Commit graph

822 commits

Author SHA1 Message Date
stianst
5ef8265b75 Remove Tomcat 7 adapter
Closes #9428
2022-02-28 07:50:36 +01:00
Luc Berger
c93fee0c68
Update sha256 import to be default import (#10468)
This should fix the "Failed to compile. ./node_modules/keycloak-js/dist/keycloak.mjs
Can't import the named export 'sha256' from non EcmaScript module (only default export is available)" error.

Closes #10314
2022-02-25 12:51:34 -05:00
mposolda
52712d2c82 ACR support in the javascript adapter
Closes #10154
2022-02-24 20:07:50 +01:00
Martin Bartoš
18581ca4f7 Test more recent versions of Spring Boot
Closes #9934
2022-02-17 16:08:57 +01:00
Stian Thorgersen
ef040a1238
Add javadoc artefacts to spring bundles (#10261)
Closes #10260
2022-02-17 10:21:22 +01:00
Jon Koops
43ef7f1b7e Restore function declaration for constructing 2022-02-16 19:52:27 -03:00
Jon Koops
1372ab82d3 Re-export as namespace for UMD compatibility 2022-02-16 19:52:27 -03:00
Jon Koops
c7ede9971b Restore old instance types (but deprecated) 2022-02-16 19:52:27 -03:00
Jon Koops
542415dc4d Modernize TypeScript definitions of JS adapter 2022-02-16 19:52:27 -03:00
Stian Thorgersen
fa87d46210
Remove additional repositories where they are not needed. Set updatePolicy for GA. (#10047)
Closes: #10133
2022-02-16 08:59:05 +01:00
Stian Thorgersen
674fc3d50d Add doctype to login-status-iframe
Closes #9063
2022-02-15 14:34:36 +01:00
keycloak-bot
d9f1a9b207
Set version to 18.0.0-SNAPSHOT (#10165) 2022-02-11 21:28:06 +01:00
Jon Koops
90fe97133c
Unify package files for JS adapter (#9789) 2022-02-08 13:52:46 -05:00
Jon Koops
dea123169f
KEYCLOAK-14817 Allow JS adapter to be bundled as ES module (#9351) 2022-01-13 08:28:30 +01:00
Hans-Christian Halfbrodt
d9d77fe1f7
Fix for KEYCLOAK-18914 (#9355)
Closed #9382 

