Stan Silvert
a8ab1fea58
KEYCLOAK-8420: Create Hello React
2018-10-08 15:43:35 -04:00
k-tamura
fe0db7fe44
Update Japanese properties for 4.0
2018-10-04 20:59:38 +02:00
wildloop
a82f0ab657
Translation to Polish language
2018-10-04 20:50:58 +02:00
mposolda
2a4cee6044
KEYCLOAK-6884 KEYCLOAK-3454 KEYCLOAK-8298 Default 'roles' and 'web-origins' client scopes. Add roles and allowed-origins to the token through protocol mappers
2018-10-04 12:00:38 +02:00
stianst
c3fc9e9815
Set version to 4.6.0.Final-SNAPSHOT
2018-09-26 20:58:41 +02:00
Pedro Igor
43f5983613
[KEYCLOAK-8289] - Remove authorization services from product preview profile
2018-09-26 18:27:27 +02:00
Christopher
25b390b2ae
Fixing hyperlink content in german language
...
The hyperlink for emailVerificationBodyHtml should contain a short message and not the link itself
2018-09-20 15:48:15 +02:00
Jacob van Lingen
52b7fd8c45
Fix Dutch translation
...
'Overnieuw' is considered a colloquialism in Dutch at best, others considered it as just wrong.
2018-09-20 15:42:43 +02:00
Pedro Igor
39f0e4528a
[KEYCLOAK-8270] - Cannot remove 'Not Before' or 'Not On or After' from a Time Policy
2018-09-19 09:47:22 -03:00
Stan Silvert
e85a396572
KEYCLOAK-8016: js sometimes loaded out of order
2018-09-17 08:55:33 -04:00
mposolda
99a16dcc1f
KEYCLOAK-6638 Support for adding audiences to tokens
2018-09-13 21:40:16 +02:00
stianst
12f3d2115d
KEYCLOAK-8263 Add option to client to override access token timeout
2018-09-11 12:40:51 +02:00
stianst
24e60747b6
KEYCLOAK-7560 Refactor token signature SPI PR
...
Also incorporates:
KEYCLOAK-6770 ES256/384/512 providers
KEYCLOAK-4622 Use HS256 for refresh tokens
KEYCLOAK-4623 Use HS256 for client reg tokens
2018-09-11 08:14:10 +02:00
stianst
1fb4ca4525
Set version to 4.5.0.Final
2018-09-06 20:08:02 +02:00
vmuzikar
bd8510f4da
KEYCLOAK-7925 Initial tests for the new Account Console
2018-09-06 09:59:28 +02:00
Pedro Igor
2eddfd3ea8
[KEYCLOAK-7160] - Completely broken AuthZ Configs in IE
2018-09-04 14:40:14 +02:00
June Zhang
237318dfd3
KEYCLOAK-7751 Auth welcome page
2018-09-04 07:55:08 +02:00
Johannes Knutsen
c0b5c12dee
KEYCLOAK-8147: Add support for Content-Security-Policy-Report-Only response headers
2018-08-31 10:38:56 +02:00
Hynek Mlnarik
bee3894cdf
KEYCLOAK-8150 Improve loading user list
2018-08-30 13:03:49 +02:00
mposolda
b70468341e
KEYCLOAK-7470 Ability to order client scopes
2018-08-29 14:37:27 +02:00
Johannes Knutsen
56c97407d4
KEYCLOAK-8152: Allow passing the current locale to OAuth2 identity providers
2018-08-28 15:52:23 +02:00
Grzegorz Grzybek
bf7a173e1e
[KEYCLOAK-7394] Change Content-Type to x-www-form-urlencoded for RealmAdminResource#testLDAPConnection
2018-08-28 04:56:08 -03:00
Pedro Igor
c0508aded7
[KEYCLOAK-7757] - Deleting scopes in account console doesn't work
2018-08-24 09:35:52 -03:00
vmuzikar
653d3f4f5d
KEYCLOAK-8093 Add IDs to HTML elements in new Account Console
2018-08-22 09:30:20 -04:00
stianst
ab77140454
KEYCLOAK-8036 Fix misplaced IdP buttons
2018-08-15 11:32:02 +02:00
Sebastian Laskawiec
e9604a49e1
KEYCLOAK-8046 Prevent from sending Client twice
2018-08-14 17:35:37 +02:00
Steffen Kreutz
ed72097862
KEYCLOAK-5289 Add support for Google's hd parameter
2018-08-14 11:08:57 +02:00
Sebastian Laskawiec
3449401ae2
KEYCLOAK-7635: Subject DN validation for x509ClientAuthenticator
2018-08-13 09:36:02 +02:00
ssilvert@win.redhat.com
4554798cec
KEYCLOAK-8002: Add missing TS files to notification component
2018-08-07 15:27:42 -04:00
mposolda
959cd035ba
Set version to 4.3.0.Final-SNAPSHOT
2018-08-01 22:40:05 +02:00
ssilvert@win.redhat.com
e7e15652cf
KEYCLOAK-7479: Sanitize
2018-08-01 14:22:39 -04:00
stianst
f99299ee39
KEYCLOAK-7967 Introduce Hostname SPI
2018-08-01 11:57:45 +02:00
Cedric Veilleux
f32e258a18
i18n : Unicode encoding issue in french email
...
One accentuated character was missing unicode escaping in french reset email translation.
2018-07-31 21:55:34 +02:00
Martin Kanis
e6ad0d63a1
KEYCLOAK-7974 Fix typo in remove credentials alert
2018-07-31 15:29:50 +02:00
Takashi Mogi
959e7b1b01
KEYCLOAK-7201 OIDC Identity Brokering with Client parameter forward
...
Forward "custom" (non-standard) query parameters to external IDP
2018-07-31 10:18:29 +02:00
Timothy Lee
9c18d0e628
remove a redundant div end tag
2018-07-30 18:41:03 +02:00
ssilvert@win.redhat.com
0844aa8d68
KEYCLOAK-7857: Fix notifications
2018-07-25 08:59:25 -04:00
ssilvert@win.redhat.com
d73c4288ae
KEYCLOAK-7294: Password page - Angular
2018-07-25 08:59:25 -04:00
vramik
524ab44160
KEYCLOAK-6866 Error 404 after changing locale while authenticating using X.509
2018-07-24 17:24:32 +02:00
Hiroyuki Wada
7c0ca9aad2
KEYCLOAK-6313 Add required action's priority for customizing the execution order
2018-07-23 22:21:04 +02:00
Hynek Mlnarik
b43392bac8
KEYCLOAK-6577 KEYCLOAK-5609 Support dot in claim names by escaping with backslash
2018-07-23 14:46:25 +02:00
Jannik Hüls
44f5cf3020
KEYCLOAK-6707 change verfiyEmail tooltip
2018-07-18 09:14:41 -03:00
ssilvert@win.redhat.com
385e1c6122
KEYCLOAK-7846: Add missing features.ts file
2018-07-17 12:44:06 -04:00
ssilvert@win.redhat.com
3e158c0321
KEYCLOAK-7846: Turn off disallowed features
2018-07-17 12:44:06 -04:00
ssilvert@win.redhat.com
c969c4c903
Cleanup console.log
2018-07-17 12:43:20 -04:00
ssilvert@win.redhat.com
8533bc7f00
KEYCLOAK-7795: "Back to <app>" missing from Welcome Page
2018-07-17 12:43:20 -04:00
ssilvert@win.redhat.com
2adff375db
KEYCLOAK-7497: Remove babel transpiler. Use UMD files from
...
patternfly-ng.
2018-07-17 12:42:14 -04:00
ssilvert@win.redhat.com
d959e501ae
KEYCLOAK-7524: Vertical Nav doesn't close on secondary click
2018-07-17 12:42:14 -04:00
mhajas
5aebc74f8c
KEYCLOAK-7269 Setting more uris for Authorization Resource
2018-07-11 17:48:34 -03:00
zhutaoredhat
b80b480769
Fixes KEYCLOAK-7535 - reupdate resource html
2018-07-06 07:40:41 -03:00
mposolda
d0a824dde4
Updating version to 4.2.0.Final-SNAPSHOT
2018-07-05 07:42:48 -04:00
mposolda
01da592f77
KEYCLOAK-7769 Outdated tabs on realm-keys-generic.html
2018-07-04 10:42:30 +02:00
Pedro Igor
6f3c59e086
[KEYCLOAK-7062] - Groups claim should be optional
2018-07-03 10:03:20 -03:00
June Zhang
fc0d510e85
Fixes KEYCLOAK-7689 Authenticator - Mobile Setup HTML
2018-07-03 08:58:17 -04:00
ssilvert@win.redhat.com
65551159e0
KEYCLOAK-7634: Export error on client if no mappers
2018-07-03 08:54:40 +02:00
stianst
3c5027de3c
KEYCLOAK-7701 Refactor key providers to support additional algorithms
2018-06-29 14:14:25 +02:00
Hiroyuki Wada
a5d155a35a
KEYCLOAK-7674 Fix colspan
2018-06-28 18:39:10 -03:00
zhutaoredhat
05bbd9ace3
Fixes KEYCLOAK-7535 - My Resources - HTML update
...
Updated the responsive status to make the page looks much more clear.
This PR is to provide HTML and CSS code
2018-06-28 13:08:17 -04:00
zhutaoredhat
30e8071d1d
Fixes KEYCLOAK-7535 - My Resources - HTML
...
This PR is to provide HTML and CSS code
JIRA task: https://issues.jboss.org/browse/KEYCLOAK-7535
2018-06-26 13:30:08 -04:00
Takashi Norimatsu
2fb022e501
KEYCLOAK-7688 Offline Session Max for Offline Token
2018-06-26 08:25:06 +02:00
June Zhang
ca06043b00
Fixes KEYCLOAK-7533 Authenticator List page - HTML
2018-06-22 15:43:24 -04:00
Oskars Pakers
30a066db41
[master]: Fix translation for allowed-clock-skew
2018-06-22 11:45:35 +02:00
Thomas Darimont
f5ca4840d6
Fix typo (TThis)
2018-06-22 06:43:51 +02:00
zhutaoredhat
1277f8bb3b
Fixes KEYCLOAK-7384 - Linked Accounts HTML Update
...
This PR is to provide HTML and CSS code
JIRA task: https://issues.jboss.org/browse/KEYCLOAK-7384
2018-06-20 21:30:27 -04:00
ssilvert@win.redhat.com
63a6ba53df
KEYCLOAK-7657: My Resources placeholder components.
2018-06-19 16:28:17 -04:00
ssilvert@win.redhat.com
9af51fb664
KEYCLOAK-7662: Placeholder components for authenticator.
