libre.sh/keycloak-scim
2
0
Fork 0
Code Issues 14 Pull requests Releases Packages Activity Actions 6
13251 commits 4 branches 5 tags 480 MiB
Commit graph

1254 commits

Author SHA1 Message Date
Martin Idel
7e8018c7ca KEYCLOAK-11862 Add Sync mode option 
- Store in config map in database and model
- Expose the field in the OIDC-IDP
- Write logic for import, force and legacy mode
- Show how mappers can be updated keeping correct legacy mode
- Show how mappers that work correctly don't have to be modified
- Log an error if sync mode is not supported

Fix updateBrokeredUser method for all mappers

- Allow updating of username (UsernameTemplateMapper)
- Delete UserAttributeStatementMapper: mapper isn't even registered
  Was actually rejected but never cleaned up: https://github.com/keycloak/keycloak/pull/4513
  The mapper won't work as specified and it's not easy to tests here
- Fixup json mapper
- Fix ExternalKeycloakRoleToRoleMapper:
  Bug: delete cannot work - just delete it. Don't fix it in legacy mode

Rework mapper tests

- Fix old tests for Identity Broker:
  Old tests did not work at all:
  They tested that if you take a realm and assign the role,
  this role is then assigned to the user in that realm,
  which has nothing to do with identity brokering
  Simplify logic in OidcClaimToRoleMapperTests
- Add SyncMode tests to most mappers
  Added tests for UsernameTemplateMapper
  Added tests to all RoleMappers
  Add test for json attribute mapper (Github as example)
- Extract common test setup(s)
- Extend admin console tests for sync mode

Signed-off-by: Martin Idel <external.Martin.Idel@bosch.io>
 2020-04-24 15:54:32 +02:00
Erik Jan de Wit
d3e5bf48f0 KEYCLOAK-12431 don't use user agent but patternfly 2020-04-23 16:30:21 -04:00
Erik Jan de Wit
3cdfb422ad KEYCLOAK-12173 removed escaping of '&' 2020-04-23 16:10:57 -04:00
Erik Jan de Wit
4fa29948b6 use the child components 2020-04-23 16:07:56 -04:00
Erik Jan de Wit
3987ce7d94 KEYCLOAK-13740 use children as Msg parameters 2020-04-23 16:07:56 -04:00
keycloak-bot
33314ae3ca Set version to 10.0.0-SNAPSHOT 2020-04-21 09:19:32 +02:00
Stan Silvert
020ffd37ee KEYCLOAK-13635: Can't make mapper with certain chars 2020-04-15 09:57:08 +02:00
Pedro Igor
9eeeb10587 [KEYCLOAK-13589] - Can't add user in admin console when 'Email as username' is enabled 2020-04-14 19:29:48 +02:00
mposolda
9ec137a50c KEYCLOAK-13397 Creating role-ldap-mapper for realm-management client id in ldap user federation fails - alternative 2020-03-26 15:45:35 +01:00
keycloak-bot
f6a592b15a Set version to 9.0.4-SNAPSHOT 2020-03-24 08:31:18 +01:00
mposolda
5ddd605ee9 KEYCLOAK-13259 2020-03-24 05:32:41 +01:00
vmuzikar
03bce36b48 KEYCLOAK-13388 Trailing comma in tsconfig.json 2020-03-23 12:51:58 -04:00
Erik Jan de Wit
4279f5b54f KEYCLOAK-13379 added now excluded project files 2020-03-23 08:57:39 -04:00
Dmitry Telegin
3b24465141
KEYCLOAK-12870 - Allow to pick arbitrary user for IdP linking (#6828) 
* KEYCLOAK-12870 - Allow to pick arbitrary user for IdP linking

* KEYCLOAK-12870: always allow to choose user if password reset is called from first broker login flow

* KEYCLOAK-12870: remove "already authenticated as different user" check and message

* KEYCLOAK-12870: translations

* KEYCLOAK-12870: fix tests
 2020-03-20 07:41:35 +01:00
Stan Silvert
fff8571cfd KEYCLOAK-12768: Prevent reserved characters in URLs 2020-03-18 07:40:24 +01:00
Stan Silvert
256bbff769 KEYCLOAK-12844: keycloak.d.ts does not belong in new account console 2020-03-17 15:39:06 -03:00
mposolda
72e4690248 KEYCLOAK-13174 Not possible to delegate creating or deleting OTP credential to userStorage 2020-03-11 12:51:56 +01:00
stianst
db26520046 KEYCLOAK-13237 Allow look ahead window set to 0 for otp policy 2020-03-10 16:01:57 +01:00
stianst
097a9b6e2e KEYCLOAK-13233 Fix missing text-security files 2020-03-10 15:50:00 +01:00
vmuzikar
a840d6ff9a KEYCLOAK-13260 Fix "Test authentication" button for LDAP User Federation 2020-03-09 13:36:57 +01:00
mabartos
a1bbab9eb2 KEYCLOAK-12799 Missing Cancel button on The WebAuthn setup screen when using AIA 2020-03-05 15:04:38 +01:00
stianst
75a772f52b KEYCLOAK-10967 Add JSON body methods for test ldap and smtp connections. Deprecate old form based methods. 2020-03-05 10:07:58 +01:00
Douglas Palmer
dfb67c3aa4 [KEYCLOAK-12980] Username not updated when "Email as username" is enabled 2020-03-03 10:26:35 +01:00
Helder dos Santos Alves
1ca417c2c0 KEYCLOAK-13085 minor fixes 2020-03-02 15:06:23 -03:00
Helder dos Santos Alves
80a95eb520 KEYCLOAK-13085 pt_BR messages for login and email 2020-03-02 15:06:23 -03:00
Stan Silvert
c78087c3ed KEYCLOAK-12817: Password form is stretched if IdP is configured 2020-02-28 09:18:46 -03:00
Bart Monhemius
b6d945aaa8 [i18n nl] Add translations for link expiration 2020-02-27 10:47:46 +01:00
Erik Jan de Wit
b19355dd76 KEYCLOAK-10673 updated text-security to 2.0 2020-02-27 10:27:19 +01:00
Martin Bartoš
eaaff6e555
KEYCLOAK-12958 Preview feature profile for WebAuthn (#6780) 
* KEYCLOAK-12958 Preview feature profile for WebAuthn