Co-authored-by: Hans-Christian Halfbrodt <hc-github42@halfbrodt.org>
2022-01-06 18:05:50 +01:00
ammannmi
80873ea4b9
Allow changing the session id on login in Tomcat adapter 2022-01-05 08:23:46 -03:00
keycloak-bot
9f3d4a7d42 Set version to 17.0.0-SNAPSHOT 2021-12-20 10:50:39 +01:00
stianst
85240c9606 Remove deprecated kcinit from keycloak
Closes #9106
2021-12-13 15:51:51 +01:00
Hisanobu Okuda
24e7ab6748 8942 - port in location header is -1 when doing SAML global logout 2021-12-13 13:22:50 +01:00
Martin Bartoš
1e1a6779be Issue 8814: Replace deprecated hamcrest-all dependencies 2021-11-23 13:56:28 +01:00
David Perrenoud
36da2d20e9 KEYCLOAK-17039 Local file in a webview fails when requesting with "Origin: null" since 11.0.2 2021-11-11 10:55:33 +01:00
maito1201
5d560c1051 KEYCLOAK-16426 add optional field to token parsed 2021-10-13 16:48:07 -03:00
maito1201
bf01ae0885 KEYCLOAK-16426 adapt signature to official spec 2021-10-13 16:48:07 -03:00
maito1201
f9fdee0fba KEYCLOAK-16426 add attributes to keycloak.d.ts 2021-10-13 16:48:07 -03:00
Adamczyk Błażej
e5b05d05f0 KEYCLOAK-18551 Fixed the adapter to use dynamic openid-configuration instead of building the tokenUrl by itself. 2021-10-04 10:37:25 -03:00
stianst
f471a110cd KEYCLOAK-19408 Better client secrets 2021-09-29 18:19:43 +02:00
stianst
8b262e3094 Rewrite camel-undertow to stick with 1.7 2021-09-28 08:11:39 +02:00
stianst
9f79476520 KEYCLOAK-19403 Fix issues in IntelliJ 2021-09-28 08:11:39 +02:00
Stefan Guilhen
271033c3a4 [KEYCLOAK-19102] Replace usages of deprecated setAllowNull(boolean) calls in the adapters subsystems with setRequired(boolean)
- WildFly will remove deprecated APIs, code needs to be changed before the next WildFly upgrade.
2021-09-24 13:01:50 +02:00
Yang Xie
d8cb279bc4 KEYCLOAK-17693 add config for loading custom IdMapper class 2021-08-03 17:44:47 +02:00
Sanket Bhalerao
443bd4a1ba KEYCLOAK-15595: update keycloak js for KEYCLOAK-15595
while working on cordova+angular+ios the keycloak logout is not working. as the user clicks logout the user can again see the app instead of the inappbrowser page for login.
with clearcache=yes in the inappbrowser open the issue appears no more.
2021-08-02 10:56:25 -03:00
keycloak-bot
262ec3d031 Set version to 16.0.0-SNAPSHOT 2021-07-30 14:56:10 +02:00
Stefan Guilhen
9e676fce7e [KEYCLOAK-18559] Fix SAML adapters so they allow unescaped characters in URIs
- Makes adapters bahavior consistent with containers that allow unescaped characters in URIs
2021-07-29 12:11:32 +02:00
Martin Bartoš
1b989d6b52 KEYCLOAK-18893 Adapters tests for EAP6 are failing 2021-07-27 16:12:31 +02:00
Stefan Guilhen
579302f396 [KEYCLOAK-18878] Register the subsystem parser for older versions of the OIDC adapter schemas 2021-07-23 10:10:23 +02:00
Martin Bartoš
06077dc4ea KEYCLOAK-18466 Configure HTTP client timeouts for adapters - change property names 2021-07-22 10:54:59 +02:00
ruromero
464475caa0 [KEYCLOAK-17872] Add missing HTTPClient properties
Signed-off-by: ruromero <rromerom@redhat.com>
2021-07-22 10:54:59 +02:00
Martin Bartoš
23e3bc5f8f KEYCLOAK-18466 Configure HTTP client timeouts for adapters 2021-07-22 10:54:59 +02:00
Stefan Guilhen
8934bc82ba [KEYCLOAK-18302] Fix redirect-rewrite-rule JSON name 2021-07-07 16:44:30 +02:00
Andy Fedotov
17b374f53a [KEYCLOAK-16455][Adapter - JavaScript] Propagate 3rd party cookies check
errors outside of JS adapter
2021-06-23 08:36:26 +02:00
keycloak-bot
13f7831a77 Set version to 15.0.0-SNAPSHOT 2021-06-18 10:42:27 +02:00
Pedro Igor
b7e5db6534 [KEYCLOAK-18007] - Configure resolved paths with the method config from configuration 2021-05-25 09:48:30 -03:00
Pedro Igor
9ebbc7673c [KEYCLOAK-18111] - Error when processing path without associated resource 2021-05-20 11:15:11 -03:00
Jeff MAURY
1be81bff7a
KEYCLOAK-17400: allow installed adapter to be reused (#7853)
* KEYCLOAK-17400: allow installed adapter to be reused

Also add a close method to stop callback if response has not been received yet

Signed-off-by: Jeff MAURY <jmaury@redhat.com>
2021-05-12 09:46:00 -03:00
Bruno Oliveira da Silva
bbc8d83f64 [KEYCLOAK-17997] Upgrade Spring Security 2021-05-10 12:15:01 -03:00
keycloak-bot
4b44f7d566 Set version to 14.0.0-SNAPSHOT 2021-05-06 14:55:01 +02:00
Bruno Oliveira da Silva
4f08912071 [KEYCLOAK-17989] Update Jetty to the latest version 2021-05-04 16:56:43 -03:00
Florian Roks
640cf499cc KEYCLOAK-17804 added documentation to KeycloakConfigResolver-interface 2021-05-04 15:22:19 -03:00
David Weber
6f86241f60 KEYCLOAK-17665 Use setQueryString
Co-authored-by: Michal Hajas <mhajas@redhat.com>
2021-04-22 12:18:09 -03:00
David Weber
5d3f80ab57 KEYCLOAK-17665 Add query parameter support for Spring 2021-04-22 12:18:09 -03:00
Manuel Rauber
30e735dd25
KEYCLOAK-17684: fix TypeScript definition of createAccountUrl parameter (#7917) 2021-04-20 14:19:15 -04:00
Martin Bartoš
b237c503ba KEYCLOAK-16913 Fix failed FuseAdapterTest 2021-04-14 09:51:02 +02:00
sma1212
e10f3b3672
[KEYCLOAK-17484] OIDC Conformance - Authorization response with Hybrid flow does not contain token_type (#7872)
* [KEYCLOAK-17484] fix oidc conformance for hybrid-flow

* [KEYCLOAK-17484] add TokenType & ExpiresIn to OAuth2Constants

* [KEYCLOAK-17484] add request validation for oidc-flows automated tests
2021-03-30 08:59:30 +02:00
Phillip Schichtel
f754b34c0c KEYCLOAK-13633 Generalize GenericPrincipalFactory to PrincipleFactory
This allows to replace java.security.acl.Group usage only where necessary while keeping legacy adapter unchanged.

