keycloak-scim

Author	SHA1	Message	Date
Stian Thorgersen	90e5c7f3eb	Bump version to 4.0.0.Beta3-SNAPSHOT (#5185 )	2018-05-02 14:32:20 +02:00
Martin Kanis	9505925363	Revert "KEYCLOAK-5270 Realm cookie path for IE<=11 users (#5106 )" (#5183 ) This reverts commit `a67da7bc59`.	2018-05-02 09:31:42 +02:00
mhajas	6e123bcea2	KEYCLOAK-6847 Fix OIDC adapter tests	2018-05-02 09:28:26 +02:00
pedroigor	ddceaaf3d5	[KEYCLOAK-7206] - Search by user id on admin console	2018-04-30 11:44:33 -03:00
vmuzikar	5ec50461ee	KEYCLOAK-7101 Fix DockerClientTest	2018-04-27 15:02:10 +02:00
Pedro Igor	e960642399	Merge pull request #5144 from pedroigor/KEYCLOAK-4903 [KEYCLOAK-4903] - Pushed Claims	2018-04-26 15:59:13 -03:00
pedroigor	035ebc881a	[KEYCLOAK-4903] - Claim Information point Provider SPI and configuration	2018-04-25 10:16:41 -03:00
vramik	8b5fd2b4ac	KEYCLOAK-7091 fuse7 testsuite	2018-04-25 14:35:56 +02:00
pedroigor	e813fcd9c8	[KEYCLOAK-4903] - Pushing claims when obtaining a permission ticket	2018-04-24 19:47:28 -03:00
mposolda	634e7170e3	KEYCLOAK-7158 RestartLoginCookie throws error when KC_RESTART cookie created by Keycloak 1.9	2018-04-23 21:56:13 +02:00
Stan Silvert	b6a0303a4c	KEYCLOAK-7196: Add kc_locale to keycloak.js (#5165 ) * KEYCLOAK-7196: Add kc_locale to keycloak.js * Update keycloak.d.ts	2018-04-23 11:45:32 -04:00
pedroigor	c3d297dd05	[KEYCLOAK-7162] - Expose WWW-Authenticate Header when using CORS	2018-04-23 08:46:54 +02:00
mhajas	a1e7351072	KEYCLOAK-6815 Use htmlunit as default browser for adapter tests	2018-04-19 15:01:14 +02:00
Martin Kanis	7efa45126c	KEYCLOAK-6991 NPE when importing realm from file	2018-04-19 14:26:50 +02:00
wyvie	4ddff9ee16	[KEYCLOAK-7017] fixed ActionTokenCrossDCTest failures Test was failing because of change of login page design. Element which contained title headers was moved from header title to another element. Was not fixed upon initial commit (ca15db) because test's only turned on by profile.	2018-04-17 16:14:10 +02:00
Vlastimil Eliáš	c1311e4619	KEYCLOAK-6849 - LinkedIn social login provider updated to new LinkedIn OAuth2 endpoint (#5125 ) * KEYCLOAK-6849 - LinkedIn social login provider updated to new LinkedIn OAuth2 endpoint * KEYCLOAK-6849 - LinkedIn social login provider test updated * KEYCLOAK-6849 - LinkedIn social login provider test updated to conditionally handle consent page when shown only * Simplify the LinkedIn app authorization This reverts commit c12359e7a13d9ff231fe2e25cddba66ad679a9cd.	2018-04-13 08:09:27 +02:00
vramik	9a94004fc9	KEYCLOAK-7137 Polish testsuite a bit	2018-04-12 16:46:59 +02:00
mhajas	b78f0aa9db	KEYCLOAK-6806 Wait for query error to appear in query response mode test (#5130 )	2018-04-10 09:58:23 +02:00
Hugo Guerrero	fac3118b0a	KEYCLOAK-6448 - implement instagram social broker (#4963 ) * KEYCLOAK-6448 - implement instagram social broker * Instagram SocialLogin Tests	2018-04-09 17:30:27 +02:00
Martin Kanis	a67da7bc59	KEYCLOAK-5270 Realm cookie path for IE<=11 users (#5106 )	2018-04-06 09:26:29 +02:00
wyvie	943bd9e48e	[KEYCLOAK-6808] fix for the WildflyConsoleProtectionTest Access Control is not an 'a' tag, but rather 'span' Also two tests do not behave correctly with a same Before annotated initialization, so reduce number of tests to one, which calls the other one	2018-04-06 07:28:29 +02:00
Pedro Igor	e1f5245145	Merge pull request #5120 from pedroigor/KEYCLOAK-7029 [KEYCLOAK-7029] - Configuration of cache policies for cached resources/path	2018-04-05 09:33:23 -03:00
wyvie	b3513e3203	[KEYCLOAK-6872] fixed account link test	2018-04-05 10:53:00 +02:00
Bill Burke	ffd9d957f4	Merge pull request #5123 from patriot1burke/kcadm-token KEYCLOAK-7044 KEYCLOAK-7046	2018-04-04 17:22:17 -04:00
Stefan Guilhen	87abe5e648	[KEYCLOAK-6853] Make TimePolicyProvider use the kc.date.time_date contextual attribute when evaluating policies	2018-04-04 14:37:03 -03:00
mhajas	b3b81d6a76	KEYCLOAK-6806 timeSkew tolerance in tests (#5110 )	2018-04-04 11:19:18 +02:00
Bill Burke	8a5428808e	KEYCLOAK-7044 KEYCLOAK-7046	2018-04-03 21:29:31 -04:00
pedroigor	a939c45d58	[KEYCLOAK-7029] - Configuration of cache policies for cached resources/path	2018-04-03 16:44:27 -03:00
Bill Burke	0b2fe75828	Merge pull request #5115 from patriot1burke/kcinit-browser KEYCLOAK-7004 KEYCLOAK-7003 KEYCLOAK-6999 KEYCLOAK-7033	2018-04-03 10:31:30 -04:00
pedroigor	5c52da80c6	[KEYCLOAK-7028] - Propagating AuthorizationContext when enforcement-mode is disable for a path	2018-04-02 11:10:43 -03:00
Bill Burke	04a72b9608	bump kcinit version tag	2018-03-31 22:34:37 -04:00
Bill Burke	4078e84fb6	server driven success page	2018-03-31 10:16:44 -04:00
Bill Burke	06f32a47ec	fake browser tests	2018-03-30 08:24:30 -04:00
Bill Burke	f4a5e49b63	initial	2018-03-29 17:14:36 -04:00
Pedro Igor	5cae1bb134	Merge pull request #5093 from pedroigor/KEYCLOAK-4102 [KEYCLOAK-4102] - Support lazy load paths	2018-03-29 09:16:34 -03:00
Bill Burke	8d3dc790df	Merge pull request #5087 from patriot1burke/kcinit KEYCLOAK-6813	2018-03-28 17:35:33 -04:00
Bill Burke	f5bacb79c1	review changes	2018-03-28 16:45:52 -04:00
pedroigor	4a425c2674	[KEYCLOAK-4102] - Support lazy loading of paths via policy enforcer config	2018-03-28 09:23:59 -03:00
Bill Burke	c38b6d585e	KEYCLOAK-528 (#5103 )	2018-03-28 11:15:37 +02:00
Bill Burke	ad5f3fefc5	Merge remote-tracking branch 'upstream/master' into kcinit	2018-03-27 16:38:35 -04:00
Pedro Igor	ffeb0420bf	Merge pull request #5079 from pedroigor/KEYCLOAK-6529 [KEYCLOAK-6529] - Resource Attributes	2018-03-27 09:30:38 -03:00
mhajas	a63bb44ba2	KEYCLOAK-3164 Migrate SAML ECP tests to integration-arquillian	2018-03-27 12:07:07 +02:00
stianst	07fea02146	Bump versions to 4.0.0.Beta2-SNAPSHOT	2018-03-26 18:17:38 +02:00
Pavel Drozd	92aba77cc1	Merge pull request #5094 from vmuzikar/fix-stackoverflow KEYCLOAK-6510 Fix StackOverflow social login test	2018-03-26 08:22:32 +02:00
Bill Burke	67229912e6	use kcinit branch	2018-03-21 13:38:40 -04:00
Bill Burke	39f93dfa33	fix providers test	2018-03-21 10:01:40 -04:00
June Zhang	ca15db81bb	KEYCLOAK-6262 Incorporate new visual design from PatternFly (#4983 ) * KEYCLOAK-6262 Incorporate new visual design from PatternFly Update the username or email Fix narrow/wide in template.ftl minor style update Add the Realm HTML name and image Config OTP and Update Password Not display the locale selector if there is less than 1 locale. Fix margins/paddings on config otp screens Fix title Upgraded to PatternFly 3.41.6 Added RCUE and updated RH-SSO login theme Refine the RCUE padding issue Fix tests Fix Keycloak background Fix * fix the overflowing issue * Fix Console UI Tests to reflect the new login page * Fix the different style of the IdP buttons Fix the IE placeholder issue - add label * Removed placeholder on login and reset pass. Fixed Keycloak background on wide screens. * fixed the stackoverflow issues fixed the width in the tablets	2018-03-21 10:47:33 +01:00
Bill Burke	f000cedcbb	Merge remote-tracking branch 'upstream/master' into kcinit	2018-03-20 16:49:43 -04:00
Bill Burke	681e3d751e	golang integration	2018-03-20 16:42:35 -04:00
Bill Burke	8926837a3e	tests	2018-03-19 16:47:13 -04:00
Stefan Guilhen	35b9fe043c	[KEYCLOAK-6543] Remove the authz examples from the Keycloak codebase.	2018-03-19 17:00:02 -03:00
Áron Bustya	82ba2b1b0d	remove changes from standard OIDC client registration, move constants	2018-03-19 19:31:22 +01:00
Áron Bustya	57f57f5c75	set request object mandatory for client, restrict delivery mode handle new attribute in client representation add to UI	2018-03-19 19:31:22 +01:00
pedroigor	08896ee9c9	[KEYCLOAK-6529] - Resource Attributes	2018-03-19 13:21:39 -03:00
Pedro Igor	917ba90f2c	Merge pull request #5077 from pedroigor/KEYCLOAK-6628 [KEYCLOAK-6628] - Expose methods to query roles, groups, and attributes of users in Evaluation API	2018-03-19 08:54:12 -03:00
Bill Burke	4bba11cd94	kcinit	2018-03-16 12:11:57 -04:00
mhajas	3826f6fae2	KEYCLOAK-3161 KEYCLOAK-3165 Migrate SAML tests from old testsuite to integration-arquillian	2018-03-15 18:15:44 +01:00
pedroigor	711bf244ed	[KEYCLOAK-6628] - Expose methods to query roles, groups, and attributes of users in Evaluation API	2018-03-15 14:02:15 -03:00
Douglas Palmer	fed1b62c5d	[KEYCLOAK-6301] Remove service account when it is disabled from the client	2018-03-14 15:09:42 +01:00
Takashi Norimatsu	e72756d01a	KEYCLOAK-6700 Financial API Read and Write API Security Profile : state hash value (s_hash) to protect state parameter	2018-03-13 16:40:34 +01:00
Pedro Igor	871ecf83fb	Merge pull request #5071 from vramik/KEYCLOAK-6644-stabilize-PhotozExampleAdapterTest KEYCLOAK-6644 PhotozExampleAdapterTest is not stable	2018-03-13 09:03:57 -03:00
vmuzikar	daaa35bc37	KEYCLOAK-6831 Fix Microsoft Social Login test	2018-03-13 10:19:27 +01:00
vramik	9d10ccef70	KEYCLOAK-6644 PhotozExampleAdapterTest is not stable	2018-03-13 09:53:17 +01:00
Pedro Igor	2aa71d1737	Merge pull request #5051 from pedroigor/KEYCLOAK-6787 [KEYCLOAK-6787] - Wrong validation of resources with same name and different owners	2018-03-12 11:41:49 -03:00
Pedro Igor	b9b1102b74	Merge pull request #5004 from pedroigor/KEYCLOAK-6623 [KEYCLOAK-6623] - Policy enforcer gets confused with similar paths ending with wildcards	2018-03-12 09:59:05 -03:00
Pedro Igor	f824582aac	Merge pull request #5009 from pedroigor/KEYCLOAK-6116 [KEYCLOAK-6116] - Get email attribute from 'subject alternative name' using X509 certificate	2018-03-12 09:58:02 -03:00
pedroigor	199f289ee3	[KEYCLOAK-6623] - Adding test	2018-03-09 16:39:33 -03:00
Hynek Mlnarik	190771ddf1	KEYCLOAK-6783 Add authentication into cross-dc testing	2018-03-09 15:08:55 +01:00
pedroigor	62b70b561e	[KEYCLOAK-6116] - Removing references to phantomjs.cli.args	2018-03-09 10:56:35 -03:00
pedroigor	1f13427dee	[KEYCLOAK-6116] - Enabling tests for both jboss servers	2018-03-09 10:56:35 -03:00
pedroigor	6aee573e2e	[KEYCLOAK-6116] - Tests for X509 Subject Alternative Name Extension	2018-03-09 10:56:35 -03:00
vmuzikar	d66c33a8b9	KEYCLOAK-6793 Support custom Chrome binary in Arquillian testsuite	2018-03-07 10:38:12 +01:00
wyvie	c27ffbda8b	[KEYCLOAK-6643] server version now retreived from server info web page	2018-03-06 10:49:09 +01:00
vmuzikar	502fc62967	KEYCLOAK-6797 Fix Social Login test	2018-03-06 10:19:10 +01:00
Bill Burke	4b6b45cf43	KEYCLOAK-6026	2018-03-05 11:57:05 -05:00
Pedro Igor	1b06194455	Merge pull request #5050 from TeliaSoneraNorge/KEYCLOAK-6659 Add pairwise sub support to authorization services	2018-03-02 14:44:28 -03:00
Martin Hardselius	8549bd70b7	Add pairwise sub support to authorization services Identity token verification will now fetch the user from the session state instead of relying on the sub provided in the token. Also done in KeycloakIdentity. Resolves: KEYCLOAK-6659	2018-03-02 13:08:27 +01:00
vramik	569f26776e	KEYCLOAK-5060 KEYCLOAK-3157 migrated Adapter package from old testsuite	2018-03-02 10:56:26 +01:00
pedroigor	1e1de85685	[KEYCLOAK-6787] - Wrong validation of resources with same name and different owners	2018-03-01 16:50:05 -03:00
pedroigor	b0200d462d	[KEYCLOAK-6621] - Removing unnecessary code to process scopes from typed resources	2018-02-28 16:33:45 -03:00
vmuzikar	028e78f46b	KEYCLOAK-6772 Fix SessionsPreloadCrossDCTest	2018-02-28 20:14:50 +01:00
Hynek Mlnarik	9ca7b22cec	KEYCLOAK-6777 Fix AccountPageTest	2018-02-28 16:28:48 +01:00
Hynek Mlnarik	1b45ab2601	KEYCLOAK-6773 XML vulnerability test	2018-02-28 15:05:07 +01:00
Pedro Igor	91bdc4bde2	[KEYCLOAK-3169] - UMA 2.0 (#4368 ) * [KEYCLOAK-3169] - UMA 2.0 Support * [KEYCLOAK-3169] - Changes to account service and more tests * [KEYCLOAK-3169] - Code cleanup and tests * [KEYCLOAK-3169] - Changes to account service and tests * [KEYCLOAK-3169] - Changes to account service and tests * [KEYCLOAK-3169] - More tests * [KEYCLOAK-3169] - Changes to adapter configuration * [KEYCLOAK-3169] - Reviewing UMA specs and more tests * [KEYCLOAK-3169] - Reviewing UMA specs and more tests * [KEYCLOAK-3169] - Changes to UMA Grant Type and refactoring * [KEYCLOAK-3169] - Refresh tokens for RPT responses and tests * [KEYCLOAK-3169] - Changes to account my resources and policy enforcers * [KEYCLOAK-3169] - Realm settings flag to enable/disable user-managed access in account mgmt console * [KEYCLOAK-3169] - More changes to my resource pages in account mgmt console * [KEYCLOAK-3169] - Need to enable user-managed on realm to run tests * [KEYCLOAK-3169] - Removing more UMA 1.0 related code * [KEYCLOAK-3169] - Only submit requests if ticket exists * [KEYCLOAK-3169] - Returning UMA 401 response when not authenticated * [KEYCLOAK-3169] - Removing unused code * [KEYCLOAK-3169] - Removing unused code * [KEYCLOAK-3169] - 403 response in case ticket is not created * [KEYCLOAK-3169] - Fixing AbstractPhotozExampleAdapterTest#testClientRoleRepresentingUserConsent * [KEYCLOAK-3169] - 403 status code only returned for non-bearer clients	2018-02-28 08:53:10 +01:00
mhajas	e52380915b	KEYCLOAK-4817 Fix instability	2018-02-27 14:35:52 +01:00
vmuzikar	08bf19d4aa	KEYCLOAK-6694 Revamp OpenShift Social Login test	2018-02-27 12:28:42 +01:00
Hynek Mlnarik	1f20c03afa	KEYCLOAK-6470 Refactor SAML adapter parsers	2018-02-27 09:37:29 +01:00
vmuzikar	d70e4740fc	KEYCLOAK-6693 Support external truststore in testsuite	2018-02-27 07:45:21 +01:00
Bill Burke	aa089980ce	Merge pull request #4942 from mstruk/KEYCLOAK-5807 KEYCLOAK-5807 Intermittent failures in UserStorageTest	2018-02-26 12:14:38 -05:00
mhajas	fe1c447d9a	KEYCLOAK-6546 Run filter test on WebLogic and WebSphere	2018-02-26 15:47:13 +01:00
Hynek Mlnarik	bde9210fa3	KEYCLOAK-6692 Fix LogoutTest on Oracle	2018-02-26 15:45:55 +01:00
mhajas	e2ad59a74d	KEYCLOAK-4816 KEYCLOAK-4817 Move javascript tests to base testsuite and (#4964 ) * KEYCLOAK-4816 KEYCLOAK-4817 Move javascript tests to base testsuite and use JavascriptExecutor * Use PhantomJS 2.1.1 instead of 1.9.8 in Travis CI	2018-02-26 10:49:05 +01:00
Hynek Mlnarik	e7cdb8ad54	KEYCLOAK-6473 KEYCLOAK-6472 SAML parser refactor + protocol parsers	2018-02-23 08:16:14 +01:00
pedroigor	8112c5d3f2	[KEYCLOAK-6492] - Migrate authorization package from old testsuite	2018-02-22 09:05:40 +01:00
Erlend Hamnaberg	208ecbc3f7	KEYCLOAK-6676: Fix NPE if the redirect_uri parameter is missing	2018-02-21 19:44:22 +01:00
pedroigor	61d5425fdf	[KEYCLOAK-6321] - Tests	2018-02-21 19:41:44 +01:00
Bruno Oliveira	f351db608e	[KEYCLOAK-6334] Minor typo: "read only" should be "read-only"	2018-02-20 20:18:16 +01:00
mposolda	fc463ae50b	KEYCLOAK-6617 Offline token logout did not invalidate user session	2018-02-19 08:49:05 +01:00
cgol	86a8addf49	KEYCLOAK-6615 Remove offline session from database on offline token logout remove offline token from database on offline session logout	2018-02-19 08:49:05 +01:00
stianst	9b63cd35f0	KEYCLOAK-6431	2018-02-13 19:38:46 +01:00
Bill Burke	5d5373454c	Merge pull request #4991 from patriot1burke/challenge-support KEYCLOAK-6355	2018-02-13 09:38:45 -05:00
Bill Burke	d6788a0839	finish	2018-02-10 13:38:39 -05:00
mhajas	2b65adc15f	KEYCLOAK-6309 Fix tests Add trustore to war even if ssl is not enabled because HttpClient is configured with truststore	2018-02-09 10:24:58 +01:00
Bruno Oliveira	b91998a0d8	[KEYCLOAK-6111] 'Override User-Initiated Action Lifespan' admin GUI can break realm configuration	2018-02-09 06:36:23 -02:00
stianst	505cf5b251	KEYCLOAK-6519 Theme resource provider	2018-02-09 08:28:59 +01:00
Hynek Mlnarik	c07b60d527	KEYCLOAK-6474 Fix NPE on SAML logout	2018-02-07 08:05:36 +01:00
Douglas Palmer	fc52ff65bd	[KEYCLOAK-6518] Added explicit guava dependency instead of relying on transitive dependency.	2018-02-06 10:52:48 +01:00
Hynek Mlnarik	b3766576d7	KEYCLOAK-6146 Simplify test via RealmCreator	2018-02-06 09:28:07 +01:00
vmuzikar	c8c86d2bad	KEYCLOAK-6510 Fix StackOverflow social login test	2018-02-05 17:16:33 +01:00
Marko Strukelj	62a9d4ea91	KEYCLOAK-5807 Under daily eviction policy user entries not returned from cache when they should	2018-02-02 19:27:23 +01:00
vmuzikar	340afb2a50	KEYCLOAK-6450 Stabilize WelcomePageTest	2018-02-02 13:08:52 +01:00
vmuzikar	46ebff2163	KEYCLOAK-6331 Fix and stabilize Console UI tests	2018-02-02 11:58:47 +01:00
Pavel Drozd	9382439a05	Merge pull request #4944 from mhajas/KEYCLOAK-4751 KEYCLOAK-4751 Fix tests on EAP6 and add test for EAP7	2018-02-02 11:13:07 +01:00
vramik	019c3c9ef9	KEYCLOAK-6146 realm import fails when password policy is specified	2018-02-02 08:30:06 +01:00
Thomas Darimont	77334af34e	KEYCLOAK-6222 Check syntax for errors on ScriptBasedOIDCProtocolMapper validation We now explicitly check for syntax errors during validation of ScriptBasedOIDCProtocolMappers.	2018-02-02 08:28:27 +01:00
Bill Burke	8f09efab9d	Merge pull request #4949 from patriot1burke/client-storage-spi KEYCLOAK-6228	2018-02-01 08:59:02 -05:00
mhajas	c34db4cf01	KEYCLOAK-6309 Configure HTTPClient in keycloak-saml.xml	2018-02-01 09:59:08 +01:00
Bill Burke	126dd70efc	client stat improvement	2018-01-31 13:05:13 -05:00
Vlastimil Elias	a5f675d693	KEYCLOAK-4937 - convert time units in emails into human-friendly format	2018-01-30 06:38:57 +01:00
Bill Burke	4a044fe867	add ofline token test	2018-01-29 17:08:13 -05:00
Bill Burke	0fc7fa557d	fix caching	2018-01-29 16:26:51 -05:00
Bill Burke	79f9de9de4	Merge remote-tracking branch 'upstream/master' into client-storage-spi	2018-01-29 12:28:26 -05:00
Bill Burke	4bf23cc83a	caching	2018-01-29 12:28:17 -05:00
mhajas	2a2f255640	KEYCLOAK-4793 Fix authorization services maven scanner properties in base testsuite for product	2018-01-29 09:18:20 +01:00
Bill Burke	1d8e38f0c6	admin console	2018-01-27 13:05:02 -05:00
Bill Burke	dd4c0d448c	Merge remote-tracking branch 'upstream/master' into client-storage-spi	2018-01-27 09:47:41 -05:00
Bill Burke	6b84b9b4b6	done 1st iteration	2018-01-27 09:47:16 -05:00
mhajas	8ac7d1deca	KEYCLOAK-4751 Fix tests on EAP6 and add test for EAP7	2018-01-26 11:25:33 +01:00
Takashi Norimatsu	502627f590	KEYCLOAK-5811 Client Authentication by JWS Client Assertion in client secret	2018-01-26 10:59:40 +01:00
vmuzikar	806b554fb2	Social login test for GitHub with private email	2018-01-25 20:56:24 +01:00
vramik	b0fbe5c8ba	KEYCLOAK-6300 List of group members is not sorted alphabetically	2018-01-25 20:21:03 +01:00
Bill Burke	7c66f76858	Merge pull request #4932 from patriot1burke/per-client-flow KEYCLOAK-6335	2018-01-25 09:55:11 -05:00
Douglas Palmer	42759be6ff	[KEYCLOAK-6143] Remove Hmac prefix from algorithms in the OTP manual config pages	2018-01-25 07:10:30 +01:00
Douglas Palmer	0f1644e612	[KEYCLOAK-6142] Updated OTP manual config pages to reflect HOTP	2018-01-25 07:09:24 +01:00
Bill Burke	4bfb62d7f4	marek suggested fixes	2018-01-24 09:32:38 -05:00
mposolda	6369c26671	KEYCLOAK-6286 Adding 'Exclude Session State From Authentication Response' switch to fix backwards compatibility with Keycloak 2.X adapters	2018-01-24 11:35:13 +01:00
Thomas Recloux	71e0b00600	KEYCLOAK-5857 Supports PBKDF2 hashes with different key size The original use case is to support imported credentials with a different key size without implementing a totally new PasswordHashProvider	2018-01-24 09:02:37 +01:00
Bill Burke	be65c14a6a	fix provider test	2018-01-23 13:03:45 -05:00
Bill Burke	7b2e72d395	Merge remote-tracking branch 'upstream/master' into per-client-flow	2018-01-23 12:10:11 -05:00
Bill Burke	a9297df89c	KEYCLOAK-6335	2018-01-23 12:09:49 -05:00
Hynek Mlnarik	4ba72e2d2d	KEYCLOAK-5976 Fix client setting in brokered IdP-initiated scenario	2018-01-23 09:34:11 +01:00
stianst	f762173eb0	KEYCLOAK-3370 Add option to override theme in client template and client	2018-01-18 09:14:13 +01:00
Thomas Darimont	bae4d4c673	KEYCLOAK-5791 Allow multi-valued ScriptBasedOIDCProtocolMapper We now support multi-valued attribute values for the `ScriptBasedOIDCProtocolMapper`. Previously the `ScriptBasedOIDCProtocolMapper` only supported single valued output. If a script returned a list of output values then only the first value was emitted to the token. By default multi-valued is set to `false` / `off`.	2018-01-11 08:52:24 +01:00
mhajas	a77be7eb7b	KEYCLOAK-5503 Remove redirecting to error page for AutodetectBearerOnly client	2018-01-09 16:34:18 +01:00
Hynek Mlnarik	b5fc6045fd	KEYCLOAK-6106 Put dotless ids first in identity broker state	2018-01-02 21:31:49 +01:00
stianst	d8c0cc447f	KEYCLOAK-6090 Add missing cors headers with invalid username/password and resource owner grant	2018-01-02 15:15:15 +01:00
stianst	0bedbb4dd3	Bump version to 4.0.0.CR1-SNAPSHOT	2017-12-21 15:06:00 +01:00
Marko Strukelj	23d0afbfd8	KEYCLOAK-6058 Partial import should ignore built-in clients	2017-12-21 13:52:58 +01:00
stianst	f0c5752ef9	KEYCLOAK-5443 Fix update user account when both email as username and edit username are enabled	2017-12-20 14:40:03 +01:00
Martin Kanis	351dbffaf2	KEYCLOAK-5172 Set oidc as default protocol to clients	2017-12-20 13:38:12 +01:00
Bruno Oliveira	811cd3a04a	KEYCLOAK-6011	2017-12-20 13:37:11 +01:00
stianst	e96c6a4bcb	KEYCLOAK-6068 Fix preflight request on admin endpoints	2017-12-20 10:19:34 +01:00
mposolda	5a66f577eb	KEYCLOAK-5982 Fix NPEs when client 'account' was renamed/removed	2017-12-18 21:47:17 +01:00
stianst	27b5e1aae2	KEYCLOAK-6050 Fix export doesn't export internal realm rep	2017-12-18 13:15:42 +01:00
stianst	b303acaaba	KEYCLOAK-2120 Added manual setup page for OTP	2017-12-18 11:20:20 +01:00
Bill Burke	b5ae7e836d	smaller times	2017-12-16 13:18:41 -05:00