* KEYCLOAK-12958 Ability to enable features having EnvironmentDependent providers without restart server

* KEYCLOAK-12958 WebAuthn profile product/project

Co-authored-by: Marek Posolda <mposolda@gmail.com>
 2020-02-26 08:45:26 +01:00
stianst
04903666d1 KEYCLOAK-12597 Fix admin console with base theme 2020-02-19 15:46:38 +01:00
keycloak-bot
d352d3fa8e Set version to 9.0.1-SNAPSHOT 2020-02-17 20:38:54 +01:00
mposolda
a76c496c23 KEYCLOAK-12860 KEYCLOAK-12875 Fix for Account REST Credentials to work with LDAP and social users 2020-02-14 20:24:42 +01:00
Douglas Palmer
876086c846 [KEYCLOAK-12161] "Back to Application" link is shown with link to current page 2020-02-14 10:37:32 -03:00
stianst
42773592ca KEYCLOAK-9632 Improve handling of user locale 2020-02-14 08:32:20 +01:00
Pedro Igor
421ec34557 [KEYCLOAK-8049] - Prevent users from not choosing a group 2020-02-13 10:10:46 +01:00
Peter Zaoral
b0ffea699e KEYCLOAK-12186 Improve the OTP login form 
-created and implemented login form design, where OTP device can be selected
-implemented selectable-card-view logic in jQuery
-edited related css and ftl theme resources
-fixed affected BrowserFlow tests

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
 2020-02-12 11:25:02 +01:00
Alex Szczuczko
3ef338d392 KEYCLOAK-9436 Filter out git-Logo.svg to fix zip for Windows 
Should be safe to filter, upstream PR redhat-rcue/rcue#89 will remove
eventually, and tests use lowercase version of this file.
 2020-02-11 09:16:59 +01:00
Stan Silvert
b236cae7f7 KEYCLOAK-12875: User w/o pswd can't set pswd in new acct console. 2020-02-10 14:03:16 -05:00
Erik Jan de Wit
41bf0b78be KEYCLOAK-11631 reset to default befor loading new 2020-02-10 12:55:14 -05:00
Dmitry Telegin
b6c5acef25 KEYCLOAK-7969 - SAML users should not be identified by SAML:NameID 2020-02-06 08:53:31 +01:00
Martin Bartoš
7dec314ed0
KEYCLOAK-12900 NullPointerException during WebAuthn Registration (#6732) 2020-02-05 17:01:36 +01:00
Axel Messinese
b73553e305 Keycloak-11526 search and pagination for roles 2020-02-05 15:28:25 +01:00
Martin Bartoš
b0c4913587
KEYCLOAK-12177 KEYCLOAK-12178 WebAuthn: Improve usability (#6710) 2020-02-05 08:35:47 +01:00
Alex Szczuczko
038b8fd975 KEYCLOAK-12853 Add license information for account2 dependencies 2020-02-04 15:41:27 -03:00
vmuzikar
0801cfb01f KEYCLOAK-12105 Add UI tests for Single page to manage credentials 2020-02-04 15:18:52 -03:00
Stan Silvert
a2ac8e940d KEYCLOAK-12867: Cred title should be visible if cred type disabled 2020-02-04 07:28:15 -05:00
Douglas Palmer
dc97a0af92 [KEYCLOAK-12107] Add tests for Applications page 2020-02-04 09:26:42 -03:00
rmartinc
5b9eb0fe19 KEYCLOAK-10884: Need clock skew for SAML identity provider 2020-02-03 22:00:44 +01:00
Thomas Darimont
a9572e6ee9 KEYCLOAK-12102 Show proper error messages in new account console 
Previously error codes were not properly translated in the account theme.
 2020-02-03 15:55:10 -05:00
Jan Lieskovsky
b532570747
[KEYCLOAK-12168] Various setup TOTP screen usability improvements (#6709) 
On both the TOTP account and TOTP login screens perform the following:
* Make the "Device name" label optional if user registers the first
  TOTP credential. Make it mandatory otherwise,
* Denote the "Authenticator code" with asterisk, so it's clear it's
  required field (always),
* Add sentence to Step 3 of configuring TOTP credential explaining
  the user to provide device name label,

Also perform other CSS & locale / messages file changes, so the UX is
identical when creating OTP credentials on both of these pages

Add a corresponding testcase

Also address issues pointed out by mposolda's review. Thanks, Marek!

Signed-off-by: Jan Lieskovsky <jlieskov@redhat.com>
 2020-02-03 19:34:28 +01:00
Marek Posolda
154bce5693
KEYCLOAK-12340 KEYCLOAK-12386 Regression in credential handling when … (#6668) 2020-02-03 19:23:30 +01:00
Marek Posolda
d8e450719b
KEYCLOAK-12469 KEYCLOAK-12185 Implement nice design to the screen wit… (#6690) 
* KEYCLOAK-12469 KEYCLOAK-12185 Add CredentialTypeMetadata. Implement the screen with authentication mechanisms and implement Account REST Credentials API by use the credential type metadata
 2020-01-31 14:28:23 +01:00
Stan Silvert
6ac5a2a17e
[KEYCLOAK-12744] rh-sso-preview theme for product build 
* change logo for RH-SSO
* Small fixes to rh-sso-preview theme
* rh-sso-preview theme

