girirajsharma
|
2d6e1048ef
|
Fixed adding right CORS headers to actual and preflight CORS requests.
|
2015-01-30 13:57:27 +05:30 |
|
Pedro Igor
|
f013796324
|
Merge pull request #938 from pedroigor/KEYCLOAK-883
[KEYCLOAK-883] - Initial tests for SAML brokering.
|
2015-01-29 09:11:39 -02:00 |
|
pedroigor
|
1960c608cd
|
[KEYCLOAK-883] - Initial tests for SAML brokering.
|
2015-01-29 00:04:02 -02:00 |
|
Bill Burke
|
fd20a25100
|
Merge remote-tracking branch 'upstream/master'
|
2015-01-28 17:09:59 -05:00 |
|
Bill Burke
|
ea3bba98aa
|
saml frontchannel logout
|
2015-01-28 17:09:13 -05:00 |
|
Stian Thorgersen
|
6ecd9fbde7
|
Merge pull request #936 from stianst/master
Provider loaders
|
2015-01-28 11:51:05 +01:00 |
|
Stian Thorgersen
|
67ba1de56f
|
KEYCLOAK-999 Load providers from file-system
|
2015-01-28 09:15:07 +01:00 |
|
pedroigor
|
2065815627
|
[KEYCLOAK-883] - Model tests.
|
2015-01-27 23:53:56 -02:00 |
|
pedroigor
|
c2ba2a70ce
|
[KEYCLOAK-997] - Redirect directly to provider if password login is disabled and there's only one provider.
|
2015-01-23 18:20:19 -02:00 |
|
pedroigor
|
b9a7594113
|
[KEYCLOAK-883] - More SAML configuration. Using SAML builders to create AuthnRequest.
|
2015-01-21 23:40:20 -02:00 |
|
Stian Thorgersen
|
f31bece1b9
|
KEYCLOAK-980 Password reset is possible with expired link
|
2015-01-21 13:11:06 +01:00 |
|
Stian Thorgersen
|
e7a792f922
|
KEYCLOAK-983 Fix login after reset-password
|
2015-01-21 12:28:30 +01:00 |
|
Bill Burke
|
8b6a3ad8e4
|
Merge remote-tracking branch 'upstream/master'
|
2015-01-16 18:58:01 -05:00 |
|
Bill Burke
|
a0ba6d2c16
|
saml redirect logout 1st step
|
2015-01-16 18:57:33 -05:00 |
|
Bill Burke
|
ef2698936b
|
Merge pull request #919 from pedroigor/KEYCLOAK-884
[KEYCLOAK-884] - OpenID Connect UserInfo Endpoint.
|
2015-01-16 14:28:30 -05:00 |
|
pedroigor
|
4f432775ed
|
[KEYCLOAK-884] - OpenID Connect UserInfo Endpoint.
|
2015-01-16 15:45:27 -02:00 |
|
mposolda
|
e4a8ced8b0
|
KEYCLOAK-974 ServerVersionResource doesn't handle cors requests
|
2015-01-16 12:57:08 +01:00 |
|
Stian Thorgersen
|
8828d6e2f1
|
KEYCLOAK-965 NPE in TokenManager.verifyAccess if application is deleted
|
2015-01-16 11:25:05 +01:00 |
|
Stian Thorgersen
|
bf6c46da1c
|
KEYCLOAK-962 Changed access token request to use redirect_uri from initial request instead of the resolved redirect_uri
|
2015-01-16 11:01:03 +01:00 |
|
Stian Thorgersen
|
29b8c2c924
|
KEYCLOAK-949 Disabled user with wrong credentials receive wrong error message
|
2015-01-14 10:10:53 +01:00 |
|
Stian Thorgersen
|
abd5967be3
|
KEYCLOAK-957 Access Token Request does not verify redirect_uri
|
2015-01-14 09:59:21 +01:00 |
|
Michael Gerber
|
3be74cda30
|
check if email is null
|
2015-01-14 09:18:05 +01:00 |
|
pedroigor
|
fa2533ed11
|
[KEYCLOAK-883] - Initial changes.