Bill Burke	a27097e9ef	reset defaults	2017-12-16 11:28:15 -05:00
Bill Burke	003f27e9bd	fix more	2017-12-16 08:31:33 -05:00
Bill Burke	76cccc3f2b	fix more	2017-12-16 08:29:58 -05:00
Bill Burke	80be4c9dbc	fix more	2017-12-16 07:12:32 -05:00
Bill Burke	1eec2747ef	fix stupidity	2017-12-15 15:31:14 -05:00
Bill Burke	7cb39c2dfc	KEYCLOAK-5420	2017-12-15 12:16:24 -05:00
Pavel Drozd	1b14f9e73e	Merge pull request #4847 from vramik/KEYCLOAK-4793 KEYCLOAK-4793 moved profile a lever lower due to migration test	2017-12-15 14:52:04 +01:00
stianst	a8943fb323	KEYCLOAK-6043 Use same urls for get and posts in account	2017-12-15 08:31:04 +01:00
Bruno Oliveira	1a541889f4	[KEYCLOAK-6015] replyTo can be empty string in DB	2017-12-15 07:01:15 +01:00
stianst	b672229efc	KEYCLOAK-6032 Fix error page when internationalization is enabled	2017-12-15 06:32:00 +01:00
vramik	abea430802	KEYCLOAK-4793	2017-12-14 11:30:28 +01:00
Hynek Mlnarik	2a2e6c839b	KEYCLOAK-5635	2017-12-13 21:07:46 +01:00
stianst	f939818252	KEYCLOAK-5907 Use client manager to delete clients in client registration services	2017-12-12 14:25:05 +01:00
mposolda	b8416dfa3e	KEYCLOAK-5981 Test Impersonation works when authenticationSession exists	2017-12-12 09:43:34 +01:00
mposolda	63efee6e15	KEYCLOAK-5938 Authentication sessions: Support for logins of multiple tabs of same client	2017-12-12 08:01:02 +01:00
Pavel Drozd	047fdb55a2	Merge pull request #4803 from mhajas/KEYCLOAK-5896 KEYCLOAK-5896 Run localization test only in community	2017-12-12 00:09:02 +01:00
Pavel Drozd	be36f5358c	Merge pull request #4802 from mhajas/KEYCLOAK-5986 KEYCLOAK-5986 Fix token javacsript tests	2017-12-12 00:07:16 +01:00
stianst	dac6c6bd7e	KEYCLOAK-6000 Fix output in execute actions email	2017-12-11 14:24:37 +01:00
Bill Burke	c9b218db71	Merge pull request #4823 from patriot1burke/master KEYCLOAK-5724	2017-12-08 20:03:05 -05:00
Bill Burke	7c031505e2	add test	2017-12-08 17:38:00 -05:00
Hynek Mlnarik	00fb36437d	KEYCLOAK-5861 Remove AUTH_SESSION_ID when END_AFTER_REQUIRED_ACTIONS set	2017-12-08 09:52:14 +01:00
Hynek Mlnarik	4a012b73ea	KEYCLOAK-4998 Fix NPE in AttributeToRoleMapper	2017-12-08 09:21:21 +01:00
Pavel Drozd	e567dcb888	Merge pull request #4809 from vramik/KEYCLOAK-4641 KEYCLOAK-4641 migrate remaining Adapter tests from old testsuite	2017-12-07 11:06:47 +01:00
stianst	c055ffb083	KEYCLOAK-4215 Consider session expiration when setting token timeouts	2017-12-07 10:45:02 +01:00
stianst	cccddebfd0	KEYCLOAK-5984 Fix error message in client initiated	2017-12-06 19:46:11 +01:00
vramik	5a8ff72cb6	KEYCLOAK-4641 migrate remaining Adapter tests from old testsuite	2017-12-06 15:12:37 +01:00
mposolda	8a0fa521c4	KEYCLOAK-5915 Support for sticky sessions managed by loadbalancer. Support for KeyAffinityService	2017-12-06 13:06:54 +01:00
mhajas	09348b2aff	KEYCLOAK-5896 Run localization test only in community	2017-12-06 10:09:46 +01:00
mhajas	896e216f99	KEYCLOAK-5986 Fix token javacsript tests	2017-12-06 10:08:32 +01:00
mposolda	6c34b4c418	KEYCLOAK-5914 Periodic clean of detached client sessions	2017-12-05 08:25:30 +01:00
stianst	c3d9f4704e	KEYCLOAK-5946 Make sure wildcard origin is never returned	2017-12-04 19:55:34 +01:00
stianst	4541acc628	KEYCLOAK-5176 Strip headers from PEM when uploading to client	2017-12-04 19:54:15 +01:00
mposolda	ff6fcd30d9	KEYCLOAK-4478 OIDC auth response lacks session_state in some cases	2017-12-04 16:13:22 +01:00
stianst	37de8e9f69	Bump version to 3.4.2.Final-SNAPSHOT	2017-12-01 09:34:48 +01:00
mposolda	7b03eed9c8	KEYCLOAK-5797 Refactoring authenticationSessions to support login in multiple browser tabs with different clients	2017-11-30 12:56:45 +01:00
Peter Nalyvayko	b8e5fd2b99	KC-4335: working on adding a reverse proxy support to allow X.509 client certificate authentication when running keycloak behind a reverse proxy KC-4335: reverse proxy => a swtich to change a type of reverse proxy when running the X509 integration tests; changes to the names of the reverse proxy providers KC-4335: updated the migration scripts to add x509 spi to standalone and domain configurations; removed the HAproxy and apache x509 spi configuration	2017-11-30 11:00:32 +01:00
pedroigor	674fb31a2c	[KEYCLOAK-5660] - Rest API User count returns wrong value	2017-11-30 10:45:54 +01:00
Bruno Oliveira	6a528a3ee6	[KEYCLOAK-2645] Reset password page says 'You need to change your password to activate your account.'	2017-11-30 10:37:21 +01:00
stianst	2be78a0239	KEYCLOAK-5924 Add error handler for uncaught errors	2017-11-30 10:33:13 +01:00
Pavel Drozd	4408cdb5c7	Merge pull request #4756 from tkyjovsk/KEYCLOAK-5922 KEYCLOAK-5922 Cluster tests don't work with non-undertow server	2017-11-30 09:24:39 +01:00
Bruno Oliveira	af66c5dbd2	[KEYCLOAK-5483] X.509 Auth - log in attempt is not sometimes logged in the Login Events	2017-11-29 20:08:22 +01:00
Tomas Kyjovsky	4240295af9	KEYCLOAK-5922 Cluster tests don't work with non-undertow server	2017-11-28 17:35:13 +01:00
Bill Burke	0a8995efc7	Merge pull request #4747 from mstruk/KEYCLOAK-5741 KEYCLOAK-5741 [Admin CLI] Fix instructions in build-in help	2017-11-28 08:57:29 -05:00
Bill Burke	c398f6619f	Merge pull request #4748 from mstruk/KEYCLOAK-5762 KEYCLOAK-5762 [Client Registration CLI] Fix instructions in built-in help	2017-11-28 08:57:15 -05:00
Stian Thorgersen	cf485c3fc9	KEYCLOAK-5308 Fix updating protocol mappers on Oracle	2017-11-27 19:46:12 +01:00
Stian Thorgersen	5666bfe88b	KEYCLOAK-4962 Fix updating mappers for identity providers on Oracle	2017-11-27 19:46:12 +01:00
Marko Strukelj	c35c6e6ab7	KEYCLOAK-5762 [Client Registration CLI] Fix instructions in built-in help	2017-11-27 17:00:48 +01:00
Marko Strukelj	0e2332196d	KEYCLOAK-5741 [Admin CLI] Fix instructions in build-in help	2017-11-27 16:12:00 +01:00
Pavel Drozd	a8bcdfb401	Merge pull request #4735 from vmuzikar/fix-ui KEYCLOAK-5816, KEYCLOAK-5815 UI tests fixes	2017-11-27 15:12:35 +01:00
Bruno Oliveira	9d35891e7d	[KEYCLOAK-5467] X.509 Auth - missing internationalization support	2017-11-27 13:44:38 +01:00
Bruno Oliveira	00677a6b92	[KEYCLOAK-5898] X.509 Auth - add tests for CRL with direct grant	2017-11-27 13:43:37 +01:00
Bruno Oliveira	697caaa805	[KEYCLOAK-4683] Add key usage tests for X.509 Authentication These tests cover the scenarios already available at our certificates: * Key Usage with the flag critical * Extended Key Usage without the flag critical	2017-11-27 13:42:57 +01:00
Marek Posolda	dd6502013e	Merge pull request #4734 from rmartinc/ui_locales KEYCLOAK-5896: Parameter "ui_locales" not redirected to login page in java adapters	2017-11-24 10:59:26 +01:00
rmartinc	ecbf6e5386	KEYCLOAK-5896: adding a test for the ui_locales change.	2017-11-24 08:21:37 +01:00
pedroigor	2721e6a5e4	[KEYCLOAK-5770] - Logout event test	2017-11-23 21:08:07 +01:00
mposolda	6d91ab674b	KEYCLOAK-5895 CrossDC: NotSerializableException when opening sessions tab in admin console	2017-11-23 20:03:12 +01:00
vmuzikar	6f4ab8870e	KEYCLOAK-5816, KEYCLOAK-5815 UI tests fixes	2017-11-23 13:51:38 +01:00
Pavel Drozd	94ba85c210	Merge pull request #4720 from vramik/KEYCLOAK-5872 KEYCLOAK-5872 add preview assumption to InvalidationCrossDCTest.authz…	2017-11-23 07:42:31 +01:00
Bill Burke	2117db5e6d	Merge pull request #4730 from patriot1burke/master KEYCLOAK-4715	2017-11-22 12:45:23 -05:00
Bill Burke	116bfb05c2	fix	2017-11-22 11:55:10 -05:00
Bill Burke	aee6d16f58	fix more stupidity	2017-11-22 10:22:47 -05:00
Bill Burke	ae29e36e1f	fix my stupidity	2017-11-22 08:19:30 -05:00
mposolda	bd1072d2eb	KEYCLOAK-5747 Ensure refreshToken doesn't need to send request to the other DC. Other fixes and polishing	2017-11-22 11:55:12 +01:00
Bill Burke	75d517a1e8	cleanup test	2017-11-21 21:49:51 -05:00
Bill Burke	8993ca08ad	KEYCLOAK-4715	2017-11-21 17:46:48 -05:00
vmuzikar	7fd237b40b	KEYCLOAK-5879 Fix SocialLoginTest with -Pauth-server-wildfly	2017-11-21 11:12:21 +01:00
Bill Burke	06762ba13d	KEYCLOAK-5878	2017-11-20 17:03:28 -05:00
vramik	37b625fd99	KEYCLOAK-5872 add preview assumption to InvalidationCrossDCTest.authzResourceInvalidationTest	2017-11-20 11:30:44 +01:00
Bruno Oliveira	641069d4fd	[KEYCLOAK-5866] MigrationTest fails for extracting realm keys	2017-11-16 19:44:09 +01:00
Bruno Oliveira	07aa718cb9	[KEYCLOAK-5379] MigrationTest fails for migration to 3.3.0	2017-11-16 07:22:57 +01:00
Pedro Igor	f96c3312e2	[KEYCLOAK-5841] - Test	2017-11-16 07:03:08 +01:00
Hynek Mlnařík	393fae74b3	Merge pull request #4693 from hmlnarik/KEYCLOAK-5349-JS-client-breaks-login-session KEYCLOAK-5349 User session count in IdP-initiated flow tests	2017-11-15 12:35:19 +01:00
Hynek Mlnarik	a2f6c16764	KEYCLOAK-5349 User session count in IdP-initiated flow tests	2017-11-15 11:41:45 +01:00
Pedro Igor	63a01b1e1f	Merge pull request #4689 from pedroigor/KEYCLOAK-5844 [KEYCLOAK-5844] - Refreshing PAT instead of obtaining a new one every time	2017-11-14 18:25:24 -02:00
Pedro Igor	fdb618219f	[KEYCLOAK-5844] - Refreshing PAT instead of obtaining a new one every time	2017-11-14 11:24:45 -02:00
Stian Thorgersen	89f4b87038	KEYCLOAK-5567 Set correct status code on login error pages	2017-11-14 12:33:29 +01:00
Bruno Oliveira	03d0488335	[KEYCLOAK-2052] Allows independently set timeouts for e-mail verification link and rest e.g. forgot password link Co-authored-by: Hynek Mlnarik <hmlnarik@redhat.com>	2017-11-13 19:57:04 -02:00
Stian Thorgersen	925d5e1dea	KEYCLOAK-3173 enable logout offline refresh token using OIDC logout endpoint	2017-11-13 18:23:39 +01:00
Stian Thorgersen	d30bf938ee	KEYCLOAK-5821 Fix basic auth tests with embedded Undertow	2017-11-13 16:34:25 +01:00
Pavel Drozd	af97a84108	Merge pull request #4635 from vmuzikar/fix-x509 KEYCLOAK-5720 Fix X.509 tests	2017-11-13 11:56:16 +01:00
Stian Thorgersen	4295f4ec31	KEYCLOAK-1886 Added cors headers to errors in token endpoint	2017-11-10 12:01:21 +01:00
mposolda	b033ce0669	KEYCLOAK-5371 SessionExpirationCrossDCTest - improve stability. Remove checks for counts of sent messages	2017-11-09 22:18:47 +01:00
mposolda	a98f085be6	KEYCLOAK-5618 Fix SessionsPreloadCrossDCTest. Update HOW-TO-RUN docs. Ensure it's executed in travis.	2017-11-09 17:39:04 +01:00
Stian Thorgersen	128ff12f8f	Bump versions	2017-11-09 15:37:21 +01:00
Marko Strukelj	dae0fafc8a	KEYCLOAK-5040 ProfileAssume needs to use server info endpoint	2017-11-09 14:19:06 +01:00
Bruno Oliveira	26e253f4a5	[KEYCLOAK-5284]	2017-11-09 13:45:06 +01:00
Marko Strukelj	2854a2006e	KEYCLOAK-5810 ClientTokenExchangeTest failures with -Pproduct profile	2017-11-09 13:44:10 +01:00
vmuzikar	2c2a332f80	KEYCLOAK-5332 Fix GitLab social test	2017-11-09 07:19:01 +01:00
vmuzikar	b21d5bbf04	KEYCLOAK-5805 Fix tests in the 'other' module	2017-11-09 07:01:27 +01:00
mposolda	62a1c187a2	KEYCLOAK-5716 KEYCLOAK-5738 Avoid infinispan deadlock. Ensure code-to-token works correctly in cross-dc	2017-11-07 09:01:59 +01:00
Hynek Mlnarik	fe2f65daac	KEYCLOAK-5581 Fix SAML identity broker context serialization	2017-11-03 21:09:18 +01:00
vmuzikar	ef8adc15f4	KEYCLOAK-5720 Fix X.509 tests	2017-11-03 17:09:46 +01:00
Pedro Igor	3716fa44ac	[KEYCLOAK-5728] - Permission Claims support	2017-10-27 12:40:30 -02:00
Hynek Mlnařík	248da4687a	Merge pull request #4610 from hmlnarik/KEYCLOAK-5745-Extract-client-sessions-from-user-sessions KEYCLOAK-5745 Separate user and client sessions in infinispan	2017-10-26 13:09:06 +02:00
Hynek Mlnarik	75c354fd94	KEYCLOAK-5745 Separate user and client sessions in infinispan	2017-10-26 10:39:41 +02:00
Bill Burke	903a4dd849	Merge pull request #4612 from patriot1burke/master KEYCLOAK-5273	2017-10-25 13:54:32 -04:00
Bill Burke	de6eab6d5d	fix	2017-10-25 13:00:58 -04:00
Bill Burke	8c1a3253fb	KEYCLOAK-5273	2017-10-25 10:31:11 -04:00
Bruno Oliveira da Silva	375e01a074	KEYCLOAK-5278 (#4606 )	2017-10-25 15:27:24 +02:00
Bill Burke	50ccb5e5f6	Merge pull request #4591 from abstractj/KEYCLOAK-5717 KEYCLOAK-5717	2017-10-24 17:38:28 -04:00
Pedro Igor	1840cc54e4	Merge pull request #4601 from pedroigor/KEYCLOAK-5726 [KEYCLOAK-5726] - Support define enforcement mode for scopes on the adapter config	2017-10-24 12:51:52 -02:00
Pedro Igor	80e9b08bb6	[KEYCLOAK-5726] - Tests for scopes-enforcement-mode ALL and ANY	2017-10-24 11:37:41 -02:00
Bruno Oliveira	4d762159ef	KEYCLOAK-5717	2017-10-24 10:55:02 -02:00
Hynek Mlnařík	8e0cc2a5ea	Merge pull request #4605 from mposolda/master KEYCLOAK-5710 Change cache-server to use backups based caches	2017-10-24 14:40:01 +02:00
Pedro Igor	a6e1413d58	[KEYCLOAK-5726] - Support define enforcement mode for scopes on the adapter configuration	2017-10-24 10:39:54 -02:00
Pavel Drozd	a4ec32ba66	Merge pull request #4602 from vramik/KEYCLOAK-5244 KEYCLOAK-5244 fix PasswordPolicyTest.testBlacklistPasswordPolicyWithT…	2017-10-24 14:17:35 +02:00
mposolda	9a19e95b60	KEYCLOAK-5710 Change cache-server to use backups based caches	2017-10-24 11:52:08 +02:00
Stan Silvert	9083e5fe5c	KEYCLOAK-5298: Enable autoescaping in Freemarker (#4561 ) * KEYCLOAK-5298: Enable autoescaping in Freemarker * Fix several of the failing tests. * Fix broken tests in integration-deprecated * Fix last failing test.	2017-10-23 12:03:00 -04:00
Stian Thorgersen	9b75b603e3	KEYCLOAK-5234 (#4585 )	2017-10-23 16:13:22 +02:00
vramik	a3a1761eb7	KEYCLOAK-5244 fix PasswordPolicyTest.testBlacklistPasswordPolicyWithTestBlacklist on Wildfly	2017-10-23 12:11:36 +02:00
Bill Burke	73ba06b26b	Merge pull request #4590 from patriot1burke/master KEYCLOAK-5698	2017-10-20 14:58:07 -04:00
Bill Burke	92245e3fc8	fixes	2017-10-20 09:55:37 -04:00
Hynek Mlnarik	3248557897	KEYCLOAK-5707 Have travis run cross-dc tests when appropriate	2017-10-19 13:29:26 +02:00
Stian Thorgersen	d9ffc4fa21	KEYCLOAK-5225 (#4577 ) KEYCLOAK-5225 fix test Fix	2017-10-19 08:23:16 +02:00
Stian Thorgersen	fea4c54adc	KEYCLOAK-5280 (#4576 )	2017-10-19 08:02:23 +02:00
Pedro Igor	cedc095a9c	[KEYCLOAK-4550] - Test invalid configuration for user policy	2017-10-18 18:42:55 -02:00
Thomas Darimont	3103e0fd0a	KEYCLOAK-5244 Add BlacklistPasswordPolicyProvider (#4370 ) * KEYCLOAK-5244 Add BlacklistPasswordPolicyProvider This introduces a new PasswordPolicy which can refer to a named predefined password-blacklist to avoid users choosing too easy to guess passwords. The BlacklistPasswordPolicyProvider supports built-in as well as custom blacklists. built-in blacklists use the form `default/filename` and custom ones `custom/filename`, where filename is the name of the found blacklist-filename. I'd propose to use some of the freely available password blacklists from the [SecLists](https://github.com/danielmiessler/SecLists/tree/master/Passwords) project. For testing purposes one can download the password blacklist ``` wget -O 10_million_password_list_top_1000000.txt https://github.com/danielmiessler/SecLists/blob/master/Passwords/10_million_password_list_top_1000000.txt?raw=true ``` to /data/keycloak/blacklists/ Custom password policies can be configured with the SPI configuration mechanism via jboss-cli: ``` /subsystem=keycloak-server/spi=password-policy:add() /subsystem=keycloak-server/spi=password-policy/provider=passwordBlacklist:add(enabled=true) /subsystem=keycloak-server/spi=password-policy/provider=passwordBlacklist:write-attribute(name=properties.blacklistsFolderUri, value=file:///data/keycloak/blacklists/) ``` Password blacklist is stored in a TreeSet. * KEYCLOAK-5244 Encode PasswordBlacklist as a BloomFilter We now use a dynamically sized BloomFilter with a false positive probability of 1% as a backing store for PasswordBlacklists. BloomFilter implementation is provided by google-guava which is available in wildfly. Password blacklist files are now resolved against the ${jboss.server.data.dir}/password-blacklists. This can be overridden via system property, or SPI config. See JavaDoc of BlacklistPasswordPolicyProviderFactory for details. Revised implementation to be more extensible, e.g. it could be possible to use other stores like databases etc. Moved FileSystem specific methods to FileBasesPasswordBlacklistPolicy. The PasswordBlacklistProvider uses the guava version 20.0 shipped with wildfly. Unfortunately the arquillian testsuite transitively depends on guava 23.0 via the selenium-3.5.1 dependency. Hence we need to use version 23.0 for tests but 20.0 for the policy provider to avoid NoClassDefFoundErrors in the server-dist. Configure password blacklist folder for tests * KEYCLOAK-5244 Configure jboss.server.data.dir for test servers * KEYCLOAK-5244 Translate blacklisted message in base/login	2017-10-17 20:41:44 +02:00
Hynek Mlnařík	fe76b2428b	Merge pull request #4563 from hmlnarik/KEYCLOAK-5656-Transport-factory-should-not-limit-to-a-single-DC-3 KEYCLOAK-5656 Use standard infinispan remote-store	2017-10-17 09:39:01 +02:00
Pavel Drozd	9c16a58d52	Merge pull request #4554 from vramik/KEYCLOAK-5672 KEYCLOAK-5672 rewrite server-config-migration module to use offline mode	2017-10-17 07:42:29 +02:00
vramik	cb2bd0fe1a	KEYCLOAK-5672 rewrite server-config-migration module to use offline mode	2017-10-16 22:51:59 +02:00
Hynek Mlnarik	056ba75a72	KEYCLOAK-5656 Use standard infinispan remote-store	2017-10-16 21:49:42 +02:00
Bill Burke	31dccc9a5e	Merge pull request #4509 from TeliaSoneraNorge/KEYCLOAK-5032 KEYCLOAK-5032 Forward request parameters to another IdP	2017-10-13 18:47:05 -04:00
Bill Burke	c66ce3a209	Merge pull request #4559 from micedre/KEYCLOAK-4052bis KEYCLOAK-4052 - add an option to validate Password Policy for ldap user storage	2017-10-13 18:44:57 -04:00
Bill Burke	46d3ed7832	Merge remote-tracking branch 'upstream/master'	2017-10-13 17:00:57 -04:00
Bill Burke	d9af93850c	KEYCLOAK-5683, KEYCLOAK-5684, KEYCLOAK-5682, KEYCLOAK-5612, KEYCLOAK-5611	2017-10-13 16:51:56 -04:00
Cédric Couralet	656fc5d7c0	KEYCLOAK-4052 - add an option to validate Password Policy for ldap user storage	2017-10-13 13:54:50 +02:00
mposolda	1874820008	KEYCLOAK-5371 Fix ConcurrentLoginCrossDCTest.concurrentLoginWithRandomDcFailures	2017-10-11 13:02:55 +02:00
mposolda	f5ff24ccdb	KEYCLOAK-5371 Fix SessionExpirationCrossDCTest, Added ExecutorsProvider. Debug support for cache-servers in tests	2017-10-10 22:30:44 +02:00
Bill Burke	b0464f1751	Merge remote-tracking branch 'upstream/master'	2017-10-10 09:10:04 -04:00
Bill Burke	5bd4ea30ad	rev	2017-10-10 09:09:51 -04:00
Marek Posolda	d336667972	Merge pull request #4527 from Hitachi/master OIDC Financial API Read Only Profile : scope MUST be returned in the response from Token Endpoint	2017-10-10 11:37:45 +02:00
Carl Kristian Eriksen	50dd07217d	KEYCLOAK-5032 Forward request parameters to another IdP Forwarding of prompt and acr_values, if provided in the authorization request. If prompt is set in the configuration for the identity provider, the configuration overrules the request parameter.	2017-10-09 16:15:27 +02:00
Marek Posolda	c6483f8b1e	Merge pull request #4523 from abustya/master KEYCLOAK-5616 Processing of claims parameter	2017-10-09 11:14:23 +02:00
Bill Burke	c8516c2349	support social external exchange	2017-10-06 16:44:26 -04:00
Hynek Mlnařík	00ddf03ad3	Merge pull request #4538 from vramik/KEYCLOAK-5586 KEYCLOAK-5586 increase startup timeout for jboss containers	2017-10-06 10:46:49 +02:00
vramik	940715a975	KEYCLOAK-5586 increase startup timeout for jboss containers	2017-10-06 10:06:26 +02:00
Pavel Drozd	945404be24	Merge pull request #4532 from vmuzikar/fix-twitter-test KEYCLOAK-5632 Fix Twitter social test	2017-10-05 13:30:02 +02:00
Stian Thorgersen	698483ee17	Missing test (#4537 )	2017-10-05 13:27:15 +02:00
Vaclav Muzikar	eab047c130	KEYCLOAK-5632 Fix Twitter social test	2017-10-04 15:29:28 +02:00
mposolda	bca4c35708	KEYCLOAK-5371 Fix ActionTokenCrossDCTest and BruteForceCrossDCTest	2017-10-04 13:25:45 +02:00
Hynek Mlnařík	9aa4c3cf22	Merge pull request #4530 from vramik/KEYCLOAK-5586 KEYCLOAK-5586 crossdc tests on Wildfly using real database	2017-10-04 13:10:08 +02:00
vramik	b0a1550df5	KEYCLOAK-5586 crossdc tests on Wildfly using real database	2017-10-04 12:00:18 +02:00
Pavel Drozd	98c63bc195	Merge pull request #4502 from mhajas/KEYCLOAK-5555 KEYCLOAK-5555 Use driver from function argument for URL Asserts	2017-10-04 08:00:45 +02:00
Takashi Norimatsu	6f6a467c7b	OIDC Financial API Read Only Profile : scope MUST be returned in the response from Token Endpoint	2017-10-04 12:59:49 +09:00
Áron Bustya	c2ffaa0777	Merge remote-tracking branch 'keycloak/master'	2017-10-03 14:53:40 +02:00
Áron Bustya	632414cc92	process claims parameter also support parsing from request object	2017-10-03 14:51:46 +02:00
vramik	f806d4a5d6	KEYCLOAK-5586 Add support for testing cross dc tests on jboss-based containers	2017-10-03 14:01:45 +02:00
Bruno Oliveira da Silva	da72968085	KEYCLOAK-4401: Wrong message when a temporarily disabled user requests password reset (#4506 )	2017-10-03 06:28:34 +02:00
Marek Posolda	faa5ec5125	Merge pull request #4520 from mposolda/master KEYCLOAK-5440 RestartLoginCookie field 'cs' not marked ignorable	2017-10-02 20:03:34 +02:00
filipelautert	c4cc752e18	Fixing tests for Oracle (#4481 )	2017-10-02 14:59:33 +02:00
mposolda	4a7013d550	KEYCLOAK-5440 RestartLoginCookie field 'cs' not marked ignorable	2017-10-02 14:19:27 +02:00
Bruno Oliveira da Silva	bb0bccc3c0	[KEYCLOAK-5486] Test email connection feature does not work the second time (#4517 )	2017-10-02 13:14:50 +02:00
mposolda	7d641baf4e	KEYCLOAK-5570 Added InvalidationCrossDCTest	2017-09-29 19:36:40 +02:00
