mposolda
d8024b0c6c
Kerberos refactored to be federation provider. Support for Kerberos and LDAP. Username/password authentication support with kerberos credentials.
...
First step - KerberosFederationProvider
Finished KerberosFederationProvider. Added support for username/password authentication with kerberos credentials
Added Kerberos UI to LDAPFederationProvider
Fixes
2015-02-18 17:19:15 +01:00
Bill Burke
ebd9bae1ee
client to protocol mapping model
2015-02-15 17:01:34 -05:00
Bill Burke
2fb97f058b
claim support phase 2
2015-02-14 09:56:19 -05:00
Bill Burke
8586a8d1a5
Merge remote-tracking branch 'upstream/master'
2015-02-13 20:57:51 -05:00
Bill Burke
c09b17c2e2
claim mapping phase 1
2015-02-13 20:57:38 -05:00
mposolda
3ef243dd42
Add authenticateByDefault flag to IdentityProviderModel
2015-02-13 10:08:51 +01:00
girirajsharma
c3d7ef8066
Updated BC provider versions and deprecated CertificateUtil methods.
2015-02-10 18:44:54 +05:30
pedroigor
ff1f10d7a7
[KEYCLOAK-883] - Refactoring to services endpoints and exposing them through admin client.
2015-02-09 21:30:21 -02:00
pedroigor
4b1ba704ec
[KEYCLOAK-992] - Token retrieval from brokered idps.
2015-02-06 22:23:34 -02:00
pedroigor
99a457c5c1
[KEYCLOAK-996] - Allow application to select provider.
2015-01-30 14:02:53 -02:00
Bill Burke
fd20a25100
Merge remote-tracking branch 'upstream/master'
2015-01-28 17:09:59 -05:00
Bill Burke
ea3bba98aa
saml frontchannel logout
2015-01-28 17:09:13 -05:00
Stian Thorgersen
67ba1de56f
KEYCLOAK-999 Load providers from file-system
2015-01-28 09:15:07 +01:00
mposolda
ee4fbca868
Improve OOTB experience for ssh and jmx authentication in fuse
2015-01-23 20:57:40 +01:00
pedroigor
edecda8599
[KEYCLOAK-986] - Escape characters when doing SAML POST Binding.
2015-01-23 12:09:44 -02:00
Bill Burke
ef2698936b
Merge pull request #919 from pedroigor/KEYCLOAK-884
...
[KEYCLOAK-884] - OpenID Connect UserInfo Endpoint.
2015-01-16 14:28:30 -05:00
pedroigor
4f432775ed
[KEYCLOAK-884] - OpenID Connect UserInfo Endpoint.
2015-01-16 15:45:27 -02:00
mposolda
d928c26e27
KEYCLOAK-539 Fuse adapter. OSGI bundling. OSGI headers in keycloak adapter maven artifacts. Rename package in jetty-core
2015-01-15 19:02:45 +01:00
pedroigor
fa2533ed11
[KEYCLOAK-883] - Initial changes.
2015-01-13 00:58:19 -02:00
Stian Thorgersen
959933a227
Version bump
2015-01-12 10:35:50 +01:00
Michael Gerber
9c484b9938
add test
2015-01-09 14:03:36 +01:00
mposolda
e62858cefd
KEYCLOAK-900 Fix resolving of current hostname
2015-01-08 11:09:11 +01:00
Stian Thorgersen
628437c146
KEYCLOAK-760 OAuth2 refresh token expiration date
2015-01-05 10:50:50 +01:00
Bill Burke
28a56289d9
Merge pull request #897 from patriot1burke/master
...
saved requests
2014-12-17 22:29:46 -05:00
Bill Burke
08be04b337
saved requests
2014-12-17 22:29:18 -05:00
Michael Gerber
9169a3df76
IE 11 does not store cookie because of wrong time zone
...
https://issues.jboss.org/browse/KEYCLOAK-875
2014-12-13 21:24:49 +01:00
Bill Burke
6c04e26376
bump
2014-12-05 21:09:38 -05:00
Bill Burke
c0059a875b
bump version
2014-12-05 19:03:13 -05:00
objectiser
8e01f8ecf1
KEYCLOAK-861 Support basic authentication against user credentials managed by KeyCloak.
