Commit graph

504 commits

Author SHA1 Message Date
Stian Thorgersen
216e24864a Merge branch 'ldap' of https://github.com/mposolda/keycloak into mposolda-ldap
Conflicts:
	admin-ui/src/main/resources/META-INF/resources/admin/js/app.js
	admin-ui/src/main/resources/META-INF/resources/admin/js/controllers/realm.js
2014-04-04 15:29:03 +01:00
Stian Thorgersen
88ddc8ebca Added audit to admin console 2014-04-04 15:16:08 +01:00
mposolda
2aac603fad Added configuration of authentication providers into admin console 2014-04-04 13:20:12 +02:00
Stian Thorgersen
8caf3fa83a Added details to log view in acct mngmt 2014-04-04 11:01:18 +01:00
Stian Thorgersen
3433227fa7 Added audit log to account mngmt 2014-04-03 16:27:31 +01:00
Stian Thorgersen
e6067c915d Added ProviderSession to requests 2014-04-03 16:27:31 +01:00
Bill Burke
126b444d77 brute force merge 2014-04-02 20:26:33 -04:00
Bill Burke
d58870545f brute force protection 2014-04-02 20:09:14 -04:00
Bill Burke
231e8895a5 Merge pull request #309 from vibe13/master
Cleaning of pom.xml files
2014-04-02 11:39:04 -04:00
mposolda
25bf6d63b4 Refactoring of AuthenticationProvider SPI 2014-04-02 17:27:07 +02:00
mposolda
05cd8a82e5 Storing default AuthenticationProvider at the realm creation time 2014-04-02 17:17:33 +02:00
Stian Thorgersen
225307e855 KEYCLOAK-389 Added AuditListener SPI
KEYCLOAK-390 Added JBoss Logging AuditListener
KEYCLOAK-391 Audit Token events
2014-03-31 17:35:14 +01:00
Andrea Vibelli
84f1e1b56e Extraction into properties of maven-compiler-plugin source and target 2014-03-31 11:17:16 +02:00
Andrea Vibelli
37fdc50fb4 Remove warnings about no schema definition in pom.xml files 2014-03-31 10:44:22 +02:00
mposolda
77a44751a6 KEYCLOAK-388 - Auth SPI should be able to differentiate between the INVALID_USERNAME and INVALID_CREDENTIALS 2014-03-26 09:49:47 +01:00
mposolda
ab02dea902 Fixes in AuthenticationProvider. Fixing testsuite 2014-03-25 15:05:08 +01:00
mposolda
793f69d4b6 Authentication SPI. Implementations based on Picketlink+LDAP, model and external model (other realm). Added KeycloakRegistry 2014-03-24 23:11:11 +01:00
Stian Thorgersen
702ae0307e Fixes to account referrer to allow configurable referrer uri based on app redirect uri 2014-03-19 16:52:41 +00:00
Stian Thorgersen
331ab71427 KEYCLOAK-380 Added OAuth2Constants 2014-03-15 10:43:52 +00:00
Stian Thorgersen
f9aaa16cfe KEYCLOAK-378 KEYCLOAK-379 KEYCLOAK-381 Fix refresh token if token contains app roles. Changed long time fields in AccessCode and AccessToken to int 2014-03-15 10:15:10 +00:00
Bill Burke
7763da1273 bump version to beta-1 snapshot 2014-03-13 11:24:38 -04:00
Bill Burke
1c6b867079 bump version 2014-03-13 10:58:22 -04:00
Bill Burke
08769a2daa NPE in create user 2014-03-13 10:56:09 -04:00
Stian Thorgersen
ee5cab04e0 Set next version 2014-03-13 09:10:42 +00:00
Bill Burke
3ff8d0fd1f bump version 2014-03-12 16:48:12 -04:00
Bill Burke
52018b1f81 revoke on logoutAll 2014-03-12 15:57:43 -04:00
Bill Burke
e48cc006f6 Merge remote-tracking branch 'upstream/master' 2014-03-12 10:17:24 -04:00
Bill Burke
accb56be7f user import fix 2014-03-12 10:17:09 -04:00
Stian Thorgersen
a1f10ef54b Merge pull request #285 from stianst/master
Add user friendly username for social links. Show access denied if social login is cancelled