Marek Posolda	13fe9e7cf8	Merge pull request #4510 from glavoie/KEYCLOAK-3303 KEYCLOAK-3303: Allow reuse of refresh tokens.	2017-09-29 17:07:45 +02:00
mposolda	3b6e1f4e93	KEYCLOAK-5007 Used single-use cache for tracke OAuth code. OAuth code changed to be encrypted and signed JWT	2017-09-29 13:20:22 +02:00
Gabriel Lavoie	134daeac7f	KEYCLOAK-3303: Allow reuse of refresh tokens. - Configurable max reuse count.	2017-09-28 15:30:40 -04:00
mhajas	01187901ea	KEYCLOAK-5555 Use driver from function argument for URL Asserts	2017-09-27 10:09:46 +02:00
Bill Burke	fd025ae76b	Merge pull request #4209 from guitaro/feature/group-search-and-pagination [KEYCLOAK-2538] - groups pagination and group search	2017-09-23 20:52:19 -04:00
Bill Burke	9034708c99	Merge pull request #4474 from hmlnarik/KEYCLOAK-5254-NPE-in-SAMLIdentityProvider KEYCLOAK-5254 Fix NPE - NameID format is optional	2017-09-23 20:39:50 -04:00
Bill Burke	537081ec9d	Merge pull request #4494 from patriot1burke/master KEYCLOAK-5516	2017-09-22 16:38:13 -04:00
Bill Burke	3020a04a8b	Merge pull request #4490 from Fiercely/master Keycloak 2035	2017-09-22 16:13:22 -04:00
Thomas Darimont	236b2b9273	KEYCLOAK-3599 Add Script based OIDC ProtocolMapper	2017-09-22 21:24:20 +02:00
Bill Burke	9d452b4bc3	Merge remote-tracking branch 'upstream/master'	2017-09-22 11:48:41 -04:00
Bill Burke	eb4f7f3b21	KEYCLOAK-5516	2017-09-22 11:48:30 -04:00
howcroft	e78bf5f876	Keycloak 2035 This PR adds: * an endpoint to Role that lists users with the Role * a tab "Users in Role" in Admin console Role page * it is applicable to Realm and Client Roles * Extends UserQueryProvider with default methods (throwing Runtime Exception if not overriden) * Testing in base testsuite and Console	2017-09-22 15:05:49 +01:00
Bill Burke	15ddb2009d	Merge pull request #4475 from mstruk/KEYCLOAK-5328 KEYCLOAK-5328 Documentation issue for kcadm.sh set-password command	2017-09-21 21:50:16 -04:00
Bill Burke	8ace0e68c3	KEYCLOAK-910 KEYCLOAK-5455	2017-09-21 17:15:18 -04:00
Bill Burke	ab58052a4c	Merge pull request #4482 from patriot1burke/master KEYCLOAK-5491 KEYCLOAK-5492 KEYCLOAK-5490	2017-09-19 14:01:40 -04:00
Pavel Drozd	c67a1d0469	Merge pull request #4483 from vmuzikar/KEYCLOAK-5495 KEYCLOAK-5495 Update Arquillian Drone to 2.4.2	2017-09-19 16:34:16 +02:00
Marko Strukelj	87cad0d84b	KEYCLOAK-5328 Documentation issue for kcadm.sh set-password command	2017-09-18 20:01:31 +02:00
mposolda	ca92bcbf7f	KEYCLOAK-5480 Cross-DC setup: Remote cache stores are connecting to Infinispan servers in both datacenters	2017-09-18 18:04:04 +02:00
Marek Posolda	fa35249afd	Merge pull request #4480 from TeliaSoneraNorge/KEYCLOAK-5494 Fix introspection error for pairwise access tokens	2017-09-18 16:44:24 +02:00
Pedro Igor	e8ef050093	Merge pull request #4471 from pedroigor/KEYCLOAK-5095 [KEYCLOAK-5095] - RPT should contain the RS as audience	2017-09-18 09:32:47 -03:00
Martin Hardselius	6b687c4318	Fix offline validation errors Refactored token validation method to run user checks only if the user session is valid.	2017-09-18 11:26:57 +02:00
Vaclav Muzikar	b4aae198fc	KEYCLOAK-5495 Update Arquillian Drone to 2.4.2	2017-09-18 09:52:45 +02:00
Bill Burke	2276279434	fix	2017-09-15 17:46:42 -04:00
Bill Burke	5a22b360f1	resolve conflicts	2017-09-15 16:37:35 -04:00
Bill Burke	f927ee7b4e	KEYCLOAK-5491 KEYCLOAK-5492	2017-09-15 16:30:45 -04:00
Pavel Drozd	42bb09fa31	Merge pull request #4463 from vmuzikar/fix-socialtests KEYCLOAK-5437 Fix Facebook social login test	2017-09-15 13:37:16 +02:00
Pavel Drozd	34b8c58c0f	Merge pull request #4459 from mhajas/KEYCLOAK-5320 KEYCLOAK-5320 Configure SSL using creaper	2017-09-15 13:35:14 +02:00
Bill Burke	3e6adbc904	KEYCLOAK-5490 (#4477 )	2017-09-15 11:36:48 +02:00
Martin Hardselius	a4315f4076	Fix introspection error for pairwise access tokens When access tokens containing a pairwise sub are introspected, user related checks are using that sub to fetch the UserModel instead of fetching the user from the UserSession. No corresponding user is found (or possibly even another user) and the token is reported inactive. Resolves: KEYCLOAK-5494	2017-09-15 10:31:47 +02:00
Bill Burke	affeadf4f3	KEYCLOAK-5490	2017-09-14 21:16:50 -04:00
Hynek Mlnarik	9098105a64	KEYCLOAK-5254 Fix NPE - NameID format is optional	2017-09-14 14:59:05 +02:00
Levente NAGY	d18aa44fb4	Merge branch 'feature/group-search-and-pagination' of https://github.com/guitaro/keycloak into feature/group-search-and-pagination	2017-09-13 16:48:24 +02:00
Levente NAGY	e907da77d7	KEYCLOAK 2538 - UI group pagination - Remove junit mocked TUs, add arquillian Tests, delete mockito from poms, fix groups sorting when get result from cache	2017-09-13 16:45:45 +02:00
Pedro Igor	8b2d47dd71	[KEYCLOAK-5095] - Adding tests	2017-09-13 10:37:52 -03:00
Hisanobu Okuda	b7af96aa4d	KEYCLOAK-5315 Conditional OTP enforcement does not work (#4399 )	2017-09-13 06:58:59 +02:00
Martin Kanis	550e5f752a	KEYCLOAK-5146 TokenEndpoint returns wrong methods for preflight requests (#4455 )	2017-09-13 06:23:11 +02:00
Pedro Igor	90db6654d3	Merge pull request #4451 from glavoie/KEYCLOAK-4858-ResourceServer KEYCLOAK-4858: Slow query performance for client with large data volume	2017-09-12 15:54:16 -03:00
Petter Lysne	7f8b5e032a	feat: added PayPal IDP (#4449 )	2017-09-12 11:57:59 +02:00
Hynek Mlnarik	24e9cbb292	KEYCLOAK-4899 Replace updates to user session with temporary auth session	2017-09-11 21:43:49 +02:00
Pavel Drozd	9032889c15	Merge pull request #4465 from vramik/KEYCLOAK-4793 KEYCLOAK-4793 add kie.maven.settings.custom property to tests	2017-09-11 11:55:13 +02:00
vramik	a33007afb6	KEYCLOAK-4793 add kie.maven.settings.custom property to tests	2017-09-11 11:15:38 +02:00
Vaclav Muzikar	473aefacec	KEYCLOAK-5437 Fix Facebook social login test	2017-09-08 15:44:15 +02:00
mhajas	330cb022eb	KEYCLOAK-5320 Configure SSL using creaper	2017-09-08 13:19:48 +02:00
vramik	0a5de1239f	KEYCLOAK-5414 fix AccountRestServiceTest on undertow (#4460 )	2017-09-07 09:30:20 +02:00
Gabriel Lavoie	c1664478d9	KEYCLOAK-4858: Slow query performance for client with large data volume - Changing RESOURCE_SERVER PK to the client ID. - Changing FK on children of RESOURCE_SERVER. - Use direct fetch of ResourceServer through ID/PK to avoid a lot of implicit Hibernate flush.	2017-09-06 09:55:53 -03:00
mposolda	fe43c26829	KEYCLOAK-5248 auth_time is not updated when reauthentication is requested with 'login=prompt'	2017-09-05 12:22:30 +02:00
mposolda	30d8a7503b	KEYCLOAK-5326 Test that userSession is still the same after prompt=login	2017-09-05 12:22:30 +02:00
Pedro Igor	fa6d5f0ee2	[KEYCLOAK-4653] - Identity.hasClientRole(String) and Identity.hasRole(String) break role namespaces and should be removed	2017-09-01 16:08:34 -03:00
filipelautert	e055589448	[KEYCLOAK-4778] Fix for Oracle null value when having an empty String as attribute value (#4406 ) * Add client.name as a second parameter to the title expressions in login template * Fixing tooltip. * pt_BR localization for admin screens. * Reverting login.ftl * Added all tooltip messages - even the ones not translated. Translated around 150 messages todas. * More translations. * Fixing wrong edit. * [KEYCLOAK-4778] Null check on Attribute value. This value can be null when retrieved from an Oracle database. * [KEYCLOAK-4778] Create unit tests for empty and null values. * [KEYCLOAK-4778] Move empty and null attributes tests to a separated test method; change tests to empty or null Strings. * [KEYCLOAK-4778] Check if value is null and set it as empty array. In the former code if null was received it would generate an array with 1 string element ["null"]. Also if we set value as null instead of ArrayList, later when the rest call is executed it will generate the same incorrect array again. * [KEYCLOAK-4778] Tests clean up.	2017-08-31 06:09:41 +02:00
Wim Vandenhaute	924b4f651a	KEYCLOAK-5186 createUser: set federationLink (#4316 )	2017-08-31 06:07:43 +02:00
Hynek Mlnařík	e36b94d905	KEYCLOAK-5318 Verify signature on raw query parameters (#4445 )	2017-08-31 05:46:26 +02:00
vramik	8bfab22417	KEYCLOAK-5049 add explicit removal of groups (#4416 )	2017-08-30 08:16:00 +02:00
Stian Thorgersen	dcfa4aca8c	KEYCLOAK-943 Started account rest service. Profile and sessions completed. (#4439 )	2017-08-29 20:12:09 +02:00
Stian Thorgersen	463661b051	Set version to 3.4.0.CR1-SNAPSHOT	2017-08-28 15:46:22 +02:00
Hynek Mlnařík	0caf93dfd9	KEYCLOAK-5336 Count on IPv6 address in tests (#4433 )	2017-08-28 15:39:44 +02:00
Hynek Mlnarik	794c508b10	KEYCLOAK-4995 Support for distributed SAML logout in cross DC	2017-08-28 13:15:11 +02:00
Hynek Mlnarik	a2ccf4efa3	KEYCLOAK-5300 Fix Wildfly 10 SAML cluster tests	2017-08-28 13:15:11 +02:00
Pavel Drozd	53fe96db78	Merge pull request #4403 from mhajas/KEYCLOAK-5313 KEYCLOAK-5313 Assume preview profile for InstallationTests	2017-08-28 10:28:13 +02:00
Pavel Drozd	a76e4434fa	KEYCLOAK-5340 - Testsuite compilation error - waitForPageToLoad without driver param	2017-08-28 09:14:45 +02:00
Pavel Drozd	e3a61c580e	Merge pull request #4414 from vmuzikar/KEYCLOAK-5229-dep-update KEYCLOAK-5229 Update testsuite dependencies	2017-08-28 08:07:25 +02:00
Hynek Mlnařík	9ee8f72be9	\KEYCLOAK-5335 Destination attr in SAML requests is optional (#4424 )	2017-08-28 08:06:48 +02:00
Bruno Oliveira da Silva	859cd30c3a	Include frame-ancestors for CSP 2 (#4413 ) Signed-off-by: Bruno Oliveira <bruno@abstractj.org>	2017-08-28 06:46:03 +02:00
Pavel Drozd	9b858907ec	Merge pull request #4402 from mhajas/KEYCLOAK-5312 KEYCLOAK-5312 Add preview profile assumption to authz tests	2017-08-25 11:25:00 +02:00
Stian Thorgersen	d58c6ad4e0	[KEYCLOAK-4900] Pass login_hint parameter to idp & review (#4421 )	2017-08-25 10:14:38 +02:00
Bill Burke	6696c44dc0	Merge remote-tracking branch 'upstream/master'	2017-08-24 15:19:48 -04:00
Bill Burke	7a57723c01	more token exchange	2017-08-24 15:19:38 -04:00
mhajas	8bb473147c	KEYCLOAK-5312 Add preview profile assumption	2017-08-24 11:45:09 +02:00
mhajas	543f61048f	KEYCLOAK-5313 Assume preview profile for Authz test	2017-08-24 10:20:27 +02:00
Vaclav Muzikar	da9a88c45c	KEYCLOAK-5229 Update testsuite dependencies	2017-08-23 15:36:29 +02:00
Pedro Igor	8e5752c9db	Merge pull request #4388 from pedroigor/KEYCLOAK-5015-elytron-adapter [KEYCLOAK-5015] - Updating Elytron Adapters	2017-08-23 08:55:25 -03:00
mposolda	fe5891fbdb	KEYCLOAK-5293 Add notBefore to user	2017-08-23 08:58:26 +02:00
Pedro Igor	287a86938e	[KEYCLOAK-5015] - HAL integration tests	2017-08-22 18:01:19 -03:00
Pavel Drozd	8d3384666a	Merge pull request #4401 from mhajas/KEYCLOAK-5265 KEYCLOAK-5265 Set localization tests to community profile only	2017-08-22 09:01:33 +02:00
Pavel Drozd	2ae812420d	Merge pull request #4396 from mhajas/KEYCLOAK-5311 KEYCLOAK-5311 Fix authorization tests	2017-08-22 09:00:23 +02:00
Pavel Drozd	bb10dc8c02	Merge pull request #4395 from mhajas/KEYCLOAK-4393 KEYCLOAK-4393 Remove example tests	2017-08-22 08:59:20 +02:00
Stian Thorgersen	20ac70d3fd	KEYCLOAK-5119 (#4400 )	2017-08-22 08:07:36 +02:00
mhajas	7f7c0bac1e	KEYCLOAK-5265 Set localization tests to community profile only	2017-08-21 13:10:45 +02:00
mhajas	d58499acfb	KEYCLOAK-5311 Fix authorization tests	2017-08-18 09:22:50 +02:00
mhajas	0c21b8c3a6	KEYCLOAK-4393 Remove example tests	2017-08-18 09:11:53 +02:00
mposolda	089514d8a6	KEYCLOAK-4634 Cross-dc support for UserLoginFailures	2017-08-17 10:22:12 +02:00
Stian Thorgersen	6119572934	KEYCLOAK-5282 (#4389 )	2017-08-17 09:22:23 +02:00
mposolda	c4bb29b4bb	KEYCLOAK-4187 SessionExpirationCrossDCTest - added tests for user logout and removal	2017-08-14 11:19:07 +02:00
mposolda	3aae4d22f6	KEYCLOAK-4630 Testing that refresh with offline token works	2017-08-11 19:37:25 +02:00
mposolda	868e76fcf3	KEYCLOAK-4630 Added SessionsPreloadCrossDCTest for test preloading sessions and offline sessions. Support for manual.mode to control manually lifecycle of all servers.	2017-08-11 17:44:00 +02:00
mposolda	0f7440d344	KEYCLOAK-4187 Fixes and tests related to sessions expiration and bulk removal in cross-dc environment	2017-08-10 08:29:59 +02:00
Pavel Drozd	9f6d9f7403	Merge pull request #4376 from pdrozd/KEYCLOAK-5267 KEYCLOAK-5267 Fuse tests - added timeouts for closing ssh channel	2017-08-09 21:48:36 +02:00
Bill Burke	3470b1839d	Merge remote-tracking branch 'upstream/master'	2017-08-09 10:25:25 -04:00
Bill Burke	2fa55550f3	token exchange permissions	2017-08-09 10:04:14 -04:00
Pavel Drozd	6bdc49048a	KEYCLOAK-5267 Fuse tests - added timeouts for closing ssh channel	2017-08-09 13:39:04 +02:00
mposolda	a72c297d5d	KEYCLOAK-4187 Fix LoginCrossDCTest	2017-08-08 14:02:48 +02:00
Hynek Mlnarik	52de3fff06	KEYCLOAK-4189 Fix tests	2017-08-08 10:11:51 +02:00
Hynek Mlnarik	afc972278c	KEYCLOAK-4694	2017-08-08 10:11:51 +02:00
Hynek Mlnarik	9ca72dc5c6	KEYCLOAK-4189 Improve logging and concurrency/cross-DC testing	2017-08-08 10:11:51 +02:00
mposolda	251b41a7ac	KEYCLOAK-4187 Fix LastSessionRefreshCrossDCTest and ConcurrentLoginCrossDCTest	2017-08-07 11:55:49 +02:00
Bill Burke	2365445a3e	Merge pull request #4360 from hmlnarik/KEYCLOAK-4189-Update-ConcurrencyTest-null KEYCLOAK-4189 Update ConcurrencyTest	2017-08-02 19:47:55 -04:00
Bill Burke	3b5ca2bac0	Merge pull request #4366 from hmlnarik/KEYCLOAK-4694-null KEYCLOAK-4694	2017-08-02 19:47:34 -04:00
Hynek Mlnarik	4583a45e78	KEYCLOAK-4694	2017-08-01 09:57:12 +02:00
Bill Burke	8c93fdfb62	fix test	2017-07-31 13:01:23 -04:00
Bill Burke	56bb37a9cf	Merge remote-tracking branch 'upstream/master'	2017-07-31 10:53:24 -04:00
Pavel Drozd	d761085318	Merge pull request #4353 from vramik/was KEYCLOAK-5243 was-wls support	2017-07-31 13:26:04 +02:00
Pavel Drozd	070bb9bf6a	Merge pull request #4318 from mhajas/KEYCLOAK-3297 KEYCLOAK-3297 Add test for Access-Control-Expose-Headers	2017-07-31 12:59:32 +02:00
Bill Burke	6b991b850e	change role name	2017-07-28 16:20:23 -04:00
Bill Burke	852e9274d4	Merge remote-tracking branch 'upstream/master'	2017-07-28 16:15:53 -04:00
Bill Burke	db9b1bcb21	token exchange	2017-07-28 16:15:39 -04:00
Hynek Mlnarik	a955364f0e	KEYCLOAK-4189 Update ConcurrencyTest	2017-07-28 13:00:14 +02:00
mposolda	07e2136b3b	KEYCLOAK-4187 Added UserSession support for cross-dc	2017-07-27 22:32:58 +02:00
vramik	9fa50bded5	was-wls changes	2017-07-27 10:24:34 +02:00
Marek Posolda	dd6a7b23c3	Merge pull request #4350 from hmlnarik/KEYCLOAK-4446-Failed-to-process-response-when-reject-consent-with-turned-on-encryption KEYCLOAK-4446 Do not encrypt SAML status messages	2017-07-26 15:31:54 +02:00
Hynek Mlnarik	3c537f5f28	KEYCLOAK-4446 Do not encrypt SAML status messages SAML status messages are not encryptable per Chapter 6 of saml-core-2.0-os.pdf. Only assertions, attributes, base ID and name ID can be encrypted.	2017-07-26 11:22:56 +02:00
Hynek Mlnarik	8d81a4a2e4	KEYCLOAK-5236	2017-07-26 11:22:05 +02:00
Hynek Mlnarik	c7046b6325	KEYCLOAK-4189 Preparation for cross-DC SAML testing	2017-07-25 09:44:36 +02:00
Bill Burke	11ff5a05e9	KEYCLOAK-5205	2017-07-18 11:03:01 -04:00
Bill Burke	7406a095b9	Merge remote-tracking branch 'upstream/master'	2017-07-17 17:56:09 -04:00
Bill Burke	876edc0186	...	2017-07-17 17:55:59 -04:00
Bill Burke	b10e7b8c31	Merge pull request #4323 from patriot1burke/master KEYCLOAK-5152	2017-07-14 15:35:48 -04:00
Bill Burke	f68754290f	KEYCLOAK-5152	2017-07-14 14:14:38 -04:00
Stian Thorgersen	badba7adaf	KEYCLOAK-5143 Run auth-server-wildfly profile on Travis (#4317 )	2017-07-14 07:01:54 +02:00
Bill Burke	b0a33c9765	KEYCLOAK-5155	2017-07-13 14:51:27 -04:00
mhajas	b86079c589	KEYCLOAK-3297 Add test for Access-Control-Expose-Headers	2017-07-13 14:40:43 +02:00
mposolda	3fca731395	KEYCLOAK-5136 Improve browser refresh button after switch to different flow	2017-07-11 13:03:18 +02:00
Marek Posolda	d2274fa49f	Merge pull request #4311 from mposolda/master KEYCLOAK-5061 Process correct initial flow when action expired	2017-07-11 07:23:07 +02:00
Pedro Igor	7e7d67464e	Merge pull request #4308 from pedroigor/KEYCLOAK-5140 [KEYCLOAK-5140] - GroupPolicyManagementTest fails with mssql and oracle	2017-07-10 18:04:19 -03:00
mposolda	936efe872a	KEYCLOAK-5061 Process correct initial flow when action expired	2017-07-10 22:52:54 +02:00
mposolda	7be2c55f61	KEYCLOAK-5061 Better error messages when action expired	2017-07-10 19:50:28 +02:00
Pedro Igor	dac381058c	[KEYCLOAK-5140] - GroupPolicyManagementTest fails with mssql and oracle	2017-07-10 11:54:58 -03:00
Marek Posolda	48eaebf1c3	Merge pull request #4293 from TeliaSoneraNorge/KEYCLOAK-5139 KEYCLOAK-5139 refresh token does not work with pairwise subject ident…	2017-07-10 11:21:34 +02:00
Martin Hardselius	5b2e390f57	Update refresh token test for deleted user Instead of disabling the user under test, the test will now correctly delete the user under test.	2017-07-10 10:20:41 +02:00
Pavel Drozd	50424b2ad3	Merge pull request #4284 from vramik/KEYCLOAK-5133 KEYCLOAK-5133 Fix FineGrainAdminUnitTest when impersonation is disabled	2017-07-10 08:04:23 +02:00
Pedro Igor	65251748c7	[KEYCLOAK-5148] - Create authorization settings when creating a new client using a config file	2017-07-05 18:19:00 -03:00
Pedro Igor	4b7c61111c	Merge pull request #4288 from pedroigor/KEYCLOAK-5135 [KEYCLOAK-5135] - Wrong comparison when checking for duplicate resources during creation	2017-07-05 08:22:23 -03:00
Martin Hardselius	8cb8678525	KEYCLOAK-5139 refresh token does not work with pairwise subject identifiers	2017-07-05 12:32:43 +02:00
Stian Thorgersen	c95aace6e0	KEYCLOAK-5141 Return '' in Cors requests when '' is in list of permitted origins. Stop caching well-known information as it can change. (#4290 )	2017-07-05 09:25:21 +02:00
Stian Thorgersen	eba8dac47d	KEYCLOAK-4536 Add test to check behavior with file redirect URI (#4291 )	2017-07-05 09:08:13 +02:00
Pedro Igor	e1622006c3	[KEYCLOAK-5135] - More tests for resource mgmt	2017-07-04 16:45:06 -03:00
Stian Thorgersen	9a9f4137e5	KEYCLOAK-4556 KEYCLOAK-5022 Only cache keycloak.js and iframe if specific version is requested (#4289 )	2017-07-04 21:18:34 +02:00
Stan Silvert	32b16717a7	KEYCLOAK-4234: Link to app in acct mgt doesn't use root url (#4285 ) * KEYCLOAK-4234: Link to app in acct mgt not use root url * Add tests.	2017-07-04 07:01:58 +02:00
vramik	41011a95e1	KEYCLOAK-5133 Fix FineGrainAdminUnitTest when impersonation is disabled	2017-07-03 11:49:46 +02:00
Stian Thorgersen	454c5f4d83	Set version to 3.3.0.CR1-SNAPSHOT	2017-06-30 09:47:11 +02:00
Bill Burke	999dff353c	Merge remote-tracking branch 'upstream/master'	2017-06-29 17:37:45 -04:00
Bill Burke	f5389b0e17	don't clean up properly	2017-06-29 17:36:45 -04:00
vramik	6ba3687b76	KEYCLOAK-5114 Fix UsersTest on auth-server-wildfly (#4271 )	2017-06-29 14:39:59 +02:00
Stian Thorgersen	620bea3553	Merge pull request #4270 from stianst/KEYCLOAK-5107 KEYCLOAK-5107 Fix FineGrainAdminUnitTest and IllegalAdminUpgradeTest …	2017-06-29 08:54:59 +02:00
Stian Thorgersen	c9bc321d2a	Merge pull request #4269 from stianst/dockerdockerdocker KEYCLOAK-3592 Docker auth implementation	2017-06-29 07:23:47 +02:00
Stian Thorgersen	74fe9249d5	Merge pull request #4216 from machielg/master KEYCLOAK-5026 Store credentials	2017-06-29 06:52:16 +02:00
Stian Thorgersen	9f814c6cf1	KEYCLOAK-5107 Fix FineGrainAdminUnitTest and IllegalAdminUpgradeTest on auth-server-wildfly	2017-06-29 06:46:21 +02:00
Josh Cain	89fcddd605	KEYCLOAK-3592 Docker auth implementation	2017-06-29 06:37:34 +02:00
Hynek Mlnarik	5e16a32f86	KEYCLOAK-5106 Fix BasicSamlTest on auth-server-wildfly	2017-06-28 20:47:43 +02:00
Stian Thorgersen	e964b156cc	Merge pull request #4264 from stianst/KEYCLOAK-5074 KEYCLOAK-5074 Allow updating client secret through client registratio…	2017-06-28 11:40:04 +02:00
Stian Thorgersen	ce4506f367	Merge pull request #4261 from hmlnarik/KEYCLOAK-4377-null KEYCLOAK-4377	2017-06-28 08:21:20 +02:00
Stian Thorgersen	1220d7f898	KEYCLOAK-5074 Allow updating client secret through client registration service	2017-06-28 08:11:51 +02:00
Hynek Mlnarik	a3ccac2012	KEYCLOAK-4377	2017-06-27 14:34:47 +02:00
Pavel Drozd	947254e14f	Merge pull request #4222 from vmuzikar/KEYCLOAK-5055 KEYCLOAK-4787, KEYCLOAK-5055 Stabilize UI tests	2017-06-27 11:42:21 +02:00
Stian Thorgersen	4be0e36306	Merge pull request #4208 from ASzc/KEYCLOAK-4758 KEYCLOAK-4758	2017-06-27 11:35:43 +02:00
Stian Thorgersen	56c5996aff	Merge pull request #4259 from stianst/abstractj-KEYCLOAK-4444 KEYCLOAK-4444	2017-06-27 10:44:30 +02:00
Machiel Groeneveld	7849191ec7	Merge branch 'master' into master	2017-06-27 10:27:07 +02:00
Bruno Oliveira	361ab1c988	[KEYCLOAK-4444] Allow sending test email	2017-06-27 08:38:36 +02:00
Stian Thorgersen	b4d39ca061	KEYCLOAK-4984 Don't update client registration access token on read	2017-06-27 08:29:03 +02:00
Bill Burke	b771960e21	fix log file	2017-06-26 12:36:43 -04:00
Bill Burke	bc05560d4d	Merge remote-tracking branch 'upstream/master'	2017-06-26 11:41:12 -04:00
Bill Burke	3855b5c0a3	admin console work	2017-06-26 11:40:56 -04:00
Bill Burke	28b3ef9aa9	admin console work	2017-06-26 11:40:32 -04:00
Bill Burke	22987bb90b	Merge pull request #4250 from mposolda/RHSSO-1027 KEYCLOAK-5085 Easy fix to just handle the exception	2017-06-26 10:04:02 -04:00
Hynek Mlnarik	955cbc76d7	KEYCLOAK-5030 Change action tokens cache type to distributed	2017-06-26 10:11:53 +02:00
Bill Burke	f1807aead4	impersonate	2017-06-25 11:28:37 -04:00
mposolda	756d996a4a	KEYCLOAK-5085 RHSSO-1027 Fix to handle the exception thrown from alternative flow	2017-06-23 19:13:43 +02:00
