keycloak-scim

Author	SHA1	Message	Date
Michal Hajas	1f929c78af	Make lockTimeout more friendly for JPA map storage Closes #16616	2023-02-15 10:38:18 +01:00
Hynek Mlnarik	bb0eb899a7	Add ability to run arq testsuite with file store Fixes: #17032	2023-02-15 10:17:23 +01:00
Hynek Mlnarik	2665fb01a6	File storage: Fix path traversal Fixes: #17029	2023-02-14 14:30:14 +01:00
Pedro Igor	9e46b9e43f	Handling events after transaction completion using a separate session Closes #15656	2023-02-14 13:10:57 +01:00
Václav Muzikář	a57821ed80	Fix JDK 17 InaccessibleObjectException with infinispan	2023-02-13 17:09:36 -03:00
Miquel Simon	48a22ff2f3	Added WebAuthn integration tests to CI workflow. (#16608 )	2023-02-13 12:28:25 +00:00
laskasn	dc8b759c3d	Use encryption keys rather than sig for crypto in SAML Closes #13606 Co-authored-by: mhajas <mhajas@redhat.com> Co-authored-by: hmlnarik <hmlnarik@redhat.com>	2023-02-10 12:06:49 +01:00
Marek Posolda	9cfc1fdfa9	Reduce the redundant tests in fips-suite (#16970 ) Closes #16969	2023-02-09 12:21:33 +01:00
Pedro Igor	017ddc670b	Removing references to old admin console test artifacts	2023-02-08 17:22:45 -03:00
Pedro Igor	423fc6daba	Flaky test KcOidcBrokerTokenExchangeTest (#16914 ) Closes #16896	2023-02-08 14:49:49 +00:00
Dmitry Telegin	5f39aeb590	Pre-authorization hook for client policies Closes #9017	2023-02-08 15:06:32 +01:00
Michal Hajas	6fa62e47db	Leverage HotRod client provided transaction Closes #13280	2023-02-08 10:26:30 +01:00
Stian Thorgersen	d3ba2ecbed	Remove old admin console theme (#16864 ) Closes #16862	2023-02-08 09:22:39 +01:00
Hynek Mlnařík	f71ab092de	File store basis Fixes: #16676 --- * Enhance DefaultModelCriteria * Fix collection * Fix delete in CHMKeycloakTransaction * Add HasRealmId interface * Fix EntityFieldDelegate * Support for realm-less entities in providers * Support for realm-less entities in providers (events) * File store basis * Add support for writing * Support running KeycloakServer with file store * Add support for file store in model testsuite --------- Co-authored-by: vramik <vramik@redhat.com>	2023-02-07 14:59:23 +01:00
Stian Thorgersen	4782a85166	Remove old admin console feature (#16861 ) * Remove old admin console feature Closes #16860 * Update help txt files for Quarkus tests	2023-02-07 12:59:35 +01:00
Pedro Igor	7b58783255	Allow mapping claims to user attributes when exchanging tokens Closes #8833	2023-02-07 10:57:35 +01:00
Thomas Darimont	e38b7adf92	Revise blacklist password policy provider #8982 - Reduce false positive probability from 1% to 0.01% to avoid rejecting to many actually good passwords. - Make false positive rate configurable via spi config - Revised log messages Supported syntax variant: `passwordBlacklist(wordlistFilename)` Fixes #8982 Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>	2023-02-07 10:36:39 +01:00
Martin Kanis	5ba004b447	Leverage Infinispan lifespan for ExpirableEntities in HotRod storage	2023-02-07 10:01:32 +01:00
Stian Thorgersen	fc075a3d35	Remove old admin console tests (#16859 ) Closes #16858	2023-02-07 08:51:36 +01:00
Denis Bernard	5db64133b8	Add Attribute to Group Mapper for SAML IDP Cleansing code as PR Comment Add test for Advanced Attribute to Group Mapper Closes #12950	2023-02-06 10:58:48 -03:00
Pedro Igor	1a1ee78dbd	Removing tests from base group broker mapper test classes	2023-02-06 10:58:48 -03:00
Pedro Igor	d97b9c48c4	Make sure PBKDF2 providers are using the expect size for derived keys (#16798 ) Closes #16797	2023-02-03 15:31:25 +01:00