2018-06-19 15:56:37 -04:00
ssilvert@win.redhat.com
e638391182
KEYCLOAK-7330 KEYCLOAK-7439 KEYCLOAK-7503 404-error on Token tab
2018-06-18 15:12:21 -04:00
June Zhang
2f366b0d5d
Fixes KEYCLOAK-7637 UI background color issue
2018-06-15 14:19:38 -04:00
stianst
e1a0e581b9
Update to 4.1.0.Final-SNAPSHOT
2018-06-14 14:22:28 +02:00
Grzegorz Grzybek
08296bd3ce
[KEYCLOAK-7508] Fix a typo: resouces -> resources ( #5243 )
2018-06-11 08:18:32 +02:00
Marek Posolda
49407c2e4f
KEYCLOAK-6630 Client scopes initial support ( #5076 )
...
* KEYCLOAK-6630 KEYCLOAK-349 Client Scopes
Co-authored-by: vramik <vramik@redhat.com>
* KEYCLOAK-6630 Change some clientTemplate occurences to clientScope
2018-06-08 15:38:38 +02:00
Pedro Igor
aa128d6c07
Merge pull request #5240 from pedroigor/KEYCLOAK-7353
...
[KEYCLOAK-7353] Support Policy Management in Protection API
2018-06-07 11:05:49 -03:00
Federico M. Facca
5a9bfea419
[KEYCLOAK-7353] Support Policy Management in Protection API
...
See https://issues.jboss.org/browse/KEYCLOAK-7353
2018-06-06 19:36:42 -03:00
Stan Silvert
b7fb3ec9a9
KEYCLOAK-7513 Minor changes to vertical nav ( #5244 )
2018-06-06 14:39:00 -04:00
Takashi Norimatsu
c586c63533
KEYCLOAK-6771 Holder of Key mechanism
...
OAuth 2.0 Mutual TLS Client Authentication and Certificate Bound Access
Tokens
2018-06-05 08:18:29 +02:00
Stan Silvert
f45ed1613e
KEYCLOAK-7334: Update vertical na/Integrate patternfly-ng ( #5241 )
2018-06-04 07:53:37 -04:00
Stan Silvert
cb3b7f3cb2
KEYCLOAK-5934: Disable paste for event filters ( #5026 )
2018-06-01 10:28:56 +02:00
June Zhang
5e8db32329
Fixes KEYCLOAK-7382 - Application Response HTML Update ( #5235 )
2018-05-31 13:18:25 -04:00
Pedro Igor
473e9ab55c
Merge pull request #5227 from pedroigor/KEYCLOAK-7449
...
[KEYCLOAK-7449] - When clicking link or actions the row is expanded
2018-05-29 14:38:23 -03:00
June Zhang
77e503f5ca
Fixes KEYCLOAK-7381 Device Activity Response - HTML update ( #5230 )
2018-05-29 09:30:48 -04:00
Pedro Igor
65f5eacdd4
[KEYCLOAK-7449] - When clicking link or actions the row is expanded
2018-05-25 17:57:03 -03:00
Stian Thorgersen
dbf5c395b0
Bump version to 4.0.0.Final ( #5224 )
2018-05-24 19:02:30 +02:00
Pedro Igor
06f108df3b
Merge pull request #5213 from pedroigor/KEYCLOAK-7082
...
[KEYCLOAK-7082] - Making lists more aligned with patternfly listview component
2018-05-22 10:52:16 -03:00
Pedro Igor
a8319d1131
Merge pull request #5204 from pedroigor/KEYCLOAK-7360
...
[KEYCLOAK-7360] - Both time and rules policy not showing number fields
2018-05-22 08:12:43 -03:00
Pedro Igor
f800290d89
[KEYCLOAK-7082] - Making lists more aligned with patternfly listview component
2018-05-21 10:54:13 -03:00
June Zhang
e79de47f5e
Fixes KEYCLOAK-7348 Password/Personal Info Response Design - HTML Update ( #5209 )
2018-05-21 07:59:34 -04:00
Pedro Igor
343dc05f82
[KEYCLOAK-7360] - Both time and rules policy not showing number fields
2018-05-16 10:38:56 -03:00
June Zhang
943c8507f7
Fixes KEYCLOAK-7247 HTML for responsive welcome page ( #5197 )
2018-05-14 07:20:25 -04:00
June Zhang
eb8257a52e
Fixes KEYCLOAK-7090 Applications page - HTML ( #5189 )
2018-05-10 18:14:56 -04:00
Bill Burke
1258923a0d
Merge pull request #5188 from patriot1burke/keycloak-7304
...
KEYCLOAK-7304
2018-05-08 07:31:05 -04:00
Stan Silvert
344286e037
KEYCLOAK-7244: Lang dropdowns should sometimes be hidden ( #5175 )
2018-05-07 15:56:22 -04:00
Clément Poissonnier
032c48fb25
i18n(login): add missing keys for french language ( #5145 )
2018-05-07 00:49:46 +02:00
Bill Burke
fdc6fc59b8
KEYCLOAK-7304
2018-05-03 12:14:30 -04:00
Stan Silvert
f3340b113f
KEYCLOAK-6977: Stop using yarn for new admin console ( #5181 )
2018-05-03 09:29:13 -04:00
Stan Silvert
20f24bffc4
KEYCLOAK-7248: Fixes for IE 11 ( #5182 )
2018-05-02 16:15:31 -04:00
Stian Thorgersen
90e5c7f3eb
Bump version to 4.0.0.Beta3-SNAPSHOT ( #5185 )
2018-05-02 14:32:20 +02:00
Stan Silvert
5a56a822b0
KEYCLAOK-7170 device activity component ( #5169 )
...
* KEYCLOAK-7170: Create Device Activity Page
* KEYCLOAK-7170: Create Device Activity Page
* Fixes KEYCLOAK-7205 - Device activity - update HTML
2018-04-25 15:04:56 -04:00
Stan Silvert
35154db50f
KEYCLOAK-7123: l10n dropdowns ( #5170 )
...
* KEYCLOAK-7196: Add kc_locale to keycloak.js
* KEYCLOAK-7123: Localization dropdowns
* Update keycloak-service to latest keycloak.js
2018-04-25 15:04:12 -04:00
June Zhang
49a83db2e9
Fixes KEYCLOAK-6499 Add password update - HTML ( #5154 )
2018-04-23 06:46:02 -04:00
June Zhang
c12cd7fd57
Fixes KEYCLOAK-7114 Fix localization for Welcome page - HTML/FTL ( #5152 )
2018-04-18 12:13:29 -04:00
Oskars
3bef6d5066
KEYCLOAK-4538 Configurable clock skew when validating tokens ( #5014 )
...
* [master]: fix type for checkLoginIframeInterval
* [master]: KEYCLOAK-4538 Feature to tolerate a configurable amount of seconds of clock skew when validating tokens
* [master]: KEYCLOAK-4538 Fix unit test scenarios for token clock skew
* [master]: KEYCLOAK-4538 Reverted wildcard imports
* [master]: fix unit test to use longer intervals to make test less fragile.
2018-04-16 11:09:25 +02:00
June Zhang
e8a07c9a6c
Fixes KEYCLOAK-6970 Update HTML for profile page ( #5146 )
2018-04-13 13:34:24 -04:00
June Zhang
03590f117e
Fixes KEYCLOAK-6838 Update RH-SSO logo style ( #5147 )
2018-04-13 08:10:55 +02:00
Stan Silvert
095fec95e5
KEYCLOAK-7022 Fix l10n on Welcome page ( #5143 )
2018-04-11 12:05:07 -04:00
Hugo Guerrero
fac3118b0a
KEYCLOAK-6448 - implement instagram social broker ( #4963 )
...
* KEYCLOAK-6448 - implement instagram social broker
* Instagram SocialLogin Tests
2018-04-09 17:30:27 +02:00
Douglas Palmer
cf056b3464
[KEYCLOAK-6069] Allow configuration of LDAP connection pooling
2018-04-06 20:27:11 +02:00
Joe32
f41a7000de
KEYCLOAK-6305, Slovak translation ( #4926 )
2018-04-06 11:37:39 +02:00
Stan Silvert
f652b13520
KEYCLOAK-7024: Fix logout dropdown ( #5109 )
2018-04-04 09:40:15 -04:00
Stan Silvert
baf6b96db6
KEYCLOAK-7037: Welcome Page Links ( #5113 )
2018-04-04 09:39:35 -04:00
Stan Silvert
701c318b60
KEYCLOAK-7047: Fix RegistrationEmailAsUsername and EditUserNameAllowed ( #5122 )
...
on personal info page.
2018-04-04 09:31:38 -04:00
Bill Burke
0b2fe75828
Merge pull request #5115 from patriot1burke/kcinit-browser
...
KEYCLOAK-7004 KEYCLOAK-7003 KEYCLOAK-6999 KEYCLOAK-7033
2018-04-03 10:31:30 -04:00
June Zhang
7280234422
Fixes KEYCLOAK-6969 Update the welcome page ( #5105 )
2018-03-31 13:33:12 -04:00
Bill Burke
4078e84fb6
server driven success page
2018-03-31 10:16:44 -04:00
Bill Burke
f4a5e49b63
initial
2018-03-29 17:14:36 -04:00
Bill Burke
f5bacb79c1
review changes
2018-03-28 16:45:52 -04:00
Bill Burke
ad5f3fefc5
Merge remote-tracking branch 'upstream/master' into kcinit
2018-03-27 16:38:35 -04:00
Stan Silvert
80feb67fc2
KEYCLOAK-6494: Address load time of new acct mgt console ( #5100 )
...
* Optimize loading. min bundles, stop double-loading, rxjs-system instead of
plain rxjs, clean up 404's
* Create module loading hierarchy. Allows for lazy loading.
* Upgrade NG, remove jquery, load keycloak.js only from auth/js
* Delay systemjs loading. Load home page instead of account.
* KEYCLOAK-6496: Cleanup and polish code after optimizations.
* Fix message bundle to be back the way it was.
* Remove unused png's. Remove comments in index.ftl. Remove javaMessages.
2018-03-27 12:42:13 -04:00
Pedro Igor
ffeb0420bf
Merge pull request #5079 from pedroigor/KEYCLOAK-6529
...
[KEYCLOAK-6529] - Resource Attributes
2018-03-27 09:30:38 -03:00
June Zhang
bff7831912
KEYCLOAK-6942 Cut off background on the new login page
2018-03-26 18:23:36 +02:00
stianst
07fea02146
Bump versions to 4.0.0.Beta2-SNAPSHOT
2018-03-26 18:17:38 +02:00
June Zhang
ca15db81bb
KEYCLOAK-6262 Incorporate new visual design from PatternFly ( #4983 )
...
* KEYCLOAK-6262 Incorporate new visual design from PatternFly
Update the username or email
Fix narrow/wide in template.ftl
minor style update
Add the Realm HTML name and image
Config OTP and Update Password
Not display the locale selector if there is less than 1 locale.
