keycloak-scim

Author	SHA1	Message	Date
mposolda	a98f085be6	KEYCLOAK-5618 Fix SessionsPreloadCrossDCTest. Update HOW-TO-RUN docs. Ensure it's executed in travis.	2017-11-09 17:39:04 +01:00
Stian Thorgersen	128ff12f8f	Bump versions	2017-11-09 15:37:21 +01:00
Marko Strukelj	dae0fafc8a	KEYCLOAK-5040 ProfileAssume needs to use server info endpoint	2017-11-09 14:19:06 +01:00
Bruno Oliveira	26e253f4a5	[KEYCLOAK-5284]	2017-11-09 13:45:06 +01:00
Marko Strukelj	2854a2006e	KEYCLOAK-5810 ClientTokenExchangeTest failures with -Pproduct profile	2017-11-09 13:44:10 +01:00
vmuzikar	3bf1904269	KEYCLOAK-5786 Fix testsuite not working with auth-server-eap profile	2017-11-09 08:10:58 +01:00
vmuzikar	2c2a332f80	KEYCLOAK-5332 Fix GitLab social test	2017-11-09 07:19:01 +01:00
vmuzikar	b21d5bbf04	KEYCLOAK-5805 Fix tests in the 'other' module	2017-11-09 07:01:27 +01:00
vramik	819181007c	KEYCLOAK-5678 Extend server-config-migration tests to test also extensions and management	2017-11-07 12:46:13 +01:00
mposolda	62a1c187a2	KEYCLOAK-5716 KEYCLOAK-5738 Avoid infinispan deadlock. Ensure code-to-token works correctly in cross-dc	2017-11-07 09:01:59 +01:00
Hynek Mlnarik	fe2f65daac	KEYCLOAK-5581 Fix SAML identity broker context serialization	2017-11-03 21:09:18 +01:00
vmuzikar	ef8adc15f4	KEYCLOAK-5720 Fix X.509 tests	2017-11-03 17:09:46 +01:00
Pedro Igor	3716fa44ac	[KEYCLOAK-5728] - Permission Claims support	2017-10-27 12:40:30 -02:00
Pedro Igor	081ad09ed8	Merge pull request #4619 from pedroigor/KEYCLOAK-4901 [KEYCLOAK-4901] - Reviewing methods on provider spi	2017-10-26 15:33:09 -03:00
Hynek Mlnařík	b0d88be420	Merge pull request #4572 from tkyjovsk/db-failover KEYCLOAK-5691 Galera cluster, full testsuite	2017-10-26 20:22:47 +02:00
Pedro Igor	a70cab502c	[KEYCLOAK-4901] - Reviewing methods on provider spis	2017-10-26 13:39:57 -02:00
Pavel Drozd	12b2e72162	Merge pull request #4618 from vramik/KEYCLOAK-5244 KEYCLOAK-5244 fix blacklists.path in tests	2017-10-26 15:30:14 +02:00
Tomas Kyjovsky	a45a2acc4c	KEYCLOAK-5691 Galera cluster, full testsuite	2017-10-26 15:27:57 +02:00
Marek Posolda	aabd47ecdf	Merge pull request #4613 from tkyjovsk/KEYCLOAK-5751 KEYCLOAK-5751 Login/logout performance test scenario failing	2017-10-26 13:11:41 +02:00
Hynek Mlnařík	248da4687a	Merge pull request #4610 from hmlnarik/KEYCLOAK-5745-Extract-client-sessions-from-user-sessions KEYCLOAK-5745 Separate user and client sessions in infinispan	2017-10-26 13:09:06 +02:00
vramik	2b44cb70af	KEYCLOAK-5244 fix blacklists.path in tests	2017-10-26 12:28:50 +02:00
Hynek Mlnarik	75c354fd94	KEYCLOAK-5745 Separate user and client sessions in infinispan	2017-10-26 10:39:41 +02:00
Tomas Kyjovsky	9bd5d31c1f	Added "& to &" rewrite for login form URI in the perf tests.	2017-10-25 22:28:46 +02:00
Bill Burke	903a4dd849	Merge pull request #4612 from patriot1burke/master KEYCLOAK-5273	2017-10-25 13:54:32 -04:00
Bill Burke	de6eab6d5d	fix	2017-10-25 13:00:58 -04:00
Bill Burke	8c1a3253fb	KEYCLOAK-5273	2017-10-25 10:31:11 -04:00
Bruno Oliveira da Silva	375e01a074	KEYCLOAK-5278 (#4606 )	2017-10-25 15:27:24 +02:00
