mposolda
25f965aa2e
KEYCLOAK-2628 protected method to IdpCreateUserIfUniqueAuthenticator after user is registered
2016-03-11 10:05:41 +01:00
Thomas Darimont
41358eea4d
KEYCLOAK-2469 - Introduced new redirect endpoint for clients.
...
Previously one had to configure hardcoded urls to link from one client
application to others since keycloak didn't provide a way to get the
actual client URL by providing clientId and realm information.
We now support a new endpoint with the path {realm}/clients/{client_id}/redirect
that responds to GET requests with a 307 (temporary redirect) with the
configured client URL. This allows to refer to any client just by the
realmName and clientId and let Keycloak redirect to the actual client
application.
Add documentation for new redirect endpoint.
2016-03-10 23:45:22 +01:00
Stian Thorgersen
dc1d0e7f44
KEYCLOAK-2596 Fix import with dir and ignore existing
2016-03-08 08:55:10 +01:00
mposolda
ebb61c104b
KEYCLOAK-2529 More proper handling of DB errors during migration
2016-03-07 15:19:12 +01:00
mposolda
8da768a514
KEYCLOAK-2529 Concurrent startup by more cluster nodes at the same time. Added DBLockProvider
2016-03-07 10:34:30 +01:00
Stian Thorgersen
56c3d53a24
Merge pull request #2324 from ssilvert/client-tests
...
KEYCLOAK-2535: ClientResource endpoint tests
2016-03-07 06:13:55 +01:00
Stian Thorgersen
4f047565fb
Merge pull request #2326 from stianst/KEYCLOAK-2592
...
Keycloak 2592
2016-03-07 06:12:17 +01:00
Stan Silvert
f65a053182
Make imports in ServerInfoAdminResource explicitly point to the new
...
packages.
2016-03-04 11:17:12 -05:00
Bill Burke
4be6dc2f0c
cleanup cache
2016-03-04 10:30:48 -05:00
Stian Thorgersen
57b6ddbace
KEYCLOAK-2592 Set secure on OAuth_Token_Request_State cookie
2016-03-04 14:22:48 +01:00
Stian Thorgersen
bf38ec040f
KEYCLOAK-2592 Set http-only on OAuth_Token_Request_State cookie
2016-03-04 13:43:00 +01:00
Stan Silvert
2c79456e72
KEYCLOAK-2535: ClientResource endpoint tests
2016-03-04 07:41:24 -05:00
Bruno Oliveira
8d6f71e7d1
KEYCLOAK-2585: Changes on Brute force messages
2016-03-03 10:11:03 -03:00
Marek Posolda
002074bb30
Merge pull request #2320 from mposolda/master
...
KEYCLOAK-2523 Fix concurrency tests with all databases by track trans…
2016-03-03 12:34:29 +01:00
Stian Thorgersen
375d4e9e83
Merge pull request #2321 from stianst/KEYCLOAK-2547
...
KEYCLOAK-2547 NPE in TokenEndpoint and InfinispanUserSessionProvider
2016-03-03 12:06:40 +01:00
mposolda
a258dd51ee
KEYCLOAK-2523 Fix concurrency tests with all databases by track transaction startup revision
2016-03-03 11:21:26 +01:00
Stian Thorgersen
b4239c40c1
KEYCLOAK-2547 NPE in TokenEndpoint and InfinispanUserSessionProvider
2016-03-03 10:45:05 +01:00
Stian Thorgersen
b6118a6705
Merge pull request #2319 from stianst/KEYCLOAK-2580
...
KEYCLOAK-2580 Failed to create execution flow
2016-03-03 10:33:42 +01:00
Stian Thorgersen
2d42ad9993
KEYCLOAK-2580 Failed to create execution flow
2016-03-03 09:18:48 +01:00
Stian Thorgersen
2edb7f6831
KEYCLOAK-2577 Rollback session in KeycloakSessionServletFilter if not committed by KeycloakTransactionCommitter
2016-03-03 08:59:19 +01:00
Stian Thorgersen
13b6c6f507
KEYCLOAK-2576 KEYCLOAK-2576
...