rmartinc	f8f112d8d2	Upgrade twitter4j (#16828 ) Closes https://github.com/keycloak/keycloak/issues/16731	2023-02-03 15:28:37 +01:00
mposolda	0e374c7a45	Any tests using PhantomJS failing in some linux environments closes #16818	2023-02-03 15:19:57 +01:00
Stian Thorgersen	0fa209c29a	WelcomeScreenTest#resourcesTest (#16761 ) * Fix WelcomeScreenTest#resourcesTest Closes #16669 * Add one more retry	2023-02-03 09:41:48 +01:00
Marek Posolda	51bed81814	Fixes for OOB endpoint and KeycloakSanitizer (#16773 ) (cherry picked from commit 91ac2fb9dd50808ff5c76d639594ba14a8d0d016)	2023-02-02 08:34:50 +01:00
Pedro Igor	e3c41ec3a0	Ignoring test methods from parent classes Closes #15687	2023-02-01 14:58:03 -08:00
Stian Thorgersen	d9025231f9	HTML Injection in Keycloak Admin REST API (#16765 ) Resolves #GHSA-m4fv-gm5m-4725 Co-authored-by: Martin Bartoš <mabartos@redhat.com>	2023-02-01 14:34:15 +01:00
Alexander Schwartz	c6aba2e3de	Make LockAcquiringTimeoutException a RuntimeException Closes #16690	2023-01-31 08:21:32 +01:00
Marek Posolda	33ff9ef17e	Fix remaining failing tests with BCFIPS approved mode (#16699 ) * Fix remaining failing tests with BCFIPS approved mode Closes #16698	2023-01-30 16:01:57 +01:00
mposolda	7f017f540e	BCFIPS approved mode: Some tests failing due the short secret for client-secret-jwt client authentication Closes #16678	2023-01-30 08:40:46 +01:00
Martin Kanis	c4255e7301	Wrong property for events in map-storage-hot-rod on Undertow	2023-01-27 14:24:34 +01:00
mposolda	5591b5198b	Still test failures with BCFIPS approved mode due the hardcoded keys Closes #16643	2023-01-26 15:50:29 +01:00
Pedro Igor	f6602e611b	Allow managing the username idn homograph validator Closes #13346	2023-01-26 04:55:43 -08:00
Michal Hajas	eb59fdb772	Add transaction tests to model tests Closes: #15890	2023-01-26 12:55:22 +01:00
mposolda	a804400c84	Added KERBEROS feature. Disable it when running tests on FIPS closes #14966	2023-01-25 18:38:46 +01:00
mposolda	16888eaeab	Only available RSA key sizes should be shown in admin console Closes #16437	2023-01-25 13:15:07 +01:00
mposolda	29888dbf1a	Update realm keys in the testsuite to be generated where possible. Update other keys to be FIPS compliant Closes #12420	2023-01-25 08:26:15 +01:00
Miquel Simon	83147a67a0	Added New Account Console Tests to CI workflow. (#16547 )	2023-01-24 16:01:03 +01:00
Hynek Mlnarik	977cc473bb	Fix linebreaks in XML / SAML signatures See https://bugs.openjdk.org/browse/JDK-8264194 See https://issues.apache.org/jira/browse/SANTUARIO-482 Fixes: #14529	2023-01-23 15:39:10 +01:00
Martin Bartoš	7d6e22bedd	DateTimeParse failures in New Account Console tests (#16531 ) Fixes #16514	2023-01-19 09:39:03 -05:00
Stian Thorgersen	8d05895adb	Move Admin REST extension to main repository (#16530 ) Closes #16529	2023-01-19 13:06:21 +01:00
Konstantinos Georgilakis	c73859794e	Short verification_uri for Device Authorization Request Closes #16107	2023-01-18 08:34:52 +01:00
Pedro Igor	33cb1ad7cd	Support runnning tests using an embedded distribution Closes #16420	2023-01-13 12:03:36 -08:00
Hynek Mlnarik	3119566407	Prevent endless loop in case of split-brain Fixes: #16427	2023-01-13 16:23:18 +01:00
mposolda	79fa6bb3c9	Initial support for running testsuite in BCFIPS approved mode Closes #16429	2023-01-13 02:59:06 -08:00
ムハマドザクワンビンムハマドザヒド / MOHDZAHID，BIN MUHAMMADZAKWAN	cc6597967a	Refactoring ClientPoliciesTest Closes #14795	2023-01-12 09:38:12 +01:00
Pedro Igor	9945135861	Verify if token is revoked when validating bearer tokens (#16394 ) Closes #16388	2023-01-11 14:42:29 +01:00