Fix margins/paddings on config otp screens
Fix title
Upgraded to PatternFly 3.41.6
Added RCUE and updated RH-SSO login theme
Refine the RCUE padding issue
Fix tests
Fix Keycloak background
Fix
* fix the overflowing issue
* Fix Console UI Tests to reflect the new login page
* Fix the different style of the IdP buttons
Fix the IE placeholder issue - add label
* Removed placeholder on login and reset pass. Fixed Keycloak background on wide screens.
* fixed the stackoverflow issues
fixed the width in the tablets
2018-03-21 10:47:33 +01:00
Bill Burke
f000cedcbb
Merge remote-tracking branch 'upstream/master' into kcinit
2018-03-20 16:49:43 -04:00
Bill Burke
8926837a3e
tests
2018-03-19 16:47:13 -04:00
Áron Bustya
57f57f5c75
set request object mandatory for client, restrict delivery mode
...
handle new attribute in client representation
add to UI
2018-03-19 19:31:22 +01:00
pedroigor
08896ee9c9
[KEYCLOAK-6529] - Resource Attributes
2018-03-19 13:21:39 -03:00
Bill Burke
4bba11cd94
kcinit
2018-03-16 12:11:57 -04:00
sebastienblanc
ee2d28d589
KEYCLOAK-6775 : fix french typos
2018-03-14 21:13:46 +01:00
Inki Hwang
22e32117e0
[KEYCLOAK-6789] show client id when client name is empty
2018-03-14 15:20:20 +01:00
Bill Burke
e2bec73011
KEYCLOAK-6336
2018-03-02 12:29:07 -05:00
pedroigor
cb531056a6
[KEYCLOAK-6621] - Fixing cache and queries of policies with type scope
2018-02-28 16:33:45 -03:00
Bill Burke
215bbaac6c
hide tab when no client storage providers
2018-02-28 08:47:13 -05:00
Bill Burke
53f96099fb
review fixes
2018-02-28 08:47:13 -05:00
Bill Burke
681256a079
KEYCLOAK-6622
2018-02-28 08:47:13 -05:00
Gaétan Collaud
1d88d061e6
French translation for KEYCLOAK-2120
...
* Added translation for KEYCLOAK-2120
* Removed link in translation since apps are now in a list (and html was escaped)
2018-02-28 08:55:26 +01:00
Gaétan Collaud
123c6dffe0
Improved french translation
...
In french, the "forgot password" email displays the full link instead of having a message like other languages.
`Lien pour réinitialiser votre mot de passe` = `Link to reset your password`.
2018-02-28 08:55:03 +01:00
Pedro Igor
91bdc4bde2
[KEYCLOAK-3169] - UMA 2.0 ( #4368 )
...
* [KEYCLOAK-3169] - UMA 2.0 Support
* [KEYCLOAK-3169] - Changes to account service and more tests
* [KEYCLOAK-3169] - Code cleanup and tests
* [KEYCLOAK-3169] - Changes to account service and tests
* [KEYCLOAK-3169] - Changes to account service and tests
* [KEYCLOAK-3169] - More tests
* [KEYCLOAK-3169] - Changes to adapter configuration
* [KEYCLOAK-3169] - Reviewing UMA specs and more tests
* [KEYCLOAK-3169] - Reviewing UMA specs and more tests
* [KEYCLOAK-3169] - Changes to UMA Grant Type and refactoring
* [KEYCLOAK-3169] - Refresh tokens for RPT responses and tests
* [KEYCLOAK-3169] - Changes to account my resources and policy enforcers
* [KEYCLOAK-3169] - Realm settings flag to enable/disable user-managed access in account mgmt console
* [KEYCLOAK-3169] - More changes to my resource pages in account mgmt console
* [KEYCLOAK-3169] - Need to enable user-managed on realm to run tests
* [KEYCLOAK-3169] - Removing more UMA 1.0 related code
* [KEYCLOAK-3169] - Only submit requests if ticket exists
* [KEYCLOAK-3169] - Returning UMA 401 response when not authenticated
* [KEYCLOAK-3169] - Removing unused code
* [KEYCLOAK-3169] - Removing unused code
* [KEYCLOAK-3169] - 403 response in case ticket is not created
* [KEYCLOAK-3169] - Fixing AbstractPhotozExampleAdapterTest#testClientRoleRepresentingUserConsent
* [KEYCLOAK-3169] - 403 status code only returned for non-bearer clients
2018-02-28 08:53:10 +01:00
Ferdinand Hübner
190ad06f1a
KEYCLOAK-6618 Update German translations ( #5002 )
...
* KEYCLOAK-6618 Update German translations
Add missing translations for OTP authenticator settings and update
outdated translations for OTP authenticator
Fix minor issue for the username property (plural -> singular)
Add missing translations
* KEYCLOAK-6618: Include review feedback into German translations
* KEYCLOAK-6618: Reword translation for multi-factor authentication and fix minor translation issues
* KEYCLOAK-6618: Update German translation for the login theme
Message bundle keys have been reordered to be in sync with the english
version to improve scanning through the message bundles side-by-side.
The updated German translations from the account theme were applied to
the login theme as well (where applicable).
2018-02-28 05:10:31 +01:00
Ismael Jimenez
f604449188
Removed duplicated tabindex
...
The tabindex="3" was at the beginning and at the end of the tag, kept the one at the beginning for consistency.
2018-02-26 10:47:32 +01:00
Bruno Oliveira
f351db608e
[KEYCLOAK-6334] Minor typo: "read only" should be "read-only"
2018-02-20 20:18:16 +01:00
Christian Katzorke (cig393a)
2c59d948fc
in addition to KEYCLOAK-6065 no automplete
2018-02-20 20:14:28 +01:00
Bill Burke
5d5373454c
Merge pull request #4991 from patriot1burke/challenge-support
...
KEYCLOAK-6355
2018-02-13 09:38:45 -05:00
Stian Thorgersen
adb6c7789c
Merge pull request #4967 from k-tamura/fix-incorrect-japanese-translations
...
KEYCLOAK-6469 Fix incorrect Japanese translations
2018-02-12 09:58:58 +01:00
Bill Burke
d6788a0839
finish
2018-02-10 13:38:39 -05:00
Bruno Oliveira
b91998a0d8
[KEYCLOAK-6111] 'Override User-Initiated Action Lifespan' admin GUI can break realm configuration
2018-02-09 06:36:23 -02:00
Douglas Palmer
e8de4655ac
KEYCLOAK-6344 Use POST instead of GET for LDAP connection tests
2018-02-08 21:18:03 +01:00
stianst
0e69dc6885
KEYCLOAK-1874 Add PatternFly 3.38.1
2018-02-07 14:26:10 +01:00
stianst
f1e7d3d6da
KEYCLOAK-6378 Clean themes common directory
2018-02-07 12:07:40 +01:00
Kohei Tamura
0370cb64e7
Fix incorrect Japanese translations
2018-02-05 19:11:03 +09:00
Kohei Tamura
a50b94be0c
KEYCLOAK-6457 Fix typos in properties
2018-02-05 05:58:08 +01:00
Hynek Mlnarik
afa26f7d3c
KEYCLOAK-6339 Display SAML client IdP-initiated SSO URL
2018-02-02 11:17:10 +01:00
Bill Burke
8f09efab9d
Merge pull request #4949 from patriot1burke/client-storage-spi
...
KEYCLOAK-6228
2018-02-01 08:59:02 -05:00
Vlastimil Elias
a5f675d693
KEYCLOAK-4937 - convert time units in emails into human-friendly format
2018-01-30 06:38:57 +01:00
Bill Burke
1d8e38f0c6
admin console
2018-01-27 13:05:02 -05:00
Takashi Norimatsu
502627f590
KEYCLOAK-5811 Client Authentication by JWS Client Assertion in client secret
2018-01-26 10:59:40 +01:00
Douglas Palmer
42759be6ff
[KEYCLOAK-6143] Remove Hmac prefix from algorithms in the OTP manual config pages
2018-01-25 07:10:30 +01:00
Douglas Palmer
0f1644e612
[KEYCLOAK-6142] Updated OTP manual config pages to reflect HOTP
2018-01-25 07:09:24 +01:00
Thorsten Boock
64b75d2806
Fix Authenticator Page HTML
...
Closes `<thead>` and disables escaping for the `totpStep1` message as it includes HTML links.
2018-01-24 13:44:57 -05:00
mposolda
6369c26671
KEYCLOAK-6286 Adding 'Exclude Session State From Authentication Response' switch to fix backwards compatibility with Keycloak 2.X adapters
2018-01-24 11:35:13 +01:00
stianst
f762173eb0
KEYCLOAK-3370 Add option to override theme in client template and client
2018-01-18 09:14:13 +01:00
pedroigor
79349e6307
[KEYCLOAK-6159] - Resource Permission UI not enabling save button when no policies are set
2018-01-09 16:28:53 -02:00
pedroigor
56750cba83
[KEYCLOAK-6113] - Remove red asterisk sign next to 'Apply Policy' while creating a new permission
2018-01-02 12:40:10 -02:00
stianst
6e3303145f
KEYCLOAK-6079
2018-01-02 15:15:44 +01:00
stianst
0bedbb4dd3
Bump version to 4.0.0.CR1-SNAPSHOT
2017-12-21 15:06:00 +01:00
stianst
e3995c0154
KEYCLOAK-6079
2017-12-21 12:18:12 +01:00
Pedro Igor
7e072abf74
Merge pull request #4873 from pedroigor/master
...
[KEYCLOAK-5806] - Returning from child policy not restoring state
2017-12-20 08:53:50 -02:00
stianst
7d2d7e41d9
KEYCLOAK-6065 Prevent password managers from saving credentials in admin console
2017-12-20 06:46:54 +01:00
pedroigor
3846cfdb4f
[KEYCLOAK-5806] - Changing apply policy component and more tests
2017-12-19 17:28:46 -02:00
stianst
902b799bdf
KEYCLOAK-6064 Fix identity providers page when realm has no configured providers
2017-12-19 17:56:48 +01:00
stianst
465675ac28
KEYCLOAK-5019 Fixes for password managers
2017-12-19 16:13:16 +01:00
pedroigor
2ace312501
[KEYCLOAK-5806] - More UI tests for parent/child policy flow
2017-12-19 12:13:04 -02:00
pedroigor
c00d89aec3
[KEYCLOAK-5806] - Returning from child policy not restoring state
2017-12-19 10:00:14 -02:00
stianst
71e6f52f7d
KEYCLOAK-6022
2017-12-18 11:48:39 +01:00
stianst
b303acaaba
KEYCLOAK-2120 Added manual setup page for OTP
2017-12-18 11:20:20 +01:00
pedroigor
5d7ba39e0c
[KEYCLOAK-5806] - Create policy component to permission pages
2017-12-15 23:41:52 -02:00
pedroigor
e2118856ca
[KEYCLOAK-5806] - Adding table of selected policies
2017-12-15 22:04:37 -02:00
pedroigor
eba47b3c89
[KEYCLOAK-5806] - Create policy button to Aggregated Policies
2017-12-15 22:04:37 -02:00
Pedro Igor
a66fe003d3
Merge pull request #4863 from pedroigor/KEYCLOAK-5877
...