Signed-off-by: Phillip Schichtel <phillip@schich.tel>
2021-03-22 15:40:51 +01:00
Pascal Keßler
52db22925c KEYCLOAK-13633 refactor(tomcat-adapter-spi): change to specific imports instead of star import 2021-03-22 15:40:51 +01:00
Pascal Keßler
b3ee471e11 KEYCLOAK-13633 refactor(tomcat-adapter-spi): remove usage of java.security.acl.Group to make jdk 15 possible
Signed-off-by: Phillip Schichtel <phillip@schich.tel>
2021-03-22 15:40:51 +01:00
Andrew Elwell
c76ca4ad13
Correct "doesn't exists" typos - fixes KEYCLOAK-14986 (#7316)
* Correct "doesn't exists" typos

* Revert changes to imported package

Co-authored-by: Stian Thorgersen <stianst@gmail.com>
2021-03-16 11:52:36 +01:00
Thomas Darimont
d2060913be KEYCLOAK-14412 Fixed compiler error in JavascriptAdapterTests 2021-03-11 13:03:08 -03:00
Thomas Darimont
b926cd20f1 KEYCLOAK-14412 Keycloak.js should honor scopes configured in initOptions and loginOptions 2021-03-11 13:03:08 -03:00
Pedro Igor
40efbb0f9c [KEYCLOAK-13942] - Invalidate pre-defined paths when paths are invalidated 2021-03-02 15:01:42 +01:00
Pedro Igor
1434695616 [KEYCLOAK-10752] - Passing id_token_hint when login out 2021-02-11 09:42:08 -03:00
Pedro Igor
f6c3ec5d9e [KEYCLOAK-14366] - Missing check for iss claim in JWT validation on Client Authentication (Token Endpoint) 2021-02-09 13:54:06 +01:00
Katsiaryna Mikhalchanka
1c445cc4cc KEYCLOAK-16798 Add guarding condition for multi-thread usage in KeycloakDeployment.java 2021-01-19 15:18:52 +01:00
Hynek Mlnarik
acfea8ecd2 KEYCLOAK-4250 Include certificates without name for validation
Nameless certificates are now included for signature validation
in the SAML adapter when the certificate is downloaded from
metadataUrl.
2021-01-15 22:03:16 +01:00
keycloak-bot
75be33ccad Set version to 13.0.0-SNAPSHOT 2020-12-16 17:31:55 +01:00
Michal Hajas
a766a1dd16 KEYCLOAK-16074 Fix check3pCookiesSupported message callback 2020-11-13 16:01:50 -03:00
Miquel Simon
53dfa7c56b KEYCLOAK-14109. Added profiles for Spring 2.3 version.
KEYCLOAK-14737. Updated Jetty version to 9.4.29, as required per Spring 2.3.
2020-11-13 12:09:22 -03:00
Martin Bartoš
da6c59f0c3 KEYCLOAK-15242 Error in application logs when refresh token is expired. 2020-11-05 14:40:53 +01:00
Pedro Igor
e70f702bc5 [KEYCLOAK-10790] - KeycloakInstalled adapter can not logoutDesktop more than once 2020-10-23 09:23:51 +02:00
Denis Richtárik
c8d0f2c59c
KEYCLOAK-15892 Can not install 7.4.3.CR1 Fuse adapter 2020-10-20 10:47:56 +02:00
mhajas
d266165f63 KEYCLOAK-14871 Whitelist RefreshableKeycloakSecurityContext for KeycloakPrincipal serialization 2020-10-14 16:00:39 +02:00
Hynek Mlnarik
4541a1b250 KEYCLOAK-15907 Fix new host in SAML adapter cannot restore session 2020-10-12 13:23:03 +02:00
testn
269a72d672 KEYCLOAK-15184: Use static inner class where possible 2020-10-09 23:37:08 +02:00
Thomas Darimont
152588ecc4 KEYCLOAK-13915 Update Jetty 9.4.x dependency to latest version
Adapted Jetty94SessionManager to workaround Jetty 9.4 API changes.
The Method org.eclipse.jetty.server.session.SessionHandler#getHttpSession
was changed from public to protected which makes it no longer accessible.