mposolda	ac490a666c	Fix KcSamlSignedBrokerTest in FIPS. Support for choosing realm encryption key for decrypt SAML assertions instead of realm signature key Closes #16324	2023-01-10 20:39:59 +01:00
Miquel Simon	7bd78f604a	Added MariaDB to Legacy Store IT. (#16157 )	2023-01-10 17:37:27 +01:00
Pedro Igor	d797d07d8f	Ignore user profile attributes for service accounts Closes #13236	2023-01-10 16:26:53 +01:00
mposolda	4d55c6a647	Adding SAML tests for FIPS - with addition of XMLDSig security provider Closes #14969	2023-01-10 08:37:03 +01:00
Pedro Igor	53ee95764e	Do not show username field when updating profile if UPDATE_EMAIL feature is enabled and email as username is enabled Closes #16263	2023-01-06 14:12:47 +01:00
Réda Housni Alaoui	141c9dd803	update-email: email change does not affect the username when "Email as username" option is checked (#15583 ) Closes #13988	2023-01-06 14:04:48 +01:00
Miquel Simon	c2682157fb	Added MS SQL Server to Legacy Store IT. (#16121 ) * Added MS SQL Server to Legacy Store IT. * Update testsuite/integration-arquillian/pom.xml Co-authored-by: Stian Thorgersen <stianst@gmail.com> Co-authored-by: Stian Thorgersen <stian@redhat.com>	2023-01-06 08:55:09 +01:00
Réda Housni Alaoui	dbe0c27bcf	Allowing client registration access token rotation deactivation	2023-01-05 20:53:57 +01:00
mposolda	e374e309c6	Deprecate SHA1 based algorithms for sign SAML documents and assertions Closes #16240	2023-01-05 20:45:20 +01:00
Michal Hajas	6566b58be1	Introduce Infinispan GlobalLock implementation Closes #14721	2023-01-05 16:58:44 +01:00
Hynek Mlnarik	071fc03f41	Move transaction processing into session close Fixes: #15223	2023-01-05 16:12:32 +01:00
Stian Thorgersen	6c1f981eec	Fix UserTest.sendResetPasswordEmailWithCustomLifespan (#16233 ) Closes #16232	2023-01-04 13:03:33 +01:00
Stian Thorgersen	7dc16c69cb	Force refreshing token for admin client if time offset is set (#16242 ) Closes #16143	2023-01-04 13:03:10 +01:00
mposolda	496c6d598e	Some authorization adapter test failing on Java 17 Closes #16216	2023-01-03 13:03:26 +01:00
ムハマドザクワンビンムハマドザヒド / MOHDZAHID，BIN MUHAMMADZAKWAN	ce6b737e33	NPE in userinfo endpoint Closes #15429	2023-01-02 13:53:29 +01:00
Stian Thorgersen	669086acd6	Suspend scheduled tasks if time offset is set to a large value (#16144 )	2022-12-21 15:12:57 +01:00
Martin Kanis	c0e103dc95	Replace old HotRod index annotation with new one	2022-12-21 12:50:08 +01:00
Miquel Simon	9bb5b08015	Added Oracle to Legacy Store IT. (#16097 )	2022-12-21 08:15:38 +01:00
mposolda	36bd76957d	Make Keycloak FIPS working with OpenJDK 17 on FIPS enabled RHEL Closes #15721	2022-12-20 21:03:55 +01:00
Michal Hajas	c79d29e68c	Move HotRod profile to the same pom as other map profiles and introduce map-storage-chm profile Closes #16046	2022-12-20 17:51:40 +01:00
Alexander Schwartz	fffde1407c	Enable retryable transactions for CockroachDB model tests Also made the test setup of the realm more idempotent to clean up a realm left-over from a previous test. Closes #16078	2022-12-20 15:49:07 +01:00
Alexander Schwartz	0fee33bb95	Normalize JVM heap usage in tests and handle OOM situations Closes #16089	2022-12-20 13:26:07 +01:00
Alexander Schwartz	6d0e112bf1	Ensure lock table has its primary key created, and re-enable the DBLockTest Closes #15487	2022-12-20 08:50:14 +01:00
Alexander Schwartz	1d758fac2b	Adding CRDB into GHA for the new store (#16021 ) The CockroachDB database is slower than PostgreSQL, therefore it will only run branches and nightly builds. Closes #16020	2022-12-17 08:50:21 +01:00
