Bill Burke
d06b7a47ac
Merge remote-tracking branch 'upstream/master'
2015-02-23 11:39:39 -05:00
Bill Burke
1dde3e1459
provider events
2015-02-23 11:39:24 -05:00
mposolda
9f8b59dfb6
Kerberos/LDAP fixes
2015-02-23 14:07:55 +01:00
mposolda
9dd5ecd464
Kerberos automated test
2015-02-23 13:13:34 +01:00
Bill Burke
69582ee3be
more claims work
2015-02-21 10:26:55 -05:00
Bill Burke
42ffe21f91
Merge remote-tracking branch 'upstream/master'
2015-02-20 09:23:18 -05:00
Bill Burke
20f12ea960
changes
2015-02-20 09:22:49 -05:00
mposolda
d8024b0c6c
Kerberos refactored to be federation provider. Support for Kerberos and LDAP. Username/password authentication support with kerberos credentials.
...
First step - KerberosFederationProvider
Finished KerberosFederationProvider. Added support for username/password authentication with kerberos credentials
Added Kerberos UI to LDAPFederationProvider
Fixes
2015-02-18 17:19:15 +01:00
Bill Burke
ebd9bae1ee
client to protocol mapping model
2015-02-15 17:01:34 -05:00
Bill Burke
2fb97f058b
claim support phase 2
2015-02-14 09:56:19 -05:00
Bill Burke
8586a8d1a5
Merge remote-tracking branch 'upstream/master'
2015-02-13 20:57:51 -05:00
Bill Burke
c09b17c2e2
claim mapping phase 1
2015-02-13 20:57:38 -05:00
mposolda
3ef243dd42
Add authenticateByDefault flag to IdentityProviderModel
2015-02-13 10:08:51 +01:00
girirajsharma
c3d7ef8066
Updated BC provider versions and deprecated CertificateUtil methods.
2015-02-10 18:44:54 +05:30
mposolda
d1c4d9795b
Mongo fix
2015-02-10 09:50:07 +01:00
pedroigor
ff1f10d7a7
[KEYCLOAK-883] - Refactoring to services endpoints and exposing them through admin client.
2015-02-09 21:30:21 -02:00
pedroigor
1e13254598
[KEYCLOAK-992] - Initial code for examples. Fixing cors when retreiving tokens.
2015-02-08 03:27:57 -02:00
pedroigor
4b1ba704ec
[KEYCLOAK-992] - Token retrieval from brokered idps.
2015-02-06 22:23:34 -02:00
pedroigor
47f8f44347
[KEYCLOAK-883] - Fixing alias update.
2015-02-06 16:03:47 -02:00
Bill Burke
fd20a25100
Merge remote-tracking branch 'upstream/master'
2015-01-28 17:09:59 -05:00
Bill Burke
ea3bba98aa
saml frontchannel logout
2015-01-28 17:09:13 -05:00
Stian Thorgersen
6ecd9fbde7
Merge pull request #936 from stianst/master
...
Provider loaders
2015-01-28 11:51:05 +01:00
Stian Thorgersen
67ba1de56f
KEYCLOAK-999 Load providers from file-system
2015-01-28 09:15:07 +01:00
pedroigor
2065815627
[KEYCLOAK-883] - Model tests.
2015-01-27 23:53:56 -02:00
mposolda
ee4fbca868
Improve OOTB experience for ssh and jmx authentication in fuse
2015-01-23 20:57:40 +01:00
mposolda
a634f1a65f
Fix mongo model
2015-01-23 10:19:06 +01:00
Bill Burke
a0ba6d2c16
saml redirect logout 1st step
2015-01-16 18:57:33 -05:00
pedroigor
fa2533ed11
[KEYCLOAK-883] - Initial changes.
2015-01-13 00:58:19 -02:00
Stian Thorgersen
a843e31c12
KEYCLOAK-862 Use HmacSHA256 for code signatures
2014-11-27 10:02:08 +01:00
Carl J. Mosca
aedbb8eb87
added support for Tivoli LDAP unique identifier
2014-11-13 16:17:40 -05:00
Stian Thorgersen
9343cf2aca
KEYCLOAK-824 Wrong digit shown in Invalid Password message
2014-11-06 12:30:24 +01:00
Stian Thorgersen
e7625c2bb1
KEYCLOAK-820 Don't expose realm private key through admin endpoints
2014-11-05 15:34:56 +01:00
Stian Thorgersen
bb2de4dc59
KEYCLOAK-787 Clicking back to login after sending password reset email fails
2014-10-31 13:59:56 +01:00
Stian Thorgersen
9b0d5acb50
KEYCLOAK-704 KEYCLOAK-768 Improvements to access code generation
2014-10-31 12:45:03 +01:00
Stian Thorgersen
8adad9dddf
KEYCLOAK-806
...