2014-03-12 13:52:28 +00:00
Stian Thorgersen
0214827492 KEYCLOAK-364 Show access denied if social login is cancelled 2014-03-12 09:21:11 +00:00
Stian Thorgersen
6dc156712e KEYCLOAK-359 Add user friendly username for social links 2014-03-12 08:52:47 +00:00
Bill Burke
e836371887 security context propagation 2014-03-11 17:40:53 -04:00
mposolda
3d0d130622 KEYCLOAK-26 Linking social providers to existing account 2014-03-10 11:31:59 +01:00
Bill Burke
2b01de5ecf remove transaction 2014-03-07 08:35:41 -05:00
Bill Burke
dd292c1d52 remove scope support for now part 2 2014-03-06 10:26:46 -05:00
Bill Burke
801ef3281a remove scope support for now 2014-03-06 09:59:27 -05:00
Bill Burke
8f29bf0a5a client type selection 2014-03-06 09:48:52 -05:00
Bill Burke
599faa3cb5 public clients 2014-03-05 20:26:27 -05:00
Stian Thorgersen
60bb05e6ca Added Config to centralize system properties used to configure KC 2014-03-05 15:20:53 +00:00
Stian Thorgersen
0219aa1e4c Added support for any port with http://localhost redirect uri 2014-03-05 12:54:57 +00:00
Bill Burke
d6bd02ea7d session mgmt 2014-03-04 22:25:33 -05:00
Bill Burke
7699dd2701 Merge remote-tracking branch 'upstream/master' 2014-03-04 15:52:40 -05:00
Bill Burke
2d86b29b6c session stats 2014-03-04 15:52:27 -05:00
Stian Thorgersen
77259320cf Fix js for cors requests 2014-03-04 15:27:13 +00:00
Bill Burke
06288fa07b revocation app level 2014-03-03 17:10:15 -05:00
Bill Burke
01154f18dd Merge remote-tracking branch 'upstream/master' 2014-03-03 15:50:21 -05:00
Bill Burke
716972347d revocation 2014-03-03 15:50:10 -05:00
Stian Thorgersen
87aaaf0b06 Started support for installed applications 2014-03-03 12:58:16 +00:00
Bill Burke
8126110312 refactor getRoleById 2014-03-02 20:28:58 -05:00
Bill Burke
c8023c6651 revocation next phase: undertow complete 2014-03-02 17:32:25 -05:00
Bill Burke
7b30cc59b8 revocation phase 1 2014-02-28 19:47:05 -05:00
Bill Burke
0d309d058c add claims to grant page 2014-02-28 10:45:12 -05:00
Bill Burke
11559cba50 public realm info update 2014-02-28 09:52:53 -05:00
Bill Burke
4dc4c56921 fix NPE 2014-02-28 09:19:26 -05:00
Bill Burke
3fc273070e remove clientmodel.agent phase1 2014-02-27 13:55:04 -05:00
Bill Burke
f8da693fd0 move secret to clientmodel 2014-02-27 10:59:47 -05:00
Stian Thorgersen
32b7c464c7 Added create-realm role 2014-02-27 11:07:48 +00:00
Stian Thorgersen
b3375d4279 Fixed permissions not updated when realm is imported 2014-02-27 10:23:27 +00:00
Bill Burke
42d30a5a70 rename scope rep username to client 2014-02-26 22:23:04 -05:00
Bill Burke
48d39bf977 Use ClientModel wherever possible 2014-02-26 22:04:57 -05:00
Bill Burke
c02d532001 refactor model 2014-02-26 19:25:42 -05:00
Bill Burke
0f67feb9dd IDToken setup 2014-02-26 19:04:42 -05:00
Bill Burke
8613452f4f Merge remote-tracking branch 'upstream/master' 2014-02-26 15:29:31 -05:00
Bill Burke
b249809d2e claims backend 2014-02-26 15:29:17 -05:00
Stian Thorgersen
ae1b98e38f Added view roles, including updating console to make forms read-only 2014-02-26 17:38:42 +00:00
Stian Thorgersen
9a73936002 KEYCLOAK-292 Fine-grained admin control 2014-02-25 12:53:36 +00:00
Bill Burke
64065a4573 javascript refresh token 2014-02-24 19:58:54 -05:00
Bill Burke
166e00f2e8 remember me 2014-02-23 11:30:32 -05:00