Changing locale on login screen doesn't affect current user
2016-03-03 07:06:10 +01:00
mposolda
0768bcc452
KEYCLOAK-2542 User can't set password for account created over social login if UserFedarationProvider used
2016-03-01 10:13:21 +01:00
mposolda
e2558ca827
KEYCLOAK-1928 Fix Saml with IBM JDK
2016-02-29 17:32:33 +01:00
Stian Thorgersen
ccfae82b77
KEYCLOAK-1040
...
Allow import of realm keys (like we do for SAML)
2016-02-29 09:35:08 +01:00
mposolda
e7a5b88b2d
KEYCLOAK-2561 Fix issues with blank password
2016-02-26 18:14:37 +01:00
Stian Thorgersen
ca81f3f18d
Merge pull request #2275 from stianst/KEYCLOAK-2511
...
KEYCLOAK-2511 Rename session-state in access token response to sessio…
2016-02-25 12:03:37 +01:00
Stian Thorgersen
6df72d67c5
Merge pull request #2274 from stianst/KEYCLOAK-2500
...
KEYCLOAK-2500 Add cors headers to .well-known endpoints
2016-02-25 12:03:25 +01:00
Stian Thorgersen
3ca39801dc
KEYCLOAK-2511 Rename session-state in access token response to session_state
2016-02-25 10:14:12 +01:00
Stian Thorgersen
da8f2dc2ce
KEYCLOAK-2500 Add cors headers to .well-known endpoints
2016-02-25 10:05:46 +01:00
Stian Thorgersen
2fce06ffca
KEYCLOAK-2522 master realm admin can't use client registration api
2016-02-25 09:54:34 +01:00
mposolda
daca6d7062
KEYCLOAK-2505 Keystore configuration is not honored for LDAP over SSL connections
2016-02-19 18:02:39 +01:00
mposolda
a441be57ed
KEYCLOAK-2508 Possible NullPointerException during bigger load when removing UserSession
2016-02-19 11:49:30 +01:00
Bill Burke
fd49213cb9
KEYCLOAK-2477
2016-02-17 17:02:14 -05:00
Bill Burke
20348e5d0b
remove RealmModel.getClientNameMap()
2016-02-17 16:05:25 -05:00
mposolda
e237bcd383
KEYCLOAK-2412 wildfly configs and polishing
2016-02-17 13:10:51 +01:00
mposolda
1328531f31
KEYCLOAK-2412 Added ClusterProvider. Avoid concurrent federation sync execution by more cluster nodes at the same time.
...
Clustering - more progress
2016-02-17 11:02:42 +01:00
Stian Thorgersen
7f60e4f986
Merge pull request #2231 from stianst/master
...
KEYCLOAK-2493
2016-02-17 07:41:44 +00:00
Stian Thorgersen
5df540df8c
Merge pull request #2223 from ssilvert/partial-import-tests
...
KEYCLOAK-2481: Create admin client endpoint for partial import + tests
2016-02-17 07:39:03 +00:00
Stian Thorgersen
5bc3ee0e8c
KEYCLOAK-2493
...
Set default theme based on product name
2016-02-16 18:05:06 +01:00
Bill Burke
24da8288eb
Merge remote-tracking branch 'upstream/master'
2016-02-12 11:38:36 -05:00
Bill Burke
4ff1848681
javadoc
2016-02-12 11:38:12 -05:00
mposolda
969b8c153f
KEYCLOAK-1989 Refreshing offline tokens didn't work correctly in cluster with revokeRefreshToken enabled
2016-02-12 12:54:47 +01:00
Stan Silvert
dd9cf3be39
KEYCLOAK-2481: Create admin client endpoint for partial endpoint + tests
2016-02-11 15:26:52 -05:00
mposolda
6c39810ba7
KEYCLOAK-2436 Better defaults
2016-02-11 15:50:11 +01:00
Bill Burke
c2fa0e5c6d
Merge pull request #2214 from mposolda/master
...