[KEYCLOAK-5877] - Allow save permissions without policies
2017-12-15 15:45:38 -02:00
Stan Silvert
a719b73808
KEYCLOAK-5935: No success msg on client role add/remove
2017-12-15 10:54:43 -05:00
pedroigor
94928323ee
[KEYCLOAK-5877] - Allow saving permissions without policies
2017-12-15 12:55:07 -02:00
stianst
a8943fb323
KEYCLOAK-6043 Use same urls for get and posts in account
2017-12-15 08:31:04 +01:00
Stan Silvert
2b11938084
KEYCLOAK-5932: Remove social idp from dropdown if already defined
2017-12-14 20:18:56 -05:00
Stan Silvert
97e3b26a5c
KEYCLOAK-5934: Event filters allowing free values in select2 inputs
2017-12-14 16:38:02 -05:00
Stan Silvert
068785f227
KEYCLOAK-6042: Remove keycloak-preview from product build.
2017-12-14 14:09:04 +01:00
Bill Burke
ea3417253f
KEYCLOAK-5923
2017-12-12 16:07:09 -05:00
Bruno Oliveira
0a9055e112
[KEYCLOAK-5175] Importing certificate to saml client takes too long
2017-12-12 14:45:24 +01:00
Stan Silvert
a60fdcedcd
KEYCLOAK-5929: Submit buttons in wrong position
2017-12-11 08:27:39 -05:00
stianst
dac6c6bd7e
KEYCLOAK-6000 Fix output in execute actions email
2017-12-11 14:24:37 +01:00
Bill Burke
5d5a200413
Merge pull request #4818 from patriot1burke/master
...
KEYCLOAK-5926
2017-12-08 09:59:32 -05:00
Bill Burke
0dee393071
KEYCLOAK-5926
2017-12-07 19:49:10 -05:00
Bruno Oliveira
3f3d50b9ad
KEYCLOAK-5467 X.509 Auth - missing internationalization support
...
This adds the missing i18n support for login buttons
2017-12-07 08:52:16 -02:00
Stan Silvert
b8da95e901
KEYCLOAK-5930: Submit button on cred screen should start as disabled
2017-12-06 15:35:00 -05:00
stianst
ecfabe4ebe
KEYCLOAK-5913 Move Chinese translations into resources-community
2017-12-06 13:58:52 +01:00
Stan Silvert
30ad2899b8
KEYCLOAK-5933: Configure TOTP to Configure OTP
2017-12-05 17:24:54 -05:00
Stan Silvert
19cfbbf7ff
KEYCLOAK-5972: i18n broken on keycloak-preview acct mgt
2017-12-04 13:44:16 -05:00
stianst
37de8e9f69
Bump version to 3.4.2.Final-SNAPSHOT
2017-12-01 09:34:48 +01:00
Stan Silvert
4d4ee33d1d
KEYCLOAK-5937: Not possible to select role w/ hardocded LDAP role mapper
2017-11-30 15:29:36 -05:00
stianst
4daf6aaec5
KEYCLOAK-5940
2017-11-30 13:43:15 +01:00
Bruno Oliveira
6a528a3ee6
[KEYCLOAK-2645] Reset password page says 'You need to change your password to activate your account.'
2017-11-30 10:37:21 +01:00
stianst
2be78a0239
KEYCLOAK-5924 Add error handler for uncaught errors
2017-11-30 10:33:13 +01:00
Stan Silvert
fc8a8b1dd8
KEYCLOAK-5905: 'Disable Credentials' not displayed after reset password.
2017-11-28 16:40:41 -05:00
Bill Burke
c36b3cd296
KEYCLOAK-5904
2017-11-28 09:10:43 -05:00
stianst
24b7e318ca
KEYCLOAK-5913 Fix all locales showing in RH-SSO
2017-11-28 07:54:26 +01:00
Stan Silvert
27268044ae
KEYCLOAK-5906: Active page not highlighted in nav sidebar
2017-11-27 12:43:43 -05:00
Bruno Oliveira
9d35891e7d
[KEYCLOAK-5467] X.509 Auth - missing internationalization support
2017-11-27 13:44:38 +01:00
Stian Thorgersen
feaf834184
KEYCLOAK-5863 Fix error when updating mapper twice in a row
2017-11-17 12:20:43 +01:00
Shon T. Urbas
f186ea12c6
Removal of duplicate cuff.
2017-11-16 07:18:49 +01:00
Stan Silvert
dc05134e41
KEYCLOAK-5850: Del realm role broken on permissions & Users tabs.
2017-11-16 07:05:08 +01:00
Stan Silvert
f923211e9f
KEYCLOAK-5849: Multiple errors in acct page displays '<br/>'
2017-11-15 19:59:54 +01:00
Bill Burke
a70461b726
Merge pull request #4695 from patriot1burke/master
...
KEYCLOAK-5459 KEYCLOAK-5855
2017-11-14 22:02:13 -05:00
Bill Burke
6b8ead6c4b
KEYCLOAK-5459
2017-11-14 19:37:07 -05:00
Stan Silvert
8b023f57f9
KEYCLOAK-5474: Unexp behavior with "login w/ email" and "Dup emails" ( #4683 )
...
settings.
2017-11-14 16:12:56 -05:00
Hynek Mlnařík
1412fed265
Merge pull request #4676 from abstractj/KEYCLOAK-2052
...
[KEYCLOAK-2052] Allows independently set timeouts for e-mail verification link and rest e.g. forgot password link
2017-11-14 09:19:57 +01:00
Stian Thorgersen
de72542151
KEYCLOAK-5795 Strip ids of client export from admin console
2017-11-14 08:49:58 +01:00
Bruno Oliveira
03d0488335
[KEYCLOAK-2052] Allows independently set timeouts for e-mail verification link and rest e.g. forgot password link
...
Co-authored-by: Hynek Mlnarik <hmlnarik@redhat.com>
2017-11-13 19:57:04 -02:00
Stian Thorgersen
128ff12f8f
Bump versions
2017-11-09 15:37:21 +01:00
Stan Silvert
8759b42e6b
KEYCLOAK-4461: Missing error msg when add idp mapper
2017-11-09 07:13:38 +01:00
liuzheng712
9243430b75
fix(Chinese language): add # encoding: utf-8
2017-11-09 07:10:59 +01:00
Stan Silvert
d3b270d025
KEYCLOAK-5475: UI glitches when alias blank in auth config ( #4645 )
2017-11-08 08:21:28 -05:00
Albert-Jan Verhees
b8f3c8a445
Fixed typo in Dutch translations
2017-11-08 12:59:55 +01:00
Stan Silvert
1db3134df8
KEYCLOAK-5506: Set empty fed config prop fails in admin console ( #4625 )
2017-11-06 12:44:13 -05:00
Stan Silvert
986540ab34
KEYCLOAK-4383: Dbl-click login button leads to "already logged in" page ( #4614 )
2017-10-27 10:29:37 -04:00
Marek Posolda
74f5c1c160
Merge pull request #4611 from mposolda/ldap-eviction-day
...
KEYCLOAK-5746 Bad label for evictionDay in admin console in EVICT_WEE…
2017-10-25 11:14:18 +02:00
mposolda
5f889dd3c6
KEYCLOAK-5746 Bad label for evictionDay in admin console in EVICT_WEEKLY cache policy
2017-10-25 09:08:33 +02:00
Bruno Oliveira
4d762159ef
KEYCLOAK-5717
2017-10-24 10:55:02 -02:00
Stan Silvert
330f2acc29
KEYCLOAK-5732: Freemarker pages using ?html ( #4607 )
2017-10-23 16:35:45 -04:00
Stan Silvert
574fd42534
KEYCLOAK-5681: Upgrade AngularJS for Admin Console ( #4571 )
2017-10-23 12:03:46 -04:00
Stan Silvert
9083e5fe5c
KEYCLOAK-5298: Enable autoescaping in Freemarker ( #4561 )
...
* KEYCLOAK-5298: Enable autoescaping in Freemarker
* Fix several of the failing tests.
* Fix broken tests in integration-deprecated
* Fix last failing test.
2017-10-23 12:03:00 -04:00
Stian Thorgersen
9b75b603e3
KEYCLOAK-5234 ( #4585 )
2017-10-23 16:13:22 +02:00
Bill Burke
8faa6f1f4d
KEYCLOAK-5701
2017-10-18 18:20:50 -04:00
Bill Burke
0fb99a0098
Merge pull request #4569 from patriot1burke/master
...
KEYCLOAK-4328
2017-10-18 10:49:52 -04:00
Bill Burke
649bca7618
KEYCLOAK-4328
2017-10-18 09:37:17 -04:00
Thomas Darimont
3103e0fd0a
KEYCLOAK-5244 Add BlacklistPasswordPolicyProvider ( #4370 )
...
* KEYCLOAK-5244 Add BlacklistPasswordPolicyProvider
This introduces a new PasswordPolicy which can refer to
a named predefined password-blacklist to avoid users
choosing too easy to guess passwords.
The BlacklistPasswordPolicyProvider supports built-in as
well as custom blacklists.
built-in blacklists use the form `default/filename`
and custom ones `custom/filename`, where filename
is the name of the found blacklist-filename.
I'd propose to use some of the freely available password blacklists
from the [SecLists](https://github.com/danielmiessler/SecLists/tree/master/Passwords ) project.
For testing purposes one can download the password blacklist
```
wget -O 10_million_password_list_top_1000000.txt https://github.com/danielmiessler/SecLists/blob/master/Passwords/10_million_password_list_top_1000000.txt?raw=true
```
to /data/keycloak/blacklists/
Custom password policies can be configured with the SPI
configuration mechanism via jboss-cli:
```
/subsystem=keycloak-server/spi=password-policy:add()
/subsystem=keycloak-server/spi=password-policy/provider=passwordBlacklist:add(enabled=true)
/subsystem=keycloak-server/spi=password-policy/provider=passwordBlacklist:write-attribute(name=properties.blacklistsFolderUri, value=file:///data/keycloak/blacklists/)
```
Password blacklist is stored in a TreeSet.
* KEYCLOAK-5244 Encode PasswordBlacklist as a BloomFilter
We now use a dynamically sized BloomFilter with a
false positive probability of 1% as a backing store
for PasswordBlacklists.
BloomFilter implementation is provided by google-guava
which is available in wildfly.
Password blacklist files are now resolved against
the ${jboss.server.data.dir}/password-blacklists.
This can be overridden via system property, or SPI config.
See JavaDoc of BlacklistPasswordPolicyProviderFactory for details.
Revised implementation to be more extensible, e.g. it could be
possible to use other stores like databases etc.
