libre.sh/keycloak-scim
4
0
Fork 0
Code Issues 15 Pull requests Releases 1 Activity Actions
25217 commits 4 branches 9 tags 483 MiB
Commit graph

229 commits

Author SHA1 Message Date
Hynek Mlnarik
e7cdb8ad54 KEYCLOAK-6473 KEYCLOAK-6472 SAML parser refactor + protocol parsers 2018-02-23 08:16:14 +01:00
Jochen Preusche
8325151e16
Extract findLocale to LocaleNegotiator, add tests 
* Improve Testability of Locale Negotiation
 * Add test for Locale Negotiation
 * Fix Locale Negotiation for omitted Country Code
 2018-02-06 09:50:04 +01:00
Vlastimil Elias
a5f675d693 KEYCLOAK-4937 - convert time units in emails into human-friendly format 2018-01-30 06:38:57 +01:00
Thomas Darimont
3d12bf7d14 KEYCLOAK-4743 Revise proxy support for HttpClient SPI 
Polishing & more tests.
 2018-01-25 09:31:32 +01:00
Thomas Darimont
851d0192ad KEYCLOAK-4743 Add proxy support to HttpClient SPI 
We now provide a configurable way for dynamic proxy route selection
for the default HttpClient based on regex based targetHostname patterns.

Introduced `ProxyMapping` to describe a regex based mapping
between target hosts and the proxy URL to use.

A `ProxyMapping` can be build from an ordered list of string based
mapping representations, e.g:
```
   ^.*.(google.com|googleapis.com)$;http://localhost:8080
```
If the targetHost does not match a configured proxy mapping,
no proxy is used.

This can be configured via standalone.xml / jboss-cli, e.g.:
```
   echo SETUP: Configure proxy routes for HttpClient SPI
   /subsystem=keycloak-server/spi=connectionsHttpClient/provider=default:add(enabled=true)
   /subsystem=keycloak-server/spi=connectionsHttpClient/provider=default:write-attribute(name=properties.proxy-mappings,value=["^.*.(google.com|googleapis.com)$;http://www-proxy1:8080","^.*.facebook.com$;http://www-proxy2:8080"])
```
The new `ProxyMappingWareRoutePlanner` uses a configured `ProxyMapping`
to decide which proxy to use for a given request based on the target host
denoted by the HTTP request to execute.

I verified this manually with the BurpProxy Suite.
 2018-01-25 09:31:32 +01:00
Hynek Mlnarik
fe2f65daac KEYCLOAK-5581 Fix SAML identity broker context serialization 2017-11-03 21:09:18 +01:00
Stian Thorgersen
d58c6ad4e0 [KEYCLOAK-4900] Pass login_hint parameter to idp & review (#4421) 2017-08-25 10:14:38 +02:00
Hynek Mlnarik
d52d685161 KEYCLOAK-4818 Fix undeclared namespace error in context serialization 2017-07-19 15:18:53 +02:00
Josh Cain
89fcddd605 KEYCLOAK-3592 Docker auth implementation 2017-06-29 06:37:34 +02:00
Bartosz Majsak
0197600565 Fixes misspelled config class 2017-03-27 09:38:47 +02:00
Bartosz Majsak
a250f08b6c Removes trailing slash from the base url 2017-03-15 22:27:24 +01:00
Stian Thorgersen
536b88790e Merge pull request #3757 from mstruk/KEYCLOAK-4150 
KEYCLOAK-4150 Unresolved variable ${cliane_security-admin-console} in admin web client
 2017-01-19 13:55:36 +01:00
Marko Strukelj
d68f6bbc42 KEYCLOAK-4150 Unresolved variable ${cliane_security-admin-console} in admin web client 2017-01-13 17:48:21 +01:00
Vlastimil Elias
f13deab812 KEYCLOAK-4202 - Attribute importer of Social Identity providers doesn't 
handle JSON 'null' values correctly
 2017-01-12 14:14:09 +01:00
Manuel Palacio
bfec073457 KEYCLOAK-3648 2016-12-01 19:34:33 +01:00
mposolda
18e0c0277f KEYCLOAK-3666 Dynamic client registration policies 2016-10-14 20:20:40 +02:00
Stian Thorgersen
d2cae0f8c3 KEYCLOAK-905 
Realm key rotation for OIDC
 2016-10-13 11:19:52 +02:00
Bill Burke
d4c3fae546 merge conflicts 2016-09-30 19:19:12 -04:00
mposolda
f9a0abcfc4 KEYCLOAK-3493 KEYCLOAK-3532 Added KeyStorageProvider. Support key rotation for OIDC clients and identity providers with JWKS url. 2016-09-30 21:28:23 +02:00