Co-authored-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
 2020-01-31 08:16:52 -03:00
Bruno Oliveira da Silva
22bd945332 [KEYCLOAK-10304] Configure JS Adapter to use PKCE for new Account Management 2020-01-30 09:26:27 -05:00
vmuzikar
6eb6418208 KEYCLOAK-12834 Fix Account Console build is missing some dependencies 2020-01-30 10:31:27 -03:00
Bruno Oliveira da Silva
a9c3e4b8bd Update node_modules folder 2020-01-30 14:25:29 +01:00
Bruno Oliveira da Silva
c36bcc8701 [KEYCLOAK-12439] Update to Angular 1.7.9 2020-01-30 14:25:29 +01:00
Erik Jan de Wit
8a022da30d KEYCLOAK-10303 configure JS Adapter to use PKCE 2020-01-30 10:29:06 +01:00
stianst
c38baa32ba KEYCLOAK-12685 Set callback URI for identity providers to use frontend URL 2020-01-29 14:05:48 +01:00
Marek Posolda
d46620569a
KEYCLOAK-12174 WebAuthn: create authenticator, requiredAction and policy for passwordless (#6649) 2020-01-29 09:33:45 +01:00
Alex Szczuczko
1a53110bb6 KEYCLOAK-11293 Filter out cruft from account2 modules 2020-01-29 05:26:55 -03:00
Alex Szczuczko
7dd7686635 KEYCLOAK-11293 Run mvn clean package -Pnpm-update 2020-01-29 05:26:55 -03:00
Alex Szczuczko
52d8b759d3 KEYCLOAK-11293 Update theme build for keycloak-preview 
`npm install` is changed to run at build time, removing the need for commiting
the js modules, which are getting a bit silly in size with the introduction of
account2. Appropriate changes to prod-arguments.json are included that should
enable the product build to function properly. The community and developer
builds will continue to work without the proxying PNC provides.

This also changes the themes pom to work with more than one `package.json`
file. The only other one at the moment is for the new account console /
account2.

The documentation file has been updated.

Since we're building directly out of the source directories, it is possible in
a local dev environment for unintended files (e.g. old compiled .js files),
placed within src/main/resources/, to be included in the themes jar. This
shouldn't be a problem for actual builds though, which use a fresh clone.

Other small changes include refactoring the npm setup stuff to a global
definition, and the introduction of some properties to avoid duplicating path
definitions everywhere.

This commit does not include the churn that would result from deleting the
existing commited modules.
 2020-01-29 05:26:55 -03:00
Erik Jan de Wit
3beef2a4c0 KEYCLOAK-8098 use html5 email validation 2020-01-27 15:16:05 -05:00
Denis Richtárik
24c6e2ba08 KEYCLOAK-12742 Authentication -> WebAuthn Policy: Unable to delete the Acceptable AAGUIDS via the provided minus (-) button, once set (#6695) 2020-01-24 11:55:20 +01:00
Thomas Darimont
303861f7e8 KEYCLOAK-10003 Fix handling of request parameters for SMTP Connection Test 
We now transfer the SMTP connection configuration via HTTP POST
request body parameters instead of URL parameters.
The improves handling of SMTP connection configuration values with
special characters. As a side effect sensitive information like SMTP
credentials are now longer exposed via URL parameters.

Previously the SMTP connection test send the connection parameters
as encoded URL parameters in combination with parameters in the request body.
However the server side endpoint did only look at the URL parameters.

Certain values, e.g. passwords with + or ; could lead to broken URL parameters.
 2020-01-23 13:19:31 -06:00
Leon Graser
f1ddd5016f KEYCLOAK-11821 Add account api roles to the client on creation 
Co-authored-by: stianst <stianst@gmail.com>
 2020-01-23 13:10:04 -06:00
Benjamin Weimer
dd9ad305ca KEYCLOAK-12757 New Identity Provider Mapper "Advanced Claim to Role Mapper" with 
following features

    * Regex support for claim values.
    * Support for multiple claims.
 2020-01-23 07:17:22 -06:00
Stan Silvert
210fd92d23 KEYCLOAK-11550: Signing In page 2020-01-23 07:35:09 -05:00
Tobias Oort
910324e4eb minor changes (punctuation, caps) 2020-01-20 06:51:08 -06:00
Tobias Oort
632925cc06 [i18n nl] Updated totpStep1 - removed a-href tags 
A tags are not rendered as-is - they are escaped. This fixes html output as plaintext in the dutch translation.
 2020-01-20 06:51:08 -06:00
Stan Silvert
922c9260a4 KEYCLOAK-12526: Fix when switch is displayed 2020-01-17 08:35:01 -03:00
Stan Silvert
568b1586a6 KEYCLOAK-12526: Add 'Always Display in Console' to admin console 2020-01-17 08:35:01 -03:00
Martin Bartos RH
d3f6937a23 [KEYCLOAK-12426] Add username to the login form + ability to reset login 2020-01-17 09:40:13 +01:00
mposolda
85dc1b3653 KEYCLOAK-12426 Add username to the login form + ability to reset login - NOT DESIGN YET 2020-01-17 09:40:13 +01:00
Alex Szczuczko
3ac4992808 KEYCLOAK-12478 Remove all html and css files under keycloak-preview 2020-01-16 15:26:13 -05:00
Martin Bartoš
5aab03d915 [KEYCLOAK-12184] Remove BACK button from login forms (#6657) 2020-01-15 12:25:37 +01:00
Marek Posolda
8d49409de1
KEYCLOAK-12183 Refactor login screens. Introduce try-another-way link. Not show many credentials of same type in credential selector (#6591) 2020-01-14 21:54:45 +01:00
Bodo Graumann
65b674a131 KEYCLOAK-10818 Add hint about +, * in client CORS 
The '+' in the allowed CORS origins does not replicate a '*' wildcard
from the Valid Redirect URIs. This information is now available in the
tooltip.

