Stan Silvert
8b023f57f9
KEYCLOAK-5474: Unexp behavior with "login w/ email" and "Dup emails" ( #4683 )
...
settings.
2017-11-14 16:12:56 -05:00
Hynek Mlnařík
1412fed265
Merge pull request #4676 from abstractj/KEYCLOAK-2052
...
[KEYCLOAK-2052] Allows independently set timeouts for e-mail verification link and rest e.g. forgot password link
2017-11-14 09:19:57 +01:00
Stian Thorgersen
de72542151
KEYCLOAK-5795 Strip ids of client export from admin console
2017-11-14 08:49:58 +01:00
Bruno Oliveira
03d0488335
[KEYCLOAK-2052] Allows independently set timeouts for e-mail verification link and rest e.g. forgot password link
...
Co-authored-by: Hynek Mlnarik <hmlnarik@redhat.com>
2017-11-13 19:57:04 -02:00
Stian Thorgersen
128ff12f8f
Bump versions
2017-11-09 15:37:21 +01:00
Stan Silvert
8759b42e6b
KEYCLOAK-4461: Missing error msg when add idp mapper
2017-11-09 07:13:38 +01:00
liuzheng712
9243430b75
fix(Chinese language): add # encoding: utf-8
2017-11-09 07:10:59 +01:00
Stan Silvert
d3b270d025
KEYCLOAK-5475: UI glitches when alias blank in auth config ( #4645 )
2017-11-08 08:21:28 -05:00
Albert-Jan Verhees
b8f3c8a445
Fixed typo in Dutch translations
2017-11-08 12:59:55 +01:00
Stan Silvert
1db3134df8
KEYCLOAK-5506: Set empty fed config prop fails in admin console ( #4625 )
2017-11-06 12:44:13 -05:00
Stan Silvert
986540ab34
KEYCLOAK-4383: Dbl-click login button leads to "already logged in" page ( #4614 )
2017-10-27 10:29:37 -04:00
Marek Posolda
74f5c1c160
Merge pull request #4611 from mposolda/ldap-eviction-day
...
KEYCLOAK-5746 Bad label for evictionDay in admin console in EVICT_WEE…
2017-10-25 11:14:18 +02:00
mposolda
5f889dd3c6
KEYCLOAK-5746 Bad label for evictionDay in admin console in EVICT_WEEKLY cache policy
2017-10-25 09:08:33 +02:00
Bruno Oliveira
4d762159ef
KEYCLOAK-5717
2017-10-24 10:55:02 -02:00
Stan Silvert
330f2acc29
KEYCLOAK-5732: Freemarker pages using ?html ( #4607 )
2017-10-23 16:35:45 -04:00
Stan Silvert
574fd42534
KEYCLOAK-5681: Upgrade AngularJS for Admin Console ( #4571 )
2017-10-23 12:03:46 -04:00
Stan Silvert
9083e5fe5c
KEYCLOAK-5298: Enable autoescaping in Freemarker ( #4561 )
...
* KEYCLOAK-5298: Enable autoescaping in Freemarker
* Fix several of the failing tests.
* Fix broken tests in integration-deprecated
* Fix last failing test.
2017-10-23 12:03:00 -04:00
Stian Thorgersen
9b75b603e3
KEYCLOAK-5234 ( #4585 )
2017-10-23 16:13:22 +02:00
Bill Burke
8faa6f1f4d
KEYCLOAK-5701
2017-10-18 18:20:50 -04:00
Bill Burke
0fb99a0098
Merge pull request #4569 from patriot1burke/master
...
KEYCLOAK-4328
2017-10-18 10:49:52 -04:00
Bill Burke
649bca7618
KEYCLOAK-4328
2017-10-18 09:37:17 -04:00
Thomas Darimont
3103e0fd0a
KEYCLOAK-5244 Add BlacklistPasswordPolicyProvider ( #4370 )
...
* KEYCLOAK-5244 Add BlacklistPasswordPolicyProvider
This introduces a new PasswordPolicy which can refer to
a named predefined password-blacklist to avoid users
choosing too easy to guess passwords.
The BlacklistPasswordPolicyProvider supports built-in as
well as custom blacklists.
built-in blacklists use the form `default/filename`
and custom ones `custom/filename`, where filename
is the name of the found blacklist-filename.
I'd propose to use some of the freely available password blacklists
from the [SecLists](https://github.com/danielmiessler/SecLists/tree/master/Passwords ) project.
For testing purposes one can download the password blacklist
```
wget -O 10_million_password_list_top_1000000.txt https://github.com/danielmiessler/SecLists/blob/master/Passwords/10_million_password_list_top_1000000.txt?raw=true
```
to /data/keycloak/blacklists/
Custom password policies can be configured with the SPI
configuration mechanism via jboss-cli:
```
/subsystem=keycloak-server/spi=password-policy:add()
/subsystem=keycloak-server/spi=password-policy/provider=passwordBlacklist:add(enabled=true)
/subsystem=keycloak-server/spi=password-policy/provider=passwordBlacklist:write-attribute(name=properties.blacklistsFolderUri, value=file:///data/keycloak/blacklists/)
```
Password blacklist is stored in a TreeSet.
* KEYCLOAK-5244 Encode PasswordBlacklist as a BloomFilter
We now use a dynamically sized BloomFilter with a
false positive probability of 1% as a backing store
for PasswordBlacklists.
BloomFilter implementation is provided by google-guava
which is available in wildfly.
Password blacklist files are now resolved against
the ${jboss.server.data.dir}/password-blacklists.
This can be overridden via system property, or SPI config.
See JavaDoc of BlacklistPasswordPolicyProviderFactory for details.
Revised implementation to be more extensible, e.g. it could be
possible to use other stores like databases etc.
Moved FileSystem specific methods to FileBasesPasswordBlacklistPolicy.
The PasswordBlacklistProvider uses the guava version 20.0
shipped with wildfly. Unfortunately the arquillian testsuite
transitively depends on guava 23.0 via the selenium-3.5.1
dependency. Hence we need to use version 23.0 for tests but 20.0
for the policy provider to avoid NoClassDefFoundErrors in the
server-dist.
Configure password blacklist folder for tests
* KEYCLOAK-5244 Configure jboss.server.data.dir for test servers
* KEYCLOAK-5244 Translate blacklisted message in base/login
2017-10-17 20:41:44 +02:00
Cédric Couralet
656fc5d7c0
KEYCLOAK-4052 - add an option to validate Password Policy for ldap user storage
2017-10-13 13:54:50 +02:00
Gaetan Collaud
06ad4caa1b
KEYCLOAK-5505 put tabindex in login page
2017-10-10 16:56:03 +02:00
Stan Silvert
9131e7e73c
KEYCLOAK-4248: Remove revocation tab for SAML clients.
2017-10-04 14:03:39 -04:00
Herbert Mühlburger
f0f7321c38
Fix spelling error in admin message properties ( #4525 )
...
* fix spelling error in admin message properties
* fix typo in admin messages
2017-10-03 20:58:17 +02:00
Bill Burke
817d6cc8c7
minor ui fix
2017-10-02 11:02:19 -04:00
Gabriel Lavoie
134daeac7f
KEYCLOAK-3303: Allow reuse of refresh tokens.
...
- Configurable max reuse count.
2017-09-28 15:30:40 -04:00
Bill Burke
fd025ae76b
Merge pull request #4209 from guitaro/feature/group-search-and-pagination
...
[KEYCLOAK-2538] - groups pagination and group search
2017-09-23 20:52:19 -04:00
Bill Burke
3020a04a8b
Merge pull request #4490 from Fiercely/master
...
Keycloak 2035
2017-09-22 16:13:22 -04:00
Thomas Darimont
236b2b9273
KEYCLOAK-3599 Add Script based OIDC ProtocolMapper
2017-09-22 21:24:20 +02:00
howcroft
e78bf5f876
Keycloak 2035
...
This PR adds:
* an endpoint to Role that lists users with the Role
* a tab "Users in Role" in Admin console Role page
* it is applicable to Realm and Client Roles
* Extends UserQueryProvider with default methods (throwing Runtime Exception if not overriden)
* Testing in base testsuite and Console
2017-09-22 15:05:49 +01:00
Stan Silvert
7124d93a24
Merge pull request #4487 from ssilvert/kc1250-big-commit
...
KEYCLOAK-5502: Fix install of node and yarn for account2 profile.
2017-09-19 10:39:38 -04:00
Stan Silvert
9d66d55ac1
KEYCLOAK-5502: Fix install of node and yarn for account2 profile.
2017-09-19 09:53:22 -04:00
Stan Silvert
657c68475d
Merge pull request #4486 from ssilvert/kc1250-big-commit
...
KEYCLOAK-1250: Initial commit for new account mgt.
2017-09-18 16:51:18 -04:00
Stan Silvert
c8a4fc2c57
KEYCLOAK-1250: Initial commit for new account mgt.
2017-09-18 15:32:43 -04:00
Bill Burke
3e6adbc904
KEYCLOAK-5490 ( #4477 )
2017-09-15 11:36:48 +02:00
Stian Thorgersen
ee35673615
KEYCLOAK-1250 Profile and console loader for new account management console
2017-09-14 19:53:02 +02:00
Levente NAGY
d18aa44fb4
Merge branch 'feature/group-search-and-pagination' of https://github.com/guitaro/keycloak into feature/group-search-and-pagination
2017-09-13 16:48:24 +02:00
Levente NAGY
e907da77d7
KEYCLOAK 2538 - UI group pagination - Remove junit mocked TUs, add arquillian Tests, delete mockito from poms, fix groups sorting when get result from cache
2017-09-13 16:45:45 +02:00
Stan Silvert
56e0a52197
Merge pull request #4436 from tuxetuxe/master
...
Do not show empty page size selectors in events lists
2017-09-13 10:22:56 -04:00
Léventé NAGY
503ce3a47f
Merge branch 'master' into feature/group-search-and-pagination
2017-09-13 10:27:38 +02:00
Petter Lysne
7f8b5e032a
feat: added PayPal IDP ( #4449 )
2017-09-12 11:57:59 +02:00
Levente NAGY
db56d82dbd
KEYCLOAK 2538 - UI group pagination - fix duplicate result for search + sort result
2017-09-12 11:45:37 +02:00
Levente NAGY
2c24b39268
KEYCLOAK 2538 - UI group pagination
2017-09-07 19:39:06 +02:00
Stan Silvert
1fb8846a7a
KEYCLOAK-5391: Add node_modules back to repository for commons theme ( #4457 )
2017-09-05 14:27:19 -04:00
Stian Thorgersen
dcfa4aca8c
KEYCLOAK-943 Started account rest service. Profile and sessions completed. ( #4439 )
2017-08-29 20:12:09 +02:00
Luis Santos
944332a84a
Do not show empty page size selectors in events lists
2017-08-29 11:30:53 +03:00
Stian Thorgersen
463661b051
Set version to 3.4.0.CR1-SNAPSHOT
2017-08-28 15:46:22 +02:00
Pedro Igor
36c5490250
Merge pull request #4426 from pedroigor/master
...
[KEYCLOAK-5323] - Fixing filter when searching/selecting clients
2017-08-25 17:07:38 -03:00
Pedro Igor
9a7d56097a
[KEYCLOAK-5323] - Fixing filter when searching/selecting clients
2017-08-25 14:06:28 -03:00
Stian Thorgersen
d58c6ad4e0
[KEYCLOAK-4900] Pass login_hint parameter to idp & review ( #4421 )
2017-08-25 10:14:38 +02:00
Bill Burke
6696c44dc0
Merge remote-tracking branch 'upstream/master'
2017-08-24 15:19:48 -04:00
Bill Burke
7a57723c01
more token exchange
2017-08-24 15:19:38 -04:00
Pedro Igor
16305418f0
[KEYCLOAK-4915] - Unable to update resource permission without changing applied policies
2017-08-23 15:13:24 -03:00
Stan Silvert
245f6c0c84
KEYCLOAK-5232: 'undefined' in allowed protocol mappers field ( #4398 )
2017-08-23 09:56:28 -04:00
Stan Silvert
010dd5709c
KEYCLOAK-5286: js error on save in client/mappers/details screen ( #4409 )
2017-08-23 09:55:49 -04:00
Stan Silvert
eb5a5023c6
KEYCLOAK-5266: Component numberOfPages in clients view is missing ( #4411 )
2017-08-23 09:55:19 -04:00
Edwin de Jong
5f97f23c12
KEYCLOAK-5307 Dutch locale ( #4340 )
...
- Thanks to Jacob van Lingen to provide the initial translation for
login messages
2017-08-17 11:26:41 +02:00
Stian Thorgersen
31f82243fc
KEYCLOAK-5281 ( #4390 )
2017-08-17 08:47:25 +02:00
Bill Burke
45eac1093d
show permissions
2017-08-09 10:39:59 -04:00
Bill Burke
ed5e880931
Merge remote-tracking branch 'upstream/master'
2017-08-07 12:02:50 -04:00
Bill Burke
c9b7504e3f
KEYCLOAK-5190
2017-08-07 12:02:18 -04:00
Bill Burke
3fce14d9ce
Merge pull request #4369 from patriot1burke/master
...
KEYCLOAK-5249
2017-08-03 09:57:55 -04:00
Bill Burke
5423e0534b
Merge pull request #4330 from stoffus/master
...
Swedish translation fixes
2017-08-02 19:49:03 -04:00
Bill Burke
3b5ca2bac0
Merge pull request #4366 from hmlnarik/KEYCLOAK-4694-null
...
KEYCLOAK-4694
2017-08-02 19:47:34 -04:00
Bill Burke
cf0ee31bc5
KEYCLOAK-5249
2017-08-02 19:42:35 -04:00
Hynek Mlnarik
4583a45e78
KEYCLOAK-4694
2017-08-01 09:57:12 +02:00
Pedro Igor
d105aa92e2
[KEYCLOAK-5240] - Escaping values in templates
2017-07-28 17:46:52 -03:00
Stan Silvert
4b9ea5cbe0
KEYCLOAK-5127: Fix packaging of node_modules ( #4347 )
2017-07-24 09:12:43 -04:00
Christopher Svensson
81d0ae1160
Merge remote-tracking branch 'upstream/master'
2017-07-24 07:28:21 +02:00
Stan Silvert
c8068b688d
KEYCLOAK-5127: Exclude node_modules from git ( #4334 )
...
* KEYCLOAK-5127: Exclude node_modules from git
* Add readme file.
2017-07-21 15:12:34 -04:00
Christopher Svensson
c6f922412f
Corrected Swedish translation
2017-07-19 14:44:39 +02:00
Christopher Svensson
9d1ccaeefa
Added locale_sv translation to fix language dropdown
2017-07-19 14:02:33 +02:00
Bill Burke
11ff5a05e9
KEYCLOAK-5205
2017-07-18 11:03:01 -04:00
Bill Burke
a7940c6ffa
KEYCLOAK-5194
2017-07-14 18:29:48 -04:00
mposolda
936efe872a
KEYCLOAK-5061 Process correct initial flow when action expired
2017-07-10 22:52:54 +02:00
Marek Posolda
2b427dfcd2
Merge pull request #4309 from mposolda/master
...
