pedroigor
128cd98ce2
[KEYCLOAK-1036] - Revert.
2015-02-25 11:21:56 -03:00
Bill Burke
1704a6c643
Merge remote-tracking branch 'upstream/master'
2015-02-24 19:37:22 -05:00
Bill Burke
c20ad93807
claim mappings next phase
2015-02-24 19:37:07 -05:00
Stian Thorgersen
0ad3c72c0a
Merge pull request #982 from girirajsharma/master
...
[KEYCLOAK-1031]-Multiple accounts with the same email.
2015-02-24 13:35:15 +01:00
Bill Burke
100dbd5fd7
ProviderFactory.postInit()
2015-02-23 12:11:48 -05:00
girirajsharma
f83f76b143
[KEYCLOAK-1031]-Multiple accounts with the same email.
2015-02-23 22:29:00 +05:30
mposolda
4b6b48dc34
Increase MaxPermSize for tests
2015-02-23 17:05:10 +01:00
mposolda
9dd5ecd464
Kerberos automated test
2015-02-23 13:13:34 +01:00
Bill Burke
42ffe21f91
Merge remote-tracking branch 'upstream/master'
2015-02-20 09:23:18 -05:00
Bill Burke
20f12ea960
changes
2015-02-20 09:22:49 -05:00
mposolda
d8024b0c6c
Kerberos refactored to be federation provider. Support for Kerberos and LDAP. Username/password authentication support with kerberos credentials.
...
First step - KerberosFederationProvider
Finished KerberosFederationProvider. Added support for username/password authentication with kerberos credentials
Added Kerberos UI to LDAPFederationProvider
Fixes
2015-02-18 17:19:15 +01:00
mposolda
5da05aa62a
LDAP testing improvements. Support for embedded Kerberos server in testsuite
2015-02-16 11:50:28 +01:00
mposolda
3ef243dd42
Add authenticateByDefault flag to IdentityProviderModel
2015-02-13 10:08:51 +01:00
pedroigor
b0fb737de3
[KEYCLOAK-883] - Code cleanup and refactoring.
2015-02-13 01:27:11 -02:00
Bill Burke
9b053e6918
more saml config
2015-02-11 21:56:16 -05:00
Bill Burke
889fe8dd8c
Merge remote-tracking branch 'upstream/master'
2015-02-11 20:54:11 -05:00
Bill Burke
3ff423c3ad
saml config
2015-02-11 20:54:01 -05:00
mposolda
534187f4d7
KEYCLOAK-1037 Bad error message on login form in case of expired code
2015-02-11 18:48:32 +01:00
mposolda
03d607b022
Fix showing federation links of users in admin console
2015-02-11 13:03:31 +01:00
Bill Burke
36282d24b5
Merge remote-tracking branch 'upstream/master'
2015-02-10 11:33:33 -05:00
Bill Burke
0e9fcf19e0
saml url support
2015-02-10 11:33:18 -05:00
mposolda
f582250b31
KEYCLOAK-1036 Don't allow registration through identity brokering in case that realm registration is disabled
2015-02-10 16:57:07 +01:00
mposolda
90496f62ac
KEYCLOAK-1035 Brokered identity linked by account management may not be recognized during login
2015-02-10 13:54:45 +01:00
mposolda
d59a28f1cb
Added test for import kerberos model
2015-02-10 13:54:45 +01:00
pedroigor
ff1f10d7a7
[KEYCLOAK-883] - Refactoring to services endpoints and exposing them through admin client.
2015-02-09 21:30:21 -02:00
pedroigor
4b1ba704ec
[KEYCLOAK-992] - Token retrieval from brokered idps.
2015-02-06 22:23:34 -02:00
pedroigor
99a457c5c1
[KEYCLOAK-996] - Allow application to select provider.
2015-01-30 14:02:53 -02:00
pedroigor
5fae76c7e4
[KEYCLOAK-883] - Adding tests for update profile. Removing old social related classes.
2015-01-29 16:05:00 -02:00
pedroigor
8fc6368202
[KEYCLOAK-883] - OIDC brokering tests.
2015-01-29 11:57:24 -02:00
Pedro Igor
f013796324
Merge pull request #938 from pedroigor/KEYCLOAK-883
...
[KEYCLOAK-883] - Initial tests for SAML brokering.
2015-01-29 09:11:39 -02:00
pedroigor
1960c608cd
[KEYCLOAK-883] - Initial tests for SAML brokering.
2015-01-29 00:04:02 -02:00
Bill Burke
fd20a25100
Merge remote-tracking branch 'upstream/master'
2015-01-28 17:09:59 -05:00
Bill Burke
ea3bba98aa
saml frontchannel logout
2015-01-28 17:09:13 -05:00
pedroigor
2065815627
[KEYCLOAK-883] - Model tests.
2015-01-27 23:53:56 -02:00
Stian Thorgersen
073b63de9e
Clear time offset after tests
2015-01-27 08:51:04 +01:00
mposolda
920249b3e8
Fixed test failures caused by uncleared Time offset
2015-01-26 17:07:35 +01:00
Stian Thorgersen
f31bece1b9
KEYCLOAK-980 Password reset is possible with expired link
2015-01-21 13:11:06 +01:00
Stian Thorgersen
e7a792f922
KEYCLOAK-983 Fix login after reset-password
2015-01-21 12:28:30 +01:00
Bill Burke
c5303df4fc
merge
2015-01-20 10:55:04 -05:00
Bill Burke
24de9e932f
??
2015-01-20 10:47:03 -05:00
Stian Thorgersen
981d50d082
Fix OAuthRedirectUriTest
2015-01-19 12:20:58 +01:00
Bill Burke
8b6a3ad8e4
Merge remote-tracking branch 'upstream/master'
2015-01-16 18:58:01 -05:00
Bill Burke
a0ba6d2c16
saml redirect logout 1st step
2015-01-16 18:57:33 -05:00
Bill Burke
ef2698936b
Merge pull request #919 from pedroigor/KEYCLOAK-884
...
[KEYCLOAK-884] - OpenID Connect UserInfo Endpoint.
2015-01-16 14:28:30 -05:00
pedroigor
4f432775ed
[KEYCLOAK-884] - OpenID Connect UserInfo Endpoint.
