[KEYCLOAK-6111] 'Override User-Initiated Action Lifespan' admin GUI can break realm configuration
This commit is contained in:
parent
505cf5b251
commit
b91998a0d8
4 changed files with 37 additions and 1 deletions
|
@ -32,6 +32,8 @@ import java.util.*;
|
||||||
import java.util.function.Predicate;
|
import java.util.function.Predicate;
|
||||||
import java.util.stream.Collectors;
|
import java.util.stream.Collectors;
|
||||||
|
|
||||||
|
import static java.util.Objects.nonNull;
|
||||||
|
|
||||||
/**
|
/**
|
||||||
* @author <a href="mailto:bill@burkecentral.com">Bill Burke</a>
|
* @author <a href="mailto:bill@burkecentral.com">Bill Burke</a>
|
||||||
* @version $Revision: 1 $
|
* @version $Revision: 1 $
|
||||||
|
@ -480,6 +482,7 @@ public class RealmAdapter implements RealmModel, JpaModel<RealmEntity> {
|
||||||
|
|
||||||
getAttributes().entrySet().stream()
|
getAttributes().entrySet().stream()
|
||||||
.filter(Objects::nonNull)
|
.filter(Objects::nonNull)
|
||||||
|
.filter(entry -> nonNull(entry.getValue()))
|
||||||
.filter(entry -> entry.getKey().startsWith(RealmAttributes.ACTION_TOKEN_GENERATED_BY_USER_LIFESPAN + "."))
|
.filter(entry -> entry.getKey().startsWith(RealmAttributes.ACTION_TOKEN_GENERATED_BY_USER_LIFESPAN + "."))
|
||||||
.forEach(entry -> userActionTokens.put(entry.getKey().substring(RealmAttributes.ACTION_TOKEN_GENERATED_BY_USER_LIFESPAN.length() + 1), Integer.valueOf(entry.getValue())));
|
.forEach(entry -> userActionTokens.put(entry.getKey().substring(RealmAttributes.ACTION_TOKEN_GENERATED_BY_USER_LIFESPAN.length() + 1), Integer.valueOf(entry.getValue())));
|
||||||
|
|
||||||
|
|
|
@ -46,7 +46,6 @@ public class Form {
|
||||||
private WebElement cancel;
|
private WebElement cancel;
|
||||||
|
|
||||||
public void save() {
|
public void save() {
|
||||||
// guardAjax(save).click();
|
|
||||||
clickLink(save);
|
clickLink(save);
|
||||||
}
|
}
|
||||||
|
|
||||||
|
@ -70,5 +69,11 @@ public class Form {
|
||||||
// TODO log warning
|
// TODO log warning
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
public WebElement saveBtn() {
|
||||||
|
return save;
|
||||||
|
}
|
||||||
|
|
||||||
|
public WebElement cancelBtn() {
|
||||||
|
return cancel;
|
||||||
|
}
|
||||||
}
|
}
|
||||||
|
|
|
@ -35,6 +35,7 @@ import java.util.Objects;
|
||||||
import java.util.concurrent.TimeUnit;
|
import java.util.concurrent.TimeUnit;
|
||||||
|
|
||||||
import static org.junit.Assert.assertEquals;
|
import static org.junit.Assert.assertEquals;
|
||||||
|
import static org.junit.Assert.assertFalse;
|
||||||
import static org.junit.Assert.assertNull;
|
import static org.junit.Assert.assertNull;
|
||||||
import static org.junit.Assert.assertThat;
|
import static org.junit.Assert.assertThat;
|
||||||
import static org.junit.Assert.assertTrue;
|
import static org.junit.Assert.assertTrue;
|
||||||
|
@ -140,6 +141,23 @@ public class TokensTest extends AbstractRealmTest {
|
||||||
|
|
||||||
}
|
}
|
||||||
|
|
||||||
|
@Test
|
||||||
|
public void testButtonDisabledForEmptyAttributes() throws InterruptedException {
|
||||||
|
tokenSettingsPage.form().setOperation(VerifyEmailActionToken.TOKEN_TYPE, TIMEOUT, TimeUnit.DAYS);
|
||||||
|
tokenSettingsPage.form().save();
|
||||||
|
assertAlertSuccess();
|
||||||
|
|
||||||
|
loginToTestRealmConsoleAs(testUser);
|
||||||
|
driver.navigate().refresh();
|
||||||
|
|
||||||
|
tokenSettingsPage.navigateTo();
|
||||||
|
tokenSettingsPage.form().selectOperation(VerifyEmailActionToken.TOKEN_TYPE);
|
||||||
|
tokenSettingsPage.form().selectOperation(ResetCredentialsActionToken.TOKEN_TYPE);
|
||||||
|
|
||||||
|
assertFalse("Save button should be disabled", tokenSettingsPage.form().saveBtn().isEnabled());
|
||||||
|
assertFalse("Cancel button should be disabled", tokenSettingsPage.form().cancelBtn().isEnabled());
|
||||||
|
}
|
||||||
|
|
||||||
@Test
|
@Test
|
||||||
public void testLifespanActionTokenResetForVerifyEmail() throws InterruptedException {
|
public void testLifespanActionTokenResetForVerifyEmail() throws InterruptedException {
|
||||||
tokenSettingsPage.form().setOperation(VerifyEmailActionToken.TOKEN_TYPE, TIMEOUT, TimeUnit.DAYS);
|
tokenSettingsPage.form().setOperation(VerifyEmailActionToken.TOKEN_TYPE, TIMEOUT, TimeUnit.DAYS);
|
||||||
|
|
|
@ -1100,6 +1100,12 @@ module.controller('RealmTokenDetailCtrl', function($scope, Realm, realm, $http,
|
||||||
var oldCopy = angular.copy($scope.realm);
|
var oldCopy = angular.copy($scope.realm);
|
||||||
$scope.changed = false;
|
$scope.changed = false;
|
||||||
|
|
||||||
|
var refresh = function() {
|
||||||
|
Realm.get($scope.realm, function () {
|
||||||
|
$scope.changed = false;
|
||||||
|
});
|
||||||
|
};
|
||||||
|
|
||||||
$scope.$watch('realm', function() {
|
$scope.$watch('realm', function() {
|
||||||
if (!angular.equals($scope.realm, oldCopy)) {
|
if (!angular.equals($scope.realm, oldCopy)) {
|
||||||
$scope.changed = true;
|
$scope.changed = true;
|
||||||
|
@ -1108,6 +1114,10 @@ module.controller('RealmTokenDetailCtrl', function($scope, Realm, realm, $http,
|
||||||
|
|
||||||
$scope.$watch('actionLifespanId', function () {
|
$scope.$watch('actionLifespanId', function () {
|
||||||
$scope.actionTokenAttribute = TimeUnit2.asUnit($scope.realm.attributes['actionTokenGeneratedByUserLifespan.' + $scope.actionLifespanId]);
|
$scope.actionTokenAttribute = TimeUnit2.asUnit($scope.realm.attributes['actionTokenGeneratedByUserLifespan.' + $scope.actionLifespanId]);
|
||||||
|
//Refresh and disable the button if attribute is empty
|
||||||
|
if (!$scope.actionTokenAttribute.toSeconds()) {
|
||||||
|
refresh();
|
||||||
|
}
|
||||||
}, true);
|
}, true);
|
||||||
|
|
||||||
$scope.$watch('actionTokenAttribute', function () {
|
$scope.$watch('actionTokenAttribute', function () {
|
||||||
|
|
Loading…
Reference in a new issue