KEYCLOAK-5061 Better error messages when action expired
2017-07-10 21:29:03 +02:00
mposolda
7be2c55f61
KEYCLOAK-5061 Better error messages when action expired
2017-07-10 19:50:28 +02:00
Stan Silvert
7dbb439cf3
KEYCLOAK-5075: Allow Origin Missing in Direct Access Grants
2017-07-10 13:45:02 -04:00
Stan Silvert
1721ccc85e
KEYCLOAK-5144: Supported locales undefined ( #4304 )
...
* KEYCLOAK-5144: Supported locales are undefined
* KEYCLOAK-5144: Supported locales are undefined.
* KEYCLOAK-5144: Supported locales are undefined
* KEYCLOAK-5144: Supported locales are undefined
2017-07-09 20:48:49 -04:00
Pedro Igor
0aeba74185
[KEYCLOAK-5158] - Revert changes that made delete on lists and scope permission stop working
2017-07-06 18:22:13 -03:00
Martin@qingcloud
d84ab4f90b
KEYCLOAK-5086:add Chinese translation into messages. ( #4251 )
...
* add Chinese translation into messages.
* convert messages from unicode to utf-8
2017-07-06 08:13:49 +02:00
Stian Thorgersen
9a9f4137e5
KEYCLOAK-4556 KEYCLOAK-5022 Only cache keycloak.js and iframe if specific version is requested ( #4289 )
2017-07-04 21:18:34 +02:00
Stan Silvert
32b16717a7
KEYCLOAK-4234: Link to app in acct mgt doesn't use root url ( #4285 )
...
* KEYCLOAK-4234: Link to app in acct mgt not use root url
* Add tests.
2017-07-04 07:01:58 +02:00
Stian Thorgersen
454c5f4d83
Set version to 3.3.0.CR1-SNAPSHOT
2017-06-30 09:47:11 +02:00
Stian Thorgersen
fdb80d4319
Fix console tests ( #4277 )
2017-06-30 08:49:18 +02:00
Stian Thorgersen
f0f1b85582
KEYCLOAK-5116 ( #4276 )
...
Authz tab not showing
2017-06-30 08:48:28 +02:00
Stan Silvert
6874cdc3b2
KEYCLOAK-4997 KEYCLOAK-4866 KEYCLOAK-4895 Upgrade to latest AngularJS, ( #4275 )
...
jquery, and others.
2017-06-30 05:55:47 +02:00
Josh Cain
89fcddd605
KEYCLOAK-3592 Docker auth implementation
2017-06-29 06:37:34 +02:00
Stian Thorgersen
55d0ad3a50
Merge pull request #4234 from samuelMangot/master
...
Email - I18n - added missing german text
2017-06-28 08:20:50 +02:00
Stian Thorgersen
d90235d1bd
Merge pull request #4245 from hokuda/email-messages-japanese
...
fix email messages in Japanese
2017-06-28 08:20:21 +02:00
Samuel Mangot
f5545eabdc
Email - I18n - fixed another grammar error
2017-06-27 20:30:30 +02:00
Samuel Mangot
3db8f97248
Email - I18n - removed remaining " and fixe grammar error
2017-06-27 18:04:41 +02:00
Samuel Mangot
48421cbc43
Email - I18n - removed "" around text placeholder
2017-06-27 16:55:10 +02:00
Stian Thorgersen
56c5996aff
Merge pull request #4259 from stianst/abstractj-KEYCLOAK-4444
...
KEYCLOAK-4444
2017-06-27 10:44:30 +02:00
Bruno Oliveira
361ab1c988
[KEYCLOAK-4444] Allow sending test email
2017-06-27 08:38:36 +02:00
Stian Thorgersen
c1c1a81a4e
Merge pull request #4138 from ASzc/KEYCLOAK-4752
...
KEYCLOAK-4752
2017-06-27 08:34:00 +02:00
Bill Burke
28b3ef9aa9
admin console work
2017-06-26 11:40:32 -04:00
Bill Burke
d08ddade2e
merge
2017-06-21 17:43:54 -04:00
Bill Burke
52e40922bc
removal
2017-06-21 17:42:57 -04:00
Bill Burke
8c82201add
Merge pull request #4224 from pedroigor/KEYCLOAK-3168
...
[KEYCLOAK-3168] - Group-Based Access Control
2017-06-21 17:03:34 -04:00
Hisanobu Okuda
eebd3feb28
fix email messages in Japanese
2017-06-21 21:42:14 +09:00
Bill Burke
a994af9010
remove scope
2017-06-16 11:26:43 -04:00
Samuel Mangot
a785f9fd11
Email - I18n - added missing german text
2017-06-16 09:55:54 +02:00
Pedro Igor
d4a85d6abc
[KEYCLOAK-5054] - Checking name availability only in cases name is filled
2017-06-14 18:10:51 -03:00
Pedro Igor
169280b6a1
[KEYCLOAK-3168] - Group-Based Access Control
2017-06-13 19:05:44 -03:00
Bill Burke
94528976d4
console work
2017-06-07 16:29:43 -04:00
Bill Burke
536a57a514
ui for permission reference
2017-06-05 19:52:51 -04:00
Bill Burke
b9f7a43a72
group permissions
2017-06-01 20:16:35 -04:00
Alex Szczuczko
bed6f96fc6
KEYCLOAK-4752 Change required actions UI to uncheck and disable the default checkbox when the enable checkbox is not checked. The API will continue to silently drop actions that are not enabled for the realm.
2017-06-01 08:25:51 -06:00
Pedro Igor
81f1a5b145
Merge pull request #4183 from pedroigor/stan-ui-fixes
...
[KEYCLOAK-4915] - Fixes to evaluation tool UI
2017-05-24 09:32:42 -03:00
Marek Posolda
79af4dfd18
Merge pull request #4127 from sbryzak/KEYCLOAK-4886
...
KEYCLOAK-4886
2017-05-24 10:47:09 +02:00
Pedro Igor
829bcf5eaf
Fix to evaluation tool
2017-05-23 17:50:06 -03:00
Stian Thorgersen
130452f6c3
Merge pull request #4085 from mstruk/RHSSO-402
...
RHSSO-402 need a way to dump configuration (including ldap provider config) to a file
2017-05-23 13:29:32 +02:00
Pedro Igor
8d40ee17f1
Merge pull request #4166 from pedroigor/stan-ui-fixes
...
[EYCLOAK-4915] - Review AuthZ UIs
2017-05-22 10:10:09 -03:00
Pedro Igor
7ae117707b
Fixing validation of required fields
2017-05-19 19:45:47 -03:00
Pedro Igor
d1d590b45c
Delete action on lists
2017-05-19 19:45:47 -03:00
Pedro Igor
62ffab7239
Exporting a client is updating policy config
2017-05-19 19:45:47 -03:00
Bill Burke
ab763e7c5b
fixes after merge
2017-05-19 15:54:36 -04:00
Bill Burke
f114895cd2
for merge
2017-05-19 11:29:26 -04:00
Dominik Langenegger
dce4353e0d
KEYCLOAK-4940 Fix typo in German email verification body
2017-05-19 14:26:40 +02:00
Marek Posolda
4d5ca2b8fa
Merge pull request #4159 from hmlnarik/KEYCLOAK-4627-Nicer-text-in-html-email
...
KEYCLOAK-4627 Nicer link texts in HTML variant of emails
2017-05-19 14:03:39 +02:00
Marek Posolda
8e4899f874
Merge pull request #4158 from hmlnarik/KEYCLOAK-4627-Change-wording
...
KEYCLOAK-4627 Change wording of the configuration in UI
2017-05-19 14:03:24 +02:00
Hynek Mlnarik
d4f870fbb4
KEYCLOAK-4627 Nicer link texts in HTML variant of emails
2017-05-19 10:08:02 +02:00
Hynek Mlnarik
ca8d756c05
KEYCLOAK-4627 Change wording of the configuration in UI
2017-05-19 09:39:58 +02:00
Hynek Mlnarik
355af6d1cf
KEYCLOAK-4627 Action tokens theme typo
2017-05-18 14:27:53 +02:00
Marko Strukelj
7d0ca42c6c
RHSSO-402 need a way to dump configuration (including ldap provider config) to a file
2017-05-15 12:13:58 +02:00
Bill Burke
954ef99f22
Merge remote-tracking branch 'upstream/master'
2017-05-12 10:10:29 -04:00
mposolda
7d8796e614
KEYCLOAK-4626 Support for sticky sessions with AUTH_SESSION_ID cookie. Clustering tests with embedded undertow. Last fixes.
2017-05-11 22:24:07 +02:00
Hynek Mlnarik
b8262a9f02
KEYCLOAK-4628 Single-use cache + its functionality incorporated into reset password token. Utilize single-use cache for relevant actions in execute-actions token
2017-05-11 22:16:26 +02:00
Hynek Mlnarik
c431cc1b01
KEYCLOAK-4627 IdP email account verification + code cleanup. Fix for concurrent access to auth session notes
2017-05-11 22:16:26 +02:00
mposolda
168153c6e7
KEYCLOAK-4626 Authentication sessions - SAML, offline tokens, broker logout and other fixes
2017-05-11 22:16:26 +02:00
mposolda
e7272dc05a
KEYCLOAK-4626 AuthenticationSessions - brokering works. Few other fixes and tests added
2017-05-11 22:16:26 +02:00
mposolda
a9ec69e424
KEYCLOAK-4626: AuthenticationSessions - working login, registration, resetPassword flows
2017-05-11 22:16:26 +02:00
Shane Bryzak
349a59cf35
KEYCLOAK-4886 update Openshift view template to allow setting an alias and display name
...
Signed-off-by: Shane Bryzak <sbryzak@redhat.com>
2017-05-11 09:27:49 +10:00
Bill Burke
bfb4395b28
role and Users finished UI work
2017-05-10 15:25:04 -04:00
Johannes Knutsen
b64817761a
KEYCLOAK-4875 Use realm name instead of realm id to generate OpenID Endpoint Configuration URL in admin's Realm Settings page
2017-05-09 22:05:10 +02:00
Bill Burke
a8a8ea4bcd
Merge remote-tracking branch 'upstream/master'
2017-05-08 13:49:03 -04:00
Bill Burke
f760427c5c
fine grain tests
2017-05-08 13:48:51 -04:00
Bill Burke
e1b6ba13cc
Merge pull request #3893 from anderius/feature/KEYCLOAK-3056-verify-signature
...
[WIP] Saml broker: Added wantAssertionsSigned and wantAssertionsEncrypted
2017-05-05 09:04:41 -04:00
Stan Silvert
2e66cd1070
Merge pull request #4108 from ssilvert/error_description
...
KEYCLOAK-4462: Unexpected error when creat client w/ existing ClientID
2017-05-04 16:29:43 -04:00
Stan Silvert
55f3d8c1d0
KEYCLOAK-4462: Use errorInterceptor instead of handling errors locally
2017-05-04 15:21:05 -04:00
Stan Silvert
b8fecca0ba
KEYCLOAK-4462: Unexpected error when creating client with existing
...
ClientID
2017-05-01 18:13:27 -04:00
Stan Silvert
1438982104
KEYCLOAK-4720: Wrongly positioned IdPs table header
2017-05-01 15:19:44 -04:00
Eriksson Fabian
ca1152c3e5
KEYCLOAK-4204 Extend brute force protection with permanent lockout on failed attempts
...
- Can still use temporary brute force protection.
- After X-1 failed login attempt, if the user successfully logs in his/her fail login count is reset.
2017-04-28 09:02:10 +02:00
Stian Thorgersen
87dedb56e5
Set version to 3.2.0.CR1-SNAPSHOT
2017-04-27 14:23:03 +02:00
Pedro Igor
fbcfcfa088
[KEYCLOAK-4755] - Client UI Tests
2017-04-26 12:11:53 -03:00
Pedro Igor
b3131bf679
[KEYCLOAK-3135] - Rules UI Tests
2017-04-25 16:52:14 -03:00
Pedro Igor
38ae6c981b
Merge pull request #4068 from pedroigor/KEYCLOAK-3135
...
[KEYCLOAK-3135] - Scope permission UI tests and reusable ui-select2 component
2017-04-25 08:19:32 -03:00
Stian Thorgersen
cf7f28d97e
Merge pull request #4031 from abacusresearch/KEYCLOAK-4736_http_header_x-xss-protection
...
KEYCLOAK-4736 Extend security defenses with X-XSS-Protection header
2017-04-25 10:38:21 +02:00
Stian Thorgersen
1385d3c219
Merge pull request #4062 from ssilvert/dbl-click
...
KEYCLOAK-4121: Prevent double form submission
2017-04-25 08:57:15 +02:00
Pedro Igor
49547ccfbc
[KEYCLOAK-3135] - Scope permission UI tests and reusable ui-select2 component
2017-04-24 23:12:46 -03:00
Pedro Igor
5972c94dc8
[KEYCLOAK-3135] - More UI tests
2017-04-24 16:50:23 -03:00
Pedro Igor
dfec691de0
[KEYCLOAK-3135] - Fixing cancel button
2017-04-24 08:39:08 -03:00
Pedro Igor
e0f753bcf5
[KEYCLOAK-3135] - More changes to Policy Management API
2017-04-24 07:34:08 -03:00
Stan Silvert
8dc65cff0a
KEYCLOAK-4121: Prevent double form submission
2017-04-21 14:11:44 -04:00
Stan Silvert
62000e042d
KEYCLOAK-4402: Fix regexp password policy.
2017-04-20 18:09:20 -04:00
Stian Thorgersen
1d03eb5f2b
Merge pull request #4045 from stianst/KEYCLOAK-4737
...
KEYCLOAK-4737 Admin Console redirect loop when hostname contains console
2017-04-20 09:29:41 +02:00
Stian Thorgersen
7de0b329a2
Merge pull request #4046 from stianst/KEYCLOAK-4637
...
KEYCLOAK-4637 Fix FreeOTP url in Swedish translation
2017-04-19 15:48:12 +02:00
Stian Thorgersen
10009868a3
KEYCLOAK-4637 Fix FreeOTP url in Swedish translation
2017-04-19 14:54:44 +02:00
Stian Thorgersen
0a0d2174e4
KEYCLOAK-4737 Admin Console redirect loop when hostname contains console
2017-04-19 14:43:56 +02:00
Markus Lindström
0b21ed3e0e
KEYCLOAK-4762 Improve French translations
2017-04-19 10:23:52 +02:00
Stian Thorgersen
330663dfd3
Merge pull request #3898 from chameleon82/KEYCLOAK-4502_Update_Russian_Translation
...
KEYCLOAK-4502 Update Russian translation
2017-04-19 09:41:49 +02:00
Stian Thorgersen
da6781dd91
Merge pull request #4029 from abacusresearch/KEYCLOAK-4734_update_italian_translation
...
KEYCLOAK-4734 Update Italian translations
2017-04-18 15:14:33 +02:00
Stian Thorgersen
4f771ac51a
Merge pull request #4027 from abacusresearch/KEYCLOAK-4729_update_german_translation
...