Also translated changed message into german.
 2020-01-09 10:09:02 +01:00
Bruno Oliveira da Silva
c0aa0891cd [KEYCLOAK-12533] Applications UI has erroneous "Remove Access" button 2020-01-06 10:49:52 -03:00
Bruno Oliveira da Silva
caf08da2af [KEYCLOAK-10962] Application screen for the new account console 2019-12-17 17:09:45 -03:00
vmuzikar
4c17fa8664 KEYCLOAK-12104 UI tests for Linked Accounts Page 2019-12-16 16:06:03 -03:00
Stan Silvert
8efe89135e KEYCLOAK-8181: Implement spinner 2019-12-16 14:55:00 -03:00
vmuzikar
4f7b56d227 KEYCLOAK-12106 UI tests for Device Activity page 2019-12-16 14:26:58 -03:00
Erik Jan de Wit
fb999d96a5 reverted 2019-12-13 15:22:32 -05:00
Erik Jan de Wit
9cfb22f176 added redirectUri to go back where the user was 2019-12-13 15:22:32 -05:00
Erik Jan de Wit
af0f43b769 KEYCLOAK-11496 detect session timeout 2019-12-13 15:22:32 -05:00
Stef van der Wel
118b413152 KEYCLOAK-12315 Fixed rendering resources template without baseUri. 2019-12-11 16:52:39 -03:00
Martin Bartoš
2cf6483cdf [KEYCLOAK-12044] Fix messages in the UsernameForm (#6548) 2019-12-11 10:59:46 +01:00
moremagic
17237ee7fc KEYCLOAK-6758 2019-12-10 09:15:25 +01:00
Denis Richtárik
48bddc37ae KEYCLOAK-12011 Remove cancel button from OTP form (#6511) 
* KEYCLOAK-12011 Remove cancel button from OTP form

* Remove back button
 2019-12-09 19:23:26 +01:00
Cristian Schuszter
5c7ce775cf KEYCLOAK-11472 Pagination support for clients 
Co-authored-by: stianst <stianst@gmail.com>
 2019-12-05 08:17:17 +01:00
k-tamura
5fc39daad3 KEYCLOAK-10440 Update Japanese translation for version 7.0.1 2019-12-03 07:51:19 +01:00
Bruno Oliveira da Silva
f9683b460b [KEYCLOAK-12277] NPM lint errors and warnings on MyResources page 2019-12-02 11:26:37 -05:00
vmuzikar
f426643225 KEYCLOAK-11744 KEYCLOAK-11271 New Account Console testsuite 2019-11-28 08:32:48 -03:00
Tomas Kyjovsky
61eb569ae5 KEYCLOAK-11921 Reset password (#6505) 2019-11-28 09:38:11 +01:00
Stan Silvert
de6f90b43b KEYCLOAK-11550: Single page for credentials (initial commit) 2019-11-27 07:32:13 -03:00
rmartinc
82ef5b7927 KEYCLOAK-12000: Allow overriding time lifespans on a SAML client 2019-11-26 10:02:34 +01:00
stianst
c74a081ad8 KEYCLOAK-12224 Use frontendUrl for ODIC discovery and SAML IdP metadata in admin console 2019-11-26 08:21:34 +01:00
Kohei Tamura
bc7d7ad754 KEYCLOAK-12021 Remove unnecessary property key in property value 2019-11-22 15:48:45 +01:00
Pedro Igor
cee884e4a7 [KEYCLOAK-8406] - Remove Drools/Rules Policy 2019-11-22 15:38:51 +01:00
Stan Silvert
ea268af511 KEYCLOAK-12159: AIA and Logout broken in new acct console 2019-11-21 09:35:46 -03:00
stianst
3731e36ece KEYCLOAK-12069 Add account-console client for new account console 2019-11-20 08:48:40 -05:00
keycloak-bot
76aa199fee Set version to 9.0.0-SNAPSHOT 2019-11-15 20:43:21 +01:00
Erik Jan de Wit
e6414856b4 fix: make brand logo click go back to welcome screen 
fixing KEYCLOAK-11680
 2019-11-15 13:01:03 -05:00
AlistairDoswald
4553234f64 KEYCLOAK-11745 Multi-factor authentication (#6459) 
Co-authored-by: Christophe Frattino <christophe.frattino@elca.ch>
Co-authored-by: Francis PEROT <francis.perot@elca.ch>
Co-authored-by: rpo <harture414@gmail.com>
Co-authored-by: mposolda <mposolda@gmail.com>
Co-authored-by: Jan Lieskovsky <jlieskov@redhat.com>
Co-authored-by: Denis <drichtar@redhat.com>
Co-authored-by: Tomas Kyjovsky <tkyjovsk@redhat.com>
 2019-11-14 14:45:05 +01:00
Andy Munro
e7e49c13d5 KEYCLOAK-11413 Update UI messages 
Co-authored-by: stianst <stianst@gmail.com>

Made a couple more spelling corrections.
 2019-11-14 12:31:05 +01:00
Stan Silvert
d439f4181a KEYCLOAK-6503: Linked Accounts Page 2019-11-14 07:39:43 -03:00
stianst
b8881b8ea0 KEYCLOAK-11728 New default hostname provider 
Co-authored-by: Hynek Mlnarik <hmlnarik@redhat.com>
 2019-11-11 12:25:44 +01:00
Takashi Norimatsu
4574d37d8d KEYCLOAK-11372 Support for attestation statement verification (#6449) 2019-11-08 09:15:28 +01:00
stianst
e13a066c74 KEYCLOAK-11886 Delete themes/src/main/resources/theme/keycloak/common/resources/lib/components/ 2019-11-07 04:45:24 -03:00
Stan Silvert
041229f9ca KEYCLOAK-7429: Linked Accounts REST API 2019-11-05 16:03:21 -05:00
stianst
a6e8232b31 KEYCLOAK-11845 Update admin theme to use shared PatternFly/RCUE 2019-11-01 12:09:25 -03:00
stianst
64a92eba3c KEYCLOAK-11844 Update account theme to use shared PatternFly/RCUE 2019-11-01 12:09:25 -03:00
stianst
8e4fce457d KEYCLOAK-11782 Update PatternFly 3 and RCUE 3 2019-11-01 12:09:25 -03:00
stianst
2f0b03e1a0 KEYCLOAK-11782 Cleanup 
* Updated npm-update profile
  - Update Node and NPM versions
  - Exclude optional dependencies
  - Remove node_modules within src/main/node_modules (PatternFly for example includes all dependencies in patternfly/node_modules, we don't need these)
  - Remove minimist and mkdirp from src/main/node_modules as these are not included in dist, so we don't need the source