Moved FileSystem specific methods to FileBasesPasswordBlacklistPolicy.
The PasswordBlacklistProvider uses the guava version 20.0
shipped with wildfly. Unfortunately the arquillian testsuite
transitively depends on guava 23.0 via the selenium-3.5.1
dependency. Hence we need to use version 23.0 for tests but 20.0
for the policy provider to avoid NoClassDefFoundErrors in the
server-dist.
Configure password blacklist folder for tests
* KEYCLOAK-5244 Configure jboss.server.data.dir for test servers
* KEYCLOAK-5244 Translate blacklisted message in base/login
2017-10-17 20:41:44 +02:00
Cédric Couralet
656fc5d7c0
KEYCLOAK-4052 - add an option to validate Password Policy for ldap user storage
2017-10-13 13:54:50 +02:00
Gaetan Collaud
06ad4caa1b
KEYCLOAK-5505 put tabindex in login page
2017-10-10 16:56:03 +02:00
Stan Silvert
9131e7e73c
KEYCLOAK-4248: Remove revocation tab for SAML clients.
2017-10-04 14:03:39 -04:00
Herbert Mühlburger
f0f7321c38
Fix spelling error in admin message properties ( #4525 )
...
* fix spelling error in admin message properties
* fix typo in admin messages
2017-10-03 20:58:17 +02:00
Bill Burke
817d6cc8c7
minor ui fix
2017-10-02 11:02:19 -04:00
Gabriel Lavoie
134daeac7f
KEYCLOAK-3303: Allow reuse of refresh tokens.
...
- Configurable max reuse count.
2017-09-28 15:30:40 -04:00
Bill Burke
fd025ae76b
Merge pull request #4209 from guitaro/feature/group-search-and-pagination
...
[KEYCLOAK-2538] - groups pagination and group search
2017-09-23 20:52:19 -04:00
Bill Burke
3020a04a8b
Merge pull request #4490 from Fiercely/master
...
Keycloak 2035
2017-09-22 16:13:22 -04:00
Thomas Darimont
236b2b9273
KEYCLOAK-3599 Add Script based OIDC ProtocolMapper
2017-09-22 21:24:20 +02:00
howcroft
e78bf5f876
Keycloak 2035
...
This PR adds:
* an endpoint to Role that lists users with the Role
* a tab "Users in Role" in Admin console Role page
* it is applicable to Realm and Client Roles
* Extends UserQueryProvider with default methods (throwing Runtime Exception if not overriden)
* Testing in base testsuite and Console
2017-09-22 15:05:49 +01:00
Stan Silvert
7124d93a24
Merge pull request #4487 from ssilvert/kc1250-big-commit
...
KEYCLOAK-5502: Fix install of node and yarn for account2 profile.
2017-09-19 10:39:38 -04:00
Stan Silvert
9d66d55ac1
KEYCLOAK-5502: Fix install of node and yarn for account2 profile.
2017-09-19 09:53:22 -04:00
Stan Silvert
657c68475d
Merge pull request #4486 from ssilvert/kc1250-big-commit
...
KEYCLOAK-1250: Initial commit for new account mgt.
2017-09-18 16:51:18 -04:00
Stan Silvert
c8a4fc2c57
KEYCLOAK-1250: Initial commit for new account mgt.
2017-09-18 15:32:43 -04:00
Bill Burke
3e6adbc904
KEYCLOAK-5490 ( #4477 )
2017-09-15 11:36:48 +02:00
Stian Thorgersen
ee35673615
KEYCLOAK-1250 Profile and console loader for new account management console
2017-09-14 19:53:02 +02:00
Levente NAGY
d18aa44fb4
Merge branch 'feature/group-search-and-pagination' of https://github.com/guitaro/keycloak into feature/group-search-and-pagination
2017-09-13 16:48:24 +02:00
Levente NAGY
e907da77d7
KEYCLOAK 2538 - UI group pagination - Remove junit mocked TUs, add arquillian Tests, delete mockito from poms, fix groups sorting when get result from cache
2017-09-13 16:45:45 +02:00
Stan Silvert
56e0a52197
Merge pull request #4436 from tuxetuxe/master
...
Do not show empty page size selectors in events lists
2017-09-13 10:22:56 -04:00
Léventé NAGY
503ce3a47f
Merge branch 'master' into feature/group-search-and-pagination
2017-09-13 10:27:38 +02:00
Petter Lysne
7f8b5e032a
feat: added PayPal IDP ( #4449 )
2017-09-12 11:57:59 +02:00
Levente NAGY
db56d82dbd
KEYCLOAK 2538 - UI group pagination - fix duplicate result for search + sort result
2017-09-12 11:45:37 +02:00
Levente NAGY
2c24b39268
KEYCLOAK 2538 - UI group pagination
2017-09-07 19:39:06 +02:00
Stan Silvert
1fb8846a7a
KEYCLOAK-5391: Add node_modules back to repository for commons theme ( #4457 )
2017-09-05 14:27:19 -04:00
Stian Thorgersen
dcfa4aca8c
KEYCLOAK-943 Started account rest service. Profile and sessions completed. ( #4439 )
2017-08-29 20:12:09 +02:00
Luis Santos
944332a84a
Do not show empty page size selectors in events lists
2017-08-29 11:30:53 +03:00
Stian Thorgersen
463661b051
Set version to 3.4.0.CR1-SNAPSHOT
2017-08-28 15:46:22 +02:00
Pedro Igor
36c5490250
Merge pull request #4426 from pedroigor/master
...
[KEYCLOAK-5323] - Fixing filter when searching/selecting clients
2017-08-25 17:07:38 -03:00
Pedro Igor
9a7d56097a
[KEYCLOAK-5323] - Fixing filter when searching/selecting clients
2017-08-25 14:06:28 -03:00
Stian Thorgersen
d58c6ad4e0
[KEYCLOAK-4900] Pass login_hint parameter to idp & review ( #4421 )
2017-08-25 10:14:38 +02:00
Bill Burke
6696c44dc0
Merge remote-tracking branch 'upstream/master'
2017-08-24 15:19:48 -04:00
Bill Burke
7a57723c01
more token exchange
2017-08-24 15:19:38 -04:00
Pedro Igor
16305418f0
[KEYCLOAK-4915] - Unable to update resource permission without changing applied policies
2017-08-23 15:13:24 -03:00
Stan Silvert
245f6c0c84
KEYCLOAK-5232: 'undefined' in allowed protocol mappers field ( #4398 )
2017-08-23 09:56:28 -04:00
Stan Silvert
010dd5709c
KEYCLOAK-5286: js error on save in client/mappers/details screen ( #4409 )
2017-08-23 09:55:49 -04:00
Stan Silvert
eb5a5023c6
KEYCLOAK-5266: Component numberOfPages in clients view is missing ( #4411 )
2017-08-23 09:55:19 -04:00
Edwin de Jong
5f97f23c12
KEYCLOAK-5307 Dutch locale ( #4340 )
...
- Thanks to Jacob van Lingen to provide the initial translation for
login messages
2017-08-17 11:26:41 +02:00
Stian Thorgersen
31f82243fc
KEYCLOAK-5281 ( #4390 )
2017-08-17 08:47:25 +02:00
Bill Burke
45eac1093d
show permissions
2017-08-09 10:39:59 -04:00
Bill Burke
ed5e880931
Merge remote-tracking branch 'upstream/master'
2017-08-07 12:02:50 -04:00
Bill Burke
c9b7504e3f
KEYCLOAK-5190
2017-08-07 12:02:18 -04:00
Bill Burke
3fce14d9ce
Merge pull request #4369 from patriot1burke/master
...
KEYCLOAK-5249
2017-08-03 09:57:55 -04:00
Bill Burke
5423e0534b
Merge pull request #4330 from stoffus/master
...
Swedish translation fixes
2017-08-02 19:49:03 -04:00
Bill Burke
3b5ca2bac0
Merge pull request #4366 from hmlnarik/KEYCLOAK-4694-null
...
KEYCLOAK-4694
2017-08-02 19:47:34 -04:00
Bill Burke
cf0ee31bc5
KEYCLOAK-5249
2017-08-02 19:42:35 -04:00
Hynek Mlnarik
4583a45e78
KEYCLOAK-4694
2017-08-01 09:57:12 +02:00
Pedro Igor
d105aa92e2
[KEYCLOAK-5240] - Escaping values in templates
2017-07-28 17:46:52 -03:00
Stan Silvert
4b9ea5cbe0
KEYCLOAK-5127: Fix packaging of node_modules ( #4347 )
2017-07-24 09:12:43 -04:00
Christopher Svensson
81d0ae1160
Merge remote-tracking branch 'upstream/master'
2017-07-24 07:28:21 +02:00
Stan Silvert
c8068b688d
KEYCLOAK-5127: Exclude node_modules from git ( #4334 )
...
* KEYCLOAK-5127: Exclude node_modules from git
* Add readme file.
2017-07-21 15:12:34 -04:00
Christopher Svensson
c6f922412f
Corrected Swedish translation
2017-07-19 14:44:39 +02:00
Christopher Svensson
9d1ccaeefa
Added locale_sv translation to fix language dropdown
2017-07-19 14:02:33 +02:00
Bill Burke
11ff5a05e9
KEYCLOAK-5205
2017-07-18 11:03:01 -04:00
Bill Burke
a7940c6ffa
KEYCLOAK-5194
2017-07-14 18:29:48 -04:00
mposolda
936efe872a
KEYCLOAK-5061 Process correct initial flow when action expired
2017-07-10 22:52:54 +02:00
Marek Posolda
2b427dfcd2
Merge pull request #4309 from mposolda/master
...
KEYCLOAK-5061 Better error messages when action expired
2017-07-10 21:29:03 +02:00
mposolda
7be2c55f61
KEYCLOAK-5061 Better error messages when action expired
2017-07-10 19:50:28 +02:00
Stan Silvert
7dbb439cf3
KEYCLOAK-5075: Allow Origin Missing in Direct Access Grants
2017-07-10 13:45:02 -04:00
Stan Silvert
1721ccc85e
KEYCLOAK-5144: Supported locales undefined ( #4304 )
...
* KEYCLOAK-5144: Supported locales are undefined
* KEYCLOAK-5144: Supported locales are undefined.
* KEYCLOAK-5144: Supported locales are undefined
* KEYCLOAK-5144: Supported locales are undefined
2017-07-09 20:48:49 -04:00
Pedro Igor
0aeba74185
[KEYCLOAK-5158] - Revert changes that made delete on lists and scope permission stop working
2017-07-06 18:22:13 -03:00
Martin@qingcloud
d84ab4f90b
KEYCLOAK-5086:add Chinese translation into messages. ( #4251 )
...
* add Chinese translation into messages.
