer-db-keycloak.json b/testsuite/integration/src/test/resources/adapter-test/customer-db-keycloak.json index 38d1179399..3df2760b48 100755 --- a/testsuite/integration/src/test/resources/adapter-test/customer-db-keycloak.json +++ b/testsuite/integration/src/test/resources/adapter-test/customer-db-keycloak.json @@ -5,6 +5,7 @@ "auth-server-url": "http://localhost:8081/auth", "ssl-required" : "external", "bearer-only" : true, + "enable-basic-auth": true, "enable-cors" : true } diff --git a/testsuite/integration/src/test/resources/jaxrs-test/jaxrs-keycloak-basicauth.json b/testsuite/integration/src/test/resources/jaxrs-test/jaxrs-keycloak-basicauth.json old mode 100644 new mode 100755 index 949b720643..c6c72e967f --- a/testsuite/integration/src/test/resources/jaxrs-test/jaxrs-keycloak-basicauth.json +++ b/testsuite/integration/src/test/resources/jaxrs-test/jaxrs-keycloak-basicauth.json @@ -5,6 +5,7 @@ "auth-server-url": "http://localhost:8081/auth", "ssl-required" : "external", "enable-basic-auth": true, + "bearer-only": true, "credentials": { "secret": "password" }