|
2015-01-13 00:58:19 -02:00 |
|
Stian Thorgersen
|
959933a227
|
Version bump
|
2015-01-12 10:35:50 +01:00 |
|
mposolda
|
fff8ae9f8a
|
KEYCLOAK-942 Incorrect condition in ResourceAdminManager could cause global logout
|
2015-01-08 11:09:11 +01:00 |
|
pedroigor
|
c4892428ae
|
[KEYCLOAK-928] - Validate duplicated emails when updating profile.
|
2015-01-07 11:09:40 -02:00 |
|
Michael Gerber
|
181c1c8b5b
|
add error event if mail can not be send
|
2015-01-06 13:02:27 +01:00 |
|
Stian Thorgersen
|
45a1f4361e
|
Add test
|
2015-01-05 14:34:08 +01:00 |
|
Stian Thorgersen
|
39daeca09c
|
Merge branch 'reset-password' of https://github.com/gerbermichi/keycloak into gerbermichi-reset-password
|
2015-01-05 14:26:51 +01:00 |
|
gerbermichi
|
0c73e67372
|
a disabled user should not receive an email to reset the password
|
2015-01-05 14:07:03 +01:00 |
|
Stian Thorgersen
|
628437c146
|
KEYCLOAK-760 OAuth2 refresh token expiration date
|
2015-01-05 10:50:50 +01:00 |
|
Michael Gerber
|
019bb558d1
|
reset-password-email with redirect_uri and client_id
|
2015-01-02 14:10:44 +01:00 |
|
Michael Gerber
|
53e18b3ebe
|
fix reset-password-email
|
2015-01-02 12:52:21 +01:00 |
|
Stian Thorgersen
|
f97b71c207
|
KEYCLOAK-903
No client session for direct grant
|
2014-12-30 13:28:08 +01:00 |
|
Stian Thorgersen
|
a367473386
|
KEYCLOAK-902 State should not be required
|
2014-12-30 10:38:08 +01:00 |
|
Stian Thorgersen
|
e174802b0d
|
KEYCLOAK-825
Log out user sessions on password reset
|
2014-12-17 14:54:33 +01:00 |
|
Stian Thorgersen
|
6cf42db584
|
KEYCLOAK-891 Create server info page on admin console
|
2014-12-17 13:21:31 +01:00 |
|
gerbermichi
|
2186fe32a9
|
Bugfix: Can not read keycloak-server.json if the path contains a space
https://issues.jboss.org/browse/KEYCLOAK-892
|
2014-12-17 12:32:06 +01:00 |
|
Bill Burke
|
6c04e26376
|
bump
|
2014-12-05 21:09:38 -05:00 |
|
Bill Burke
|
c0059a875b
|
bump version
|
2014-12-05 19:03:13 -05:00 |
|
apenders
|
f3adf02eea
|
Added CORS preflight support for realms/<realm>/tokens/refresh
|
2014-12-02 15:33:15 -07:00 |
|
Stian Thorgersen
|
a843e31c12
|
KEYCLOAK-862 Use HmacSHA256 for code signatures
|
2014-11-27 10:02:08 +01:00 |
|
Bill Burke
|
46983d68f3
|
move ServerCookie to core
|
2014-11-14 09:20:03 -05:00 |
|
mposolda
|
a94ab5883d
|
KEYCLOAK-835 Move AdapterConstants to different package
|
2014-11-10 22:16:20 +01:00 |
|
Marek Posolda
|
c0f377c8c7
|
Merge pull request #841 from jpkrohling/JPK-KEYCLOAK-821
KEYCLOAK-821 - Support for comma-separated list of file names to import.
|
2014-11-06 20:32:31 +01:00 |
|
Juraci Paixão Kröhling
|
cd0ad70952
|
KEYCLOAK-821 - Support for comma-separated list of file names to import.