Bill Burke	3ee86fedc7	Merge remote-tracking branch 'upstream/master'	2017-06-23 09:57:35 -04:00
Bill Burke	39dea4b078	restricting admin role mapping	2017-06-22 16:51:46 -04:00
Pavel Drozd	58e5f41415	Merge pull request #4210 from vramik/KEYCLOAK-4983 KEYCLOAK-4983 export authorization test with multiple roles	2017-06-22 09:36:26 +02:00
Pavel Drozd	a7fbcaaef4	Merge pull request #4211 from vramik/KEYCLOAK-5027 KEYCLOAK-5027 Add possibility to attach debugger to jboss based servers	2017-06-22 09:34:58 +02:00
Stian Thorgersen	6f731dfee9	Merge pull request #4118 from skjolber/feature/KEYCLOAK-3056-verify-signature-2 Some adjustments for KEYCLOAK-3056 / PR #3893	2017-06-22 08:44:32 +02:00
Marek Posolda	ab7a0c2252	Merge pull request #4248 from mposolda/client-initial-access-db KEYCLOAK-4631 Move ClientInitialAccessModel from userSession model to…	2017-06-22 06:27:25 +02:00
Bill Burke	d08ddade2e	merge	2017-06-21 17:43:54 -04:00
Bill Burke	52e40922bc	removal	2017-06-21 17:42:57 -04:00
Bill Burke	f1132ffabe	Merge pull request #4175 from mrezai/fix-pkce-s256-code-challenge KEYCLOAK-4956: Fix incorrect PKCE S256 code challenge generation	2017-06-21 17:04:31 -04:00
Bill Burke	8c82201add	Merge pull request #4224 from pedroigor/KEYCLOAK-3168 [KEYCLOAK-3168] - Group-Based Access Control	2017-06-21 17:03:34 -04:00
mposolda	fc61a4e89f	KEYCLOAK-4631 Move ClientInitialAccessModel from userSession model to realm model	2017-06-21 22:14:20 +02:00
Hynek Mlnarik	bf43ccf6c1	KEYCLOAK-4993 Fix intermittent failures in ComponentsTest testConcurrencyWithChildren ... and seems that the KEYCLOAK-5020 as well	2017-06-21 15:19:23 +02:00
Marek Posolda	be5291f710	Merge pull request #4242 from mposolda/master KEYCLOAK-4438 Disable kerberos flow when provider removed	2017-06-21 11:54:50 +02:00
Marek Posolda	3fd6fc250d	Merge pull request #4240 from hmlnarik/KEYCLOAK-4189-Cross-DC-testing KEYCLOAK-4189 Infinispan cache and channel statistics for Cross-DC testing	2017-06-21 10:22:43 +02:00
mposolda	e91dd011c5	KEYCLOAK-4438 Disable kerberos flow when provider removed	2017-06-21 09:38:20 +02:00
mposolda	32cf8b7cad	KEYCLOAK-3316 Fixes for OAuth2 requests without 'scope=openid'	2017-06-20 17:17:43 +02:00
Hynek Mlnarik	2e2d15be9f	KEYCLOAK-4189 Infinispan cache and channel statistics for Cross-DC-testing	2017-06-20 12:48:08 +02:00
mposolda	f363dbcad0	KEYCLOAK-4327 Switching language on User consent gives error	2017-06-20 09:21:41 +02:00
Bill Burke	57cb46148f	tests	2017-06-19 11:21:59 -04:00
Bill Burke	a994af9010	remove scope	2017-06-16 11:26:43 -04:00
vramik	dfed148921	KEYCLOAK-4189 fixed issue with exlude cross DC tests by default	2017-06-16 11:32:02 +02:00
Pedro Igor	5028c05cc2	[KEYCLOAK-3168] - Export and import tests	2017-06-14 09:33:59 -03:00
Martin Hardselius	60942346f3	KEYCLOAK-4924: pairwise clients get duplicate subs in tokens	2017-06-14 10:47:40 +02:00
vramik	97509ebf89	KEYCLOAK-4983 export authorization test with multiple roles	2017-06-14 10:38:47 +02:00
Pedro Igor	169280b6a1	[KEYCLOAK-3168] - Group-Based Access Control	2017-06-13 19:05:44 -03:00
Vaclav Muzikar	35857bf649	KEYCLOAK-5055 Stabilize UI tests	2017-06-13 11:24:45 +02:00
Hynek Mlnarik	a0f3a6469f	KEYCLOAK-4189 - Cross DC testing	2017-06-12 11:14:28 +02:00
Pedro Igor	fd8a3dccaf	Merge pull request #4214 from pedroigor/KEYCLOAK-4904 [KEYCLOAK-4904] - Authorization Audit - Part 1	2017-06-09 17:17:30 -03:00
Pedro Igor	f12cef2c86	[KEYCLOAK-4904] - Authorization Audit - Part 1	2017-06-09 13:31:06 -03:00
Machiel Keizer-Groeneveld	80f8815b9a	KEYCLOAK-5026 Store credentials Credentials are stored with user creation if they are present in the UserRepresentation.	2017-06-09 09:32:33 +02:00
Stian Thorgersen	6cccd66162	Merge pull request #4192 from hokuda/KEYCLOAK-4980 KEYCLOAK-4980 SAML adapter should return 403 when unauthenticated Aja…	2017-06-09 04:40:26 +02:00
Hisanobu Okuda	9135ba7c40	KEYCLOAK-4980 SAML adapter should return 401 when unauthenticated Ajax client accesses	2017-06-08 23:36:25 +09:00
Bill Burke	94528976d4	console work	2017-06-07 16:29:43 -04:00
vramik	7381ec456a	KEYCLOAK-5027 Add possibility to attach debugger to jboss based servers	2017-06-07 14:35:33 +02:00
Bill Burke	536a57a514	ui for permission reference	2017-06-05 19:52:51 -04:00
Alex Szczuczko	5d88c2b8be	KEYCLOAK-4758 Update Encode class using latest resteasy. Use encodeQueryParamAsIs instead of encodeQueryParam when encoding key=value pairs for URI query sections. Also fix a few callers who were relying on the bad behaviour of queryParam.	2017-06-05 16:24:38 -06:00
Pedro Igor	9be9e30ad6	Merge pull request #4206 from pedroigor/KEYCLOAK-4983 [KEYCLOAK-4983] - Authz settings export of role base policy generates json where are just role-names	2017-06-05 16:19:58 -03:00
Pedro Igor	23887f4031	Fixing tests and more client policy tests	2017-06-05 11:26:33 -03:00
Pedro Igor	3760f2753b	[KEYCLOAK-4983] - Authz settings export of role base policy generates json where are just role-names	2017-06-02 20:09:33 -03:00
Pedro Igor	d0f505455d	[KEYCLOAK-4991] - Allow clients to limit the number of permission in a RPT when using entitlements	2017-06-02 19:06:40 -03:00
Bill Burke	a41d282e92	client permission tests	2017-06-02 15:49:20 -04:00
Thomas Skjølberg	241c58dd61	Add unit tests related to signatures, check that a signature is present when want assertion signing.	2017-06-02 15:36:52 +02:00
Bill Burke	b9f7a43a72	group permissions	2017-06-01 20:16:35 -04:00
Pedro Igor	dcd1a68d95	[KEYCLOAK-4992] - Allow clients to exclude resource_set_name from RPT	2017-05-31 19:33:34 -03:00
Pavel Drozd	a52a1f4618	Merge pull request #4196 from vramik/KEYCLOAK-4481 KEYCLOAK-4481 some authz export tests	2017-05-30 16:56:54 +02:00
Stian Thorgersen	a6e4245185	Merge pull request #4194 from stianst/KEYCLOAK-4888 KEYCLOAK-4888	2017-05-30 14:49:22 +02:00
vramik	8f1938c28d	KEYCLOAK-4481 Role based permission test	2017-05-30 13:10:09 +02:00
Stian Thorgersen	8c53c5a90e	KEYCLOAK-4888 Change default hashing provider for realm	2017-05-30 09:54:05 +02:00
Thomas Darimont	7d0b461683	KEYCLOAK-4975 Use authenticationSession binding name in ScriptBasedAuthenticator We now use authenticationSession instead of clientSession to reflect the renaming of ClientSessionModel to AuthenticationSessionModel. Note that this is a breaking change which needs to be mentioned in the upgrade notes!	2017-05-29 18:14:02 +02:00
Bill Burke	c3ea847b3e	auth changes	2017-05-29 09:53:17 -04:00
Stian Thorgersen	684689d40d	Merge pull request #3561 from glavoie/KEYCLOAK-3990 KEYCLOAK-3990: Very slow use of NamedQueries.	2017-05-29 09:39:39 +02:00
mposolda	c4f172afe7	KEYCLOAK-4977 Upgrade infinispan and undertow version to align with Wildfly 11.0.0.Alpha1	2017-05-26 14:29:30 +02:00
Hynek Mlnarik	e4fc8f083e	KEYCLOAK-3990 Tests	2017-05-24 07:50:48 -04:00
mposolda	2b59db71a8	KEYCLOAK-3316 Remove the IDToken if scope=openid is not used	2017-05-24 09:23:14 +02:00
Stian Thorgersen	c442bcd8d3	Merge pull request #4174 from stianst/KEYCLOAK-4889 KEYCLOAK-4889	2017-05-23 14:26:15 +02:00
Stian Thorgersen	c00a64208a	Merge pull request #4136 from frelibert/KEYCLOAK-4897 KEYCLOAK-4897	2017-05-23 14:10:34 +02:00
Pavel Drozd	06152d9883	Merge pull request #4165 from vmuzikar/google-fix KEYCLOAK-4944 Fix SocialLoginTest to reflect new Google Login screen	2017-05-23 14:03:08 +02:00
Stian Thorgersen	ef29097679	Merge pull request #4172 from hmlnarik/KEYCLOAK-4813-Destination-Validation-should-ignore-whether-default-port-is-explicitly-specified KEYCLOAK-4813 Destination validation counts on port being not specified	2017-05-23 13:59:36 +02:00
Pavel Drozd	0a869f56a7	Merge pull request #4146 from vramik/KEYCLOAK-4926 KEYCLOAK-4926 exclude WelcomePageTest from migration scenario	2017-05-23 13:59:26 +02:00
Stian Thorgersen	ff2d6941d0	Merge pull request #4140 from mstruk/RHSSO-978 RHSSO-978 Cannot migrate event types using export/import	2017-05-23 13:55:17 +02:00
Mohammad Rezai	acd78ee407	KEYCLOAK-4956: Fix incorrect PKCE S256 code challenge generation	2017-05-23 16:15:44 +04:30
Stian Thorgersen	130452f6c3	Merge pull request #4085 from mstruk/RHSSO-402 RHSSO-402 need a way to dump configuration (including ldap provider config) to a file	2017-05-23 13:29:32 +02:00
Stian Thorgersen	097a2267f5	KEYCLOAK-4889 Improve error messages for password policies	2017-05-23 13:18:06 +02:00
Hynek Mlnarik	f47283f61a	KEYCLOAK-4813 Destination validation counts on port being not specified	2017-05-23 12:52:48 +02:00
mposolda	8adde64e2c	KEYCLOAK-4016 Provide a Link to go Back to The Application on a Timeout	2017-05-23 09:08:58 +02:00
Daan de Wit	ef6b303bfe	KEYCLOAK-4911 charset not specified by Java client registration API	2017-05-22 15:22:39 +02:00
Bill Burke	ab763e7c5b	fixes after merge	2017-05-19 15:54:36 -04:00
Vaclav Muzikar	c2379dbe49	KEYCLOAK-4944 Fix SocialLoginTest to reflect new Google Login screen	2017-05-19 18:07:05 +02:00
Bill Burke	f114895cd2	for merge	2017-05-19 11:29:26 -04:00
vramik	f0386d9374	KEYCLOAK-4926 exclude WelcomePageTest from migration scenario	2017-05-19 13:30:01 +02:00
Marek Posolda	d80381ec0d	Merge pull request #4139 from vramik/KEYCLOAK-4827 KEYCLOAK-4827 Add tests for concurrent use of user session in cache	2017-05-19 11:14:57 +02:00
Bill Burke	2cac8b1bb7	KEYCLOAK-4929	2017-05-18 16:53:31 -04:00
Bill Burke	c291748f43	KEYCLOAK-4929	2017-05-18 16:48:04 -04:00
Hynek Mlnarik	f9767ad6cd	KEYCLOAK-4627 Additional tests for action tokens	2017-05-18 12:04:32 +02:00
Hynek Mlnarik	10c9e0f00f	KEYCLOAK-4897 Tests for assertion-only signatures with encrypted assertions	2017-05-17 15:56:49 +02:00
Marko Strukelj	27b291c345	RHSSO-978 Cannot migrate event types using export/import	2017-05-16 18:52:58 +02:00
Marko Strukelj	7d0ca42c6c	RHSSO-402 need a way to dump configuration (including ldap provider config) to a file	2017-05-15 12:13:58 +02:00
Bill Burke	954ef99f22	Merge remote-tracking branch 'upstream/master'	2017-05-12 10:10:29 -04:00
vramik	cc6a5419de	KEYCLOAK-4827 Add tests for concurrent use of user session in cache	2017-05-12 14:14:14 +02:00
mposolda	7d8796e614	KEYCLOAK-4626 Support for sticky sessions with AUTH_SESSION_ID cookie. Clustering tests with embedded undertow. Last fixes.	2017-05-11 22:24:07 +02:00
Hynek Mlnarik	b8262a9f02	KEYCLOAK-4628 Single-use cache + its functionality incorporated into reset password token. Utilize single-use cache for relevant actions in execute-actions token	2017-05-11 22:16:26 +02:00
mposolda	db8b733610	KEYCLOAK-4626 Fix TrustStoreEmailTest and PolicyEvaluationCompositeRoleTest. Distribution update	2017-05-11 22:16:26 +02:00
Hynek Mlnarik	c431cc1b01	KEYCLOAK-4627 IdP email account verification + code cleanup. Fix for concurrent access to auth session notes	2017-05-11 22:16:26 +02:00
mposolda	168153c6e7	KEYCLOAK-4626 Authentication sessions - SAML, offline tokens, broker logout and other fixes	2017-05-11 22:16:26 +02:00
Hynek Mlnarik	47aaa5a636	KEYCLOAK-4627 reset credentials and admin e-mails use action tokens. E-mail verification via action tokens.	2017-05-11 22:16:26 +02:00
mposolda	e7272dc05a	KEYCLOAK-4626 AuthenticationSessions - brokering works. Few other fixes and tests added	2017-05-11 22:16:26 +02:00
Hynek Mlnarik	b55b089355	KEYCLOAK-4627 Changes in TokenVerifier to include token in exceptions. Reset credentials uses checks to validate individual token aspects	2017-05-11 22:16:26 +02:00
mposolda	a9ec69e424	KEYCLOAK-4626: AuthenticationSessions - working login, registration, resetPassword flows	2017-05-11 22:16:26 +02:00
Hynek Mlnarik	19a41c8704	KEYCLOAK-4627 Refactor TokenVerifier to support more than just access token checks. Action tokens implementation with reset e-mail action converted to AT	2017-05-11 22:16:26 +02:00
mposolda	e4aba9e471	KEYCLOAK-4829 Access token from offline token falsely reported as inactive by token introspection	2017-05-11 21:17:04 +02:00
Stian Thorgersen	c3a2b3a6b6	KEYCLOAK-4523 PBKDF2WithHmacSHA256 and PBKDF2WithHmacSHA512 providers	2017-05-11 11:58:22 +02:00
Bill Burke	bfb4395b28	role and Users finished UI work	2017-05-10 15:25:04 -04:00
Bill Burke	46ec12c41c	fixes	2017-05-10 14:19:10 -04:00
Pedro Igor	c0b08a27a2	Test for role policy evaluation	2017-05-09 15:27:19 -03:00
Bill Burke	a8a8ea4bcd	Merge remote-tracking branch 'upstream/master'	2017-05-08 13:49:03 -04:00
Bill Burke	f760427c5c	fine grain tests	2017-05-08 13:48:51 -04:00
Pavel Drozd	a8071356bb	Merge pull request #4109 from mhajas/KEYCLOAK-4503 KEYCLOAK-4503 Add test	2017-05-05 13:06:50 +02:00
Pavel Drozd	ec5860d7f5	Merge pull request #4102 from mhajas/KEYCLOAK-4650 KEYCLOAK-4650 Add cancel warning test	2017-05-05 13:06:03 +02:00
Marc Heide	d5c643eaf9	KEYCLOAK-4521: consider offline sessions if no active user session was found for user info endpoint	2017-05-04 15:25:09 +02:00
mhajas	b33f7414da	KEYCLOAK-4503 Add test	2017-05-03 08:51:26 +02:00
Bill Burke	c3b44e61d4	Merge remote-tracking branch 'upstream/master'	2017-05-01 14:51:07 -04:00
mhajas	618a8e7f90	KEYCLOAK-4650 Add cancel warning test	2017-04-28 14:18:01 +02:00
Eriksson Fabian	ca1152c3e5	KEYCLOAK-4204 Extend brute force protection with permanent lockout on failed attempts - Can still use temporary brute force protection. - After X-1 failed login attempt, if the user successfully logs in his/her fail login count is reset.	2017-04-28 09:02:10 +02:00
Pavel Drozd	7bcbc9a6af	Merge pull request #4042 from daklassen/KEYCLOAK-2976 KEYCLOAK-2976 Merge two "ClientTest" classes in integration-arquillian	2017-04-27 17:16:58 +02:00
Stian Thorgersen	87dedb56e5	Set version to 3.2.0.CR1-SNAPSHOT	2017-04-27 14:23:03 +02:00
Pavel Drozd	51e4beccf4	Merge pull request #4076 from vramik/KEYCLOAK-4732 KEYCLOAK-4732 fix for wildfly	2017-04-27 08:06:55 +02:00
Bill Burke	c7bdb489ee	Merge remote-tracking branch 'upstream/master'	2017-04-26 18:57:56 -04:00
Pedro Igor	389e2b42f1	Test for uma_authorization scope	2017-04-26 16:04:37 -03:00
Bill Burke	2276f99d54	Merge remote-tracking branch 'upstream/master'	2017-04-26 14:39:45 -04:00
Bill Burke	f67013bcb6	fix	2017-04-26 14:39:41 -04:00
Pedro Igor	b78cc63f0d	Merge pull request #4084 from pedroigor/KEYCLOAK-4755 [KEYCLOAK-4755] - Client UI Tests	2017-04-26 13:29:00 -03:00
Pedro Igor	b84507507d	Merge pull request #4079 from mhajas/KEYCLOAK-4769 KEYCLOAK-4769 Add test for URI priority	2017-04-26 12:20:53 -03:00
Pedro Igor	fbcfcfa088	[KEYCLOAK-4755] - Client UI Tests	2017-04-26 12:11:53 -03:00
Hynek Mlnarik	d7615d6a68	KEYCLOAK-2122 Configuration of AssertionConsumerServiceUrl in SAML adapter	2017-04-26 11:59:37 +02:00
mhajas	9c0e7cb4a5	KEYCLOAK-4769 Add test for URI priority	2017-04-26 08:32:40 +02:00
Pedro Igor	0ccb98a81f	Merge pull request #4078 from pedroigor/KEYCLOAK-3135 [KEYCLOAK-3135] - Rules UI Tests	2017-04-25 18:04:09 -03:00
Pedro Igor	5b5cfb01b9	Merge pull request #4077 from pedroigor/KEYCLOAK-4792 [KEYCLOAK-4792] - Client credentials provider support and making easier to obtain authz client	2017-04-25 18:03:32 -03:00
Pedro Igor	b3131bf679	[KEYCLOAK-3135] - Rules UI Tests	2017-04-25 16:52:14 -03:00
Pedro Igor	79c9078caa	[KEYCLOAK-4792] - Client credentials provider support and making easier to obtain authz client	2017-04-25 14:51:45 -03:00
vramik	a3c57f4326	KEYCLOAK-4732 fix for wildfly	2017-04-25 13:57:14 +02:00
Pedro Igor	ab58779d22	[KEYCLOAK-4732] - Need to run the test using the target testing realm	2017-04-25 08:34:39 -03:00
Pedro Igor	38ae6c981b	Merge pull request #4068 from pedroigor/KEYCLOAK-3135 [KEYCLOAK-3135] - Scope permission UI tests and reusable ui-select2 component	2017-04-25 08:19:32 -03:00
Stian Thorgersen	d081f967ea	Merge pull request #4067 from hmlnarik/KEYCLOAK-4779 KEYCLOAK-4779 Fix NPE	2017-04-25 10:31:00 +02:00
mposolda	b81891f89b	KEYCLOAK-4271 Migration test for offline tokens - manual mode	2017-04-25 09:18:33 +02:00
Pedro Igor	49547ccfbc	[KEYCLOAK-3135] - Scope permission UI tests and reusable ui-select2 component	2017-04-24 23:12:46 -03:00
Hynek Mlnarik	e8a65017fa	KEYCLOAK-4779 Fix NPE	2017-04-24 23:09:27 +02:00
Pedro Igor	5e57e84384	Merge pull request #4054 from pedroigor/KEYCLOAK-3135 [KEYCLOAK-3135] - More changes to Policy Management API	2017-04-24 17:44:07 -03:00
Bill Burke	12cb295a35	Merge remote-tracking branch 'upstream/master'	2017-04-24 10:05:46 -04:00
Bill Burke	58868ca99f	prototype	2017-04-24 10:05:39 -04:00
mposolda	d05a894831	KEYCLOAK-4326 KEYCLOAK-4588 Can't get granted consents if client template mappers were consented to	2017-04-24 15:44:38 +02:00
Pedro Igor	e0f753bcf5	[KEYCLOAK-3135] - More changes to Policy Management API	2017-04-24 07:34:08 -03:00
mposolda	1fd5af840b	KEYCLOAK-4525 Deleting a client with existing sessions/offline_tokens leads to Internal Server Errors	2017-04-24 11:24:09 +02:00
Pavel Drozd	95fc8f79dd	Merge pull request #4051 from mhajas/KEYCLOAK-4505 KEYCLOAK-4505 Add test of clientSession for script based authenticator	2017-04-21 13:50:29 +02:00
Pavel Drozd	f50e08d111	Merge pull request #4044 from vmuzikar/adapter-compat-upstream KEYCLOAK-4761 Support for Java adapter backward compatibility testing	2017-04-21 13:49:17 +02:00
Pedro Igor	fa1b998802	Merge pull request #4050 from pedroigor/KEYCLOAK-4769 [KEYCLOAK-4769] - Policy enforcer path matching tests	2017-04-20 14:02:59 -03:00
Pedro Igor	df163d86e8	Merge pull request #4052 from pedroigor/KEYCLOAK-4754 [KEYCLOAK-4754] - Unable to delete realm when using aggregated policies	2017-04-20 13:23:09 -03:00
Pedro Igor	80a80512ea	[KEYCLOAK-4769] - Policy enforcer path matching tests	2017-04-20 13:21:01 -03:00
mhajas	4f66919474	KEYCLOAK-4505 Add tests of clientSession for script based authenticator	2017-04-20 17:10:56 +02:00
Pedro Igor	bf69bc94bb	[KEYCLOAK-4754] - Unable to delete realm when using aggregated policies	2017-04-20 12:10:52 -03:00
Pavel Drozd	585653b88e	Merge pull request #4038 from vmuzikar/social-fix KEYCLOAK-4624 Fix, stabilize and revamp SocialLoginTest	2017-04-20 13:13:29 +02:00
Vaclav Muzikar	c7a97cfd21	KEYCLOAK-4761 Prepare the testsuite for Java adapter backward compatibility testing	2017-04-19 13:51:24 +02:00
David Klassen	19a59429ae	KEYCLOAK-2976 Merge two "ClientTest" classes in integration-arquillian	2017-04-19 13:25:30 +02:00
Stian Thorgersen	4f771ac51a	Merge pull request #4027 from abacusresearch/KEYCLOAK-4729_update_german_translation KEYCLOAK-4729 Update German translations	2017-04-18 15:13:39 +02:00
Vaclav Muzikar	32b62b2a70	KEYCLOAK-4624 Fix, stabilize and revamp SocialLoginTest	2017-04-13 13:41:30 +02:00
Pedro Igor	964693077a	[KEYCLOAK-4751] - More tests	2017-04-12 18:25:38 -03:00
Pedro Igor	8e877a7f6c	[KEYCLOAK-3135] - More tests	2017-04-12 14:34:27 -03:00
Pedro Igor	eec712a259	[KEYCLOAK-3135] - Role and user policies apis	2017-04-12 00:52:14 -03:00
Pedro Igor	54ebc1918c	[KEYCLOAK-3135] - Using abstract policy representation when creating policies and updating tests	2017-04-12 00:52:13 -03:00
Pedro Igor	d60dcb4c62	[KEYCLOAK-3135] - Some more tests and making policy type rest api more generic	2017-04-12 00:52:13 -03:00
Pedro Igor	8e64bc3e4d	Tests for new permission management rest api	2017-04-12 00:52:13 -03:00
Pedro Igor	cf1e8d1dd8	[KEYCLOAK-3135] - Tests and typos	2017-04-12 00:52:13 -03:00
Pavel Drozd	bfd76d7813	Merge pull request #3962 from mhajas/KEYCLOAK-4366 KEYCLOAK-4366	2017-04-10 08:44:52 +02:00
Dominik Langenegger	16430791bb	KEYCLOAK-4729 Update German translations	2017-04-07 16:03:34 +02:00
Stian Thorgersen	83d0f313ce	Merge pull request #4011 from mstruk/KEYCLOAK-4719 KEYCLOAK-4719 CLI tests fail when run from within the IDE	2017-04-07 09:17:19 +02:00
Bill Burke	3ce0c57e17	Merge pull request #3831 from Hitachi/master KEYCLOAK-2604 Proof Key for Code Exchange by OAuth Public Clients	2017-04-06 15:36:08 -04:00
Bill Burke	c198f4ffa7	Merge pull request #4015 from patriot1burke/master KEYCLOAK-4727 KEYCLOAK-4652	2017-04-06 15:27:49 -04:00
Bill Burke	26db0dd1fc	Merge pull request #4016 from pedroigor/KEYCLOAK-4726 [KEYCLOAK-4726] - Multiple role policies crash realm delete	2017-04-06 13:21:53 -04:00
Pedro Igor	1f50421a54	[KEYCLOAK-4726] - Multiple role policies crash realm delete	2017-04-06 12:36:03 -03:00
Bill Burke	1b3549f828	oops	2017-04-06 10:49:48 -04:00
Bill Burke	201d2c6aac	Merge remote-tracking branch 'upstream/master'	2017-04-06 10:44:43 -04:00
Bill Burke	31074c3c8d	KEYCLOAK-4727 KEYCLOAK-4652	2017-04-06 10:44:33 -04:00
Stian Thorgersen	af4c74f1d9	Merge pull request #3718 from thomasdarimont/issue/KEYCLOAK-4163-improve-support-for-email-addresses KEYCLOAK-4163 Improve support for e-mail addresses	2017-04-06 15:34:30 +02:00
Marko Strukelj	0269db0e85	KEYCLOAK-4719 CLI tests fail when run from within the IDE	2017-04-06 12:46:05 +02:00
Marek Posolda	ad1ca78034	Merge pull request #4002 from mposolda/master KEYCLOAK-4705 Running test from IDE should log INFO to the console	2017-04-04 11:52:10 +02:00
Pavel Drozd	30b785c60d	Merge pull request #3999 from vmuzikar/ie-fix KEYCLOAK-4351 Stabilize TermsAndConditions test in IE	2017-04-04 10:48:22 +02:00
Pavel Drozd	b4c5eb8354	Merge pull request #3994 from vramik/KEYCLOAK-4534 KEYCLOAK-4534 ClientInitiatedAccountLinkTest fails with auth-server-w…	2017-04-04 10:47:36 +02:00
Pavel Drozd	91c3977d71	Merge pull request #3988 from mhajas/KEYCLOAK-3955 KEYCLOAK-3955	2017-04-04 10:46:12 +02:00
mposolda	457f183d46	KEYCLOAK-4705 Running test from IDE should log INFO to the console	2017-04-04 10:15:22 +02:00
Vaclav Muzikar	5e360cf919	KEYCLOAK-4351 Stabilize TermsAndConditions test in IE	2017-04-04 07:40:16 +02:00