2015-01-16 15:45:27 -02:00
Stian Thorgersen
ef0201718f
Fix OAuthRedirectUriTest
2015-01-16 13:22:12 +01:00
Stian Thorgersen
bf6c46da1c
KEYCLOAK-962 Changed access token request to use redirect_uri from initial request instead of the resolved redirect_uri
2015-01-16 11:01:03 +01:00
mposolda
d928c26e27
KEYCLOAK-539 Fuse adapter. OSGI bundling. OSGI headers in keycloak adapter maven artifacts. Rename package in jetty-core
2015-01-15 19:02:45 +01:00
Stian Thorgersen
29b8c2c924
KEYCLOAK-949 Disabled user with wrong credentials receive wrong error message
2015-01-14 10:10:53 +01:00
Stian Thorgersen
abd5967be3
KEYCLOAK-957 Access Token Request does not verify redirect_uri
2015-01-14 09:59:21 +01:00
Michael Gerber
3be74cda30
check if email is null
2015-01-14 09:18:05 +01:00
pedroigor
fa2533ed11
[KEYCLOAK-883] - Initial changes.
2015-01-13 00:58:19 -02:00
mposolda
fff8ae9f8a
KEYCLOAK-942 Incorrect condition in ResourceAdminManager could cause global logout
2015-01-08 11:09:11 +01:00
Bill Burke
110783ff2f
Merge remote-tracking branch 'upstream/master'
2015-01-07 19:23:47 -05:00
Bill Burke
795b1d2893
saml persistent and transient id support
2015-01-07 19:23:33 -05:00
pedroigor
c4892428ae
[KEYCLOAK-928] - Validate duplicated emails when updating profile.
2015-01-07 11:09:40 -02:00
Michael Gerber
181c1c8b5b
add error event if mail can not be send
2015-01-06 13:02:27 +01:00
Stian Thorgersen
45a1f4361e
Add test
2015-01-05 14:34:08 +01:00
Stian Thorgersen
628437c146
KEYCLOAK-760 OAuth2 refresh token expiration date
2015-01-05 10:50:50 +01:00
Stian Thorgersen
f97b71c207
KEYCLOAK-903
...
No client session for direct grant
2014-12-30 13:28:08 +01:00
Stian Thorgersen
a367473386
KEYCLOAK-902 State should not be required
2014-12-30 10:38:08 +01:00
Stian Thorgersen
ebf85cf04b
Add test to add/remove RequiredAction to UserTest
2014-12-29 08:56:23 +01:00
Bill Burke
ec9ce6ef2f
error page adapter support
2014-12-23 16:33:08 -05:00
Bill Burke
e39ea2adaf
remove redundant tests
2014-12-22 16:06:19 -05:00
Bill Burke
8a1b7e39af
RESTEASY-901
2014-12-22 15:59:25 -05:00
Michael Gerber
3be930f6cf
Not required authentication test cases
2014-12-21 15:32:36 +01:00
Bill Burke
28a56289d9
Merge pull request #897 from patriot1burke/master
...
saved requests
2014-12-17 22:29:46 -05:00
Bill Burke
08be04b337
saved requests
2014-12-17 22:29:18 -05:00
mposolda
fbe26e28f1
Minor improvements/fixes in documentation
2014-12-16 14:04:04 +01:00
Bill Burke
82c3e4c1bc
adapter testsuite port and adapter fixes
2014-12-02 14:38:33 -05:00
Stian Thorgersen
e069f303a4
Added full scope to app in JaxrsBasicAuthTest
2014-12-01 13:39:19 +01:00
objectiser
8e01f8ecf1
KEYCLOAK-861 Support basic authentication against user credentials managed by KeyCloak.
2014-12-01 11:43:19 +00:00
mposolda
96d430cd7e
Fix CookieTokenStoreAdapterTest sometimes failing
2014-11-21 17:34:30 +01:00
Bill Burke
5c6dd8e0c3
temp fix for contributor SAML PR
2014-11-11 22:09:38 -05:00
mposolda
279a70bcb8
Fix failing tests
2014-11-11 15:17:32 +01:00
mposolda
07fd8ae9d7
KEYCLOAK-836 Added OsgiJaxrsBearerTokenFilterImpl to be used in fuse
2014-11-10 22:16:20 +01:00
mposolda
a94ab5883d
KEYCLOAK-835 Move AdapterConstants to different package
2014-11-10 22:16:20 +01:00
mposolda
d1e819cef1
KEYCLOAK-836 Refactoring of JaxrsBearerTokenFilter to work with both resteasy and Apache CXF. Added test
2014-11-10 22:16:14 +01:00
Stian Thorgersen
e7625c2bb1
KEYCLOAK-820 Don't expose realm private key through admin endpoints
2014-11-05 15:34:56 +01:00
Stian Thorgersen
91529ef6fd
Fix MultiTenancyTest
2014-11-04 13:05:44 +01:00
mposolda
9ae8d6aee1
Fix LDAP test for case-insensitive databases like MySQL
2014-11-03 21:35:12 +01:00
mposolda
229391d48b
Fix servlet logout on wildfly/undertow
2014-11-03 12:59:40 +01:00
Stian Thorgersen
488351e46f
Merge pull request #828 from stianst/master
...
KEYCLOAK-787 Clicking back to login after sending password reset email f...
2014-10-31 14:05:31 +01:00
Stian Thorgersen
bb2de4dc59
KEYCLOAK-787 Clicking back to login after sending password reset email fails
2014-10-31 13:59:56 +01:00
Stian Thorgersen
8d1548bd4d
Merge pull request #826 from stianst/master
...
Fixes
2014-10-31 12:45:31 +01:00
Stian Thorgersen
9b0d5acb50
KEYCLOAK-704 KEYCLOAK-768 Improvements to access code generation
2014-10-31 12:45:03 +01:00
mposolda
78a1df693c
KEYCLOAK-808 Issue when DB search is case-sensitive byt LDAP search is not
2014-10-31 10:27:55 +01:00
Stian Thorgersen
8adad9dddf
KEYCLOAK-806
...
Increase defaults for 'SSO Session Idle Timeout'
2014-10-31 09:41:21 +01:00
mposolda
a6ca925340
KEYCLOAK-788 Ensure expired ClientSessions removed during UserSessionProvider.removeExpiredUserSessions
2014-10-30 23:02:48 +01:00
Juraci Paixão Kröhling
8e764e642f
KEYCLOAK-779
...