Bill Burke	50ccb5e5f6	Merge pull request #4591 from abstractj/KEYCLOAK-5717 KEYCLOAK-5717	2017-10-24 17:38:28 -04:00
Pedro Igor	1840cc54e4	Merge pull request #4601 from pedroigor/KEYCLOAK-5726 [KEYCLOAK-5726] - Support define enforcement mode for scopes on the adapter config	2017-10-24 12:51:52 -02:00
Pedro Igor	80e9b08bb6	[KEYCLOAK-5726] - Tests for scopes-enforcement-mode ALL and ANY	2017-10-24 11:37:41 -02:00
Bruno Oliveira	4d762159ef	KEYCLOAK-5717	2017-10-24 10:55:02 -02:00
Hynek Mlnařík	8e0cc2a5ea	Merge pull request #4605 from mposolda/master KEYCLOAK-5710 Change cache-server to use backups based caches	2017-10-24 14:40:01 +02:00
Pedro Igor	bc12193c3c	[KEYCLOAK-5726] - Fixes the parameter value when making queries	2017-10-24 10:39:55 -02:00
Pedro Igor	711aa83d31	[KEYCLOAK-5726] - Fixing web origins on photoz quickstart	2017-10-24 10:39:55 -02:00
Pedro Igor	a6e1413d58	[KEYCLOAK-5726] - Support define enforcement mode for scopes on the adapter configuration	2017-10-24 10:39:54 -02:00
Pavel Drozd	a4ec32ba66	Merge pull request #4602 from vramik/KEYCLOAK-5244 KEYCLOAK-5244 fix PasswordPolicyTest.testBlacklistPasswordPolicyWithT…	2017-10-24 14:17:35 +02:00
mposolda	9a19e95b60	KEYCLOAK-5710 Change cache-server to use backups based caches	2017-10-24 11:52:08 +02:00
Pavel Drozd	4010e5e247	Merge pull request #4588 from tkyjovsk/KEYCLOAK-5711 KEYCLOAK-5711 Adapter test module for Wildfly has compilation error	2017-10-23 22:27:31 +02:00
Stan Silvert	9083e5fe5c	KEYCLOAK-5298: Enable autoescaping in Freemarker (#4561 ) * KEYCLOAK-5298: Enable autoescaping in Freemarker * Fix several of the failing tests. * Fix broken tests in integration-deprecated * Fix last failing test.	2017-10-23 12:03:00 -04:00
Pavel Drozd	1eb2d894e5	Merge pull request #4593 from vmuzikar/ssl-fix KEYCLOAK-5719 fix auth server ssl with base testsuite	2017-10-23 16:39:22 +02:00
Stian Thorgersen	9b75b603e3	KEYCLOAK-5234 (#4585 )	2017-10-23 16:13:22 +02:00
vramik	a3a1761eb7	KEYCLOAK-5244 fix PasswordPolicyTest.testBlacklistPasswordPolicyWithTestBlacklist on Wildfly	2017-10-23 12:11:36 +02:00
Pavel Drozd	aaf25ad4f0	Merge pull request #4592 from vramik/KEYCLOAK-5705 KEYCLOAK-5705 add missing dependency to module.xml for mssql	2017-10-23 09:56:01 +02:00
Bill Burke	73ba06b26b	Merge pull request #4590 from patriot1burke/master KEYCLOAK-5698	2017-10-20 14:58:07 -04:00
Bill Burke	92245e3fc8	fixes	2017-10-20 09:55:37 -04:00
vmuzikar	1dd2a90e20	KEYCLOAK-5719 fix auth server ssl with base testsuite	2017-10-20 14:10:06 +02:00
vramik	25d785df02	KEYCLOAK-5705 add missing dependency to module.xml for mssql	2017-10-20 12:56:51 +02:00
Bill Burke	54ebc21880	KEYCLOAK-5698	2017-10-19 19:38:56 -04:00
Tomas Kyjovsky	bd706418c9	KEYCLOAK-5711 Adapter test module for Wildfly has compilation error	2017-10-19 19:41:31 +02:00
Hynek Mlnarik	3248557897	KEYCLOAK-5707 Have travis run cross-dc tests when appropriate	2017-10-19 13:29:26 +02:00
Stian Thorgersen	d9ffc4fa21	KEYCLOAK-5225 (#4577 ) KEYCLOAK-5225 fix test Fix	2017-10-19 08:23:16 +02:00