Bill Burke
01ddafa83a central login timeouts, rememberme framework 2014-02-22 21:52:29 -05:00
Bill Burke
3e88cb3b76 logout 2014-02-22 20:40:06 -05:00
Bill Burke
273e706a42 undertow refresh token support 2014-02-22 17:24:04 -05:00
Bill Burke
0a9b82a6f4 refresh tokens server side 2014-02-21 17:36:39 -05:00
Bill Burke
97dd7470ce rename tokenLifespan to accessTokenLifespan 2014-02-21 12:12:54 -05:00
Bill Burke
e583dc60ae Merge remote-tracking branch 'upstream/master' 2014-02-21 12:02:36 -05:00
Bill Burke
9607acdb6a refactor token creation 2014-02-21 12:02:24 -05:00
Stian Thorgersen
05bd92d765 KEYCLOAK-286 Allow login with username or email. KEYCLOAK-287 Remove recover username as we now support login with email 2014-02-21 15:25:55 +00:00
Bill Burke
9442601e42 rename some classes 2014-02-21 10:16:12 -05:00
Stian Thorgersen
9ce8e16063 KEYCLOAK-284 Subject in token is now user id instead of username 2014-02-21 09:48:43 +00:00
Bill Burke
6794166b58 tokens/access/codes now uses basic auth 2014-02-20 17:19:51 -05:00
Bill Burke
00043423c2 alpha 3 version bump 2014-02-19 23:22:34 -05:00
Bill Burke
27f61a9f86 bump version 2014-02-19 21:01:42 -05:00
Stian Thorgersen
e9750c3d70 KEYCLOAK-298 If admin or accnt mngmt cookies are invalid, the identity cookie was expired by mistake 2014-02-19 11:12:59 +00:00
Stian Thorgersen
325919e24a KEYCLOAK-297 Fixed invalid state param when loggin to admin acct mngmt 2014-02-17 15:14:11 +00:00
Bill Burke
81a90232d6 Merge pull request #213 from patriot1burke/master
oauth client generates secret
2014-02-14 17:46:09 -05:00
Bill Burke
b518fa2f4b oauth client generates secret 2014-02-14 17:45:46 -05:00
Stian Thorgersen
01bb835285 Updated login forms to use Patternfly styles 2014-02-14 17:38:04 +00:00
Bill Burke
0cdd5e857e use secrets 2014-02-13 18:36:41 -05:00
mposolda
b9ff73d61c Moved model unit tests from services to model/tests . Mongo profile in testsuite 2014-02-11 18:26:50 +01:00
mposolda
b3f1032f96 Mongo: Refactoring. All unit tests and testsuite are passing with Mongo. 2014-02-11 18:25:57 +01:00
mposolda
81ff7b0c6d Refactoring Mongo model. All unit tests passing with mongo 2014-02-11 15:23:30 +01:00
Stian Thorgersen
a89a1d524c KEYCLOAK-288 Check if totp setup or email verification is required on social login 2014-02-07 16:13:53 +00:00
Bill Burke
127ee40f23 Merge pull request #194 from patriot1burke/master
composite switch
2014-02-05 10:28:41 -05:00
Bill Burke
cce8814254 composite switch 2014-02-05 10:28:11 -05:00
Stian Thorgersen
722f7c8840 KEYCLOAK-272 Improved user credential management, including option to send user password reset email from admin console 2014-02-05 14:43:48 +00:00
Stian Thorgersen
457853aa28 KEYCLOAK-233 Add referrer query parm to manage app link in admin console to display back to app link 2014-02-05 11:31:18 +00:00
Stian Thorgersen
8b5fbe92d6 Added GitHub provider. Simplified FaceBook provider 2014-02-05 10:55:52 +00:00
Bill Burke
d2ad6349ba remove setComposite 2014-02-04 18:41:36 -05:00
Bill Burke
7c190e40ee fix demo 2014-02-04 12:02:09 -05:00
Bill Burke
4e66a3bf81 Merge remote-tracking branch 'upstream/master' 2014-02-04 10:09:25 -05:00
Bill Burke
92091d9474 composite tests 2014-02-04 10:09:09 -05:00
Stian Thorgersen