Adapter multi-tenancy support
2014-10-30 16:54:26 +01:00
Bill Burke
5e8ca5a140
Merge pull request #807 from patriot1burke/master
...
add tomcat7 adapter test
2014-10-28 18:41:57 -04:00
Bill Burke
da27f43573
add tomcat7 adapter test
2014-10-28 18:41:35 -04:00
Stian Thorgersen
6e4785e74c
KEYCLOAK-777 No login event for social login
2014-10-28 19:56:41 +01:00
Stian Thorgersen
4eb60a169b
KEYCLOAK-728
2014-10-28 19:48:11 +01:00
Bill Burke
cb110d095f
conflict
2014-10-28 11:55:52 -04:00
Bill Burke
e3609cc85b
app importer
2014-10-28 11:54:58 -04:00
mposolda
a538e25b9d
KEYCLOAK-702 - Added AdapterTokenStore spi. Possibility to save account info to cookie as alternative to http session
2014-10-27 16:20:01 +01:00
Bill Burke
ce76270ad8
saml key refactor
2014-10-24 10:58:32 -04:00
Bill Burke
f38c6d3412
config optiosn
2014-10-22 14:00:56 -04:00
Bill Burke
d3375962ad
signature algorithm support
2014-10-21 10:35:39 -04:00
Bill Burke
e0730e5517
Merge remote-tracking branch 'upstream/master'
2014-10-21 09:05:37 -04:00
Bill Burke
c1694a2791
more saml unit tests
2014-10-21 09:05:24 -04:00
Stian Thorgersen
2c218c9aa0
KEYCLOAK-711 HttpServletReqest.logout() does not work with relative URI
2014-10-21 12:36:20 +02:00
Stian Thorgersen
dd4b2f811b
KEYCLOAK-710 Ignore missing roles in access-code
2014-10-21 11:15:35 +02:00
Bill Burke
e2de6edff8
saml unit tests
2014-10-20 16:31:00 -04:00
Bill Burke
d0ce72167d
merge
2014-10-17 16:54:25 -04:00
Bill Burke
c91ecc3033
saml redirect binding
2014-10-17 16:48:45 -04:00
mposolda
7d8f265789
KEYCLOAK-759 dynamic registration of managementUrls in cluster
2014-10-17 21:51:46 +02:00
Stian Thorgersen
01507fc1dc
KEYCLOAK-747 Fix onUserRemoved in user session providers
2014-10-17 13:35:07 +02:00
Bill Burke
3e5afcde9e
saml encryption
2014-10-16 11:44:51 -04:00
Bill Burke
4750b22b6d
saml signatures
2014-10-16 09:14:04 -04:00
Bill Burke
8fbc8fc736
Merge remote-tracking branch 'upstream/master'
2014-10-14 18:39:08 -04:00
Bill Burke
7760887ac1
app cert support, bug fixes
2014-10-14 18:38:48 -04:00
Stian Thorgersen
94de88ef3b
KEYCLOAK-736 Database migration support"
2014-10-14 10:07:41 +02:00
Bill Burke
deffa9b4e1
oauth id in admin console
2014-10-10 16:55:57 -04:00
mposolda
2445575a04
Test for KEYCLOAK-741
2014-10-09 12:30:30 +02:00
mposolda
7e7406ddb7
KEYCLOAK-743 Stateless session mgmt. Drop statistics for adapters.
2014-10-08 22:18:10 +02:00
Bill Burke
13a2108846
undertow slash redirect problem
2014-10-08 09:45:49 -04:00
Bill Burke
5f1e6f3a23
merge
2014-10-07 18:17:44 -04:00
Bill Burke
6d5ab0f66b
saml backchannel logout
2014-10-07 18:06:02 -04:00
mposolda
6522455b44
KEYCLOAK-738 Possible NPE in MemUserSessionProvider.getUserSessions
2014-10-07 19:19:46 +02:00
Bill Burke
e01424b815
Merge pull request #741 from patriot1burke/master
...
saml basic
2014-10-04 22:15:56 -04:00
Bill Burke
e3a3933390
saml basic
2014-10-04 21:27:48 -04:00
Stian Thorgersen
0d5be568f8
KEYCLOAK-722 Refreshing token throws RuntimeException if realm keys have changed
2014-10-03 13:23:21 +02:00
Stian Thorgersen
d6f030a05a
KEYCLOAK-662 NPE when using direct grant API with email as username
2014-10-03 12:10:52 +02:00
Stian Thorgersen
a5aa1da841
Add login test with multiple sessions for same user
2014-10-03 10:41:04 +02:00
mposolda
e6121f301f
KEYCLOAK-732 AuthenticationManager.logout should logout just current userSession
2014-10-02 22:52:44 +02:00
Bill Burke
cbc383d494
finish protocol refactoring
2014-10-01 14:19:59 -04:00
Bill Burke
4b399fe05a
login protocol abstraction
2014-10-01 10:01:42 -04:00
Bill Burke
e32f73880f
Merge remote-tracking branch 'upstream/master'
2014-09-30 15:58:39 -04:00
Bill Burke
63b65c933b
token service refactoring
2014-09-30 15:58:20 -04:00
Stian Thorgersen
f026772c87
KEYCLOAK-725 Add realm update to the Admin Client
2014-09-30 15:43:18 +02:00
Stian Thorgersen
1d4e842cc0
Fixes to Mongo user session provider
2014-09-30 14:24:49 +02:00
Stian Thorgersen
209fdc1255
Fix UserSessionProviderTest.testGetByClientPaginated
2014-09-30 10:59:37 +02:00
Stian Thorgersen
bdeb59f87e
Fixes to UserSessionProviderTest
2014-09-30 10:22:33 +02:00
Stian Thorgersen
99c73a9cc7
Clustering support
2014-09-30 09:40:20 +02:00
Bill Burke
fc867e59ea
action url refactor
2014-09-29 16:57:58 -04:00
Bill Burke
75a3093dda
login refactor phase 2, still more to do
2014-09-29 16:15:33 -04:00
Bill Burke
67f10bee24
Merge remote-tracking branch 'upstream/master'
2014-09-29 09:56:37 -04:00
Bill Burke
524b423733
ClientSession everywhere refactor phase1
2014-09-26 17:44:33 -04:00
Stian Thorgersen
f2e97ff9d6
Add test to add/remove attributes to user through admin endpoints
2014-09-25 19:35:57 +02:00
mposolda
5352872b4b
Use KEYCLOAK_REMEMBER_ME as hint to prefill login form. Change lifespan of KEYCLOAK_IDENTITY to maxSsoSessionLifespan
2014-09-16 22:09:27 +02:00
mposolda
6f173d4554
KEYCLOAK-678 Preserve form values in account mgmt after error
2014-09-11 20:54:48 +02:00
mposolda
649a40f58c
KEYCLOAK-676 Validate email address format during registration or account mgmt
2014-09-11 20:05:00 +02:00
Stian Thorgersen
280cbf2174
KEYCLOAK-680 Add/remove social-links through admin api
2014-09-11 12:09:55 +02:00
Stian Thorgersen
09860f1ee1
Fix test
2014-09-09 11:01:24 +02:00
Stian Thorgersen
d5c5cc8321
Fix AccountTest.viewLog test
2014-09-03 08:53:02 +02:00
mposolda
1f0dcbddbe
KEYCLOAK-659 Export current version number during export
2014-09-02 17:06:58 +02:00
mposolda
44937d33ad
Use stronger passwords in LDAP tests due to password policy on MSAD2012
2014-09-02 12:43:14 +02:00
Stian Thorgersen
0763d0d9d6
Merge pull request #660 from stianst/master
...
