keycloak-scim

Author	SHA1	Message	Date
Martin Kanis	4be99772d8	KEYCLOAK-14967 Closing streams obtained from JPA layer	2020-08-25 21:47:24 +02:00
Pedro Igor	cb57c58b4b	[KEYCLOAK-14730] - Consent not working when using federation storage and client is displayed on consent screen	2020-08-19 10:08:21 +02:00
mhajas	ae39760a62	KEYCLOAK-14972 Add independent GroupProvider interface	2020-08-13 21:13:12 +02:00
vramik	6b00633c47	KEYCLOAK-14812 Create RoleStorageManager	2020-07-31 15:11:25 -03:00
vramik	bfa21c912c	KEYCLOAK-14811 Create RoleProvider and make it independent of ClientProvider and RealmProvider	2020-07-31 15:11:25 -03:00
Martin Idel	97400827d2	KEYCLOAK-14870: Fix bug where user is incorrectly imported Bug: SerializedBrokeredIdentityContext was changed to mirror UserModel changes. However, when creating the user in LDAP, the username must be provided first (everything else can be handled via attributes).	2020-07-29 11:33:41 +02:00
Martin Idel	bf411d7567	KEYCLOAK-14869: Fix nullpointer exception in FullNameLDAPStorageMapper Setting an attribute should be possible with a list containing no elements or a null list This can happen e.g. when creating users via idps using a UserAttributeStatementMapper. Fix this unprotected access in other classes too	2020-07-28 09:54:37 +02:00
Martin Kanis	feef5b4db2	KEYCLOAK-14220 Complement methods for accessing clients with Stream variants	2020-07-27 10:38:39 +02:00
keycloak-bot	afff0a5109	Set version to 12.0.0-SNAPSHOT	2020-07-22 14:36:15 +02:00
Hynek Mlnarik	8fae2997c9	KEYCLOAK-14553 Improve logging	2020-07-22 00:08:15 +02:00
Hynek Mlnarik	c566b46e8f	KEYCLOAK-14549 Make ClientProvider independent of RealmProvider Co-Authored-By: vramik <vramik@redhat.com>	2020-07-22 00:08:15 +02:00
Hynek Mlnarik	ac0011ab6f	KEYCLOAK-14553 Client map store Co-Authored-By: vramik <vramik@redhat.com>	2020-07-22 00:08:15 +02:00
Hynek Mlnarik	2c29c58af1	KEYCLOAK-14551 Map transaction	2020-07-22 00:08:15 +02:00
Pedro Igor	3631618b24	[KEYCLOAK-14646] - Changing cacheQuery	2020-07-21 14:22:09 +02:00
Pedro Igor	7501e42969	[KEYCLOAK-14646] - Improving permission resolution and evaluation	2020-07-21 14:22:09 +02:00
Jan Lieskovsky	969b09f530	[KEYCLOAK-13692] Upgrade to Wildfly "20.0.1.Final" and Infinispan "10.1.8.Final" Co-authored-by: Jan Lieskovsky <jlieskov@redhat.com> Co-authored-by: Marek Posolda <mposolda@redhat.com>	2020-07-20 22:15:08 +02:00
Yao	ec61c45da5	KEYCLOAK-4593: Moved NamedQuery to entity attribute to improve performance	2020-07-16 08:32:51 +02:00
vramik	71dca9e1b9	KEYCLOAK-14474 ConsentsTest fails intermittently on auth-server-undertow	2020-07-07 14:25:00 +02:00
Plamen Kostov	914b226d11	[KEYCLOAK-14282] Create additional filtering for GET /users endpoint for enabled/disabled users	2020-07-03 09:07:42 -03:00
Martin Idel	05b6ef8327	KEYCLOAK-14536 Migrate UserModel fields to attributes - In order to make lastName/firstName/email/username field configurable in profile we need to store it as an attribute - Keep database as is for now (no impact on performance, schema) - Keep field names and getters and setters (no impact on FTL files) Fix tests with logic changes - PolicyEvaluationTest: We need to take new user attributes into account - UserTest: We need to take into account new user attributes Potential impact on users: - When subclassing UserModel, consistency issues may occur since one can now set e.g. username via setSingleAttribute also - When using PolicyEvaluations, the number of attributes has changed	2020-06-25 14:50:57 +02:00
Hynek Mlnarik	8d8fae5def	KEYCLOAK-14533 Cleanup auth sessions immediately	2020-06-22 20:38:03 +02:00
Pedro Igor	d331091c5e	[KEYCLOAK-11330] - Quarkus tests	2020-06-17 17:20:55 +02:00
kurisumakise2011	bfde3ac080	When any liquibase exception is thrown and it catches in LiquibaseJpaUpdaterProvider update method inside try\catch block, an exception will be retrown like RuntimeException, but it will not be logged anywhere. It reaches platform.exit(t) and then only message of wrapped RuntimeException is propagated. But real caused can be noticed only via debug mode.	2020-06-15 14:01:07 +02:00
Pedro Igor	e16f30d31f	[KEYCLOAK-2343] - Allow exact user search by user attributes Co-authored-by: Hynek Mlnařík <hmlnarik@users.noreply.github.com>	2020-06-10 12:02:50 -03:00
Yoshiyuki Tabata	f03ee2ec98	KEYCLOAK-14145 OIDC support for Client "offline" session lifespan	2020-06-04 14:24:52 +02:00
Pedro Igor	0870041b0b	[KEYCLOAK-14335] - Not initializing entity associations and removing bi-directional ones Co-authored-by: Stian Thorgersen <stian@redhat.com> Co-authored-by: Hynek Mlnarik <hmlnarik@redhat.com>	2020-06-02 11:31:10 -03:00
Pedro Igor	bae802bcfa	[KEYCLOAK-11784] - Using Hibernate Extension	2020-05-14 11:10:46 +02:00
stianst	b04932ede5	KEYCLOAK-12414 Remove the need to specify defaults in config file	2020-05-13 09:02:29 -03:00
Álvaro Gómez Giménez	666832d1be	KEYCLOAK-13066 Include resourceType in ScopePermissionRepresentation	2020-05-12 17:11:35 -03:00
Michael Cooney	3291161954	KEYCLOAK-13818: Addressing performance issues with adding client scopes during realm creation. Removing redundant lookups by passing all scopes that need to be created at once.	2020-05-12 15:59:42 +02:00
Pedro Igor	19ab9ba53d	[KEYCLOAK-13829] - DML for DELETE is executed even though attribute does not exist	2020-05-06 14:04:06 +02:00
keycloak-bot	ae20b7d3cd	Set version to 11.0.0-SNAPSHOT	2020-04-29 12:57:55 +02:00
Pedro Igor	601bf8d63e	[KEYCLOAK-12735] - Improving queries and cache for authz	2020-04-29 03:58:03 +02:00
Yoshiyuki Tabata	874642fe9e	KEYCLOAK-12406 Add "Client Session Max" and "Client Session Idle" for OIDC	2020-04-28 15:34:25 +02:00
stianst	5b017e930d	KEYCLOAK-13128 Security Headers SPI and response filter	2020-04-28 15:28:24 +02:00
keycloak-bot	33314ae3ca	Set version to 10.0.0-SNAPSHOT	2020-04-21 09:19:32 +02:00
mposolda	b29810c923	KEYCLOAK-13306 Model fixes for check realm when lookup by ID (cherry picked from commit e40a62de31f6f5d326234314a9e285010665f707)	2020-04-21 08:19:50 +02:00
mposolda	6f62c0ed98	KEYCLOAK-13442 Backwards compatibility in users searching. searchForUser(String, RealmModel, int, int) is no longer called when searching users from the admin console	2020-03-27 13:29:55 +01:00
Pedro Igor	b812159193	[KEYCLOAK-10675] - Deleting an Identity Provider doesn't remove the associated IdP Mapper for that user	2020-03-26 11:41:17 +01:00
keycloak-bot	f6a592b15a	Set version to 9.0.4-SNAPSHOT	2020-03-24 08:31:18 +01:00
mposolda	5ddd605ee9	KEYCLOAK-13259	2020-03-24 05:32:41 +01:00
mposolda	3e82473a90	KEYCLOAK-13369 Not possible to move groups in admin console	2020-03-23 10:17:23 +01:00
vramik	86089d40b8	KEYCLOAK-13249 jpa-changelog-8.0.0.xml contains whitespace character	2020-03-18 09:36:23 +01:00
stianst	aece5d1b4c	KEYCLOAK-5162 Add index to even table	2020-03-17 17:05:21 +01:00
rmartinc	ad3b9fc389	KEYCLOAK-12579: LDAP groups duplicated during UI listing of user groups	2020-03-11 06:14:29 +01:00
Sebastian Schuster	99aba33980	KEYCLOAK-13163 Fixed searching for user with fine-grained permissions	2020-03-09 09:56:13 -03:00
vramik	701fb06de1	KEYCLOAK-12968 fix ClientTest.getAllClientsSearchAndPagination for postgresql	2020-03-05 06:40:03 +01:00
Dmitry Telegin	08319db242	KEYCLOAK-13167 - JDBC resource leak in custom migrations	2020-03-02 21:19:07 +01:00
Hynek Mlnarik	93f05f9291	KEYCLOAK-12450 Revert em.clear() call	2020-03-02 11:22:29 +01:00
Erik Jan de Wit	93a1374558	KEYCLOAK-11129 coalesce possible null values	2020-02-27 09:11:29 +01:00
keycloak-bot	d352d3fa8e	Set version to 9.0.1-SNAPSHOT	2020-02-17 20:38:54 +01:00
stianst	32fccfa99e	KEYCLOAK-10391 Fix lower-case column names in IdentityProviderMapperEntity, while they are upper-case in Liquibase scripts	2020-02-06 13:31:12 +01:00
Pedro Igor	199e5dfa3e	[KEYCLOAK-12909] - Keycloak uses embedded cache manager instead of container-managed one	2020-02-06 13:14:36 +01:00
Axel Messinese	b73553e305	Keycloak-11526 search and pagination for roles	2020-02-05 15:28:25 +01:00
Leon Graser	01a42f417f	Search and Filter for the count endpoint	2020-02-03 09:36:30 +01:00
Pedro Igor	658a083a0c	[KEYCLOAK-9600] - Find by name in authz client returning wrong resource	2020-02-03 08:57:20 +01:00
vramik	a83467047b	KEYCLOAK-9053 KEYCLOAK-9818 Increase column size for federated foreign keys	2020-01-31 21:24:55 +01:00
Marek Posolda	d46620569a	KEYCLOAK-12174 WebAuthn: create authenticator, requiredAction and policy for passwordless (#6649 )	2020-01-29 09:33:45 +01:00
Denis Richtárik	24c6e2ba08	KEYCLOAK-12742 Authentication -> WebAuthn Policy: Unable to delete the Acceptable AAGUIDS via the provided minus (-) button, once set (#6695 )	2020-01-24 11:55:20 +01:00
vramik	47d6d65bbb	KEYCLOAK-12724 - workaround hibernate bug - set explicitly dialect for oracle version greater than 12	2020-01-22 18:34:11 +01:00
Denis Richtárik	8d312d748b	KEYCLOAK-12163 Old account console: UI not updated after removing of TOTP (#6688 )	2020-01-22 12:26:28 +01:00
Tomas Kyjovsky	36eba64f07	KEYCLOAK-12674 Performance degradation after upgrade to Keycloak 8 (#6685 )	2020-01-21 19:43:25 +01:00
Marek Posolda	8d49409de1	KEYCLOAK-12183 Refactor login screens. Introduce try-another-way link. Not show many credentials of same type in credential selector (#6591 )	2020-01-14 21:54:45 +01:00
vramik	a2b3747d0e	KEYCLOAK-7014 - Correctly handle null-values in UserAttributes	2020-01-10 12:44:52 +01:00
Pedro Igor	dae212c035	[KEYCLOAK-12312] - Partial import of realm breaking access to client's service account roles	2020-01-09 10:06:32 +01:00
Douglas Palmer	106e6e15a9	[KEYCLOAK-11859] Added option to always display a client in the accounts console	2019-12-17 17:12:49 -03:00
vramik	c3d80651bf	KEYCLOAK-12473 Add possibility to specify length of event detail when storing to database	2019-12-17 17:15:50 +01:00
Cristian Schuszter	5c7ce775cf	KEYCLOAK-11472 Pagination support for clients Co-authored-by: stianst <stianst@gmail.com>	2019-12-05 08:17:17 +01:00
Pedro Igor	53f156ec83	[KEYCLOAK-11328] - Initial Server.x Clustering Configuration	2019-11-29 08:38:41 +01:00
Martin Kanis	685d49c693	KEYCLOAK-11967 Violation of UNIQUE KEY constraint SIBLING_NAMES (#6485 )	2019-11-26 16:00:50 +01:00
Andrei Arlou	f0ac2ad3ce	KEYCLOAK-12088 Use diamond operator for collections in module "model/infinispan"	2019-11-22 11:08:42 +01:00
Andrei Arlou	3acee944ea	KEYCLOAK-12090 Simplify conditions in module "model/infinispan" (#6497 )	2019-11-18 20:51:12 +01:00
Andrei Arlou	80f4bd3822	KEYCLOAK-12089 Remove unused imports from module "model/infinispan" (#6496 )	2019-11-18 20:48:34 +01:00
keycloak-bot	76aa199fee	Set version to 9.0.0-SNAPSHOT	2019-11-15 20:43:21 +01:00
vramik	af5df1e535	KEYCLOAK-11808 Add support for MySQL8, update supported database versions	2019-11-15 08:43:48 +01:00
stianst	3a36569e20	KEYCLOAK-9129 Don't expose Keycloak version in resource paths	2019-11-15 08:21:28 +01:00
AlistairDoswald	4553234f64	KEYCLOAK-11745 Multi-factor authentication (#6459 ) Co-authored-by: Christophe Frattino <christophe.frattino@elca.ch> Co-authored-by: Francis PEROT <francis.perot@elca.ch> Co-authored-by: rpo <harture414@gmail.com> Co-authored-by: mposolda <mposolda@gmail.com> Co-authored-by: Jan Lieskovsky <jlieskov@redhat.com> Co-authored-by: Denis <drichtar@redhat.com> Co-authored-by: Tomas Kyjovsky <tkyjovsk@redhat.com>	2019-11-14 14:45:05 +01:00