Bill Burke
8967ca4066 refactor mongo entities, optimize imports 2016-09-28 15:25:39 -04:00
Bruno Oliveira
98d2fe15e8 [KEYCLOAK-2438] - Add display name to social login buttons 
[KEYCLOAK-3291] - Names of social identity providers are wrongly capitalized (eg GitHub vs Github)
 2016-09-26 13:36:28 -03:00
Bill Burke
6f92bac782 Merge pull request #3000 from tonswieb/master 
KEYCLOAK-3265 Support writing a NameIDType AttributeValue
 2016-07-20 11:23:18 -04:00
Hiroyuki Wada
930b0d9ad7 KEYCLOAK-3278 Add support for any encoding property file in theme 2016-07-08 02:58:48 +09:00
Ton Swieb
fed7339558 KEYCLOAK-3265 Support writing a NameIDType AttributeValue 2016-07-05 14:54:38 +02:00
Josh Cain
ec402f759b make locale retrieval null-safe 2016-06-28 13:25:48 -05:00
mposolda
e2558ca827 KEYCLOAK-1928 Fix Saml with IBM JDK 2016-02-29 17:32:33 +01:00
Stian Thorgersen
c7a8742a36 KEYCLOAK-1524 
Source code headers
 2016-02-03 11:20:22 +01:00
mposolda
3731964a2a KEYCLOAK-2351 Support for response_type=token to be OAuth2 compliant 2016-01-26 17:09:42 +01:00
Bill Burke
d9487a8745 social broker reorg 2016-01-20 16:46:38 -05:00
Bill Burke
46634b386e reorg freemarker 2016-01-19 11:33:59 -05:00
mposolda
ec327c99f4 KEYCLOAK-2152 KEYCLOAK-2061 Client switches changes. Support for response_types and grant_types in OIDC Client registration 2015-11-30 15:31:38 +01:00
mposolda
57b60797ce KEYCLOAK-1129 Implicit flow: more work 2015-11-28 00:15:41 +01:00
mposolda
4587fd23b6 KEYCLOAK-1929 Change package names. Fix Fuse demo 2015-10-16 16:30:42 +02:00
Stian Thorgersen
1642ac2394 KEYCLOAK-1385 Introduce end-of-line normalization 2015-07-17 13:46:51 +02:00
Vlastimil Elias
dcc19a39d7 KEYCLOAK-1371 - Perform "Update Profile on First Login" only if some of 
mandatory user profile fields is missing from identity provider
 2015-06-03 15:24:25 +02:00
mposolda
649a40f58c KEYCLOAK-676 Validate email address format during registration or account mgmt 2014-09-11 20:05:00 +02:00
Stian Thorgersen
a3d08e7191 Added theme support to emails 2014-05-19 17:34:58 +01:00
Bill Burke
cdc35d99bc cleanup 2014-04-09 22:34:36 -04:00
Bill Burke
0cdd5e857e use secrets 2014-02-13 18:36:41 -05:00
mposolda
b9ff73d61c Moved model unit tests from services to model/tests . Mongo profile in testsuite 2014-02-11 18:26:50 +01:00
mposolda
b3f1032f96 Mongo: Refactoring. All unit tests and testsuite are passing with Mongo. 2014-02-11 18:25:57 +01:00
mposolda
81ff7b0c6d Refactoring Mongo model. All unit tests passing with mongo 2014-02-11 15:23:30 +01:00
Stian Thorgersen
38b7dcdf7d Fixes to persistence.xml for distribution 2014-02-04 11:44:02 +00:00
Bill Burke
8505cc612a composite representations 2014-02-03 17:21:56 -05:00
Bill Burke
1543963c9f composite tests 2014-01-30 20:31:44 -05:00
Bill Burke
bb5991239b composite roles 2014-01-29 20:19:32 -05:00
Stian Thorgersen
c5366f1c81 KEYCLOAK-264 Remove option to enable/disable acct mngmt 2014-01-17 09:30:56 +00:00
Stian Thorgersen
dcfb83b0f2 KEYCLOAK-64 KEYCLOAK-246 Updated social to use update profile required action instead of registration form. Fixed Google provider 2014-01-16 12:52:46 +00:00
Bill Burke
b162190c7f remove cookieLoginAllowed 2014-01-15 20:31:01 -05:00
Bill Burke
894c28c64f role name instead of id 2014-01-15 19:39:21 -05:00
Bill Burke
d22b6f8df7 factor out jwt/jose/jws 2013-12-16 11:19:46 -05:00
Stian Thorgersen
43da684a91 KEYCLOAK-218 Show error page if failed to send email 2013-12-07 11:00:45 +00:00
Stian Thorgersen
c514e6c152 KEYCLOAK-197 Fix search for users returns users for all realms 2013-12-06 19:22:55 +00:00
Stian Thorgersen