* src/main/node_modules was updated to PatternFly 3.41.6 at some point, but not properly since src/main/resources/theme/keycloak/common/resources/node_modules/patternfly is currently on 3.38.1

* Removed ^ in versions in package.json as this results in unreliable updates of dependencies
 2019-11-01 12:09:25 -03:00
Stan Silvert
401c02cc19 KEYCLOAK-11839: Fix linting errors in DeviceActivityPage 2019-10-29 15:50:53 -04:00
Patrick Rosendaal
b28690d4db KEYCLOAK-11781 specify encoding 2019-10-24 15:03:08 +02:00
Hynek Mlnarik
783545572a KEYCLOAK-11684 Add support to display passwords in password fields 
Add UI tests for KEYCLOAK-11684

Co-authored-by: stianst <stianst@gmail.com>
Co-authored-by: vmuzikar <vmuzikar@redhat.com>
 2019-10-23 15:30:11 +02:00
stianst
d50994783f Added UPDATING-NODE-MODULES.md with instructions on how to update dependencies for admin, login and old account console 2019-10-22 13:40:40 +02:00
Pedro Igor
93ec3b53d9 [KEYCLOAK-11557] - Unable to add AuthZ Policies in IE 
(cherry picked from commit 4d323b22ff4e5bdab319d3a069f64fd8b10b8210)
 2019-10-22 10:34:24 +02:00
Pedro Igor
bb4ff55229 [KEYCLOAK-10868] - Deploy JavaScript code directly to Keycloak server 
Conflicts:
	testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/adapter/example/authorization/AbstractPhotozExampleAdapterTest.java

(cherry picked from commit 338fe2ae47a1494e786030eb39f908c964ea76c4)
 2019-10-22 10:34:24 +02:00
Stan Silvert
787386fc21 KEYCLOAK-11539: Rewrite Device Activity page 2019-10-21 15:25:11 -04:00
Stan Silvert
9a93e5028c KEYCLOAK-11423: My Resources page initial commit 2019-10-21 15:24:02 -04:00
Jan Lieskovsky
f2e5f9dedd [KEYCLOAK-11717] Drop the public key credential related elements (#6407) 
from the Edit Account screen of the Account console

Add a testcase for it

Signed-off-by: Jan Lieskovsky <jlieskov@redhat.com>
 2019-10-21 19:54:39 +02:00
Bruno Oliveira da Silva
ab2bb31505 [KEYCLOAK-11158] Upgrade dependencies in the new admin console 2019-10-16 09:45:43 -03:00
İlhan Subaşı
b4e2c1ec7d Update Turkish text in e-mails referring to "This link will expire within 5 minutes". 2019-10-15 05:16:36 +02:00
Cédric Couralet
5f006b283a KEYCLOAK-8316 Add an option to ldap provider to trust emails on import 
Signed-off-by: Cédric Couralet <cedric.couralet@insee.fr>
 2019-10-04 16:28:02 +02:00
Takashi Norimatsu
7c75546eac KEYCLOAK-9360 Two factor authentication with W3C Web Authentication - 1st impl phase 
* KEYCLOAK-9360 Two factor authentication with W3C Web Authentication - 1st impl phase
 2019-10-01 15:17:38 +02:00
Kohei Tamura
a09b593342 KEYCLOAK-10952 Fix incorrect message when clicking revoke grant 2019-09-20 12:02:34 +02:00
Hynek Mlnarik
8a9152b769 KEYCLOAK-11320 Add tooltips to fields with vault support 2019-09-20 11:48:00 +02:00
rradillen
b71198af9f [KEYCLOAK-8575] oidc idp basic auth (#6268) 
* [KEYCLOAK-8575] Allow to choose between basic auth and form auth for oidc idp

* uncomment ui and add tests

* move basic auth to abstract identity provider (except for getting refresh tokens)