KEYCLOAK-658 Fix searching for users
2014-09-02 10:02:08 +02:00
Stian Thorgersen
8c8c44e50f
KEYCLOAK-658 Fix searching for users
2014-09-02 10:01:44 +02:00
mposolda
e52811ac28
Added more props to LDAPEmbeddedServer to allow automated test with ActiveDirectory
2014-09-01 20:43:14 +02:00
Stian Thorgersen
31b0f5543f
Fixes
2014-08-29 17:11:18 +02:00
Stian Thorgersen
32703d19a0
Fix test
2014-08-29 08:59:57 +02:00
Stian Thorgersen
b9d0f64f74
Added password token to use inplace of plain-text password for totp
2014-08-28 13:51:55 +02:00
Stian Thorgersen
3bfe3d256e
Rename audit to events
2014-08-28 10:56:37 +02:00
mposolda
fb18004c1d
KEYCLOAK-643 Handle flows with adding user with existing username or email in federation providers
2014-08-27 12:19:23 +02:00
mposolda
fc0889cd2e
KEYCLOAK-644 Searching by email from LDAP doesn't work
2014-08-26 20:24:25 +02:00
mposolda
b3b480c25f
Display proper error message if LDAP-linked user couldn't be deleted due to read-only mode
2014-08-26 19:10:48 +02:00
mposolda
fd9d2ba4d5
Handle exceptions and UI errors when user is read only. Some sync issues
2014-08-26 12:54:05 +02:00
mposolda
6c7d0f27a7
More tooltips for LDAP and generic federation. Minor fixes
2014-08-25 16:28:52 +02:00
Bill Burke
e99afec7ec
import console from export
2014-08-21 17:17:09 -04:00
Bill Burke
e5d5276135
race
2014-08-20 14:50:28 -04:00
Bill Burke
74cd23b331
fix mongo
2014-08-19 14:49:15 -04:00
Bill Burke
faf18dfdfd
fix cookie parsing problem
2014-08-18 18:36:36 -04:00
Bill Burke
2dc32fb8c9
fix menu error
2014-08-18 18:06:23 -04:00
Bill Burke
5dca2a3588
expanded token service coverage
2014-08-14 21:01:05 -04:00
Bill Burke
cfee00d4c5
fix relative uri problem
2014-08-14 11:01:04 -04:00
mposolda
8419e5883d
Ensure that transaction.isActive() is false after commit or rollback
2014-08-12 18:58:37 +02:00
mposolda
f0b66a2241
Admin console UI for sync of users from LDAP. Sync fixes
2014-08-12 18:12:27 +02:00
Stian Thorgersen
9d6e450c05
Fix test
2014-08-12 12:13:59 +01:00
Stian Thorgersen
f95418dfc9
KEYCLOAK-592 Display login form with error message if trying to login with social provider where email already exists
2014-08-12 12:06:13 +01:00
Bill Burke
7c97e02715
X-Frame-Options, Content-Security-Policy
2014-08-11 17:45:01 -04:00
mposolda
d699404ce7
Support for periodic users sync
2014-08-10 23:23:50 +02:00
mposolda
ee79747cb6
Sync - first iteration
2014-08-10 23:22:35 +02:00
Bill Burke
9aa6b4cbfa
optimize imports
2014-08-10 12:17:45 -04:00
Bill Burke
687e497455
test searchForUserByAttributes
2014-08-10 11:36:02 -04:00
Bill Burke
dc4e8603d7
change logout behavior
2014-08-08 18:33:37 -04:00
mposolda
1f12a2d67b
Adding LDAPUtils. Bit refactoring LDAP test for easier testing with various servers
2014-08-08 10:40:34 +02:00
mposolda
c6af13c8cc
Fix testsuite hangs on MySQL and PostgreSQL due to uncommited transactions
2014-08-07 20:38:20 +02:00
mposolda
5673fb34b1
Fix adding social link in mongo. Fixed export/import of federationProviders. Enhanced ExportImportTest
2014-08-07 17:33:48 +02:00
mposolda
76db33829b
KEYCLOAK-600 Users shouldn't be registered with Federation Provider on an import
2014-08-07 12:38:56 +02:00
Bill Burke
99e6f0edad
delete fed provider
2014-08-06 20:38:30 -04:00
Bill Burke
32a19563a5
KEYCLOAK-547
2014-08-06 19:15:52 -04:00
Bill Burke
aff32f69bb
version
2014-08-06 15:44:50 -04:00
Bill Burke
ea0ceeb65d
Merge pull request #589 from patriot1burke/master
...