KEYCLOAK-4729 Update German translations
2017-04-18 15:13:39 +02:00
Pedro Igor
a415ea3670
[KEYCLOAK-4755] - AuthZ UI Tests
2017-04-13 15:54:52 -03:00
Pedro Igor
eec712a259
[KEYCLOAK-3135] - Role and user policies apis
2017-04-12 00:52:14 -03:00
Pedro Igor
54ebc1918c
[KEYCLOAK-3135] - Using abstract policy representation when creating policies and updating tests
2017-04-12 00:52:13 -03:00
Pedro Igor
55f747ecd0
[KEYCLOAK-3135] - Part 1: Permission Management API
2017-04-12 00:52:13 -03:00
Dominik Langenegger
8840bc073f
KEYCLOAK-4736 Extend security defenses with additional option to set the X-XSS-Protection header, block by default
2017-04-10 11:20:07 +02:00
Nekrasov Aleksander
2066259518
KEYCLOAK-4502 Update Russian translation
2017-04-08 11:42:33 +07:00
Nekrasov Aleksander
9bca7fb7c5
KEYCLOAK-4502 Update russian translation
2017-04-08 11:27:34 +07:00
Dominik Langenegger
c73de4f2b9
KEYCLOAK-4734 Update Italian translations
2017-04-07 16:46:43 +02:00
Dominik Langenegger
16430791bb
KEYCLOAK-4729 Update German translations
2017-04-07 16:03:34 +02:00
Dominik Langenegger
e9d22f3506
KEYCLOAK-4728 Fix typo
2017-04-07 09:31:05 +02:00
Stian Thorgersen
af4c74f1d9
Merge pull request #3718 from thomasdarimont/issue/KEYCLOAK-4163-improve-support-for-email-addresses
...
KEYCLOAK-4163 Improve support for e-mail addresses
2017-04-06 15:34:30 +02:00
Stian Thorgersen
4845286e04
Merge pull request #4001 from stianst/KEYCLOAK-4693
...
KEYCLOAK-4693
2017-04-04 15:48:08 +02:00
Stian Thorgersen
eaf386f1d2
KEYCLOAK-4693
...
Improve blocking search indexing
2017-04-04 09:56:48 +02:00
Pedro Igor
838a045239
[KEYCLOAK-4650] - Adding scope filter and fixing cancel buttons
2017-03-29 12:59:41 -03:00
Pedro Igor
33a0dc880f
[KEYCLOAK-4650] - Confirmation dialog when disabling authorization settings
2017-03-29 11:17:10 -03:00
Marko Strukelj
d26f2b44bd
KEYCLOAK-4496 Strange truncation of Client information when creating a new client
...
- Added polyfill from https://github.com/tbosch/autofill-event
2017-03-28 18:06:17 +02:00
Bill Burke
f554fd90db
Merge pull request #3911 from almighty/oso_provider
...
[KEYCLOAK-4528] Adds Openshift Identity Provider as part of social brokers
2017-03-25 19:25:44 -04:00
Stian Thorgersen
7968394537
KEYCLOAK-4654 Disable unsupported LDAP vendors in product profile
2017-03-24 13:44:33 +01:00
Nekrasov Aleksander
d0b3cb32f0
KEYCLOAK-4502 Update Russian translation
2017-03-24 18:22:25 +07:00
Stian Thorgersen
90c4de27e5
KEYCLOAK-3251 Add product Maven profile
...
KEYCLOAK-3254 Product profile should include RH-SSO theme and change default theme
2017-03-24 07:10:11 +01:00
Bartosz Majsak
210143738e
Merge branch 'master' into oso_provider
2017-03-23 13:45:07 +01:00
Pedro Igor
deae380941
Merge pull request #3964 from pedroigor/KEYCLOAK-4587
...
[KEYCLOAK-4587] - Missing breadcrumb
2017-03-22 13:55:50 -03:00
Marek Posolda
975dfe9489
Merge pull request #3167 from brat000012001/master
...
X509 Certificate user authentication
2017-03-22 08:26:26 +01:00
Thomas Darimont
05a8fffdbf
KEYCLOAK-4614 Fix linkOnly tooltip reference
2017-03-22 00:07:40 +01:00
Pedro Igor
c517565cc5
[KEYCLOAK-4587] - Missing breadcrumb
2017-03-21 16:55:21 -03:00
Peter Nalyvayko
b2f10359c8
KEYCLOAK-4335: x509 client certificate authentication
...
Started on implementing cert thumbprint validation as a part of x509 auth flow. Added a prompt screen to give users a choice to either log in based on the identity extracted from X509 cert or to continue with normal browser login flow authentication; clean up some of the comments
x509 authentication for browser and direct grant flows. Implemented certificate to user mapping based on user attribute
Implemented CRL and OCSP certificate revocation checking and added corresponding configuration settings to set up responderURI (OCSP), a location of a file containing X509CRL entries and switiches to enable/disable revocation checking; reworked the certificate validation; removed superflous logging; changed the certificate authentication prompt page to automatically log in the user after 10 seconds if no response from user is received
Support for loading CRL from LDAP directory; finished the CRL checking using the distribution points in the certificate; updated the instructions how to add X509 authentication to keycloak authentication flows; minor styling changes
Stashing x509 unit test related changes; added the steps to configure mutual SSL in WildFly to the summary document
A minor fix to throw a security exception when unable to check cert revocation status using OCSP; continue working on README
Changes to the formating of the readme
Added a list of features to readme
Fixed a potential bug in X509 cert user authenticator that may cause NPE if the client certificate does not define keyusage or extended key usage extensions
Fixed compile time errors in X509 validators caused by the changes to the user credentials model in upstream master
Removed a superfluous file created when merging x509 and main branches
X509 authentication: removed the PKIX path validation as superflous
Reverted changes to the AbstractAttributeMapper introduced during merging of x509 branch into main
Merge the unit tests from x509 branch
added mockito dependency to services project; changes to the x509 authenticators to expose methods in order to support unit tests; added a default ctor to CertificateValidator class to support unit testing; updated the direct grant and browser x509 authenticators to report consistent status messages; unit tests to validate X509 direct grant and browser authenticators; fixed OCSP validation to throw an exception if the certificate chain contains a single certificate; fixed the CRL revocation validation to only use CRL distribution point validation only if configured
CRL and OSCP mock tests using mock netty server. Changed the certificate validator to better support unit testing.
changes to the mockserver dependency to explicitly exclude xercesImpl that was causing SAMLParsingTest to fail
Added a utility class to build v3 certificates with optional extensions to facilitate X509 unit testing; removed supoerfluous certificate date validity check (undertow should be checking the certificate dates during PKIX path validation anyway)
X509: changes to make configuring the user identity extraction simplier for users - new identity sources to map certificate CN and email (E) attributes from X500 subject and issuer names directly rather than using regular expressions to parse them
X509 fixed a compile error caused by the changes to the user model in master
Integration tests to validate X509 client certificate authentication
Minor tweaks to X509 client auth related integration tests
CRLs to support x509 client cert auth integration tests
X509: reverted the changes to testrealm.json and updated the test to configure the realm at runtime
X509 - changes to the testsuite project configuration to specify a path to a trust store used to test x509 direct grant flow; integration tests to validate x509 authentication in browser and direct grant flows; updated the client certificate to extend its validatity dates; x509 integration tests and authenticators have been refactored to use a common configuration class
X509 separated the browser and direct grant x509 authenction integration tests
x509 updated the authenticator provider test to remove no longer supported cert thumbprint authenticator
x509 removed the dependency on mockito
x509 re-implemented OCSP certificate revocation client used to check revocation status when logging in with x509 certificate to work around the dependency on Sun OCSP implementation; integration tests to verify OCSP revocation requests
index.txt.attr is needed by openssl to run a simple OCSP server
x509: minor grammar fixes
Add OCSP stub responder to integration tests
This commit adds OCSP stub responder needed for the integration tests,
and eliminates the need to run external OCSP responder in order to run
the OCSP in X509OCSPResponderTest.
Replace printStackTrece with logging
This commit replaces call to printStackTrace that will end up going to
the stderr with logging statement of WARN severity.
Remove unused imports
Removed unused imports in
org.keycloak.authentication.authenticators.x509 package.
Parameterized Hashtable variable
Removed unused CertificateFactory variable
Declared serialVersionUID for Serializable class
Removed unused CertificateBuilder class
The CertificateBuilder was not used anywhere in the code, removing it to
prevent technical debt.
Removing unused variable declaration
`response` variable is not used in the test, removed it.
Made sure InputStreams are closed
Even though the InputStreams are memory based, added try-with-resources
to make sure that they are closed.
Removed deprecated usage of URLEncoder
Replaced invocation of deprecated method from URLEncoder with Encode
from Keycloak util package.
Made it more clear how to control OCSP stub responder in the tests
X509 Certificate user authentication: moved the integration unit tests into their own directory to fix a failing travis test job
KEYCLOAK-4335: reduced the logging level; added the instructions how to run X.509 related tests to HOW-TO-RUN.md doc; removed README.md from x509 folder; removed no longer used ocsp profile and fixed the exclusion filter; refactored the x509 base test class that was broken by the recent changes to the integration tests
KEYCLOAK-4335: fixed a few issues after rebasing
2017-03-17 05:24:57 -04:00
Stian Thorgersen
a87ee04024
Bump to 3.1.0.CR1-SNAPSHOT
2017-03-16 14:21:40 +01:00
Stian Thorgersen
feeac69197
Merge pull request #3888 from daklassen/KEYCLOAK-4421
...
KEYCLOAK-4421 Change any http maven urls to https to reduce build-time MITM vulnerability
2017-03-15 09:54:21 +01:00
Thomas Darimont
b782892769
KEYCLOAK-4163 Improve support for e-mail addresses
...
Added support for user friendly email addresses as well as dedicated
reply-to addresses for emails being sent by Keycloak.
Both can be customized via the email settings per realm in
the admin-console.
User friendly email addresses use the format:
"Friendly Name"<email@example.org> and provide way to add a meaning
full name to an e-mail address.
We also allow to specify an optional envelope from bounce address.
If a mail sent to a user could not be delivered the email-provider
will sent a notification to that address.
See: https://en.wikipedia.org/wiki/Bounce_address
Add test for proper email headers in sent messages
2017-03-14 18:22:54 +01:00
Bill Burke
6d51862057
Merge pull request #3897 from anderius/feature/KEYCLOAK-4504-redirect-logout
...
[WIP] Saml broker: Option to specify logout request binding
2017-03-14 11:32:26 -04:00
David Klassen
32d3f760ec
KEYCLOAK-4421: Change http url to https
...
Change any http maven urls to https to reduce build-time MITM vulnerability
2017-03-14 10:18:40 +01:00
Stian Thorgersen
99581748e0
Merge pull request #3921 from gmarziou/fix-french-plural
...
KEYCLOAK-4561 Fix plural error in French translation
2017-03-14 09:32:37 +01:00
Stian Thorgersen
f0ae34d1ad
Merge pull request #3885 from sk8ter/master
...
add Swedish translation for account, email, login
2017-03-14 09:31:36 +01:00
Stan Silvert
e6df617cfc
KEYCLOAK-4535: Needless heading while adding or editing a Role
2017-03-13 21:03:05 -04:00
Pedro Igor
45caea4dbd
[KEYCLOAK-4549] - Scope Permission Form is not showing saved resource
2017-03-10 17:32:55 -03:00
Bill Burke
b618dbd97f
Merge pull request #3926 from mrpardijs/KEYCLOAK-4360-Add-SAML-OneTimeUse-Condition
...
KEYCLOAK-4360: Add OneTimeUse condition to SAMLResponse
2017-03-09 19:09:02 -05:00
Gaël MARZIOU
46c6db1739
Update URL for FreeOTP
...
It was poniting to obsolete location: https://fedorahosted.org/freeotp/
Now pointing to: https://freeotp.github.io/
2017-03-09 16:20:28 +01:00
Mark Pardijs
c78c0b73d3
KEYCLOAK-4360: Add OneTimeUse condition to SAMLResponse
...
Add OneTimeUse Condition to SAMLResponse when configured in client settings
2017-03-09 13:01:05 +01:00
Gael MARZIOU
0fc4cd134f
Fix plural error in French translation
2017-03-08 18:47:06 +01:00
Bill Burke
c6dc59f63e
Merge remote-tracking branch 'upstream/master'
2017-03-03 11:00:32 -05:00
Bill Burke
3bb29e033b
KEYCLOAK-4501, KEYCLOAK-4511, KEYCLOAK-4513
2017-03-03 09:48:52 -05:00
Bartosz Majsak
669b0143af
Adds tooltip for URL and en translation
2017-03-02 20:24:52 +01:00
Bartosz Majsak
1a6bb2fedb
Adds Openshift Identity Provider as part of social brokers
2017-03-02 15:14:57 +01:00
Quentin Caillard
75851ee0b3
administrator Spelling mistake
2017-03-01 12:32:55 +01:00
Marek Posolda
b54d7c37b6
Merge pull request #3890 from daklassen/KEYCLOAK-2994
...
KEYCLOAK-2994: Revise german translations
2017-03-01 12:22:44 +01:00
Anders Båtstrand
8d82390843
KEYCLOAK-4504 New configuration option for SAML Broker:
...
* postBindingLogout: Indicates if POST or redirect should be used for the logout requests.
This applies to both IdP-initiated logout, and Keycloak-initiated logout. If unset (for example when upgrading Keycloak), the setting is initially set to the same as postBindingResponse.
The flag is also set when importing IdP metadata.
2017-02-28 12:08:22 +01:00
Anders Båtstrand
89c6cda2ac
Two new configuration options for the Saml broker:
...
* wantAssertionsSigned: This will toggle the flag in the SP Metadata Descriptor, and validate the signature if and only if "Validate signature" is selected.
* wantAssertionsEncrypted: This will simply require that the assertion is encrypted.
Default behavior is unchanged. The signature validation uses the original XML, and supports therefore an IdP that adds whitespace and line breaks between tags (for example OpenAM).
2017-02-24 15:08:57 +01:00
Mika Andrianarijaona
ceb5a3a04b
Update french translation in admin console
2017-02-23 11:04:55 +03:00
David Klassen
999a3f62ac
KEYCLOAK-2994: Revise german translations
...
Corrected a huge amount of typos. Improved some translations.
2017-02-23 08:45:51 +01:00
Viktor Kostov
2cf25b6c57
add Swedish translation for account, email, login
2017-02-22 11:51:30 +01:00
Stan Silvert
4f78312a98
KEYCLOAK-4463: JS warnings caused by ui-ace while manipulating with
...
mappers
2017-02-21 19:31:25 -05:00
Stan Silvert
3bf9428cc0
KEYCLOAK-4467: Realm name collides with sidebar navigation
2017-02-20 15:43:46 -05:00
Stian Thorgersen
3653d7ed9a
Merge pull request #3762 from sldab/hide-providers
...
KEYCLOAK-4224 Allow hiding identity providers on login page
2017-02-17 12:04:35 +01:00
Stan Silvert
224f93f25d
Merge pull request #3782 from cargosoft/master
...