Increase defaults for 'SSO Session Idle Timeout'
2014-10-31 09:41:21 +01:00
Stian Thorgersen
fcda005d88
KEYCLOAK-772 Event settings are not imported
2014-10-28 20:21:03 +01:00
Bill Burke
ce76270ad8
saml key refactor
2014-10-24 10:58:32 -04:00
mposolda
7d8f265789
KEYCLOAK-759 dynamic registration of managementUrls in cluster
2014-10-17 21:51:46 +02:00
Bill Burke
7760887ac1
app cert support, bug fixes
2014-10-14 18:38:48 -04:00
Bill Burke
4d007c776a
generate/store realm certificate
2014-10-11 10:49:04 -04:00
Bill Burke
94da99bf10
use app id in admin console urls
2014-10-09 18:22:02 -04:00
Bill Burke
a1d1877751
ClientModel attributes and protocol
2014-10-08 10:54:13 -04:00
Bill Burke
4b399fe05a
login protocol abstraction
2014-10-01 10:01:42 -04:00
Stian Thorgersen
99c73a9cc7
Clustering support
2014-09-30 09:40:20 +02:00
Bill Burke
524b423733
ClientSession everywhere refactor phase1
2014-09-26 17:44:33 -04:00
Bill Burke
0bf6c36ca7
add auth method to ClientSession
2014-09-23 11:18:39 -04:00
Bill Burke
99a6713e6f
clientsession notes
2014-09-22 16:34:42 -04:00
Stian Thorgersen
8c8c44e50f
KEYCLOAK-658 Fix searching for users
2014-09-02 10:01:44 +02:00
Stian Thorgersen
b9d0f64f74
Added password token to use inplace of plain-text password for totp
2014-08-28 13:51:55 +02:00
Stian Thorgersen
3bfe3d256e
Rename audit to events
2014-08-28 10:56:37 +02:00
Stian Thorgersen
55bd889a0f
KEYCLOAK-531 Reduce info level logging
2014-08-27 11:17:24 +02:00
mposolda
b3b480c25f
Display proper error message if LDAP-linked user couldn't be deleted due to read-only mode
2014-08-26 19:10:48 +02:00
mposolda
fd9d2ba4d5
Handle exceptions and UI errors when user is read only. Some sync issues
2014-08-26 12:54:05 +02:00
Bill Burke
7c97e02715
X-Frame-Options, Content-Security-Policy
2014-08-11 17:45:01 -04:00
mposolda
8ba7559cac
Fix transaction handling in KeycloakModelUtils.runJobInTransaction. Start sync tasks for configured federation providers at startup
2014-08-11 13:51:44 +02:00
mposolda
d699404ce7
Support for periodic users sync
2014-08-10 23:23:50 +02:00
mposolda
ee79747cb6
Sync - first iteration
2014-08-10 23:22:35 +02:00
Bill Burke
9aa6b4cbfa
optimize imports
2014-08-10 12:17:45 -04:00
mposolda
dc50c312cb
Configurable if pagination and connectionPooling are supported in LDAP
2014-08-08 12:09:08 +02:00
mposolda
5673fb34b1
Fix adding social link in mongo. Fixed export/import of federationProviders. Enhanced ExportImportTest
2014-08-07 17:33:48 +02:00
mposolda
76db33829b
KEYCLOAK-600 Users shouldn't be registered with Federation Provider on an import
2014-08-07 12:38:56 +02:00
Bill Burke
99e6f0edad
delete fed provider
2014-08-06 20:38:30 -04:00
Bill Burke
ab08ac8ad4
Merge remote-tracking branch 'upstream/master'
2014-08-05 20:29:02 -04:00
Bill Burke
a0d7fc12db
all claims for app
2014-08-05 19:46:55 -04:00
Bill Burke
790fd1d94d
fix cors example
2014-08-05 16:45:21 -04:00
mposolda
53fbceb49a
Fixing mssql
2014-08-05 18:25:54 +02:00
mposolda
0289f5dff9
Fix typo in UserFederationProvider
2014-08-05 13:31:35 +02:00
Bill Burke
731d75c756
app full scope by default
2014-08-04 16:04:10 -04:00
Bill Burke
04ec750157
federation docs
2014-08-04 12:25:11 -04:00
mposolda
46a0caf2e0
Upgrade to latest picketlink. Fix LDAP configuration according to that
2014-08-04 13:58:52 +02:00
Bill Burke
6cf708f6e1
fed exampe
2014-08-02 22:18:17 -04:00
Bill Burke
101a72cd65
remove AuthenticationProvider/Link
2014-08-01 18:03:48 -04:00
Bill Burke
bdc31d9459
Merge remote-tracking branch 'upstream/master'
2014-08-01 13:18:46 -04:00