4c22a8c92b Renamed login forms provider classes 2014-02-04 14:45:11 +00:00
Stian Thorgersen
97897cab1d KEYCLOAK-15 Customize login and registration forms 2014-02-04 11:45:24 +00:00
Stian Thorgersen
38b7dcdf7d Fixes to persistence.xml for distribution 2014-02-04 11:44:02 +00:00
Bill Burke
8505cc612a composite representations 2014-02-03 17:21:56 -05:00
Bill Burke
e222240282 composite UI 2014-01-31 21:39:54 -05:00
Bill Burke
1543963c9f composite tests 2014-01-30 20:31:44 -05:00
Bill Burke
6a5994c3e2 composite roles 2 2014-01-29 23:28:08 -05:00
Bill Burke
bb5991239b composite roles 2014-01-29 20:19:32 -05:00
Stian Thorgersen
06c3a6ea30 KEYCLOAK-271 Check password policy when recovering password through email 2014-01-24 14:48:58 +00:00
Stian Thorgersen
4cb98a3aa4 Set version to 1.0-alpha-2-SNAPSHOT 2014-01-24 09:34:54 +00:00
Bill Burke
c77a6dfc40 dist 2014-01-22 19:18:00 -05:00
Bill Burke
cbd1e0aad5 error screen 2014-01-21 13:05:56 -05:00
Stian Thorgersen
e92980b776 Simplified check for ssl, since x-forward is sorted by Undertow 2014-01-20 19:31:02 +00:00
Stian Thorgersen
070c0ddba4 Renamed registration to default roles, add default roles to all users when they are created 2014-01-17 10:03:13 +00:00
Stian Thorgersen
c5366f1c81 KEYCLOAK-264 Remove option to enable/disable acct mngmt 2014-01-17 09:30:56 +00:00
Stian Thorgersen
dcfb83b0f2 KEYCLOAK-64 KEYCLOAK-246 Updated social to use update profile required action instead of registration form. Fixed Google provider 2014-01-16 12:52:46 +00:00
Bill Burke
b162190c7f remove cookieLoginAllowed 2014-01-15 20:31:01 -05:00
Bill Burke
894c28c64f role name instead of id 2014-01-15 19:39:21 -05:00
Bill Burke
ed0d33126c use app name instead of id 2014-01-15 16:57:12 -05:00
Bill Burke
6326d5d2b5 auth-server-url and Realm/App name changes 2014-01-15 10:02:56 -05:00
Bill Burke
cb391eb89a finish using realm name instead of id 2014-01-14 16:13:52 -05:00
Bill Burke
2dbd7cfa02 realm name for url param 2014-01-14 13:03:13 -05:00
Bill Burke
4825974edc realm name in url 2014-01-13 23:38:00 -05:00
Bill Burke
62cc002396 constants 2014-01-13 19:42:34 -05:00
Bill Burke
39b61728d6 change uri scheme 2014-01-13 17:07:36 -05:00
Stian Thorgersen
739866de0c KEYCLOAK-255 Added tmp redirect to admin/index.html as work-around to WildFly issue 2014-01-13 11:27:02 +00:00
Stian Thorgersen
6647ddb66e KEYCLOAK-252 Show error page (or 406) if realm requires https and http is used 2014-01-10 17:04:52 +00:00
Stian Thorgersen
0a57ba026b KEYCLOAK-180 Renamed JWT prn to sub 2014-01-10 10:22:58 +00:00
Stian Thorgersen
f14931d234 KEYCLOAK-251 Added installation page for oauth clients to admin console 2014-01-10 10:17:39 +00:00
Bill Burke
a1b7297f25 wildfly deployment structure.xml 2014-01-02 16:24:04 -05:00
Bill Burke
30cb9df307 undertow logout 2013-12-19 18:32:47 -05:00
Bill Burke
834baf0e27 refactor admin actions 2013-12-19 15:22:15 -05:00
Bill Burke
cbf46720c7 installation text 2013-12-17 18:16:17 -05:00
Bill Burke
6380dc3d1b refactor out resteasy from adapters 2013-12-17 12:07:02 -05:00
Bill Burke
d22b6f8df7 factor out jwt/jose/jws 2013-12-16 11:19:46 -05:00
Stian Thorgersen
fbe8c5cdec Added SocialLoader to social core 2013-12-11 14:24:18 +00:00
Stian Thorgersen