Pedro Igor	857b02be63	Allow managing the required settigs for the email attribute Closes #15026	2022-12-15 13:11:06 -08:00
Pedro Igor	782d145cef	Allow updating authz settings via default client registration provider Closes #9008	2022-12-15 20:43:43 +01:00
Alexander Schwartz	bd4acfe4c6	Removing testsuite/performance from main Keycloak repository (#15950 ) There's a separate repository keycloak-benchmark for this. Closes #14192	2022-12-15 14:43:24 +01:00
Stian Thorgersen	c1b0f2a6ab	Rebalanace BaseIT test groups (#16007 )	2022-12-15 08:52:30 +01:00
Stian Thorgersen	a5670af745	Keycloak CI workflow refactoring (#15968 ) * Keycloak CI workflow refactoring Closes #15861 * Update testsuite/integration-arquillian/tests/base/testsuites/base-suite.sh Co-authored-by: Hynek Mlnařík <hmlnarik@users.noreply.github.com> * Update testsuite/integration-arquillian/tests/base/testsuites/suite.sh Co-authored-by: Hynek Mlnařík <hmlnarik@users.noreply.github.com> * Update testsuite/integration-arquillian/tests/base/testsuites/suite.sh Co-authored-by: Hynek Mlnařík <hmlnarik@users.noreply.github.com> * Update CodeQL actions Co-authored-by: Hynek Mlnařík <hmlnarik@users.noreply.github.com>	2022-12-14 16:12:23 +01:00
Stian Thorgersen	0f2ca3bfdd	fixes from release/20 (#15982 ) * Avoid path traversal vis double-url encoding of redirect URI (#8) (cherry picked from commit a2128fb9e940d96c2f9a64edcd4fbcc768eedb4f) * Do not resolve user session if corresponding auth session does not exist (#7) * Stabilizing the ConcurrentLoginTest when running with JPA map storage by locking user sessions (#9) Co-authored-by: Marek Posolda <mposolda@gmail.com> Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>	2022-12-14 07:46:17 +01:00
Stian Thorgersen	30cc16e648	Move authorization tests into authz package (#15957 ) Closes #15956	2022-12-12 18:09:11 +01:00
Peter Zaoral	1073a342cf	Cleanup dependencies and align with Quarkus * aligned parent POM dependency versions with the Quarkus BOM Closes #15325 Signed-off-by: Peter Zaoral <pzaoral@redhat.com>	2022-12-09 09:10:30 -03:00
Hynek Mlnařík	208affe000	Update generator to record the entity to fields mapping Fixes: #15677	2022-12-08 15:40:28 +01:00
Michal Hajas	de7dd77aeb	Change id of TermsAndConditions required actions to uppercase Closes #9991	2022-12-07 10:51:37 -03:00
mposolda	f4e91a5312	The redirect URI cannot be verified during logout in the case when client was removed closes #15866	2022-12-07 08:20:30 +01:00
mposolda	264c5a6cdb	Support for KcReg and KcAdm CLI to use BCFIPS instead of BC on FIPS platforms Closes #14968	2022-12-06 13:02:46 +01:00
Pedro Igor	022d2864a6	Make sure JAX-RS resource methods are advertizing the media type they support Closes #15811 Closes #15810	2022-12-06 08:13:43 -03:00
Stian Thorgersen	2f0d8cd895	Move hok, par, and rar tests to oauth package (#15834 ) Closes #15833	2022-12-05 15:42:20 +01:00
Michal Hajas	59ccae76cb	Fix flaky JS test (#15804 ) Closes #15761 Co-authored-by: Stian Thorgersen <stianst@gmail.com>	2022-12-05 13:16:04 +01:00
Pedro Igor	168734b817	Removing references to request and response from Resteasy Closes #15374	2022-12-01 08:38:24 -03:00
Stian Thorgersen	8e6437e596	Fix Flaky test: RequiredActionTotpSetupTest.setupTotpExistingReusableCodeDisabled (#15779 ) Closes #15564	2022-12-01 10:41:46 +01:00
Hynek Mlnařík	60ce949304	Ignore unknown clients in LDAP role mapper Fixes: #10958	2022-12-01 09:51:05 +01:00
Stian Thorgersen	c24bc1bab0	Tweak time offset in RefreshTokenTest (#15760 ) Closes #15718	2022-11-30 16:11:46 +01:00