vramik	ca6d8c9dbe	KEYCLOAK-4534 ClientInitiatedAccountLinkTest fails with auth-server-wildlfy	2017-03-30 12:47:51 +02:00
mhajas	3bb587530b	KEYCLOAK-3955	2017-03-28 16:05:44 +02:00
mhajas	bc05010ece	Fix javascript adapter tests	2017-03-28 15:02:44 +02:00
Takashi Norimatsu	ef3aef9381	Merge branch 'master' into master	2017-03-28 16:21:40 +09:00
Vaclav Muzikar	66c13b4a72	KEYCLOAK-4613 Fix Console UI and Social Login tests	2017-03-27 15:25:24 +02:00
mhajas	36fc643bfb	KEYCLOAK-4366	2017-03-27 11:22:01 +02:00
Pavel Drozd	ed67dcc712	Merge pull request #3975 from vmuzikar/KEYCLOAK-4660 KEYCLOAK-4660 Add support for Chrome CLI switches to Arquillian Tests…	2017-03-27 09:38:33 +02:00
Pavel Drozd	4aa996c2db	Merge pull request #3959 from mhajas/KEYCLOAK-4141 KEYCLOAK-4141 Added saml tests	2017-03-27 09:36:41 +02:00
Bill Burke	71f0c01d4f	Merge pull request #3980 from patriot1burke/master KEYCLOAK-4664 KEYCLOAK-4665	2017-03-25 20:12:22 -04:00
Bill Burke	f554fd90db	Merge pull request #3911 from almighty/oso_provider [KEYCLOAK-4528] Adds Openshift Identity Provider as part of social brokers	2017-03-25 19:25:44 -04:00
Bill Burke	dd8a64f30c	KEYCLOAK-4664	2017-03-25 11:21:11 -04:00
Vaclav Muzikar	6a093abfdb	KEYCLOAK-4660 Add support for Chrome CLI switches to Arquillian Testsuite	2017-03-24 12:25:49 +01:00
Bill Burke	815e9e8e02	Merge pull request #3968 from vramik/KEYCLOAK-4229 KEYCLOAK-4229 Add migration test from 2.5.5	2017-03-23 14:48:39 -04:00
Bill Burke	d1e71acf10	Merge pull request #3961 from jblashka/maxLifespanInvalidationFixes KEYCLOAK-4612 Fix CachePolicy.MAX_LIFESPAN invalidation	2017-03-23 14:25:21 -04:00
Bartosz Majsak	210143738e	Merge branch 'master' into oso_provider	2017-03-23 13:45:07 +01:00
vramik	1fccff7e7c	KEYCLOAK-4229 Add migration test from 2.5.5	2017-03-22 14:19:35 +01:00
mhajas	7c1eb5582a	KEYCLOAK-4141 Added saml tests	2017-03-21 10:41:06 +01:00
Jared Blashka	61bd9bb58c	Fix CachePolicy.MAX_LIFESPAN invalidation	2017-03-20 22:56:35 -04:00
Peter Nalyvayko	b2f10359c8	KEYCLOAK-4335: x509 client certificate authentication Started on implementing cert thumbprint validation as a part of x509 auth flow. Added a prompt screen to give users a choice to either log in based on the identity extracted from X509 cert or to continue with normal browser login flow authentication; clean up some of the comments x509 authentication for browser and direct grant flows. Implemented certificate to user mapping based on user attribute Implemented CRL and OCSP certificate revocation checking and added corresponding configuration settings to set up responderURI (OCSP), a location of a file containing X509CRL entries and switiches to enable/disable revocation checking; reworked the certificate validation; removed superflous logging; changed the certificate authentication prompt page to automatically log in the user after 10 seconds if no response from user is received Support for loading CRL from LDAP directory; finished the CRL checking using the distribution points in the certificate; updated the instructions how to add X509 authentication to keycloak authentication flows; minor styling changes Stashing x509 unit test related changes; added the steps to configure mutual SSL in WildFly to the summary document A minor fix to throw a security exception when unable to check cert revocation status using OCSP; continue working on README Changes to the formating of the readme Added a list of features to readme Fixed a potential bug in X509 cert user authenticator that may cause NPE if the client certificate does not define keyusage or extended key usage extensions Fixed compile time errors in X509 validators caused by the changes to the user credentials model in upstream master Removed a superfluous file created when merging x509 and main branches X509 authentication: removed the PKIX path validation as superflous Reverted changes to the AbstractAttributeMapper introduced during merging of x509 branch into main Merge the unit tests from x509 branch added mockito dependency to services project; changes to the x509 authenticators to expose methods in order to support unit tests; added a default ctor to CertificateValidator class to support unit testing; updated the direct grant and browser x509 authenticators to report consistent status messages; unit tests to validate X509 direct grant and browser authenticators; fixed OCSP validation to throw an exception if the certificate chain contains a single certificate; fixed the CRL revocation validation to only use CRL distribution point validation only if configured CRL and OSCP mock tests using mock netty server. Changed the certificate validator to better support unit testing. changes to the mockserver dependency to explicitly exclude xercesImpl that was causing SAMLParsingTest to fail Added a utility class to build v3 certificates with optional extensions to facilitate X509 unit testing; removed supoerfluous certificate date validity check (undertow should be checking the certificate dates during PKIX path validation anyway) X509: changes to make configuring the user identity extraction simplier for users - new identity sources to map certificate CN and email (E) attributes from X500 subject and issuer names directly rather than using regular expressions to parse them X509 fixed a compile error caused by the changes to the user model in master Integration tests to validate X509 client certificate authentication Minor tweaks to X509 client auth related integration tests CRLs to support x509 client cert auth integration tests X509: reverted the changes to testrealm.json and updated the test to configure the realm at runtime X509 - changes to the testsuite project configuration to specify a path to a trust store used to test x509 direct grant flow; integration tests to validate x509 authentication in browser and direct grant flows; updated the client certificate to extend its validatity dates; x509 integration tests and authenticators have been refactored to use a common configuration class X509 separated the browser and direct grant x509 authenction integration tests x509 updated the authenticator provider test to remove no longer supported cert thumbprint authenticator x509 removed the dependency on mockito x509 re-implemented OCSP certificate revocation client used to check revocation status when logging in with x509 certificate to work around the dependency on Sun OCSP implementation; integration tests to verify OCSP revocation requests index.txt.attr is needed by openssl to run a simple OCSP server x509: minor grammar fixes Add OCSP stub responder to integration tests This commit adds OCSP stub responder needed for the integration tests, and eliminates the need to run external OCSP responder in order to run the OCSP in X509OCSPResponderTest. Replace printStackTrece with logging This commit replaces call to printStackTrace that will end up going to the stderr with logging statement of WARN severity. Remove unused imports Removed unused imports in org.keycloak.authentication.authenticators.x509 package. Parameterized Hashtable variable Removed unused CertificateFactory variable Declared serialVersionUID for Serializable class Removed unused CertificateBuilder class The CertificateBuilder was not used anywhere in the code, removing it to prevent technical debt. Removing unused variable declaration `response` variable is not used in the test, removed it. Made sure InputStreams are closed Even though the InputStreams are memory based, added try-with-resources to make sure that they are closed. Removed deprecated usage of URLEncoder Replaced invocation of deprecated method from URLEncoder with Encode from Keycloak util package. Made it more clear how to control OCSP stub responder in the tests X509 Certificate user authentication: moved the integration unit tests into their own directory to fix a failing travis test job KEYCLOAK-4335: reduced the logging level; added the instructions how to run X.509 related tests to HOW-TO-RUN.md doc; removed README.md from x509 folder; removed no longer used ocsp profile and fixed the exclusion filter; refactored the x509 base test class that was broken by the recent changes to the integration tests KEYCLOAK-4335: fixed a few issues after rebasing	2017-03-17 05:24:57 -04:00
Stian Thorgersen	a87ee04024	Bump to 3.1.0.CR1-SNAPSHOT	2017-03-16 14:21:40 +01:00
Pavel Drozd	b2d677256d	Merge pull request #3877 from mhajas/KEYCLOAK-3955 KEYCLOAK-3955 Add CORS tests to integration arquillian testsuite	2017-03-15 23:52:03 +01:00
Stian Thorgersen	feeac69197	Merge pull request #3888 from daklassen/KEYCLOAK-4421 KEYCLOAK-4421 Change any http maven urls to https to reduce build-time MITM vulnerability	2017-03-15 09:54:21 +01:00
Thomas Darimont	b782892769	KEYCLOAK-4163 Improve support for e-mail addresses Added support for user friendly email addresses as well as dedicated reply-to addresses for emails being sent by Keycloak. Both can be customized via the email settings per realm in the admin-console. User friendly email addresses use the format: "Friendly Name"<email@example.org> and provide way to add a meaning full name to an e-mail address. We also allow to specify an optional envelope from bounce address. If a mail sent to a user could not be delivered the email-provider will sent a notification to that address. See: https://en.wikipedia.org/wiki/Bounce_address Add test for proper email headers in sent messages	2017-03-14 18:22:54 +01:00
Bill Burke	6d51862057	Merge pull request #3897 from anderius/feature/KEYCLOAK-4504-redirect-logout [WIP] Saml broker: Option to specify logout request binding	2017-03-14 11:32:26 -04:00
David Klassen	32d3f760ec	KEYCLOAK-4421: Change http url to https Change any http maven urls to https to reduce build-time MITM vulnerability	2017-03-14 10:18:40 +01:00
Pedro Igor	9d1d22565c	Merge pull request #3938 from pedroigor/authz-fixes AuthZ Services Fixes	2017-03-13 15:20:41 -03:00
Pedro Igor	e7e6314146	[KEYCLOAK-4555] - Fixes and improvements to evaluation code	2017-03-13 14:08:54 -03:00
Marek Posolda	649ca36ece	Merge pull request #3945 from mposolda/master KEYCLOAK-4572 AccountTest.changeProfileNoAccess unstable	2017-03-13 15:57:43 +01:00
Pavel Drozd	253c8a342b	Merge pull request #3941 from pdrozd/KEYCLOAK-4569 KEYCLOAK-4569 SSSDTest rewrited to be usable in different enviroments	2017-03-13 15:50:06 +01:00
mposolda	aa84709087	KEYCLOAK-4572 AccountTest.changeProfileNoAccess unstable	2017-03-13 13:58:46 +01:00
Pavel Drozd	f32fc99e80	KEYCLOAK-4569 SSSDTest rewrited to be usable in different enviroments	2017-03-13 08:05:30 +01:00
Pavel Drozd	b5433720c1	KEYCLOAK-4304 Updated Kerberos tests to be able to run them on different environment	2017-03-13 08:00:41 +01:00
Pavel Drozd	282896b653	Merge pull request #3930 from vmuzikar/KEYCLOAK-4554-2 KEYCLOAK-4554 Fix WelcomePage test	2017-03-10 15:57:47 +01:00
Pavel Drozd	3884dd974a	Merge pull request #3925 from vmuzikar/KEYCLOAK-4553 KEYCLOAK-4553 Truststore not found in Arquillian tests in "other" module	2017-03-10 15:56:40 +01:00
Bill Burke	0ff4223184	Merge pull request #3922 from hmlnarik/KEYCLOAK-4288-SAML-logouts-are-not-invalidating-the-sessions-for-all-the-logged-in-applications KEYCLOAK-4288 Invalidate sessions in cluster for SAML logouts	2017-03-09 19:13:37 -05:00
Vaclav Muzikar	8b888fdf0c	KEYCLOAK-4554 Fix WelcomePage test	2017-03-09 16:41:54 +01:00
Mark Pardijs	c78c0b73d3	KEYCLOAK-4360: Add OneTimeUse condition to SAMLResponse Add OneTimeUse Condition to SAMLResponse when configured in client settings	2017-03-09 13:01:05 +01:00
Vaclav Muzikar	2175f66a30	KEYCLOAK-4553 Truststore not found in Arquillian tests in "other" module	2017-03-09 11:17:42 +01:00
Thomas Darimont	1dea38bdbb	KEYCLOAK-4205 Allow to return json arrays in Client and Realm Role Mappers Previously the ClientRoleMapper and RealmRoleMapper returned roles as a comma delimited String in OIDC tokens which needed to be parsed by client applications. We now support to generate the role information as JSON arrays by setting "multi valued" to "true" in the client role mapper or realm role mappers respectively which makes it easier for clients to consume. The default setting for "multi valued" is "false" to remain backwards compatible. An example AccessToken that shows the two modes can be found here: https://gist.github.com/thomasdarimont/dff0cd691cd6e0b5e33c2eb4c76ae5e8	2017-03-08 20:56:56 +01:00
Bill Burke	efffcc5f41	Merge pull request #3915 from TeliaSoneraNorge/KEYCLOAK-4524 KEYCLOAK-4524	2017-03-08 10:08:04 -05:00
mhajas	213ed6fa4b	KEYCLOAK-3955	2017-03-06 10:22:06 +01:00
mhajas	280689055f	KEYCLOAK-3961	2017-03-06 10:17:59 +01:00
Bill Burke	05e080624b	import after each test	2017-03-03 11:32:48 -05:00
Bill Burke	c6dc59f63e	Merge remote-tracking branch 'upstream/master'	2017-03-03 11:00:32 -05:00
Martin Hardselius	a0a85f62c6	KEYCLOAK-4524 possible to add identity prover mappers with same name into single identity provider - unique name enforcement working - test added	2017-03-03 16:40:49 +01:00
Bill Burke	3bb29e033b	KEYCLOAK-4501, KEYCLOAK-4511, KEYCLOAK-4513	2017-03-03 09:48:52 -05:00
Bartosz Majsak	beee0c1e67	Implements social login test for OpenShift	2017-03-03 14:55:40 +01:00
mposolda	69e61398a6	KEYCLOAK-4520 Enable testsuite logging when running test from IDE	2017-03-02 10:50:50 +01:00
Hynek Mlnarik	27ba4eb978	KEYCLOAK-4288 Tests for EAP6 and Wildfly	2017-03-01 15:17:39 +01:00
mposolda	091b376624	KEYCLOAK-1590 Realm import per test class	2017-03-01 09:38:44 +01:00
Anders Båtstrand	8d82390843	KEYCLOAK-4504 New configuration option for SAML Broker: * postBindingLogout: Indicates if POST or redirect should be used for the logout requests. This applies to both IdP-initiated logout, and Keycloak-initiated logout. If unset (for example when upgrading Keycloak), the setting is initially set to the same as postBindingResponse. The flag is also set when importing IdP metadata.	2017-02-28 12:08:22 +01:00
Bill Burke	0765b01189	Merge remote-tracking branch 'upstream/master'	2017-02-27 18:46:09 -05:00
Bill Burke	b4f625e1ce	KEYCLOAK-4501	2017-02-27 18:46:00 -05:00
Hynek Mlnarik	1970e03361	KEYCLOAK-4368 Enable htmlUnit for adapter tests (not examples though)	2017-02-26 16:56:26 +01:00
Stian Thorgersen	e2b1c97e26	KEYCLOAK-943 Added initial implementation for update profile	2017-02-24 13:19:29 +01:00
Pavel Drozd	089bde3571	Merge pull request #3852 from tkyjovsk/user-storage-tests UserStorageTest migrated to Arquillian testsuite	2017-02-22 16:09:57 +01:00
Tomas Kyjovsky	a5677e87db	UserStorageTest migrated to Arquillian testsuite	2017-02-22 13:54:11 +01:00
vramik	4fbb8ed994	KEYCLOAK-4262 make AbstractSamlTest class abstract	2017-02-22 10:20:34 +01:00
mposolda	f6bc0806d5	KEYCLOAK-4368 Switch default WebDriver impl to htmlUnit	2017-02-20 21:52:15 +01:00
Pavel Drozd	ec32acec27	Merge pull request #3872 from mhajas/KEYCLOAK-4179 KEYCLOAK-4179	2017-02-20 15:44:29 +01:00
Pavel Drozd	152b4f13e7	Merge pull request #3871 from mhajas/KEYCLOAK-4626 KEYCLOAK-4626 KEYCLOAK-4261 KEYCLOAK-4181 KEYCLOAK-4160 Add tests for SAML issues	2017-02-20 15:43:38 +01:00
Pavel Drozd	284ef5992d	Merge pull request #3868 from zschwarz/12-16-failing-ssl-tests-z KEYCLOAK-4084 Fix ssl adapter tests	2017-02-20 15:42:19 +01:00
Stian Thorgersen	3653d7ed9a	Merge pull request #3762 from sldab/hide-providers KEYCLOAK-4224 Allow hiding identity providers on login page	2017-02-17 12:04:35 +01:00
Pavel Drozd	6af06348bd	Merge pull request #3806 from hmlnarik/KEYCLOAK-4191-OIDCProtocolMappersTest-sometimes-fails-on-mariadb KEYCLOAK-4191 Fix for OIDCProtocolMappersTest on mariadb	2017-02-16 13:36:25 +01:00
mhajas	5bce87d6e7	KEYCLOAK-4179	2017-02-16 10:50:10 +01:00
Stian Thorgersen	7db6d51a39	Merge pull request #3870 from stianst/MONGO-REMOVAL KEYCLOAK-4384 Remove Mongo support	2017-02-16 10:50:04 +01:00
mhajas	b1510c43ff	KEYCLOAK-4160	2017-02-16 08:09:11 +01:00
mhajas	44c81910bf	KEYCLOAK-4181	2017-02-16 08:04:42 +01:00
mhajas	27e390965e	KEYCLOAK-4261	2017-02-16 08:04:23 +01:00
mhajas	119435ac76	KEYCLOAK-4262 Test for rejected consent	2017-02-16 08:04:06 +01:00
Stian Thorgersen	49ac3587b6	KEYCLOAK-4384 Remove Mongo support	2017-02-15 15:20:58 +01:00
mhajas	f2a4fd029d	KEYCLOAK-4084 Fix ssl adapter tests	2017-02-15 09:35:15 +01:00
mhajas	91bcc24977	KEYCLOAK-4329 Add test for empty KeyInfo	2017-02-14 12:36:17 +01:00
Stian Thorgersen	d72b67c460	Merge pull request #3857 from anderius/feature/KEYCLOAK-4392-component-id KEYCLOAK-4392 Copy component id from representation to model	2017-02-14 09:43:38 +01:00
Anders Båtstrand	3af9f2f989	KEYCLOAK-4392 Copy component id from representation to model	2017-02-13 13:03:57 +01:00
Pavel Drozd	8668eff1b6	Merge pull request #3856 from mhajas/KEYCLOAK-3987 KEYCLOAK-3987 Add test for grant role from token	2017-02-13 10:43:32 +01:00
Pavel Drozd	3cec57da6a	Merge pull request #3827 from mhajas/KEYCLOAK-4346 KEYCLOAK-4346 Validation tests are failing because of ban on server w…	2017-02-13 10:42:08 +01:00
Pavel Drozd	6602123b55	Merge pull request #3824 from mhajas/KEYCLOAK-4020 KEYCLOAK-4020 add test for boolean attribute	2017-02-13 10:41:04 +01:00
Pavel Drozd	beb96b7f01	Merge pull request #3810 from vramik/KEYCLOAK-4337 KEYCLOAK-4337 Few fixes for testsuite	2017-02-13 10:38:31 +01:00
Pavel Drozd	4ede1174b7	Merge pull request #3805 from mhajas/KEYCLOAK-3841 KEYCLOAK-3841 Fix tests on windows	2017-02-13 10:37:32 +01:00
mhajas	00932f4eb3	KEYCLOAK-3987 Add test for grant role from token	2017-02-10 10:27:38 +01:00
mhajas	7d203ed448	KEYCLOAK-4346 Validation tests are failing because of ban on server which provides some imports to SAML xsd	2017-02-09 14:15:45 +01:00
Stian Thorgersen	8e16e5d953	Merge pull request #3839 from stianst/SOCIAL_LOGIN_TEST KEYCLOAK-4265 Social login tests	2017-02-09 10:15:17 +01:00
Stian Thorgersen	44180a68e6	Merge pull request #3845 from frelibert/KEYCLOAK-4378 KEYCLOAK-4378 New user attribute is not added after first login from …	2017-02-09 10:02:09 +01:00
Frederik Libert	f3a552ac9d	KEYCLOAK-4378 New user attribute is not added after first login from broker	2017-02-07 15:37:16 +01:00
Stian Thorgersen	5b5dc3e442	KEYCLOAK-4265 Social login tests	2017-02-06 13:50:10 +01:00
mposolda	8a16ab52a9	KEYCLOAK-4371 Offline Tokens still useless When SSO Session Max is Reached and normal userSession expired	2017-02-03 11:55:58 +01:00
Takashi Norimatsu	6bab704bba	KEYCLOAK-2604 Proof Key for Code Exchange by OAuth Public Clients - RFC 7636 - Arquillian Test Cases	2017-02-03 14:41:36 +09:00
mhajas	ddf9301ceb	KEYCLOAK-4020 add test for boolean attribute	2017-02-02 09:47:52 +01:00
vramik	7abe140621	resolve 'There is no context available for qualifier' message	2017-02-02 09:20:03 +01:00
Bill Burke	1d04d56bdb	Merge pull request #3816 from patriot1burke/master KEYCLOAK-4218	2017-02-01 08:55:10 -05:00
mposolda	f92dd6bd16	KEYCLOAK-4339 MigrationTest fails to run	2017-01-31 16:00:16 +01:00
vramik	aec59a7e91	refactor asserts in ExportImportTest to be more verbose	2017-01-31 13:24:06 +01:00
vramik	9a16805f17	assumeCommunity for AccountPageTest.testLocalizedReferrerLinkContent	2017-01-31 13:22:16 +01:00
mposolda	acf2e30c2f	Fix MigrationTest	2017-01-30 22:23:19 +01:00
mposolda	5c5b7a33d3	KEYCLOAK-4169 Add initial testsuite how-to	2017-01-30 22:23:08 +01:00
Hynek Mlnarik	4d362fe9ca	KEYCLOAK-4191 Fix for OIDCProtocolMappersTest on mariadb	2017-01-30 10:52:17 +01:00
Bill Burke	bb77ab4a81	account link tests	2017-01-27 17:37:08 -05:00
mhajas	1a073629ec	KEYCLOAK-3841	2017-01-27 14:43:46 +01:00
mposolda	265522a2e3	KEYCLOAK-4285 Adapter tests for examples fail in Wildfly/EAP6	2017-01-27 14:26:21 +01:00
Stian Thorgersen	5fd3eb2990	KEYCLOAK-3729 Ability to run tests within Keycloak server	2017-01-27 12:14:19 +01:00
Marek Posolda	1674bf1643	Merge pull request #3799 from mposolda/master KEYCLOAK-4271 Migration test for offline tokens	2017-01-26 18:50:30 +01:00
mposolda	42ad8aec64	KEYCLOAK-4271 Migration test for offline tokens	2017-01-26 17:19:03 +01:00
Marek Posolda	835d4c0aad	Merge pull request #3798 from mposolda/master KEYCLOAK-2813 Remove LegacyImportTest as the legacy JSON export/impor…	2017-01-26 12:13:51 +01:00
mposolda	a8e2c8ef31	KEYCLOAK-2813 Remove LegacyImportTest as the legacy JSON export/import tested with MigrationTest	2017-01-26 09:48:29 +01:00
Stian Thorgersen	6f22f88d85	Bump version to 3.0.0.CR1	2017-01-26 06:18:11 +01:00
Stian Thorgersen	7cfa1cc368	Merge pull request #3792 from hmlnarik/KEYCLOAK-4281-Some-adapter-tests-fail-for-Wildfly KEYCLOAK-4281 Fix tests for SAML adapters in Arquillian TS	2017-01-25 12:29:17 +01:00
Hynek Mlnarik	e329c7801d	KEYCLOAK-4281 Fix tests for SAML adapters in Arquillian TS	2017-01-24 22:36:03 +01:00
mposolda	2de2df3a41	KEYCLOAK-4282 Fix authorization import in DirImportProvider	2017-01-24 21:57:35 +01:00
Stian Thorgersen	94ffeda62a	Merge pull request #3773 from hmlnarik/KEYCLOAK-4181-SAML-Response-without-any-assertion-leads-to-an-exception KEYCLOAK-4181 Fix handling of SAML error code in broker	2017-01-24 10:33:05 +01:00
mposolda	e487db349c	KEYCLOAK-4274 Fix recursive composite role mappings	2017-01-23 17:55:45 +01:00
Stian Thorgersen	15d0a116ac	Merge pull request #3769 from hmlnarik/KEYCLOAK-4167-Unable-to-validate-access-token-for-OIDC-External-IDP-using-configured-public-key KEYCLOAK-4167 Always use preset key for verification if key ID not set	2017-01-23 13:59:35 +01:00