Stian Thorgersen	fea4c54adc	KEYCLOAK-5280 (#4576 )	2017-10-19 08:02:23 +02:00
Wyvie	988d660083	[KEYCLOAK-3837] added session and account linking spring boot tests (#4564 )	2017-10-19 06:29:59 +02:00
Pedro Igor	19f54111ec	Merge pull request #4573 from pedroigor/KEYCLOAK-4550 [KEYCLOAK-4550] - Test invalid configuration for user policy	2017-10-18 19:37:29 -02:00
Pedro Igor	cedc095a9c	[KEYCLOAK-4550] - Test invalid configuration for user policy	2017-10-18 18:42:55 -02:00
Hynek Mlnarik	6d18ba4b32	KEYCLOAK-5688 Add externalizers for session entities and remove unused events	2017-10-18 16:04:57 +02:00
Thomas Darimont	3103e0fd0a	KEYCLOAK-5244 Add BlacklistPasswordPolicyProvider (#4370 ) * KEYCLOAK-5244 Add BlacklistPasswordPolicyProvider This introduces a new PasswordPolicy which can refer to a named predefined password-blacklist to avoid users choosing too easy to guess passwords. The BlacklistPasswordPolicyProvider supports built-in as well as custom blacklists. built-in blacklists use the form `default/filename` and custom ones `custom/filename`, where filename is the name of the found blacklist-filename. I'd propose to use some of the freely available password blacklists from the [SecLists](https://github.com/danielmiessler/SecLists/tree/master/Passwords) project. For testing purposes one can download the password blacklist ``` wget -O 10_million_password_list_top_1000000.txt https://github.com/danielmiessler/SecLists/blob/master/Passwords/10_million_password_list_top_1000000.txt?raw=true ``` to /data/keycloak/blacklists/ Custom password policies can be configured with the SPI configuration mechanism via jboss-cli: ``` /subsystem=keycloak-server/spi=password-policy:add() /subsystem=keycloak-server/spi=password-policy/provider=passwordBlacklist:add(enabled=true) /subsystem=keycloak-server/spi=password-policy/provider=passwordBlacklist:write-attribute(name=properties.blacklistsFolderUri, value=file:///data/keycloak/blacklists/) ``` Password blacklist is stored in a TreeSet. * KEYCLOAK-5244 Encode PasswordBlacklist as a BloomFilter We now use a dynamically sized BloomFilter with a false positive probability of 1% as a backing store for PasswordBlacklists. BloomFilter implementation is provided by google-guava which is available in wildfly. Password blacklist files are now resolved against the ${jboss.server.data.dir}/password-blacklists. This can be overridden via system property, or SPI config. See JavaDoc of BlacklistPasswordPolicyProviderFactory for details. Revised implementation to be more extensible, e.g. it could be possible to use other stores like databases etc. Moved FileSystem specific methods to FileBasesPasswordBlacklistPolicy. The PasswordBlacklistProvider uses the guava version 20.0 shipped with wildfly. Unfortunately the arquillian testsuite transitively depends on guava 23.0 via the selenium-3.5.1 dependency. Hence we need to use version 23.0 for tests but 20.0 for the policy provider to avoid NoClassDefFoundErrors in the server-dist. Configure password blacklist folder for tests * KEYCLOAK-5244 Configure jboss.server.data.dir for test servers * KEYCLOAK-5244 Translate blacklisted message in base/login	2017-10-17 20:41:44 +02:00