* convert messages from unicode to utf-8
2017-07-06 08:13:49 +02:00
Stian Thorgersen
9a9f4137e5
KEYCLOAK-4556 KEYCLOAK-5022 Only cache keycloak.js and iframe if specific version is requested ( #4289 )
2017-07-04 21:18:34 +02:00
Stan Silvert
32b16717a7
KEYCLOAK-4234: Link to app in acct mgt doesn't use root url ( #4285 )
...
* KEYCLOAK-4234: Link to app in acct mgt not use root url
* Add tests.
2017-07-04 07:01:58 +02:00
Stian Thorgersen
454c5f4d83
Set version to 3.3.0.CR1-SNAPSHOT
2017-06-30 09:47:11 +02:00
Stian Thorgersen
fdb80d4319
Fix console tests ( #4277 )
2017-06-30 08:49:18 +02:00
Stian Thorgersen
f0f1b85582
KEYCLOAK-5116 ( #4276 )
...
Authz tab not showing
2017-06-30 08:48:28 +02:00
Stan Silvert
6874cdc3b2
KEYCLOAK-4997 KEYCLOAK-4866 KEYCLOAK-4895 Upgrade to latest AngularJS, ( #4275 )
...
jquery, and others.
2017-06-30 05:55:47 +02:00
Josh Cain
89fcddd605
KEYCLOAK-3592 Docker auth implementation
2017-06-29 06:37:34 +02:00
Stian Thorgersen
55d0ad3a50
Merge pull request #4234 from samuelMangot/master
...
Email - I18n - added missing german text
2017-06-28 08:20:50 +02:00
Stian Thorgersen
d90235d1bd
Merge pull request #4245 from hokuda/email-messages-japanese
...
fix email messages in Japanese
2017-06-28 08:20:21 +02:00
Samuel Mangot
f5545eabdc
Email - I18n - fixed another grammar error
2017-06-27 20:30:30 +02:00
Samuel Mangot
3db8f97248
Email - I18n - removed remaining " and fixe grammar error
2017-06-27 18:04:41 +02:00
Samuel Mangot
48421cbc43
Email - I18n - removed "" around text placeholder
2017-06-27 16:55:10 +02:00
Stian Thorgersen
56c5996aff
Merge pull request #4259 from stianst/abstractj-KEYCLOAK-4444
...
KEYCLOAK-4444
2017-06-27 10:44:30 +02:00
Bruno Oliveira
361ab1c988
[KEYCLOAK-4444] Allow sending test email
2017-06-27 08:38:36 +02:00
Stian Thorgersen
c1c1a81a4e
Merge pull request #4138 from ASzc/KEYCLOAK-4752
...
KEYCLOAK-4752
2017-06-27 08:34:00 +02:00
Bill Burke
28b3ef9aa9
admin console work
2017-06-26 11:40:32 -04:00
Bill Burke
d08ddade2e
merge
2017-06-21 17:43:54 -04:00
Bill Burke
52e40922bc
removal
2017-06-21 17:42:57 -04:00
Bill Burke
8c82201add
Merge pull request #4224 from pedroigor/KEYCLOAK-3168
...
[KEYCLOAK-3168] - Group-Based Access Control
2017-06-21 17:03:34 -04:00
Hisanobu Okuda
eebd3feb28
fix email messages in Japanese
2017-06-21 21:42:14 +09:00
Bill Burke
a994af9010
remove scope
2017-06-16 11:26:43 -04:00
Samuel Mangot
a785f9fd11
Email - I18n - added missing german text
2017-06-16 09:55:54 +02:00
Pedro Igor
d4a85d6abc
[KEYCLOAK-5054] - Checking name availability only in cases name is filled
2017-06-14 18:10:51 -03:00
Pedro Igor
169280b6a1
[KEYCLOAK-3168] - Group-Based Access Control
2017-06-13 19:05:44 -03:00
Bill Burke
94528976d4
console work
2017-06-07 16:29:43 -04:00
Bill Burke
536a57a514
ui for permission reference
2017-06-05 19:52:51 -04:00
Bill Burke
b9f7a43a72
group permissions
2017-06-01 20:16:35 -04:00
Alex Szczuczko
bed6f96fc6
KEYCLOAK-4752 Change required actions UI to uncheck and disable the default checkbox when the enable checkbox is not checked. The API will continue to silently drop actions that are not enabled for the realm.
2017-06-01 08:25:51 -06:00
Pedro Igor
81f1a5b145
Merge pull request #4183 from pedroigor/stan-ui-fixes
...
[KEYCLOAK-4915] - Fixes to evaluation tool UI
2017-05-24 09:32:42 -03:00
Marek Posolda
79af4dfd18
Merge pull request #4127 from sbryzak/KEYCLOAK-4886
...
KEYCLOAK-4886
2017-05-24 10:47:09 +02:00
Pedro Igor
829bcf5eaf
Fix to evaluation tool
2017-05-23 17:50:06 -03:00
Stian Thorgersen
130452f6c3
Merge pull request #4085 from mstruk/RHSSO-402
...
RHSSO-402 need a way to dump configuration (including ldap provider config) to a file
2017-05-23 13:29:32 +02:00
Pedro Igor
8d40ee17f1
Merge pull request #4166 from pedroigor/stan-ui-fixes
...
[EYCLOAK-4915] - Review AuthZ UIs
2017-05-22 10:10:09 -03:00
Pedro Igor
7ae117707b
Fixing validation of required fields
2017-05-19 19:45:47 -03:00
Pedro Igor
d1d590b45c
Delete action on lists
2017-05-19 19:45:47 -03:00
Pedro Igor
62ffab7239
Exporting a client is updating policy config
2017-05-19 19:45:47 -03:00
Bill Burke
ab763e7c5b
fixes after merge
2017-05-19 15:54:36 -04:00
Bill Burke
f114895cd2
for merge
2017-05-19 11:29:26 -04:00
Dominik Langenegger
dce4353e0d
KEYCLOAK-4940 Fix typo in German email verification body
2017-05-19 14:26:40 +02:00
Marek Posolda
4d5ca2b8fa
Merge pull request #4159 from hmlnarik/KEYCLOAK-4627-Nicer-text-in-html-email
...
KEYCLOAK-4627 Nicer link texts in HTML variant of emails
2017-05-19 14:03:39 +02:00
Marek Posolda
8e4899f874
Merge pull request #4158 from hmlnarik/KEYCLOAK-4627-Change-wording
...
KEYCLOAK-4627 Change wording of the configuration in UI
2017-05-19 14:03:24 +02:00
Hynek Mlnarik
d4f870fbb4
KEYCLOAK-4627 Nicer link texts in HTML variant of emails
2017-05-19 10:08:02 +02:00
Hynek Mlnarik
ca8d756c05
KEYCLOAK-4627 Change wording of the configuration in UI
2017-05-19 09:39:58 +02:00
Hynek Mlnarik
355af6d1cf
KEYCLOAK-4627 Action tokens theme typo
2017-05-18 14:27:53 +02:00
Marko Strukelj
7d0ca42c6c
RHSSO-402 need a way to dump configuration (including ldap provider config) to a file
2017-05-15 12:13:58 +02:00
Bill Burke
954ef99f22
Merge remote-tracking branch 'upstream/master'
2017-05-12 10:10:29 -04:00
mposolda
7d8796e614
KEYCLOAK-4626 Support for sticky sessions with AUTH_SESSION_ID cookie. Clustering tests with embedded undertow. Last fixes.
2017-05-11 22:24:07 +02:00
Hynek Mlnarik
b8262a9f02
KEYCLOAK-4628 Single-use cache + its functionality incorporated into reset password token. Utilize single-use cache for relevant actions in execute-actions token
2017-05-11 22:16:26 +02:00
Hynek Mlnarik
c431cc1b01
KEYCLOAK-4627 IdP email account verification + code cleanup. Fix for concurrent access to auth session notes
2017-05-11 22:16:26 +02:00
mposolda
168153c6e7
KEYCLOAK-4626 Authentication sessions - SAML, offline tokens, broker logout and other fixes
2017-05-11 22:16:26 +02:00
mposolda
e7272dc05a
KEYCLOAK-4626 AuthenticationSessions - brokering works. Few other fixes and tests added
2017-05-11 22:16:26 +02:00
mposolda
a9ec69e424
KEYCLOAK-4626: AuthenticationSessions - working login, registration, resetPassword flows
2017-05-11 22:16:26 +02:00
Shane Bryzak
349a59cf35
KEYCLOAK-4886 update Openshift view template to allow setting an alias and display name
...
Signed-off-by: Shane Bryzak <sbryzak@redhat.com>
2017-05-11 09:27:49 +10:00
Bill Burke
bfb4395b28
role and Users finished UI work
2017-05-10 15:25:04 -04:00
Johannes Knutsen
b64817761a
KEYCLOAK-4875 Use realm name instead of realm id to generate OpenID Endpoint Configuration URL in admin's Realm Settings page
2017-05-09 22:05:10 +02:00
Bill Burke
a8a8ea4bcd
Merge remote-tracking branch 'upstream/master'
2017-05-08 13:49:03 -04:00
Bill Burke
f760427c5c
fine grain tests
2017-05-08 13:48:51 -04:00
Bill Burke
e1b6ba13cc
Merge pull request #3893 from anderius/feature/KEYCLOAK-3056-verify-signature
...
[WIP] Saml broker: Added wantAssertionsSigned and wantAssertionsEncrypted
2017-05-05 09:04:41 -04:00
Stan Silvert
2e66cd1070
Merge pull request #4108 from ssilvert/error_description
...
KEYCLOAK-4462: Unexpected error when creat client w/ existing ClientID
2017-05-04 16:29:43 -04:00
Stan Silvert
55f3d8c1d0
KEYCLOAK-4462: Use errorInterceptor instead of handling errors locally
2017-05-04 15:21:05 -04:00
Stan Silvert
b8fecca0ba
KEYCLOAK-4462: Unexpected error when creating client with existing
...
ClientID
2017-05-01 18:13:27 -04:00
Stan Silvert
1438982104
KEYCLOAK-4720: Wrongly positioned IdPs table header
2017-05-01 15:19:44 -04:00
Eriksson Fabian
ca1152c3e5
KEYCLOAK-4204 Extend brute force protection with permanent lockout on failed attempts
...
- Can still use temporary brute force protection.
- After X-1 failed login attempt, if the user successfully logs in his/her fail login count is reset.
2017-04-28 09:02:10 +02:00
Stian Thorgersen
87dedb56e5
Set version to 3.2.0.CR1-SNAPSHOT
2017-04-27 14:23:03 +02:00
Pedro Igor
fbcfcfa088
[KEYCLOAK-4755] - Client UI Tests
2017-04-26 12:11:53 -03:00
Pedro Igor
b3131bf679
[KEYCLOAK-3135] - Rules UI Tests
2017-04-25 16:52:14 -03:00
Pedro Igor
38ae6c981b
Merge pull request #4068 from pedroigor/KEYCLOAK-3135
...