Stian Thorgersen	052534de82	Merge pull request #3764 from vramik/KEYCLOAK-4098 KEYCLOAK-4098 simplify + fix migration test	2017-01-23 13:04:32 +01:00
Stian Thorgersen	7410bdb31c	Merge pull request #3756 from mstruk/KEYCLOAK-3657 KEYCLOAK-3657 Role id is not preserved during import-export operation	2017-01-23 09:59:02 +01:00
Hynek Mlnarik	5da491c270	KEYCLOAK-4181 Fix handling of SAML error code in broker	2017-01-19 16:30:06 +01:00
Stian Thorgersen	536b88790e	Merge pull request #3757 from mstruk/KEYCLOAK-4150 KEYCLOAK-4150 Unresolved variable ${cliane_security-admin-console} in admin web client	2017-01-19 13:55:36 +01:00
Vlasta Ramik	aef6bb9789	simplify + fix migration test	2017-01-19 12:35:59 +01:00
Pedro Igor	c7f2a0ffdd	Merge pull request #3766 from pedroigor/KEYCLOAK-4203 [KEYCLOAK-4203] - Removing references to Drools	2017-01-18 13:31:23 -02:00
Pedro Igor	c19360c6f2	[KEYCLOAK-4203] - Removing references to Drools	2017-01-18 12:44:30 -02:00
Hynek Mlnarik	df4f1e7129	KEYCLOAK-4167 Always use preset key for verification if key ID not set	2017-01-18 10:29:06 +01:00
Stian Thorgersen	212182ee34	Merge pull request #3765 from zschwarz/community KEYCLOAK-4233 Run failing i18n tests with community profile	2017-01-18 08:52:17 +01:00
Stian Thorgersen	e364680792	Merge pull request #3721 from hmlnarik/KEYCLOAK-3399-End-session-endpoint-returns-error-when-keycloak-session-is-expired KEYCLOAK-3399 Ignore user session expiration on OIDC logout	2017-01-18 08:38:53 +01:00
Slawomir Dabek	9bb65ba9b7	KEYCLOAK-4224 Allow hiding identity providers on login page	2017-01-17 14:32:59 +01:00
zschwarz	ae40bfb96e	KEYCLOAK-4233 Run failing i18n tests with community profile	2017-01-16 15:27:39 +01:00
Vaclav Muzikar	547f5ecfa6	KEYCLOAK-4230 Fix failing Arquillian tests in the "other" module	2017-01-16 10:59:02 +01:00
Stian Thorgersen	1913f801b9	Merge pull request #3739 from hmlnarik/KEYCLOAK-2847-Unexpected-error-when-trying-to-update-clientTemplate-to-already-existing-name KEYCLOAK-2847 Fix for client template duplicate name	2017-01-16 09:45:39 +01:00
Marko Strukelj	d68f6bbc42	KEYCLOAK-4150 Unresolved variable ${cliane_security-admin-console} in admin web client	2017-01-13 17:48:21 +01:00
Marko Strukelj	7de999a7f9	KEYCLOAK-3657 Role id is not preserved during import-export operation	2017-01-13 17:46:30 +01:00
Pavel Drozd	2f7143e72f	Merge pull request #3749 from pdrozd/KEYCLOAK-4210 KEYCLOAK-4210: Added Fuse admin tests	2017-01-13 11:37:24 +01:00
Hynek Mlnarik	0b58bebc90	KEYCLOAK-2847 Fix for client template duplicate name	2017-01-13 09:32:28 +01:00
mposolda	93157e49d5	KEYCLOAK-4201 Offline tokens become useless when accessing admin REST API	2017-01-13 09:06:53 +01:00
Pavel Drozd	3d9f11168e	KEYCLOAK-4210: Added Fuse admin tests	2017-01-13 01:05:37 +01:00
Bill Burke	1e51ade620	Merge remote-tracking branch 'upstream/master'	2017-01-12 09:34:36 -05:00
Bill Burke	89e6f93fa4	KEYCLOAK-4099	2017-01-12 09:34:26 -05:00
Bill Burke	41630d6962	Merge pull request #3727 from hmlnarik/KEYCLOAK-4141 KEYCLOAK-4141	2017-01-12 08:49:29 -05:00
Hynek Mlnarik	e11957ecf3	KEYCLOAK-4167 Make OIDC identity provider key ID configurable	2017-01-11 18:24:22 +01:00
Marek Posolda	227900f288	Merge pull request #3731 from mposolda/master KEYCLOAK-4175 Provide a way to set the connect and read timeout for l…	2017-01-10 09:49:18 +01:00
Hynek Mlnarik	4df70c517d	KEYCLOAK-4141	2017-01-10 09:02:36 +01:00
Pavel Drozd	cbd6f7e1d0	Merge pull request #3723 from mhajas/KEYCLOAK-3841 KEYCLOAK-3841 Unignore and fix fuse on eap test	2017-01-10 08:10:22 +01:00
mposolda	c32620b718	KEYCLOAK-4175 Provide a way to set the connect and read timeout for ldap connections	2017-01-09 21:35:58 +01:00
mposolda	14669dfbc5	KEYCLOAK-4178 Bad error message when kerberos provider unavailable	2017-01-09 16:56:58 +01:00
mposolda	a09bc6520f	KEYCLOAK-2888 KEYCLOAK-3927 Fully migrate kerberos tests to the new testsuite	2017-01-09 13:50:41 +01:00
Pavel Drozd	fb374ad99d	Merge pull request #3716 from mhajas/KEYCLOAK-3704 KEYCLOAK-3704 Add missing test	2017-01-08 16:09:12 +01:00
Pavel Drozd	a4f46d3310	Merge pull request #3714 from vramik/KEYCLOAK-4109 KEYCLOAK-4109 test + minor fix	2017-01-08 16:07:34 +01:00
Stian Thorgersen	f1dbe3c9e2	Merge pull request #3722 from stianst/KEYCLOAK-4096 KEYCLOAK-4096 Add migration test for realm keys	2017-01-06 16:08:10 +01:00
Hynek Mlnarik	9fb3201c8b	KEYCLOAK-3399 Ignore user session expiration on OIDC logout	2017-01-06 15:15:46 +01:00
mhajas	86c49f5e89	KEYCLOAK-3841 Unignore and fix fuse on eap test	2017-01-06 14:39:24 +01:00
Stian Thorgersen	60eda52aba	KEYCLOAK-4096 Add migration test for realm keys	2017-01-06 14:18:57 +01:00
mhajas	61e7936d79	KEYCLOAK-3704 Add missing test	2017-01-05 16:55:40 +01:00
Vlasta Ramik	b0644ce18c	test for KEYCLOAK-4109 + fix AuthorizationDisabledInPreviewTest	2017-01-05 11:14:41 +01:00
Pavel Drozd	f9e87516ae	Merge pull request #3709 from mhajas/KEYCLOAK-3658 KEYCLOAK-3658 Add missing test	2017-01-05 11:02:44 +01:00
Pavel Drozd	77293b85e0	Merge pull request #3701 from vramik/KEYCLOAK-4145 KEYCLOAK-4145 fix PartialImportTest for migration tests	2017-01-05 10:58:51 +01:00
Pedro Igor	ed75ef900a	[KEYCLOAK-3517] - Removing SAML ECP from expected flows. ECP already tested in other places.	2017-01-04 13:06:08 -02:00
mhajas	180352aa09	KEYCLOAK-3658 Add missing test	2017-01-04 09:00:36 +01:00
Stian Thorgersen	732d56b0c0	Merge pull request #3706 from hmlnarik/KEYCLOAK-4148-StaxParserUtil-should-instantiate-XMLInputFactory-only-once KEYCLOAK-4148 Instantiate XMLInputFactory in singleton-like manner	2017-01-04 07:22:17 +01:00
Stian Thorgersen	08aeb13804	Merge pull request #3705 from hmlnarik/KEYCLOAK-3950-Tests-of-SAML-AuthnRequests-NameID-format-variants KEYCLOAK-3950 - Tests for SAML Name ID format variants in AuthnRequest	2017-01-04 07:15:33 +01:00
Stian Thorgersen	1f0469894a	Merge pull request #3702 from mstruk/admin-cli KEYCLOAK-4146 Admin CLI enhancements	2017-01-04 07:13:09 +01:00
Stian Thorgersen	8a0859fcba	Merge pull request #3700 from stianst/KEYCLOAK-2980 KEYCLOAK-2980 Fix admin query for resource path	2017-01-04 07:01:19 +01:00
Hynek Mlnarik	1eb0cde74f	KEYCLOAK-4148 Instantiate XMLInputFactory in singleton-like manner	2017-01-03 15:34:28 +01:00
Hynek Mlnarik	32f8fd4b9f	KEYCLOAK-3950 - Tests for SAML Name ID format variants in AuthnRequest	2017-01-03 15:34:28 +01:00
Hynek Mlnarik	40a8f0a243	KEYCLOAK-3950 - Tests for SAML Name ID format variants in AuthnRequest	2017-01-03 12:48:18 +01:00
Stian Thorgersen	f2ee9df600	KEYCLOAK-4116 Trim username on recover password page	2017-01-03 11:50:08 +01:00
Marko Strukelj	9ab44b79ce	KEYCLOAK-4146 Admin CLI enhancements - Added -b, --body and composite roles support - Added a test that performs a demo session	2017-01-03 11:14:12 +01:00
Vlasta Ramik	50c11e105b	fix PartialImportTest for migration tests	2017-01-03 10:36:22 +01:00
Stian Thorgersen	b7c98ed433	KEYCLOAK-2980 Fix admin query for resource path	2017-01-03 10:34:21 +01:00
Stian Thorgersen	171c6ab88f	Merge pull request #3697 from stianst/master Cleanup of tests including groups for Travis	2017-01-03 08:41:00 +01:00
Stian Thorgersen	e0bfb13ed9	Cleanup of tests including groups for Travis	2017-01-03 07:52:00 +01:00
Stian Thorgersen	1c0e204f50	Merge pull request #3690 from stianst/master Bump version to 2.5.1.Final-SNAPSHOT	2017-01-02 08:52:04 +01:00
Marek Posolda	b1d9fd670a	Merge pull request #3691 from vramik/migration-duplicate-emails KEYCLOAK-4059 Added migration test	2016-12-22 12:42:16 +01:00
Stian Thorgersen	e805ffd945	Bump version to 2.5.1.Final-SNAPSHOT	2016-12-22 08:22:18 +01:00
Stian Thorgersen	04179c5681	Merge branch 'KEYCLOAK-4004' of https://github.com/l-robinson/keycloak into l-robinson-KEYCLOAK-4004	2016-12-22 06:13:41 +01:00
Vlasta Ramik	bb00524f94	Added migration for KEYCLOAK-4059	2016-12-21 15:39:48 +01:00
Vlasta Ramik	7f9e6bbf60	KEYCLOAK-3830 added missing test	2016-12-21 14:45:30 +01:00
Stian Thorgersen	f97a3e0745	Merge pull request #3678 from vramik/KEYCLOAK-3777 KEYCLOAK-3777 added missing test	2016-12-20 14:04:35 +01:00
Stian Thorgersen	d365d9d784	Merge pull request #3649 from sldab/bearer-client-credentials KEYCLOAK-4086 Client credentials missing in bearer-only JSON config	2016-12-20 12:32:03 +01:00
Vlasta Ramik	55d53214a1	KEYCLOAK-3777 added missing test	2016-12-20 11:50:37 +01:00
Stian Thorgersen	f6323d94ec	Merge pull request #3676 from stianst/KEYCLOAK-4109 KEYCLOAK-4109 Ability to disable impersonation	2016-12-20 09:35:03 +01:00
Stian Thorgersen	eb7ad07e31	KEYCLOAK-4109 Ability to disable impersonation	2016-12-20 08:46:21 +01:00
Pedro Igor	0b3e867362	[KEYCLOAK-4034] - Minor changes to policy enforcer	2016-12-19 23:44:51 -02:00
l-robinson	01a8c13ac0	Additional client name added to AccountTest.applications()	2016-12-20 09:40:19 +10:30
Pedro Igor	40591cff25	Merge pull request #3662 from pedroigor/KEYCLOAK-4034 [KEYCLOAK-4034] - Improvements to UI, performance and some code cleanup	2016-12-19 16:49:10 -02:00
Slawomir Dabek	16fb1e2078	KEYCLOAK-4086 Client credentials missing in bearer-only Keycloak OIDC JSON	2016-12-19 16:55:19 +01:00
Stian Thorgersen	faeff029fa	Merge pull request #3664 from mstruk/admin-cli KEYCLOAK-912 Admin CLI	2016-12-19 15:46:17 +01:00
Marek Posolda	c6363aa146	Merge pull request #3630 from sldab/duplicate-email-support KEYCLOAK-4059 Support for duplicate emails	2016-12-19 15:37:18 +01:00
Pedro Igor	c9c9f05e29	[KEYCLOAK-4034] - Improvements to UI, performance and some code cleanup	2016-12-19 11:22:37 -02:00
Stian Thorgersen	3bd3d0285d	Merge branch 'duplicate-groups' of https://github.com/ssilvert/keycloak into ssilvert-duplicate-groups	2016-12-19 13:07:39 +01:00
Stian Thorgersen	b8adfcad87	Merge pull request #3658 from hmlnarik/KEYCLOAK-4095--Not-Recently-Used-Password-Policy-with-value-set-to-1-doesn-t-work KEYCLOAK-4095 Fix for expiring passwords	2016-12-19 12:15:26 +01:00
Slawomir Dabek	93cec9b3ee	KEYCLOAK-4059 Support for duplicate emails	2016-12-19 10:55:12 +01:00
Stian Thorgersen	f29bb7d501	KEYCLOAK-4092 key provider for HMAC signatures	2016-12-19 10:50:43 +01:00
Marko Strukelj	c3d9859c6e	KEYCLOAK-912 Admin CLI	2016-12-19 01:05:03 +01:00
Hynek Mlnarik	787a3f8fcc	KEYCLOAK-4095 Fix for expiring passwords	2016-12-16 14:45:05 +01:00
Hynek Mlnarik	5453bec1bf	KEYCLOAK-4079, KEYCLOAK-4080 Fix for single-valued claims	2016-12-16 10:00:36 +01:00
Pavel Drozd	5464655bc2	Merge pull request #3641 from tkyjovsk/KEYCLOAK-4060 KEYCLOAK-4060 Arquillian test deployments have redundant jboss module dependencies	2016-12-14 15:10:17 +01:00
Pavel Drozd	768c3eb9a7	Merge pull request #3636 from vramik/KEYCLOAK-3042 KEYCLOAK-3042 added missing test	2016-12-14 15:09:34 +01:00
Stian Thorgersen	97a08a1d99	Merge pull request #3644 from stianst/KEYCLOAK-4071 KEYCLOAK-4071	2016-12-14 09:55:55 +01:00
Stian Thorgersen	480d4e6f4f	KEYCLOAK-4071	2016-12-14 07:01:54 +01:00
Tomas Kyjovsky	b1fe07ac3d	KEYCLOAK-4060 removed redundant jboss module dependencies from test deployments	2016-12-13 16:21:45 +01:00
Hynek Mlnarik	642de06fb5	KEYCLOAK-4040 Support a letter-case variant of md:OrganizationURL	2016-12-13 16:07:11 +01:00
Pavel Drozd	76385157fc	Merge pull request #3634 from tkyjovsk/KEYCLOAK-4061 KEYCLOAK-4061 Testsuite URLProvider not working right on remote EAP6/AS7 app server	2016-12-13 14:05:05 +01:00
Hynek Mlnarik	5006fe2292	KEYCLOAK-4062 - GUI changes for KeyName format + few tests	2016-12-12 22:29:01 +01:00
Vlasta Ramik	63ddabe5fb	KEYCLOAK-3042 added missing test	2016-12-12 10:47:40 +01:00
Bill Burke	5996149a8d	KEYCLOAK-3506	2016-12-10 17:01:08 -05:00
Bill Burke	62029e8a33	KEYCLOAK-3506	2016-12-10 11:59:29 -05:00
Tomas Kyjovsky	cf62715499	KEYCLOAK-4061 fixed testsuite URLProvider for AS7/EAP6 app server (managed and remote mode)	2016-12-09 17:41:07 +01:00
Bill Burke	1bfdff0e25	Merge pull request #3614 from vramik/KEYCLOAK-4031 KEYCLOAK-4031 fix testBasicMappingMultipleValues	2016-12-09 09:10:03 -05:00
Bill Burke	ba14b9d942	Merge pull request #3626 from mhajas/KEYCLOAK-4044 KEYCLOAK-4044 Fix failing adapter tests	2016-12-09 09:09:41 -05:00
Bill Burke	1f0600044a	KEYCLOAK-3967	2016-12-08 19:29:02 -05:00
Bill Burke	d3e3990d77	Merge pull request #3629 from patriot1burke/master KEYCLOAK-2806	2016-12-08 17:36:28 -05:00
Bill Burke	4a80f1e913	Merge remote-tracking branch 'upstream/master'	2016-12-08 17:05:46 -05:00
Bill Burke	5f07fa8057	KEYCLOAK-2806	2016-12-08 16:28:22 -05:00
mhajas	ae36b3c832	KEYCLOAK-4044 Fix failing adapter tests	2016-12-08 09:52:20 +01:00
mhajas	e0c62e25b2	KEYCLOAK-3339 Fix authorization tests on EAP6 + JDK7	2016-12-08 09:50:14 +01:00
Bill Burke	31d2cde6e5	Merge pull request #3615 from abstractj/KEYCLOAK-3560 [KEYCLOAK-3560]: Unable to import exported users which contain terms_and_conditions required action	2016-12-06 22:07:58 -05:00
Bill Burke	75e2b404c8	Merge pull request #3618 from abstractj/KEYCLOAK-3685 [KEYCLOAK-3685]: Username not updated when "Email as username" is enabled	2016-12-06 22:06:55 -05:00
Bill Burke	68c8bfa0e1	KEYCLOAK-2705	2016-12-06 17:32:41 -05:00
Bruno Oliveira	ddb201db6c	[KEYCLOAK-3685]: Username not updated when "Email as username" is enabled	2016-12-06 19:46:31 -02:00
Bruno Oliveira	15f23eb045	[KEYCLOAK-3560]: Unable to import exported users which contain terms_and_conditions required action	2016-12-06 15:29:56 -02:00
Vlasta Ramik	0d110ceb30	KEYCLOAK-4031 fix testBasicMappingMultipleValues	2016-12-06 14:11:24 +01:00
Hynek Mlnarik	41a5598103	KEYCLOAK-3655 Tests for adding duplicate auth flow	2016-12-06 08:52:38 +01:00
Hynek Mlnarik	3c4114091f	KEYCLOAK-4035 Composite roles need to be expanded in SAML attribute mapper	2016-12-05 16:16:08 +01:00
Vlasta Ramik	773c88cc04	KEYCLOAK-4027 Make AbstractTests really abstract in testsuite	2016-12-05 12:03:05 +01:00
l-robinson	1c66ce7dd7	Additional test case added to check the text in the 'Back to application' link	2016-12-05 12:13:30 +10:30
Bill Burke	d7df86d6d0	Merge pull request #3526 from mhajas/KEYCLOAK-3017 KEYCLOAK-3017 Location header not present in responses from admin endpoints test	2016-12-03 13:47:15 -05:00
Bill Burke	305dcb2b1e	Merge pull request #3552 from hmlnarik/KEYCLOAK-3439-database-encoding KEYCLOAK-3439, KEYCLOAK-3893, KEYCLOAK-3894 - Support for Unicode	2016-12-03 13:44:10 -05:00
Bill Burke	3840aed5f7	Merge pull request #3594 from hmlnarik/KEYCLOAK-3971-SAML-Authentication-signature-verification-exception-when-user-name-contains-european-special-characters KEYCLOAK-3971 Tests for Unicode (ext Latin) usernames in SAML	2016-12-03 13:35:11 -05:00
Hynek Mlnarik	a09e78873e	KEYCLOAK-3971 Tests for Unicode (ext Latin) usernames in SAML	2016-12-02 21:19:32 +01:00
mposolda	17d8394ab6	KEYCLOAK-3340 Service Account user not renamed when renaming client-id	2016-12-02 18:13:29 +01:00
mposolda	cccb532a21	KEYCLOAK-3701 NullPointerException when trying to get access token from offline token	2016-12-02 16:35:21 +01:00
Stian Thorgersen	739178d840	Merge pull request #3583 from stianst/KEYCLOAK-3733 KEYCLOAK-3733 Added tests for max results in paginated endpoints	2016-12-02 14:02:35 +01:00
Stian Thorgersen	695aa7bec9	KEYCLOAK-3733 Added tests for max results in paginated endpoints	2016-12-02 08:25:46 +01:00
Stian Thorgersen	209f8155d1	KEYCLOAK-3835 Remove redirect on flow and return not modified if page is refreshed	2016-12-02 06:29:59 +01:00
Manuel Palacio	bfec073457	KEYCLOAK-3648	2016-12-01 19:34:33 +01:00
Hynek Mlnarik	46d3555798	KEYCLOAK-3439, KEYCLOAK-3893, KEYCLOAK-3894 - Support for Unicode Treatment of Unicode characters varies among databases. This change adds support for Unicode characters in the following fields: * Realms: display name, HTML display name * Users: username, given name, last name, attribute values * Groups: name, attribute values * Components: attribute values * Roles: name * Descriptions of objects Unicode support for the rest of the fields depends on database vendor and is described in the installation guide in more detail.	2016-12-01 17:23:58 +01:00
mposolda	74967737ee	KEYCLOAK-3824 Ensure sending notBefore invalidates JWKPublicKeyLocator	2016-12-01 17:07:50 +01:00
mhajas	a347cb591d	KEYCLOAK-3017 Location header not present in responses from admin endpoints	2016-12-01 15:33:53 +01:00
mposolda	a38544796f	KEYCLOAK-3823 KEYCLOAK-3824 Added public-key-cache-ttl for OIDC adapters. Invalidate cache when notBefore sent	2016-12-01 12:25:07 +01:00
Stian Thorgersen	b771b84f56	Bump to 2.5.0.Final-SNAPSHOT	2016-11-30 15:44:51 +01:00
mposolda	d0a96d463d	KEYCLOAK-3831 Improve AddressMapper configurability. Support for 'formatted' subclaim	2016-11-30 13:04:45 +01:00
mposolda	803fde6c1d	KEYCLOAK-3124 Possibility test adapter on embedded undertow	2016-11-29 22:08:23 +01:00
Pavel Drozd	c1d93e251d	Merge pull request #3542 from mhajas/KEYCLOAK-1881 KEYCLOAK-1881 Fix SAML Filter key rotation tests	2016-11-29 16:40:59 +01:00
Pavel Drozd	8f3256675a	Merge pull request #3534 from tkyjovsk/KEYCLOAK-3683 KEYCLOAK-3683 Updated OIDC adapter test for secure-deployments	2016-11-29 16:40:24 +01:00
Pavel Drozd	833c56e17b	Merge pull request #3508 from mhajas/KEYCLOAK-3653 KEYCLOAK-3653 Tests for cert endpoint	2016-11-29 16:37:44 +01:00
Pavel Drozd	9bb59c0f94	Merge pull request #3496 from tkyjovsk/performance-tests Updated performance tests. Added app-profile-jee test application from qs.	2016-11-29 16:37:17 +01:00
Marek Posolda	80c4b2aa31	Merge pull request #3556 from mposolda/master KEYCLOAK-3822 Changing signature validation settings of an external I…	2016-11-28 22:37:44 +01:00
Bill Burke	63458a7de7	Merge pull request #3559 from patriot1burke/master KEYCLOAK-3980	2016-11-28 13:36:52 -05:00
Bill Burke	1dacddb7e3	KEYCLOAK-3980	2016-11-28 12:20:40 -05:00
mposolda	69ce1e05f0	KEYCLOAK-3822 Changing signature validation settings of an external IdP is not sometimes reflected	2016-11-28 15:27:25 +01:00
Hynek Mlnarik	65b269cd54	KEYCLOAK-3731 Provide functionality for IdP-initiated SSO for broker A SAML brokered IdP can send unsolicited login response to the broker. This commit adds a new GET/POST endpoint under [broker SAML endpoint]/clients/{client_id}. Broken will respond to submission to this new endpoint by looking up a SAML client with URL name equal to client_id, and if found, it performs IdP-initiated SSO to that client.	2016-11-28 13:54:04 +01:00
mposolda	7c6032cc84	KEYCLOAK-3825 Ability to expire publicKeys cache. Migrated OIDCBrokerWithSignatureTest to new testsuite	2016-11-25 17:45:37 +01:00
Marek Posolda	0262b64062	Merge pull request #3544 from hmlnarik/KEYCLOAK-3648-test KEYCLOAK-3648 - Tests for UserAttributeMapper broker mapper	2016-11-24 13:31:17 +01:00
Hynek Mlnarik	bd920b8ba9	KEYCLOAK-3648 - Tests for UserAttributeMapper broker mapper	2016-11-24 07:50:22 +01:00
Bill Burke	ccbd8e8c70	remove User Fed SPI	2016-11-23 16:06:44 -05:00
Tomas Kyjovsky	aae368f1e7	Added parameter check to WaitUtils.pause()	2016-11-23 15:52:41 +01:00
Bill Burke	fad33bc50f	Merge remote-tracking branch 'upstream/master'	2016-11-23 08:31:28 -05:00
Bill Burke	d5925b8ccf	remove realm UserFed SPI methods	2016-11-23 08:31:20 -05:00
mhajas	5e97a46afc	KEYCLOAK-1881 Fix SAML Filter key rotation tests	2016-11-23 10:53:13 +01:00
Marek Posolda	8ee2134e05	Merge pull request #3537 from hmlnarik/KEYCLOAK-3035 KEYCLOAK-3035 - Fix intermittent failures and refactor broker test	2016-11-23 10:48:38 +01:00
Bill Burke	2da9986717	Merge pull request #3540 from mhajas/KEYCLOAK-3671 KEYCLOAK-3671	2016-11-22 14:48:59 -05:00
Bill Burke	045d6ef1d0	Merge remote-tracking branch 'upstream/master'	2016-11-22 11:28:09 -05:00
mhajas	b2d48c86a6	KEYCLOAK-3671	2016-11-22 16:32:39 +01:00
Stian Thorgersen	6ec82865d3	Bump version to 2.4.1.Final-SNAPSHOT	2016-11-22 14:56:21 +01:00
Hynek Mlnarik	dab2225a39	KEYCLOAK-3035 - Fix intermittent failures and refactor broker test	2016-11-22 14:51:44 +01:00
Tomas Kyjovsky	d44f347b08	Added 2nd secure-deployment, added option to test with separate realm configuration in keycloak subsystem. Moved jboss-specific test to a separate class.	2016-11-22 11:43:26 +01:00
Bill Burke	a3cb3730b4	sssd port	2016-11-21 17:24:55 -05:00
Bill Burke	798fd84698	Merge remote-tracking branch 'upstream/master'	2016-11-21 11:33:52 -05:00
Bill Burke	19575b2c8f	port kerberos	2016-11-21 11:33:44 -05:00
Hynek Mlnarik	8f31425daf	KEYCLOAK-3469 Fix in the account test	2016-11-21 16:00:36 +01:00
mposolda	76bfbad2c4	KEYCLOAK-3895 Make UserSessionProvider and UserSessionPersisterProvider to rely on UserRemovedEvent callbacks	2016-11-18 15:58:33 +01:00
Stian Thorgersen	7043ecc21b	KEYCLOAK-3881 Fix login status iframe with * origin	2016-11-18 12:50:52 +01:00
Marek Posolda	3e71aeddf3	Merge pull request #3479 from hmlnarik/KEYCLOAK-3469-UserRealmRoleMapper KEYCLOAK-3469 Make role mappers account for user groups	2016-11-18 09:21:56 +01:00
Marek Posolda	a2e00e4c3b	Merge pull request #3497 from vramik/KEYCLOAK-3899 KEYCLOAK-3899 Make migration properties available in tests	2016-11-18 09:12:10 +01:00
Marek Posolda	2c6e9be8e5	Merge pull request #3504 from vramik/KEYCLOAK-3907 KEYCLOAK-3907 Test backwards compatibility of realm import	2016-11-18 09:10:59 +01:00
Marek Posolda	b434c2b9cf	Merge pull request #3510 from ssilvert/delete-subflows KEYCLOAK-3681: Delete top flow doesn't remove all subflows	2016-11-18 08:50:13 +01:00
Stan Silvert	a0ae8c126e	Add comment to test	2016-11-16 12:45:34 -05:00