Hynek Mlnařík	fe76b2428b	Merge pull request #4563 from hmlnarik/KEYCLOAK-5656-Transport-factory-should-not-limit-to-a-single-DC-3 KEYCLOAK-5656 Use standard infinispan remote-store	2017-10-17 09:39:01 +02:00
Pavel Drozd	83b4279ce1	Merge pull request #4555 from vramik/KEYCLOAK-5673 KEYCLOAK-5673 add support for testing config from prod 2.5.x	2017-10-17 07:43:40 +02:00
Pavel Drozd	9c16a58d52	Merge pull request #4554 from vramik/KEYCLOAK-5672 KEYCLOAK-5672 rewrite server-config-migration module to use offline mode	2017-10-17 07:42:29 +02:00
vramik	cb2bd0fe1a	KEYCLOAK-5672 rewrite server-config-migration module to use offline mode	2017-10-16 22:51:59 +02:00
Hynek Mlnarik	056ba75a72	KEYCLOAK-5656 Use standard infinispan remote-store	2017-10-16 21:49:42 +02:00
Bill Burke	31dccc9a5e	Merge pull request #4509 from TeliaSoneraNorge/KEYCLOAK-5032 KEYCLOAK-5032 Forward request parameters to another IdP	2017-10-13 18:47:05 -04:00
Bill Burke	c66ce3a209	Merge pull request #4559 from micedre/KEYCLOAK-4052bis KEYCLOAK-4052 - add an option to validate Password Policy for ldap user storage	2017-10-13 18:44:57 -04:00
Bill Burke	46d3ed7832	Merge remote-tracking branch 'upstream/master'	2017-10-13 17:00:57 -04:00
Bill Burke	d9af93850c	KEYCLOAK-5683, KEYCLOAK-5684, KEYCLOAK-5682, KEYCLOAK-5612, KEYCLOAK-5611	2017-10-13 16:51:56 -04:00
Cédric Couralet	656fc5d7c0	KEYCLOAK-4052 - add an option to validate Password Policy for ldap user storage	2017-10-13 13:54:50 +02:00
vramik	4700b69158	KEYCLOAK-5673 add support for testing config from prod 2.5.x	2017-10-11 13:21:01 +02:00
mposolda	1874820008	KEYCLOAK-5371 Fix ConcurrentLoginCrossDCTest.concurrentLoginWithRandomDcFailures	2017-10-11 13:02:55 +02:00
mposolda	f5ff24ccdb	KEYCLOAK-5371 Fix SessionExpirationCrossDCTest, Added ExecutorsProvider. Debug support for cache-servers in tests	2017-10-10 22:30:44 +02:00
Bill Burke	b0464f1751	Merge remote-tracking branch 'upstream/master'	2017-10-10 09:10:04 -04:00
Bill Burke	5bd4ea30ad	rev	2017-10-10 09:09:51 -04:00
Marek Posolda	d336667972	Merge pull request #4527 from Hitachi/master OIDC Financial API Read Only Profile : scope MUST be returned in the response from Token Endpoint	2017-10-10 11:37:45 +02:00
Carl Kristian Eriksen	50dd07217d	KEYCLOAK-5032 Forward request parameters to another IdP Forwarding of prompt and acr_values, if provided in the authorization request. If prompt is set in the configuration for the identity provider, the configuration overrules the request parameter.	2017-10-09 16:15:27 +02:00
Hynek Mlnarik	fe972ce12b	KEYCLOAK-5656 Remove remoteServers configuration option	2017-10-09 11:58:28 +02:00
Marek Posolda	c6483f8b1e	Merge pull request #4523 from abustya/master KEYCLOAK-5616 Processing of claims parameter	2017-10-09 11:14:23 +02:00
Bill Burke	c8516c2349	support social external exchange	2017-10-06 16:44:26 -04:00
Hynek Mlnarik	6cbfbeca0b	KEYCLOAK-5656 Remove KeycloakTcpTransportFactory	2017-10-06 13:20:17 +02:00