app full scope
2014-08-04 16:26:51 -04:00
Bill Burke
731d75c756
app full scope by default
2014-08-04 16:04:10 -04:00
mposolda
5edb84ccfb
Ensure that displayName is persisted. Add 'user' to ActiveDirectory classes
2014-08-04 16:42:48 +02:00
mposolda
46a0caf2e0
Upgrade to latest picketlink. Fix LDAP configuration according to that
2014-08-04 13:58:52 +02:00
Bill Burke
101a72cd65
remove AuthenticationProvider/Link
2014-08-01 18:03:48 -04:00
Bill Burke
c9851f1c05
add HttpServletRequest.authenticate() test
2014-08-01 15:50:20 -04:00
Bill Burke
d1c5c55a61
switch to a get
2014-08-01 13:28:17 -04:00
Bill Burke
bdc31d9459
Merge remote-tracking branch 'upstream/master'
2014-08-01 13:18:46 -04:00
Bill Burke
f08c42a37e
token validation
2014-08-01 13:18:32 -04:00
Stian Thorgersen
6cbeeb1b1a
KEYCLOAK-591 Require SSL for all external requests by default
2014-08-01 13:52:04 +01:00
Bill Burke
9f6c206078
ldap edit mode
2014-07-31 17:28:48 -04:00
Bill Burke
a084695978
support registration ldap
2014-07-31 15:22:20 -04:00
Bill Burke
b72a7db6fe
federation display name
2014-07-31 10:51:04 -04:00
Bill Burke
d0dc75c06f
federation ui
2014-07-30 22:52:39 -04:00
Bill Burke
8ea0d19d2f
federation refactor
2014-07-30 16:01:54 -04:00
Stian Thorgersen
fcc4781e3a
Updated admin endpoints and console to use oauth client name/clientId to retrieve a oauth client
2014-07-30 14:10:25 +01:00
Stian Thorgersen
614c718304
KEYCLOAK-581 Add login_hint query param to login
2014-07-30 13:43:46 +01:00
Rodrigo Sasaki
e338f1af15
Admin REST client
2014-07-30 13:24:44 +01:00
Stian Thorgersen
2b012ff238
Fix test
2014-07-30 09:47:16 +01:00
Stian Thorgersen
02a59812e6
Added ClientSessionModel to UserSessionProvider
2014-07-29 16:10:41 +01:00
Bill Burke
3bb0842eae
federation iteration 2
2014-07-25 21:05:45 -04:00
Bill Burke
b1cd37814a
rename
2014-07-25 10:40:46 -04:00
Bill Burke
1b14444eba
rename FederationProvider to UserFederationProvider
2014-07-24 11:11:21 -04:00
Stian Thorgersen
b5835fc232
Added test to make sure password is verified with totp login
2014-07-24 14:15:02 +01:00
Stian Thorgersen
511cc483cb
Moved audit/tests and model/tests to testsuite
2014-07-24 13:49:15 +01:00
Bill Burke
43d08f2d05
federation iteration 1 complete
2014-07-23 17:05:49 -04:00
Stian Thorgersen
d6f5bf6cde
Moved rememberMe, usernameUsed fields from AccessCode to UserSessions. Change AccessCode to have a single action instead of a list of required actions, also used action for codes that needs user to grant permissions first. Finally removed expiration time on access code and use timestamp directly
2014-07-23 15:58:09 +01:00
Stian Thorgersen
0580c2223b
KEYCLOAK-567 Added server-dep-min and server-dep-all poms
2014-07-22 14:10:38 +01:00
Stian Thorgersen
b196d0dded
Remove access token from access code, and create token when code is exchanged for token
2014-07-22 09:37:21 +01:00
mposolda
3514d5cd78
Fix MySQL and PostgreSQL testsuite (was caused by uncommited transaction)
2014-07-22 07:53:05 +02:00
Stian Thorgersen
9ff4947abd
Merge pull request #540 from mposolda/master
...
Update DB profiles. Fix ExportImportTest to not clash with other tests
2014-07-21 14:18:04 +01:00
Stian Thorgersen
213b685b43
KEYCLOAK-569 Check application roles for scope
2014-07-21 13:50:27 +01:00
mposolda
42df327104
Update DB profiles. Fix ExportImportTest to not clash with other tests
2014-07-21 08:48:25 +02:00
Stian Thorgersen
85621bdd9f
KEYCLOAK-566 Configure db in keycloak-server.json instead of persistence.xml
2014-07-18 11:21:52 +01:00
mposolda
3dff4afe83
Export/import improvements and fixes
2014-07-17 21:31:33 +02:00
Stian Thorgersen
f00957ec3a
Commented out test in ExportImportTest that breakes the other tests
2014-07-17 11:57:33 +01:00
mposolda
3c99350247
Fix testsuite to use mongo for realms,users and audit when keycloak.realm.provider=mongo
2014-07-17 11:05:51 +02:00
mposolda
0a15f873af
Minor improvement in AbstractKeycloakRule.stopServer()
2014-07-17 10:14:35 +02:00
mposolda
8714193c97
Fix ExportImportTest to pass on windows
2014-07-16 20:00:18 +02:00
mposolda
1aff8af336
Enable ExportImportTest
2014-07-16 19:43:47 +02:00
Bill Burke
a5593469ae
rename ModelProvider->RealmProvider
2014-07-15 15:44:50 -04:00
Bill Burke
484a4c1454
user provider refactor complete
2014-07-15 15:25:06 -04:00
Bill Burke
ff86bdc35f
userprovider split
2014-07-15 12:11:12 -04:00
mposolda
726ce08700
More cleanup and removed export-import-impl module
2014-07-15 16:43:55 +02:00
mposolda
c14840a4c0
More cleanup after rebase
2014-07-15 14:44:38 +02:00
mposolda
24a492ffe0
Export/import refactoring to use same representation as admin endpoints
2014-07-15 05:35:24 +02:00
Stian Thorgersen
3f68180ee7
KEYCLOAK-512 Pagination support for sessions
2014-07-14 11:49:59 +01:00
Stian Thorgersen
d625fb014c
Added JPA connection provider and added basic support for multiple transactions to KeycloakSession
2014-07-14 10:10:03 +01:00
Stian Thorgersen
86671a2354
Started UserSessionProvider
2014-07-10 16:48:25 +01:00
Stian Thorgersen
ad6d52cb0f
Removed model methods from KeycloakSession
2014-07-08 15:27:42 +01:00
Bill Burke
48a0e564b9
fix json file
2014-07-07 18:51:38 -04:00
Bill Burke
0758d89a59
Merge pull request #502 from mposolda/master
...
Changes in representations - adding role mappings under user representat...