|
2014-11-05 17:04:17 +01:00 |
|
Stian Thorgersen
|
e7625c2bb1
|
KEYCLOAK-820 Don't expose realm private key through admin endpoints
|
2014-11-05 15:34:56 +01:00 |
|
Bill Burke
|
9c175bfb5d
|
Merge remote-tracking branch 'upstream/master'
|
2014-11-04 15:55:47 -05:00 |
|
Bill Burke
|
ede59a4441
|
fix jax-doclets
|
2014-11-04 15:55:33 -05:00 |
|
Stian Thorgersen
|
7327423a03
|
Fix ResetPasswordTest
|
2014-11-04 13:05:50 +01:00 |
|
Stian Thorgersen
|
0f8c073354
|
Version bump
|
2014-11-04 09:01:06 +01:00 |
|
Stian Thorgersen
|
bb2de4dc59
|
KEYCLOAK-787 Clicking back to login after sending password reset email fails
|
2014-10-31 13:59:56 +01:00 |
|
Stian Thorgersen
|
9b0d5acb50
|
KEYCLOAK-704 KEYCLOAK-768 Improvements to access code generation
|
2014-10-31 12:45:03 +01:00 |
|
Stian Thorgersen
|
8adad9dddf
|
KEYCLOAK-806
Increase defaults for 'SSO Session Idle Timeout'
|
2014-10-31 09:41:21 +01:00 |
|
Bill Burke
|
cf747dac22
|
remove info logging
|
2014-10-30 09:53:06 -04:00 |
|
Bill Burke
|
0183ac43bc
|
aud should be client-id, issuer should be realm
|
2014-10-29 15:56:25 -04:00 |
|
Stian Thorgersen
|
6e4785e74c
|
KEYCLOAK-777 No login event for social login
|
2014-10-28 19:56:41 +01:00 |
|
Bill Burke
|
12e2a4698d
|
idp descriptor
|
2014-10-28 12:49:31 -04:00 |
|
Bill Burke
|
e3609cc85b
|
app importer
|
2014-10-28 11:54:58 -04:00 |
|
Bill Burke
|
971f0f5c16
|
publish protocol support
|
2014-10-24 11:25:04 -04:00 |
|
Bill Burke
|
1be070e34d
|
cleanup
|
2014-10-24 11:00:34 -04:00 |
|
Bill Burke
|
ce76270ad8
|
saml key refactor
|
2014-10-24 10:58:32 -04:00 |
|
mposolda
|
f3da9760a3
|
Send node registration at 1st request instead of deployment startup. Bugfixing
|
2014-10-21 23:15:21 +02:00 |
|
Bill Burke
|
668497df4d
|
upload keys
|
2014-10-21 16:33:17 -04:00 |
|
mposolda
|
01c705b4d3
|
KEYCLOAK-759 Added adapter clustering to admin console
|
2014-10-21 12:32:53 +02:00 |
|
Stian Thorgersen
|
dd4b2f811b
|
KEYCLOAK-710 Ignore missing roles in access-code
|
2014-10-21 11:15:35 +02:00 |
|
Stian Thorgersen
|
6b2a4229e3
|
KEYCLOAK-700 Check path is valid in account/login-redirect
|
2014-10-21 09:57:56 +02:00 |
|
Stian Thorgersen
|
63b41e2548
|
KEYCLOAK-703 Check valid origin is passed to login-status-iframe
|
2014-10-21 09:57:56 +02:00 |
|
Stian Thorgersen
|
ed895ce02d
|
KEYCLOAK-699 Set maximum size of qr-code
|
2014-10-21 09:57:56 +02:00 |
|
mposolda
|
7d8f265789
|
KEYCLOAK-759 dynamic registration of managementUrls in cluster
|
2014-10-17 21:51:46 +02:00 |
|
Bill Burke
|
8fbc8fc736
|
Merge remote-tracking branch 'upstream/master'
|
2014-10-14 18:39:08 -04:00 |
|
Bill Burke
|
7760887ac1
|
app cert support, bug fixes
|
2014-10-14 18:38:48 -04:00 |