2014-12-01 11:43:19 +00:00
Bill Burke
d0856e024f
proxy distro
2014-11-24 18:12:17 -05:00
Bill Burke
46983d68f3
move ServerCookie to core
2014-11-14 09:20:03 -05:00
Bill Burke
0636cd898f
fix incorrect JWS implementation
2014-11-11 21:28:35 -05:00
mposolda
a94ab5883d
KEYCLOAK-835 Move AdapterConstants to different package
2014-11-10 22:16:20 +01:00
mposolda
d1e819cef1
KEYCLOAK-836 Refactoring of JaxrsBearerTokenFilter to work with both resteasy and Apache CXF. Added test
2014-11-10 22:16:14 +01:00
Timon Veenstra
7c9e3f4555
KEYCLOAK-829 Adjustment to KetstoreUtil to support loading keystore from classpath
2014-11-06 21:43:49 +01:00
Stian Thorgersen
0f8c073354
Version bump
2014-11-04 09:01:06 +01:00
Bill Burke
9c7e297118
principal token attribute mapping
2014-10-31 16:40:07 -04:00
mposolda
44d4f6eb95
Remove redundant realm property from KeycloakSecurityContext
2014-10-31 13:17:35 +01:00
Stian Thorgersen
9b0d5acb50
KEYCLOAK-704 KEYCLOAK-768 Improvements to access code generation
2014-10-31 12:45:03 +01:00
Juraci Paixão Kröhling
8e764e642f
KEYCLOAK-779
...
Adapter multi-tenancy support
2014-10-30 16:54:26 +01:00
Bill Burke
0183ac43bc
aud should be client-id, issuer should be realm
2014-10-29 15:56:25 -04:00
Stian Thorgersen
05b6dc7af4
KEYCLOAK-797
...
login-status-iframe.html fails if domain contains hyphen
2014-10-29 14:02:38 +01:00
Stian Thorgersen
fcda005d88
KEYCLOAK-772 Event settings are not imported
2014-10-28 20:21:03 +01:00
mposolda
a538e25b9d
KEYCLOAK-702 - Added AdapterTokenStore spi. Possibility to save account info to cookie as alternative to http session
2014-10-27 16:20:01 +01:00
mposolda
01c705b4d3
KEYCLOAK-759 Added adapter clustering to admin console
2014-10-21 12:32:53 +02:00
Stian Thorgersen
63b41e2548
KEYCLOAK-703 Check valid origin is passed to login-status-iframe
2014-10-21 09:57:56 +02:00
mposolda
7d8f265789
KEYCLOAK-759 dynamic registration of managementUrls in cluster
2014-10-17 21:51:46 +02:00
Bill Burke
7760887ac1
app cert support, bug fixes
2014-10-14 18:38:48 -04:00
Bill Burke
4d007c776a
generate/store realm certificate
2014-10-11 10:49:04 -04:00
Bill Burke
0ace5cd746
merge conflicts
2014-10-09 18:26:14 -04:00
Bill Burke
94da99bf10
use app id in admin console urls
2014-10-09 18:22:02 -04:00
mposolda
9954d68a1f
KEYCLOAK-748 cluster-aware logout for non-distributable apps
2014-10-09 21:33:07 +02:00
mposolda
7e7406ddb7
KEYCLOAK-743 Stateless session mgmt. Drop statistics for adapters.