Stan Silvert	55556fc63c	KEYCLOAK-3681: Delete top flow doesn't remove all subflows	2016-11-16 12:43:11 -05:00
mhajas	8fc5b00d91	KEYCLOAK-3653 Tests for cert endpoint	2016-11-16 15:31:48 +01:00
Vlasta Ramik	50339f6f0e	Test backwards compatibility of realm import	2016-11-16 13:17:04 +01:00
Stian Thorgersen	26b1541f4a	Merge pull request #3476 from abstractj/KEYCLOAK-3875 [KEYCLOAK-3875] - Conditional OTP Forms not working as expected	2016-11-16 12:44:50 +01:00
Stian Thorgersen	1c3a475d1e	Merge pull request #3485 from hmlnarik/KEYCLOAK-3071 KEYCLOAK-3071 Add SOAP and PAOS endpoints to valid redirect URIs on SP import	2016-11-16 12:38:45 +01:00
Bill Burke	8794416241	fix db2	2016-11-14 16:22:30 -05:00
Bill Burke	cc0eb47814	merge	2016-11-14 15:09:41 -05:00
Bill Burke	c280634bfa	fix tests	2016-11-14 15:06:17 -05:00
Pedro Igor	fb1cd9d27d	[KEYCLOAK-3554] - Properly handle dependencies between policies when importing settings	2016-11-14 18:55:53 +00:00
Vlasta Ramik	ab0514041e	Make migration properties available in tests	2016-11-14 13:09:03 +01:00
Hynek Mlnarik	750e942267	KEYCLOAK-3469 Make role mappers account for user groups	2016-11-14 11:38:00 +01:00
Bruno Oliveira	39f40bc005	[KEYCLOAK-3875] - Conditional OTP Forms not working as expected	2016-11-11 15:16:08 -02:00
Pavel Drozd	1052c71124	Merge pull request #3488 from vramik/KEYCLOAK-3885 KEYCLOAK-3885 Add missing migration test for 2.3.0	2016-11-11 09:46:03 +01:00
Stian Thorgersen	088f0ea630	Merge pull request #3490 from stianst/KEYCLOAK-3086 [KEYCLOAK-3086] - NPE when accessing Account with invalid clientId s…	2016-11-11 09:35:45 +01:00
Bruno Oliveira	675faee593	[KEYCLOAK-3086] - NPE when accessing Account with invalid clientId set as ?referrer, and additional referrer_uri set	2016-11-10 13:49:40 +01:00
Stian Thorgersen	7e33f4a7d1	KEYCLOAK-3882 Split server-spi into server-spi and server-spi-private	2016-11-10 13:28:42 +01:00
Vlasta Ramik	71c88a8dfc	Add missing migration test for 2.3.0	2016-11-10 11:02:26 +01:00
Stian Thorgersen	52a4509ada	Merge pull request #3483 from hmlnarik/KEYCLOAK-3870-keycloak-saml-xsd KEYCLOAK-3870 Schema for keycloak-saml.xml	2016-11-10 08:20:24 +01:00
Hynek Mlnarik	8816b55843	KEYCLOAK-3071 Add SOAP and PAOS endpoints to valid redirect URIs on SP import	2016-11-09 14:13:53 +01:00
Hynek Mlnarik	025cf5ebaf	KEYCLOAK-3870 Schema for keycloak-saml.xml Updated schema schema for keycloak-saml.xml (added documentation, set up enumeration instead of free string where applicable per documentation) and updated existing keycloak-saml.xml files with schema reference.	2016-11-09 10:45:43 +01:00
Vlasta Ramik	6f1b8e1fee	remove KEYCLOAK_REMEMBERME when user logs in without rememberme checked + tests	2016-11-09 10:33:46 +01:00
Pavel Drozd	c05057748f	Merge pull request #3474 from vramik/KEYCLOAK-3489 KEYCLOAK-3489 migration tests - minor fix	2016-11-08 15:38:14 +01:00
Vlasta Ramik	2b6811a366	migration tests - minor fix	2016-11-08 09:48:15 +01:00
Pavel Drozd	10f9800327	Merge pull request #3469 from mhajas/KEYCLOAK-3853 KEYCLOAK-3853 Fix keyRotation adapter test	2016-11-08 08:34:11 +01:00
Stian Thorgersen	292777259e	Merge pull request #3472 from hmlnarik/KEYCLOAK-1881-saml-key-rotation Keycloak 1881 - SAML key/cert rotation for IdP	2016-11-08 07:56:25 +01:00
Stian Thorgersen	ef48594d85	Merge pull request #3470 from sebastienblanc/KEYCLOAK-3548 KEYCLOAK-3548 : Send 401 when no keycloak.json for EAP6/AS7 Adapter	2016-11-08 07:37:00 +01:00
Stian Thorgersen	c9a58fad15	Merge pull request #3464 from stianst/KEYCLOAK-3692 KEYCLOAK-3692	2016-11-08 07:36:39 +01:00
Stian Thorgersen	5b54375490	Merge pull request #3468 from sebastienblanc/KEYCLOAK-3514 KEYCLOAK-3514 : fix servlet logout on bearer-only client	2016-11-08 07:35:44 +01:00
Stian Thorgersen	db4f3561a5	Merge pull request #3454 from ssilvert/keystore-error-messages KEYCLOAK-3817: More detailed errors when loading keys from JKS	2016-11-08 07:33:43 +01:00
Stan Silvert	3efd103712	KEYCLOAK-2720: Fix PermissionsTest	2016-11-04 19:05:32 -04:00
Hynek Mlnarik	36257863db	KEYCLOAK-1881 Integration tests for key rotation in SAML IdP	2016-11-04 21:53:43 +01:00
Hynek Mlnarik	4f9e35c0a1	KEYCLOAK-1881 Support for multiple certificates in broker (hardcoded at the moment)	2016-11-04 21:53:43 +01:00
Stan Silvert	3035cbc5db	KEYCLOAK-2720: Unit test	2016-11-04 13:11:06 -04:00
sebastien blanc	6c18b300a4	add integration test	2016-11-04 07:39:22 +01:00
mhajas	fd5f7eb165	KEYCLOAK-3853 Fix keyRotation adapter test	2016-11-03 16:04:31 +01:00
Pavel Drozd	c3f3c5c6a5	Merge pull request #3453 from vramik/KEYCLOAK-2957 KEYCLOAK-2957 test	2016-11-03 15:26:14 +01:00
Pavel Drozd	f2b28d8215	Merge pull request #3456 from vramik/KEYCLOAK-3579 KEYCLOAK-3579 add preview profile assumption to tests	2016-11-03 15:25:17 +01:00
Pavel Drozd	672f5d879b	Merge pull request #3465 from mhajas/KEYCLOAK-3854 KEYCLOAK-3854 KEYCLOAK-3579 Move EnfrocerConfigTest out from adapter tests	2016-11-03 15:23:39 +01:00
Pavel Drozd	20a6795f74	Merge pull request #3458 from tkyjovsk/KEYCLOAK-3849 KEYCLOAK-3849 Add ability to select keycloak profile in testsuite	2016-11-03 15:21:22 +01:00
Pavel Drozd	c1ef4067bc	Merge pull request #3459 from mhajas/KEYCLOAK-3850 KEYCLOAK-3850 Fix test-apps-dist zip file name	2016-11-03 15:18:11 +01:00
Stian Thorgersen	2052a0dff1	Fix	2016-11-03 14:37:07 +01:00
sebastien blanc	ee8c986e8e	add integration test	2016-11-03 14:30:42 +01:00
mhajas	6605ba1362	KEYCLOAK-3854 Move EnfrocerConfigTest out from adapter tests	2016-11-03 09:43:49 +01:00
Stian Thorgersen	ac18b6c71e	KEYCLOAK-3692	2016-11-03 08:33:56 +01:00
Stan Silvert	1b89472451	KEYCLOAK-3817: Fix tests	2016-11-02 14:21:54 -04:00
mhajas	ad995934b0	KEYCLOAK-3728 Test for turned off script based authenticators	2016-11-02 16:51:55 +01:00
mhajas	c5b6507830	KEYCLOAK-3850 Fix test-apps-dist zip file name	2016-11-02 16:49:25 +01:00
Tomas Kyjovsky	d7c5f991c8	KEYCLOAK-3579: added ability to select keycloak.profile in testsuite	2016-11-02 15:58:01 +01:00
Vlasta Ramik	cef1973ee4	KEYCLOAK-3579 add preview profile assumption to tests	2016-11-02 14:22:03 +01:00
Pavel Drozd	da516a78b3	Merge pull request #3450 from mhajas/KEYCLOAK-3841 KEYCLOAK-3841 Testing of Hawtio console on EAP6 + Fuse integration	2016-11-02 10:54:52 +01:00
Vlasta Ramik	fdb7924d3f	add test for KEYCLOAK-2957 to arquillian testsuite	2016-11-01 11:31:19 +01:00
mhajas	446b57b827	KEYCLOAK-3841 Testing of Hawtio console on EAP6 + fuse integration	2016-10-31 14:35:13 +01:00
Pavel Drozd	2c287af977	Merge pull request #3432 from zschwarz/tech-preview-profile RHSSO-473 Add preview profile job to RH-SSO CI	2016-10-31 11:24:24 +01:00
Stian Thorgersen	33bd7ca45f	Merge pull request #3446 from mstruk/KEYCLOAK-3767 KEYCLOAK-3767 kcreg should show hint for help if required arguments are missing	2016-10-28 14:56:24 +02:00
Marko Strukelj	408850e7bd	KEYCLOAK-3767 kcreg should show hint for help if required arguments are missing	2016-10-28 11:54:48 +02:00
Stian Thorgersen	479295cfd2	KEYCLOAK-3225 Modifying user's Identity Provider Links requires manage-realm client role	2016-10-28 10:25:41 +02:00
Stian Thorgersen	a78cfa4b2c	Merge pull request #3440 from stianst/KEYCLOAK-3667 KEYCLOAK-3667	2016-10-28 10:13:06 +02:00
Stian Thorgersen	c6caeb3bec	Merge pull request #3439 from stianst/KEYCLOAK-3828 KEYCLOAK-3828	2016-10-28 10:12:51 +02:00
Stian Thorgersen	3d46b4c425	KEYCLOAK-3667	2016-10-28 08:43:24 +02:00
Stian Thorgersen	db428dad1d	KEYCLOAK-3828 Component uses wrong role	2016-10-28 07:56:44 +02:00
Stian Thorgersen	7579606ac4	Merge pull request #3431 from mstruk/KEYCLOAK-3766 KEYCLOAK-3766 kcreg should display help when no arguments are passed to command	2016-10-28 06:44:07 +02:00
Stian Thorgersen	e958bd254a	Merge pull request #3435 from stianst/KEYCLOAK-3331 KEYCLOAK-3331 Reset password leads to 400 bad request when link is op…	2016-10-28 06:40:48 +02:00
Stian Thorgersen	0c6b47b9f2	Merge pull request #3433 from stianst/KEYCLOAK-3641 KEYCLOAK-3641 Clicking an invalid verification link due to re-send re…	2016-10-28 06:40:27 +02:00
Stian Thorgersen	c6ac3266f0	KEYCLOAK-3641 Clicking an invalid verification link due to re-send removes the email verification key from the session	2016-10-27 16:16:52 +02:00
Stian Thorgersen	ab72b2b141	KEYCLOAK-3331 Reset password leads to 400 bad request when link is opened in a different browser session	2016-10-27 16:04:45 +02:00
zschwarz	25909b5e79	RHSSO-473 Add preview profile job to RH-SSO CI	2016-10-27 13:09:20 +02:00
Marko Strukelj	5925a99800	KEYCLOAK-3766 kcreg should display help when no arguments are passed to command	2016-10-27 11:08:36 +02:00
Stian Thorgersen	21459d0f43	Merge pull request #3430 from stianst/KEYCLOAK-3819 KEYCLOAK-3819 Add support to change name of components	2016-10-26 11:39:27 +02:00
Stian Thorgersen	a8c844828d	KEYCLOAK-3819 Add support to change name of components	2016-10-26 10:00:58 +02:00
Marko Strukelj	8dca101069	KEYCLOAK-3789 KcRegTests are failing on CI - Ignore occasional extra empty lines at end of stream	2016-10-26 01:30:42 +02:00
Pavel Drozd	04f2b9ac01	Merge pull request #3368 from zschwarz/oidc-filter KEYCLOAK-3747 Servlet filter dependencies	2016-10-25 11:44:47 +02:00
zschwarz	bc718471da	KEYCLOAK-3747 Servlet filter dependencies	2016-10-24 15:01:16 +02:00
Marko Strukelj	e24b27c79e	KEYCLOAK-3801 Remove --unsafe from 'kcreg update'	2016-10-24 11:33:06 +02:00
Stian Thorgersen	4d47f758fc	Merge pull request #3405 from stianst/master Bump version	2016-10-21 10:11:59 +02:00
Stian Thorgersen	e390cffa63	KEYCLOAK-3779 ClientRegistrationPoliciesTest failing on Travis	2016-10-21 08:11:11 +02:00
Stian Thorgersen	c615674cbb	Bump version	2016-10-21 07:03:15 +02:00
Stian Thorgersen	1a4f9e656d	Merge pull request #3398 from stianst/KEYCLOAK-3774 KEYCLOAK-3774 Fix keycloak.js with prompt=none and new stricter redir…	2016-10-21 06:34:43 +02:00
Stian Thorgersen	9801f09a93	KEYCLOAK-3774 Fix keycloak.js with prompt=none and new stricter redirect_uri	2016-10-20 21:31:25 +02:00
Stian Thorgersen	5a00aaefa8	KEYCLOAK-2594 bind credential being leaked in admin tool JSON response KEYCLOAK-2972 Keycloak leaks configuration passwords in Admin Event logs	2016-10-20 19:30:59 +02:00
mposolda	072ccb5c61	KEYCLOAK-3770 OIDC registration with id_token grant type should set publicClient flag to true	2016-10-20 14:10:53 +02:00
mposolda	acbb17a331	KEYCLOAK-3768 Fix executing embedded apacheDS via maven exec plugin	2016-10-20 10:08:33 +02:00
Stian Thorgersen	8b5d171cb5	Merge pull request #3385 from mstruk/KEYCLOAK-3743 KEYCLOAK-3743 kcreg.sh without any options exists with 0	2016-10-20 06:41:13 +02:00
Marek Posolda	e6de2e7792	Merge pull request #3365 from puntogil/master KEYCLOAK-3519 port to apache-ldap-api-1.0.0-M33	2016-10-19 21:51:44 +02:00
Marko Strukelj	85db8ea44f	KEYCLOAK-3743 kcreg.sh without any options exists with 0	2016-10-19 21:23:31 +02:00
Marek Posolda	2acea2b2ee	Merge pull request #3370 from mposolda/master Client registration policies - polishing	2016-10-19 20:06:29 +02:00
Stian Thorgersen	84bf546911	Merge pull request #3378 from stianst/KEYCLOAK-3756 KEYCLOAK-3756	2016-10-19 19:55:57 +02:00
Stian Thorgersen	473bd5fc78	Merge pull request #3377 from stianst/KEYCLOAK-3706 KEYCLOAK-3706	2016-10-19 19:55:36 +02:00
Stian Thorgersen	8c1e5c5aae	Merge pull request #3374 from mstruk/KEYCLOAK-3742 KEYCLOAK-3742 kcreg config prints null	2016-10-19 19:27:57 +02:00
Stian Thorgersen	320110abaa	KEYCLOAK-3756	2016-10-19 18:00:33 +02:00
Stian Thorgersen	f9a8f805c8	KEYCLOAK-3706 Using invalid Registration Access Token results in 404 rather than 401	2016-10-19 17:55:05 +02:00
mposolda	3779bfb6b4	KEYCLOAK-3666 client registration policies - polishing	2016-10-19 17:45:23 +02:00
mposolda	964cd50f1d	KEYCLOAK-3666 Added client reg policies for maxClients and clientDisabled	2016-10-19 17:45:23 +02:00
Pavel Drozd	f8f9ebf588	Merge pull request #3362 from mhajas/KEYCLOAK-3654 KEYCLOAK-3654 Fix NullPointerException in lambda	2016-10-19 16:39:03 +02:00
Marko Strukelj	79f53c5513	KEYCLOAK-3742 kcreg config prints null - proper no args check across the board - added --help option to all commands	2016-10-19 16:36:25 +02:00
Stian Thorgersen	36c367a3bc	Merge pull request #3369 from stianst/KEYCLOAK-3625 KEYCLOAK-3625	2016-10-19 15:56:57 +02:00
Stian Thorgersen	1b24d2edd8	KEYCLOAK-3625 More work on the issue	2016-10-19 14:21:50 +02:00
Stian Thorgersen	bbc1d26b72	Merge pull request #3367 from stianst/KEYCLOAK-3745 KEYCLOAK-3745 Change attributes in user rep	2016-10-19 14:01:39 +02:00
Stian Thorgersen	4efe12cb93	KEYCLOAK-3745 Change attributes in user rep	2016-10-19 12:15:13 +02:00
gil	490b7f6ba4	KEYCLOAK-3519 port to apache-ldap-api-1.0.0-M33	2016-10-19 11:29:31 +02:00
mhajas	218065a349	KEYCLOAK-3654 Fix jwks-url in integration-arquillian	2016-10-19 10:27:53 +02:00
Stian Thorgersen	116027bd7b	Merge pull request #3354 from stianst/KEYCLOAK-2488 KEYCLOAK-2488 Token introspection returns wrong response for invalid …	2016-10-19 07:33:25 +02:00
Stian Thorgersen	14a51e589d	Merge pull request #3325 from mstruk/cli-reg KEYCLOAK-2084 Client Registration CLI	2016-10-19 06:33:45 +02:00
Stian Thorgersen	3250562d28	KEYCLOAK-3707 Test retrieving missing client with registration access token	2016-10-18 20:56:40 +02:00
Stian Thorgersen	29538332d9	KEYCLOAK-2488 Token introspection returns wrong response for invalid token	2016-10-18 20:28:14 +02:00
Pavel Drozd	ba1fa34c56	Merge pull request #3330 from mhajas/KEYCLOAK-3268 KEYCLOAK-3268 KEYCLOAK-3100 Validate SAML Idp and SP metadata	2016-10-18 20:08:13 +02:00
Marek Posolda	940237ee78	Merge pull request #3304 from hmlnarik/KEYCLOAK-2964 KEYCLOAK-2964 - Fix groups not applied for authentication of admin operations	2016-10-18 14:50:12 +02:00
mposolda	a7287aad36	KEYCLOAK-3499 More fixes for IncludeInUserInfo. Fixing tests and migration	2016-10-18 13:09:30 +02:00
Marko Strukelj	c912f941e7	KEYCLOAK-2084 Client Registration CLI	2016-10-18 12:33:02 +02:00
Marek Posolda	2fd680092a	Merge pull request #3336 from mposolda/master KEYCLOAK-3719 Add 'options' to ProviderConfigProperty and use it for …	2016-10-18 08:33:26 +02:00
Pavel Drozd	4cbc665592	Merge pull request #3340 from vramik/migration KEYCLOAK-3589 Add support for manual upgrade of database schema to te…	2016-10-18 07:39:42 +02:00
Pavel Drozd	d295ec709b	Merge pull request #3293 from zschwarz/oidc-filter KEYLOAK-3663 OIDC servlet filter	2016-10-18 07:35:17 +02:00
Pavel Drozd	90097e9aea	Merge pull request #3318 from mhajas/KEYCLOAK-3654 KEYCLOAK-3654 Fix jwks-url in integration-arquillian	2016-10-18 07:32:50 +02:00
mposolda	00879b39b7	KEYCLOAK-3719 Add 'options' to ProviderConfigProperty and use it for 'List' type instead of defaultValue	2016-10-17 21:34:21 +02:00
mhajas	5d57c29fae	KEYCLOAK-3268 KEYCLOAK-3100 Validate SAML Idp and SP metadata	2016-10-17 13:22:00 +02:00
mposolda	5732b2c58f	KEYCLOAK-3716 Unable to start Keycloak on wildfly	2016-10-17 12:22:33 +02:00
Vlasta Ramik	b0448d1b6f	KEYCLOAK-3589 Add support for manual upgrade of database schema to testsuite	2016-10-17 11:32:43 +02:00
mposolda	18e0c0277f	KEYCLOAK-3666 Dynamic client registration policies	2016-10-14 20:20:40 +02:00
mhajas	e08725e730	KEYCLOAK-3654 Fix jwks-url in integration-arquillian	2016-10-14 12:50:56 +02:00
Stian Thorgersen	4e245d428c	KEYCLOAK-905 More testing	2016-10-13 20:44:33 +02:00
Stian Thorgersen	d2cae0f8c3	KEYCLOAK-905 Realm key rotation for OIDC	2016-10-13 11:19:52 +02:00
Pavel Drozd	f868aa7fbe	Merge pull request #3308 from mhajas/KEYCLOAK-3694 KEYCLOAK-3694 Fix timeSkewTest on windows	2016-10-13 08:26:35 +02:00
mhajas	9dbd1149cf	KEYCLOAK-3694 Fix timeSkewTest on windows	2016-10-12 15:14:24 +02:00
Vlasta Ramik	bc2eb2b9ea	KEYCLOAK-3489 KEYCLOAK-3609	2016-10-12 12:28:56 +02:00
Hynek Mlnarik	03cf9bad2e	KEYCLOAK-2964 - Fix groups not applied for authentication of admin operations	2016-10-11 15:21:38 +02:00
zschwarz	4bd38bb9c1	KEYLOAK-3663 OIDC servlet filter	2016-10-10 10:44:07 +02:00
Bill Burke	c5600e888d	revactor CredentialValidationOutput apis	2016-10-04 17:26:45 -04:00
Bill Burke	d4c3fae546	merge conflicts	2016-09-30 19:19:12 -04:00
mposolda	f9a0abcfc4	KEYCLOAK-3493 KEYCLOAK-3532 Added KeyStorageProvider. Support key rotation for OIDC clients and identity providers with JWKS url.	2016-09-30 21:28:23 +02:00
Pavel Drozd	6e00587468	Merge pull request #3264 from vmuzikar/KEYCLOAK-3616 KEYCLOAK-3616 Add integration tests for Node.js adapter	2016-09-30 14:33:07 +02:00
Pavel Drozd	bcf5ac56cd	Merge pull request #3266 from mhajas/KEYCLOAK-3586 KEYCLOAK-3586 Adding tests for updateToken and timeSkew	2016-09-29 11:13:26 +02:00
Pavel Drozd	aa1ad029bb	Merge pull request #3252 from mhajas/KEYCLOAK-3604 KEYCLOAK-3604 Compile servlets and filters under JDK7	2016-09-29 11:06:21 +02:00
Stian Thorgersen	5d34b7e682	Merge pull request #3189 from thomasdarimont/issue/KEYCLOAK-3491-revise-scripting-support KEYCLOAK-3491 Revise Scripting Support	2016-09-29 10:12:15 +02:00
mhajas	69f66edb5f	KEYCLOAK-3604 Compile servlets and filters under JDK7	2016-09-29 09:51:12 +02:00
Bill Burke	8967ca4066	refactor mongo entities, optimize imports	2016-09-28 15:25:39 -04:00
Stian Thorgersen	a58c985934	Merge pull request #3268 from stianst/REVIEW KEYCLOAK-2438	2016-09-28 13:27:26 +02:00
Stian Thorgersen	34f62eb31d	Fixes to [KEYCLOAK-2438] PR	2016-09-28 10:25:37 +02:00
mhajas	6c3479665c	KEYCLOAK-3586	2016-09-27 14:00:52 +02:00
Vaclav Muzikar	ee2daeb364	KEYCLOAK-3616 Add integration tests for Node.js adapter	2016-09-27 10:32:35 +02:00
Pavel Drozd	fc6d6ff7f7	Merge pull request #3261 from vramik/KEYCLOAK-3609 KEYCLOAK-3609 Export/Import migration testing	2016-09-27 07:39:00 +02:00
Bruno Oliveira	98d2fe15e8	[KEYCLOAK-2438] - Add display name to social login buttons [KEYCLOAK-3291] - Names of social identity providers are wrongly capitalized (eg GitHub vs Github)	2016-09-26 13:36:28 -03:00
Bill Burke	ecc104719d	bump pom version	2016-09-26 11:01:18 -04:00
Bill Burke	27e86e36c4	Merge remote-tracking branch 'upstream/master'	2016-09-23 16:50:16 -04:00
Bill Burke	a1bcd0651d	fixes	2016-09-23 10:38:49 -04:00
mposolda	04f05c0cd1	KEYCLOAK-3422 Pairwise subjects : few fixes and bit of refactoring	2016-09-23 15:29:13 +02:00
Bill Burke	8e65356891	creds	2016-09-22 19:57:39 -04:00
Vlasta Ramik	f91c517a9c	Export/Import migration testing	2016-09-22 15:16:20 +02:00
Bill Burke	7209a95dce	credential refactoring	2016-09-22 08:34:45 -04:00
Thomas Darimont	8e113384aa	KEYCLOAK-3491 Revise Scripting Support Refactored the scripting infrastructure and added documentation. Added tests and an authenticator template in JavaScript for a quickstart. Increased height of ace code editor to 600px to avoid scrolling.	2016-09-20 14:33:39 +02:00
Stian Thorgersen	4977527f60	Merge pull request #3239 from stianst/SERVER-PROFILE KEYCLOAK-3579 Add ability to define profiles	2016-09-20 10:39:05 +02:00
Stian Thorgersen	9d0c9046ad	Merge pull request #3227 from mhajas/KEYCLOAK-3553 KEYCLOAK-3553 Move all functionality tests to servlets	2016-09-20 08:51:59 +02:00
Stian Thorgersen	992268a8e6	KEYCLOAK-3579 Add ability to define profiles	2016-09-20 08:41:23 +02:00
Pedro Igor	df1995636a	Merge pull request #3244 from mhajas/KEYCLOAK-3561 KEYCLOAK-3561 Hardcoded artifact version	2016-09-19 12:29:57 -03:00
mhajas	f69eb5503b	KEYCLOAK-3561 Hardcoded artifact version	2016-09-19 14:26:47 +02:00
Bruno Oliveira	c26471faa8	Tests cases for: user disabled, password and profile changes	2016-09-16 18:25:47 -03:00
wyvie	6bdc9dc133	[KEYCLOAK-3036] Added sssd integration test	2016-09-16 18:19:17 -03:00
mhajas	12919223cf	KEYCLOAK-3553 All functionality tests to servlets	2016-09-16 09:59:05 +02:00
Stian Thorgersen	b32b222b02	Merge pull request #3224 from mhajas/KEYCLOAK-3551 KEYCLOAK-3551 Remove example-dist dependency from testsuite	2016-09-16 09:46:42 +02:00
Stian Thorgersen	44c47431a1	Merge pull request #3233 from betovieirasilva/master-KEYCLOAK-LoginUsername [PULL-REQUEST-3181 & PULL-REQUEST-3233] Username is not displayed on the login screen with that email	2016-09-16 09:23:26 +02:00
Marek Posolda	5afe93552a	Merge pull request #3231 from TeliaSoneraNorge/pr/KEYCLOAK-3422 KEYCLOAK-3422 support pairwise subject identifier in oidc	2016-09-14 21:51:48 +02:00
Marek Posolda	036b24378f	Merge pull request #3225 from vmuzikar/KEYCLOAK-3552 KEYCLOAK-3552 Add some missing tests for OIDC Dynamic Profile	2016-09-14 18:30:44 +02:00
Gilberto Vieira da Silva	8c518a8d38	Include test case for PULL-REQ-3181	2016-09-13 18:57:07 -03:00
Gilberto Vieira da Silva	868f8b166f	Reverted to appli to branch master-KEYCLOAK-LoginUsername	2016-09-13 18:52:05 -03:00
Gilberto Vieira da Silva	4b3d3bf55b	Include test case for PULL-REQ-3181	2016-09-13 18:21:48 -03:00
Martin Hardselius	04d03452bd	KEYCLOAK-3422 support pairwise subject identifier in oidc	2016-09-13 09:18:45 +02:00
mposolda	bf6246f5c1	KEYCLOAK-905 Realm keys rotation support on adapters	2016-09-12 21:24:04 +02:00
Vaclav Muzikar	fa02277e6e	KEYCLOAK-3552 Add some missing tests for OIDC Dynamic Profile	2016-09-09 12:23:08 +02:00
mhajas	4780a3453a	Remove example-dist dependency	2016-09-09 12:04:24 +02:00
Stian Thorgersen	1630b9a20c	Merge pull request #3220 from abstractj/KEYCLOAK-3535 KEYCLOAK-3535 - Check if SSSD is available via DBUS	2016-09-09 08:15:11 +02:00
Bruno Oliveira	11245701d2	Check if SSSD is available via DBUS	2016-09-08 16:01:45 -03:00
mposolda	4fd0238ca9	KEYCLOAK-3542 Not possible to enable bruteForceProtection for realm	2016-09-08 12:30:38 +02:00