KEYCLOAK-2463 Fix performance issue with just 2 default connections p…
2016-02-11 09:41:48 -05:00
Bill Burke
67ce3fdbd2
Merge pull request #2215 from patriot1burke/master
...
concurrency, some JPA cleanup too
2016-02-11 09:41:37 -05:00
Marko Strukelj
dadb470609
KEYCLOAK-1967 Add support for authentication flows into admin-rest-client
2016-02-11 12:18:01 +01:00
Bill Burke
fd212a2a2a
Merge remote-tracking branch 'upstream/master'
2016-02-10 14:09:43 -05:00
mposolda
aac274bbb3
KEYCLOAK-2463 Fix performance issue with just 2 default connections per route in Apache HTTP client
2016-02-10 18:07:11 +01:00
Stian Thorgersen
066d6bb230
Merge pull request #2211 from stianst/KEYCLOAK-2475
...
KEYCLOAK-2475
2016-02-10 14:52:22 +01:00
Stian Thorgersen
72ded04517
Merge pull request #2210 from stianst/KEYCLOAK-2466
...
KEYCLOAK-2466 Redirection back to account/password is broken
2016-02-10 14:44:54 +01:00
Stian Thorgersen
77912b2117
KEYCLOAK-2475
...
Move client registration endpoints
2016-02-10 14:23:04 +01:00
Stian Thorgersen
555236c3f0
KEYCLOAK-2466 Redirection back to account/password is broken
2016-02-10 14:02:33 +01:00
Stian Thorgersen
4670d93f76
KEYCLOAK-2472
...
Remove deprecated endpoints
2016-02-10 13:32:53 +01:00
Bill Burke
45e5cfac99
concurrency 2
2016-02-09 21:10:30 -05:00
Bill Burke
00236c13ff
Merge pull request #2180 from cainj13/persistentWildcard
...
add support for wildcard persistent nameId attribute to SAML protocol
2016-02-09 09:43:30 -05:00
Stian Thorgersen
635ccae144
KEYCLOAK-2429
...
Disabled Google Identity Provider still kicks in when 'Authenticate by default' is enabled
2016-02-08 19:51:21 +01:00
Stan Silvert
e89f511465
KEYCLOAK-1976: Add support for events into admin-rest-client. Also,
...
arquillian tests for events.
2016-02-05 18:45:25 -05:00
Bill Burke
726f746b85
KEYCLOAK-2367
2016-02-05 11:22:09 -06:00
Bill Burke
e26ac0983a
KEYCLOAK-2367
2016-02-04 16:50:02 -05:00
Josh Cain
d5d954e80a
add support for wildcard persistent nameId attribute to SAML protocol
2016-02-04 11:06:14 -06:00
Stian Thorgersen
2974034974
KEYCLOAK-2435
...
Feedback on login screen not showing correctly
2016-02-03 13:41:31 +01:00
mposolda
bae3ce4aab
Fix failing test with DB2
2016-02-03 12:29:37 +01:00
Stian Thorgersen
c7a8742a36
KEYCLOAK-1524
...
Source code headers
2016-02-03 11:20:22 +01:00
mposolda
db76655717
KEYCLOAK-2431 Ensure users removed through UserManager to properly invoke callbacks. Make UserSessionPersister implementations more resistent when user was not properly removed
2016-02-03 10:16:39 +01:00
Stian Thorgersen
26897ea46d
KEYCLOAK-2299
...
createdDate of credential is not exported
2016-02-03 09:49:10 +01:00
Bill Burke
c65160db1f
Merge remote-tracking branch 'upstream/master'
2016-02-01 16:35:12 -05:00
Bill Burke
37cf335247
KEYCLOAK-2408 KEYCLOAK-2330
2016-02-01 16:35:00 -05:00
Marek Posolda
8ad8a3fbac
Merge pull request #2148 from mposolda/master
...
KEYCLOAK-2235 Fix possible transaction leak at startup with add-user
2016-02-01 22:23:43 +01:00
Bill Burke
bd104e2138
Merge pull request #2137 from abstractj/KEYCLOAK-2411
...