Patrick Teubner	b3d87b52c2	KEYCLOAK-11888 Fix inconsistent pagination of groups by ordering the results of 'getTopLevelGroupIds' query	2019-11-11 09:22:51 +01:00
Wim Vandenhaute	b6ee342713	KEYCLOAK-4593 Flush and clear when fetching multiple realms for performance improvement with large number of realms	2019-11-04 21:11:26 +01:00
Hynek Mlnarik	f0685cc246	KEYCLOAK-11739 Ensure unique / PK constraint in JPA is on par with Liquibase	2019-10-23 14:53:17 +02:00
Martin Kanis	37304fdd7d	KEYCLOAK-10728 Upgrade to WildFly 18 Final	2019-10-21 14:06:44 +02:00
Pedro Igor	6acb87bd7a	[KEYCLOAK-10822] - Prevent access to users from another realm	2019-10-21 10:32:50 +02:00
Pedro Igor	17785dac08	[KEYCLOAK-10714] - Add filtering support in My Resources endpoint by name	2019-10-16 16:26:55 +02:00
Hynek Mlnarik	9d685a2c47	KEYCLOAK-11558 Fix unique constraint violation in PartialImportTest (cherry picked from commit 672703cbc1320466d37761c4cb0d46c5dd0ce0f1)	2019-10-14 14:40:20 +02:00
Takashi Norimatsu	7c75546eac	KEYCLOAK-9360 Two factor authentication with W3C Web Authentication - 1st impl phase * KEYCLOAK-9360 Two factor authentication with W3C Web Authentication - 1st impl phase	2019-10-01 15:17:38 +02:00
Kohei Tamura	c68afdab83	KEYCLOAK-7547 Change log level of a message when deleting user When deleting a user (who has not failed to log in yet if Brute Force Detection is not enabled), the following message is always recorded: {noformat} 10:34:15,101 WARN [org.keycloak.models.sessions.infinispan.changes.InfinispanChangelogBasedTransaction] (default task-7) Not present cache item for key LoginFailureKey [ realmId=568c76c7-9308-4d84-bfc1-ec3542deaf02. userId=4c011785-a39a-43bf-b0c1-43c63decf2f1 ] {noformat} This is noisy and should not be logged at warning level.	2019-09-20 11:37:30 +02:00
Jan Lieskovsky	cfb225b499	[KEYCLOAK-8253] Improve the time complexity of LDAP groups synchronization (in the direction from LDAP provider to Keycloak) from exponential to linear time in the case of syncing flat LDAP groups structure Add a corresponding test (intentionally configured as to be ignored by CI/CD due to higher demand on time, required fo the test completion) Signed-off-by: Jan Lieskovsky <jlieskov@redhat.com>	2019-09-12 09:54:13 +02:00
Hynek Mlnarik	9eb2e1d845	KEYCLOAK-11028 Use pessimistic locks to prevent DB deadlock when deleting objects	2019-09-09 10:57:49 +02:00
Pedro Igor	a1d8850373	[KEYCLOAK-7416] - Device Activity	2019-09-05 11:43:27 -03:00
Takashi Norimatsu	8225157a1c	KEYCLOAK-6768 Signed and Encrypted ID Token Support	2019-08-15 15:57:35 +02:00
Vlastimil Elias	4571f65d1e	KEYCLOAK-10209 - AuthenticationSessionModel made available through KeycloakContext in KeycloakSession	2019-07-30 12:36:57 +02:00
Pedro Igor	967d21dbb5	[KEYCLOAK-10713] - Pagination to resources rest api	2019-07-29 16:19:22 -03:00
keycloak-bot	17e9832dc6	Set version to 8.0.0-SNAPSHOT	2019-07-19 19:05:03 +02:00
Hynek Mlnarik	04f266d381	KEYCLOAK-10744 Fix MariaDB cannot create database	2019-07-18 13:59:49 +02:00
Martin Kanis	efdf0f1bd8	KEYCLOAK-6839 You took too long to login after SSO idle	2019-07-10 10:15:26 +02:00
rmartinc	bd5dec1830	KEYCLOAK-10112: Issues in loading offline session in a cluster environment during startup	2019-07-03 13:17:45 +02:00
Pedro Igor	0cdd23763c	[KEYCLOAK-10443] - Define a global decision strategy for resource servers	2019-07-02 09:14:37 -03:00
Sebastian Loesch	c9fbed7eb8	KEYCLOAK-10545 Fix formatting error in log message Fixes the formatting error java.util.IllegalFormatConversionException: d != java.util.UUID	2019-06-26 10:22:15 +02:00
mposolda	c124aec586	KEYCLOAK-10262 DBLockTest.testLockConcurrently fails with MariaDB Galera 10.1	2019-06-24 11:23:18 +02:00
Pedro Igor	fdc0943a92	[KEYCLOAK-8060] - My Resources REST API	2019-06-11 14:23:26 -03:00
Pedro Igor	61eb94c674	[KEYCLOAK-8915] - Support resource type in authorization requests	2019-06-04 21:02:54 -03:00
skyfalke	0007bad6f3	KEYCLOAK-10393 Fix permission ticket pagination in Authz Client KEYCLOAK-10393 Ensure idempotency of find method of permission ticket store	2019-05-29 09:43:54 -03:00
mduchrow	c80531dfa7	KEYCLOAK-9847 Checking user cache for being not null before using it	2019-05-15 15:47:03 +02:00
Hynek Mlnarik	835b2cf9c2	KEYCLOAK-9944 Add Primary Key Constraint into RESOURCE_URIS table	2019-05-13 12:43:23 +02:00
Sebastian Loesch	96250c9685	[KEYCLOAK-9573] Allow AdminEvents for custom resource types	2019-04-26 09:57:28 +01:00
mposolda	7a671052a3	KEYCLOAK-9988 Fix unstable UserSessionPersisterOfflineTest.testExpired. Adding ResetTimeOffsetEvent	2019-04-23 20:58:37 +02:00
keycloak-bot	49d4e935cb	Set version to 7.0.0-SNAPSHOT	2019-04-17 09:48:07 +01:00
mposolda	a8af51c7bb	KEYCLOAK-9988 Fix unstable UserSessionProviderOfflineTest.testExpired	2019-04-12 17:16:53 +02:00
Bekh-Ivanov George	ebcfeb20a3	[KEYCLOAK-10020] - Add ability to request user-managed (ticket) permissions by name	2019-04-12 08:44:57 -03:00
Axel Messinese	e18fb56389	KEYCLOAK-4978 Add endpoint to get groups by role	2019-03-15 06:00:17 +01:00
keycloak-bot	e843d84f6e	Set version to 6.0.0-SNAPSHOT	2019-03-06 15:54:08 +01:00
stianst	7ad02e7318	Fixes for releasing	2019-03-06 11:38:09 +01:00
Stefan Guilhen	9c34cc7365	[KEYCLOAK-9371] Fix premature termination of sessions when remember-me is in use	2019-02-27 15:08:50 +01:00
Hynek Mlnarik	37ef47d6ab	KEYCLOAK-9509 Upgrade to Wildfly 15 KEYCLOAK-9584 Update Wildfly Arquillian version KEYCLOAK-9581: Fix CookiePathTests KEYCLOAK-9607 CLI sripts and configuration files update KEYCLOAK-9580 Fix component registration error KEYCLOAK-9590 Update JDG to newest version * Infinispan is using whatever version is set in root pom.xml. KEYCLOAK-9509 Fix Undertow tests Co-Authored-By: vramik <vramik@redhat.com> Co-Authored-By: sebastienblanc <scm.blanc@gmail.com>	2019-02-25 08:56:46 +01:00
Gideon Caranzo	4cd617bc42	KEYCLOAK-8977 Added method to return KeycloakSession from RealmCreationEvent	2019-02-21 11:21:54 +01:00
stianst	e06c705ca8	Set version 5.0.0	2019-02-21 09:35:14 +01:00
Hynek Mlnarik	52840533c9	KEYCLOAK-9111 Fix for unhandled exception	2019-02-13 15:49:49 +01:00
Hynek Mlnarik	a74d6ab932	KEYCLOAK-9107 Fix NPE	2019-02-13 15:49:49 +01:00
Pedro Igor	885eec5ef2	[KEYCLOAK-8348] - Containerize database tests	2019-01-30 16:29:03 -02:00
vramik	c4a46a5591	KEYCLOAK-7677 KEYCLOAK-7723 fix version collision of httpclient Co-authored-by: Pedro Igor <psilva@redhat.com>	2019-01-10 17:45:41 -02:00
stianst	7c9f15778a	Set version to 4.8.3.Final	2019-01-09 20:39:30 +01:00
stianst	7c4890152c	Set version to 4.8.2	2019-01-03 14:43:22 +01:00
mposolda	04445c8a23	KEYCLOAK-8904 Backpressure in RemoteCacheSessionsLoader	2018-12-10 22:49:43 +01:00
Stefan Guilhen	3462be857b	[KEYCLOAK-8835] Add missing not-null constraint to the new remember-me columns in the realm table	2018-12-07 11:32:30 +01:00
Pedro Igor	0c39eda8d2	[KECLOAK-8237] - Openshift Client Storage	2018-12-06 10:57:53 -02:00
stianst	b674c0d4d9	Prepare for 4.8.0.Final	2018-12-04 13:54:25 +01:00
Hynek Mlnarik	d395043fc7	KEYCLOAK-8707 Fix client template to scope migration	2018-11-22 15:07:47 +01:00
mposolda	6e93ca36af	KEYCLOAK-8519 OIDCScopeTest.testClientDisplayedOnConsentScreenWithEmptyConsentText failing on Oracle	2018-11-22 09:30:01 +01:00
mposolda	6db1f60e27	KEYCLOAK-7774 KEYCLOAK-8438 Errors when SSO authenticating to same client multiple times concurrently in more browser tabs	2018-11-21 21:51:32 +01:00
Takashi Norimatsu	0793234c19	KEYCLOAK-8460 Request Object Signature Verification Other Than RS256 (#5603 ) * KEYCLOAK-8460 Request Object Signature Verification Other Than RS256 also support client signed signature verification by refactored token verification mechanism * KEYCLOAK-8460 Request Object Signature Verification Other Than RS256 incorporate feedbacks and refactor client public key loading mechanism * KEYCLOAK-8460 Request Object Signature Verification Other Than RS256 unsigned request object not allowed * KEYCLOAK-8460 Request Object Signature Verification Other Than RS256 revert to re-support "none"	2018-11-19 14:28:32 +01:00
Stefan Guilhen	a3d4612edd	KEYCLOAK-8854 Updated UserSessionPredicate.ExternalizerImpl to include the remember-me properties	2018-11-19 12:17:03 +01:00
mposolda	0533782d90	KEYCLOAK-7275 KEYCLOAK-5479 Faster offline sessions preloading at startup. Track lastSessionRefresh timestamps more properly by support bulk update to DB	2018-11-16 14:23:28 +01:00
Michael Gottlieb	3bdbbf41af	KEYCLOAK-8702:Fix Offline Sessions requires column Prevent RemoveDuplicateOfflineSessions from running when migration to 3.2.0 has been run. This prevents running when the database has already dropped CLIENT_SESSION_ID from OFFLINE_CLIENT_SESSION table. This change unblocks migrating from 3.2.0 to 4.4.0 and later.	2018-11-16 12:03:57 +01:00
Leon Graser	85f11873c3	KEYCLOAK-8613 Group Membership Pagination	2018-11-15 17:54:07 +01:00
Thomas Darimont	cf57a1bc4b	KEYCLOAK-1267 Add dedicated SSO timeouts for Remember-Me Previously remember-me sessions where tied to the SSO max session timeout which could lead to unexpected early session timeouts. We now allow SSO timeouts to be configured separately for sessions with enabled remember-me. This enables users to opt-in for longer session timeouts. SSO session timeouts for remember-me can now be configured in the tokens tab in the realm admin console. This new configuration is optional and will tipically host values larger than the regular max SSO timeouts. If no value is specified for remember-me timeouts then the regular max SSO timeouts will be used. Work based on PR https://github.com/keycloak/keycloak/pull/3161 by Thomas Darimont <thomas.darimont@gmail.com>	2018-11-15 06:11:22 +01:00
stianst	ecd476fb10	Prepare for 4.7.0.Final	2018-11-14 20:10:59 +01:00
mposolda	1b5a83c4f1	KEYCLOAK-6980 Check if client_assertion was already used during signed JWT client authentication	2018-11-14 20:09:22 +01:00
Graser Leon	9ef4c7fffd	KEYCLOAK-8377 Role Attributes	2018-10-24 22:04:28 +02:00
Gideon Caranzo	7d85ce93bb	KEYCLOAK-8555 queried only realms with user storage provider to speed up user storage sync bootstrap	2018-10-19 09:53:58 +02:00
vramik	7a96911a83	KEYCLOAK-8300 KEYCLOAK-8301 Wildfly 14 upgrade Co-authored-by: Marek Posolda <mposolda@redhat.com>	2018-10-17 20:01:07 +02:00
Pedro Igor	79ca722b49	[KEYCLOAK-7605] - Make sure Evaluation API is read-only	2018-10-09 08:09:29 -03:00
Hynek Mlnarik	7f1c03a122	KEYCLOAK-8462 Close delegates properly	2018-10-08 14:45:48 +02:00
Pedro Igor	b4b3527df7	[KEYCLOAK-7950] - Fixes user pagination when using filtering users members of groups	2018-10-02 15:44:23 -03:00
stianst	c3fc9e9815	Set version to 4.6.0.Final-SNAPSHOT	2018-09-26 20:58:41 +02:00
Pedro Igor	609c521c17	[KEYCLOAK-8281] - Deletion of client with token exchange policy leads to breaking errors	2018-09-18 18:58:45 -03:00
stianst	24e60747b6	KEYCLOAK-7560 Refactor token signature SPI PR Also incorporates: KEYCLOAK-6770 ES256/384/512 providers KEYCLOAK-4622 Use HS256 for refresh tokens KEYCLOAK-4623 Use HS256 for client reg tokens	2018-09-11 08:14:10 +02:00