KEYCLOAK-4270 Custom login protocol doesn't show when creating a client
2017-02-13 07:58:21 -05:00
Bill Burke
75bee51ac1
console remote imported/unlink users
2017-02-09 09:11:48 -05:00
Bill Burke
cf5e2a1d20
unlink/remoteimported
2017-02-08 19:48:22 -05:00
Stian Thorgersen
6f22f88d85
Bump version to 3.0.0.CR1
2017-01-26 06:18:11 +01:00
Stian Thorgersen
07689c9537
KEYCLOAK-4259 Tweak login screen
2017-01-25 08:21:58 +01:00
Stian Thorgersen
cea52a6db9
KEYCLOAK-4259 Add top-margin to container to prevent overlay with logo
2017-01-24 09:35:57 +01:00
Stian Thorgersen
04228791f3
KEYCLOAK-4259 Reverted original padding around logo
2017-01-24 09:27:28 +01:00
Stian Thorgersen
15d0a116ac
Merge pull request #3769 from hmlnarik/KEYCLOAK-4167-Unable-to-validate-access-token-for-OIDC-External-IDP-using-configured-public-key
...
KEYCLOAK-4167 Always use preset key for verification if key ID not set
2017-01-23 13:59:35 +01:00
Dmitry Telegin
5bacd2919d
KEYCLOAK-4270 Custom login protocol doesn't show when creating a client
2017-01-21 01:46:34 +03:00
Stan Silvert
f55d18189c
KEYCLOAK-4259: Login page rendering broken
2017-01-20 16:07:36 -05:00
Stan Silvert
fe8e437e74
Merge pull request #3768 from ssilvert/otp-scrollbar
...
KEYCLOAK-3884: Another small tweak.
2017-01-20 14:22:27 -05:00
Stian Thorgersen
536b88790e
Merge pull request #3757 from mstruk/KEYCLOAK-4150
...
KEYCLOAK-4150 Unresolved variable ${cliane_security-admin-console} in admin web client
2017-01-19 13:55:36 +01:00
Pedro Igor
c7f2a0ffdd
Merge pull request #3766 from pedroigor/KEYCLOAK-4203
...
[KEYCLOAK-4203] - Removing references to Drools
2017-01-18 13:31:23 -02:00
Pedro Igor
c19360c6f2
[KEYCLOAK-4203] - Removing references to Drools
2017-01-18 12:44:30 -02:00
Hynek Mlnarik
df4f1e7129
KEYCLOAK-4167 Always use preset key for verification if key ID not set
2017-01-18 10:29:06 +01:00
mposolda
843b4b470b
KEYCLOAK-2333 LDAP/MSAD password policies are not used when user changes password
2017-01-17 21:06:09 +01:00
Slawomir Dabek
9bb65ba9b7
KEYCLOAK-4224 Allow hiding identity providers on login page
2017-01-17 14:32:59 +01:00
Stan Silvert
2eeb2f52c5
KEYCLOAK-3884: Another small tweak.
2017-01-16 14:24:44 -05:00
Stan Silvert
23c1f513e7
KEYCLOAK-3953: Remove recalculation of time when units change
2017-01-16 09:55:08 -05:00
Marko Strukelj
d68f6bbc42
KEYCLOAK-4150 Unresolved variable ${cliane_security-admin-console} in admin web client
2017-01-13 17:48:21 +01:00
Stan Silvert
c4cce147e2
Merge pull request #3747 from ssilvert/otp-scrollbar
...
KEYCLOAK-3884: OTP login page cutoff under weird sizes
2017-01-12 16:37:43 -05:00
Stan Silvert
3a2927e12e
KEYCLOAK-3884: OTP login page cutoff under weird sizes
2017-01-12 16:02:04 -05:00
Hynek Mlnarik
e11957ecf3
KEYCLOAK-4167 Make OIDC identity provider key ID configurable
2017-01-11 18:24:22 +01:00
Marek Posolda
227900f288
Merge pull request #3731 from mposolda/master
...
KEYCLOAK-4175 Provide a way to set the connect and read timeout for l…
2017-01-10 09:49:18 +01:00
Stian Thorgersen
345e0da76d
Merge pull request #3733 from stianst/KEYCLOAK-4180
...
KEYCLOAK-4180 When you turn on authorization for client Clustering ta…
2017-01-10 09:33:04 +01:00
Stian Thorgersen
ab0a669662
KEYCLOAK-4180 When you turn on authorization for client Clustering tab appears without saving
2017-01-10 06:59:40 +01:00
mposolda
c32620b718
KEYCLOAK-4175 Provide a way to set the connect and read timeout for ldap connections
2017-01-09 21:35:58 +01:00
Stian Thorgersen
dd74b57d13
KEYCLOAK-4165 KEYCLOAK-4014 Add missing sources for ace editor and fix loading of ace libs
2017-01-09 14:59:50 +01:00
Bas Dalenoord
42a8a0eb15
KEYCLOAK-4177: Changed URL to FreeOTP homepage;
2017-01-09 10:30:29 +01:00
Pedro Igor
5bc134ea7b
Merge pull request #3717 from pedroigor/KEYCLOAK-4164
...
[KEYCLOAK-4164] - Creating typed resources always result in error
2017-01-06 17:29:47 -02:00
Stian Thorgersen
fb6a8da863
Merge pull request #3713 from stianst/KEYCLOAK-3952
...
KEYCLOAK-3952
2017-01-06 07:17:27 +01:00
Pedro Igor
72691b2e74
[KEYCLOAK-4164] - Creating typed resources always result in error
2017-01-05 14:32:49 -02:00
Stian Thorgersen
2d1417d72b
KEYCLOAK-3952
...
User Administration: Double step cancel
2017-01-05 08:50:22 +01:00
Stan Silvert
a76c52ef84
KEYCLOAK-4155: User Federation: Page not found when click cancel creating
...
ldap provider
2017-01-04 14:03:39 -05:00
Stian Thorgersen
8a0859fcba
Merge pull request #3700 from stianst/KEYCLOAK-2980
...
KEYCLOAK-2980 Fix admin query for resource path
2017-01-04 07:01:19 +01:00
Stian Thorgersen
b7c98ed433
KEYCLOAK-2980 Fix admin query for resource path
2017-01-03 10:34:21 +01:00
Stian Thorgersen
902332c5ae
Merge pull request #3696 from stianst/KEYCLOAK-4038
...
KEYCLOAK-4038 Get bind credential from component if stored
2017-01-02 15:44:59 +01:00
Stian Thorgersen
08d7211a93
KEYCLOAK-4038 Get bind credential from component if stored
2017-01-02 14:40:12 +01:00
Stian Thorgersen
e805ffd945
Bump version to 2.5.1.Final-SNAPSHOT
2016-12-22 08:22:18 +01:00
Pedro Igor
df7a68b709
[KEYCLOAK-4125] - Fixing when running in a cluster
2016-12-21 20:04:08 -02:00
Stian Thorgersen
e262f8fb63
KEYCLOAK-4120
...
Authz doesn't show in menu for clients
2016-12-20 14:46:56 +01:00
Stian Thorgersen
d365d9d784
Merge pull request #3649 from sldab/bearer-client-credentials
...
KEYCLOAK-4086 Client credentials missing in bearer-only JSON config
2016-12-20 12:32:03 +01:00
Stian Thorgersen
f6323d94ec
Merge pull request #3676 from stianst/KEYCLOAK-4109
...
KEYCLOAK-4109 Ability to disable impersonation
2016-12-20 09:35:03 +01:00
Stian Thorgersen
eb7ad07e31
KEYCLOAK-4109 Ability to disable impersonation
2016-12-20 08:46:21 +01:00
Pedro Igor
40591cff25
Merge pull request #3662 from pedroigor/KEYCLOAK-4034
...
[KEYCLOAK-4034] - Improvements to UI, performance and some code cleanup
2016-12-19 16:49:10 -02:00
Pedro Igor
5cf5168770
[KEYCLOAK-4034] - Improvements to UI, performance and some code cleanup
2016-12-19 16:48:16 -02:00
Slawomir Dabek
16fb1e2078
KEYCLOAK-4086 Client credentials missing in bearer-only Keycloak OIDC JSON
2016-12-19 16:55:19 +01:00
Marek Posolda
c6363aa146
Merge pull request #3630 from sldab/duplicate-email-support
...
KEYCLOAK-4059 Support for duplicate emails
2016-12-19 15:37:18 +01:00
Pedro Igor
c9c9f05e29
[KEYCLOAK-4034] - Improvements to UI, performance and some code cleanup
2016-12-19 11:22:37 -02:00
Slawomir Dabek
93cec9b3ee
KEYCLOAK-4059 Support for duplicate emails
2016-12-19 10:55:12 +01:00
Stian Thorgersen
f29bb7d501
KEYCLOAK-4092 key provider for HMAC signatures
2016-12-19 10:50:43 +01:00
Bill Burke
7b115b4b44
Merge pull request #3656 from patriot1burke/master
...
KEYCLOAK-4041
2016-12-15 16:07:55 -05:00
Bill Burke
4d64f0e160
KEYCLOAK-4041
2016-12-15 16:06:06 -05:00
Hynek Mlnarik
5006fe2292
KEYCLOAK-4062 - GUI changes for KeyName format + few tests
2016-12-12 22:29:01 +01:00
Pedro Igor
588e1711dd
Merge pull request #3597 from jlpettersson/KEYCLOAK-4018
...
KEYCLOAK-4018 Client-Based Policy
2016-12-09 17:32:19 -02:00
Bill Burke
d3e3990d77
Merge pull request #3629 from patriot1burke/master
...
KEYCLOAK-2806
2016-12-08 17:36:28 -05:00
Bill Burke
5f07fa8057
KEYCLOAK-2806
2016-12-08 16:28:22 -05:00
mposolda
7d8b392fd9
KEYCLOAK-4049 Admin Console: User Federation: Client ids not listed in role-ldap-mapper
2016-12-08 13:46:19 +01:00
Bill Burke
75e2b404c8
Merge pull request #3618 from abstractj/KEYCLOAK-3685
...
[KEYCLOAK-3685]: Username not updated when "Email as username" is enabled
2016-12-06 22:06:55 -05:00
Bill Burke
a0b54ebedc
KEYCLOAK-2654
2016-12-06 17:05:34 -05:00
Bruno Oliveira
ddb201db6c
[KEYCLOAK-3685]: Username not updated when "Email as username" is enabled
2016-12-06 19:46:31 -02:00
Stan Silvert
f3dbacabf8
KEYCLOAK-4039: Unexpected behavior when switching client access type.
2016-12-05 14:16:24 -05:00
Bill Burke
6cd6edce64
Merge pull request #3588 from abstractj/KEYCLOAK-3847
...
[KEYCLOAK-2568]
2016-12-03 13:37:06 -05:00
Stan Silvert
aed54439c2
KEYCLOAK-4022: Remove unneeded line of code.
2016-12-02 18:31:44 -05:00
Stan Silvert
c8c6e36fd9
KEYCLOAK-4022: Server error when click Service Account Roles
2016-12-02 18:17:15 -05:00
Jonas Pettersson
b56e23eded
KEYCLOAK-4018 Client-Based Policy
2016-12-02 16:48:47 +01:00
Bruno Oliveira
5c2bf7c822
[KEYCLOAK-2568]
2016-12-02 13:14:05 -02:00
Stian Thorgersen
8842d88058
Merge pull request #3562 from ssilvert/overwrite-client-role-fails
...
KEYCLOAK-3042: NPE when trying to overwrite client role
2016-12-02 14:06:27 +01:00
Stian Thorgersen
6fdc470b0b
KEYCLOAK-4014 Add source for all js libs
2016-12-02 08:58:38 +01:00
Stan Silvert
fd4c5a90ed
KEYCLOAK-4012: Missing idp name from breadcrumb navigation
2016-12-01 20:18:43 -05:00
Stian Thorgersen
b771b84f56
Bump to 2.5.0.Final-SNAPSHOT
2016-11-30 15:44:51 +01:00
mposolda
d0a96d463d
KEYCLOAK-3831 Improve AddressMapper configurability. Support for 'formatted' subclaim
2016-11-30 13:04:45 +01:00
mposolda
f0874bf585
KEYCLOAK-3998 JS error in admin console when creating broker mapper
2016-11-30 09:29:42 +01:00
Bill Burke
b33afcd47c
KEYCLOAK-3903 KEYCLOAK-3960
2016-11-29 16:43:06 -05:00
Stan Silvert
83063a5740
KEYCLOAK-3042: NPE when trying to overwrite client role
2016-11-29 15:43:48 -05:00
Stan Silvert
725f42e185
Merge pull request #3533 from ssilvert/federation-blank-slate-showing
...
KEYCLOAK-3949: User Federation "welcome" screen is always shown for a
2016-11-28 11:06:59 -05:00
Stian Thorgersen
cb4f856ab6
Merge pull request #3535 from wadahiro/update-japanese-translation
...
KEYCLOAK-3957 Update Japanese translation
2016-11-28 14:50:01 +01:00
mposolda
7c6032cc84
KEYCLOAK-3825 Ability to expire publicKeys cache. Migrated OIDCBrokerWithSignatureTest to new testsuite
2016-11-25 17:45:37 +01:00
Stian Thorgersen
6ec82865d3
Bump version to 2.4.1.Final-SNAPSHOT
2016-11-22 14:56:21 +01:00
Hiroyuki Wada
0e93603aee
KEYCLOAK-3957 Update Japanese translation
2016-11-22 20:32:16 +09:00
Stan Silvert
2cca3bf570
KEYCLOAK-3949: User Federation "welcome" screen is always shown for a
...
while even if some providers are there.
2016-11-21 14:33:54 -05:00
Stan Silvert
33cd261d83
Merge pull request #3532 from ssilvert/enter-key
...
KEYCLOAK-3948: Unexpected behavior when pressing Enter with some forms
2016-11-21 14:23:21 -05:00
Stan Silvert
ee18d062ab
KEYCLOAK-3948: Remove console.info() statements.
2016-11-21 11:48:07 -05:00
Stan Silvert
695213dd31
KEYCLOAK-3948: Unexpected behavior when pressing Enter with some forms
2016-11-21 11:44:58 -05:00
mposolda
27e5d9672a
KEYCLOAK-3944 Imported legacy LDAP Federation provider doesn't have default mappers available
2016-11-21 16:17:49 +01:00
mposolda
d8c8afe070
KEYCLOAK-3943 Admin console issues when updating LDAP Storage provider
2016-11-21 14:22:45 +01:00
Ramunas K
bfec70481b
translated admin-messages_lt
2016-11-19 23:29:49 +02:00
mposolda
da52a5c9cf
KEYCLOAK-3930 KEYCLOAK-3931 LDAP and Mongo fixes
2016-11-18 20:02:02 +01:00
mposolda
747738c0fc
KEYCLOAK-3928 KEYCLOAK-3880 Fix UserFederation providers list in admin console
2016-11-18 11:57:57 +01:00
Pedro Igor Craveiro e Silva
cc9131441e
[KEYCLOAK-3674] - Review policies dropbox options
2016-11-17 20:43:32 -02:00
Stan Silvert
9512180406
Merge pull request #3502 from ssilvert/hide-role-selector
...