Realm import will raise NPE when clientID is missing
2016-02-01 16:03:17 -05:00
mposolda
6b2fb9a2bb
KEYCLOAK-2235 Fix possible transaction leak at startup with add-user
2016-02-01 21:47:46 +01:00
mposolda
732256eceb
KEYCLOAK-2235 Fix transaction leaks
2016-02-01 18:21:27 +01:00
Bill Burke
db78ea76b8
Merge pull request #2142 from patriot1burke/master
...
saml subsystem model changes
2016-01-30 08:40:10 -05:00
Bill Burke
6c020661e8
saml subsystem model changes
2016-01-30 07:13:13 -05:00
mposolda
9332655110
KEYCLOAK-2292 Broker login: remove identity provider prefix from autogenerated username
2016-01-29 18:43:12 +01:00
Bill Burke
39f12549a3
Merge pull request #2122 from abstractj/KEYCLOAK-2151
...
Brute force detector active for non-existing accounts
2016-01-29 09:32:28 -05:00
Bruno Oliveira
5eb8d3be5a
Realm import will raise NPE when clientID is missing
2016-01-29 10:05:42 -02:00
Bill Burke
9027f9b4d3
fix2
2016-01-27 23:06:20 -05:00
Bill Burke
8a3148017d
fix
2016-01-27 23:04:12 -05:00
Bill Burke
25347cd45e
browser back button
2016-01-27 22:14:28 -05:00
Bruno Oliveira
385717c0fb
Brute force detector active for non-existing accounts
2016-01-27 19:09:44 -02:00
Bill Burke
81569ce5d2
Merge pull request #2119 from patriot1burke/master
...
KEYCLOAK-2349
2016-01-26 16:22:02 -05:00
Bill Burke
66e1ee79d0
KEYCLOAK-2349
2016-01-26 15:45:40 -05:00
Bill Burke
9fa35eda69
Merge pull request #2118 from patriot1burke/master
...
KEYCLOAK-2387
2016-01-26 14:20:27 -05:00
Bill Burke
449bc5c4dc
KEYCLOAK-2387
2016-01-26 14:19:53 -05:00
mposolda
3731964a2a
KEYCLOAK-2351 Support for response_type=token to be OAuth2 compliant
2016-01-26 17:09:42 +01:00
mposolda
90842cf7ef
Minor change in message
2016-01-26 16:24:08 +01:00
Stian Thorgersen
9143d4b5cb
Merge pull request #2111 from mstruk/KEYCLOAK-2362
...
KEYCLOAK-2362 NPE if SSL certificate is not trusted by Java's default keystore
2016-01-26 16:17:29 +01:00
Stian Thorgersen
301b61c4f9
Merge pull request #2113 from stianst/KEYCLOAK-2327
...
KEYCLOAK-2327 Make sure transaction is only committed or rolledback before response is returned
2016-01-26 16:06:15 +01:00
Stian Thorgersen
e3daf6fcf8
KEYCLOAK-2327 Make sure transaction is only committed for success
2016-01-26 14:47:59 +01:00
Stian Thorgersen
39b3c648a2
Merge pull request #2109 from stianst/KEYCLOAK-2218
...
KEYCLOAK-2218 Allow updating user without including username
2016-01-26 13:56:01 +01:00
Marko Strukelj
4f890e8f2e
KEYCLOAK-2362 NPE if SSL certificate is not trusted by Java's default keystore
2016-01-26 13:53:16 +01:00
Stian Thorgersen
f9fd398f5b
KEYCLOAK-2218 Allow updating user without including username
2016-01-26 13:01:49 +01:00
Stian Thorgersen
4a698bc22a
KEYCLOAK-2388
...
Localisation should fallback to english rather than display raw keys
2016-01-26 11:47:30 +01:00
Stian Thorgersen
c55b91ed32
Merge pull request #2102 from stianst/KEYCLOAK-2237
...
KEYCLOAK-2237
2016-01-26 11:08:14 +01:00
Stian Thorgersen
54abfa4859
KEYCLOAK-2237
...
Offer the possibility to add own locale to login/registration dialogs
2016-01-26 10:16:05 +01:00
Stian Thorgersen
ee847c1f20
KEYCLOAK-2390
...