Leon Graser	df22c4d613	changed user and resource entity to fetch mode select with batch size 20	2018-09-10 20:31:04 +02:00
stianst	1fb4ca4525	Set version to 4.5.0.Final	2018-09-06 20:08:02 +02:00
Hynek Mlnarik	5fe1905e4b	KEYCLOAK-6803 Prevent duplicating required actions in JPA user storage	2018-09-03 19:42:18 +02:00
Hynek Mlnarik	54b5ec206e	KEYCLOAK-8183 Improve authz caching for negative cases	2018-08-31 18:31:55 +02:00
Hynek Mlnarik	8a7a545628	KEYCLOAK-7944 Remove duplicate offline client sessions	2018-08-29 10:55:38 +02:00
Hynek Mlnarik	2077975b1c	KEYCLOAK-6411 Fix list of keywords on MySQL/MariaDB	2018-08-28 09:51:58 +02:00
mposolda	6fc99cd749	KEYCLOAK-7594 Upgrade to Wildfly 13. Cross-DC: Upgrade to infinispan server 9.2.4 and JDG 7.2 Co-authored-by: Douglas Palmer <dpalmer@redhat.com> Co-authored-by: stianst <stianst@gmail.com> Co-authored-by: Hynek Mlnarik <hmlnarik@redhat.com>	2018-08-27 12:52:53 +02:00
Stefan Guilhen	f36e45cb10	[KEYCLOAK-4902] - Using streams to process scopes and cache improvements	2018-08-14 06:29:10 -03:00
Stefan Guilhen	060b3b8d0f	[KEYCLOAK-4902] - Using streams when fetching resources	2018-08-09 16:28:31 -03:00
Pedro Igor	905fd3ae00	[KEYCLOAK-8003] - Migration to 4.2.1 extracting RESOURCE_URIs fails with fine-grained admin permissions	2018-08-08 11:00:25 +02:00
Pedro Igor	80e5227bcd	[KEYCLOAK-4902] - Refactoring and improvements to processing of authz requests	2018-08-07 10:53:40 -03:00
Hiroyuki Wada	263792a4ab	KEYCLOAK-7984 Fix migration issue	2018-08-02 14:58:20 +02:00
alva.huang	3380fdc119	[KEYCLOAK-7985] fix the table name error, from RESOURCE_URI to RESOURCE_URIS Signed-off-by: alva.huang <alva@izhiju.cn>	2018-08-02 08:31:44 -03:00
mposolda	959cd035ba	Set version to 4.3.0.Final-SNAPSHOT	2018-08-01 22:40:05 +02:00
Hiroyuki Wada	7c0ca9aad2	KEYCLOAK-6313 Add required action's priority for customizing the execution order	2018-07-23 22:21:04 +02:00
mhajas	1308a3231d	KEYCLOAK-7931 Correct wrong JPA changelog filenames	2018-07-23 11:49:54 +02:00
mhajas	5aebc74f8c	KEYCLOAK-7269 Setting more uris for Authorization Resource	2018-07-11 17:48:34 -03:00
mposolda	d0a824dde4	Updating version to 4.2.0.Final-SNAPSHOT	2018-07-05 07:42:48 -04:00
mposolda	40d129cf54	KEYCLOAK-7489 Replace failed for entity repeats infinitely	2018-07-04 10:22:49 +02:00
mposolda	8c66f520af	KEYCLOAK-7745 JTA error if offline sessions can't be preloaded at startup within 5 minutes	2018-07-04 10:22:13 +02:00
Martin Kanis	0e2e867e4a	KEYCLOAK-5023 database migration fails if mysql schema name has hyphen	2018-06-27 10:11:09 +02:00
Takashi Norimatsu	2fb022e501	KEYCLOAK-7688 Offline Session Max for Offline Token	2018-06-26 08:25:06 +02:00
Martin Kanis	998227ac53	KEYCLOAK-5461 Upgrade to Liquibase 3.5.5	2018-06-22 13:20:10 +02:00
stianst	e1a0e581b9	Update to 4.1.0.Final-SNAPSHOT	2018-06-14 14:22:28 +02:00
Marek Posolda	49407c2e4f	KEYCLOAK-6630 Client scopes initial support (#5076 ) * KEYCLOAK-6630 KEYCLOAK-349 Client Scopes Co-authored-by: vramik <vramik@redhat.com> * KEYCLOAK-6630 Change some clientTemplate occurences to clientScope	2018-06-08 15:38:38 +02:00
Federico M. Facca	5a9bfea419	[KEYCLOAK-7353] Support Policy Management in Protection API See https://issues.jboss.org/browse/KEYCLOAK-7353	2018-06-06 19:36:42 -03:00
Pedro Igor	f8919f8baa	Merge pull request #5211 from pedroigor/KEYCLOAK-7367 [KEYCLOAK-7367] - User-Managed Policy Provider	2018-06-04 09:35:13 -03:00
Martin Kanis	f429469fc8	KEYCLOAK-5270 Realm cookie path for IE<=11 users (#5106 )	2018-05-31 08:44:34 +02:00
Johannes Knutsen	c64ecb1ab8	Remove expired objects from cache cluster instead of local only	2018-05-29 10:27:43 +02:00
Pedro Igor	2b6597e9f1	[KEYCLOAK-7367] - User-Managed Policy Provider	2018-05-25 16:18:15 -03:00
Stian Thorgersen	dbf5c395b0	Bump version to 4.0.0.Final (#5224 )	2018-05-24 19:02:30 +02:00
Stian Thorgersen	90e5c7f3eb	Bump version to 4.0.0.Beta3-SNAPSHOT (#5185 )	2018-05-02 14:32:20 +02:00
Pedro Igor	5cae1bb134	Merge pull request #5093 from pedroigor/KEYCLOAK-4102 [KEYCLOAK-4102] - Support lazy load paths	2018-03-29 09:16:34 -03:00
pedroigor	4a425c2674	[KEYCLOAK-4102] - Support lazy loading of paths via policy enforcer config	2018-03-28 09:23:59 -03:00
dongay	707b80f436	KEYCLOAK-3210 Apply @Nationalized attribute to entity fields that should support unicode character sets	2018-03-27 20:55:59 +02:00
Pedro Igor	ffeb0420bf	Merge pull request #5079 from pedroigor/KEYCLOAK-6529 [KEYCLOAK-6529] - Resource Attributes	2018-03-27 09:30:38 -03:00
stianst	07fea02146	Bump versions to 4.0.0.Beta2-SNAPSHOT	2018-03-26 18:17:38 +02:00
pedroigor	758ae41999	[KEYCLOAK-6529] - Constraint name too long	2018-03-22 07:05:03 -03:00
Hynek Mlnarik	bb3c76a9d9	KEYCLOAK-6929 Externalizers for AuthenticationSessionEntity	2018-03-21 12:46:50 +01:00
pedroigor	08896ee9c9	[KEYCLOAK-6529] - Resource Attributes	2018-03-19 13:21:39 -03:00
Johannes Knutsen	9de8e79577	KEYCLOAK-6824: Remove negation of isEmpty list check	2018-03-15 18:43:22 +01:00
Pedro Igor	2aa71d1737	Merge pull request #5051 from pedroigor/KEYCLOAK-6787 [KEYCLOAK-6787] - Wrong validation of resources with same name and different owners	2018-03-12 11:41:49 -03:00
Hynek Mlnarik	05dcc6e3af	KEYCLOAK-6783 JDG-auth optimizations	2018-03-09 15:08:55 +01:00
mposolda	6f7200868b	Secured RemoteCache availability	2018-03-09 15:08:55 +01:00
Bill Burke	4b6b45cf43	KEYCLOAK-6026	2018-03-05 11:57:05 -05:00
vramik	9bd2e70376	KEYCLOAK-6790 Identifier for RESOURCE_SERVER_PERMISSION_TICKET table is too long for Oracle databases	2018-03-02 12:46:19 +01:00
Bill Burke	7f21cdd1f4	KEYCLOAK-6551	2018-03-02 10:41:05 +01:00
pedroigor	1e1de85685	[KEYCLOAK-6787] - Wrong validation of resources with same name and different owners	2018-03-01 16:50:05 -03:00
pedroigor	cb531056a6	[KEYCLOAK-6621] - Fixing cache and queries of policies with type scope	2018-02-28 16:33:45 -03:00
Pedro Igor	91bdc4bde2	[KEYCLOAK-3169] - UMA 2.0 (#4368 ) * [KEYCLOAK-3169] - UMA 2.0 Support * [KEYCLOAK-3169] - Changes to account service and more tests * [KEYCLOAK-3169] - Code cleanup and tests * [KEYCLOAK-3169] - Changes to account service and tests * [KEYCLOAK-3169] - Changes to account service and tests * [KEYCLOAK-3169] - More tests * [KEYCLOAK-3169] - Changes to adapter configuration * [KEYCLOAK-3169] - Reviewing UMA specs and more tests * [KEYCLOAK-3169] - Reviewing UMA specs and more tests * [KEYCLOAK-3169] - Changes to UMA Grant Type and refactoring * [KEYCLOAK-3169] - Refresh tokens for RPT responses and tests * [KEYCLOAK-3169] - Changes to account my resources and policy enforcers * [KEYCLOAK-3169] - Realm settings flag to enable/disable user-managed access in account mgmt console * [KEYCLOAK-3169] - More changes to my resource pages in account mgmt console * [KEYCLOAK-3169] - Need to enable user-managed on realm to run tests * [KEYCLOAK-3169] - Removing more UMA 1.0 related code * [KEYCLOAK-3169] - Only submit requests if ticket exists * [KEYCLOAK-3169] - Returning UMA 401 response when not authenticated * [KEYCLOAK-3169] - Removing unused code * [KEYCLOAK-3169] - Removing unused code * [KEYCLOAK-3169] - 403 response in case ticket is not created * [KEYCLOAK-3169] - Fixing AbstractPhotozExampleAdapterTest#testClientRoleRepresentingUserConsent * [KEYCLOAK-3169] - 403 status code only returned for non-bearer clients	2018-02-28 08:53:10 +01:00
gonzalad	898347366d	KEYCLOAK-6589: Optimize jpql in User search API This commit removes the 6 n+1 select that are issued when calling GET /users api. We now have 4 select queries.	2018-02-22 14:21:42 +01:00
pedroigor	d590600c12	[KEYCLOAK-6321] - NPE when deleting a resource with admin events enabled	2018-02-21 19:41:44 +01:00
Bruno Oliveira	b91998a0d8	[KEYCLOAK-6111] 'Override User-Initiated Action Lifespan' admin GUI can break realm configuration	2018-02-09 06:36:23 -02:00
pedroigor	76657d5239	[KEYCLOAK-6528] - Fixing mysql error. Probably a consequence of KEYCLOAK-6228 changes.	2018-02-08 21:17:33 +01:00
Bill Burke	6054b69eec	fix serializable exceptions	2018-01-31 20:26:50 -05:00
Bill Burke	a0d275c850	whoops, fix db script	2018-01-31 14:28:40 -05:00
Bill Burke	26411a123e	migrate fix	2018-01-31 13:11:46 -05:00
Bill Burke	126dd70efc	client stat improvement	2018-01-31 13:05:13 -05:00
Bill Burke	bd3eb9d662	more hynek db changes	2018-01-30 19:46:42 -05:00
Bill Burke	a571781240	hynek db changes	2018-01-30 17:00:55 -05:00
Bill Burke	0fc7fa557d	fix caching	2018-01-29 16:26:51 -05:00
Bill Burke	4bf23cc83a	caching	2018-01-29 12:28:17 -05:00
Bill Burke	1d8e38f0c6	admin console	2018-01-27 13:05:02 -05:00
Bill Burke	dd4c0d448c	Merge remote-tracking branch 'upstream/master' into client-storage-spi	2018-01-27 09:47:41 -05:00
Bill Burke	6b84b9b4b6	done 1st iteration	2018-01-27 09:47:16 -05:00
vramik	b0fbe5c8ba	KEYCLOAK-6300 List of group members is not sorted alphabetically	2018-01-25 20:21:03 +01:00
Bill Burke	ddad1cb8af	Merge remote-tracking branch 'upstream/master' into client-storage-spi	2018-01-25 10:08:37 -05:00
Bill Burke	8a17b61f4e	initial work	2018-01-25 10:08:26 -05:00
Bill Burke	4bfb62d7f4	marek suggested fixes	2018-01-24 09:32:38 -05:00
Bill Burke	a9297df89c	KEYCLOAK-6335	2018-01-23 12:09:49 -05:00
Douglas Palmer	fc3c07f6de	[KEYCLOAK-6236] Use MessageDigest.isEquals in place of String.equals	2018-01-18 13:04:54 +01:00
Hynek Mlnarik	e4c875eb41	KEYCLOAK-6108 Remove DROP INDEX in postgres (handled automatically)	2018-01-04 09:03:52 +01:00
Hynek Mlnarik	f0c1e65b2d	KEYCLOAK-6095 Include schema in custom SQL	2018-01-04 09:03:52 +01:00
stianst	0bedbb4dd3	Bump version to 4.0.0.CR1-SNAPSHOT	2017-12-21 15:06:00 +01:00
Martin Kanis	351dbffaf2	KEYCLOAK-5172 Set oidc as default protocol to clients	2017-12-20 13:38:12 +01:00
Marko Strukelj	ae573f4814	KEYCLOAK-5617 KEYCLOAK-5993 Race condition putting new user in user cache	2017-12-20 13:35:35 +01:00
mposolda	6696c0f0b2	KEYCLOAK-5245 Restart failures when deleting a client with existing sessions/offline_tokens	2017-12-13 15:53:10 +01:00
mposolda	63efee6e15	KEYCLOAK-5938 Authentication sessions: Support for logins of multiple tabs of same client	2017-12-12 08:01:02 +01:00
Bill Burke	5d5a200413	Merge pull request #4818 from patriot1burke/master KEYCLOAK-5926	2017-12-08 09:59:32 -05:00
Bill Burke	0dee393071	KEYCLOAK-5926	2017-12-07 19:49:10 -05:00
Bill Burke	efa5949f69	Merge pull request #4814 from patriot1burke/master KEYCLOAK-5350	2017-12-07 10:07:35 -05:00
stianst	c055ffb083	KEYCLOAK-4215 Consider session expiration when setting token timeouts	2017-12-07 10:45:02 +01:00
stianst	5fd3c9161d	KEYCLOAK-5868	2017-12-07 10:42:21 +01:00
Bill Burke	64f8d7ce25	KEYCLOAK-5350	2017-12-06 16:00:23 -05:00
mposolda	8a0fa521c4	KEYCLOAK-5915 Support for sticky sessions managed by loadbalancer. Support for KeyAffinityService	2017-12-06 13:06:54 +01:00
stianst	6d1c33ccdc	KEYCLOAK-5667	2017-12-06 06:45:23 +01:00
mposolda	6c34b4c418	KEYCLOAK-5914 Periodic clean of detached client sessions	2017-12-05 08:25:30 +01:00
stianst	37de8e9f69	Bump version to 3.4.2.Final-SNAPSHOT	2017-12-01 09:34:48 +01:00
mposolda	7b03eed9c8	KEYCLOAK-5797 Refactoring authenticationSessions to support login in multiple browser tabs with different clients	2017-11-30 12:56:45 +01:00