2014-07-07 18:41:42 -04:00
Bill Burke
a1beff7d3d
admin rest api test
2014-07-07 18:37:30 -04:00
mposolda
ffc30b4c03
Changes in representations - adding role mappings under user representation
2014-07-07 22:48:53 +02:00
Bill Burke
df7aac01dd
fix delete realm
2014-07-07 14:59:51 -04:00
Bill Burke
e99a675c50
HttpServletRequest.logout()
2014-07-03 14:08:19 -04:00
Stian Thorgersen
9ba61af83b
Fix reset password test
2014-06-27 14:48:36 +01:00
Stian Thorgersen
34a1923d18
Refactor to prepar for splitting model
2014-06-27 09:39:06 +01:00
mposolda
b1cfab34fd
Support for test of LDAP connection and authentication
2014-06-24 10:03:14 +02:00
Bill Burke
c780918501
perf test fix
2014-06-20 17:15:16 -04:00
Bill Burke
f0d02f24b1
user cache
2014-06-20 17:06:56 -04:00
Bill Burke
d21a19925b
stateless access codes
2014-06-20 10:37:27 -04:00
Bill Burke
1eafb01c8d
keycloak-521
2014-06-16 11:59:27 -04:00
Bill Burke
c71fdc72c7
keycloak-518
2014-06-16 10:43:50 -04:00
Bill Burke
f50177996d
better fetch for role mappings
2014-06-16 10:15:53 -04:00
Bill Burke
ab87c03732
cache 1st iteration finished
2014-06-13 19:39:20 -04:00
Bill Burke
8eaf77b3c1
cache impl again
2014-06-13 19:05:05 -04:00
Bill Burke
cbea141a54
cache impl
2014-06-13 17:17:45 -04:00
Bill Burke
211a279248
Merge remote-tracking branch 'upstream/master'
2014-06-12 11:11:27 -04:00
Bill Burke
0dd06e3343
model refactor for caching
2014-06-10 18:50:08 -04:00
mposolda
0bfcbdb359
Support for Active Directory and RHDS
2014-06-09 16:20:19 +02:00
Bill Burke
2f3c8bf079
cache refactor
2014-06-06 15:12:58 -04:00
Stian Thorgersen
5f6687ec62
KEYCLOAK-244 Social should be stateless
2014-06-05 10:09:17 +01:00
Bill Burke
9410adf9ce
fix deadlocks
2014-06-02 21:33:43 -04:00
Stian Thorgersen
eb47d43497
For installed app urn redirect to a page instead of returning the html, this is to prevent NPE if page is refreshed
2014-05-21 10:32:03 +01:00
Bill Burke
79828ddc78
Merge pull request #409 from patriot1burke/master
...
fix urn redirect uri
2014-05-20 16:15:40 -04:00
Bill Burke
fcca9dd90a
fix urn redirect uri
2014-05-20 16:15:13 -04:00
Stian Thorgersen
b09e2f697e
Email audit listener
2014-05-20 17:04:17 +01:00
Bill Burke
b3dd349342
check redirect uri exists in token service
2014-05-20 11:38:35 -04:00
Stian Thorgersen
cc97265c06
Add realm option to enable/disable Resource Owner Password Credentials Grant
2014-05-20 11:32:22 +01:00
Bill Burke
b5aa9efefb
fix remove expired sessions
2014-05-19 18:53:28 -04:00
Bill Burke
95f56e2e62
fix removeexpired sessions
2014-05-19 18:33:54 -04:00
Stian Thorgersen
a3d08e7191
Added theme support to emails
2014-05-19 17:34:58 +01:00
Stian Thorgersen
855269f35d
Added 'keycloak-server.json' for configuring the server
...
Added SPI interface to detect SPI's
Converted Model to SPI/Provider to be loaded through ProviderSessionFactory
2014-05-16 17:33:22 +01:00
Bill Burke
67e3e60f28
test sso idle, logout on idle
2014-05-15 23:10:14 -04:00
Bill Burke
27efd3c0a4
ssoSessionIdleTimeout refactor
2014-05-15 13:53:28 -04:00
Bill Burke
07dbb7d7b7
check ssl required in adapter
2014-05-14 15:23:45 -04:00
Bill Burke
0e0dfb60e0
composite role mapping listing
2014-05-14 10:37:50 -04:00
Stian Thorgersen
f4f9b1e323
KEYCLOAK-431 View open sessions, and logout all sessions, through account management
2014-05-14 11:56:28 +01:00
Stian Thorgersen
6f0b12174c
KEYCLOAK-432 Added user sessions
2014-05-09 11:52:45 +01:00
Bill Burke
2d949b63b5
keycloak.js login for admin
2014-05-08 19:55:57 -04:00
Bill Burke
f987d331b7
/rest removal and pom fixes
2014-05-06 20:43:01 -04:00
Bill Burke
64f591769a
remove /rest from RealmsResource
2014-05-06 20:21:49 -04:00
Bill Burke
7ff2c77a82
relative uri tests and fixes
2014-05-02 12:30:08 -04:00
Stian Thorgersen
38e6bde07e
KEYCLOAK-415 Make sure query params are included when navigating in acct mngmt
2014-04-30 11:03:13 +01:00
Stian Thorgersen
646e762cbe
Ensure user loginName and email unique within realm
2014-04-29 17:15:28 +01:00
Stian Thorgersen
364998b34b
Enforce that realm name is unique in model
2014-04-29 10:43:27 +01:00
Bill Burke
541e865fe8
brute force fixes
2014-04-23 17:55:13 -04:00
Bill Burke
2b8d2288fb
more brute force detection
2014-04-14 18:58:45 -04:00
mposolda
d8937b11cf
Reenable AuthProvidersIntegrationTest.registerUserLdapSuccess. Add variable sleep after undertow stop in testsuite (some windows envs have issues when server is not fully stopped)
2014-04-10 10:29:13 +02:00
Bill Burke
cdc35d99bc
cleanup
2014-04-09 22:34:36 -04:00
mposolda
5aefe52ccc
Refactoring of Authentication SPI and Picketlink to use ProviderSessions
...