Bill Burke
f08c42a37e
token validation
2014-08-01 13:18:32 -04:00
Stian Thorgersen
6cbeeb1b1a
KEYCLOAK-591 Require SSL for all external requests by default
2014-08-01 13:52:04 +01:00
Bill Burke
64589bc807
maxResults
2014-07-31 17:41:38 -04:00
Bill Burke
9f6c206078
ldap edit mode
2014-07-31 17:28:48 -04:00
Bill Burke
a084695978
support registration ldap
2014-07-31 15:22:20 -04:00
Bill Burke
94c06f3f5d
fed ui
2014-07-31 13:13:48 -04:00
Bill Burke
b72a7db6fe
federation display name
2014-07-31 10:51:04 -04:00
Bill Burke
d0dc75c06f
federation ui
2014-07-30 22:52:39 -04:00
Bill Burke
8ea0d19d2f
federation refactor
2014-07-30 16:01:54 -04:00
Stian Thorgersen
02a59812e6
Added ClientSessionModel to UserSessionProvider
2014-07-29 16:10:41 +01:00
Bill Burke
3bb0842eae
federation iteration 2
2014-07-25 21:05:45 -04:00
Bill Burke
b1cd37814a
rename
2014-07-25 10:40:46 -04:00
Bill Burke
1b14444eba
rename FederationProvider to UserFederationProvider
2014-07-24 11:11:21 -04:00
Bill Burke
43d08f2d05
federation iteration 1 complete
2014-07-23 17:05:49 -04:00
Bill Burke
171e9b1ce9
Merge remote-tracking branch 'upstream/master'
2014-07-23 15:10:48 -04:00
Stian Thorgersen
d6f5bf6cde
Moved rememberMe, usernameUsed fields from AccessCode to UserSessions. Change AccessCode to have a single action instead of a list of required actions, also used action for codes that needs user to grant permissions first. Finally removed expiration time on access code and use timestamp directly
2014-07-23 15:58:09 +01:00
Bill Burke
f1d72d0b6d
fed 2
2014-07-23 10:42:18 -04:00
Bill Burke
148d494905
federation iteration
2014-07-23 10:21:25 -04:00
mposolda
3dff4afe83
Export/import improvements and fixes
2014-07-17 21:31:33 +02:00
mposolda
b041f2a857
Added method UserProvider.getUsersCount(). Refactor export-import with users pagination available
2014-07-17 10:15:13 +02:00
Stian Thorgersen
c21be01e97
Merge pull request #529 from stianst/master
...
KEYCLOAK-435 Added pagination support for users
2014-07-16 18:04:36 +01:00
Stian Thorgersen
72d240a57e
KEYCLOAK-435 Added pagination support for users
2014-07-16 17:54:11 +01:00
Bill Burke
f342a8c7a3
move credential validation to UserProvider
2014-07-16 12:05:15 -04:00
Bill Burke
a5593469ae
rename ModelProvider->RealmProvider
2014-07-15 15:44:50 -04:00
Bill Burke
484a4c1454
user provider refactor complete
2014-07-15 15:25:06 -04:00
Bill Burke
ff86bdc35f
userprovider split
2014-07-15 12:11:12 -04:00
mposolda
c14840a4c0
More cleanup after rebase
2014-07-15 14:44:38 +02:00
mposolda
24a492ffe0
Export/import refactoring to use same representation as admin endpoints
2014-07-15 05:35:24 +02:00
Bill Burke
d2c27daa16
changes
2014-07-14 11:31:25 -04:00
Stian Thorgersen
3f68180ee7
KEYCLOAK-512 Pagination support for sessions
2014-07-14 11:49:59 +01:00
Stian Thorgersen
d625fb014c
Added JPA connection provider and added basic support for multiple transactions to KeycloakSession
2014-07-14 10:10:03 +01:00
Bill Burke
626cecba95
enlist
2014-07-11 19:43:37 -04:00
Bill Burke
5f5316fbdc
session transaction
2014-07-11 19:29:11 -04:00
Stian Thorgersen
86671a2354
Started UserSessionProvider
2014-07-10 16:48:25 +01:00
Stian Thorgersen
ad6d52cb0f
Removed model methods from KeycloakSession
2014-07-08 15:27:42 +01:00
Stian Thorgersen
8dc293f629
Removed removeAllData from model
2014-07-08 15:27:42 +01:00
mposolda
ffc30b4c03
Changes in representations - adding role mappings under user representation
2014-07-07 22:48:53 +02:00
Bill Burke
bda218af07
Merge pull request #500 from patriot1burke/master
...