Stian Thorgersen	c3c858c88a	Fix OpenshiftClientStorageTest.testCodeGrantFlowWithServiceAccountUsingOAuthRedirectReference (#15741 ) Closes #15565	2022-11-29 14:20:21 +01:00
dependabot[bot]	82f08b709c	Bump sshd-core in /testsuite/integration-arquillian/util Bumps [sshd-core](https://github.com/apache/mina-sshd) from 2.3.0 to 2.7.0. - [Release notes](https://github.com/apache/mina-sshd/releases) - [Changelog](https://github.com/apache/mina-sshd/blob/master/CHANGES.md) - [Commits](https://github.com/apache/mina-sshd/compare/sshd-2.3.0...sshd-2.7.0) --- updated-dependencies: - dependency-name: org.apache.sshd:sshd-core dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>	2022-11-28 12:04:15 -03:00
dependabot[bot]	3a35b05253	Bump ant in /testsuite/integration-arquillian/tests Bumps ant from 1.9.15 to 1.10.11. --- updated-dependencies: - dependency-name: org.apache.ant:ant dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>	2022-11-28 12:03:47 -03:00
dependabot[bot]	17be19d4d3	Bump commons-io in /testsuite/integration-arquillian/util Bumps commons-io from 2.6 to 2.7. --- updated-dependencies: - dependency-name: commons-io:commons-io dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>	2022-11-28 12:03:20 -03:00
Miquel Simon	88bc5e2307	Use different Postgres image in Testcontainers. Upgraded Testcontainers dependency to 1.17.5.	2022-11-28 10:57:14 +01:00
mposolda	3e9c729f9e	X.509 authentication fixes for FIPS Closes #14967	2022-11-25 11:50:30 +01:00
Stefan Guilhen	5c2a5fac31	Enable all test methods in ConcurrentLoginTest for JPA Map Storage - Tests still disabled for Hotrod and CHM - Fixes concurrent login issues with CRDB. Verified with both PostgreSQL and CockroachDB. Closes #12707 Closes #13210	2022-11-24 13:36:22 +01:00
Lex Cao	dd03137ea7	Strip secret of user when creating from admin API Closes #14843	2022-11-24 11:38:42 +01:00
Alexander Schwartz	410b5ab57f	Make tests run on Oracle DB on the internal pipeline Closes #15643	2022-11-23 13:49:01 +01:00
Nagy Vilmos	4b6b607fe9	Should not hide IDP from login page (#14174 ) Closes #14173	2022-11-23 10:49:21 +01:00
rmartinc	b7188c3891	Unknown bind DN using LDAP anonymous bind aka bind type none (#15546 ) Closes #15497	2022-11-23 10:23:46 +01:00
danielFesenmeyer	18381ecd2e	Fix update of group mappers on certain changes of the group path The group reference in the mapper was not updated in the following cases: - group rename: when an ancestor group was renamed - (only for JpaRealmProvider, NOT for MapRealmProvider/MapGroupProvider) group move: when a group was converted from subgroup to top-level or when a subgroup's parent was changed Closes #15614	2022-11-23 10:12:34 +01:00
Alexander Schwartz	fb315b57c3	Use the same Oracle driver for the tests and Undertow like for Quarkus Closes #15576	2022-11-23 09:26:18 +01:00
cgeorgilakis-grnet	085dd24875	Client registration service do not check client protocol for Bearer token Closes #15612	2022-11-23 08:49:13 +01:00
Pedro Igor	28fc5b4574	Removing injection points for Resteasy objects and resolving instances from keycloak context instead Relates #15374	2022-11-21 19:47:25 +01:00
Alexander Schwartz	0bad673219	Disabling unstable test until further analysis is complete Relates to #15487	2022-11-21 16:46:25 +01:00
Stefan Guilhen	f8df04b3b8	Fix UserSessionProviderTest.testOnClientRemoved on CRDB Closes #15558	2022-11-21 13:05:11 +01:00
Michal Hajas	6d683824a4	Deprecate DBLockProvider and replace it with new GlobalLockProvider Closes #9388	2022-11-16 16:13:25 +01:00
Martin Kanis	5e891951f5	Update Infinispan version to 14.0.2.Final	2022-11-16 14:56:45 +01:00