Relative redirect uri is broken
2016-01-26 09:01:14 +01:00
Bill Burke
1b0aa8e55b
saml logging
2016-01-25 17:38:29 -05:00
Bill Burke
8b7bc5b153
redirect after post in flow
2016-01-22 18:39:55 -05:00
Vlastimil Elias
4e23311318
KEYCLOAK-2348 - Social login provider for Microsoft account - KC master
...
branch
2016-01-22 11:03:08 +01:00
Stan Silvert
c6dd0d52b9
KEYCLOAK-1280: i18n logging for org.keycloak.services.scheduled
2016-01-21 11:55:36 -05:00
Stan Silvert
446cd3701f
KEYCLOAK-1280: i18n logging for org.keycloak.services.resources
2016-01-21 11:55:35 -05:00
Stan Silvert
e73a88443c
KEYCLOAK-1280: i18n logging for org.keycloak.services.resources
2016-01-21 11:55:33 -05:00
Stan Silvert
857201ab55
KEYCLOAK-1280: i18n logging for org.keycloak.services.messages
2016-01-21 11:55:31 -05:00
Stan Silvert
779a5c2f3c
KEYCLOAK-1280: i18n logging for org.keycloak.services.managers
2016-01-21 11:55:30 -05:00
Stan Silvert
c81b37cc4d
KEYCLOAK-1280: i18n logging for
...
org.keycloak.services.clientregistration.oidc
2016-01-21 11:55:28 -05:00
Stan Silvert
27ad9dcdd1
KEYCLOAK-1280: i18n logging for org.keycloak.services
2016-01-21 11:55:26 -05:00
Stan Silvert
1f04676f08
KEYCLOAK-1280: i18n logging for org.keycloak.provider
2016-01-21 11:55:25 -05:00
Stan Silvert
0de4170865
KEYCLOAK-1280: i18n logging for org.keycloak.protocol.oidc.utils
2016-01-21 11:55:23 -05:00
Stan Silvert
9c33738941
KEYCLOAK-1280: i18n logging for org.keycloak.protocol.oidc.mappers
2016-01-21 11:55:21 -05:00
Stan Silvert
adfc192877
KEYCLOAK-1280: i18n logging for org.keycloak.protocol.oidc.endpoints
2016-01-21 11:55:20 -05:00
Stan Silvert
550e23c8f6
KEYCLOAK-1280: i18n logging for org.keycloak.protocol.oidc
2016-01-21 11:55:18 -05:00
Stan Silvert
9dccd45543
KEYCLOAK-1280: i18n logging for org.keycloak.protocol
2016-01-21 11:55:17 -05:00
Stan Silvert
d2ad1808a5
KEYCLOAK-1280: i18n logging for org.keycloak.partialimport
2016-01-21 11:55:15 -05:00
Stan Silvert
273c662b29
KEYCLOAK-1280: i18n logging for org.keycloak.exportimport
2016-01-21 11:55:14 -05:00
Stan Silvert
24602257e1
KEYCLOAK-1280: i18n logging for org.keycloak.email
2016-01-21 11:55:12 -05:00
Stan Silvert
b544adf170
KEYCLOAK-1280: i18n logging for
...
org.keycloak.authentication.requiredactions
2016-01-21 11:55:10 -05:00
Stan Silvert
2cecce37a7
KEYCLOAK-1280: i18n logging for org.keycloak.authentication.forms
2016-01-21 11:55:09 -05:00
Stan Silvert
7bc74aac73
KEYCLOAK-1280: i18n logging for
...
org.keycloak.authentication.authenticators.resetcred
2016-01-21 11:55:07 -05:00
Stan Silvert
dfb92db2b7
KEYCLOAK-1280: i18n logging for
...
org.keycloak.authentication.authenticators.directgrant
2016-01-21 11:55:05 -05:00
Stan Silvert
36e711fb88
KEYCLOAK-1280: i18n logging for
...
org.keycloak.authentication.authenticators.client
2016-01-21 11:55:04 -05:00
Stan Silvert
0ef8c18b93
KEYCLOAK-1280: i18n logging for
...
org.keycloak.services.authentication.authenticators.browser
2016-01-21 11:55:02 -05:00
Stan Silvert
b1baea7023
KEYCLOAK-1280: i18n logging for
...