Hynek Mlnarik	b466f4d0b6	KEYCLOAK-5910 Retry sending notification when remote cache is unavailable	2017-11-30 11:48:26 +01:00
pedroigor	17748d5ba8	[KEYCLOAK-5660] - Adding UserQueryProvider.getUsersCount(realm, includeServiceAccount) method	2017-11-30 10:45:54 +01:00
pedroigor	674fb31a2c	[KEYCLOAK-5660] - Rest API User count returns wrong value	2017-11-30 10:45:54 +01:00
stianst	2be78a0239	KEYCLOAK-5924 Add error handler for uncaught errors	2017-11-30 10:33:13 +01:00
pedroigor	9ffc11d04f	[KEYCLOAK-4231] - Unable to import PEM certificate > 2048	2017-11-29 20:26:22 +01:00
mposolda	6d91ab674b	KEYCLOAK-5895 CrossDC: NotSerializableException when opening sessions tab in admin console	2017-11-23 20:03:12 +01:00
Bill Burke	2117db5e6d	Merge pull request #4730 from patriot1burke/master KEYCLOAK-4715	2017-11-22 12:45:23 -05:00
mposolda	bd1072d2eb	KEYCLOAK-5747 Ensure refreshToken doesn't need to send request to the other DC. Other fixes and polishing	2017-11-22 11:55:12 +01:00
mposolda	61c5a332b4	KEYCLOAK-5832 Fix the issue with RemoveExpiredCommand exception on JDG side	2017-11-22 11:55:12 +01:00
Bill Burke	8993ca08ad	KEYCLOAK-4715	2017-11-21 17:46:48 -05:00
Bill Burke	08ca03051c	Merge pull request #4549 from pkadej/KEYCLOAK-5662 KEYCLOAK-5662	2017-11-20 14:37:07 -05:00
Bill Burke	83ff0eab10	remove irrelevant comments	2017-11-17 11:36:49 -05:00
Bill Burke	c66ff60c58	KEYCLOAK-5715	2017-11-17 11:34:32 -05:00
Hynek Mlnarik	a787cfa33a	KEYCLOAK-5425 Have preconditions evaluated in manual mode	2017-11-15 13:37:32 +01:00
Bruno Oliveira	03d0488335	[KEYCLOAK-2052] Allows independently set timeouts for e-mail verification link and rest e.g. forgot password link Co-authored-by: Hynek Mlnarik <hmlnarik@redhat.com>	2017-11-13 19:57:04 -02:00
Przemysław Kadej	e28f402b6b	KEYCLOAK-5662 - CachePolicy.MAX_LIFESPAN - Cached LDAP users aren't being refreshed at all	2017-11-13 11:36:31 +01:00
mposolda	c530a061cc	KEYCLOAK-5828 Ensure sessions preloading works for remote distributed caches as well	2017-11-10 11:27:24 +01:00
mposolda	a98f085be6	KEYCLOAK-5618 Fix SessionsPreloadCrossDCTest. Update HOW-TO-RUN docs. Ensure it's executed in travis.	2017-11-09 17:39:04 +01:00
Stian Thorgersen	128ff12f8f	Bump versions	2017-11-09 15:37:21 +01:00
mposolda	701b7acd80	KEYCLOAK-5371 More stable cross-dc tests	2017-11-08 10:03:04 +01:00
mposolda	62a1c187a2	KEYCLOAK-5716 KEYCLOAK-5738 Avoid infinispan deadlock. Ensure code-to-token works correctly in cross-dc	2017-11-07 09:01:59 +01:00
Hynek Mlnařík	4d0d28c222	Merge pull request #4621 from hmlnarik/KEYCLOAK-5230-Indexes-on-USER-ID-missing-from-the-federated-user-tables KEYCLOAK-5230 Add indices to FED_* tables	2017-10-31 08:48:34 +01:00
Hynek Mlnarik	c9aa5e638e	KEYCLOAK-5230 Add indices to FED_* tables	2017-10-27 12:43:22 +02:00
Hynek Mlnarik	92027e4c57	KEYCLOAK-5745 Fix ActionTokenCrossDCTest and improve logging	2017-10-27 08:45:05 +02:00
Hynek Mlnarik	75c354fd94	KEYCLOAK-5745 Separate user and client sessions in infinispan	2017-10-26 10:39:41 +02:00
Hynek Mlnařík	7190820fc4	Merge pull request #4566 from vramik/KEYCLOAK-4928 KEYCLOAK-4928 Add primary key constraints	2017-10-24 15:40:37 +02:00
Marek Posolda	a7bc294a08	Merge pull request #4594 from hmlnarik/KEYCLOAK-5688-Externalizer-for-entities-shared-across-DC-2 KEYCLOAK-5688 Externalizers for cluster messages and predicates	2017-10-24 14:41:16 +02:00
mposolda	9a19e95b60	KEYCLOAK-5710 Change cache-server to use backups based caches	2017-10-24 11:52:08 +02:00
vramik	223713bc53	KEYCLOAK-4928 Add primary key constraints	2017-10-24 10:46:46 +02:00
Hynek Mlnarik	faf830dc77	KEYCLOAK-5688 Externalizers for cluster messages and predicates	2017-10-23 12:18:56 +02:00
Bill Burke	92245e3fc8	fixes	2017-10-20 09:55:37 -04:00
Bill Burke	54ebc21880	KEYCLOAK-5698	2017-10-19 19:38:56 -04:00
Bill Burke	0371a562d9	Merge pull request #4574 from patriot1burke/master KEYCLOAK-5701	2017-10-19 10:33:10 -04:00
Bill Burke	8faa6f1f4d	KEYCLOAK-5701	2017-10-18 18:20:50 -04:00
Hynek Mlnarik	6d18ba4b32	KEYCLOAK-5688 Add externalizers for session entities and remove unused events	2017-10-18 16:04:57 +02:00
Hynek Mlnarik	056ba75a72	KEYCLOAK-5656 Use standard infinispan remote-store	2017-10-16 21:49:42 +02:00
Bruno Oliveira da Silva	b6ab2852c2	Remove unused imports (#4558 )	2017-10-16 14:23:42 +02:00
mposolda	26f11078dc	KEYCLOAK-5371 Use managed executors on Wildfly	2017-10-11 11:09:53 +02:00
mposolda	f5ff24ccdb	KEYCLOAK-5371 Fix SessionExpirationCrossDCTest, Added ExecutorsProvider. Debug support for cache-servers in tests	2017-10-10 22:30:44 +02:00
Hynek Mlnarik	fe972ce12b	KEYCLOAK-5656 Remove remoteServers configuration option	2017-10-09 11:58:28 +02:00
Hynek Mlnarik	6cbfbeca0b	KEYCLOAK-5656 Remove KeycloakTcpTransportFactory	2017-10-06 13:20:17 +02:00
mposolda	bca4c35708	KEYCLOAK-5371 Fix ActionTokenCrossDCTest and BruteForceCrossDCTest	2017-10-04 13:25:45 +02:00
Marek Posolda	13fe9e7cf8	Merge pull request #4510 from glavoie/KEYCLOAK-3303 KEYCLOAK-3303: Allow reuse of refresh tokens.	2017-09-29 17:07:45 +02:00
mposolda	3b6e1f4e93	KEYCLOAK-5007 Used single-use cache for tracke OAuth code. OAuth code changed to be encrypted and signed JWT	2017-09-29 13:20:22 +02:00
mposolda	63673c4328	KEYCLOAK-5569 Added JWE	2017-09-29 13:01:42 +02:00
Gabriel Lavoie	134daeac7f	KEYCLOAK-3303: Allow reuse of refresh tokens. - Configurable max reuse count.	2017-09-28 15:30:40 -04:00
Bill Burke	fd025ae76b	Merge pull request #4209 from guitaro/feature/group-search-and-pagination [KEYCLOAK-2538] - groups pagination and group search	2017-09-23 20:52:19 -04:00
howcroft	e78bf5f876	Keycloak 2035 This PR adds: * an endpoint to Role that lists users with the Role * a tab "Users in Role" in Admin console Role page * it is applicable to Realm and Client Roles * Extends UserQueryProvider with default methods (throwing Runtime Exception if not overriden) * Testing in base testsuite and Console	2017-09-22 15:05:49 +01:00
mposolda	ca92bcbf7f	KEYCLOAK-5480 Cross-DC setup: Remote cache stores are connecting to Infinispan servers in both datacenters	2017-09-18 18:04:04 +02:00
Oguz Kilcan	6ec5264f20	KEYCLOAK-5416 Migration from 3.2.1 to 3.3.0 doesn't work on MSSQL due to constraint violation (#4461 )	2017-09-15 09:56:22 +02:00
Levente NAGY	d18aa44fb4	Merge branch 'feature/group-search-and-pagination' of https://github.com/guitaro/keycloak into feature/group-search-and-pagination	2017-09-13 16:48:24 +02:00
Levente NAGY	e907da77d7	KEYCLOAK 2538 - UI group pagination - Remove junit mocked TUs, add arquillian Tests, delete mockito from poms, fix groups sorting when get result from cache	2017-09-13 16:45:45 +02:00
Léventé NAGY	503ce3a47f	Merge branch 'master' into feature/group-search-and-pagination	2017-09-13 10:27:38 +02:00
Pedro Igor	90db6654d3	Merge pull request #4451 from glavoie/KEYCLOAK-4858-ResourceServer KEYCLOAK-4858: Slow query performance for client with large data volume	2017-09-12 15:54:16 -03:00
Levente NAGY	c8c88dd58c	KEYCLOAK 2538 - UI group pagination - TU + some code improvement + add mockito dependency	2017-09-12 15:09:08 +02:00
Levente NAGY	db56d82dbd	KEYCLOAK 2538 - UI group pagination - fix duplicate result for search + sort result	2017-09-12 11:45:37 +02:00
Marek Posolda	2a1f40d487	Merge pull request #4408 from MarkSchmitt/master KEYCLOAK-5322: Rewrote delete statement to scale better	2017-09-12 11:14:08 +02:00
Marek Posolda	d636bc2616	Merge pull request #4468 from hmlnarik/KEYCLOAK-4899-Optimize-client-session-writes KEYCLOAK-4899 Replace updates to user session with temporary auth ses…	2017-09-12 10:42:38 +02:00
Bill Burke	1a74288413	Merge pull request #4458 from vramik/KEYCLOAK-5405 KEYCLOAK-5405 add synchronization of the persistence context when cre…	2017-09-11 18:49:33 -04:00
Hynek Mlnarik	24e9cbb292	KEYCLOAK-4899 Replace updates to user session with temporary auth session	2017-09-11 21:43:49 +02:00
Gabriel Lavoie	bf184e8599	KEYCLOAK-4858: ResourceServer PK change to CLIENT_ID. - MSSQL needs the index to be dropped before the column. - Different UPDATE statement format to support MSSQL.	2017-09-11 13:50:58 -04:00
Levente NAGY	2c24b39268	KEYCLOAK 2538 - UI group pagination	2017-09-07 19:39:06 +02:00
fmugrau	998262177f	KEYCLOAK-5422: Rewrote statement to scale better	2017-09-07 10:17:22 +02:00
Pedro Igor	f10891b662	[KEYCLOAK-4858] - Migration configuration for resource server pk changes	2017-09-06 11:28:58 -03:00
Gabriel Lavoie	c1664478d9	KEYCLOAK-4858: Slow query performance for client with large data volume - Changing RESOURCE_SERVER PK to the client ID. - Changing FK on children of RESOURCE_SERVER. - Use direct fetch of ResourceServer through ID/PK to avoid a lot of implicit Hibernate flush.	2017-09-06 09:55:53 -03:00
Pedro Igor	9ed5fc5595	[KEYCLOAK-5389] - Invalidating ResourceStore.findByUri cache when creating new resources	2017-09-05 11:45:51 -03:00
vramik	37479a9afe	KEYCLOAK-5405 add synchronization of the persistence context when creating a group	2017-09-05 14:34:43 +02:00
vramik	d62164f6f0	KEYCLOAK-5385 add not null constraint for user_entity.not_before (#4446 )	2017-09-01 08:57:50 +02:00
vramik	8bfab22417	KEYCLOAK-5049 add explicit removal of groups (#4416 )	2017-08-30 08:16:00 +02:00
Stian Thorgersen	463661b051	Set version to 3.4.0.CR1-SNAPSHOT	2017-08-28 15:46:22 +02:00
Hynek Mlnařík	23560d9e41	KEYCLOAK-5235 Fix JPA update script for MariaDB (#4423 )	2017-08-28 08:05:49 +02:00
mposolda	43ce466aa6	KEYCLOAK-5294 Cross-dc working on Wildfly	2017-08-24 18:03:01 +02:00
Pedro Igor	3ff38e22cf	[KEYCLOAK-4639] - Invalidating resource query by owner cache	2017-08-23 15:11:48 -03:00
mposolda	fe5891fbdb	KEYCLOAK-5293 Add notBefore to user	2017-08-23 08:58:26 +02:00
mark.schmitt	6a28971218	KEYCLOAK-5322: Rewrote delete statement to scale better	2017-08-22 13:15:09 +00:00
mposolda	089514d8a6	KEYCLOAK-4634 Cross-dc support for UserLoginFailures	2017-08-17 10:22:12 +02:00
mposolda	fc777e166c	KEYCLOAK-3298 Bit more perf improvement for bulk removal of sessions	2017-08-14 16:17:59 +02:00
mposolda	c4bb29b4bb	KEYCLOAK-4187 SessionExpirationCrossDCTest - added tests for user logout and removal	2017-08-14 11:19:07 +02:00
mposolda	868e76fcf3	KEYCLOAK-4630 Added SessionsPreloadCrossDCTest for test preloading sessions and offline sessions. Support for manual.mode to control manually lifecycle of all servers.	2017-08-11 17:44:00 +02:00
mposolda	1289e84cdb	KEYCLOAK-4630 Refactor RemoteCacheSessionsLoader to use JS script for preload sessions through more pages	2017-08-11 17:44:00 +02:00
Levente NAGY	c8aa708cff	Merge remote-tracking branch 'upstream/master'	2017-08-10 18:14:49 +02:00
mposolda	0f7440d344	KEYCLOAK-4187 Fixes and tests related to sessions expiration and bulk removal in cross-dc environment	2017-08-10 08:29:59 +02:00
mposolda	a72c297d5d	KEYCLOAK-4187 Fix LoginCrossDCTest	2017-08-08 14:02:48 +02:00
Hynek Mlnarik	9ca72dc5c6	KEYCLOAK-4189 Improve logging and concurrency/cross-DC testing	2017-08-08 10:11:51 +02:00
Hynek Mlnarik	80177e8712	KEYCLOAK-4187 Include version when marshalling UserSessionEntity	2017-08-08 10:11:51 +02:00
Hynek Mlnarik	125b178297	KEYCLOAK-4187 Fix warnings	2017-08-08 10:11:51 +02:00
mposolda	251b41a7ac	KEYCLOAK-4187 Fix LastSessionRefreshCrossDCTest and ConcurrentLoginCrossDCTest	2017-08-07 11:55:49 +02:00