00a7d88dee Replaced javax.imageio.spi.ServiceRegistry with java.util.ServiceLoader 2013-12-11 14:24:18 +00:00
mposolda
8e3e99f392 KEYCLOAK-225 NPe after login when 'Verify email' is enabled but SMTP is not configured 2013-12-10 16:30:12 +01:00
mposolda
bec267237a KEYCLOAK-226 Display header To in email message sent from Keycloak 2013-12-10 16:05:13 +01:00
Stian Thorgersen
53e61326c1 Set status code to internal server error on error pages 2013-12-07 16:00:13 +00:00
Stian Thorgersen
145eab98d8 KEYCLOAK-221 Don't require username to recover password 2013-12-07 13:34:31 +00:00
Stian Thorgersen
cd8c8d52e8 KEYCLOAK-217 Add option to recover username 2013-12-07 13:18:06 +00:00
Stian Thorgersen
0dad786b35 KEYCLOAK-220 Fix login to realm with space in id, KEYCLOAK-199 Add account management to admin realm 2013-12-07 11:35:32 +00:00
Stian Thorgersen
43da684a91 KEYCLOAK-218 Show error page if failed to send email 2013-12-07 11:00:45 +00:00
Bill Burke
c63abbdf3e Merge remote-tracking branch 'upstream/master' 2013-12-06 17:28:51 -05:00
Bill Burke
edba13e596 realm upload 2013-12-06 17:28:32 -05:00
Stian Thorgersen
c514e6c152 KEYCLOAK-197 Fix search for users returns users for all realms 2013-12-06 19:22:55 +00:00
Stian Thorgersen
a423c38e42 KEYCLOAK-214 view all users in a realm through admin console 2013-12-06 19:09:03 +00:00
Bill Burke
d86dec6561 version bump to SNAPSHOT 2013-12-06 09:45:08 -05:00
Bill Burke
4909316d59 pom version bump 2013-12-06 08:40:35 -05:00
Stian Thorgersen
493d281dc4 KEYCLOAK-193 Prevent creating multiple apps in a realm with the same name 2013-12-05 13:22:15 +00:00
Stian Thorgersen
f133ecfcf7 KEYCLOAK-192 Set realm id to name if not specified 2013-12-05 13:22:15 +00:00
Stian Thorgersen
eea812dfda KEYCLOAK-190 KEYCLOAK-191 Fixed redirect uri's 2013-12-04 19:04:19 +00:00
Stian Thorgersen
a7b653de28 KEYCLOAK-185 Added cancel button to login form 2013-12-03 15:11:18 +00:00
Stian Thorgersen
7f499b2833 KEYCLOAK-186 Password policies 2013-12-03 12:53:26 +00:00
Stian Thorgersen
85eeb415e1 KEYCLOAK-181
Link back to application from account management pages
2013-11-28 13:48:30 +00:00
Bill Burke
799df520b8 realm import changes 2013-11-27 17:02:12 -05:00
Bill Burke
3a9f9d73c2 Merge remote-tracking branch 'upstream/master' 2013-11-26 15:40:24 -05:00
Bill Burke
f79739f73e oauth client 2013-11-26 15:39:57 -05:00
Stian Thorgersen
c6f4e21b84 KEYCLOAK-153
Realm installation page
2013-11-26 17:28:00 +00:00
Stian Thorgersen
f933ffba3f User search returned users for all realms 2013-11-26 13:53:57 +00:00
Stian Thorgersen
52c7ae057a Delete realm 2013-11-25 15:38:25 +00:00
Stian Thorgersen
fad194fc8f Improved error handling in admin console. Delete roles through admin console. 2013-11-25 13:46:04 +00:00
vrockai
846c094ba2 KEYCLOAK-154 Added UI for user req actions 2013-11-20 16:46:25 +01:00
vrockai
ab7cc63084 KEYCLOAK-156 add new user properties to admin ui 2013-11-20 10:50:05 +01:00
Stian Thorgersen
42d7e430ce Fix adding all roles for an application to token, should be all roles associated with the user for that application 2013-11-18 14:16:37 +00:00
Stian Thorgersen
61e56c4cd8 Fix issue in Firefox if there's a space in the fragment on redirect 2013-11-16 12:29:04 +00:00
Stian Thorgersen
19d4b09626 KEYCLOAK-152 Re-generate realm's key pair 2013-11-16 12:21:15 +00:00