7f499b2833 KEYCLOAK-186 Password policies 2013-12-03 12:53:26 +00:00
Stian Thorgersen
85eeb415e1 KEYCLOAK-181 
Link back to application from account management pages
 2013-11-28 13:48:30 +00:00
Bill Burke
799df520b8 realm import changes 2013-11-27 17:02:12 -05:00
Bill Burke
f79739f73e oauth client 2013-11-26 15:39:57 -05:00
Stian Thorgersen
f933ffba3f User search returned users for all realms 2013-11-26 13:53:57 +00:00
Stian Thorgersen
52c7ae057a Delete realm 2013-11-25 15:38:25 +00:00
Stian Thorgersen
fad194fc8f Improved error handling in admin console. Delete roles through admin console. 2013-11-25 13:46:04 +00:00
Stian Thorgersen
7a0ff0cb66 KEYCLOAK-159 2013-11-16 10:41:49 +00:00
Stian Thorgersen
219c0efbaf KEYCLOAK-105 2013-11-16 10:13:23 +00:00
Stian Thorgersen
45424e5eba Removed '*' role 2013-11-15 16:38:44 +00:00
Stian Thorgersen
a923f44619 KEYCLOAK-100 
UI: Delete User does not work
 2013-11-15 16:38:28 +00:00
Stian Thorgersen
158d1740b8 KEYCLOAK-72 and KEYCLOAK-158 2013-11-15 11:03:25 +00:00
Stian Thorgersen
5c541c5cf0 Fix - KEYCLOAK-99 UI: Users query should support wildcard 2013-11-14 17:38:23 +00:00
Stian Thorgersen
5916eaad13 Removed mongo dependencies from services 2013-11-12 15:19:55 +00:00
Stian Thorgersen
2e9a474eac Use service loader to load model provider 2013-11-12 11:49:03 +00:00
Bill Burke
2861ea0e96 nasty merge 2013-11-05 23:12:07 -05:00
Bill Burke
d04ca2c34f jpa backend 2013-11-05 21:26:33 -05:00
Stian Thorgersen
e857f2ed2a Ooops.... 2013-11-05 12:43:11 +00:00
Stian Thorgersen
7bbeddc2a3 Tweaked EmailSender, fixed SSL prop in console + added option for StartTLS 2013-11-05 10:58:33 +00:00
Stian Thorgersen
d083909136 Added support for default application roles. Added authz to account, user (or client if oauth) is required to have role manage-account to manage their account, this is a default role for the Account application. 2013-11-04 17:21:46 +00:00
Stian Thorgersen
6e3dd959eb KEYCLOAK-114 Use SMTP server settings from realm 2013-10-22 13:47:30 +01:00
Stian Thorgersen
a88dcace3d Added maps for social config and smtp server to realm 2013-10-22 13:47:30 +01:00
Stian Thorgersen
d79d299073 Made account management an optional feature on a realm, and added login and logout to account management pages 2013-10-19 16:24:58 +01:00
Stian Thorgersen
1c90e16629 Added redirect uris to application 2013-10-18 19:17:11 +01:00
Stian Thorgersen
79c1230a9d Added redirect uris to application 2013-10-17 15:25:06 +01:00
Bill Burke
13c75c02e1 bootstrap 2013-10-16 08:26:33 -04:00
mposolda
7b357fbfec Don't use keycloak-model-mongo model by default 2013-10-10 12:38:06 +02:00
mposolda
453e1c5cf7 Added ServletContextListener for start of embedded MongoDB at Keycloak deploy. Added PropertiesManager 2013-10-10 10:43:54 +02:00
mposolda
71cd9cffa4 Rebased MongoDB on top of latest master. Divide testsuite into integration and performance submodules 2013-10-10 10:43:54 +02:00
mposolda
ae4bd42ff7 Add support for TOTP in MongoDB 2013-10-10 10:28:36 +02:00
mposolda
86cf090909 Adapt MongoDB impl with latest changes on UserModel and RealmModel. Support for Enums in Converter SPI 2013-10-10 10:28:36 +02:00
mposolda
68ed19f15d Support MongoDB in unit tests. Added parameterized test, so ImportTest and AdapterTest work with both picketlink and mongo 2013-10-10 10:28:35 +02:00
mposolda
4db738689f Mongo: Remove realmAdmins when realm is removed. Refactored Converters to support list of embedded objects 2013-10-10 10:28:35 +02:00
Bill Burke
e730b5a2aa Merge remote-tracking branch 'upstream/master' 2013-10-09 17:28:09 -04:00
Bill Burke
b58b2c760f scope mapping, oauth client 2013-10-09 17:27:45 -04:00
Stian Thorgersen