mposolda	07e2136b3b	KEYCLOAK-4187 Added UserSession support for cross-dc	2017-07-27 22:32:58 +02:00
Pedro Igor	6865b4bbb1	[KEYCLOAK-4808] - Import large authz settings a bit faster	2017-07-06 18:22:13 -03:00
Pedro Igor	65251748c7	[KEYCLOAK-5148] - Create authorization settings when creating a new client using a config file	2017-07-05 18:19:00 -03:00
Stian Thorgersen	454c5f4d83	Set version to 3.3.0.CR1-SNAPSHOT	2017-06-30 09:47:11 +02:00
Josh Cain	89fcddd605	KEYCLOAK-3592 Docker auth implementation	2017-06-29 06:37:34 +02:00
Léventé NAGY	1a50e77a4d	Merge branch 'master' into feature/group-search-and-pagination	2017-06-26 20:36:36 +02:00
Bill Burke	bc05560d4d	Merge remote-tracking branch 'upstream/master'	2017-06-26 11:41:12 -04:00
Stian Thorgersen	1c10199698	Merge pull request #4252 from hmlnarik/KEYCLOAK-5078-ConcurrencyTest-fails-intermittently KEYCLOAK-5078 ConcurrencyTest fails intermittently	2017-06-26 12:48:37 +02:00
Hynek Mlnarik	955cbc76d7	KEYCLOAK-5030 Change action tokens cache type to distributed	2017-06-26 10:11:53 +02:00
Bill Burke	3ee86fedc7	Merge remote-tracking branch 'upstream/master'	2017-06-23 09:57:35 -04:00
Hynek Mlnarik	8f9ed32a66	KEYCLOAK-5078 ConcurrencyTest fails intermittently This commit fixes 401 Unauthorized issues	2017-06-23 15:16:23 +02:00
Léventé NAGY	41d8d17062	Merge branch 'master' into feature/group-search-and-pagination	2017-06-22 17:41:30 +02:00
Levente NAGY	124bf43a27	[KEYCLOAK-2538] - groups count for pagination	2017-06-22 17:32:38 +02:00
Bill Burke	d08ddade2e	merge	2017-06-21 17:43:54 -04:00
Bill Burke	52e40922bc	removal	2017-06-21 17:42:57 -04:00
mposolda	fc61a4e89f	KEYCLOAK-4631 Move ClientInitialAccessModel from userSession model to realm model	2017-06-21 22:14:20 +02:00
Marek Posolda	be5291f710	Merge pull request #4242 from mposolda/master KEYCLOAK-4438 Disable kerberos flow when provider removed	2017-06-21 11:54:50 +02:00
mposolda	e91dd011c5	KEYCLOAK-4438 Disable kerberos flow when provider removed	2017-06-21 09:38:20 +02:00
Hynek Mlnarik	2e2d15be9f	KEYCLOAK-4189 Infinispan cache and channel statistics for Cross-DC-testing	2017-06-20 12:48:08 +02:00
Pedro Igor	6202222da4	Merge pull request #4221 from pedroigor/KEYCLOAK-5051 [KEYCLOAK-5051] - Invalidate authz cache when realm cache is cleared	2017-06-14 07:53:46 -03:00
Pedro Igor	473065fd31	[KEYCLOAK-5051] - Invalidate authz cache when realm cache is cleared	2017-06-12 12:29:21 -03:00
Hynek Mlnarik	a0f3a6469f	KEYCLOAK-4189 - Cross DC testing	2017-06-12 11:14:28 +02:00
Pedro Igor	84d2d7b431	Missing invalidation for some queries cache	2017-06-08 18:09:44 -03:00
Levente NAGY	f377a45c4e	[KEYCLOAK-2538] - groups count for pagination limits	2017-06-07 20:52:22 +02:00
Levente NAGY	c4da7637d6	[KEYCLOAK-2538] - groups pagination and group search	2017-06-06 18:32:48 +02:00
Bill Burke	b9f7a43a72	group permissions	2017-06-01 20:16:35 -04:00
Stian Thorgersen	684689d40d	Merge pull request #3561 from glavoie/KEYCLOAK-3990 KEYCLOAK-3990: Very slow use of NamedQueries.	2017-05-29 09:39:39 +02:00
Pedro Igor	554e692d8f	Merge pull request #4171 from pedroigor/KEYCLOAK-4913 [KEYCLOAK-4913] - Caching more query methods	2017-05-23 17:40:51 -03:00
Pedro Igor	1d5bd2567e	[KEYCLOAK-4913] - Caching more query methods	2017-05-23 16:13:20 -03:00
Gabriel Lavoie	e59aeb56cc	KEYCLOAK-3990: Very slow use of NamedQueries. - Generates too many auto-flush checks by Hibernate. - Moved to collections mapping to allow batching and the use of Hibernate L2 cache.	2017-05-23 08:09:39 -04:00
Stian Thorgersen	e3a04ebd90	Merge pull request #3557 from glavoie/KEYCLOAK-3988 KEYCLOAK-3988: Multiple missing indexes on FKs.	2017-05-23 14:07:51 +02:00
Pedro Igor	37a98fba20	[KEYCLOAK-4913] - Caching more query methods	2017-05-22 19:08:24 -03:00
Bill Burke	ab763e7c5b	fixes after merge	2017-05-19 15:54:36 -04:00
mposolda	e2a7b71cf3	KEYCLOAK-4939 ConcurrentLoginTest broken in latest master	2017-05-19 14:00:52 +02:00
Bill Burke	2cac8b1bb7	KEYCLOAK-4929	2017-05-18 16:53:31 -04:00
Bill Burke	c291748f43	KEYCLOAK-4929	2017-05-18 16:48:04 -04:00
mposolda	c178a2392d	KEYCLOAK-4907 Fix postgresql and mssql. Fix migration	2017-05-17 22:44:44 +02:00
Gabriel Lavoie	4581272dcd	KEYCLOAK-3988: Multiple missing indexes on FKs.	2017-05-15 08:15:58 -04:00
Marek Posolda	70d7e07526	Merge pull request #4132 from mposolda/cross-dc4-squash KEYCLOAK-4626 KEYCLOAK-4627 Authentication sessions & Action tokens	2017-05-15 12:46:43 +02:00
Pedro Igor	d824b4d93c	Changing cache key for findByResource	2017-05-12 10:25:06 -03:00
Pedro Igor	7569493b17	Invalidating cache for findByowner	2017-05-12 10:23:54 -03:00
mposolda	7d8796e614	KEYCLOAK-4626 Support for sticky sessions with AUTH_SESSION_ID cookie. Clustering tests with embedded undertow. Last fixes.	2017-05-11 22:24:07 +02:00
Hynek Mlnarik	b8262a9f02	KEYCLOAK-4628 Single-use cache + its functionality incorporated into reset password token. Utilize single-use cache for relevant actions in execute-actions token	2017-05-11 22:16:26 +02:00
mposolda	db8b733610	KEYCLOAK-4626 Fix TrustStoreEmailTest and PolicyEvaluationCompositeRoleTest. Distribution update	2017-05-11 22:16:26 +02:00
Hynek Mlnarik	c431cc1b01	KEYCLOAK-4627 IdP email account verification + code cleanup. Fix for concurrent access to auth session notes	2017-05-11 22:16:26 +02:00
mposolda	168153c6e7	KEYCLOAK-4626 Authentication sessions - SAML, offline tokens, broker logout and other fixes	2017-05-11 22:16:26 +02:00
mposolda	e7272dc05a	KEYCLOAK-4626 AuthenticationSessions - brokering works. Few other fixes and tests added	2017-05-11 22:16:26 +02:00
mposolda	a9ec69e424	KEYCLOAK-4626: AuthenticationSessions - working login, registration, resetPassword flows	2017-05-11 22:16:26 +02:00
mposolda	83b29c5080	KEYCLOAK-4626 AuthenticationSessions: start	2017-05-11 22:16:26 +02:00
Pedro Igor	e14be4460b	[KEYCLOAK-4867] - Cluster events and invalidations	2017-05-05 22:48:51 -03:00
Stian Thorgersen	8da766e02e	Merge pull request #4104 from sjvs/master Fix three lgtm.com alerts: two possible NPEs, one possible int overflow	2017-05-05 13:13:02 +02:00
Bill Burke	af792b8abe	fix	2017-04-29 17:03:36 -04:00
Bill Burke	1f4311a02c	KEYCLOAK-4821	2017-04-29 10:41:32 -04:00
Bas van Schaik	eb93eef874	Fix lgtm.com alert: variable 'config' is always null (likely false logic) Details: https://lgtm.com/projects/g/keycloak/keycloak/snapshot/dist-7900299-1490802114895/files/model/jpa/src/main/java/org/keycloak/models/jpa/JpaUserCredentialStore.java#V122	2017-04-28 14:50:30 +01:00
Eriksson Fabian	ca1152c3e5	KEYCLOAK-4204 Extend brute force protection with permanent lockout on failed attempts - Can still use temporary brute force protection. - After X-1 failed login attempt, if the user successfully logs in his/her fail login count is reset.	2017-04-28 09:02:10 +02:00
Stian Thorgersen	87dedb56e5	Set version to 3.2.0.CR1-SNAPSHOT	2017-04-27 14:23:03 +02:00
mposolda	8000baeb1f	KEYCLOAK-4789 Can't remove userStorage when linked users have consent	2017-04-25 11:32:26 +02:00
Stian Thorgersen	54ee055bd8	KEYCLOAK-4671 Add server-private-spi to dependency deployer	2017-04-25 10:16:24 +02:00
mposolda	d05a894831	KEYCLOAK-4326 KEYCLOAK-4588 Can't get granted consents if client template mappers were consented to	2017-04-24 15:44:38 +02:00
mposolda	1fd5af840b	KEYCLOAK-4525 Deleting a client with existing sessions/offline_tokens leads to Internal Server Errors	2017-04-24 11:24:09 +02:00
Pedro Igor	bf69bc94bb	[KEYCLOAK-4754] - Unable to delete realm when using aggregated policies	2017-04-20 12:10:52 -03:00
Pedro Igor	8e877a7f6c	[KEYCLOAK-3135] - More tests	2017-04-12 14:34:27 -03:00
Pedro Igor	eec712a259	[KEYCLOAK-3135] - Role and user policies apis	2017-04-12 00:52:14 -03:00
Pedro Igor	54ebc1918c	[KEYCLOAK-3135] - Using abstract policy representation when creating policies and updating tests	2017-04-12 00:52:13 -03:00
Pedro Igor	55f747ecd0	[KEYCLOAK-3135] - Part 1: Permission Management API	2017-04-12 00:52:13 -03:00
Pedro Igor	1f50421a54	[KEYCLOAK-4726] - Multiple role policies crash realm delete	2017-04-06 12:36:03 -03:00
Jared Blashka	61bd9bb58c	Fix CachePolicy.MAX_LIFESPAN invalidation	2017-03-20 22:56:35 -04:00
Stian Thorgersen	a87ee04024	Bump to 3.1.0.CR1-SNAPSHOT	2017-03-16 14:21:40 +01:00
Johannes Knutsen	9a0de676c4	KEYCLOAK-4559 Filter users by realm id when searching for user by user attribute	2017-03-14 11:05:12 +01:00
Pedro Igor	e7e6314146	[KEYCLOAK-4555] - Fixes and improvements to evaluation code	2017-03-13 14:08:54 -03:00
Stian Thorgersen	e7cd8d41c6	Merge pull request #3558 from glavoie/KEYCLOAK-3989 KEYCLOAK-3989: Replacing COMPOSITE_ROLE Collection with Set.	2017-03-10 12:00:59 +01:00
Bill Burke	efffcc5f41	Merge pull request #3915 from TeliaSoneraNorge/KEYCLOAK-4524 KEYCLOAK-4524	2017-03-08 10:08:04 -05:00
Martin Hardselius	a0a85f62c6	KEYCLOAK-4524 possible to add identity prover mappers with same name into single identity provider - unique name enforcement working - test added	2017-03-03 16:40:49 +01:00
Bill Burke	3bb29e033b	KEYCLOAK-4501, KEYCLOAK-4511, KEYCLOAK-4513	2017-03-03 09:48:52 -05:00
Stian Thorgersen	49ac3587b6	KEYCLOAK-4384 Remove Mongo support	2017-02-15 15:20:58 +01:00
Bill Burke	d9633dc20c	Merge remote-tracking branch 'upstream/master'	2017-02-09 09:13:00 -05:00
Bill Burke	cf5e2a1d20	unlink/remoteimported	2017-02-08 19:48:22 -05:00
Stian Thorgersen	1c7de24084	Merge pull request #3832 from stianst/KEYCLOAK-4370 KEYCLOAK-4370 Prevent LDAP provider from being migrated twice	2017-02-06 08:21:30 +01:00
Stian Thorgersen	f73aaef67a	KEYCLOAK-4370 Prevent LDAP provider from being migrated twice	2017-02-03 10:05:57 +01:00
Bill Burke	0d308e2b69	KEYCLOAK-4218	2017-01-31 15:15:49 -05:00
Stian Thorgersen	6f22f88d85	Bump version to 3.0.0.CR1	2017-01-26 06:18:11 +01:00
mposolda	e487db349c	KEYCLOAK-4274 Fix recursive composite role mappings	2017-01-23 17:55:45 +01:00
Stian Thorgersen	99e1eac094	Merge pull request #3775 from hmlnarik/KEYCLOAK-2847-Unexpected-error-when-trying-to-update-clientTemplate-to-already-existing-name KEYCLOAK-2847 Fix exception convertor for Wildfly	2017-01-23 13:00:58 +01:00
Stian Thorgersen	7410bdb31c	Merge pull request #3756 from mstruk/KEYCLOAK-3657 KEYCLOAK-3657 Role id is not preserved during import-export operation	2017-01-23 09:59:02 +01:00
Hynek Mlnarik	13e4f607ad	KEYCLOAK-2847 Fix exception convertor for Wildfly	2017-01-19 18:11:51 +01:00
Bill Burke	73d3e8afd9	Merge pull request #3770 from patriot1burke/master KEYCLOAK-4077	2017-01-19 07:35:10 -05:00
Bill Burke	8daa2c3703	KEYCLOAK-4256	2017-01-18 18:28:08 -05:00
Pedro Igor	c19360c6f2	[KEYCLOAK-4203] - Removing references to Drools	2017-01-18 12:44:30 -02:00
Marko Strukelj	7de999a7f9	KEYCLOAK-3657 Role id is not preserved during import-export operation	2017-01-13 17:46:30 +01:00
Bill Burke	aa78c9eaf5	Merge pull request #3666 from hmlnarik/KEYCLOAK-4072-User-ID-from-User-Storage-Provider-too-long-for-Offline-User-Session KEYCLOAK-4072 Add explicit check for key format	2017-01-13 09:39:45 -05:00
mposolda	9a6f202c46	KEYCLOAK-4137 Significant performance lag in 'get client role by role name'	2017-01-12 11:55:58 +01:00