KEYCLOAK-3905: Role selector sometimes displayed when client full scope
2016-11-15 10:24:01 -05:00
Stan Silvert
b920c7b2c4
KEYCLOAK-3905: Role selector sometimes displayed when client full scope
...
enabled
2016-11-14 15:11:22 -05:00
Bill Burke
cc0eb47814
merge
2016-11-14 15:09:41 -05:00
Bill Burke
94076a3b24
admin console ui
2016-11-09 17:34:07 -05:00
Bill Burke
4880c0443c
ldap port admin console
2016-11-08 12:30:20 -05:00
Stian Thorgersen
292777259e
Merge pull request #3472 from hmlnarik/KEYCLOAK-1881-saml-key-rotation
...
Keycloak 1881 - SAML key/cert rotation for IdP
2016-11-08 07:56:25 +01:00
Bill Burke
14dc0ff92f
Merge remote-tracking branch 'upstream/master'
2016-11-05 20:05:01 -04:00
Bill Burke
c75dcb90c2
ldap port
2016-11-04 21:25:47 -04:00
Hynek Mlnarik
4f9e35c0a1
KEYCLOAK-1881 Support for multiple certificates in broker (hardcoded at the moment)
2016-11-04 21:53:43 +01:00
Hynek Mlnarik
67bb9aef3d
KEYCLOAK-1881 Add switch to enable/disable generation of <Extensions>
...
Some SP clients might be confused by using a standard SAML protocol tag
<Extensions> which is used for signed REDIRECT binding messages to
specify signing key ID. To enable the interoperability, generation of
the tag is disabled by default and can be enabled for individual
clients.
2016-11-04 21:53:43 +01:00
Stan Silvert
66698f60d4
KEYCLOAK-3816: Tweak CSS for 1280 x 720 display
2016-11-04 15:32:19 -04:00
Stan Silvert
ae2a1e929f
KEYCLOAK-3816: Broken OTP setup with smaller resolutions
2016-11-02 13:53:15 -04:00
Stan Silvert
35b0872ed9
Merge pull request #3447 from ssilvert/enter-doesnt-submit
...
KEYCLOAK-3281: Pressing Enter in Identity Provider form causes error
2016-10-28 13:22:20 -04:00
Stan Silvert
89348af59e
KEYCLOAK-3281: Pressing Enter in Identity Provider form causes error
2016-10-28 12:06:53 -04:00
Bill Burke
ccaac40863
Merge pull request #3437 from patriot1burke/master
...
disable credential type REST and admin ui
2016-10-28 11:33:16 -04:00
Stian Thorgersen
479295cfd2
KEYCLOAK-3225
...
Modifying user's Identity Provider Links requires manage-realm client role
2016-10-28 10:25:41 +02:00
Bill Burke
4cea1919f6
Merge remote-tracking branch 'upstream/master'
2016-10-27 16:17:12 -04:00
Bill Burke
91da6a47d7
disable cred types ui
2016-10-27 16:17:02 -04:00
mposolda
21e423ad5f
KEYCLOAK-3800 Weird behavior when adding Trusted Hosts as Client Registration Policy
2016-10-27 18:56:05 +02:00
Bill Burke
69dddfa73a
Merge pull request #3428 from patriot1burke/master
...
storage link on user detail
2016-10-26 14:58:33 -04:00
Stan Silvert
3b8972e027
Merge pull request #3423 from ssilvert/otp-low-res
...
KEYCLOAK-3816: Broken OTP setup with smaller resolutions
2016-10-26 13:58:29 -04:00
Stan Silvert
50b181e804
Merge pull request #3427 from ssilvert/highlight-menu
...
KEYCLOAK-3795: Hightlight not working in nav sidebar
2016-10-26 09:29:34 -04:00
Stian Thorgersen
fbe1fd8f98
Merge pull request #3429 from stianst/KEY-FIXES
...
Various fixes for key providers
2016-10-26 11:38:33 +02:00
Stian Thorgersen
c0959fc562
KEYCLOAK-3808 Fix enable and active switches on default provider
2016-10-26 09:49:18 +02:00
Stian Thorgersen
6a86bb8ebe
KEYCLOAK-3809 Add required to display name for key provider
2016-10-26 09:38:57 +02:00
Stian Thorgersen
76e2598c5c
KEYCLOAK-3805 Use ng-if instead of ng-show in component-config template
2016-10-26 09:30:00 +02:00
Stian Thorgersen
bf5e724f00
KEYCLOAK-3815 Prevent resubmission of form when creating key provider
2016-10-26 09:20:37 +02:00
Stian Thorgersen
112538a220
Merge pull request #3425 from mstruk/KEYCLOAK-2366
...
KEYCLOAK-2366 Unable to download key in Safari
2016-10-26 09:04:31 +02:00
Stian Thorgersen
93f9def3e8
Merge pull request #3422 from stianst/KEYCLOAK-3811
...
KEYCLOAK-3811 User federation screen is missing dropdown with provide…
2016-10-26 08:48:21 +02:00
Bill Burke
8a7703b0ef
fix link
2016-10-25 20:41:18 -04:00
Bill Burke
3129e392b0
storage link on user detail
2016-10-25 16:50:34 -04:00
Stan Silvert
0d0d614b99
KEYCLOAK-3795: Hightlight not working in nav sidebar
2016-10-25 16:32:26 -04:00
Bill Burke
f8a78d5565
finish cache policy
2016-10-25 16:13:22 -04:00
Bill Burke
68e853b4bd
Merge remote-tracking branch 'upstream/master'
2016-10-25 13:40:32 -04:00
Bill Burke
b67cb0e97a
Merge remote-tracking branch 'upstream/master'
2016-10-25 11:44:22 -04:00
Marko Strukelj
1b2f6b763a
KEYCLOAK-2366 Unable to download key in Safari
...
- Updated FileSaver.js to version 1.3.3
2016-10-25 16:38:26 +02:00
Stan Silvert
3c237760b6
KEYCLOAK-3816: Broken OTP setup with smaller resolutions
2016-10-25 08:38:29 -04:00
Stian Thorgersen
28f31ce57f
KEYCLOAK-3811 User federation screen is missing dropdown with providers in RH-SSO theme
2016-10-25 12:44:02 +02:00
Stian Thorgersen
8c42167302
KEYCLOAK-3781 Don't allow deleting the last key provider
2016-10-25 08:57:16 +02:00
Bill Burke
3e28ac1e46
user spi cache policy
2016-10-24 15:36:37 -04:00
Stan Silvert
dcaac76b4b
Merge pull request #3414 from ssilvert/cluster-node
...
KEYCLOAK-2206: Hide last registration field when adding new cluster node
2016-10-21 16:57:09 -04:00
Stan Silvert
d741349830
KEYCLOAK-2206: Hide last registration field when adding new cluster node
...
for client.
2016-10-21 13:06:03 -04:00
Stian Thorgersen
4d47f758fc
Merge pull request #3405 from stianst/master
...
Bump version
2016-10-21 10:11:59 +02:00
Stian Thorgersen
c615674cbb
Bump version
2016-10-21 07:03:15 +02:00
mposolda
072ccb5c61
KEYCLOAK-3770 OIDC registration with id_token grant type should set publicClient flag to true
2016-10-20 14:10:53 +02:00
Bill Burke
cdf7dd3a6c
Merge pull request #3372 from patriot1burke/master
...
onCreate for Components
2016-10-19 16:21:20 -04:00
Marek Posolda
2acea2b2ee
Merge pull request #3370 from mposolda/master
...
Client registration policies - polishing
2016-10-19 20:06:29 +02:00
Bill Burke
2391a00aa5
Merge remote-tracking branch 'upstream/master'
2016-10-19 14:01:35 -04:00
Bill Burke
934ea1c33c
KEYCLOAK-3562
2016-10-19 14:01:21 -04:00
Stian Thorgersen
681cb39862
Merge pull request #3375 from stianst/KEYCLOAK-3754
...
KEYCLOAK-3754
2016-10-19 19:27:01 +02:00
mposolda
964cd50f1d
KEYCLOAK-3666 Added client reg policies for maxClients and clientDisabled
2016-10-19 17:45:23 +02:00
Stian Thorgersen
9b5277d83d
KEYCLOAK-3754
...
Identity providers screen is missing dropdown with providers in RH-SSO theme
2016-10-19 17:24:27 +02:00
Stan Silvert
3c8aaaa61f
Merge pull request #3353 from ssilvert/confirm-flow-delete
...
KEYCLOAK-2918: Confirm before custom auth flow deletion
2016-10-19 07:55:51 -04:00
Stian Thorgersen
36433bb8ff
Merge pull request #3310 from ramunask/lt-translations-for-2.3
...
KEYCLOAK-3695 Lithuanian locale update for 2.3 version
2016-10-19 06:31:46 +02:00
Stan Silvert
5cef34d61a
KEYCLOAK-2918: Confirm before custom auth flow deletion
2016-10-18 13:44:13 -04:00
Stian Thorgersen
3c08153e33
Merge pull request #3348 from stianst/KEYCLOAK-3358
...
KEYCLOAK-3358
2016-10-18 19:39:32 +02:00
Stian Thorgersen
1583937295
KEYCLOAK-3358
...
Welcome page hardcoded to incorrect URL & references incorrect script
2016-10-18 16:07:44 +02:00
mposolda
a7287aad36
KEYCLOAK-3499 More fixes for IncludeInUserInfo. Fixing tests and migration
2016-10-18 13:09:30 +02:00
Stian Thorgersen
dfcd598912
Merge pull request #3341 from stianst/KEYCLOAK-3727
...
KEYCLOAK-3727 Fix link on logo in admin console
2016-10-18 09:49:55 +02:00
Marek Posolda
2fd680092a
Merge pull request #3336 from mposolda/master
...
KEYCLOAK-3719 Add 'options' to ProviderConfigProperty and use it for …
2016-10-18 08:33:26 +02:00
Stian Thorgersen
728e68ede5
KEYCLOAK-3727 Fix link on logo in admin console
2016-10-18 07:43:52 +02:00
Stian Thorgersen
f66eb8b1ef
KEYCLOAK-3266
...
password policy NotUsername breaks new user registration
2016-10-17 21:38:14 +02:00
mposolda
00879b39b7
KEYCLOAK-3719 Add 'options' to ProviderConfigProperty and use it for 'List' type instead of defaultValue
2016-10-17 21:34:21 +02:00
Stian Thorgersen
af508232dc
Merge pull request #3328 from hmlnarik/KEYCLOAK-3574
...
KEYCLOAK-3574 Add missing check for changes in RealmPasswordPolicyCtrl
2016-10-17 18:51:34 +02:00
Stian Thorgersen
cefb1742a1
Merge pull request #3331 from stianst/KEYCLOAK-3665
...
KEYCLOAK-3665 Remove theme module and make built-in theme resources r…
2016-10-17 18:48:09 +02:00
Stian Thorgersen
e61191edb5
KEYCLOAK-3570 Reduce the size of themes
2016-10-17 14:47:55 +02:00
Geir Ole Hiåsen Stevning
95f62c6aeb
KEYCLOAK-3626 - CreatedDate and lastUpdatedDate on user consent
2016-10-17 13:53:12 +02:00
Stan Silvert
8ffb1ecc7d
Merge pull request #3324 from ssilvert/remember-selected-flow
...
KEYCLOAK-2295: Flow selection forgotten when clicking to a sibling tab.
2016-10-17 07:30:51 -04:00
Stan Silvert
a9ce6b9f81
Merge pull request #3321 from ssilvert/pagination
...
KEYCLOAK-3507: Pagination for clients and roles in admin console
2016-10-17 07:26:04 -04:00
Hynek Mlnarik
c2684a2b36
KEYCLOAK-3574 Add missing check for changes in RealmPasswordPolicyCtrl
2016-10-17 12:37:46 +02:00
Stan Silvert
8a7983bf5a
KEYCLOAK-2295: Flow selection forgotten when clicking to a sibling tab.
2016-10-14 15:11:50 -04:00
mposolda
18e0c0277f
KEYCLOAK-3666 Dynamic client registration policies
2016-10-14 20:20:40 +02:00
Stan Silvert
7a6324e02c
KEYCLOAK-3507: Pagination for clients and roles in admin console
2016-10-14 08:35:46 -04:00
Bill Burke
8c8a39c833
sync and import
2016-10-13 20:49:02 -04:00
Bill Burke
0938390654
sync and import
2016-10-13 20:38:49 -04:00
GUERIN Thierry
e344dddf4b
French translation for firstname label
2016-10-13 16:15:20 +02:00
Stian Thorgersen
d2cae0f8c3
KEYCLOAK-905
...
Realm key rotation for OIDC
2016-10-13 11:19:52 +02:00
Ramunas Kraujutis
b6e0cb374d
Lithuanian locale update for 2.3 version
2016-10-12 14:01:30 +03:00
Mohit Suman
0e33e4035f
Pagination Directive for clients and roles in admin console
2016-10-10 14:57:39 -04:00
Mohit Suman
c4f0053dd9
add pagination custom css
2016-10-10 14:57:26 -04:00
Stan Silvert
06dcf99b42
KEYCLOAK-3679: Add new flow, default (browser) flow always shown.
2016-10-07 14:32:23 -04:00
Stan Silvert
68ca1849bf
KEYCLOAK-3673: Blank items in IDP's Post Login Flow selector
2016-10-06 17:43:13 -04:00
Stan Silvert
36aa3da3d0
Merge pull request #3288 from ssilvert/sort-role-mappings
...
KEYCLOAK-3649: Sort role lists in Role Mappings screen.
2016-10-04 20:04:13 -04:00
Stan Silvert
d653437830
KEYCLOAK-3649: Sort role lists in Role Mappings screen.
2016-10-04 17:17:03 -04:00
Stan Silvert
b5a1b0bc50
KEYCLOAK-3650: Empty state for User Federation
2016-10-04 15:10:13 -04:00
Stan Silvert
9b10110dcb
KEYCLOAK-3633: Don't search on initial page load.
2016-10-03 15:02:11 -04:00
Stan Silvert
ab8803a5d6
KEYCLOAK-3633: Unable to delete multiple users without re-entering search.
2016-10-03 14:42:53 -04:00
Bill Burke
d4c3fae546
merge conflicts
2016-09-30 19:19:12 -04:00
mposolda
f9a0abcfc4
KEYCLOAK-3493 KEYCLOAK-3532 Added KeyStorageProvider. Support key rotation for OIDC clients and identity providers with JWKS url.
2016-09-30 21:28:23 +02:00
Stian Thorgersen
5d34b7e682
Merge pull request #3189 from thomasdarimont/issue/KEYCLOAK-3491-revise-scripting-support
...
KEYCLOAK-3491 Revise Scripting Support
2016-09-29 10:12:15 +02:00
Bill Burke
8967ca4066
refactor mongo entities, optimize imports
2016-09-28 15:25:39 -04:00
Stian Thorgersen
34f62eb31d
Fixes to [KEYCLOAK-2438] PR
2016-09-28 10:25:37 +02:00
Bruno Oliveira
98d2fe15e8
[KEYCLOAK-2438] - Add display name to social login buttons
...
[KEYCLOAK-3291] - Names of social identity providers are wrongly capitalized (eg GitHub vs Github)
2016-09-26 13:36:28 -03:00
Bill Burke
ecc104719d
bump pom version
2016-09-26 11:01:18 -04:00
Stian Thorgersen
033d1f564a
KEYCLOAK-2756
...