Hynek Mlnařík	00ddf03ad3	Merge pull request #4538 from vramik/KEYCLOAK-5586 KEYCLOAK-5586 increase startup timeout for jboss containers	2017-10-06 10:46:49 +02:00
vramik	940715a975	KEYCLOAK-5586 increase startup timeout for jboss containers	2017-10-06 10:06:26 +02:00
Hynek Mlnařík	34451d159b	Merge pull request #4518 from hmlnarik/KEYCLOAK-5576-Performance-testsuite-should-allow-exporting-the-dump-directly-after-data-generation KEYCLOAK-5576, KEYCLOAK-5577 Performance testsuite adjustments	2017-10-05 20:50:21 +02:00
Hynek Mlnarik	089a9e3321	KEYCLOAK-5577 Allow customization of cpu/memory docker limits	2017-10-05 20:25:28 +02:00
Pavel Drozd	25dbf1cfac	Merge pull request #4536 from vramik/KEYCLOAK-5371 KEYCLOAK-5371 increase default page load timeout to 20s for crossdc	2017-10-05 13:32:48 +02:00
Pavel Drozd	945404be24	Merge pull request #4532 from vmuzikar/fix-twitter-test KEYCLOAK-5632 Fix Twitter social test	2017-10-05 13:30:02 +02:00
Stian Thorgersen	698483ee17	Missing test (#4537 )	2017-10-05 13:27:15 +02:00
vramik	a877759d13	KEYCLOAK-5371 increase default page load timeout to 20s for crossdc tests	2017-10-05 10:33:50 +02:00
Hynek Mlnarik	c4adf6805a	KEYCLOAK-5576 Add export dump flag to performance testsuite pom.xml	2017-10-04 21:04:29 +02:00
Hynek Mlnařík	730a2f7946	Merge pull request #4529 from hmlnarik/KEYCLOAK-5624-Rename-import-data-profile-to-generate-data KEYCLOAK-5624 Rename import-data to generate-data in performance TS	2017-10-04 20:53:04 +02:00
Vaclav Muzikar	eab047c130	KEYCLOAK-5632 Fix Twitter social test	2017-10-04 15:29:28 +02:00
mposolda	bca4c35708	KEYCLOAK-5371 Fix ActionTokenCrossDCTest and BruteForceCrossDCTest	2017-10-04 13:25:45 +02:00
Hynek Mlnařík	9aa4c3cf22	Merge pull request #4530 from vramik/KEYCLOAK-5586 KEYCLOAK-5586 crossdc tests on Wildfly using real database	2017-10-04 13:10:08 +02:00
vramik	b0a1550df5	KEYCLOAK-5586 crossdc tests on Wildfly using real database	2017-10-04 12:00:18 +02:00
Hynek Mlnarik	89fade7ae4	KEYCLOAK-5624 Rename import-data to generate-data in performance TS	2017-10-04 09:00:05 +02:00
Pavel Drozd	8e5db87b50	Merge pull request #4505 from mhajas/KEYCLOAK-5568 KEYCLOAK-5568 Run ConsoleProtection tests only with elytron	2017-10-04 08:02:31 +02:00
Pavel Drozd	98c63bc195	Merge pull request #4502 from mhajas/KEYCLOAK-5555 KEYCLOAK-5555 Use driver from function argument for URL Asserts	2017-10-04 08:00:45 +02:00
Takashi Norimatsu	6f6a467c7b	OIDC Financial API Read Only Profile : scope MUST be returned in the response from Token Endpoint	2017-10-04 12:59:49 +09:00
Áron Bustya	c2ffaa0777	Merge remote-tracking branch 'keycloak/master'	2017-10-03 14:53:40 +02:00
Áron Bustya	632414cc92	process claims parameter also support parsing from request object	2017-10-03 14:51:46 +02:00
vramik	f806d4a5d6	KEYCLOAK-5586 Add support for testing cross dc tests on jboss-based containers	2017-10-03 14:01:45 +02:00
Bruno Oliveira da Silva	da72968085	KEYCLOAK-4401: Wrong message when a temporarily disabled user requests password reset (#4506 )	2017-10-03 06:28:34 +02:00

1 2 3 4 5 ...

3428 commits