453834e807 Added utils for testing Keycloak - includes a quick and easy way to start keycloak, a mail server and a google authenticator simulator 2013-10-09 20:36:12 +01:00
Bill Burke
7613df71c2 app password 2013-10-06 18:41:35 -04:00
Bill Burke
a4e3431445 model module refactor 2013-10-02 09:54:26 -04:00
Stian Thorgersen
72315bb9d7 Improvements to required user actions. Including adding support for required actions to AccessCodeEntry. Added test for temporary password. 2013-09-21 12:21:46 +01:00
Stian Thorgersen
0c76a493b9 Fix ModelTest - forgot to close session and factory 2013-09-20 15:20:34 +01:00
Stian Thorgersen
32fcd46e08 Added option on realm to allow reset password via email 2013-09-20 12:53:44 +01:00
Stian Thorgersen
cdce046711 Suppress error warning from GreenMail on stop 2013-09-20 10:48:15 +01:00
Bill Burke
935f6455c0 merge 2013-09-19 17:40:44 -04:00
Bill Burke
e61833aa43 User screens 2013-09-19 17:22:47 -04:00
Stian Thorgersen
636b197c4c KEYCLOAK-32 
Registration verification email
 2013-09-18 19:33:18 +01:00
Stian Thorgersen
e5a81653d9 KEYCLOAK-61 Send emails 2013-09-17 13:07:49 +01:00
Stian Thorgersen
6c124a2172 Added required actions to user. Completed flow for user registering when Realm requires TOTP 2013-09-17 11:24:12 +01:00
Bill Burke
bfe9beae72 merge 2013-09-11 09:44:36 -04:00
Bill Burke
b0bbbeaf7f retire Transaction 2013-09-11 09:28:19 -04:00
mposolda
932ed10c17 KEYCLOAK-27 Basic social flow with automatic registration and non-duplicated username 2013-08-22 17:17:33 +02:00
mposolda
b2544dbe8f Added realm option automaticRegistrationAfterSocialLogin to specify whether user is automatically registered after social login or whether he needs to confirm registration data 2013-08-22 17:17:33 +02:00
mposolda
1a374a8d1b Added SocialLink, which represents binding between User and his social username for particular socialProvider 2013-08-22 17:17:33 +02:00
mposolda
0b9a59950a KEYCLOAK-43 ApplicationAdapter.addScope doesn't add scope into IDM 2013-08-16 13:55:57 +02:00
mposolda
d97a615c81 KEYCLOAK-42 Typo in RealmModel.importRealm causing that bad required credential type could be imported 2013-08-16 13:33:58 +02:00
Stian Thorgersen
0301094fc9 KEYCLOAK-40 Add default role to realm 2013-08-15 16:19:17 +01:00
Stian Thorgersen
f88097582d Fixed ImportTest after changing credential label 2013-08-15 12:15:22 +01:00
Bill Burke
a81d03213d refactor 2013-08-10 12:43:55 -04:00
Bill Burke
993fc5c301 required creds 2013-08-10 08:13:39 -04:00
Bill Burke
d11876f58e resource rest api 2013-08-04 12:57:12 -04:00
Bill Burke
4e61981b69 expand required credentials 2013-08-04 11:48:09 -04:00
Bill Burke
9ff4ef4d64 roles 2013-08-03 22:41:55 -04:00
Bill Burke
d4f8d2dc7a realm creation ui 2013-08-03 12:00:29 -04:00
Bill Burke
540385fec5 admin ui login 2013-08-02 22:26:57 -04:00
Bill Burke
c9ec2bb2c5 picketlink 2.5.0.Beta6 2013-08-01 19:04:39 -04:00
Bill Burke
72d9841baa finish picketlink abstraction 2013-07-31 17:56:17 -04:00
Bill Burke
93f9a34175 abstract Picketlink User/Role 2013-07-31 16:30:39 -04:00
Bill Burke
92c15637b2 refactor out picketlink 2013-07-30 21:44:22 -04:00
Bill Burke
15a947f4ae last oauth 2013-07-29 10:24:15 -04:00
Bill Burke
4a40ec71c9 role description 2013-07-28 09:47:26 -04:00
Bill Burke
6fdff819a1 logout 2013-07-27 18:19:23 -04:00
Bill Burke
74b121539d better demo 2013-07-22 18:07:00 -04:00
Bill Burke
e1fe001a22 demo 2013-07-19 17:59:36 -04:00
Bill Burke
79e6f46183 refactoring for demo setup 2013-07-18 11:44:59 -04:00
Bill Burke
1548065b7f more stuff 2013-07-11 17:56:15 -04:00
Bill Burke
1586f461be more 2013-07-05 14:23:16 -04:00
Bill Burke
7a1c825dcb initial 2013-07-02 10:05:33 -04:00