Renaming a realm breaks down the Clients
2016-09-26 10:11:28 +02:00
mposolda
04f05c0cd1
KEYCLOAK-3422 Pairwise subjects : few fixes and bit of refactoring
2016-09-23 15:29:13 +02:00
Thomas Darimont
8e113384aa
KEYCLOAK-3491 Revise Scripting Support
...
Refactored the scripting infrastructure and added documentation.
Added tests and an authenticator template in JavaScript for a quickstart.
Increased height of ace code editor to 600px to avoid scrolling.
2016-09-20 14:33:39 +02:00
Stian Thorgersen
992268a8e6
KEYCLOAK-3579 Add ability to define profiles
2016-09-20 08:41:23 +02:00
Marek Posolda
5afe93552a
Merge pull request #3231 from TeliaSoneraNorge/pr/KEYCLOAK-3422
...
KEYCLOAK-3422 support pairwise subject identifier in oidc
2016-09-14 21:51:48 +02:00
Pedro Igor
eb80d59cd8
[KEYCLOAK-3534] - Fixing the logic to display the authz tab.
2016-09-13 16:16:01 -03:00
Martin Hardselius
04d03452bd
KEYCLOAK-3422 support pairwise subject identifier in oidc
2016-09-13 09:18:45 +02:00
Pedro Igor
44f57b8273
[KEYCLOAK-3446] - Some minor changes
2016-09-09 17:48:32 -03:00
filipelautert
5eb36f4e0f
[KEYCLOAK-3446] Add pt_BR localization for admin screens ( #3173 )
...
* Add client.name as a second parameter to the title expressions in login template
* Fixing tooltip.
* pt_BR localization for admin screens.
* Reverting login.ftl
* Added all tooltip messages - even the ones not translated.
Translated around 150 messages todas.
* More translations.
* Fixing wrong edit.
2016-09-09 16:34:59 -03:00
Pedro Igor
7af16fc747
[KEYCLOAK-3534] - Authorization tab appears too soon in admin console
2016-09-09 01:03:09 -03:00
Stian Thorgersen
71b648a9b6
Merge pull request #3183 from mohitsuman/KEYCLOAK-3502
...
Keycloak 3502 - Implement "Empty State" for Identity Providers in Admin Console
2016-09-08 08:53:06 +02:00
Stian Thorgersen
ab7bb21991
Merge pull request #3160 from ramunask/feature-lithuanian-locale
...
KEYCLOAK-3452 add Lithuanian localization
2016-09-08 08:44:45 +02:00
Stian Thorgersen
7c292b1213
KEYCLOAK-3342 Add Identity Provider authenticator
2016-09-08 07:20:35 +02:00
Mohit Suman
bdbc4e1f6d
add margin and update the description text
2016-09-06 19:34:07 +05:30
Ramūnas Kraujutis
ca6d1f3c48
LT locale improvements
2016-09-06 14:58:09 +03:00
Ramūnas Kraujutis
c5a149a892
Merge remote-tracking branch 'upstream/master' into feature-lithuanian-locale
2016-09-06 14:50:07 +03:00
Stian Thorgersen
b33648cc29
Merge pull request #3191 from greg0ire/patch-1
...
Remove duplicate untranslated word
2016-09-06 13:42:32 +02:00
Stian Thorgersen
4a583712b8
Merge pull request #3182 from mohitsuman/KEYCLOAK-2706
...
Fixed dropdown menu in navigation bar in small screens
2016-09-06 13:16:38 +02:00
Ramūnas Kraujutis
05813832fc
add newly added translations to Lithuanian locale files
2016-09-06 10:53:23 +03:00
Ramūnas Kraujutis
e67f8c7a61
Merge branch 'master-upstream' into feature-lithuanian-locale
...
# Conflicts:
# themes/src/main/resources/theme/base/account/messages/messages_en.properties
# themes/src/main/resources/theme/base/account/theme.properties
# themes/src/main/resources/theme/base/admin/theme.properties
# themes/src/main/resources/theme/base/email/theme.properties
# themes/src/main/resources/theme/base/login/theme.properties
2016-09-06 10:51:01 +03:00
Grégoire Paris
c867fcf9e7
Remove duplicate untranslated word
2016-09-05 17:12:21 +02:00
Stian Thorgersen
fc6b7ea8ee
Enabled Norwegian translation
2016-09-05 09:45:44 +02:00
Stian Thorgersen
0e1edb3d7a
Merge pull request #3170 from TeliaSoneraNorge/issue/KEYCLOAK-3487-add-norwegian-localization
...
Add Norwegian localization
2016-09-05 09:42:44 +02:00
Stian Thorgersen
b1a233e41f
Merge branch 'feature-fix-time-selector' of https://github.com/ramunask/keycloak into ramunask-feature-fix-time-selector
2016-09-05 09:32:11 +02:00
Stian Thorgersen
4d6e656b02
Merge pull request #3150 from stoffus/bug-fix-in-reset-password-tpl
...
KEYCLOAK-3441 Respect registrationEmailAsUsername in reset-password template
2016-09-05 09:10:49 +02:00
Stian Thorgersen
3354e7c98e
Merge pull request #3148 from wadahiro/KEYCLOAK-3435
...
KEYCLOAK-3435 Fix some minor issues in the Admin Console UI
2016-09-05 09:09:30 +02:00
Ramunas Kraujutis
05fe17be4f
merge latest English messages
2016-09-04 22:20:30 +03:00
Ramunas Kraujutis
2e9f14dfd8
Merge branch 'master-upstream' into feature-lithuanian-locale
...
# Conflicts:
# themes/src/main/resources/theme/base/account/messages/messages_en.properties
# themes/src/main/resources/theme/base/account/theme.properties
# themes/src/main/resources/theme/base/admin/theme.properties
# themes/src/main/resources/theme/base/email/theme.properties
# themes/src/main/resources/theme/base/login/theme.properties
2016-09-04 22:20:03 +03:00
mposolda
a24a43c4be
KEYCLOAK-3349 Support for 'request' and 'request_uri' parameters
2016-09-02 20:20:38 +02:00
Mohit Suman
b17bd9e660
Fixed dropdown menu in navigation bar in small screens
2016-09-02 01:37:10 +05:30
Mohit Suman
d11efa363c
Dropdown alignment with the empty state
2016-09-01 16:02:34 +05:30
Mohit Suman
8f0afb2551
Add empty state for Identitiy Provider in admin console
2016-09-01 15:36:17 +05:30
Marek Posolda
599c69a2a3
Merge pull request #3177 from vmuzikar/KEYCLOAK-3421
...
KEYCLOAK-3421 Validation for URI fragments in redirect_uri
2016-08-31 19:39:28 +02:00
Pedro Igor
9daced953e
Merge pull request #3157 from ramunask/feature-fix-en-translation
...
KEYCLOAK-3463 fixed translation for authz-policy-decision-strategy.tooltip
2016-08-31 09:18:31 -03:00
Vaclav Muzikar
1b085d3e13
KEYCLOAK-3421 Validation for URI fragments in redirect_uri
2016-08-31 13:07:33 +02:00
Pedro Igor
16bd2fb8f8
Merge pull request #3175 from pedroigor/KEYCLOAK-3337
...
[KEYCLOAK-3337] - Support more specific date/time periods with the Time policy provider
2016-08-30 18:16:09 -03:00
Pedro Igor
73bcfba5f3
[KEYCLOAK-3337] - Support more specific date/time periods with the Time policy provider
2016-08-30 16:32:00 -03:00
mposolda
02f28a7e8e
KEYCLOAK-3416 Add support for signed Userinfo requests
2016-08-30 20:21:04 +02:00
mposolda
a7f9a6e095
KEYCLOAK-3424 Support for import from public key
2016-08-29 14:43:29 +02:00
Caroline Olsen
539d9863aa
Add Norwegian localization
...
KEYCLOAK-3487
2016-08-29 11:01:50 +02:00
Stian Thorgersen
2a29f2a9c6
Merge pull request #3151 from ssilvert/dmr-server-config
...
KEYCLOAK-3196: Use WildFly management model for server configuration.
2016-08-26 13:44:45 +02:00
Stian Thorgersen
4c2cca4672
Merge pull request #3118 from wadahiro/issue/KEYCLOAK-3397-add-japanese-localization
...
KEYCLOAK-3397 Add Japanese localization
2016-08-26 11:38:03 +02:00
Hiroyuki Wada
53557d9cfd
KEYCLOAK-3397 Fix Japanese translation
2016-08-26 10:46:45 +09:00
Stan Silvert
3493aa4ab7
KEYCLOAK-3196: Use WildFly management model for server configuration.
2016-08-23 11:26:56 -04:00
Ramunas Kraujutis
352602da39
change lt locale position to be ordered alphabetically
2016-08-22 19:12:03 +03:00
Ramunas Kraujutis
c333d1eaa9
change lt locale position to be ordered alphabetically
2016-08-22 19:10:20 +03:00
Ramunas Kraujutis
ee66cb51da
adding Lithuanian translation
2016-08-21 16:14:22 +03:00
Ramunas Kraujutis
93d65fa895
fix select options and add values to fix issues when non-English locale is used with translated values
2016-08-21 16:09:18 +03:00
Ramunas Kraujutis
6aafde7819
fixed translation for authz-policy-decision-strategy.tooltip changing "policy" to "permission"
2016-08-21 16:04:51 +03:00
Pedro Igor
fa1fb3a3a9
Merge pull request #3152 from pedroigor/KEYCLOAK-3377
...
[KEYCLOAK-3377] - Add pagination to authorization UI
2016-08-18 19:43:34 -03:00
Bill Burke
6592014707
Update users.js
2016-08-18 13:13:08 -04:00
Pedro Igor
4cd0a8e894
[KEYCLOAK-3377] - Add pagination to authorization UI
2016-08-18 13:29:54 -03:00
Christopher Svensson
d20d5ce2d7
Bug fix: Respect registrationEmailAsUsername in reset-password template.
2016-08-18 10:24:37 +02:00
Hiroyuki Wada
b34acd4cc2
KEYCLOAK-3397 Add Japanese localization
2016-08-16 20:44:47 +09:00
Hiroyuki Wada
85ac784fd0
KEYCLOAK-3435 Fix some minor issues in the Admin Console UI
2016-08-16 20:34:48 +09:00
mposolda
2cba13db9c
KEYCLOAK-3424 Possibility to import JWK key through admin console
2016-08-12 15:51:14 +02:00
mposolda
0520d465c1
KEYCLOAK-3414 Support for client registration from trusted hosts
2016-08-11 15:55:32 +02:00
mposolda
d52e043322
Set version to 2.2.0-SNAPSHOT
2016-08-10 08:57:18 +02:00
Marek Posolda
6c8d55d534
Merge pull request #3125 from thomasdarimont/issue/KEYCLOAK-3391-hide-service-account-roles-if-service-accounts-disabled
...
KEYCLOAK-3391 Better control over service account roles tab visibility
2016-08-10 08:16:27 +02:00
Marek Posolda
26bc07b2c4
Merge pull request #3126 from pedroigor/KEYCLOAK-3398
...
[KEYCLOAK-3398] - Review input fields on AuthZ UI to fetch data on demand
2016-08-10 06:50:51 +02:00
Pedro Igor
70eb27ec83
[KEYCLOAK-3398] - Review input fields on AuthZ UI to fetch data on demand
2016-08-09 21:56:29 -03:00
Thomas Darimont
96b729886f
KEYCLOAK-3391 Better control of service account roles tab visibility
...
Previously the service account roles remain visible when changing
the client type from confidential to public or bearer only.
We now only show the service account roles tab iif:
- service accounts are enabled
- client access type is set to confidential
2016-08-10 00:44:14 +02:00
Bill Burke
d14de43ac7
merge User Federation/Storage menu
2016-08-08 16:02:06 -04:00
Thomas Darimont
586f6eeece
KEYCLOAK-3142 - Capture ResourceType that triggers an AdminEvent
...
Introduced new ResourceType enum for AdminEvents which lists
the current supported ResourceTypes for which AdminEvents
can be fired.
Previously it was difficult for custom EventListeners to figure
out which ResourceType triggered an AdminEvent in order
to handle it appropriately, effectively forcing users to parse
the representation.
Having dedicated resource types as a marker on an AdminEvent helps
to ease custom EventListener code.
We now also allow filtering of admin events by ResourceType in the
admin-console.
Signed-off-by: Thomas Darimont <thomas.darimont@gmail.com>
2016-08-04 11:30:02 +02:00
Bill Burke
f91907c8f9
Merge pull request #3107 from thomasdarimont/issue/KEYCLOAK-3392-honor-web-context-for-odic-endpoint-link
...
KEYCLOAK-3392 Use authUrl prefix for OIDC Configuration link
2016-08-03 21:34:00 -04:00
Bill Burke
9e0667bc11
Merge pull request #3080 from trajakovic/issue/editAccountHtmlTtile
...
Fixing typo in account resource(s) bundle
2016-08-03 21:31:44 -04:00
Bill Burke
70722d0d3d
user storage provider jpa example
2016-08-03 19:16:11 -04:00
Thomas Darimont
57a96fa6aa
KEYCLOAK-3392 Use authUrl prefix for OIDC Configuration link
...
We now use the {{authUrl}} prefix for the OIDC configuration link
in the admin-console to honor different web-context paths.
Previously when a different web-context than /auth was configured
the generated link pointed to the wrong location.
Signed-off-by: Thomas Darimont <thomas.darimont@gmail.com>
2016-08-02 15:52:22 +02:00
Bill Burke
3b9b673e5e
turn off menu item
2016-08-02 06:57:48 -04:00
Bill Burke
17e75950fe
more fixes
2016-08-02 06:56:22 -04:00
Bill Burke
1c75b03e59
props
2016-08-02 06:50:13 -04:00
Pedro Igor
ae1a7542d8
[KEYCLOAK-3385] - Improvements to evaluation tool UI and result
2016-08-01 18:01:24 -03:00
Pedro Igor
bd5b434894
[KEYCLOAK-3376] - Show authorization data when evaluating authorization requests
2016-07-29 22:09:17 -03:00
Tomislav Rajaković
2b3859f462
Fixing typo in account resource bundle: editAccountHtmlTtile -> editAccountHtmlTitle
2016-07-28 16:34:52 +02:00
Pedro Igor
7e1b97888a
[KEYCLOAK-3338] - Adding client roles to role policy and UX improvements
2016-07-27 15:15:14 -03:00
Bill Burke
3973aed57d
Merge pull request #2989 from thomasdarimont/issue/KEYCLOAK-3234-allow-restricting-mapper-for-userinfo
...
KEYCLOAK-3234 Allow restricting claim mapper for userinfo endpoint
2016-07-22 17:54:00 -04:00
Pedro Igor
484d5d6e08
[KEYCLOAK-3313] - UI improvements and messages
2016-07-20 22:11:24 -03:00
Stian Thorgersen
f9bfb5d3e5
KEYCLOAK-3170 Users with only view-users and impersonate can't impersonate in the UI
2016-07-15 07:52:21 +02:00
Pedro Igor
aacf2e9390
[KEYCLOAK-3137] - Review i18n for AuthZ Services
2016-07-14 13:54:37 -03:00
Stian Thorgersen
4f1d83b9dc
Merge pull request #3030 from stianst/KEYCLOAK-2824-2
...