* removed duplications
 2019-09-19 14:36:16 +02:00
k-tamura
f35d3a8ec9 KEYCLOAK-10791 Remove duplicate lines in properties 2019-09-19 08:49:32 +02:00
madgaet
53b28aaa7e [KEYCLOAK-9809] Support private_key_jwt authentication for external IdP 2019-09-17 16:04:23 +02:00
madgaet
c35718cb87 [KEYCLOAK-9809] Support private_key_jwt authentication for external IdP 2019-09-17 16:04:23 +02:00
Stan Silvert
69359eab23 KEYCLOAK-11426: Remove background 2019-09-17 09:37:14 -03:00
Armel Soro
f26f634887 Fix typo in client authenticator tooltip message 2019-09-17 12:21:18 +02:00
Juergen Lesny
c2f3350f8a KEYCLOAK-11230 Update german translation in themes 2019-09-11 07:56:05 +02:00
k-tamura
f2ab8d97c0 KEYCLOAK-10677 Fix incorrect tooltip texts 2019-09-06 15:30:25 -04:00
Stan Silvert
71e6fc2b30 KEYCLOAK-11189: Fix locale dropdown 2019-09-05 16:18:41 -03:00
Stan Silvert
a43af40228 KEYCLOAK-10739: Device Activity UI 2019-09-05 12:22:05 -03:00
Sebastian Laskawiec
69d6613ab6 KEYCLOAK-10169 OpenShift 4 Identity Provider 2019-09-05 16:33:59 +02:00
Stan Silvert
01255da0f0 KEYCLOAK-11167: Create Continue/Cancel modal 2019-08-21 17:27:40 -03:00
Pedro Igor
e12c245355 [KEYCLOAK-10779] - CSRF check to My Resources 
(cherry picked from commit dbaba6f1b8c043da4a37c906dc0d1700956a0869)
 2019-08-20 06:35:00 -03:00
Takashi Norimatsu
8225157a1c KEYCLOAK-6768 Signed and Encrypted ID Token Support 2019-08-15 15:57:35 +02:00
Stan Silvert
e2cac64c2c KEYCLOAK-10966: Integrate App-initiated actions in new acct console 2019-08-07 14:42:12 -03:00
k-tamura
2dceda3f50 KEYCLOAK-10807 Fix incorrect RS link on my resources page 2019-07-26 15:29:25 -03:00
Kohei Tamura
f238c4b736 KEYCLOAK-10823 Make it possible to localize Share button 
Please refer to [KEYCLOAK-10823](https://issues.jboss.org/browse/KEYCLOAK-10823).
 2019-07-26 15:23:26 -03:00
Stan Silvert
bc818367a1 KEYCLOAK-10854: App-initiated actions Phase I 2019-07-26 14:56:29 -03:00
Stan Silvert
6c79bdee41 KEYCLOAK-10854: App initiated actions phase I 2019-07-26 14:56:29 -03:00
keycloak-bot
17e9832dc6 Set version to 8.0.0-SNAPSHOT 2019-07-19 19:05:03 +02:00
Leon Graser
e1cb17586f display users in roles 2019-07-19 09:52:13 -04:00
Martin Reinhardt
1ca66b4789 [KEYCLOAK-10018] Show complete group path for assigned groups 2019-07-18 09:24:21 -04:00
Martin Reinhardt
60f2853d44 [KEYCLOAK-10018] Fix inject component utils 2019-07-18 09:24:21 -04:00
Martin Reinhardt
36c47e7491 [KEYCLOAK-10018] Adding search logic for user partials, too 2019-07-18 09:24:21 -04:00
Martin Reinhardt
c08d0a626f Fix search on enter issue 2019-07-18 09:24:21 -04:00
Pedro Igor
5f5cb6cb7b [KEYCLOAK-10808] - Do not show authorization tab when client is not confidential 2019-07-15 10:07:31 -03:00
Takashi Norimatsu
2e850b6d4a KEYCLOAK-10747 Explicit Proof Key for Code Exchange Activation Settings 2019-07-12 08:33:20 +02:00
k-tamura
c636b7a1cd KEYCLOAK-10784 i18n support for UMA resource pages 2019-07-08 14:25:05 -03:00
Tomasz Prętki
0376e7241a KEYCLOAK-10251 New Claim JSON Type - JSON 2019-07-08 11:59:57 +02:00
Pedro Igor
0cdd23763c [KEYCLOAK-10443] - Define a global decision strategy for resource servers 2019-07-02 09:14:37 -03:00
Andrea Bruehlmann
18c1641afe KEYCLOAK-10602 
German translation errors
 2019-06-21 11:21:57 +02:00
Stan Silvert
0955c57073 Update README.md 2019-06-20 06:22:49 -03:00
Bruno Oliveira da Silva
015ca592a9 [KEYCLOAK-10397] Update Red Hat logo in RH-SSO theme 2019-06-14 09:07:56 +02:00
Pedro Igor
c230ccb7e8 [KEYCLOAK-10634] - Permission not removing reference to resource when setting the resource type 2019-06-12 12:05:45 -03:00
Stan Silvert
1463539d32 Update README.md 2019-06-11 07:24:17 -04:00
Martin Reinhardt
b32a9debce [KEYCLOAK-10018] Adding search highlight with text match 2019-06-07 12:10:18 -04:00
Martin Reinhardt
ed4af9baba [KEYCLOAK-10018] Adding sorting of groups by name in UI 2019-06-07 12:10:18 -04:00
k-tamura
33b4f578e3 KEYCLOAK-10438 Fix tooltip text for Request Object Required 2019-06-06 14:07:24 +02:00
Bruno Oliveira da Silva
ba337e3444 [KEYCLOAK-10455] Upgrade Axios for the new account console UI 2019-06-05 10:06:09 -03:00
Stefan Guilhen
40ec46b79b [KEYCLOAK-8043] Allow prompt=none query parameter to be propagated to default IdP 2019-05-29 09:22:46 +02:00
Ian Duffy
de0ee474dd Review feedback 2019-05-27 21:30:01 +02:00
Ian Duffy
54909d3ef4 [KEYCLOAK-10230] Support for LDAP with Start TLS 
This commit sends the STARTTLS on LDAP 389 connections is specified.
STARTTLS doesn't work with connection pooling so connection pooling will
be disabled should TLS be enabled.
 2019-05-27 21:30:01 +02:00
Stan Silvert
484b090187 KEYCLOAK-8108: Page Not Found page 2019-05-23 17:05:27 -04:00
Stan Silvert
9097aef4b8 KEYCLOAK-10340: New message bundle 2019-05-23 11:03:25 -03:00
Pedro Igor
6e7b08e3e3 [KEYCLOAK-8060] - Initial pages and components for My Resource 2019-05-21 15:45:48 -03:00
vramik
d64f716a20 KEYCLOAK-2709 SAML Identity Provider POST Binding request page shown to user is comletely blank with nonsense title 2019-05-20 09:51:04 +02:00
Stan Silvert
38933fdfed KEYCLOAK-10205: Alerts and Notifications 2019-05-17 16:15:24 -03:00
Kohei Tamura
8bee7ec542 KEYCLOAK-9983 - Fix the P3P header corruption in Japanese and Turkish (#6006) 2019-05-15 15:23:45 +02:00
Stan Silvert
f34f96944f KEYCLOAK-10204: Use PF4 for Personal Info content 2019-05-13 13:03:44 -04:00
Stan Silvert
3f6062985c KEYCLOAK-10172: Upgrade jquery and bootstrap in admin console 2019-05-09 12:00:44 -04:00
Stan Silvert
c37c4d2a82 KEYCLOAK-10193: Upgrade PatternFly and PatternFly React 2019-05-06 14:41:28 -04:00
Stan Silvert
68d7abac3a KEYCLOAK-6508: Hide builtin pages 2019-05-06 11:37:58 -03:00
Leon Graser
bcd213e8e7 fix redundant calls to groups endpoint in pagination 2019-04-30 07:04:21 -04:00
Sergey Vikulov
996ceb2ce8 Fixed typo in messages of base theme (#5890) 2019-04-29 14:40:37 +01:00
Stan Silvert
6806a4c660 KEYCLOAK-7219: Remove keycloak.js from new Account Console 2019-04-22 13:56:08 -03:00
Stan Silvert
e52be73d41 KEYCLOAK-10074: Account Console Performance 2019-04-22 09:47:12 -03:00
keycloak-bot
49d4e935cb Set version to 7.0.0-SNAPSHOT 2019-04-17 09:48:07 +01:00
moehman
0193e78ff9 KEYCLOAK-10070 Fix typo in account/message_de.properties 2019-04-16 08:39:34 +02:00
Stan Silvert
2736dd9d61 KEYCLOAK-9644: Implement Nav and Headers using PF4 React 2019-04-12 16:15:51 -03:00
mposolda
81a37d3496 KEYCLOAK-7144 Improve admin console label/tooltip around anonymous bind option in LDAP storage provider 2019-04-12 20:23:33 +02:00
stianst
e7deb77725 Fix NPM dependency to download using https 2019-04-12 08:09:30 +01:00
Francesco Degrassi
5b78063dce KEYCLOAK-6614: Support requesting refresh tokens from Google using access_type=offline 2019-04-08 15:06:03 -03:00
Thomas Darimont
5eb9291f37 KEYCLOAK-9574 Fix broken Role Selection for LDAP Mapper in Admin-Console (#5883) 
We now wrap the result of a role-selection in an JS array and
use the config value as is for rendering, instead of extracting
the first component (which was the first char, since the value
is a string).