2014-10-08 22:18:10 +02:00
mposolda
84e1ace539
KEYCLOAK-742 Added always-refresh-token option to adapters
2014-10-08 22:18:10 +02:00
Bill Burke
a1d1877751
ClientModel attributes and protocol
2014-10-08 10:54:13 -04:00
mposolda
59bf7e524f
Change method signature
2014-10-05 20:07:54 +02:00
mposolda
50f148cd7c
Use one option "auth-server-url-for-backend-requests" instead of 3 options
2014-10-02 19:16:04 +02:00
mposolda
72b5632cfe
KEYCLOAK-731 Support for replacing configuration of Java adapters with system properties
2014-10-02 19:15:37 +02:00
Bill Burke
71216bf2c9
merge
2014-10-01 14:21:23 -04:00
mposolda
d7bcd41909
Ensure that KeycloakUndertowAccount and referenced classes can be serialized in session
2014-10-01 19:08:41 +02:00
Bill Burke
4b399fe05a
login protocol abstraction
2014-10-01 10:01:42 -04:00
mposolda
80a9a8984a
Cleanup. Support to use-hostname-for-local-requests added to Demo examples
2014-09-30 17:37:36 +02:00
mposolda
337b03fc62
KEYCLOAK-720 added support for oauth clients
2014-09-30 17:37:36 +02:00
Stian Thorgersen
99c73a9cc7
Clustering support
2014-09-30 09:40:20 +02:00
Stian Thorgersen
423dc1b8a7
Change version schema to match JBoss
2014-09-12 09:35:08 +02:00
Stian Thorgersen
5dea07793b
Version bump
2014-09-11 09:27:58 +02:00
Stian Thorgersen
557de7690e
Fix CRSF protection on Chrome, and add check if 'Referer' header
2014-09-10 10:32:56 +02:00
Bill Burke
3f539c6d5c
version bump
2014-09-09 13:34:56 -04:00
mposolda
1f0dcbddbe
KEYCLOAK-659 Export current version number during export
2014-09-02 17:06:58 +02:00
Stian Thorgersen
05a1fc1ded
Version bump
2014-09-01 10:17:00 +02:00
Stian Thorgersen
b9d0f64f74
Added password token to use inplace of plain-text password for totp
2014-08-28 13:51:55 +02:00
Stian Thorgersen
3bfe3d256e
Rename audit to events
2014-08-28 10:56:37 +02:00
Stian Thorgersen
55bd889a0f
KEYCLOAK-531 Reduce info level logging
2014-08-27 11:17:24 +02:00
Bill Burke
7c8edb5d11
bump pom
2014-08-21 10:46:49 -04:00
Bill Burke
e5d5276135
race
2014-08-20 14:50:28 -04:00
Bill Burke
edf73af508
change password
2014-08-13 10:35:49 -04:00
Bill Burke
7c97e02715
X-Frame-Options, Content-Security-Policy
2014-08-11 17:45:01 -04:00
mposolda
d699404ce7
Support for periodic users sync
2014-08-10 23:23:50 +02:00
Bill Burke
9aa6b4cbfa
optimize imports
2014-08-10 12:17:45 -04:00
Bill Burke
aff32f69bb
version
2014-08-06 15:44:50 -04:00
Bill Burke
e04af84ac0
bump version
2014-08-06 09:00:23 -04:00
Bill Burke
905061e2b7
bump version
2014-08-05 20:52:50 -04:00
Bill Burke
731d75c756
app full scope by default
2014-08-04 16:04:10 -04:00
Bill Burke
6cf708f6e1
fed exampe
2014-08-02 22:18:17 -04:00
Bill Burke
101a72cd65
remove AuthenticationProvider/Link
2014-08-01 18:03:48 -04:00
Stian Thorgersen
c460630cf8
Allow private addresses to use http with ssl-required=external
2014-08-01 15:05:45 +01:00
Stian Thorgersen
6cbeeb1b1a
KEYCLOAK-591 Require SSL for all external requests by default
2014-08-01 13:52:04 +01:00
Bill Burke
b72a7db6fe
federation display name
2014-07-31 10:51:04 -04:00
Bill Burke
8ea0d19d2f
federation refactor
2014-07-30 16:01:54 -04:00
Stian Thorgersen
02a59812e6
Added ClientSessionModel to UserSessionProvider
2014-07-29 16:10:41 +01:00
Stian Thorgersen
628c7dd92a
KEYCLOAK-579 Use relative urls in examples
2014-07-28 10:41:21 +01:00
Bill Burke
b1cd37814a
rename
2014-07-25 10:40:46 -04:00
Bill Burke
171e9b1ce9
Merge remote-tracking branch 'upstream/master'
2014-07-23 15:10:48 -04:00
Bill Burke
eec582e704
merge
2014-07-23 15:10:36 -04:00
Stian Thorgersen
d6f5bf6cde
Moved rememberMe, usernameUsed fields from AccessCode to UserSessions. Change AccessCode to have a single action instead of a list of required actions, also used action for codes that needs user to grant permissions first. Finally removed expiration time on access code and use timestamp directly
2014-07-23 15:58:09 +01:00
Bill Burke
148d494905
federation iteration
2014-07-23 10:21:25 -04:00
Stian Thorgersen
b196d0dded
Remove access token from access code, and create token when code is exchanged for token
2014-07-22 09:37:21 +01:00
Bill Burke
f275ecf6d5
cache settings
2014-07-18 11:30:10 -04:00
Stian Thorgersen
46c04561ff
Removed long ids and replaced with composite ids
2014-07-17 11:16:15 +01:00
mposolda
24a492ffe0
Export/import refactoring to use same representation as admin endpoints
2014-07-15 05:35:24 +02:00