KEYCLOAK-2824 Password Policy SPI
2016-07-14 10:12:25 +02:00
Stian Thorgersen
ea44b5888b
KEYCLOAK-2824 Password Policy SPI
2016-07-14 07:20:30 +02:00
mposolda
abde62f369
KEYCLOAK-3220 redirect to client with error if possible
2016-07-13 20:57:43 +02:00
Stian Thorgersen
2fa200889a
KEYCLOAK-3143 Wrong field name in login theme message properties
2016-07-12 10:49:13 +02:00
Stian Thorgersen
df090fa5e1
Merge pull request #3012 from wadahiro/KEYCLOAK-3289
...
KEYCLOAK-3289 Fixed 'User Enabled' toggled incorrectly
2016-07-12 10:01:23 +02:00
Hiroyuki Wada
8e24c73ac8
KEYCLOAK-3289 Fixed 'User Enabled' toggled incorrectly when 'Federation Link' label is clicked
2016-07-08 15:09:58 +09:00
Vaclav Muzikar
5638e9e1c5
KEYCLOAK-3280 Alerts in Admin Console are sometimes shown only for a split second
2016-07-07 13:44:28 +02:00
Stian Thorgersen
842b811a41
Merge pull request #2987 from ssilvert/RHSSO-319
...
KEYCLOAK-3242: Some hints in admin console contain backslash in front of
2016-07-04 19:17:29 +02:00
Stian Thorgersen
07ab632351
Merge pull request #2986 from ssilvert/RHSSO-253
...
KEYCLOAK-3240: No tooltip shown for Client Mapper Type
2016-07-04 19:16:57 +02:00
Julien Giovaresco
9bcfda64fa
Fix typo in email and login french translations
2016-07-04 19:14:36 +02:00
Stian Thorgersen
122cb1f490
Merge pull request #2925 from chameleon82/issue/KEYCLOAK-3102-russian-localization
...
KEYCLOAK-3102 Add russian localization
2016-07-04 19:03:04 +02:00
Alex
cb085cc598
KEYCLOAK-3102 update Russian grammar in admin console
2016-07-02 10:04:57 +06:00
Alex
a8b39edd73
KEYCLOAK-3102 Fix russian grammar in admin messages
2016-07-01 23:17:36 +06:00
Thomas Darimont
ce7e7ef1d7
KEYCLOAK-3234 Allow restricting claim mapper for userinfo endpoint
...
Client mappers can now be configured to be limited to the
userinfo endpoint. This allows to keep access-tokens lean
while providing extended user information on demand via the
userinfo endpoint.
2016-07-01 11:35:19 +02:00
Bill Burke
b224917fc5
bump version
2016-06-30 17:17:53 -04:00
Stan Silvert
daefbcf994
RHSSO-319: Some hints in admin console contain backslash in front of
...
collon
2016-06-30 13:32:21 -04:00
Stan Silvert
5d9669e5a6
RHSSO-253: No tooltip shown for Client Mapper Type
2016-06-30 13:10:47 -04:00
Pedro Igor
01f3dddd91
Adding a column to list policies associated with a permission.
2016-06-30 10:26:05 -03:00
Pedro Igor
2db41ef052
[KEYCLOAK-2999] - Changes to authz examples for integration test
2016-06-30 10:26:05 -03:00
Alexandre
a9e8f315a4
Update messages_fr.properties
...
Change the word "adminitrateur" to "administrateur"
The "s" was missing in "admini-S-trateur"
That all !
2016-06-30 07:34:17 +02:00
Iván Perdomo
8a8bf47043
[KEYCLOAK-3185] Fix navigation resource > permission
2016-06-27 14:21:19 +02:00
Alex
01d0821142
KEYCLOAK-3102 Fix grammar
2016-06-25 13:30:22 +06:00
Pedro Igor
074a312fe5
Renaming authorization attributes.
2016-06-22 17:20:50 -03:00
Pedro Igor
7512abe9a7
Renaming Scopes tab to Authorization Scopes
2016-06-22 16:58:09 -03:00
Alex
61be5cc90e
KEYCLOAK-3102 Fix Russian translation more cleaner
2016-06-21 01:16:05 +06:00
Stian Thorgersen
2beb1f2466
Merge branch 'KEYCLOAK-3052' of https://github.com/cargosoft/keycloak into cargosoft-KEYCLOAK-3052
2016-06-17 13:55:55 +02:00
Stian Thorgersen
3c0f7e2ee2
Merge pull request #2617 from pedroigor/KEYCLOAK-2753
...
[KEYCLOAK-2753] - Fine-grained Authorization Services
2016-06-17 13:40:15 +02:00
Pedro Igor
086c29112a
[KEYCLOAK-2753] - Fine-grained Authorization Services
2016-06-17 02:07:34 -03:00
Dimitri Teleguin
524ad9728a
correct resource URL
2016-06-14 21:07:36 +03:00
Dmitry Telegin
3203842b58
Fix KEYCLOAK-3052
2016-06-14 12:32:43 +03:00
Stian Thorgersen
e538394e60
KEYCLOAK-3091 Change brute force to use userId
2016-06-13 15:30:13 +02:00
Некрасов Александр Сергеевич
1422d2962e
KEYCLOAK-3102 Add russian localization
2016-06-10 15:54:19 +06:00
Thomas Darimont
56a565f913
KEYCLOAK-3092: Show 20 users per page in user list by default
...
More sensible default for number of users shown per page in
the user listing of the admin console.
This is also recommended in the patternfly guidelines.
Prior to the PR only 5 users were shown per page.
2016-06-07 13:23:03 +02:00
Thomas Darimont
51312ff7ff
KEYCLOAK-2891: Fix label alignment for OIDC Endpoint link.
...
This probably happend during merge.
2016-06-06 09:55:31 +02:00
Bill Burke
4c9a0b45d4
Merge pull request #2229 from thomasdarimont/issue/KEYCLOAK-2489-script-based-authenticator-definitions
...
KEYCLOAK-2489 - Add support for Script-based AuthenticationExecution definitions.
2016-06-05 11:12:05 -04:00
Bill Burke
a76a4730e3
Merge pull request #2884 from thomasdarimont/issue/KEYCLOAK-2891-link-to-oidc-endpoints-from-admin-console
...
KEYCLOAK-2891: Add link to OpenID Endpoint Configuration to realm details page.
2016-06-05 11:06:11 -04:00
Thomas Darimont
a2d1c8313d
KEYCLOAK-3081: Add client mapper to map user roles to token
...
Introduced two new client protocol mappers to propagate assigned user client / realm roles to a JWT ID/Access Token.
Each protocol mapper supports to use a prefix string that is prepended to each role name.
The client role protocol mapper can specify from which client the roles should be considered.
Composite Roles are resolved recursively.
Background:
Some OpenID Connect integrations like mod_auth_openidc don't support analyzing deeply nested or encoded structures.
In those scenarios it is helpful to be able to define custom client protocol mappers that allow to propagate a users's roles as a flat structure
(e.g. comma separated list) as a top-level (ID/Access) Token attribute that can easily be matched with a regex.
In order to differentiate between client specific roles and realm roles it is possible to configure
both separately to be able to use the same role names with different contexts rendered as separate token attributes.
2016-06-03 15:52:58 +02:00
Fernando Mora
5148e69006
Fixes displaying message on login using base theme
...
Using base theme produces an error when login page tries to display a message.
The following properties that are not defined in base theme (only in keycloak theme) are being called without default_value operator "!"
* Steps to Reproduce:
1. Set `base` theme as `Login Theme`
2. Sign out
3. Try to sign in using and invalid username/password
* Expected behaviour:
* Message `Invalid username or password.`is shown
* Actual behavior:
* Bank page is shown and following stackatrace in logs:
```
15:58:19,575 ERROR [freemarker.runtime] (default task-9) Error executing FreeMarker template: freemarker.core.InvalidReferenceException: The following has evaluated to null or missing:
==> properties.kcFeedbackErrorIcon [in template "template.ftl" at line 67, column 76]
----
Tip: It's the step after the last dot that caused this error, not those before it.
----
Tip: If the failing expression is known to be legally refer to something that's sometimes null or missing, either specify a default value like myOptionalVar!myDefault, or use <#if myOptionalVar??>when-present<#else>when-missing</#if>. (These only cover the last step of the expression; to cover the whole expression, use parenthesis: (myOptionalVar.foo)!myDefault, (myOptionalVar.foo)??
----
----
FTL stack trace ("~" means nesting-related):
- Failed at: ${properties.kcFeedbackErrorIcon} [in template "template.ftl" in macro "registrationLayout" at line 67, column 74]
- Reached through: @layout.registrationLayout displayInf... [in template "login.ftl" at line 2, column 1]
----
at freemarker.core.InvalidReferenceException.getInstance(InvalidReferenceException.java:131)
at freemarker.core.EvalUtil.coerceModelToString(EvalUtil.java:355)
at freemarker.core.Expression.evalAndCoerceToString(Expression.java:82)
at freemarker.core.DollarVariable.accept(DollarVariable.java:41)
at freemarker.core.Environment.visit(Environment.java:324)
at freemarker.core.MixedContent.accept(MixedContent.java:54)
at freemarker.core.Environment.visitByHiddingParent(Environment.java:345)
at freemarker.core.ConditionalBlock.accept(ConditionalBlock.java:48)
at freemarker.core.Environment.visit(Environment.java:324)
at freemarker.core.MixedContent.accept(MixedContent.java:54)
at freemarker.core.Environment.visitByHiddingParent(Environment.java:345)
at freemarker.core.ConditionalBlock.accept(ConditionalBlock.java:48)
at freemarker.core.Environment.visit(Environment.java:324)
at freemarker.core.MixedContent.accept(MixedContent.java:54)
at freemarker.core.Environment.visit(Environment.java:324)
at freemarker.core.Macro$Context.runMacro(Macro.java:184)
at freemarker.core.Environment.invoke(Environment.java:701)
at freemarker.core.UnifiedCall.accept(UnifiedCall.java:84)
at freemarker.core.Environment.visit(Environment.java:324)
at freemarker.core.MixedContent.accept(MixedContent.java:54)
at freemarker.core.Environment.visit(Environment.java:324)
at freemarker.core.Environment.process(Environment.java:302)
at freemarker.template.Template.process(Template.java:325)
at org.keycloak.theme.FreeMarkerUtil.processTemplate(FreeMarkerUtil.java:61)
at org.keycloak.forms.login.freemarker.FreeMarkerLoginFormsProvider.createResponse(FreeMarkerLoginFormsProvider.java:314)
at org.keycloak.forms.login.freemarker.FreeMarkerLoginFormsProvider.createLogin(FreeMarkerLoginFormsProvider.java:431)
at org.keycloak.authentication.authenticators.browser.AbstractUsernameFormAuthenticator.invalidUser(AbstractUsernameFormAuthenticator.java:58)
at org.keycloak.authentication.authenticators.browser.AbstractUsernameFormAuthenticator.invalidUser(AbstractUsernameFormAuthenticator.java:87)
at org.keycloak.authentication.authenticators.browser.AbstractUsernameFormAuthenticator.validateUserAndPassword(AbstractUsernameFormAuthenticator.java:141)
at org.keycloak.authentication.authenticators.browser.UsernamePasswordForm.validateForm(UsernamePasswordForm.java:56)
at org.keycloak.authentication.authenticators.browser.UsernamePasswordForm.action(UsernamePasswordForm.java:49)
at org.keycloak.authentication.DefaultAuthenticationFlow.processAction(DefaultAuthenticationFlow.java:84)
at org.keycloak.authentication.DefaultAuthenticationFlow.processAction(DefaultAuthenticationFlow.java:75)
at org.keycloak.authentication.AuthenticationProcessor.authenticationAction(AuthenticationProcessor.java:756)
at org.keycloak.services.resources.LoginActionsService.processFlow(LoginActionsService.java:359)
at org.keycloak.services.resources.LoginActionsService.processAuthentication(LoginActionsService.java:341)
at org.keycloak.services.resources.LoginActionsService.authenticateForm(LoginActionsService.java:386)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:498)
at org.jboss.resteasy.core.MethodInjectorImpl.invoke(MethodInjectorImpl.java:139)
at org.jboss.resteasy.core.ResourceMethodInvoker.invokeOnTarget(ResourceMethodInvoker.java:295)
at org.jboss.resteasy.core.ResourceMethodInvoker.invoke(ResourceMethodInvoker.java:249)
at org.jboss.resteasy.core.ResourceLocatorInvoker.invokeOnTargetObject(ResourceLocatorInvoker.java:138)
at org.jboss.resteasy.core.ResourceLocatorInvoker.invoke(ResourceLocatorInvoker.java:101)
at org.jboss.resteasy.core.SynchronousDispatcher.invoke(SynchronousDispatcher.java:395)
at org.jboss.resteasy.core.SynchronousDispatcher.invoke(SynchronousDispatcher.java:202)
at org.jboss.resteasy.plugins.server.servlet.ServletContainerDispatcher.service(ServletContainerDispatcher.java:221)
at org.jboss.resteasy.plugins.server.servlet.HttpServletDispatcher.service(HttpServletDispatcher.java:56)
at org.jboss.resteasy.plugins.server.servlet.HttpServletDispatcher.service(HttpServletDispatcher.java:51)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:790)
at io.undertow.servlet.handlers.ServletHandler.handleRequest(ServletHandler.java:85)
at io.undertow.servlet.handlers.FilterHandler$FilterChainImpl.doFilter(FilterHandler.java:129)
at org.keycloak.services.filters.KeycloakSessionServletFilter.doFilter(KeycloakSessionServletFilter.java:88)
at io.undertow.servlet.core.ManagedFilter.doFilter(ManagedFilter.java:60)
at io.undertow.servlet.handlers.FilterHandler$FilterChainImpl.doFilter(FilterHandler.java:131)
at io.undertow.servlet.handlers.FilterHandler.handleRequest(FilterHandler.java:84)
at io.undertow.servlet.handlers.security.ServletSecurityRoleHandler.handleRequest(ServletSecurityRoleHandler.java:62)
at io.undertow.servlet.handlers.ServletDispatchingHandler.handleRequest(ServletDispatchingHandler.java:36)
at org.wildfly.extension.undertow.security.SecurityContextAssociationHandler.handleRequest(SecurityContextAssociationHandler.java:78)
at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
at io.undertow.servlet.handlers.security.SSLInformationAssociationHandler.handleRequest(SSLInformationAssociationHandler.java:131)
at io.undertow.servlet.handlers.security.ServletAuthenticationCallHandler.handleRequest(ServletAuthenticationCallHandler.java:57)
at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
at io.undertow.security.handlers.AbstractConfidentialityHandler.handleRequest(AbstractConfidentialityHandler.java:46)
at io.undertow.servlet.handlers.security.ServletConfidentialityConstraintHandler.handleRequest(ServletConfidentialityConstraintHandler.java:64)
at io.undertow.security.handlers.AuthenticationMechanismsHandler.handleRequest(AuthenticationMechanismsHandler.java:60)
at io.undertow.servlet.handlers.security.CachedAuthenticatedSessionHandler.handleRequest(CachedAuthenticatedSessionHandler.java:77)
at io.undertow.security.handlers.NotificationReceiverHandler.handleRequest(NotificationReceiverHandler.java:50)
at io.undertow.security.handlers.AbstractSecurityContextAssociationHandler.handleRequest(AbstractSecurityContextAssociationHandler.java:43)
at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
at org.wildfly.extension.undertow.security.jacc.JACCContextIdHandler.handleRequest(JACCContextIdHandler.java:61)
at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
at io.undertow.servlet.handlers.ServletInitialHandler.handleFirstRequest(ServletInitialHandler.java:284)
at io.undertow.servlet.handlers.ServletInitialHandler.dispatchRequest(ServletInitialHandler.java:263)
at io.undertow.servlet.handlers.ServletInitialHandler.access$000(ServletInitialHandler.java:81)
at io.undertow.servlet.handlers.ServletInitialHandler$1.handleRequest(ServletInitialHandler.java:174)
at io.undertow.server.Connectors.executeRootHandler(Connectors.java:202)
at io.undertow.server.HttpServerExchange$1.run(HttpServerExchange.java:793)
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)
at java.lang.Thread.run(Thread.java:745)
```
2016-05-25 18:38:11 +02:00
Thomas Darimont
08320890b1
KEYCLOAK-2891: Add link to OpenID Endpoint Configuration to realm details page
...