Previously any mapper that used role selection could not be
used due to `LDAPMapperCreateCtrl` generating invalid config structures.

Since the component configuration is represented via
org.keycloak.representations.idm.ComponentRepresentation whose
`config` property is a `MultivaluedHashMap`
config values needs to be passed as an Array. However the
LDAPMapperCreateCtrl in (users.js) only passed the role as a String.

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
 2019-03-27 19:26:03 +01:00
Stan Silvert
837909fdfd KEYCLOAK-9657: Implement responsive Welcome Screen 2019-03-22 14:36:29 -03:00
Stan Silvert
a795bc0e3a KEYCLOAK-9659: Create readme build instructions for new account console. 2019-03-20 15:46:01 -03:00
mposolda
db271f7150 KEYCLOAK-9572 Support for multiple CRLs with X509 authentication 2019-03-20 15:00:44 +01:00
Stan Silvert
44b0f4efd3 KEYCLOAK-9656: Add linting to account management 2019-03-19 13:57:30 -03:00
Hynek Mlnarik
1c906c834b KEYCLOAK-3373 Remove SAML IdP descriptor from client installation and publicize it in realm endpoint instead 2019-03-19 11:37:15 +01:00
rmartinc
231db059b2 KEYCLOAK-8996: Provide a way to set a responder certificate in OCSP/X509 Authenticator 2019-03-07 07:57:20 +01:00
keycloak-bot
e843d84f6e Set version to 6.0.0-SNAPSHOT 2019-03-06 15:54:08 +01:00
Stan Silvert
fe5966d224 KEYCLOAK-8602: PatternFly 4 integration 2019-02-25 08:26:54 -03:00
Stan Silvert
ccd6d248f4 KEYCLOAK-8603: Reimplement 'back to application' in react 2019-02-25 08:26:54 -03:00
stianst
e06c705ca8 Set version 5.0.0 2019-02-21 09:35:14 +01:00
Stan Silvert
9e16c772bd KEYCLOAK-9387: Add hor scroll & tooltips to role selectors 2019-02-19 21:03:52 +01:00
stianst
7c9f15778a Set version to 4.8.3.Final 2019-01-09 20:39:30 +01:00
stianst
7c4890152c Set version to 4.8.2 2019-01-03 14:43:22 +01:00
Andreas
83b2642c4e Update messages_no.properties 
Added translation consistent with the value in messages_en.properties, also removed HTML tags since they display as plain text.
 2019-01-02 13:53:35 +01:00
Axel Messinese
4150daa9cb KEYCLOAK-9056 Change wrong params passed to /groups endpoint in groups and user panel 2018-12-14 08:35:32 +01:00
Johannes Knutsen
044926225f Fix wrong 'for' attribute on input label 2018-12-13 16:00:48 +01:00
Stan Silvert
5011e07270 KEYCLOAK-8935: Wrong product name on Welcome Page 2018-12-13 09:02:56 +01:00
Ramunas Kraujutis
5b041c0362 switch to UTF-8 encoding for Lithuanian translations (for easier readability and easrier editing) 2018-12-11 14:20:40 +01:00
Stan Silvert
40071a95da KEYCLOAK-9038: Add password page and refactor 2018-12-10 15:08:35 -05:00
Pedro Igor
0c39eda8d2 [KECLOAK-8237] - Openshift Client Storage 2018-12-06 10:57:53 -02:00
stianst
b674c0d4d9 Prepare for 4.8.0.Final 2018-12-04 13:54:25 +01:00
Stan Silvert
3c8dddf33e KEYCLOAK-8758: Implement i18n/l10n 2018-11-26 16:39:06 -05:00
Stian Thorgersen
3756cf629b
KEYCLOAK-7081 Fixes for manual/qr mode switches on login config otp page (#5717) 2018-11-19 14:32:28 +01:00
Takashi Norimatsu
0793234c19 KEYCLOAK-8460 Request Object Signature Verification Other Than RS256 (#5603) 
* KEYCLOAK-8460 Request Object Signature Verification Other Than RS256

also support client signed signature verification by refactored token
verification mechanism