[KEYCLOAK-3135] - Scope permission UI tests and reusable ui-select2 component
2017-04-25 08:19:32 -03:00
Stian Thorgersen
cf7f28d97e
Merge pull request #4031 from abacusresearch/KEYCLOAK-4736_http_header_x-xss-protection
...
KEYCLOAK-4736 Extend security defenses with X-XSS-Protection header
2017-04-25 10:38:21 +02:00
Stian Thorgersen
1385d3c219
Merge pull request #4062 from ssilvert/dbl-click
...
KEYCLOAK-4121: Prevent double form submission
2017-04-25 08:57:15 +02:00
Pedro Igor
49547ccfbc
[KEYCLOAK-3135] - Scope permission UI tests and reusable ui-select2 component
2017-04-24 23:12:46 -03:00
Pedro Igor
5972c94dc8
[KEYCLOAK-3135] - More UI tests
2017-04-24 16:50:23 -03:00
Pedro Igor
dfec691de0
[KEYCLOAK-3135] - Fixing cancel button
2017-04-24 08:39:08 -03:00
Pedro Igor
e0f753bcf5
[KEYCLOAK-3135] - More changes to Policy Management API
2017-04-24 07:34:08 -03:00
Stan Silvert
8dc65cff0a
KEYCLOAK-4121: Prevent double form submission
2017-04-21 14:11:44 -04:00
Stan Silvert
62000e042d
KEYCLOAK-4402: Fix regexp password policy.
2017-04-20 18:09:20 -04:00
Stian Thorgersen
1d03eb5f2b
Merge pull request #4045 from stianst/KEYCLOAK-4737
...
KEYCLOAK-4737 Admin Console redirect loop when hostname contains console
2017-04-20 09:29:41 +02:00
Stian Thorgersen
7de0b329a2
Merge pull request #4046 from stianst/KEYCLOAK-4637
...
KEYCLOAK-4637 Fix FreeOTP url in Swedish translation
2017-04-19 15:48:12 +02:00
Stian Thorgersen
10009868a3
KEYCLOAK-4637 Fix FreeOTP url in Swedish translation
2017-04-19 14:54:44 +02:00
Stian Thorgersen
0a0d2174e4
KEYCLOAK-4737 Admin Console redirect loop when hostname contains console
2017-04-19 14:43:56 +02:00
Markus Lindström
0b21ed3e0e
KEYCLOAK-4762 Improve French translations
2017-04-19 10:23:52 +02:00
Stian Thorgersen
330663dfd3
Merge pull request #3898 from chameleon82/KEYCLOAK-4502_Update_Russian_Translation
...
KEYCLOAK-4502 Update Russian translation
2017-04-19 09:41:49 +02:00
Stian Thorgersen
da6781dd91
Merge pull request #4029 from abacusresearch/KEYCLOAK-4734_update_italian_translation
...
KEYCLOAK-4734 Update Italian translations
2017-04-18 15:14:33 +02:00
Stian Thorgersen
4f771ac51a
Merge pull request #4027 from abacusresearch/KEYCLOAK-4729_update_german_translation
...
KEYCLOAK-4729 Update German translations
2017-04-18 15:13:39 +02:00
Pedro Igor
a415ea3670
[KEYCLOAK-4755] - AuthZ UI Tests
2017-04-13 15:54:52 -03:00
Pedro Igor
eec712a259
[KEYCLOAK-3135] - Role and user policies apis
2017-04-12 00:52:14 -03:00
Pedro Igor
54ebc1918c
[KEYCLOAK-3135] - Using abstract policy representation when creating policies and updating tests
2017-04-12 00:52:13 -03:00
Pedro Igor
55f747ecd0
[KEYCLOAK-3135] - Part 1: Permission Management API
2017-04-12 00:52:13 -03:00
Dominik Langenegger
8840bc073f
KEYCLOAK-4736 Extend security defenses with additional option to set the X-XSS-Protection header, block by default
2017-04-10 11:20:07 +02:00
Nekrasov Aleksander
2066259518
KEYCLOAK-4502 Update Russian translation
2017-04-08 11:42:33 +07:00
Nekrasov Aleksander
9bca7fb7c5
KEYCLOAK-4502 Update russian translation
2017-04-08 11:27:34 +07:00
Dominik Langenegger
c73de4f2b9
KEYCLOAK-4734 Update Italian translations
2017-04-07 16:46:43 +02:00
Dominik Langenegger
16430791bb
KEYCLOAK-4729 Update German translations
2017-04-07 16:03:34 +02:00
Dominik Langenegger
e9d22f3506
KEYCLOAK-4728 Fix typo
2017-04-07 09:31:05 +02:00
Stian Thorgersen
af4c74f1d9
Merge pull request #3718 from thomasdarimont/issue/KEYCLOAK-4163-improve-support-for-email-addresses
...
KEYCLOAK-4163 Improve support for e-mail addresses
2017-04-06 15:34:30 +02:00
Stian Thorgersen
4845286e04
Merge pull request #4001 from stianst/KEYCLOAK-4693
...
KEYCLOAK-4693
2017-04-04 15:48:08 +02:00
Stian Thorgersen
eaf386f1d2
KEYCLOAK-4693
...
Improve blocking search indexing
2017-04-04 09:56:48 +02:00
Pedro Igor
838a045239
[KEYCLOAK-4650] - Adding scope filter and fixing cancel buttons
2017-03-29 12:59:41 -03:00
Pedro Igor
33a0dc880f
[KEYCLOAK-4650] - Confirmation dialog when disabling authorization settings
2017-03-29 11:17:10 -03:00
Marko Strukelj
d26f2b44bd
KEYCLOAK-4496 Strange truncation of Client information when creating a new client
...
- Added polyfill from https://github.com/tbosch/autofill-event
2017-03-28 18:06:17 +02:00
Bill Burke
f554fd90db
Merge pull request #3911 from almighty/oso_provider
...
[KEYCLOAK-4528] Adds Openshift Identity Provider as part of social brokers
2017-03-25 19:25:44 -04:00
Stian Thorgersen
7968394537
KEYCLOAK-4654 Disable unsupported LDAP vendors in product profile
2017-03-24 13:44:33 +01:00
Nekrasov Aleksander
d0b3cb32f0
KEYCLOAK-4502 Update Russian translation
2017-03-24 18:22:25 +07:00
Stian Thorgersen
90c4de27e5
KEYCLOAK-3251 Add product Maven profile
...
KEYCLOAK-3254 Product profile should include RH-SSO theme and change default theme
2017-03-24 07:10:11 +01:00
Bartosz Majsak
210143738e
Merge branch 'master' into oso_provider
2017-03-23 13:45:07 +01:00
Pedro Igor
deae380941
Merge pull request #3964 from pedroigor/KEYCLOAK-4587
...
[KEYCLOAK-4587] - Missing breadcrumb
2017-03-22 13:55:50 -03:00
Marek Posolda
975dfe9489
Merge pull request #3167 from brat000012001/master
...
X509 Certificate user authentication
2017-03-22 08:26:26 +01:00
Thomas Darimont
05a8fffdbf
KEYCLOAK-4614 Fix linkOnly tooltip reference
2017-03-22 00:07:40 +01:00
Pedro Igor
c517565cc5
[KEYCLOAK-4587] - Missing breadcrumb
2017-03-21 16:55:21 -03:00
Peter Nalyvayko
b2f10359c8
KEYCLOAK-4335: x509 client certificate authentication
...
Started on implementing cert thumbprint validation as a part of x509 auth flow. Added a prompt screen to give users a choice to either log in based on the identity extracted from X509 cert or to continue with normal browser login flow authentication; clean up some of the comments
x509 authentication for browser and direct grant flows. Implemented certificate to user mapping based on user attribute
Implemented CRL and OCSP certificate revocation checking and added corresponding configuration settings to set up responderURI (OCSP), a location of a file containing X509CRL entries and switiches to enable/disable revocation checking; reworked the certificate validation; removed superflous logging; changed the certificate authentication prompt page to automatically log in the user after 10 seconds if no response from user is received
Support for loading CRL from LDAP directory; finished the CRL checking using the distribution points in the certificate; updated the instructions how to add X509 authentication to keycloak authentication flows; minor styling changes
Stashing x509 unit test related changes; added the steps to configure mutual SSL in WildFly to the summary document
A minor fix to throw a security exception when unable to check cert revocation status using OCSP; continue working on README
Changes to the formating of the readme
Added a list of features to readme
Fixed a potential bug in X509 cert user authenticator that may cause NPE if the client certificate does not define keyusage or extended key usage extensions
Fixed compile time errors in X509 validators caused by the changes to the user credentials model in upstream master
Removed a superfluous file created when merging x509 and main branches
X509 authentication: removed the PKIX path validation as superflous
Reverted changes to the AbstractAttributeMapper introduced during merging of x509 branch into main
Merge the unit tests from x509 branch
added mockito dependency to services project; changes to the x509 authenticators to expose methods in order to support unit tests; added a default ctor to CertificateValidator class to support unit testing; updated the direct grant and browser x509 authenticators to report consistent status messages; unit tests to validate X509 direct grant and browser authenticators; fixed OCSP validation to throw an exception if the certificate chain contains a single certificate; fixed the CRL revocation validation to only use CRL distribution point validation only if configured
CRL and OSCP mock tests using mock netty server. Changed the certificate validator to better support unit testing.
changes to the mockserver dependency to explicitly exclude xercesImpl that was causing SAMLParsingTest to fail
Added a utility class to build v3 certificates with optional extensions to facilitate X509 unit testing; removed supoerfluous certificate date validity check (undertow should be checking the certificate dates during PKIX path validation anyway)
X509: changes to make configuring the user identity extraction simplier for users - new identity sources to map certificate CN and email (E) attributes from X500 subject and issuer names directly rather than using regular expressions to parse them
X509 fixed a compile error caused by the changes to the user model in master
Integration tests to validate X509 client certificate authentication
Minor tweaks to X509 client auth related integration tests
CRLs to support x509 client cert auth integration tests
X509: reverted the changes to testrealm.json and updated the test to configure the realm at runtime
X509 - changes to the testsuite project configuration to specify a path to a trust store used to test x509 direct grant flow; integration tests to validate x509 authentication in browser and direct grant flows; updated the client certificate to extend its validatity dates; x509 integration tests and authenticators have been refactored to use a common configuration class
X509 separated the browser and direct grant x509 authenction integration tests
x509 updated the authenticator provider test to remove no longer supported cert thumbprint authenticator
x509 removed the dependency on mockito
x509 re-implemented OCSP certificate revocation client used to check revocation status when logging in with x509 certificate to work around the dependency on Sun OCSP implementation; integration tests to verify OCSP revocation requests
index.txt.attr is needed by openssl to run a simple OCSP server
x509: minor grammar fixes
Add OCSP stub responder to integration tests
This commit adds OCSP stub responder needed for the integration tests,
and eliminates the need to run external OCSP responder in order to run
the OCSP in X509OCSPResponderTest.