We now show a link to the OIDC Endpoints configuration in the realm
details page.
This makes it easier for users to find the OIDC endpoints.
2016-05-25 14:26:44 +02:00
Stian Thorgersen
27bdc996e7
KEYCLOAK-3008 Upload Realm Keys doesn't work
2016-05-23 10:35:23 +02:00
Thomas Darimont
c59fdb4299
KEYCLOAK-2994: Revise german translations for login pages in base theme
...
Reworded some german translations and fixed some spelling errors.
This could also be applied to 1.9.x.
2016-05-12 10:41:09 +02:00
Thomas Darimont
c8d47926b8
KEYCLOAK-2489 - Add support for Script-based AuthenticationExecution definitions.
...
This is a POC for script based authenticator support.
Introduced a ScriptBasedAuthenticator that is bootstraped via a
ScriptBasedAuthenticatorFactory can be execute a configured script
against a provided execution context.
Added an alias property to the AuthFlowExecutionRepresentation in order
to be able to differentiate multiple instances of an Authenticator
within the same AuthFlow.
For convenience editing the AngularJS bindings for the ACE editor were
added for fancy script editing - this needs to be cut down a bit wrt to
themes and supported scripts - e.g. we probably don't expect users to write
authenticator scripts in Cobol...
Removed currently not needed ACE sytax highlighting and themes.
Scripting is now available to all keycloak components that have access to the KeycloakSession.
Introduced new Scripting SPI for configurable scripting providers.
2016-04-27 14:37:13 +02:00
Stian Thorgersen
04d76b0052
KEYCLOAK-2491 Fix permissions in admin console to match permissions in admin endpoints
2016-04-20 09:57:57 +02:00
Stian Thorgersen
5606160e70
KEYCLOAK-2828 Refactor contribution and add tests
2016-04-19 13:09:00 +02:00
Thomas Raehalme
cd1094c3ad
KEYCLOAK-2828: LoginStatusIframeEndpoint now sets the P3P header.
...
IE requires a P3P header to be present in <iframe /> response. Otherwise
cookies are forbidden. The value of the header does not seem to matter.
2016-04-19 10:24:28 +02:00
Bill Burke
600f429abb
KEYCLOAK-2740
2016-04-15 16:49:06 -04:00
mposolda
44ea920f92
KEYCLOAK-2823 Password policy 'hashAlgorithm' value not correctly shown in admin console
2016-04-14 13:16:14 +02:00
Stian Thorgersen
6a428c8ee7
KEYCLOAK-2810 Added robots.txt and robots meta header
2016-04-13 11:22:57 +02:00
Stian Thorgersen
bb3937e3c1
KEYCLOAK-2804 Prevent browser from prefilling username/password into non-login form
2016-04-13 10:00:48 +02:00
Stian Thorgersen
350a9cd997
KEYCLOAK-2803 Fix failure to add execution to client flow
2016-04-12 08:04:15 +02:00
mposolda
e4f75409c9
KEYCLOAK-2802 NPE during identity broker cancelled from account mgmt
2016-04-11 23:31:24 +02:00
mposolda
98ad9b7e7c
KEYCLOAK-2801 Redirected to login theme error page after failed social linking from account management
2016-04-11 23:30:18 +02:00
mposolda
3e9ba71baa
KEYCLOAK-2769 Better error handling of expired code in IdentityBrokerService
2016-04-11 18:20:26 +02:00
Stian Thorgersen
8ea057a122
KEYCLOAK-2683 Remove QRCodeResource and embed QR code in image
2016-04-08 09:00:57 +02:00
Stian Thorgersen
f2dd556323
Merge pull request #2532 from stianst/KEYCLOAK-2762
...
KEYCLOAK-2762 Renaming a realm without saving the form affects all li…
2016-04-07 09:34:35 +02:00
Stian Thorgersen
f585f5dfc9
Merge pull request #2530 from stianst/KEYCLOAK-2761
...
KEYCLOAK-2761 Broken on/off switch at Client Mappers with specific wi…
2016-04-07 07:13:35 +02:00
Stian Thorgersen
61ae15cf56
KEYCLOAK-2762 Renaming a realm without saving the form affects all links in Console
2016-04-07 06:59:21 +02:00
Stian Thorgersen
139e19514b
Merge pull request #2528 from stianst/KEYCLOAK-2760
...
KEYCLOAK-2760
2016-04-07 06:51:24 +02:00
Stian Thorgersen
d395a9e318
KEYCLOAK-2761 Broken on/off switch at Client Mappers with specific window width
2016-04-07 06:18:40 +02:00
Stian Thorgersen
729d73bb17
KEYCLOAK-2760
...
Cannot delete a client template mapper with a little trash icon in heading
2016-04-07 06:06:55 +02:00
Stian Thorgersen
5854e44391
KEYCLOAK-2758
...
Weird behavior of add/remove button for 'Valid Redirect URIs' in a client settings form
2016-04-07 05:43:07 +02:00
Stian Thorgersen
92c1e01d0e
KEYCLOAK-2707 Fix account management layout for medium size screens
2016-04-05 10:30:43 +02:00
Stian Thorgersen
85622ac522
KEYCLOAK-2711
...
Button for 'impersonate user' is visible when I am creating new user
2016-04-05 07:53:57 +02:00
Stian Thorgersen
9299591272
KEYCLOAK-2742
...
Broken navigation links while creating/editing a Client Mapper
2016-04-04 15:17:15 +02:00
Stian Thorgersen
ff73e1a36a
KEYCLOAK-2651
...
No CSRF protection or general security headers on welcome page
2016-04-04 09:07:21 +02:00
Bill Burke
d35ccd9a5e
KEYCLOAK-2621
2016-03-31 14:33:41 -04:00
Bill Burke
9cf788c590
KEYCLOAK-2490
2016-03-30 15:41:46 -04:00
Stan Silvert
0f52768064
KEYCLOAK-2619: Partial Import doesn't support groups
2016-03-28 14:26:34 -04:00
Bill Burke
28c70fa8ab
KEYCLOAK-2698
2016-03-28 10:20:27 -04:00
mposolda
7ffd6dc7a7
KEYCLOAK-2696 Unexpected error when trying to delete role mappings from read-only LDAP role mapper
2016-03-22 13:03:49 +01:00
Jared Blashka
49c5610971
Remove admin theme from i18n consideration
2016-03-21 09:42:00 -04:00
Jared Blashka
7a05078030
Fix JS error when working with theme i18n
2016-03-16 18:28:06 -04:00
mposolda
85ccd64e01
KEYCLOAK-2643 Added write-only property to LDAP full-name attribute mapper
2016-03-11 22:32:55 +01:00
mposolda
73c3534e7a
KEYCLOAK-2629 LDAP Federation provider - input fields validation
2016-03-11 22:32:45 +01:00
Stian Thorgersen
7342261dbe
KEYCLOAK-2593 Character set missing from responses and no content sniffing defense in place
2016-03-11 15:31:15 +01:00
Stian Thorgersen
b3bb68aed7
Merge pull request #2364 from stianst/KEYCLOAK-2637
...
KEYCLOAK-2637
2016-03-11 13:00:54 +01:00
Stian Thorgersen
bdfc9b8efc
KEYCLOAK-2637
...
ModelExceptionMapper uses AdminMessagesProvider which loads messages outside of themes
2016-03-11 12:08:28 +01:00
Stian Thorgersen
50e5d203b3
KEYCLOAK-2636
...
Tooltip for redirect uri is wrong
2016-03-11 06:39:25 +01:00
Stian Thorgersen
28fe13a800
Next is 2.0.0.CR1
2016-03-10 08:13:00 +01:00
Stian Thorgersen
d722e53108
Next is 1.9.2.Final
2016-03-10 07:28:27 +01:00
Stan Silvert
2c79456e72
KEYCLOAK-2535: ClientResource endpoint tests
2016-03-04 07:41:24 -05:00
Stian Thorgersen
7b8869bde6
Removed english values from non-english messages bundles£
2016-03-03 06:53:00 +01:00
Stian Thorgersen
4214793a2d
KEYCLOAK-2568 Add autocomplete=off to password and otp input fields
2016-03-03 06:29:56 +01:00
Stian Thorgersen
8c3545d219
KEYCLOAK-2570
...
Login event error field typo (lower case)
2016-03-02 07:52:04 +01:00
Stian Thorgersen
5d93f4a298
Merge pull request #2307 from stianst/KEYCLOAK-2566
...
KEYCLOAK-2566 kc-action-cell action buttons don't appear on IE
2016-03-02 07:04:42 +01:00
Stian Thorgersen
8270c0a19a
KEYCLOAK-2566 kc-action-cell action buttons don't appear on IE
2016-03-01 19:58:11 +01:00
Stian Thorgersen
7ad8a6e074
KEYCLOAK-2567 Order required actions alphabetically
2016-03-01 08:41:35 +01:00
Bill Burke
32d15e2027
KEYCLOAK-2510
2016-02-29 20:39:44 -05:00
Stian Thorgersen
4286f0560f
Merge pull request #2293 from stianst/KEYCLOAK-2551
...
KEYCLOAK-2551
2016-02-29 14:06:46 +01:00
Stian Thorgersen
a71adde8fa
KEYCLOAK-2551
...
Broken navigation links while creating/editing a Client Mapper
2016-02-29 12:25:36 +01:00
Stian Thorgersen
45a03a654f
KEYCLOAK-2553
...
Unexpected form behavior while creating a client
2016-02-29 12:05:20 +01:00
Stian Thorgersen
2a4dfe7920
Merge pull request #2290 from stianst/KEYCLOAK-2556
...
KEYCLOAK-2556 Remove required for client create root url and saml end…
2016-02-29 12:00:00 +01:00
Stian Thorgersen
4f46ab45cc
KEYCLOAK-2556 Remove required for client create root url and saml endpoint
2016-02-29 09:48:15 +01:00
Stian Thorgersen
ccfae82b77
KEYCLOAK-1040
...
Allow import of realm keys (like we do for SAML)
2016-02-29 09:35:08 +01:00
Stian Thorgersen
57cd7e132c
KEYCLOAK-2559 Missing add/remove button for 'Valid Redirect URIs' in a client settings form
2016-02-26 13:53:27 +01:00
Stian Thorgersen
a1d9753ec2
Next is 1.9.1.Final-SNAPSHOT
2016-02-23 08:48:26 +01:00
Stian Thorgersen
4fd97091ff
Version bump to 2.0.0.CR1-SNAPSHOT
2016-02-22 11:36:56 +01:00
mposolda
daca6d7062
KEYCLOAK-2505 Keystore configuration is not honored for LDAP over SSL connections
2016-02-19 18:02:39 +01:00
Stian Thorgersen
d386920b58
KEYCLOAK-2484
...
Update to new logo
2016-02-18 16:47:26 +01:00
Stian Thorgersen
d8779a3d01
KEYCLOAK-2426
...
No visible link for users with 'manage-users' role
2016-02-08 19:47:02 +01:00
Stian Thorgersen
fd0d30fd1a
KEYCLOAK-2430 Load resource bundle before bootstrapping Angular
2016-02-08 11:49:41 +01:00
Bill Burke
c63ef3c825
Merge remote-tracking branch 'upstream/master'
2016-02-04 16:50:16 -05:00
Bill Burke
e26ac0983a
KEYCLOAK-2367
2016-02-04 16:50:02 -05:00
Stian Thorgersen
579ab56a5a
Bump version to 1.9.0.Final-SNAPSHOT
2016-02-04 15:55:11 +01:00
Stian Thorgersen
136c797813
KEYCLOAK-2436
...
Account exists page shows to primary buttons
2016-02-03 14:20:40 +01:00
Stian Thorgersen
2974034974
KEYCLOAK-2435
...
Feedback on login screen not showing correctly
2016-02-03 13:41:31 +01:00
Bill Burke
0d842f47a7
Merge pull request #2155 from stianst/KEYCLOAK-2424
...
KEYCLOAK-2424 Add delete role button to client role list
2016-02-02 09:34:40 -05:00
Stian Thorgersen
6c106dc681
KEYCLOAK-2424 Add delete role button to client role list
2016-02-02 14:32:58 +01:00
Stian Thorgersen
26264ec042
KEYCLOAK-2420
...
Export client
2016-02-02 14:24:52 +01:00
Stan Silvert
3a2ec809e9
KEYCLOAK-2335: Document Partial Import in Admin Console
2016-01-28 16:56:28 -05:00
Bill Burke
66e1ee79d0
KEYCLOAK-2349
2016-01-26 15:45:40 -05:00
Stian Thorgersen
b93deddda3
Merge pull request #2107 from mstruk/i18n
...
KEYCLOAK-2305 Complete internationalization of admin console
2016-01-26 12:50:03 +01:00
Stian Thorgersen
561fa06140
Merge pull request #2106 from stianst/KEYCLOAK-1341
...
KEYCLOAK-1341
2016-01-26 12:48:14 +01:00
Stian Thorgersen
646c75c6ff
Merge pull request #2103 from stianst/KEYCLOAK-2388
...
KEYCLOAK-2388
2016-01-26 12:47:51 +01:00
Marek Posolda
3a67fd7685
Merge pull request #2105 from mposolda/master
...
KEYCLOAK-2379 Fix possible error during sycnchronization changed user…
2016-01-26 11:48:15 +01:00
Stian Thorgersen
4a698bc22a
KEYCLOAK-2388
...
Localisation should fallback to english rather than display raw keys
2016-01-26 11:47:30 +01:00
Stian Thorgersen
26ec117b5e
KEYCLOAK-1341
...
Admins can change sso timeout to 1 second and then not able to login
2016-01-26 11:24:00 +01:00
Marko Strukelj
ea33af2c59
KEYCLOAK-2305 Complete internationalization of admin console
2016-01-26 11:22:45 +01:00