mposolda	7098daaf72	KEYCLOAK-4066 TimeoutException in cluster environment in ClearExpiredSessions	2017-01-11 12:27:51 +01:00
Bill Burke	d075172fd2	KEYCLOAK-3617 KEYCLOAK-4117 KEYCLOAK-4118	2017-01-09 17:14:20 -05:00
Stian Thorgersen	8a0859fcba	Merge pull request #3700 from stianst/KEYCLOAK-2980 KEYCLOAK-2980 Fix admin query for resource path	2017-01-04 07:01:19 +01:00
Stian Thorgersen	b7c98ed433	KEYCLOAK-2980 Fix admin query for resource path	2017-01-03 10:34:21 +01:00
Stian Thorgersen	1c0e204f50	Merge pull request #3690 from stianst/master Bump version to 2.5.1.Final-SNAPSHOT	2017-01-02 08:52:04 +01:00
mposolda	b5317f3485	RHSSO-377 Added reproducer unit test L1SerializationIssueTest	2016-12-22 11:41:10 +01:00
Stian Thorgersen	e805ffd945	Bump version to 2.5.1.Final-SNAPSHOT	2016-12-22 08:22:18 +01:00
Pedro Igor	85446c3b46	Merge pull request #3688 from pedroigor/KEYCLOAK-4125 [KEYCLOAK-4125] - Fixing when running in a cluster	2016-12-21 20:34:10 -02:00
Pedro Igor	df7a68b709	[KEYCLOAK-4125] - Fixing when running in a cluster	2016-12-21 20:04:08 -02:00
mposolda	c998198aac	KEYCLOAK-4128 ResourcePermissionManagementTest fails on Oracle DB	2016-12-21 13:01:37 +01:00
Stian Thorgersen	663b99d884	KEYCLOAK-4127 Temporarily disable cache for authorization services as it breaks clustering	2016-12-21 08:36:24 +01:00
Hynek Mlnarik	66eb9095c1	KEYCLOAK-4122	2016-12-20 20:28:13 +01:00
mposolda	96f2985e86	Fix StackOverflowError on Mongo	2016-12-20 12:21:21 +01:00
mposolda	aee8398ee8	KEYCLOAK-4072 Minor update	2016-12-20 11:42:24 +01:00
Bill Burke	8b5aafc4b4	KEYCLOAK-4072	2016-12-20 09:42:43 +01:00
Pedro Igor	c9c8acd029	[KEYCLOAK-4034] - Invalidating policy cache when creating resources and scopes	2016-12-19 20:28:49 -02:00
Pedro Igor	40591cff25	Merge pull request #3662 from pedroigor/KEYCLOAK-4034 [KEYCLOAK-4034] - Improvements to UI, performance and some code cleanup	2016-12-19 16:49:10 -02:00
Pedro Igor	5cf5168770	[KEYCLOAK-4034] - Improvements to UI, performance and some code cleanup	2016-12-19 16:48:16 -02:00
Marek Posolda	c6363aa146	Merge pull request #3630 from sldab/duplicate-email-support KEYCLOAK-4059 Support for duplicate emails	2016-12-19 15:37:18 +01:00
Pedro Igor	c9c9f05e29	[KEYCLOAK-4034] - Improvements to UI, performance and some code cleanup	2016-12-19 11:22:37 -02:00
Stian Thorgersen	3bd3d0285d	Merge branch 'duplicate-groups' of https://github.com/ssilvert/keycloak into ssilvert-duplicate-groups	2016-12-19 13:07:39 +01:00
Hynek Mlnarik	3e3216fb23	KEYCLOAK-4072 Add explicit check for key format	2016-12-19 11:01:45 +01:00
Slawomir Dabek	93cec9b3ee	KEYCLOAK-4059 Support for duplicate emails	2016-12-19 10:55:12 +01:00
Bill Burke	9b18601102	KEYCLOAK-3973	2016-12-07 16:10:33 -05:00
Bill Burke	223cc1fb50	KEYCLOAK-3973	2016-12-07 12:56:03 -05:00
Bill Burke	77d17de14d	Merge pull request #3611 from patriot1burke/master KEYCLOAK-3620	2016-12-06 08:18:36 -05:00
Marek Posolda	3826e933c1	Merge pull request #3609 from hmlnarik/KEYCLOAK-3439-database-encoding KEYCLOAK-4026 - Workaround for liquibase error in MySQL/MariaDB	2016-12-06 10:25:08 +01:00
Marek Posolda	c8b22e71f0	Merge pull request #3573 from glavoie/KEYCLOAK-4003 KEYCLOAK-4003: Slow Infinispan RoleAdapter.hasRole() call.	2016-12-06 09:49:42 +01:00
Bill Burke	6587cd2478	KEYCLOAK-3620	2016-12-05 17:51:06 -05:00
Hynek Mlnarik	819105c3aa	KEYCLOAK-4026 - Workaround for liquibase error in MySQL/MariaDB	2016-12-05 16:48:52 +01:00
Gabriel Lavoie	32c23c2410	KEYCLOAK-4002: realmRevisions cache too small with high number of realms. - Increased the hardcoded default value to help running master with high number of realms. - Added a value computation based on the realms cache max size (to match the userRevisions cache configuration pattern). - Computed revisions cache size is now 2 times the configured maximum cache size. - Added a maximum realms cache size configuration to the different standalone.xml templates. - Added a missing users cache size configuration to standalone.xsl.	2016-12-05 08:07:24 -05:00
Bill Burke	e8f2527fcd	Merge pull request #3555 from vramik/KEYCLOAK-3977 KEYCLOAK-3977 fix logicalFilePath for jpa-changelog-1.0.0.Final-db2.xml	2016-12-03 13:44:54 -05:00
Bill Burke	305dcb2b1e	Merge pull request #3552 from hmlnarik/KEYCLOAK-3439-database-encoding KEYCLOAK-3439, KEYCLOAK-3893, KEYCLOAK-3894 - Support for Unicode	2016-12-03 13:44:10 -05:00
Bill Burke	54758b800b	Merge pull request #3585 from abstractj/KEYCLOAK-4011 [KEYCLOAK-4011] - Integrity constraint error when try to delete SSSD Federation Provider	2016-12-03 13:37:36 -05:00
Bill Burke	88d08c4f38	component query and remove provider alis fix	2016-12-03 11:34:48 -05:00
Bill Burke	672e1b3575	oops	2016-12-02 20:14:01 -05:00
Bill Burke	ce50b0ed29	Merge remote-tracking branch 'upstream/master'	2016-12-02 19:26:34 -05:00
Bill Burke	e88af874ca	finish	2016-12-02 19:25:17 -05:00
Bruno Oliveira	e7dd49b453	[KEYCLOAK-4011] - Integrity constraint error when try to delete SSSD Federation Provider	2016-12-02 06:52:29 -02:00
Hynek Mlnarik	46d3555798	KEYCLOAK-3439, KEYCLOAK-3893, KEYCLOAK-3894 - Support for Unicode Treatment of Unicode characters varies among databases. This change adds support for Unicode characters in the following fields: * Realms: display name, HTML display name * Users: username, given name, last name, attribute values * Groups: name, attribute values * Components: attribute values * Roles: name * Descriptions of objects Unicode support for the rest of the fields depends on database vendor and is described in the installation guide in more detail.	2016-12-01 17:23:58 +01:00
Gabriel Lavoie	6fa504489f	KEYCLOAK-4003: Slow Infinispan RoleAdapter.hasRole() call. - Added a session/query cache for the result getComposites() to avoid always hitting the Infinispan cache. - KeycloakModelUtils doesn't rely anymore on a "visited" set as performance seems good without it. - Added test for multiple levels of composite roles. Only one level was covered.	2016-11-30 10:56:26 -05:00
Stian Thorgersen	b771b84f56	Bump to 2.5.0.Final-SNAPSHOT	2016-11-30 15:44:51 +01:00
mposolda	ec49d10007	KEYCLOAK-3997 InfinispanKeyStorageProviderTest was failing	2016-11-30 08:38:35 +01:00
Bill Burke	b33afcd47c	KEYCLOAK-3903 KEYCLOAK-3960	2016-11-29 16:43:06 -05:00
Gabriel Lavoie	4910b35d69	KEYCLOAK-3989: Replacing COMPOSITE_ROLE Collection with Set. - Hibernate optimization that avoids deleting/re-inserting all composite roles when adding/removing a composite.	2016-11-28 09:43:05 -05:00
mposolda	69ce1e05f0	KEYCLOAK-3822 Changing signature validation settings of an external IdP is not sometimes reflected	2016-11-28 15:27:25 +01:00
Vlasta Ramik	8d3136188d	KEYCLOAK-3977 fix logicalFilePath for jpa-changelog-1.0.0.Final-db2.xml	2016-11-28 14:52:09 +01:00
mposolda	7c6032cc84	KEYCLOAK-3825 Ability to expire publicKeys cache. Migrated OIDCBrokerWithSignatureTest to new testsuite	2016-11-25 17:45:37 +01:00
Bill Burke	ccbd8e8c70	remove User Fed SPI	2016-11-23 16:06:44 -05:00
Bill Burke	d5925b8ccf	remove realm UserFed SPI methods	2016-11-23 08:31:20 -05:00
Bill Burke	045d6ef1d0	Merge remote-tracking branch 'upstream/master'	2016-11-22 11:28:09 -05:00
Stian Thorgersen	6ec82865d3	Bump version to 2.4.1.Final-SNAPSHOT	2016-11-22 14:56:21 +01:00
Bill Burke	50fc083d97	fix migration scripts	2016-11-21 11:43:09 -05:00
Bill Burke	798fd84698	Merge remote-tracking branch 'upstream/master'	2016-11-21 11:33:52 -05:00
Bill Burke	19575b2c8f	port kerberos	2016-11-21 11:33:44 -05:00
mposolda	6df7a80352	KEYCLOAK-3931 Fix Mongo to have LDAP tests pass	2016-11-21 11:25:18 +01:00
mposolda	da52a5c9cf	KEYCLOAK-3930 KEYCLOAK-3931 LDAP and Mongo fixes	2016-11-18 20:02:02 +01:00
mposolda	76bfbad2c4	KEYCLOAK-3895 Make UserSessionProvider and UserSessionPersisterProvider to rely on UserRemovedEvent callbacks	2016-11-18 15:58:33 +01:00
Stian Thorgersen	7043ecc21b	KEYCLOAK-3881 Fix login status iframe with * origin	2016-11-18 12:50:52 +01:00
mposolda	a27be0cee7	KEYCLOAK-3857 Clustered invalidation cache fixes and refactoring. Support for cross-DC for invalidation caches.	2016-11-16 22:29:23 +01:00
Bill Burke	8794416241	fix db2	2016-11-14 16:22:30 -05:00
Bill Burke	cc0eb47814	merge	2016-11-14 15:09:41 -05:00
Bill Burke	c280634bfa	fix tests	2016-11-14 15:06:17 -05:00
Hynek Mlnarik	223041bc6b	KEYCLOAK-3734 Unify master changelog of DB2 and other databases	2016-11-14 15:19:54 +01:00
Bill Burke	4ce055cede	mongo ldap migration script	2016-11-11 09:06:25 -05:00
Bill Burke	8a5f817030	ldap jpa migration	2016-11-10 16:52:18 -05:00
Stian Thorgersen	7e33f4a7d1	KEYCLOAK-3882 Split server-spi into server-spi and server-spi-private	2016-11-10 13:28:42 +01:00
Stan Silvert	80b071024f	KEYCLOAK-2720: Add unique constraint	2016-11-08 15:05:19 -05:00
Bill Burke	14dc0ff92f	Merge remote-tracking branch 'upstream/master'	2016-11-05 20:05:01 -04:00
Bill Burke	4302b440ee	ldap port	2016-11-05 20:04:53 -04:00
Bill Burke	c75dcb90c2	ldap port	2016-11-04 21:25:47 -04:00
Pedro Igor	4bf5da8fac	Merge pull request #3371 from brewers/bug/cache-dynamic-resource KEYCLOAK-3752 : Include programmatically created resources in the resource cache	2016-11-02 07:19:04 -02:00
Stian Thorgersen	3d46b4c425	KEYCLOAK-3667	2016-10-28 08:43:24 +02:00
Bill Burke	b67cb0e97a	Merge remote-tracking branch 'upstream/master'	2016-10-25 11:44:22 -04:00
Bill Burke	3e28ac1e46	user spi cache policy	2016-10-24 15:36:37 -04:00
Stian Thorgersen	4d47f758fc	Merge pull request #3405 from stianst/master Bump version	2016-10-21 10:11:59 +02:00
Stian Thorgersen	c615674cbb	Bump version	2016-10-21 07:03:15 +02:00
Bill Burke	fd86f3bda8	Merge pull request #3399 from patriot1burke/master realm cache event	2016-10-20 14:02:41 -04:00
Stian Thorgersen	390becb935	Merge pull request #3394 from hmlnarik/KEYCLOAK-3769 KEYCLOAK-3769 Workaround for ChangeLogService stale instance	2016-10-20 19:43:24 +02:00
Bill Burke	139158e614	fix	2016-10-20 12:36:24 -04:00
mposolda	c4ad84945c	KEYCLOAK-3773 Testsuite failing with mongo	2016-10-20 17:47:34 +02:00
Bill Burke	36c2422fa4	realm cache event	2016-10-20 10:35:28 -04:00
Hynek Mlnarik	d59f6e397f	KEYCLOAK-3769 Workaround for ChangeLogService stale instance Before applying update or validation operation, Liquibase ChangeLogService needs to be reset to forget about previously set change log table. Reason is that the factory creating the ChangeLogService caches this service per DB connection, not per Liquibase object, hence changes in name of change log table needed for custom JpaEntityProvider are not reflected and use only the first change log table name, i.e. the change log table of the main database.	2016-10-20 14:57:51 +02:00
Bill Burke	cdf7dd3a6c	Merge pull request #3372 from patriot1burke/master onCreate for Components	2016-10-19 16:21:20 -04:00
mposolda	3779bfb6b4	KEYCLOAK-3666 client registration policies - polishing	2016-10-19 17:45:23 +02:00
Bill Burke	fdb8c04ac9	Merge remote-tracking branch 'upstream/master'	2016-10-19 10:06:48 -04:00
Bill Burke	46e32b36d2	onCreate for Components	2016-10-19 10:06:09 -04:00
Hynek Mlnarik	49d3d3f6e3	KEYCLOAK-3698 Manual migration - custom JpaEntityProvide changelog table Reflect in the SQL script that custom JpaEntityProviders have their own changelog tables, and issue DDL commands to create them when initializing a new database.	2016-10-19 12:08:14 +02:00