Marek Posolda	76e1160b36	Merge pull request #3210 from mposolda/master KEYCLOAK-3537 Username not shown when validation error on Account pro…	2016-09-08 10:04:38 +02:00
Stian Thorgersen	44b7210af7	Merge pull request #3203 from mhajas/eap6fix KEYCLOAK-3533 Fix forbidden page on eap6	2016-09-08 08:41:52 +02:00
Stian Thorgersen	f726caea9b	Merge pull request #3205 from stianst/KEYCLOAK-3342 KEYCLOAK-3342 Add Identity Provider authenticator	2016-09-08 08:40:32 +02:00
mposolda	16282aeb7b	KEYCLOAK-3537 Username not shown when validation error on Account profile page	2016-09-08 08:36:39 +02:00
Stian Thorgersen	d2c546bdc2	Merge pull request #3201 from pedroigor/KEYCLOAK-3129 [KEYCLOAK-3129] - Add authorization services endpoints to PermissionsTest	2016-09-08 08:03:40 +02:00
Stian Thorgersen	1f27fc9e4b	Merge pull request #3153 from cargosoft/KEYCLOAK-3327 KEYCLOAK-3327 Make realm attributes accessible via the RealmModel	2016-09-08 08:00:14 +02:00
Stian Thorgersen	7c292b1213	KEYCLOAK-3342 Add Identity Provider authenticator	2016-09-08 07:20:35 +02:00
mposolda	5a015a6518	KEYCLOAK-3494 Input elements backed by user attributes fail to update in themes	2016-09-07 20:08:09 +02:00
mhajas	c860d03a60	Fix forbidden page on eap6	2016-09-07 09:02:46 +02:00
Bruno Oliveira	1b2a5eda32	Initial FreeIPA Integration - Provide username/password authentication with PAM - Obtain user data from SSSD - Feature packs for dbus-java, libpam4j and SSSD API - Provisioning script	2016-09-06 18:04:43 -03:00
Pedro Igor	517413d38e	[KEYCLOAK-3129] - Add authorization services endpoints to PermissionsTest	2016-09-06 17:32:37 -03:00
Stian Thorgersen	22e85b11eb	Merge pull request #3190 from vramik/KEYCLOAK-3489 KEYCLOAK-3489 Database migration testing	2016-09-05 15:19:24 +02:00
Vlasta Ramik	39fe439573	Database migration testing	2016-09-05 13:39:21 +02:00
mposolda	a24a43c4be	KEYCLOAK-3349 Support for 'request' and 'request_uri' parameters	2016-09-02 20:20:38 +02:00
mposolda	892d5fd1b7	TestingExportImport in separate resource	2016-09-02 20:20:38 +02:00
Pedro Igor	43d23835d0	Merge pull request #3179 from pedroigor/KEYCLOAK-3472 [KEYCLOAK-3472] - Multiple paths with the same name and tests	2016-09-01 10:00:33 -03:00
Pedro Igor	ce78cc1d1c	[KEYCLOAK-3472] - Multiple paths with the same name and tests	2016-08-31 21:04:36 -03:00
Vaclav Muzikar	1b085d3e13	KEYCLOAK-3421 Validation for URI fragments in redirect_uri	2016-08-31 13:07:33 +02:00
mposolda	02f28a7e8e	KEYCLOAK-3416 Add support for signed Userinfo requests	2016-08-30 20:21:04 +02:00
mposolda	f4aee129e4	KEYCLOAK-3424 Issuer or token-endpoint as audience in signed JWT	2016-08-29 14:43:35 +02:00
mposolda	a7f9a6e095	KEYCLOAK-3424 Support for import from public key	2016-08-29 14:43:29 +02:00
Stian Thorgersen	9ffd6548ce	Merge pull request #3146 from mhajas/KEYCLOAK-3161 KEYCLOAK-3161 Migrate SAML adapter tests	2016-08-26 13:40:58 +02:00
Marek Posolda	d138b19adb	Merge pull request #3142 from vmuzikar/KEYCLOAK-3429 KEYCLOAK-3429 Fix behaviour of redirect_uri parameter with query components	2016-08-24 09:53:29 +02:00
Stian Thorgersen	3890867383	Merge pull request #3133 from fkiss/master-email-ibmjdk KEYCLOAK-3351 TrustStoreEmailTest fix for ibmjdk	2016-08-23 12:54:12 +02:00
Stian Thorgersen	c522a20ab9	KEYCLOAK-3447 Manual upgrade of database schema	2016-08-22 10:22:08 +02:00
Dimitri Teleguin	b109ce14b0	KEYCLOAK-3327 Make realm attributes accessible via the RealmModel	2016-08-18 23:28:32 +03:00
Pedro Igor	a8d2b810cf	[KEYCLOAK-3144] - Add authorization settings when exporting/importing a realm.	2016-08-15 10:35:28 -03:00
mhajas	285a99d903	Migrate SAML adapter tests	2016-08-13 11:09:48 +02:00
mposolda	2cba13db9c	KEYCLOAK-3424 Possibility to import JWK key through admin console	2016-08-12 15:51:14 +02:00
mposolda	3eb9134e02	KEYCLOAK-3424 Support for save JWKS in OIDC ClientRegistration endpoint	2016-08-12 15:51:14 +02:00
Vaclav Muzikar	b7f2e0b5ff	KEYCLOAK-3429 Fix behaviour of redirect_uri parameter with query components	2016-08-12 14:02:17 +02:00
mposolda	0520d465c1	KEYCLOAK-3414 Support for client registration from trusted hosts	2016-08-11 15:55:32 +02:00
mposolda	a8fb988e31	KEYCLOAK-3406 OIDC dynamic client registrations specs fixes	2016-08-11 15:54:51 +02:00
mposolda	9c7442c75b	Fix ExportImportTest	2016-08-11 15:51:56 +02:00
fkiss	de888fc8a1	KEYCLOAK-3351 TrustStoreEmailTest fix for ibmjdk	2016-08-11 10:52:29 +02:00
mposolda	d52e043322	Set version to 2.2.0-SNAPSHOT	2016-08-10 08:57:18 +02:00
Bill Burke	7f6fc170dc	Merge pull request #3119 from fkiss/master-exportimport KEYCLOAK-3211 - ExportImportTest fix for Wildfly	2016-08-09 20:59:04 -04:00
Bill Burke	530870f05e	realm components import/export	2016-08-09 15:06:29 -04:00
fkiss	4974079794	KEYCLOAK-3211 - ExportImportTest fix for Wildfly	2016-08-09 15:20:40 +02:00
Bill Burke	d94515cdae	Merge pull request #3117 from patriot1burke/master deployer, jta lookup, merge user fed/storage	2016-08-08 17:46:35 -04:00
Bill Burke	f838c697d1	Merge remote-tracking branch 'upstream/master'	2016-08-08 16:04:16 -04:00
Bill Burke	83306963e8	jta transaction abstraction	2016-08-08 12:32:36 -04:00
mposolda	65e2f127c9	KEYCLOAK-3400 OIDC request with missing response_type should respond with error	2016-08-08 16:11:50 +02:00
mposolda	9be6777685	KEYCLOAK-2169 KEYCLOAK-3286 Support for at_hash and c_hash	2016-08-08 10:57:44 +02:00
Marek Posolda	65c49c39f4	Merge pull request #3114 from mposolda/master KEYCLOAK-3321 OIDC requests without 'nonce' claim should be rejected …	2016-08-05 16:45:56 +02:00
Marek Posolda	6c0f685c39	Merge pull request #2948 from thomasdarimont/issue/KEYCLOAK-3142-Add-ResourceType-to-AdminEvents KEYCLOAK-3142 - Capture ResourceType that triggers an AdminEvent	2016-08-05 15:07:56 +02:00
mposolda	e0a59baaf2	KEYCLOAK-3321 OIDC requests without 'nonce' claim should be rejected unless using the code flow. Started responseType tests	2016-08-05 15:05:26 +02:00
Thomas Darimont	e49afb2d83	KEYCLOAK-3142 - Revised according to codereview Liquibase Moved schema evolution configuration from jpa-changelog-2.1.0 to jpa-changelog-2.2.0. Corrected wrong ResourceType references in tests. Adapted AdminEvents copy-routines to be aware of resourceType attribute. Added ResourceType enum to exposed ENUMS of ServerInfoAdminResource. Signed-off-by: Thomas Darimont <thomas.darimont@gmail.com>	2016-08-05 00:01:03 +02:00
Vaclav Muzikar	0d225f44de	KEYCLOAK-3367 Improve stability of Adapters Tests	2016-08-04 14:43:49 +02:00
Thomas Darimont	586f6eeece	KEYCLOAK-3142 - Capture ResourceType that triggers an AdminEvent Introduced new ResourceType enum for AdminEvents which lists the current supported ResourceTypes for which AdminEvents can be fired. Previously it was difficult for custom EventListeners to figure out which ResourceType triggered an AdminEvent in order to handle it appropriately, effectively forcing users to parse the representation. Having dedicated resource types as a marker on an AdminEvent helps to ease custom EventListener code. We now also allow filtering of admin events by ResourceType in the admin-console. Signed-off-by: Thomas Darimont <thomas.darimont@gmail.com>	2016-08-04 11:30:02 +02:00
Bill Burke	a3ffb32532	Merge pull request #3060 from fkiss/master-ldaps KEYCLOAK-2281 added ldap tests over ssl	2016-08-03 21:31:12 -04:00
Bill Burke	9365a40426	Merge pull request #3104 from zschwarz/exclude-test KEYCLOAK-3389 Added general exclude for tests	2016-08-02 07:19:42 -04:00
Bill Burke	4a8b4bcdec	Merge pull request #3087 from zschwarz/password-policy KEYCLOAK-3379 Password policy tests refactoring	2016-08-02 07:15:58 -04:00
Pedro Igor	ae1a7542d8	[KEYCLOAK-3385] - Improvements to evaluation tool UI and result	2016-08-01 18:01:24 -03:00
mposolda	aa177dd9f9	Ignore KcSamlBrokerTest and KcSamlSignedBrokerTest again	2016-08-01 19:03:07 +02:00
zschwarz	e04ad9d7b6	Added general exclude for tests	2016-08-01 13:17:24 +02:00
Marek Posolda	0d99b797b6	Merge pull request #3068 from mstruk/KEYCLOAK-2981-m KEYCLOAK-2981 Upload-certificate admin endpoint does not nullify private keys	2016-08-01 11:20:55 +02:00
Marek Posolda	b0c7746eeb	Merge pull request #3084 from mhajas/KEYCLOAK-3165 KEYCLOAK-3165 Migrate SAML Filter tests to integration arquillian testsuite	2016-08-01 09:07:19 +02:00
Marek Posolda	a8eb3ca65a	Merge pull request #3065 from wyvie/samltest [KEYCLOAK-3035] Fixed broker tests, should not randomly fail anymore	2016-08-01 08:39:22 +02:00
wyvie	cd94778dec	[KEYCLOAK-3035] Fixed broker tests, should not randomly fail anymore	2016-07-31 18:57:15 +02:00
Pedro Igor	7983ed064f	[KEYCLOAK-3372] - More tests and code cleanup	2016-07-29 15:25:36 -03:00
Pedro Igor	607b305c2f	[KEYCLOAK-3372] - Adding tests for servlet authorization	2016-07-29 12:42:53 -03:00
mhajas	824890323d	Migrate SAML Filter tests to integration arquillian tests	2016-07-29 11:06:09 +02:00
zschwarz	5011960cac	Password policy tests refactoring	2016-07-29 10:24:13 +02:00
Pedro Igor	3c8ed8e3d8	[KEYCLOAK-3372] - Code cleanup	2016-07-29 05:18:38 -03:00
Pedro Igor	8cfa50f134	[KEYCLOAK-3338] More testing and improvements when importing role policies	2016-07-28 12:31:46 -03:00
Bill Burke	5d9fe09599	Merge pull request #3070 from mstruk/KEYCLOAK-2571 KEYCLOAK-2571 RESET_PASSWORD_ERROR and UPDATE_PASSWORD_ERROR events not fired	2016-07-28 07:23:32 -04:00
Pedro Igor	7e1b97888a	[KEYCLOAK-3338] - Adding client roles to role policy and UX improvements	2016-07-27 15:15:14 -03:00
Marko Strukelj	59e0570cdf	KEYCLOAK-2571 RESET_PASSWORD_ERROR and UPDATE_PASSWORD_ERROR events not fired	2016-07-26 21:32:57 +02:00
Marko Strukelj	94f583e935	KEYCLOAK-2981 Upload-certificate admin endpoint does not nullify private keys	2016-07-25 11:13:21 +02:00
mposolda	01830fd7f3	KEYCLOAK-3319 More OIDC tests. Minor refactoring	2016-07-22 18:16:58 +02:00
fkiss	e2ad7608c8	KEYCLOAK-2281 added ldap tests over ssl	2016-07-22 16:29:58 +02:00
mposolda	9169bcd88d	KEYCLOAK-3354 request and request_uri not supported	2016-07-22 13:44:45 +02:00
mposolda	56e011dce4	KEYCLOAK-3318 Adapter support for prompt and max_age. Refactoring to not hardcode OIDC specifics to CookieAuthenticator	2016-07-21 18:19:53 +02:00
mposolda	f4ddfe4a52	KEYCLOAK-3318 Support for prompt=login. More tests for prompt parameter	2016-07-20 21:27:38 +02:00
Pedro Igor	f36a68308d	[KEYCLOAK-3320] - Enable authorization services to WF8 adapter	2016-07-20 08:16:37 -03:00
Stian Thorgersen	0a5e061ca6	Merge pull request #3045 from mhajas/KEYCLOAK-3326 KEYCLOAK-3326 Fix invalidRequesterMessage in tests	2016-07-19 09:29:15 +02:00
Stian Thorgersen	1b517a461e	Merge pull request #3041 from stianst/KEYCLOAK-3302 KEYCLOAK-3302 Allow logout with expired refresh token	2016-07-19 08:03:52 +02:00
mhajas	a913b8a158	Fix invalidRequesterMessage in tests	2016-07-18 14:21:28 +02:00
Marek Posolda	a6bdf81e6d	Merge pull request #3040 from mposolda/master KEYCLOAK-3220 Added test for missing response_type	2016-07-15 22:19:52 +02:00
Stian Thorgersen	0632bc8939	Ignore unstable tests	2016-07-15 12:59:15 +02:00
Stian Thorgersen	e708c53730	KEYCLOAK-3302 Allow logout with expired refresh token	2016-07-15 12:56:31 +02:00
Stian Thorgersen	1ce17c459d	Merge pull request #3039 from stianst/KEYCLOAK-3192 KEYCLOAK-3192 Ignore disabled required action	2016-07-15 10:38:49 +02:00
mposolda	fda0a79e27	KEYCLOAK-3237 Add scopes_supported to OIDC WellKnown endpoint	2016-07-15 09:47:09 +02:00
mposolda	021c2ec701	KEYCLOAK-3220 Added test for missing response_type	2016-07-15 09:15:09 +02:00
Stian Thorgersen	fbf00ba1cd	Added umlats test to registration test	2016-07-15 09:05:41 +02:00
Marek Posolda	a2ead8743f	Merge pull request #3035 from mposolda/master OIDC fixes	2016-07-15 09:03:31 +02:00
Stian Thorgersen	970c89dd6a	KEYCLOAK-3192 Ignore disabled required action	2016-07-15 09:01:44 +02:00
Stian Thorgersen	f384c2340e	KEYCLOAK-3266 password policy NotUsername breaks new user registration	2016-07-15 07:34:13 +02:00
Stian Thorgersen	fe367d207a	Merge pull request #3022 from vmuzikar/KEYCLOAK-3212 KEYCLOAK-3212 Improve Console UI tests stability in FF, Chrome and IE	2016-07-15 06:03:32 +02:00
mposolda	dcc4ea3aea	KEYCLOAK-3237 Change OIDC adapters to use scope=openid as required per specs	2016-07-14 23:56:46 +02:00
mposolda	ee3ac3fdaf	KEYCLOAK-3223 Basic support for acr claim	2016-07-14 12:36:12 +02:00
Stian Thorgersen	4f1d83b9dc	Merge pull request #3030 from stianst/KEYCLOAK-2824-2 KEYCLOAK-2824 Password Policy SPI	2016-07-14 10:12:25 +02:00
Stian Thorgersen	ea44b5888b	KEYCLOAK-2824 Password Policy SPI	2016-07-14 07:20:30 +02:00
mposolda	abde62f369	KEYCLOAK-3220 redirect to client with error if possible	2016-07-13 20:57:43 +02:00
mposolda	38f89b93ff	KEYCLOAK-3281 OIDC 'state' parameter is url-encoded twice when responseMode=form_post	2016-07-13 18:07:57 +02:00
mposolda	d5199501c7	KEYCLOAK-3219 Added claims info to OIDCWellKnownProvider. More tests	2016-07-13 10:17:45 +02:00
Stian Thorgersen	5b0980172d	KEYCLOAK-3267 Fix identity broker login with brute force enabled	2016-07-12 15:21:00 +02:00
Vaclav Muzikar	7dbdb023a0	KEYCLOAK-3212 Improve Console UI tests stability in FF, Chrome and IE	2016-07-12 11:39:27 +02:00
Stian Thorgersen	19e5ddeba5	Merge pull request #3015 from martin-kanis/master KEYCLOAK-3096 Remove leading/trailing spaces from username/email	2016-07-12 10:03:55 +02:00
mposolda	039bb103c2	KEYCLOAK-3295 Kerberos authenticator changed during userFederationProvider update just if it was DISABLED	2016-07-11 15:52:49 +02:00
Martin Kanis	c67d834d39	KEYCLOAK-3096 Remove leading/trailing spaces from login	2016-07-09 18:35:51 +02:00
mposolda	629390dd4a	KEYCLOAK-2986 Require either expiration or issuedAt for client authentication with signed JWT	2016-07-08 16:16:38 +02:00
mposolda	3bfd999590	KEYCLOAK-3222 extend WellKnown to return supported types of client authentications. More tests	2016-07-08 15:39:13 +02:00
mposolda	c10a005997	KEYCLOAK-3290 UserInfoEndpoint error responses don't have correct statuses	2016-07-08 12:15:07 +02:00
mposolda	4dd28c0adf	KEYCLOAK-3221 Tokens should be invalidated if an attempt to reuse code is made	2016-07-08 11:04:08 +02:00
Bill Burke	bdc57d57c1	Merge pull request #3008 from patriot1burke/master new User Fed SPI initial iteration	2016-07-07 14:56:38 -04:00
mposolda	a7c9e71490	KEYCLOAK-3218 Support for max_age OIDC authRequest parameter and support for auth_time in IDToken	2016-07-07 17:04:32 +02:00
Bill Burke	0040d3fc3b	Merge remote-tracking branch 'upstream/master'	2016-07-07 10:35:45 -04:00
Bill Burke	7e5a5f79cf	fixes for new user fed spi	2016-07-07 10:35:35 -04:00
Marek Posolda	7a161cc8bb	Merge pull request #3005 from mposolda/KEYCLOAK-3217 KEYCLOAK-3217 UserInfo endpoint wasn't accessible by POST request sec…	2016-07-07 13:49:43 +02:00
Marek Posolda	c5e8a010dc	Merge pull request #3004 from mposolda/KEYCLOAK-3147 KEYCLOAK-3147 Don't allow authRequest without redirect_uri parameter	2016-07-07 13:49:34 +02:00
mposolda	56e09bf189	KEYCLOAK-3147 Don't allow authRequest without redirect_uri parameter	2016-07-07 12:46:36 +02:00
mposolda	7aafbcd5d9	KEYCLOAK-3217 UserInfo endpoint wasn't accessible by POST request secured with Bearer header	2016-07-07 12:28:25 +02:00
Stian Thorgersen	78fbf45b80	Merge pull request #2991 from ssilvert/RHSSO-296 KEYCLOAK-3244: Required Action "Configure Totp" should be "Configure OTP"	2016-07-07 11:43:50 +02:00
Stian Thorgersen	2591dd862b	Merge pull request #2976 from vramik/KEYCLOAK-3151 KEYCLOAK-3151 removed adapter libs mode from testsuite	2016-07-06 14:21:07 +02:00
Stan Silvert	a231c1b31b	RHSSO-296: Required Action "Configure Totp" should be "Configure OTP"	2016-07-05 15:07:52 -04:00
Stian Thorgersen	7cfee80e58	KEYCLOAK-3189 KEYCLOAK-3190 Add kid and typ to JWT header	2016-07-05 08:26:26 +02:00
Stian Thorgersen	fe856d3fa7	Merge pull request #2992 from ssilvert/RHSSO-274 KEYCLOAK-3243: "Undefined" as auth flow execution	2016-07-04 19:24:30 +02:00
Stian Thorgersen	98923d0ea4	Merge pull request #2971 from mhajas/fixRelative KEYCLOAK-3195 Fix example adapter tests on relative scenario	2016-07-04 19:22:06 +02:00
Stian Thorgersen	c9bbfc3b0b	KEYCLOAK-2660 Test updating user without including username with brute force enabled	2016-07-04 12:37:26 +02:00
Stan Silvert	8b8ebfc7e1	Fix failing test.	2016-07-01 12:24:13 -04:00
Stan Silvert	d90a708ceb	RHSSO-274: "Undefined" as auth flow execution	2016-07-01 10:25:14 -04:00
Bill Burke	b224917fc5	bump version	2016-06-30 17:17:53 -04:00
Pedro Igor	46d02f15fe	[KEYCLOAK-2999] - Authorization arquillian tests	2016-06-30 10:26:05 -03:00
mhajas	836ab2820a	Fix adapter tests on relative scenario	2016-06-27 14:18:32 +02:00
Vlasta Ramik	47fab2d034	removed adapter libs mode from testsuite	2016-06-24 13:32:03 +02:00
Stan Silvert	5e450d5cd4	Minor cleanup.	2016-06-23 11:09:57 -04:00
Stan Silvert	38722e8273	KEYCLOAK-3031 Migrate exportimport package to arquillian testsuite	2016-06-23 11:09:55 -04:00
mposolda	da945a69e6	KEYCLOAK-2474 Added test	2016-06-21 13:47:41 +02:00
Stian Thorgersen	8f3cfed7c5	Merge pull request #2934 from fkiss/master-truststore KEYCLOAK-2283 added email truststore test	2016-06-17 14:05:38 +02:00
Stian Thorgersen	807fc71626	Merge pull request #2939 from mhajas/fixEAP6 KEYCLOAK-3125 Fix ssl tests on EAP6	2016-06-17 14:02:23 +02:00
Stian Thorgersen	8ae08f0432	Merge pull request #2938 from mhajas/addJSConsoleTests-master KEYCLOAK-3121 Add JS adapter tests	2016-06-17 14:01:21 +02:00
Stian Thorgersen	3c0f7e2ee2	Merge pull request #2617 from pedroigor/KEYCLOAK-2753 [KEYCLOAK-2753] - Fine-grained Authorization Services	2016-06-17 13:40:15 +02:00
Pedro Igor	086c29112a	[KEYCLOAK-2753] - Fine-grained Authorization Services	2016-06-17 02:07:34 -03:00
mhajas	0df2525298	Fix ssl tests on EAP6	2016-06-16 11:56:31 +02:00
mhajas	cdb40fce19	Add JS adapter tests	2016-06-16 11:43:06 +02:00
fkiss	b50513a946	KEYCLOAK-2283 added email truststore test	2016-06-14 13:49:16 +02:00
Stian Thorgersen	e538394e60	KEYCLOAK-3091 Change brute force to use userId	2016-06-13 15:30:13 +02:00
Stian Thorgersen	46b17e6149	Merge pull request #2928 from mposolda/KEYCLOAK-3106 KEYCLOAK-3106 EventStoreProviderTest.query is failing in some environ…	2016-06-13 15:05:19 +02:00
mposolda	e6b3586b87	KEYCLOAK-3106 EventStoreProviderTest.query is failing in some environments	2016-06-13 15:02:10 +02:00
mposolda	1510ac5eb4	KEYCLOAK-3105 Can't access single realm with the admin user from master realm	2016-06-13 12:09:11 +02:00
mposolda	72736e5e47	KEYCLOAK-2028 Add test for token-minimum-time-to-live adapter option	2016-06-09 19:22:15 +02:00
Pavel Drozd	81de73df8e	KEYCLOAK-3082 - clear queue before event	2016-06-06 11:46:39 +02:00
Bill Burke	4c9a0b45d4	Merge pull request #2229 from thomasdarimont/issue/KEYCLOAK-2489-script-based-authenticator-definitions KEYCLOAK-2489 - Add support for Script-based AuthenticationExecution definitions.	2016-06-05 11:12:05 -04:00
mposolda	13bf36ce49	KEYCLOAK-3074 Change the signature of TestingResourceProvider.getAdminEvents to use String instead of java.util.Date	2016-06-03 10:31:24 +02:00
Stian Thorgersen	c37f1c24ee	Merge pull request #2900 from tkyjovsk/performance-tests Updates to the performance tests.	2016-06-02 18:54:47 +02:00
Marko Strukelj	ec258c6515	KEYCLOAK-2879 UserResource	2016-06-02 15:23:18 +02:00
Tomas Kyjovsky	ef95510da4	Updates to the performance tests. Conflicts: testsuite/integration-arquillian/tests/other/adapters/jboss/remote/pom.xml testsuite/integration-arquillian/tests/other/clean-start/pom.xml	2016-06-01 16:06:51 +02:00
Stian Thorgersen	8fab2f0718	KEYCLOAK-3066 Uploaded Realm Certificate is not validated	2016-06-01 15:12:21 +02:00
Stian Thorgersen	af30142097	Merge pull request #2886 from ssilvert/migrate-events KEYCLOAK-2912 Migrate events package to new testsuite	2016-05-26 15:01:57 +02:00
mposolda	882dbc3f25	KEYCLOAK-3006 Fix admin event inconsistencies related to roles (points 1,3,4,15,16 from JIRA)	2016-05-25 23:18:01 +02:00
mposolda	022be3aee5	KEYCLOAK-3006 Fix admin event inconsistencies (points 2,5-14 from JIRA)	2016-05-25 23:17:47 +02:00
mposolda	f58936025f	KEYCLOAK-3003 Support for admin events in AuthenticationManagementResource	2016-05-25 23:17:24 +02:00
Stan Silvert	1042a22cf7	KEYCLOAK-2912 Migrate events package to new testsuite	2016-05-25 15:22:17 -04:00
Stian Thorgersen	9edec8e4a6	Merge pull request #2875 from abstractj/KEYCLOAK-3023 OAuthRedirectUriTest.testLocalhost fails on wildfly	2016-05-25 07:25:22 +02:00
Stian Thorgersen	f12c54387c	Merge pull request #2873 from vramik/KEYCLOAK-3024 KEYCLOAK-3024 support for smoke test - clean start domain mode	2016-05-25 07:24:14 +02:00
Stian Thorgersen	d51a2cde2f	Merge pull request #2859 from ssilvert/migrate-i18n KEYCLOAK-2913 Migrate i18n package to new testsuite	2016-05-25 07:22:54 +02:00
Bruno Oliveira	b2850ec1d5	OAuthRedirectUriTest.testLocalhost fails on wildfly	2016-05-24 07:24:36 -03:00
Stan Silvert	8d56ab90ba	KEYCLOAK-2913 Switch to use xpath for finding links instead of adding an id.	2016-05-23 09:23:01 -04:00
Stian Thorgersen	097c49149c	Merge pull request #2867 from stianst/KEYCLOAK-3020 KEYCLOAK-3020	2016-05-23 13:59:13 +02:00
Vlasta Ramik	a37d43714d	support for smoke test - clean start domain mode	2016-05-23 13:29:05 +02:00
Stian Thorgersen	ff20c530cd	Merge pull request #2869 from stianst/KEYCLOAK-2851 KEYCLOAK-2851 InitialAccessTokenTest#createExpired fails occasionally	2016-05-23 12:04:23 +02:00

... 23 24 25 26 27 ...

2890 commits