|
Stian Thorgersen
|
106a0cb48d
|
KEYCLOAK-755 Support env variables in keycloak-server.json
|
2014-10-14 15:06:18 +02:00 |
|
Stian Thorgersen
|
1021e8af5c
|
KEYCLOAK-753 Add 'username:' prefix to remember me cookie to prevent issue with old cookie
|
2014-10-14 13:44:03 +02:00 |
|
Stian Thorgersen
|
4d401224de
|
KEYCLOAK-746 Allow linking to account from external provider
|
2014-10-13 10:48:45 +02:00 |
|
Bill Burke
|
4d007c776a
|
generate/store realm certificate
|
2014-10-11 10:49:04 -04:00 |
|
Bill Burke
|
deffa9b4e1
|
oauth id in admin console
|
2014-10-10 16:55:57 -04:00 |
|
Bill Burke
|
0ace5cd746
|
merge conflicts
|
2014-10-09 18:26:14 -04:00 |
|
Bill Burke
|
94da99bf10
|
use app id in admin console urls
|
2014-10-09 18:22:02 -04:00 |
|
mposolda
|
9954d68a1f
|
KEYCLOAK-748 cluster-aware logout for non-distributable apps
|
2014-10-09 21:33:07 +02:00 |
|
mposolda
|
ac8b43358d
|
Reduce logging
|
2014-10-08 23:28:02 +02:00 |
|
mposolda
|
7e7406ddb7
|
KEYCLOAK-743 Stateless session mgmt. Drop statistics for adapters.
|
2014-10-08 22:18:10 +02:00 |
|
Bill Burke
|
a1d1877751
|
ClientModel attributes and protocol
|
2014-10-08 10:54:13 -04:00 |
|
Bill Burke
|
5f1e6f3a23
|
merge
|
2014-10-07 18:17:44 -04:00 |
|
Bill Burke
|
6d5ab0f66b
|
saml backchannel logout
|
2014-10-07 18:06:02 -04:00 |
|
Bill Burke
|
e01424b815
|
Merge pull request #741 from patriot1burke/master
saml basic
|
2014-10-04 22:15:56 -04:00 |
|
Bill Burke
|
e3a3933390
|
saml basic
|
2014-10-04 21:27:48 -04:00 |
|
Stian Thorgersen
|
0d5be568f8
|
KEYCLOAK-722 Refreshing token throws RuntimeException if realm keys have changed
|
2014-10-03 13:23:21 +02:00 |
|
Stian Thorgersen
|
d6f030a05a
|
KEYCLOAK-662 NPE when using direct grant API with email as username
|
2014-10-03 12:10:52 +02:00 |
|
mposolda
|
e6121f301f
|
KEYCLOAK-732 AuthenticationManager.logout should logout just current userSession
|
2014-10-02 22:52:44 +02:00 |
|
mposolda
|
72b5632cfe
|
KEYCLOAK-731 Support for replacing configuration of Java adapters with system properties
|
2014-10-02 19:15:37 +02:00 |
|
mposolda
|
95521e8a95
|
KEYCLOAK-709 ResourceAdminManager.logoutApplication shouldn't immediatelly fail with RuntimeException
|
2014-10-01 23:20:49 +02:00 |
|
Bill Burke
|
6cf62a2768
|
move pre-auth
|
2014-10-01 14:57:52 -04:00 |
|
Bill Burke
|
cbc383d494
|
finish protocol refactoring
|
2014-10-01 14:19:59 -04:00 |
|
Bill Burke
|
546d45b009
|
protocol abstraction
|
2014-10-01 10:38:42 -04:00 |
|
Bill Burke
|
4b399fe05a
|
login protocol abstraction
|
2014-10-01 10:01:42 -04:00 |
|
Bill Burke
|
e32f73880f
|
Merge remote-tracking branch 'upstream/master'
|
2014-09-30 15:58:39 -04:00 |
|
Bill Burke
|
63b65c933b