Cherian Mathew	2bba6af6d9	Include programmatically created resources in the resource cache	2016-10-19 11:04:22 +02:00
Bill Burke	d941e07169	Merge pull request #3350 from patriot1burke/master federated import/export to json	2016-10-18 14:15:25 -04:00
Stian Thorgersen	a87c08416d	Merge pull request #3346 from hmlnarik/KEYCLOAK-3588 KEYCLOAK-3698 Make manual update scripts play nicely with custom JpaEntityProviders	2016-10-18 19:41:02 +02:00
Bill Burke	2199df71bf	Merge remote-tracking branch 'upstream/master'	2016-10-18 10:14:00 -04:00
Bill Burke	4182e4d92a	federated import/export	2016-10-18 10:13:51 -04:00
Marek Posolda	940237ee78	Merge pull request #3304 from hmlnarik/KEYCLOAK-2964 KEYCLOAK-2964 - Fix groups not applied for authentication of admin operations	2016-10-18 14:50:12 +02:00
Hynek Mlnarik	658988ccd0	KEYCLOAK-3588 Make manual update scripts play nicely with custom JpaEntityProviders	2016-10-18 13:59:24 +02:00
Marek Posolda	386bf8d39e	Merge pull request #3344 from hmlnarik/KEYCLOAK-3732 KEYCLOAK-3732 Include 2.3.0 DB changelog for DB2	2016-10-18 10:29:01 +02:00
Hynek Mlnarik	2ea93b8a8b	KEYCLOAK-3732 Include 2.3.0 DB changelog for DB2	2016-10-18 09:53:27 +02:00
Hynek Mlnarik	9df3091b22	KEYCLOAK-3588 Update comment with related KC issue	2016-10-18 08:17:18 +02:00
Stian Thorgersen	06ad1537c8	Merge pull request #3323 from hmlnarik/KEYCLOAK-3639 KEYCLOAK-3639 Drop default value that prevents MSSQL update	2016-10-17 19:40:05 +02:00
Stian Thorgersen	3b2f7630bb	Merge pull request #3320 from hmlnarik/KEYCLOAK-3698 KEYCLOAK-3698: Add creation of DB changelog to SQL script	2016-10-17 18:55:45 +02:00
Stian Thorgersen	7c09b0c7b4	Merge pull request #3319 from hmlnarik/KEYCLOAK-3588 KEYCLOAK-3588: DB up-to-date check should not modify DB	2016-10-17 18:54:59 +02:00
Geir Ole Hiåsen Stevning	95f62c6aeb	KEYCLOAK-3626 - CreatedDate and lastUpdatedDate on user consent	2016-10-17 13:53:12 +02:00
mposolda	18e0c0277f	KEYCLOAK-3666 Dynamic client registration policies	2016-10-14 20:20:40 +02:00
Hynek Mlnarik	8bdd8f4274	KEYCLOAK-3639 Drop default value that prevents MSSQL update	2016-10-14 17:51:35 +02:00
Hynek Mlnarik	f256e2b102	KEYCLOAK-3588: DB up-to-date check should not modify DB The DB up-to-date check uses Liquibase.listUnrunChangeSets() that in its available variants unconditionally creates a DatabaseChangeLog tables. Until the variant of listUnrunChangeSets() that suppresses this behaviour is made public [1] (currently it is protected), workaround has been implemented that invokes less invasive variant of listUnrunChangeSets() via reflection. [1] https://liquibase.jira.com/browse/CORE-2919	2016-10-14 14:29:01 +02:00
Hynek Mlnarik	3d47ab3665	KEYCLOAK-3698: Add creation of DB changelog to SQL script Creation of database table DatabaseChangeLog was omitted from SQL script which prevented creation of the database from scratch. The fix adds DDL commands to create the table to the output SQL script in case of empty database initialization. Please note that DatabaseChangeLogLock is intentionally omitted. It is created automatically before the update is even executed because a lock is acquired (thus the table is properly created if it does not exist) before check for up-to-dateness of database and potential migration in KeycloakApplication constructor.	2016-10-14 14:27:07 +02:00
Bill Burke	8c8a39c833	sync and import	2016-10-13 20:49:02 -04:00
Bill Burke	0938390654	sync and import	2016-10-13 20:38:49 -04:00
Hynek Mlnarik	6578ce73a1	KEYCLOAK-3697: Evaluate preconditions when generating SQL script Plus minor related change - replace deprecated call with equivalent supported, add javadoc Further info: * http://forum.liquibase.org/topic/unexpected-behaviour-of-preconditions-with-updatesql * http://stackoverflow.com/questions/17671923/liquibase-migrate-sql-does-not-check-precondtions	2016-10-13 13:00:33 +02:00
Stian Thorgersen	d2cae0f8c3	KEYCLOAK-905 Realm key rotation for OIDC	2016-10-13 11:19:52 +02:00
Hynek Mlnarik	03cf9bad2e	KEYCLOAK-2964 - Fix groups not applied for authentication of admin operations	2016-10-11 15:21:38 +02:00
Bill Burke	c5600e888d	revactor CredentialValidationOutput apis	2016-10-04 17:26:45 -04:00
Bill Burke	4af0976194	remove UserCredValueModel and hold hash providers	2016-10-04 12:34:15 -04:00
Marek Posolda	c32cf51808	Merge pull request #3254 from didiez/master KEYCLOAK-3608 Update existing user single attribute removes all other attributes from user	2016-10-04 08:43:22 +02:00
mposolda	0f9798a10d	KEYCLOAK-3493 KEYCLOAK-3532 Renamed KeyStorageProvider to PublicKeyStorageProvider	2016-10-03 15:23:50 +02:00
Bill Burke	d4c3fae546	merge conflicts	2016-09-30 19:19:12 -04:00
Bill Burke	6a4e413bf4	final mongo fixes	2016-09-30 19:08:34 -04:00
Bill Burke	110f6ad549	mongo fed	2016-09-30 16:48:59 -04:00
mposolda	f9a0abcfc4	KEYCLOAK-3493 KEYCLOAK-3532 Added KeyStorageProvider. Support key rotation for OIDC clients and identity providers with JWKS url.	2016-09-30 21:28:23 +02:00
Bill Burke	8967ca4066	refactor mongo entities, optimize imports	2016-09-28 15:25:39 -04:00
Stian Thorgersen	a58c985934	Merge pull request #3268 from stianst/REVIEW KEYCLOAK-2438	2016-09-28 13:27:26 +02:00
Stian Thorgersen	34f62eb31d	Fixes to [KEYCLOAK-2438] PR	2016-09-28 10:25:37 +02:00
Bill Burke	d65cc830eb	mongo fixes	2016-09-27 17:07:16 -04:00
Bruno Oliveira	98d2fe15e8	[KEYCLOAK-2438] - Add display name to social login buttons [KEYCLOAK-3291] - Names of social identity providers are wrongly capitalized (eg GitHub vs Github)	2016-09-26 13:36:28 -03:00
Bill Burke	ecc104719d	bump pom version	2016-09-26 11:01:18 -04:00
Bill Burke	ff1326fe35	authenticator example updated	2016-09-23 16:50:08 -04:00
Bill Burke	8e65356891	creds	2016-09-22 19:57:39 -04:00
Bill Burke	7209a95dce	credential refactoring	2016-09-22 08:34:45 -04:00
didiez	98bf095471	Keep setSingleAttribute from deleting all other attributes of the user being updated.	2016-09-22 10:42:24 +02:00
mposolda	9d79a847c8	KEYCLOAK-3547 Incorrect jpa-changelog-2.2.0.xml	2016-09-09 09:47:32 +02:00
Bill Burke	2a5c778af5	Merge pull request #3209 from patriot1burke/master KEYCLOAK-3440	2016-09-08 09:10:54 -04:00
Stian Thorgersen	1f27fc9e4b	Merge pull request #3153 from cargosoft/KEYCLOAK-3327 KEYCLOAK-3327 Make realm attributes accessible via the RealmModel	2016-09-08 08:00:14 +02:00
Bill Burke	3b9a6b32e1	Revert "Revert "KEYCLOAK-3440"" This reverts commit `01e48dc4b8`.	2016-09-07 23:41:32 -04:00
Bill Burke	01e48dc4b8	Revert "KEYCLOAK-3440"	2016-09-07 23:17:35 -04:00
Bill Burke	3f35234cf5	Merge remote-tracking branch 'upstream/master'	2016-09-07 23:11:38 -04:00
Bill Burke	da135389c7	KEYCLOAK-3440	2016-09-07 23:11:28 -04:00
mposolda	5a015a6518	KEYCLOAK-3494 Input elements backed by user attributes fail to update in themes	2016-09-07 20:08:09 +02:00
Bill Burke	15d31a202f	Merge remote-tracking branch 'upstream/master'	2016-09-06 08:56:17 -04:00
Bill Burke	6714c1a136	cred refactor	2016-09-06 08:55:47 -04:00
mposolda	494d9973a6	KEYCLOAK-3460 Support for ClientUpdatedEvent	2016-08-23 14:57:31 +02:00
Stian Thorgersen	c522a20ab9	KEYCLOAK-3447 Manual upgrade of database schema	2016-08-22 10:22:08 +02:00
Dimitri Teleguin	b109ce14b0	KEYCLOAK-3327 Make realm attributes accessible via the RealmModel	2016-08-18 23:28:32 +03:00
Pedro Igor	4cd0a8e894	[KEYCLOAK-3377] - Add pagination to authorization UI	2016-08-18 13:29:54 -03:00
Bill Burke	6c44e9befa	Merge remote-tracking branch 'upstream/master'	2016-08-18 11:57:25 -04:00
Bill Burke	8e9cfc4a28	creds	2016-08-18 11:52:00 -04:00
Pedro Igor	bfe10e34e7	[KEYCLOAK-3390] - Updating authorization objects doesn't invalidate cache in cluster	2016-08-12 11:15:13 -03:00
mposolda	0520d465c1	KEYCLOAK-3414 Support for client registration from trusted hosts	2016-08-11 15:55:32 +02:00
mposolda	d52e043322	Set version to 2.2.0-SNAPSHOT	2016-08-10 08:57:18 +02:00
Bill Burke	ff703f935f	component export/import	2016-08-09 12:25:04 -04:00
Thomas Darimont	e49afb2d83	KEYCLOAK-3142 - Revised according to codereview Liquibase Moved schema evolution configuration from jpa-changelog-2.1.0 to jpa-changelog-2.2.0. Corrected wrong ResourceType references in tests. Adapted AdminEvents copy-routines to be aware of resourceType attribute. Added ResourceType enum to exposed ENUMS of ServerInfoAdminResource. Signed-off-by: Thomas Darimont <thomas.darimont@gmail.com>	2016-08-05 00:01:03 +02:00
Thomas Darimont	586f6eeece	KEYCLOAK-3142 - Capture ResourceType that triggers an AdminEvent Introduced new ResourceType enum for AdminEvents which lists the current supported ResourceTypes for which AdminEvents can be fired. Previously it was difficult for custom EventListeners to figure out which ResourceType triggered an AdminEvent in order to handle it appropriately, effectively forcing users to parse the representation. Having dedicated resource types as a marker on an AdminEvent helps to ease custom EventListener code. We now also allow filtering of admin events by ResourceType in the admin-console. Signed-off-by: Thomas Darimont <thomas.darimont@gmail.com>	2016-08-04 11:30:02 +02:00
Bill Burke	534ee2e50c	Merge remote-tracking branch 'upstream/master'	2016-08-03 19:16:45 -04:00
Bill Burke	70722d0d3d	user storage provider jpa example	2016-08-03 19:16:11 -04:00
mposolda	bf3541414c	KEYCLOAK-3393 Fix Keycloak on EAP7 overlay	2016-08-03 13:01:44 +02:00
mposolda	9242e972c0	Fix Oracle DB	2016-08-03 13:01:30 +02:00
mposolda	b3a55df1e7	Fixing mongo	2016-08-02 10:58:44 +02:00
Bill Burke	09693eb108	component model	2016-08-02 05:48:57 +02:00
mposolda	9688880837	Fix testsuite with mongo	2016-08-02 05:44:40 +02:00
mposolda	c5d40a76ff	Fix DB2 and Oracle	2016-08-01 12:31:16 +02:00
Bill Burke	2219cd363e	Merge pull request #3079 from patriot1burke/master KEYCLOAK-3268	2016-07-28 07:22:45 -04:00
Pedro Igor	7e1b97888a	[KEYCLOAK-3338] - Adding client roles to role policy and UX improvements	2016-07-27 15:15:14 -03:00
Bill Burke	69f051fb0a	test user fed registration spi	2016-07-23 08:55:06 -04:00
Bill Burke	db852f7e11	preRemove	2016-07-22 14:24:37 -04:00
Bill Burke	06fca9c897	Merge remote-tracking branch 'upstream/master'	2016-07-22 11:42:14 -04:00
Bill Burke	72d134748c	user fed spi querying tests	2016-07-22 11:42:07 -04:00
Marek Posolda	079026a7be	Merge pull request #3055 from mposolda/master KEYCLOAK-3344 Can't remove realm with mongo model	2016-07-21 14:18:49 +02:00
mposolda	981ff90c81	KEYCLOAK-3344 Can't remove realm with mongo model	2016-07-21 12:47:25 +02:00
Pedro Igor	484d5d6e08	[KEYCLOAK-3313] - UI improvements and messages	2016-07-20 22:11:24 -03:00
Bill Burke	c709598fdd	user fed spi simple test	2016-07-20 10:59:45 -04:00
Stian Thorgersen	ea44b5888b	KEYCLOAK-2824 Password Policy SPI	2016-07-14 07:20:30 +02:00
Pedro Igor	eba56e4784	Merge pull request #3027 from pedroigor/KEYCLOAK-3305 [KEYCLOAK-3305] - Cache is not properly handling failures when importing configuration	2016-07-12 17:57:47 -03:00
Pedro Igor	02896768f5	[KEYCLOAK-3305] - Cache is not properly handling failures when importing configuration	2016-07-12 13:57:49 -03:00
mposolda	a912ba3148	KEYCLOAK-3306 Added reproducer test for OutdatedTopologyException	2016-07-12 18:12:20 +02:00