configurable hash iterations
2014-07-07 12:12:25 -04:00
Bill Burke
15d7568792
configurable hash iterations
2014-07-07 12:11:45 -04:00
Stian Thorgersen
38857cf2e6
Remove notBefore from users
2014-07-07 16:23:53 +01:00
Stian Thorgersen
099743d448
Rename loginName to username
2014-07-07 15:56:21 +01:00
Stian Thorgersen
34a1923d18
Refactor to prepar for splitting model
2014-06-27 09:39:06 +01:00
mposolda
8dce5a90bb
LDAP: configurable LDAP Object Classes for User
2014-06-25 07:59:58 +02:00
mposolda
b1cfab34fd
Support for test of LDAP connection and authentication
2014-06-24 10:03:14 +02:00
Bill Burke
8eaf77b3c1
cache impl again
2014-06-13 19:05:05 -04:00
Bill Burke
cbea141a54
cache impl
2014-06-13 17:17:45 -04:00
Bill Burke
4a518c964b
mongo refactor for caching
2014-06-12 16:51:19 -04:00
Bill Burke
bb2ad656a3
cache implement
2014-06-12 11:45:50 -04:00
Bill Burke
2ae2067841
refactor for caching again
2014-06-12 11:11:14 -04:00
Bill Burke
0dd06e3343
model refactor for caching
2014-06-10 18:50:08 -04:00
Bill Burke
2f3c8bf079
cache refactor
2014-06-06 15:12:58 -04:00
Bill Burke
9410adf9ce
fix deadlocks
2014-06-02 21:33:43 -04:00
Bill Burke
e4232c73c6
admin rest api example
2014-05-23 18:20:55 -04:00
Stian Thorgersen
cc97265c06
Add realm option to enable/disable Resource Owner Password Credentials Grant
2014-05-20 11:32:22 +01:00
Stian Thorgersen
8d1149dc07
Add email theme config for realm
2014-05-20 11:00:43 +01:00
Bill Burke
c2bf6c3822
Merge remote-tracking branch 'upstream/master'
2014-05-17 14:24:37 -04:00
Bill Burke
ab8de6ba25
client user-session association
2014-05-17 14:24:32 -04:00
Stian Thorgersen
855269f35d
Added 'keycloak-server.json' for configuring the server
...
Added SPI interface to detect SPI's
Converted Model to SPI/Provider to be loaded through ProviderSessionFactory
2014-05-16 17:33:22 +01:00
Bill Burke
bc2360e985
sso session idle and max lifespan
2014-05-15 17:25:57 -04:00
Bill Burke
27efd3c0a4
ssoSessionIdleTimeout refactor
2014-05-15 13:53:28 -04:00
Matthias Wessendorf
d9c8dedcfb
removing JavaSE6 incompatible ctor
2014-05-14 17:43:36 +02:00
Matthias Wessendorf
9e0bf9e7dc
Removing exception ctor that does not work w/ java 6
2014-05-14 17:40:27 +02:00
Stian Thorgersen
f4f9b1e323
KEYCLOAK-431 View open sessions, and logout all sessions, through account management
2014-05-14 11:56:28 +01:00
Bill Burke
1e1991e285
per-realm admin
2014-05-12 10:12:31 -04:00
Stian Thorgersen
6f0b12174c
KEYCLOAK-432 Added user sessions
2014-05-09 11:52:45 +01:00
Bill Burke
2d949b63b5
keycloak.js login for admin
2014-05-08 19:55:57 -04:00
mposolda
0801c9c120
Full export-import implemented. Remove dependency of mongo on picketlink-common
2014-05-06 22:15:57 +02:00
Stian Thorgersen
316431c4d1
Ensure role name unique within realm/app
2014-04-30 09:50:29 +01:00
Stian Thorgersen
646e762cbe
Ensure user loginName and email unique within realm
2014-04-29 17:15:28 +01:00
Stian Thorgersen
364998b34b
Enforce that realm name is unique in model
2014-04-29 10:43:27 +01:00
mposolda
b6386630fb
Fix testsuite with mongo
2014-04-29 10:37:43 +02:00
Stian Thorgersen
292089cee8
Ensure Realm names are unique
2014-04-25 17:02:03 +01:00
Stian Thorgersen
f64f55a4c6
KEYCLOAK-347 Link realm and realm-permissions application
2014-04-25 15:32:28 +01:00
Stian Thorgersen
d6e5e376bf
Theme support for admin
2014-04-25 13:58:58 +01:00
Bill Burke
54abfb670c
brute force settings
2014-04-15 11:37:27 -04:00
mposolda
5aefe52ccc
Refactoring of Authentication SPI and Picketlink to use ProviderSessions
...
Refactoring of ProviderSessionFactory to support dependencies between components
Calling lifecycle methods
Removing KeycloakRegistry
2014-04-09 00:34:01 +02:00
Stian Thorgersen
354cf02aaa
Fix audit mongo tests
2014-04-08 12:43:01 +01:00