Alexander Schwartz	80dab89468	Disabling unstable test until further analysis is complete Relates to #15487	2022-11-15 16:12:20 +01:00
Douglas Palmer	9f532eecaf	Weird export/re-import behaviour regarding post.logout.redirect.uris Closes #14884	2022-11-15 09:24:32 +01:00
Michal Hajas	9944a594eb	Use DELETE statement instead of deleting one by one for HotRod store Closes #9420	2022-11-11 13:51:03 +01:00
vramik	021189f190	Make GHA Map-JPA base testsuite running with Quarkus Co-authored-by: Martin Batros <mabartos@redhat.com> Closes #13725	2022-11-10 10:08:14 +01:00
Jia Chen	c3d53ae6e0	Returns an empty groups stream without querying the database if a user doesn't belong to any groups Closes #12567	2022-11-09 13:07:42 +01:00
Michal Hajas	dc007eab6f	Ignore test until the intermittent failure from #14917 is resolved	2022-11-07 20:47:39 +01:00
Michal Hajas	d9dcb6c60a	Fix Infinispan adapter not checking updated value in getAttribute methods Closes #12819	2022-11-07 20:44:43 +01:00
danielFesenmeyer	ec30c52a00	Fix paging on the "Users in role" endpoint, when JPA persistence is used - add order-by-clause to the corresponding JPA query (ordering by username ASC) - adjust admin-client RoleResource to return a List instead of a Set, by introducing new methods #getUserMembers (instead of #getRoleUserMembers - the "Role" prefix is not needed, because it is clear from the resource name that it's about roles) - adjust tests to use the new method and check that the expected order is returned Closes #14772	2022-11-07 20:44:06 +01:00
stianst	1de9c201c6	Refactor Profile Closes #15206	2022-11-07 07:28:11 -03:00
Marek Posolda	c0c0d3a6ba	Short passwords with PBKDF2 mode working (#14437 ) * Short passwords with PBKDF2 mode working Closes #14314 * Add config option to Pbkdf2 provider to control max padding * Update according to PR review - more testing for padding and for non-fips mode	2022-11-06 14:49:50 +01:00
Marek Posolda	f616495b05	Fixing UserFederationLdapConnectionTest,LDAPUserLoginTest to work with FIPS (#15299 ) closes #14965	2022-11-03 16:35:57 +01:00
Marek Posolda	2ba5ca3c5f	Support for multiple keys with same kid, which differ just by algorithm in the JWKS (#15114 ) Closes #14794	2022-11-03 09:32:45 +01:00
vramik	6bbcdd44a5	Run map-jpa model tests profile in GHA Closes #13573	2022-11-02 15:30:08 +01:00
Stian Thorgersen	cf913af823	Add support for Microsoft Authenticator (#15272 ) Closes #15271	2022-11-02 12:56:07 +01:00
Stian Thorgersen	cac4c43052	Remove AccountPasswordPage from testsuite (#15204 ) Closes #15200	2022-11-02 06:20:39 +01:00
Alexander Schwartz	dd5a60c321	Allow a partial import to overwrite the default role Closes #9891	2022-11-01 15:35:02 -03:00
Pedro Igor	f6985949b6	Close the session within resteasy boundaries (#15193 ) Closes #15192	2022-11-01 11:06:34 +01:00
Stian Thorgersen	17117820cc	Remove AccountFormServiceTest (#15197 ) Closes #15196	2022-10-28 12:26:59 +02:00
Master_Sky	164465861b	fix(sec): upgrade org.apache.tomcat:tomcat-catalina to 8.5.76 (#14950 ) Co-authored-by: stianst <stianst@gmail.com>	2022-10-25 09:30:28 -03:00
Michal Hajas	883e83e625	Remove deprecated methods from data providers and models Closes #14720	2022-10-25 09:01:33 +02:00
Alexander Schwartz	9b80bad391	Stabilize test testAccountManagementLinkIdentity by waiting for username to appear Closes #15054	2022-10-24 19:19:27 +02:00
Stian Thorgersen	29b8294dd6	Filter list of supported OTP applications by current policy (#15113 ) Closes #15112	2022-10-24 16:47:16 +02:00