mposolda	6e94931023	KEYCLOAK-3296 same user logging twice at the same time causes lock issue - HQL deletion patch	2016-07-11 19:40:24 +02:00
Bill Burke	0040d3fc3b	Merge remote-tracking branch 'upstream/master'	2016-07-07 10:35:45 -04:00
Bill Burke	7e5a5f79cf	fixes for new user fed spi	2016-07-07 10:35:35 -04:00
Stian Thorgersen	3fc215d041	KEYCLOAK-3202 Creating users causes memory leak	2016-07-05 19:54:55 +02:00
Stian Thorgersen	7cfee80e58	KEYCLOAK-3189 KEYCLOAK-3190 Add kid and typ to JWT header	2016-07-05 08:26:26 +02:00
Pedro Igor	74139ec787	[KEYCLOAK-3248] - Permissions don't unlink from resources and scopes	2016-07-04 09:33:46 -03:00
Bill Burke	a19469aba5	Merge remote-tracking branch 'upstream/master'	2016-06-30 17:18:17 -04:00
Bill Burke	b224917fc5	bump version	2016-06-30 17:17:53 -04:00
Bill Burke	3f1eecc4be	Merge remote-tracking branch 'upstream/master'	2016-06-30 16:47:55 -04:00
Bill Burke	3ba3be877e	fixes	2016-06-30 16:47:49 -04:00
Pedro Igor	afa9471c7c	[KEYCLOAK-3128] - Admin Client Authorization Endpoints	2016-06-30 10:26:05 -03:00
Bill Burke	a9f6948d74	Merge remote-tracking branch 'upstream/master'	2016-06-29 15:37:32 -04:00
Bill Burke	f51098c50b	user fed refactor	2016-06-29 15:37:22 -04:00
mposolda	9b9a656192	Fix Oracle DB	2016-06-23 13:23:44 +02:00
mposolda	f6ce1438fd	Fix DB2 and MSSQL	2016-06-23 11:01:30 +02:00
mposolda	5c25619cd6	Fix ResourceManagementTest.testFindById to pass with other RDBMS besides H2	2016-06-23 09:42:59 +02:00
mposolda	f7a2ad021e	KEYCLOAK-3141 Fix DB2 and some other DB issues	2016-06-22 17:06:55 +02:00
mposolda	5c731b4d14	KEYCLOAK-3149 DB update triggered before DBLock is retrieved	2016-06-21 17:14:25 +02:00
mposolda	c4513fdad9	KEYCLOAK-2474 Polishing. Support for separate changelock table per changelog. Support for authenticated endpoint in domain-extension example	2016-06-21 12:06:22 +02:00
Erik Mulder	f4ead484de	KEYCLOAK-2474 Possibility to add custom SPI and extend the data model	2016-06-20 10:56:33 +02:00
Stian Thorgersen	1a9fada964	KEYCLOAK-2753 Refactor authz changelog into separate authz-master.xml	2016-06-17 13:40:22 +02:00
Stian Thorgersen	9030edc04d	KEYCLOAK-2753 Removed unused imports from PolicyAdapter	2016-06-17 13:40:22 +02:00
Stian Thorgersen	3c0f7e2ee2	Merge pull request #2617 from pedroigor/KEYCLOAK-2753 [KEYCLOAK-2753] - Fine-grained Authorization Services	2016-06-17 13:40:15 +02:00
Pedro Igor	086c29112a	[KEYCLOAK-2753] - Fine-grained Authorization Services	2016-06-17 02:07:34 -03:00
Stian Thorgersen	e538394e60	KEYCLOAK-3091 Change brute force to use userId	2016-06-13 15:30:13 +02:00
mposolda	5fc5bafbb6	KEYCLOAK-2714 Remove the pre-liquibase workarounds	2016-06-08 14:40:33 +02:00
Dane Barentine	2f4c2c20f9	KEYCLOAK-2973 Persist federated identity on token update	2016-05-05 14:51:17 -07:00
mposolda	5263101bc0	KEYCLOAK-2820 Mongo doesn't start on wildfly	2016-04-14 10:43:57 +02:00
mposolda	3c3bbdbbdb	KEYCLOAK-2809 NPE when removing role, which is in scope of some ClientTemplate	2016-04-13 11:49:29 +02:00
mposolda	a52fb53ac7	Fix testsuite with Mongo	2016-04-13 09:55:28 +02:00
Bill Burke	8f7f9e0b9c	KEYCLOAK-2790	2016-04-12 18:25:23 -04:00
Stian Thorgersen	d748f7e459	Merge pull request #2573 from stianst/KEYCLOAK-2700 KEYCLOAK-2700 Import existing realm fails due to can't delete group	2016-04-12 07:20:01 +02:00
mposolda	65f94fdf84	KEYCLOAK-2795 Testsuite fails sometimes with NPE in LockServiceFactory.getLockService	2016-04-11 10:09:15 +02:00
Stian Thorgersen	e588860c21	KEYCLOAK-2700 Import existing realm fails due to can't delete group	2016-04-11 09:18:57 +02:00
mposolda	90fc721315	KEYCLOAK-2614 Refactor database lock to use 'SELECT FOR UPDATE' pessimistic locking	2016-04-08 12:20:54 +02:00
mposolda	3d5055d920	KEYCLOAK-2737 Handle the databaseSchema: 'validate' against empty database	2016-04-06 11:43:41 +02:00
Stian Thorgersen	4a285bae9b	KEYCLOAK-2748 Mark modules as private	2016-04-06 08:07:33 +02:00
Marek Posolda	1714422b10	Merge pull request #2487 from mposolda/master databaseSchema option - proper support for "validate" for both JPA and Mongo	2016-04-05 08:48:33 +02:00
Bill Burke	8beff63dc0	KEYCLOAK-2669	2016-04-04 21:12:55 -04:00
mposolda	3a8b450575	KEYCLOAK-2737 connectionsMongo: Support for 'databaseSchema: validate'	2016-04-04 22:24:33 +02:00
mposolda	e6df30602e	KEYCLOAK-2744 connectionsJpa: the databaseSchema 'validate' should check if database schema is updated to latest version	2016-04-04 22:24:25 +02:00
Bill Burke	4d5ae5dd68	KEYCLOAK-2512	2016-04-01 14:50:26 -04:00
mposolda	afd3a36ee4	KEYCLOAK-2737 Remove 'databaseSchema' property from connectionsMongo	2016-04-01 16:55:06 +02:00
mposolda	36bc97e3cd	KEYCLOAK-2661 Broken migration from Keycloak 1.5 with Mongo 3	2016-03-31 22:30:41 +02:00
mposolda	c52500ce88	KEYCLOAK-2610 Add more indexes to database	2016-03-31 11:50:02 +02:00
Bill Burke	545fb8b849	KEYCLOAK-2716	2016-03-30 18:15:11 -04:00
mposolda	c9545e16f7	KEYCLOAK-2713 Fix error at startup	2016-03-24 15:30:53 +01:00
mposolda	c973dc9eee	KEYCLOAK-2610 Ommit checks for default roles and groups during creation of user	2016-03-24 11:11:35 +01:00
mposolda	20fe2b75b5	KEYCLOAK-2710 Improve hibernate statistics report	2016-03-24 11:11:35 +01:00
mposolda	50f8846c3d	KEYCLOAK-2610 Improve performance of creating users with MySQL	2016-03-23 22:36:31 +01:00
mposolda	22ce20ff6b	KEYCLOAK-2710 Possibility to log some hibernate statistics	2016-03-23 22:36:31 +01:00
mposolda	f9595fc6c5	KEYCLOAK-2632 Remove flag from UserCacheSession.invalidateUsers	2016-03-22 21:39:35 +01:00
mposolda	4c6dd10e48	KEYCLOAK-2632 Caching of identity provider links	2016-03-22 21:39:35 +01:00
mposolda	5c912d3501	KEYCLOAK-2631 Caching of service account links	2016-03-22 07:08:47 +01:00
mposolda	e2e96f7183	KEYCLOAK-2630 Add caching for user consents	2016-03-22 07:07:42 +01:00
Bill Burke	b0264d528d	trace log	2016-03-10 13:29:05 -05:00
Bill Burke	82ad26189f	refactor user cache	2016-03-10 13:01:21 -05:00
Bill Burke	cd299c995b	refactor cache	2016-03-10 13:01:20 -05:00
Stian Thorgersen	36f2febde1	Next is 2.0.0.CR1	2016-03-10 13:01:18 -05:00
mposolda	1939f25a71	KEYCLOAK-2601 Fix incorrectly autodetected dialect with MSSQL2014	2016-03-10 13:01:12 -05:00
Stian Thorgersen	76df229967	Next is 1.9.2.Final	2016-03-10 13:01:10 -05:00
mposolda	3ce6deaa1b	Log DB info in arquillian testsuite	2016-03-10 13:01:09 -05:00
mposolda	12e5dfa3e5	Fix DB2	2016-03-10 13:01:06 -05:00
mposolda	4ff4f69343	KEYCLOAK-2611 Keycloak fails to start with Oracle DB	2016-03-10 13:01:05 -05:00
Dane Barentine	f72b0f3f6d	Use createCredential so that authentication will work with both 2.x and 3.x MongoDB servers	2016-03-10 13:01:00 -05:00
mposolda	f8ec178fae	KEYCLOAK-2529 More proper handling of DB errors during migration	2016-03-10 13:00:54 -05:00
mposolda	6d0e5d6ad1	KEYCLOAK-2529 Concurrent startup by more cluster nodes at the same time. Added DBLockProvider	2016-03-10 13:00:51 -05:00
Bill Burke	4be6dc2f0c	cleanup cache	2016-03-04 10:30:48 -05:00
Jared Blashka	05c590ac88	Increase CERTIFICATE column size	2016-03-03 17:35:40 -05:00
Marek Posolda	002074bb30	Merge pull request #2320 from mposolda/master KEYCLOAK-2523 Fix concurrency tests with all databases by track trans…	2016-03-03 12:34:29 +01:00
mposolda	a258dd51ee	KEYCLOAK-2523 Fix concurrency tests with all databases by track transaction startup revision	2016-03-03 11:21:26 +01:00
Stian Thorgersen	b4239c40c1	KEYCLOAK-2547 NPE in TokenEndpoint and InfinispanUserSessionProvider	2016-03-03 10:45:05 +01:00
Bill Burke	a13bac4c9d	concurrent transaction fix	2016-03-02 16:55:55 -05:00
Stian Thorgersen	ccfae82b77	KEYCLOAK-1040 Allow import of realm keys (like we do for SAML)	2016-02-29 09:35:08 +01:00
Bill Burke	a0696fcb97	clustered testing	2016-02-26 16:45:58 -05:00
Bill Burke	abddbfb3a4	clustered testing	2016-02-26 15:39:22 -05:00
Bill Burke	f10f00ba71	group list caching	2016-02-24 17:21:11 -05:00
Bill Burke	9488787986	Merge remote-tracking branch 'upstream/master'	2016-02-23 14:36:30 -05:00
Stian Thorgersen	3e1976b3e5	Merge pull request #2255 from stianst/master Next is 1.9.1.Final-SNAPSHOT	2016-02-23 10:59:53 +01:00
mposolda	ad753a50a3	KEYCLOAK-2526 JPA migration from 1.8.1 doesn't work	2016-02-23 10:01:40 +01:00
Stian Thorgersen	a1d9753ec2	Next is 1.9.1.Final-SNAPSHOT	2016-02-23 08:48:26 +01:00
Bill Burke	599faa454b	Merge remote-tracking branch 'upstream/master'	2016-02-22 17:17:01 -05:00
Bill Burke	4dcdaf4985	role cached queries	2016-02-22 17:16:35 -05:00
Stian Thorgersen	4fd97091ff	Version bump to 2.0.0.CR1-SNAPSHOT	2016-02-22 11:36:56 +01:00
Bill Burke	daa09f9a41	more fine tuning	2016-02-20 09:40:04 -05:00
Bill Burke	1511f7088f	javadoc	2016-02-19 17:08:45 -05:00
Bill Burke	2e64d01251	reorg caching	2016-02-19 16:38:31 -05:00
Bill Burke	c45524d8d4	caching	2016-02-19 15:44:19 -05:00
mposolda	a441be57ed	KEYCLOAK-2508 Possible NullPointerException during bigger load when removing UserSession	2016-02-19 11:49:30 +01:00
Bill Burke	acf2d662c2	remove RealmModel.getClientNameMap()	2016-02-17 16:09:25 -05:00
Bill Burke	20348e5d0b	remove RealmModel.getClientNameMap()	2016-02-17 16:05:25 -05:00
Bill Burke	d731189236	Merge remote-tracking branch 'upstream/master'	2016-02-17 14:57:38 -05:00
mposolda	e237bcd383	KEYCLOAK-2412 wildfly configs and polishing	2016-02-17 13:10:51 +01:00
mposolda	f52f998bcd	KEYCLOAK-2495 Improve startup time with many offlineSessions in UserSessionPersister	2016-02-17 11:02:42 +01:00
mposolda	1328531f31	KEYCLOAK-2412 Added ClusterProvider. Avoid concurrent federation sync execution by more cluster nodes at the same time. Clustering - more progress	2016-02-17 11:02:42 +01:00
Bill Burke	c9cc189602	make RealmModel unmodifiable collections	2016-02-12 16:28:07 -05:00
Bill Burke	24da8288eb	Merge remote-tracking branch 'upstream/master'	2016-02-12 11:38:36 -05:00
Bill Burke	4ff1848681	javadoc	2016-02-12 11:38:12 -05:00
mposolda	969b8c153f	KEYCLOAK-1989 Refreshing offline tokens didn't work correctly in cluster with revokeRefreshToken enabled	2016-02-12 12:54:47 +01:00
mposolda	e880a768c5	Fix MySQL	2016-02-12 09:06:12 +01:00
Bill Burke	860a104828	stress testing	2016-02-12 00:30:36 -05:00
Bill Burke	d79a7146ba	fix cache	2016-02-11 22:01:54 -05:00
Bill Burke	8bf9ea838a	remove some @JoinTables	2016-02-10 21:32:44 -05:00
Bill Burke	f2bd50335a	errors	2016-02-10 20:47:27 -05:00
Bill Burke	fd212a2a2a	Merge remote-tracking branch 'upstream/master'	2016-02-10 14:09:43 -05:00
Bill Burke	84949bb51f	concurrency	2016-02-10 14:09:29 -05:00
Stian Thorgersen	bb77c717c9	KEYCLOAK-2303 Update dependency versions to align with WildFly 10	2016-02-10 09:07:06 +01:00
Bill Burke	0b54838f31	concurrency	2016-02-09 22:13:55 -05:00
Bill Burke	45e5cfac99	concurrency 2	2016-02-09 21:10:30 -05:00
Bill Burke	1c97b9c41d	Merge remote-tracking branch 'upstream/master'	2016-02-09 12:26:11 -05:00
Bill Burke	347cdcbb28	concurrency	2016-02-09 12:25:48 -05:00
Stian Thorgersen	e5447f7f1e	Merge pull request #2193 from stianst/KEYCLOAK-2455 KEYCLOAK-2455	2016-02-08 20:32:41 +01:00
Stian Thorgersen	ec20c004ba	KEYCLOAK-2455 Typo in cached ClientTemplateAdapter	2016-02-08 19:40:42 +01:00
Bill Burke	ffc0e4f005	hashcode/equals on all entities/adapters	2016-02-08 12:20:14 -05:00

... 12 13 14 15 16 ...

2194 commits