org.keycloak.authentication.authenticators.broker
2016-01-21 11:55:00 -05:00
Stan Silvert
3b4cb94ff1
KEYCLOAK-1280: i18n logging for org.keycloak.authentication
2016-01-21 11:54:59 -05:00
Stan Silvert
7514104974
KEYCLOAK-1280: I18N for logging
2016-01-21 11:54:57 -05:00
Bill Burke
efd8317259
final re-org work
2016-01-20 17:26:26 -05:00
Bill Burke
d9487a8745
social broker reorg
2016-01-20 16:46:38 -05:00
Bill Burke
01f3c6ceb7
reorg event log/email
2016-01-20 15:38:09 -05:00
Stian Thorgersen
3dc090b893
KEYCLOAK-2185 Add support to disable realm and user cache, and added support to clear caches from admin console
2016-01-20 14:09:03 +01:00
Stian Thorgersen
733ca53983
KEYCLOAK-2346 Add identity provider and external username to event when login via broker
2016-01-20 10:23:46 +01:00
Bill Burke
4ed1eb66ee
truststore httpclient
2016-01-19 17:29:16 -05:00
Bill Burke
46634b386e
reorg freemarker
2016-01-19 11:33:59 -05:00
Stian Thorgersen
bc845bed0e
KEYCLOAK-2286 Remove deprecated OpenID Connect endpoints
2016-01-18 20:31:23 +01:00
Bill Burke
b0054b7682
email, login, account
2016-01-16 09:38:24 -05:00
Bill Burke
b403c9b934
broker and social
2016-01-16 09:15:17 -05:00
Bill Burke
76e3a72f4c
fixes
2016-01-15 20:18:36 -05:00
Bill Burke
d1a43d6318
fixes
2016-01-15 20:08:17 -05:00
Bill Burke
007e9530ec
brute force refactr, mv protocol
2016-01-15 19:25:28 -05:00
Bill Burke
5017d71383
exportimport and timer and events
2016-01-15 19:07:17 -05:00
Bill Burke
b93d55cb63
remove model-api, add server-spi
2016-01-15 18:44:17 -05:00
Stian Thorgersen
b21bf21043
Merge pull request #2028 from stianst/JACKSON2
...
KEYCLOAK-1809
2016-01-15 16:29:01 +01:00
Stian Thorgersen
33565ff8d9
Added jax-rs response filter to commit transaction
2016-01-15 15:50:38 +01:00
Bill Burke
5a74c72452
Merge remote-tracking branch 'upstream/master'
2016-01-14 18:33:22 -05:00
Bill Burke
67ef3e7a45
client installation formats
2016-01-14 16:50:17 -05:00
Stian Thorgersen
435980d776
KEYCLOAK-1809
...
Upgrade jackson to version 2.x
2016-01-14 16:34:30 +01:00
Bill Burke
0bad78c53b
Merge pull request #2025 from thomasdarimont/issue/KEYCLOAK-2311-white-list-role-for-conditional-otp
...
KEYCLOAK-2311 - Allow to specify role to skip conditional OTP authentication.
2016-01-14 09:05:58 -05:00
Stian Thorgersen
eb10d6bfd6
Merge pull request #2024 from stianst/FIX-CLIENT-INSTALLATION-TEST
...
Fix client installation test
2016-01-14 12:33:26 +01:00
Thomas Darimont
d6b10aa911
KEYCLOAK-2311 - Polishing.
...
Aligned constant names, but keep constant values to stay compatible with previous version.
2016-01-14 12:05:19 +01:00
Stian Thorgersen
a6da6e48f9
Fix client installation test
2016-01-14 11:54:39 +01:00
Thomas Darimont
92c2ec366d
KEYCLOAK-2311 - Allow to specify role to skip conditional OTP authentication.
...
We now allow specify a role to skip OTP.
Previously it was not possible to specify that OTP authentication should be skipped via a role but the
ConditionalOtpAuthenticator allowed to specify to show/skip OTP via a user attribute or HTTP request header pattern.
Having the "skip role" aligns the role based configuration options with the user attribute and HTTP request header configuration.
2016-01-14 11:47:30 +01:00