Stian Thorgersen
7a0ff0cb66 KEYCLOAK-159 2013-11-16 10:41:49 +00:00
Stian Thorgersen
219c0efbaf KEYCLOAK-105 2013-11-16 10:13:23 +00:00
Stian Thorgersen
fa710a923b KEYCLOAK-53 2013-11-16 09:14:22 +00:00
Stian Thorgersen
45424e5eba Removed '*' role 2013-11-15 16:38:44 +00:00
Stian Thorgersen
a923f44619 KEYCLOAK-100
UI: Delete User does not work
2013-11-15 16:38:28 +00:00
Stian Thorgersen
66f99d66d8 KEYCLOAK-124 2013-11-15 15:00:57 +00:00
Stian Thorgersen
9e73592381 NPE if trying to update user with no attributes 2013-11-15 15:00:43 +00:00
Stian Thorgersen
158d1740b8 KEYCLOAK-72 and KEYCLOAK-158 2013-11-15 11:03:25 +00:00
vrockai
10516a62ac KEYCLOAK-151 fix for account app lookup 2013-11-15 08:10:43 +01:00
Stian Thorgersen
5c541c5cf0 Fix - KEYCLOAK-99 UI: Users query should support wildcard 2013-11-14 17:38:23 +00:00
Stian Thorgersen
10f48a1bda Change dist to WildFly 1.0.0.Beta1 2013-11-14 16:16:08 +00:00
Stian Thorgersen
794976792a Removed empty include templates from forms, and use templates from theme directly 2013-11-12 15:26:26 +00:00
Stian Thorgersen
5916eaad13 Removed mongo dependencies from services 2013-11-12 15:19:55 +00:00
Stian Thorgersen
2e9a474eac Use service loader to load model provider 2013-11-12 11:49:03 +00:00
Stian Thorgersen
5b19e34f50 Fixed allowed methods for retrieving token with cors 2013-11-11 12:42:55 +00:00
Stian Thorgersen
fd2bfee7d9 Assign default roles to users when they register instead of directly to tokens 2013-11-08 17:51:44 +00:00
Bill Burke
2861ea0e96 nasty merge 2013-11-05 23:12:07 -05:00
Bill Burke
d04ca2c34f jpa backend 2013-11-05 21:26:33 -05:00
Stian Thorgersen
e857f2ed2a Ooops.... 2013-11-05 12:43:11 +00:00
Stian Thorgersen
7bbeddc2a3 Tweaked EmailSender, fixed SSL prop in console + added option for StartTLS 2013-11-05 10:58:33 +00:00
Stian Thorgersen
d083909136 Added support for default application roles. Added authz to account, user (or client if oauth) is required to have role manage-account to manage their account, this is a default role for the Account application. 2013-11-04 17:21:46 +00:00
Stian Thorgersen
c6f43baf0d Allow oauth clients to ask for permission to view user profile, and manage user account 2013-11-03 16:14:15 +00:00
Stian Thorgersen
7f691b463c KEYCLOAK-75 Retrieve user profile 2013-11-03 13:33:22 +00:00
Stian Thorgersen
85220ba054 Clean-up in social core 2013-11-01 16:41:16 +00:00
Stian Thorgersen
2ff46353bc Moved SocialRequestManager from social/core to services 2013-11-01 15:59:33 +00:00
Bill Burke
d6ee6aef9f adapter cors support 2013-10-30 08:28:23 -04:00
Bill Burke
0f03670c06 Merge remote-tracking branch 'upstream/master' 2013-10-25 18:04:35 -04:00
Bill Burke
6e6dccd339 cors token modifications 2013-10-25 18:03:28 -04:00
vrockai
2f9aa14a7d KEYCLOAK-115 fixing message headers 2013-10-25 15:15:53 +01:00
vrockai
508a9a1e6b KEYCLOAK-115 add social provider config page 2013-10-25 15:14:19 +01:00
Stian Thorgersen
45b5f5afd5 Add setting realm.accessCodeLifespanUserAction in admin console 2013-10-25 12:39:25 +01:00
Stian Thorgersen
2bb3753289 Added prompt option to auth/login. If prompt='none' is specified the authentication form or grant forms will not be displayed, instead an error is returned 2013-10-24 10:54:00 +01:00