* KEYCLOAK-8460 Request Object Signature Verification Other Than RS256

incorporate feedbacks and refactor client public key loading mechanism

* KEYCLOAK-8460 Request Object Signature Verification Other Than RS256

unsigned request object not allowed

* KEYCLOAK-8460 Request Object Signature Verification Other Than RS256

revert to re-support "none"
 2018-11-19 14:28:32 +01:00
Stan Silvert
0b36020bf5 KEYCLOAK-8759: Wrong RH-SSO name on Welcome Page 2018-11-15 13:00:55 -05:00
Leon Graser
85f11873c3 KEYCLOAK-8613 Group Membership Pagination 2018-11-15 17:54:07 +01:00
Thomas Darimont
cf57a1bc4b KEYCLOAK-1267 Add dedicated SSO timeouts for Remember-Me 
Previously remember-me sessions where tied to the SSO max session
timeout which could lead to unexpected early session timeouts.
We now allow SSO timeouts to be configured separately for sessions
with enabled remember-me. This enables users to opt-in for longer
session timeouts.

SSO session timeouts for remember-me can now be configured in the
tokens tab in the realm admin console. This new configuration is
optional and will tipically host values larger than the regular
max SSO timeouts. If no value is specified for remember-me timeouts
then the regular max SSO timeouts will be used.

Work based on PR https://github.com/keycloak/keycloak/pull/3161 by
Thomas Darimont <thomas.darimont@gmail.com>
 2018-11-15 06:11:22 +01:00
stianst
ecd476fb10 Prepare for 4.7.0.Final 2018-11-14 20:10:59 +01:00
Stan Silvert
086dbae5ca KEYCLOAK-8604: Figure out how forms will be handled 2018-11-13 07:45:50 -05:00
Adil ARLI
28eb1007fb Add Turkish Language File (#5678) 
* Add Turkish Language File

* Resolve typo

* Resolve typo

* Capital letters corrections.
 2018-11-12 11:49:56 +01:00
Jacob van Lingen
e7b7307b4f Update messages_nl.properties (#5677) 
* Update messages_nl.properties

Updated it to latest keys.

* Update messages_nl.properties
 2018-11-08 16:29:18 +01:00
Stan Silvert
94f2ce2eae KEYCLOAK-8250: Save not disabled properly in token settings 2018-11-06 07:58:57 -05:00
rmartinc
cbe59f03b7 KEYCLOAK-8708: Provide aggregation of group attributes for mappers 2018-11-06 13:42:38 +01:00
Stan Silvert
d0f75c8766 KEYCLOAK-8541: Upgrade AngularJS to 1.6.10 2018-11-01 08:51:50 +01:00
mposolda
9652748ba9 KEYCLOAK-8484 Remove audience client scope template 2018-10-31 11:11:02 +01:00
Graser Leon
9ef4c7fffd KEYCLOAK-8377 Role Attributes 2018-10-24 22:04:28 +02:00
Stan Silvert
7e12b60158 KEYCLOAK-8140: User Fed table header doesn't span all rows 2018-10-24 11:07:43 -04:00
Stan Silvert
f55264499c KEYCLOAK-7700: Add realm broken when page width < 992px 2018-10-24 08:47:16 -04:00
Stan Silvert
ec335629b4 KEYCLOAK: 8601: Evaluate REST/HTTP packages for React 2018-10-23 08:51:38 -04:00
Pedro Igor
c536955b70 [KEYCLOAK-7826] - My resource pages does not support resources without scopes 2018-10-23 08:38:22 -03:00
wildloop
096d749411 Added missing key executeActionsBodyHtml 2018-10-17 19:04:00 +02:00
Stan Silvert
68ab08aa56 KEYCLOAK-8421: POC for account management extension 2018-10-17 09:29:42 -04:00
stianst
8cecbcffb8 KEYCLOAK-8556 Fix typo 2018-10-15 08:38:54 +02:00
stianst
11374a2707 KEYCLOAK-8556 Improvements to profile 2018-10-12 12:26:37 +02:00
Sebastian Häni
00f4b54730 themes: add german messages to admin theme 2018-10-08 21:54:30 +02:00
Stan Silvert
a8ab1fea58 KEYCLOAK-8420: Create Hello React 2018-10-08 15:43:35 -04:00
k-tamura
fe0db7fe44 Update Japanese properties for 4.0 2018-10-04 20:59:38 +02:00
wildloop
a82f0ab657 Translation to Polish language 2018-10-04 20:50:58 +02:00
mposolda
2a4cee6044 KEYCLOAK-6884 KEYCLOAK-3454 KEYCLOAK-8298 Default 'roles' and 'web-origins' client scopes. Add roles and allowed-origins to the token through protocol mappers 2018-10-04 12:00:38 +02:00
stianst
c3fc9e9815 Set version to 4.6.0.Final-SNAPSHOT 2018-09-26 20:58:41 +02:00
Pedro Igor
43f5983613 [KEYCLOAK-8289] - Remove authorization services from product preview profile 2018-09-26 18:27:27 +02:00
Christopher
25b390b2ae Fixing hyperlink content in german language 
The hyperlink for emailVerificationBodyHtml should contain a short message and not the link itself
 2018-09-20 15:48:15 +02:00
Jacob van Lingen
52b7fd8c45 Fix Dutch translation 
'Overnieuw' is considered a colloquialism in Dutch at best, others considered it as just wrong.
 2018-09-20 15:42:43 +02:00
Pedro Igor
39f0e4528a [KEYCLOAK-8270] - Cannot remove 'Not Before' or 'Not On or After' from a Time Policy 2018-09-19 09:47:22 -03:00
Stan Silvert
e85a396572 KEYCLOAK-8016: js sometimes loaded out of order 2018-09-17 08:55:33 -04:00
mposolda
99a16dcc1f KEYCLOAK-6638 Support for adding audiences to tokens 2018-09-13 21:40:16 +02:00