Replace printStackTrece with logging
This commit replaces call to printStackTrace that will end up going to
the stderr with logging statement of WARN severity.
Remove unused imports
Removed unused imports in
org.keycloak.authentication.authenticators.x509 package.
Parameterized Hashtable variable
Removed unused CertificateFactory variable
Declared serialVersionUID for Serializable class
Removed unused CertificateBuilder class
The CertificateBuilder was not used anywhere in the code, removing it to
prevent technical debt.
Removing unused variable declaration
`response` variable is not used in the test, removed it.
Made sure InputStreams are closed
Even though the InputStreams are memory based, added try-with-resources
to make sure that they are closed.
Removed deprecated usage of URLEncoder
Replaced invocation of deprecated method from URLEncoder with Encode
from Keycloak util package.
Made it more clear how to control OCSP stub responder in the tests
X509 Certificate user authentication: moved the integration unit tests into their own directory to fix a failing travis test job
KEYCLOAK-4335: reduced the logging level; added the instructions how to run X.509 related tests to HOW-TO-RUN.md doc; removed README.md from x509 folder; removed no longer used ocsp profile and fixed the exclusion filter; refactored the x509 base test class that was broken by the recent changes to the integration tests
KEYCLOAK-4335: fixed a few issues after rebasing
2017-03-17 05:24:57 -04:00
Stian Thorgersen
a87ee04024
Bump to 3.1.0.CR1-SNAPSHOT
2017-03-16 14:21:40 +01:00
Stian Thorgersen
feeac69197
Merge pull request #3888 from daklassen/KEYCLOAK-4421
...
KEYCLOAK-4421 Change any http maven urls to https to reduce build-time MITM vulnerability
2017-03-15 09:54:21 +01:00
Thomas Darimont
b782892769
KEYCLOAK-4163 Improve support for e-mail addresses
...
Added support for user friendly email addresses as well as dedicated
reply-to addresses for emails being sent by Keycloak.
Both can be customized via the email settings per realm in
the admin-console.
User friendly email addresses use the format:
"Friendly Name"<email@example.org> and provide way to add a meaning
full name to an e-mail address.
We also allow to specify an optional envelope from bounce address.
If a mail sent to a user could not be delivered the email-provider
will sent a notification to that address.
See: https://en.wikipedia.org/wiki/Bounce_address
Add test for proper email headers in sent messages
2017-03-14 18:22:54 +01:00
Bill Burke
6d51862057
Merge pull request #3897 from anderius/feature/KEYCLOAK-4504-redirect-logout
...
[WIP] Saml broker: Option to specify logout request binding
2017-03-14 11:32:26 -04:00
David Klassen
32d3f760ec
KEYCLOAK-4421: Change http url to https
...
Change any http maven urls to https to reduce build-time MITM vulnerability
2017-03-14 10:18:40 +01:00
Stian Thorgersen
99581748e0
Merge pull request #3921 from gmarziou/fix-french-plural
...
KEYCLOAK-4561 Fix plural error in French translation
2017-03-14 09:32:37 +01:00
Stian Thorgersen
f0ae34d1ad
Merge pull request #3885 from sk8ter/master
...
add Swedish translation for account, email, login
2017-03-14 09:31:36 +01:00
Stan Silvert
e6df617cfc
KEYCLOAK-4535: Needless heading while adding or editing a Role
2017-03-13 21:03:05 -04:00
Pedro Igor
45caea4dbd
[KEYCLOAK-4549] - Scope Permission Form is not showing saved resource
2017-03-10 17:32:55 -03:00
Bill Burke
b618dbd97f
Merge pull request #3926 from mrpardijs/KEYCLOAK-4360-Add-SAML-OneTimeUse-Condition
...
KEYCLOAK-4360: Add OneTimeUse condition to SAMLResponse
2017-03-09 19:09:02 -05:00
Gaël MARZIOU
46c6db1739
Update URL for FreeOTP
...
It was poniting to obsolete location: https://fedorahosted.org/freeotp/
Now pointing to: https://freeotp.github.io/
2017-03-09 16:20:28 +01:00
Mark Pardijs
c78c0b73d3
KEYCLOAK-4360: Add OneTimeUse condition to SAMLResponse
...
Add OneTimeUse Condition to SAMLResponse when configured in client settings
2017-03-09 13:01:05 +01:00
Gael MARZIOU
0fc4cd134f
Fix plural error in French translation
2017-03-08 18:47:06 +01:00
Bill Burke
c6dc59f63e
Merge remote-tracking branch 'upstream/master'
2017-03-03 11:00:32 -05:00
Bill Burke
3bb29e033b
KEYCLOAK-4501, KEYCLOAK-4511, KEYCLOAK-4513
2017-03-03 09:48:52 -05:00
Bartosz Majsak
669b0143af
Adds tooltip for URL and en translation
2017-03-02 20:24:52 +01:00
Bartosz Majsak
1a6bb2fedb
Adds Openshift Identity Provider as part of social brokers
2017-03-02 15:14:57 +01:00
Quentin Caillard
75851ee0b3
administrator Spelling mistake
2017-03-01 12:32:55 +01:00
Marek Posolda
b54d7c37b6
Merge pull request #3890 from daklassen/KEYCLOAK-2994
...
KEYCLOAK-2994: Revise german translations
2017-03-01 12:22:44 +01:00
Anders Båtstrand
8d82390843
KEYCLOAK-4504 New configuration option for SAML Broker:
...
* postBindingLogout: Indicates if POST or redirect should be used for the logout requests.
This applies to both IdP-initiated logout, and Keycloak-initiated logout. If unset (for example when upgrading Keycloak), the setting is initially set to the same as postBindingResponse.
The flag is also set when importing IdP metadata.
2017-02-28 12:08:22 +01:00
Anders Båtstrand
89c6cda2ac
Two new configuration options for the Saml broker:
...
* wantAssertionsSigned: This will toggle the flag in the SP Metadata Descriptor, and validate the signature if and only if "Validate signature" is selected.
* wantAssertionsEncrypted: This will simply require that the assertion is encrypted.
Default behavior is unchanged. The signature validation uses the original XML, and supports therefore an IdP that adds whitespace and line breaks between tags (for example OpenAM).
2017-02-24 15:08:57 +01:00
Mika Andrianarijaona
ceb5a3a04b
Update french translation in admin console
2017-02-23 11:04:55 +03:00
David Klassen
999a3f62ac
KEYCLOAK-2994: Revise german translations
...
Corrected a huge amount of typos. Improved some translations.
2017-02-23 08:45:51 +01:00
Viktor Kostov
2cf25b6c57
add Swedish translation for account, email, login
2017-02-22 11:51:30 +01:00
Stan Silvert
4f78312a98
KEYCLOAK-4463: JS warnings caused by ui-ace while manipulating with
...
mappers
2017-02-21 19:31:25 -05:00
Stan Silvert
3bf9428cc0
KEYCLOAK-4467: Realm name collides with sidebar navigation
2017-02-20 15:43:46 -05:00
Stian Thorgersen
3653d7ed9a
Merge pull request #3762 from sldab/hide-providers
...
KEYCLOAK-4224 Allow hiding identity providers on login page
2017-02-17 12:04:35 +01:00
Stan Silvert
224f93f25d
Merge pull request #3782 from cargosoft/master
...
KEYCLOAK-4270 Custom login protocol doesn't show when creating a client
2017-02-13 07:58:21 -05:00
Bill Burke
75bee51ac1
console remote imported/unlink users
2017-02-09 09:11:48 -05:00
Bill Burke
cf5e2a1d20
unlink/remoteimported
2017-02-08 19:48:22 -05:00
Stian Thorgersen
6f22f88d85
Bump version to 3.0.0.CR1
2017-01-26 06:18:11 +01:00
Stian Thorgersen
07689c9537
KEYCLOAK-4259 Tweak login screen
2017-01-25 08:21:58 +01:00
Stian Thorgersen
cea52a6db9
KEYCLOAK-4259 Add top-margin to container to prevent overlay with logo
2017-01-24 09:35:57 +01:00
Stian Thorgersen
04228791f3
KEYCLOAK-4259 Reverted original padding around logo
2017-01-24 09:27:28 +01:00
Stian Thorgersen
15d0a116ac
Merge pull request #3769 from hmlnarik/KEYCLOAK-4167-Unable-to-validate-access-token-for-OIDC-External-IDP-using-configured-public-key
...
KEYCLOAK-4167 Always use preset key for verification if key ID not set
2017-01-23 13:59:35 +01:00
Dmitry Telegin
5bacd2919d
KEYCLOAK-4270 Custom login protocol doesn't show when creating a client
2017-01-21 01:46:34 +03:00
Stan Silvert
f55d18189c
KEYCLOAK-4259: Login page rendering broken
2017-01-20 16:07:36 -05:00
Stan Silvert
fe8e437e74
Merge pull request #3768 from ssilvert/otp-scrollbar
...
KEYCLOAK-3884: Another small tweak.
2017-01-20 14:22:27 -05:00
Stian Thorgersen
536b88790e
Merge pull request #3757 from mstruk/KEYCLOAK-4150
...
KEYCLOAK-4150 Unresolved variable ${cliane_security-admin-console} in admin web client
2017-01-19 13:55:36 +01:00
Pedro Igor
c7f2a0ffdd
Merge pull request #3766 from pedroigor/KEYCLOAK-4203
...
[KEYCLOAK-4203] - Removing references to Drools
2017-01-18 13:31:23 -02:00
Pedro Igor
c19360c6f2
[KEYCLOAK-4203] - Removing references to Drools
2017-01-18 12:44:30 -02:00
Hynek Mlnarik
df4f1e7129
KEYCLOAK-4167 Always use preset key for verification if key ID not set
2017-01-18 10:29:06 +01:00
mposolda
843b4b470b
KEYCLOAK-2333 LDAP/MSAD password policies are not used when user changes password
2017-01-17 21:06:09 +01:00
Slawomir Dabek
9bb65ba9b7
KEYCLOAK-4224 Allow hiding identity providers on login page
2017-01-17 14:32:59 +01:00
Stan Silvert
2eeb2f52c5
KEYCLOAK-3884: Another small tweak.
2017-01-16 14:24:44 -05:00
Stan Silvert
23c1f513e7
KEYCLOAK-3953: Remove recalculation of time when units change
2017-01-16 09:55:08 -05:00
Marko Strukelj
d68f6bbc42
KEYCLOAK-4150 Unresolved variable ${cliane_security-admin-console} in admin web client
2017-01-13 17:48:21 +01:00
Stan Silvert
c4cce147e2
Merge pull request #3747 from ssilvert/otp-scrollbar
...
KEYCLOAK-3884: OTP login page cutoff under weird sizes
2017-01-12 16:37:43 -05:00