mposolda	55c514ad56	More flexibility in keystore related tests, Make keycloak to notify which keystore types it supports, Support for BCFKS Closes #14964	2022-10-24 08:36:37 +02:00
Stian Thorgersen	97ae90de88	Remove Red Hat Single Sign-On product profile from upstream (#14697 ) * Remove Red Hat Single Sign-On product profile from upstream Closes #14916 * review suggestions: Remove Red Hat Single Sign-On product profile from upstream Closes #14916 Co-authored-by: Peter Skopek <pskopek@redhat.com>	2022-10-18 14:43:04 +02:00
Marek Posolda	0756ef9a75	Initial integration tests with BCFIPS distribution (#14895 ) Closes #14886	2022-10-17 23:33:22 +02:00
Stian Thorgersen	f7490b7f7c	Fix issue where admin2 was not enabled by default if account2 was disabled (#14914 ) Refactoring ThemeSelector and DefaultThemeManager to re-use the same logic for selecting default theme as there used to be two places where one had a broken implementation Closes #14889	2022-10-17 15:17:54 +02:00
Alexander Schwartz	97c4495c4f	Updating H2 database to 2.x Closes #12607 Co-authored-by: Stian Thorgersen <stian@redhat.com>	2022-10-14 11:52:34 +02:00
vramik	f49582cf63	MapUserProvider in KC20 needs to store username compatible with KC19 to be no-downtime-upgradable Closes #14678	2022-10-14 09:32:38 +02:00
danielFesenmeyer	f80a8fbed0	Avoid login failures in case of non-existing group or role references and update references in case of renaming or moving - no longer throw an exception, when a role or group cannot be found, log a warning instead - update mapper references in case of the following events: - moving a group - renaming a group - renaming a role - renaming a client's Client ID (may affect role qualifiers) - in case a role or group is removed, the reference still will not be changed - extend and refactor integration tests in order to check the new behavior Closes #11236	2022-10-13 13:23:29 +02:00
Martin Kanis	761929d174	Merge ActionTokenStoreProvider and SingleUseObjectProvider (#13677 ) Closes #13334	2022-10-13 09:26:44 +02:00
Lex Cao	8ea3f30d82	Support profile projection parameter for LinkedIn IDP Closes #13384	2022-10-11 15:22:00 -03:00
Takashi Norimatsu	148c7695ff	Pluggable Features of Token Manager Closes #12065	2022-10-07 08:43:34 +02:00
Marek Posolda	425b6b8df2	Parameters 'client_id' and 'response_type' not strictly required in O… (#14679 ) * Parameters 'client_id' and 'response_type' not strictly required in OIDC request object Closes #14255	2022-10-05 11:20:15 +02:00
Douglas Palmer	44aae52fb4	Fixed locale switcher on error page (#14728 ) Closes #14205	2022-10-05 10:30:07 +02:00
Marek Posolda	c59660ca86	KEYCLOAK_SESSION not working for some user federation setups when user ID has special chars (#14560 ) closes #14354	2022-10-05 08:59:30 +02:00
Marek Posolda	fb24c86a3b	offline token issuance can cause violation of PRIMARY KEY constraint CONSTRAINT_OFFL_CL_SES_PK3 (#14658 ) closes #13706	2022-10-03 12:54:12 +02:00
Stian Thorgersen	390c7485c7	Remove WildFly dist modules (#14675 ) Closes #14307	2022-09-30 14:26:55 +02:00
Alice Wood	1eb7e95b97	enhance existing group search functionality allow exact name search keycloak/keycloak#13973 Co-authored-by: Abhijeet Gandhewar <agandhew@redhat.com>	2022-09-30 10:37:52 +02:00
Martin Bartoš	a20d6e2f1f	Remove JBoss-based auth servers from the testsuite (#14317 ) Closes #14299	2022-09-30 09:41:57 +02:00
Marcelo Daniel Silva Sales	22713bc144	Incorrect error message OIDC client authentication (#14656 ) closes #12162 Co-authored-by: Pedro Hos <pedro-hos@outlook.com>	2022-09-30 09:40:05 +02:00

1 2 3 4 5 ...

5975 commits