|
token service refactoring
|
2014-09-30 15:58:20 -04:00 |
|
Stian Thorgersen
|
1d4e842cc0
|
Fixes to Mongo user session provider
|
2014-09-30 14:24:49 +02:00 |
|
Stian Thorgersen
|
99c73a9cc7
|
Clustering support
|
2014-09-30 09:40:20 +02:00 |
|
Bill Burke
|
fc867e59ea
|
action url refactor
|
2014-09-29 16:57:58 -04:00 |
|
Bill Burke
|
75a3093dda
|
login refactor phase 2, still more to do
|
2014-09-29 16:15:33 -04:00 |
|
Bill Burke
|
67f10bee24
|
Merge remote-tracking branch 'upstream/master'
|
2014-09-29 09:56:37 -04:00 |
|
Bill Burke
|
524b423733
|
ClientSession everywhere refactor phase1
|
2014-09-26 17:44:33 -04:00 |
|
Stian Thorgersen
|
f2e97ff9d6
|
Add test to add/remove attributes to user through admin endpoints
|
2014-09-25 19:35:57 +02:00 |
|
Bill Burke
|
66d58476d0
|
refactor security page flow
|
2014-09-23 11:05:10 -04:00 |
|
Bill Burke
|
bf42227224
|
remove junk
|
2014-09-22 16:35:22 -04:00 |
|
Bill Burke
|
99a6713e6f
|
clientsession notes
|
2014-09-22 16:34:42 -04:00 |
|
Bill Burke
|
0b8b31a3ea
|
KEYCLOAK-705
|
2014-09-19 10:00:47 -04:00 |
|
Stian Thorgersen
|
dcb5717154
|
KEYCLOAK-696 Display Keycloak version in admin console
|
2014-09-18 13:24:03 +02:00 |
|
mposolda
|
89471b7db1
|
KEYCLOAK-695 Let KEYCLOAK_REMEMBER_ME cookie to be valid for 1 year
|
2014-09-18 11:03:44 +02:00 |
|
mposolda
|
1049bca433
|
Prefill login form just if rememberMe enabled for the realm
|
2014-09-17 08:54:29 +02:00 |
|
mposolda
|
5352872b4b
|
Use KEYCLOAK_REMEMBER_ME as hint to prefill login form. Change lifespan of KEYCLOAK_IDENTITY to maxSsoSessionLifespan
|
2014-09-16 22:09:27 +02:00 |
|
mposolda
|
1be2bff95f
|
Typo
|
2014-09-12 16:57:02 +02:00 |
|
Stian Thorgersen
|
811cfd52c9
|
KEYCLOAK-657 Set cache-control for keycloak.js and login-iframe
|
2014-09-12 13:46:56 +02:00 |
|
Stian Thorgersen
|
7c15a70f53
|
Fixes to KEYCLOAK-682
|
2014-09-12 12:26:52 +02:00 |
|
Stian Thorgersen
|
5d141d4d8a
|
KEYCLOAK-682 Only send logout admin action to clients associated with user session
|
2014-09-12 11:47:11 +02:00 |
|
Stian Thorgersen
|
423dc1b8a7
|
Change version schema to match JBoss
|
2014-09-12 09:35:08 +02:00 |
|
mposolda
|
6f173d4554
|
KEYCLOAK-678 Preserve form values in account mgmt after error
|
2014-09-11 20:54:48 +02:00 |
|
mposolda
|
649a40f58c
|
KEYCLOAK-676 Validate email address format during registration or account mgmt
|
2014-09-11 20:05:00 +02:00 |
|
Stian Thorgersen
|
b23463a1d2
|
KEYCLOAK-653 Add theme support to welcome-pages
|
2014-09-11 15:58:29 +02:00 |
|
Stian Thorgersen
|
280cbf2174
|
KEYCLOAK-680 Add/remove social-links through admin api
|
2014-09-11 12:09:55 +02:00 |
|
Stian Thorgersen
|
5dea07793b
|
Version bump
|