As a workaround the method contents were inlined.
2020-10-07 11:40:18 -03:00
vmuzikar
fbe18e67c3 KEYCLOAK-15721 KeycloakPromise sometimes doesn't work 2020-09-28 15:57:46 -03:00
vmuzikar
bca73fd04a KEYCLOAK-15158 Javascript adapter init() is throwing a promise error after upgrade to 11 2020-09-22 10:56:46 -03:00
testn
2cd03569d6 KEYCLOAK-15238: Fix potential resource leak from not closing Stream/Reader 2020-09-21 13:05:03 +02:00
JF Denise
6a5c1defe1 [KEYCLOAK-14953] keycloak oidc/elytron adapter galleon-pack prototype 2020-09-17 23:27:25 -07:00
mhajas
b75ad2fbd8 KEYCLOAK-15259 Avoid using "null" Origin header as a valid value 2020-09-17 23:21:49 -07:00
testn
0362d3a430 KEYCLOAK-15113: Move away from deprecated Promise.success()/error() 2020-09-01 14:26:44 -04:00
Helder Alves
541063f2ce KEYCLOAK-14940 refresh expired idtoken 2020-08-03 16:08:21 -03:00
Thomas Darimont
6806dfa4d3 KEYCLOAK-13721 Allow to configure host and port of callbackserver in KeycloakInstalled adapter 2020-07-29 10:00:36 +02:00
Gregor Tudan
5255336be2 Keycloak-14726 - release connections after fetching the OIDC-Config 2020-07-28 12:58:27 -03:00
Dan Manastireanu
1441e5d6f8 fix: Fix regex replacement for underscore and minus in parseToken. Closes #KEYCLOAK-14917 2020-07-28 10:39:45 -03:00
Alex Szczuczko
c7867c4c0d KEYCLOAK-14875 Enable path cache when maxAge is -1, or greater than 0 2020-07-28 10:13:12 -03:00
Luca Leonardo Scorcia
da6530471b KEYCLOAK-14742 SAML2NameIDPolicyBuilder: add AllowCreate and SPNameQualifier properties 2020-07-25 10:16:57 +02:00
keycloak-bot
afff0a5109 Set version to 12.0.0-SNAPSHOT 2020-07-22 14:36:15 +02:00
Jan Lieskovsky
969b09f530 [KEYCLOAK-13692] Upgrade to Wildfly "20.0.1.Final" and Infinispan "10.1.8.Final"
Co-authored-by: Jan Lieskovsky <jlieskov@redhat.com>
Co-authored-by: Marek Posolda <mposolda@redhat.com>
2020-07-20 22:15:08 +02:00
Jon Koops
098446b070 KEYCLOAK-14652 Align custom adapter example with documentation 2020-07-08 09:32:16 -03:00
Thoralf Rickert-Wendt
541bc5124f switching to required=false 2020-07-06 11:47:41 -03:00
Thoralf Rickert-Wendt
0dd196e02a Fixing issue https://issues.redhat.com/browse/KEYCLOAK-14520 2020-07-06 11:47:41 -03:00
Christian Lutz
6abae8bccc KEYCLOAK-13807 Fix switch parameter order of mapping and url in registerConstraintMapping 2020-07-03 11:35:24 +02:00
vmuzikar
001fe9eb11 KEYCLOAK-13206 Session Status iframe cannot access cookies when 3rd party cookies are blocked
Co-authored-by: mhajas <mhajas@redhat.com>
2020-06-30 17:11:20 -03:00
Stefan Guilhen
76717134ba [KEYCLOAK-12998] Prevent duplicate resources from being added to the keycloak-saml subsystem
- Fixes an issue in parser where the closing tag of the IDP element was in the wrong place, which could break the server configuration
 - Parser now checks for duplicates of elements described with maxOccurs=1 in the schema
 - Add handler for SP and IDP now check for existing SPs or IDPs in the config, preventing addition of a duplicate resource via CLI
 - Subsystem test was enhanced so it now tests some invalid configs with duplicate elements
2020-06-23 20:03:36 +02:00
Simon Legner
3c0ecefacc fix(keycloak.d.ts): class cannot extend interface 2020-06-22 13:22:35 -04:00
Jon Koops
c0744daa5b KEYCLOAK-14496 Use KeycloakAdapter interface for 'adapter' option
Also improves documentation by adding more details and an explicit example on how to use the interface.
2020-06-18 18:09:19 -03:00
Jon Koops
6dde131609 KEYCLOAK-13739 Add missing type definition for register options 2020-06-17 15:26:15 -04:00
mhajas
5d1d75db40 KEYCLOAK-14103 Add Warn message for possibly missing SameSite configuration 2020-06-15 14:45:57 +02:00
Douglas Palmer
33863ba161 KEYCLOAK-10162 Usage of ObjectInputStream without checking the object types
Co-authored-by: mposolda <mposolda@gmail.com>
2020-06-08 13:12:08 +02:00
spurreiter
6332ed42c0 KEYCLOAK-13940 remove duplicated urlsafe decoding 2020-05-08 15:18:56 +02:00