Refactoring of ProviderSessionFactory to support dependencies between components
Calling lifecycle methods
Removing KeycloakRegistry
2014-04-09 00:34:01 +02:00
mposolda
c8c4cfbaae
Restructure of authentication module and packages
2014-04-09 00:06:04 +02:00
Stian Thorgersen
354cf02aaa
Fix audit mongo tests
2014-04-08 12:43:01 +01:00
Stian Thorgersen
8ca46fa35d
Audit configurable through admin console
2014-04-07 17:58:52 +01:00
mposolda
58083fbb96
Hide password tab in acct management if passwordUpdate not supported
2014-04-04 23:47:12 +02:00
mposolda
ad068a300b
Basic support for registration of new users in AuthenticationProvider
2014-04-04 19:53:02 +02:00
Stian Thorgersen
88ddc8ebca
Added audit to admin console
2014-04-04 15:16:08 +01:00
Stian Thorgersen
3433227fa7
Added audit log to account mngmt
2014-04-03 16:27:31 +01:00
Stian Thorgersen
e6067c915d
Added ProviderSession to requests
2014-04-03 16:27:31 +01:00
mposolda
25bf6d63b4
Refactoring of AuthenticationProvider SPI
2014-04-02 17:27:07 +02:00
mposolda
05cd8a82e5
Storing default AuthenticationProvider at the realm creation time
2014-04-02 17:17:33 +02:00
Stian Thorgersen
21239fbab9
Added Mongo audit provider
2014-04-01 18:00:35 +01:00
Stian Thorgersen
225307e855
KEYCLOAK-389 Added AuditListener SPI
...
KEYCLOAK-390 Added JBoss Logging AuditListener
KEYCLOAK-391 Audit Token events
2014-03-31 17:35:14 +01:00
mposolda
129eb6a3be
Fix LDAP tests and teststuite on windows. Set initial password directly in code as import from LDIF is problematic on windows
2014-03-27 16:20:03 +01:00
mposolda
ab02dea902
Fixes in AuthenticationProvider. Fixing testsuite
2014-03-25 15:05:08 +01:00
mposolda
793f69d4b6
Authentication SPI. Implementations based on Picketlink+LDAP, model and external model (other realm). Added KeycloakRegistry
2014-03-24 23:11:11 +01:00
Stian Thorgersen
702ae0307e
Fixes to account referrer to allow configurable referrer uri based on app redirect uri
2014-03-19 16:52:41 +00:00
Stian Thorgersen
331ab71427
KEYCLOAK-380 Added OAuth2Constants
2014-03-15 10:43:52 +00:00
Stian Thorgersen
f9aaa16cfe
KEYCLOAK-378 KEYCLOAK-379 KEYCLOAK-381 Fix refresh token if token contains app roles. Changed long time fields in AccessCode and AccessToken to int
2014-03-15 10:15:10 +00:00
Bill Burke
466b6762d9
further adapter tests
2014-03-14 11:21:32 -04:00
Bill Burke
3f1b7a0335
adapter testing
2014-03-13 21:47:46 -04:00
Stian Thorgersen
0214827492
KEYCLOAK-364 Show access denied if social login is cancelled
2014-03-12 09:21:11 +00:00
Stian Thorgersen
6dc156712e
KEYCLOAK-359 Add user friendly username for social links
2014-03-12 08:52:47 +00:00
Bill Burke
dd292c1d52
remove scope support for now part 2
2014-03-06 10:26:46 -05:00
Bill Burke
801ef3281a
remove scope support for now
2014-03-06 09:59:27 -05:00
Bill Burke
599faa3cb5
public clients
2014-03-05 20:26:27 -05:00
Stian Thorgersen
60bb05e6ca
Added Config to centralize system properties used to configure KC
2014-03-05 15:20:53 +00:00
Stian Thorgersen
0219aa1e4c
Added support for any port with http://localhost redirect uri
2014-03-05 12:54:57 +00:00
Stian Thorgersen
87aaaf0b06
Started support for installed applications
2014-03-03 12:58:16 +00:00
Bill Burke
f8da693fd0
move secret to clientmodel
2014-02-27 10:59:47 -05:00
Bill Burke
42d30a5a70
rename scope rep username to client
2014-02-26 22:23:04 -05:00
Bill Burke
48d39bf977
Use ClientModel wherever possible
2014-02-26 22:04:57 -05:00
Bill Burke
c02d532001
refactor model
2014-02-26 19:25:42 -05:00
Stian Thorgersen
9a73936002
KEYCLOAK-292 Fine-grained admin control
2014-02-25 12:53:36 +00:00
Bill Burke
01ddafa83a
central login timeouts, rememberme framework
2014-02-22 21:52:29 -05:00
Bill Burke
3e88cb3b76
logout
2014-02-22 20:40:06 -05:00
Bill Burke
97dd7470ce
rename tokenLifespan to accessTokenLifespan
2014-02-21 12:12:54 -05:00
Bill Burke
e583dc60ae
Merge remote-tracking branch 'upstream/master'
2014-02-21 12:02:36 -05:00
Bill Burke
9607acdb6a
refactor token creation
2014-02-21 12:02:24 -05:00
Stian Thorgersen
05bd92d765
KEYCLOAK-286 Allow login with username or email. KEYCLOAK-287 Remove recover username as we now support login with email
2014-02-21 15:25:55 +00:00
Bill Burke
9442601e42
rename some classes
2014-02-21 10:16:12 -05:00
Stian Thorgersen
9ce8e16063
KEYCLOAK-284 Subject in token is now user id instead of username
2014-02-21 09:48:43 +00:00
Bill Burke
6794166b58
tokens/access/codes now uses basic auth
2014-02-20 17:19:51 -05:00
mposolda
cec57b169e
Fix all tests with MySQL. Removing nested transactions
2014-02-18 11:22:19 +01:00
Stian Thorgersen
695eb05d66
Added a SSO test
2014-02-17 14:32:02 +00:00
Stian Thorgersen
0f3b836005
Updated account themes to use patternfly
2014-02-17 12:17:06 +00:00
Stian Thorgersen
01bb835285
Updated login forms to use Patternfly styles
2014-02-14 17:38:04 +00:00
Bill Burke
0cdd5e857e
use secrets
2014-02-13 18:36:41 -05:00
Bill Burke
9390e90b85
more subsystem work
2014-02-13 10:43:29 -05:00
Stian Thorgersen
564223b30a
Fix test
2014-02-09 15:54:52 +00:00
Bill Burke
d2ad6349ba
remove setComposite
2014-02-04 18:41:36 -05:00
Bill Burke
4e66a3bf81
Merge remote-tracking branch 'upstream/master'
2014-02-04 10:09:25 -05:00