2014-09-11 09:27:58 +02:00 |
|
mposolda
|
aa7bbeb11b
|
Support for cors in PublicRealmResource
|
2014-09-10 13:05:53 +02:00 |
|
mposolda
|
52920119bd
|
Ensure that ServerInfo request is authorized and add CORS support to it
|
2014-09-10 10:42:05 +02:00 |
|
Stian Thorgersen
|
557de7690e
|
Fix CRSF protection on Chrome, and add check if 'Referer' header
|
2014-09-10 10:32:56 +02:00 |
|
Bill Burke
|
3f539c6d5c
|
version bump
|
2014-09-09 13:34:56 -04:00 |
|
Bill Burke
|
e3e32982a0
|
change CSRF to random value
|
2014-09-09 13:27:34 -04:00 |
|
Bill Burke
|
ac29db51e5
|
nolog CORS exception
|
2014-09-09 12:51:55 -04:00 |
|
Bill Burke
|
d0a3a04d34
|
CSRF
|
2014-09-09 12:06:48 -04:00 |
|
Stian Thorgersen
|
3530fa6259
|
KEYCLOAK-666 Update session last refreshed on every token refresh
|
2014-09-09 11:01:24 +02:00 |
|
Stian Thorgersen
|
8c8c44e50f
|
KEYCLOAK-658 Fix searching for users
|
2014-09-02 10:01:44 +02:00 |
|
Stian Thorgersen
|
05a1fc1ded
|
Version bump
|
2014-09-01 10:17:00 +02:00 |
|
Stian Thorgersen
|
31b0f5543f
|
Fixes
|
2014-08-29 17:11:18 +02:00 |
|
Stian Thorgersen
|
39c0be5d99
|
KEYCLOAK-652
Social user can't set password
|
2014-08-29 16:51:10 +02:00 |
|
Stian Thorgersen
|
b9d0f64f74
|
Added password token to use inplace of plain-text password for totp
|
2014-08-28 13:51:55 +02:00 |
|
Stian Thorgersen
|
55d614fce8
|
Reduce log in UserFederationResource
|
2014-08-28 11:26:55 +02:00 |
|
Stian Thorgersen
|
3bfe3d256e
|
Rename audit to events
|
2014-08-28 10:56:37 +02:00 |
|
mposolda
|
fb18004c1d
|
KEYCLOAK-643 Handle flows with adding user with existing username or email in federation providers
|
2014-08-27 12:19:23 +02:00 |
|
Stian Thorgersen
|
55bd889a0f
|
KEYCLOAK-531 Reduce info level logging
|
2014-08-27 11:17:24 +02:00 |
|
mposolda
|
b3b480c25f
|
Display proper error message if LDAP-linked user couldn't be deleted due to read-only mode
|
2014-08-26 19:10:48 +02:00 |
|
mposolda
|
fd9d2ba4d5
|
Handle exceptions and UI errors when user is read only. Some sync issues
|
2014-08-26 12:54:05 +02:00 |
|
mposolda
|
6c7d0f27a7
|
More tooltips for LDAP and generic federation. Minor fixes
|
2014-08-25 16:28:52 +02:00 |
|
Bill Burke
|
e99afec7ec
|
import console from export
|
2014-08-21 17:17:09 -04:00 |
|
Bill Burke
|
7c8edb5d11
|
bump pom
|
2014-08-21 10:46:49 -04:00 |
|
Bill Burke
|
e5d5276135
|
race
|
2014-08-20 14:50:28 -04:00 |
|
Bill Burke
|
5dd84f1d9a
|
fix AccountService referrer problems
|
2014-08-20 14:20:59 -04:00 |
|
Bill Burke
|
47f361a4ab
|
nocache for fed provider list
|
2014-08-20 11:29:45 -04:00 |
|
Bill Burke
|
6e7924da76
|
demo fixes
|
2014-08-20 11:08:40 -04:00 |
|
Bill Burke
|
c38abb2cfe
|
?
|
2014-08-18 18:52:51 -04:00 |
|