Bill Burke
92091d9474
composite tests
2014-02-04 10:09:09 -05:00
Stian Thorgersen
97897cab1d
KEYCLOAK-15 Customize login and registration forms
2014-02-04 11:45:24 +00:00
Bill Burke
8505cc612a
composite representations
2014-02-03 17:21:56 -05:00
Bill Burke
1543963c9f
composite tests
2014-01-30 20:31:44 -05:00
Bill Burke
6a5994c3e2
composite roles 2
2014-01-29 23:28:08 -05:00
Bill Burke
bb5991239b
composite roles
2014-01-29 20:19:32 -05:00
Stian Thorgersen
06c3a6ea30
KEYCLOAK-271 Check password policy when recovering password through email
2014-01-24 14:48:58 +00:00
Stian Thorgersen
070c0ddba4
Renamed registration to default roles, add default roles to all users when they are created
2014-01-17 10:03:13 +00:00
Stian Thorgersen
c5366f1c81
KEYCLOAK-264 Remove option to enable/disable acct mngmt
2014-01-17 09:30:56 +00:00
Stian Thorgersen
dcfb83b0f2
KEYCLOAK-64 KEYCLOAK-246 Updated social to use update profile required action instead of registration form. Fixed Google provider
2014-01-16 12:52:46 +00:00
Bill Burke
b162190c7f
remove cookieLoginAllowed
2014-01-15 20:31:01 -05:00
Bill Burke
39b61728d6
change uri scheme
2014-01-13 17:07:36 -05:00
Stian Thorgersen
0a57ba026b
KEYCLOAK-180 Renamed JWT prn to sub
2014-01-10 10:22:58 +00:00
Stian Thorgersen
212aec8ae3
KEYCLOAK-235 Fix test
2013-12-18 16:58:31 +00:00
Bill Burke
6380dc3d1b
refactor out resteasy from adapters
2013-12-17 12:07:02 -05:00
Bill Burke
d22b6f8df7
factor out jwt/jose/jws
2013-12-16 11:19:46 -05:00
Bill Burke
d28b1ff98b
refactor core/adapter
2013-12-13 19:53:02 -05:00
Stian Thorgersen
145eab98d8
KEYCLOAK-221 Don't require username to recover password
2013-12-07 13:34:31 +00:00
Stian Thorgersen
cd8c8d52e8
KEYCLOAK-217 Add option to recover username
2013-12-07 13:18:06 +00:00
Stian Thorgersen
5415a878e8
KEYCLOAK-183 Don't show totp on main login form if totp is required by realm
2013-12-04 19:42:41 +00:00
Stian Thorgersen
eea812dfda
KEYCLOAK-190 KEYCLOAK-191 Fixed redirect uri's
2013-12-04 19:04:19 +00:00
Stian Thorgersen
a7b653de28
KEYCLOAK-185 Added cancel button to login form
2013-12-03 15:11:18 +00:00
Stian Thorgersen
7f499b2833
KEYCLOAK-186 Password policies
2013-12-03 12:53:26 +00:00
Stian Thorgersen
85eeb415e1
KEYCLOAK-181
...
Link back to application from account management pages
2013-11-28 13:48:30 +00:00
Bill Burke
799df520b8
realm import changes
2013-11-27 17:02:12 -05:00
Bill Burke
f79739f73e
oauth client
2013-11-26 15:39:57 -05:00
Stian Thorgersen
42d7e430ce
Fix adding all roles for an application to token, should be all roles associated with the user for that application
2013-11-18 14:16:37 +00:00
Stian Thorgersen
45424e5eba
Removed '*' role
2013-11-15 16:38:44 +00:00
Stian Thorgersen
158d1740b8
KEYCLOAK-72 and KEYCLOAK-158
2013-11-15 11:03:25 +00:00
Stian Thorgersen
fd2bfee7d9
Assign default roles to users when they register instead of directly to tokens
2013-11-08 17:51:44 +00:00
Stian Thorgersen
c477f7c04c
Fix tests
2013-11-08 12:33:39 +00:00
Bill Burke
2861ea0e96
nasty merge
2013-11-05 23:12:07 -05:00
Bill Burke
d04ca2c34f
jpa backend
2013-11-05 21:26:33 -05:00
Stian Thorgersen
15e9ed5149
Fix for jdk7
2013-11-05 10:02:32 +00:00
Stian Thorgersen
d083909136
Added support for default application roles. Added authz to account, user (or client if oauth) is required to have role manage-account to manage their account, this is a default role for the Account application.
2013-11-04 17:21:46 +00:00
Stian Thorgersen
c6f43baf0d
Allow oauth clients to ask for permission to view user profile, and manage user account
2013-11-03 16:14:15 +00:00
Stian Thorgersen
7f691b463c
KEYCLOAK-75 Retrieve user profile
2013-11-03 13:33:22 +00:00
Stian Thorgersen
85220ba054
Clean-up in social core
2013-11-01 16:41:16 +00:00
Stian Thorgersen
bb3a82f932
KEYCLOAK-116
...
Use social provider settings from realm
2013-10-22 14:05:56 +01:00
Stian Thorgersen
6e3dd959eb
KEYCLOAK-114 Use SMTP server settings from realm
2013-10-22 13:47:30 +01:00
vrockai
f7d6c41304
KEYCLOAK-112 - fixing various forms UI related issues
2013-10-21 18:23:53 +02:00
Stian Thorgersen
0c4df883fc
Fixed SocialLoginTest
2013-10-21 10:49:36 +01:00
Stian Thorgersen
c28f30915b
Added test for registration on first social login
2013-10-21 10:24:04 +01:00
Stian Thorgersen
d79d299073
Made account management an optional feature on a realm, and added login and logout to account management pages
2013-10-19 16:24:58 +01:00
vrockai
89ca52e960
KEYCLOAK-108 add warning alerts to req action forms
2013-10-18 14:45:28 +02:00
Stian Thorgersen
79c1230a9d
Added redirect uris to application
2013-10-17 15:25:06 +01:00
vrockai
5ec74be39e
KEYCLOAK-38 Adding OAuth Grant to forms
2013-10-16 19:04:02 +02:00
Bill Burke
ba082b0d6d
Merge remote-tracking branch 'upstream/master'
2013-10-16 08:27:06 -04:00
Bill Burke
13c75c02e1
bootstrap
2013-10-16 08:26:33 -04:00
vrockai
a67cff916d
KEYCLOAK-74 fix of a typo and css color issue
2013-10-14 10:57:24 +02:00
vrockai
23f2fb9125
KEYCLOAK-84 added totp test and better form feedback
2013-10-14 10:57:24 +02:00
mposolda
71cd9cffa4
Rebased MongoDB on top of latest master. Divide testsuite into integration and performance submodules
2013-10-10 10:43:54 +02:00