Bill Burke
|
5d9fe09599
|
Merge pull request #3070 from mstruk/KEYCLOAK-2571
KEYCLOAK-2571 RESET_PASSWORD_ERROR and UPDATE_PASSWORD_ERROR events not fired
|
2016-07-28 07:23:32 -04:00 |
|
Bill Burke
|
2219cd363e
|
Merge pull request #3079 from patriot1burke/master
KEYCLOAK-3268
|
2016-07-28 07:22:45 -04:00 |
|
Pedro Igor
|
7e1b97888a
|
[KEYCLOAK-3338] - Adding client roles to role policy and UX improvements
|
2016-07-27 15:15:14 -03:00 |
|
Bill Burke
|
46b4bb0909
|
KEYCLOAK-3268
|
2016-07-27 09:28:48 -04:00 |
|
Marko Strukelj
|
59e0570cdf
|
KEYCLOAK-2571 RESET_PASSWORD_ERROR and UPDATE_PASSWORD_ERROR events not fired
|
2016-07-26 21:32:57 +02:00 |
|
Bill Burke
|
3973aed57d
|
Merge pull request #2989 from thomasdarimont/issue/KEYCLOAK-3234-allow-restricting-mapper-for-userinfo
KEYCLOAK-3234 Allow restricting claim mapper for userinfo endpoint
|
2016-07-22 17:54:00 -04:00 |
|
mposolda
|
01830fd7f3
|
KEYCLOAK-3319 More OIDC tests. Minor refactoring
|
2016-07-22 18:16:58 +02:00 |
|
mposolda
|
9169bcd88d
|
KEYCLOAK-3354 request and request_uri not supported
|
2016-07-22 13:44:45 +02:00 |
|
mposolda
|
56e011dce4
|
KEYCLOAK-3318 Adapter support for prompt and max_age. Refactoring to not hardcode OIDC specifics to CookieAuthenticator
|
2016-07-21 18:19:53 +02:00 |
|
Pedro Igor
|
484d5d6e08
|
[KEYCLOAK-3313] - UI improvements and messages
|
2016-07-20 22:11:24 -03:00 |
|
mposolda
|
f4ddfe4a52
|
KEYCLOAK-3318 Support for prompt=login. More tests for prompt parameter
|
2016-07-20 21:27:38 +02:00 |
|
Bill Burke
|
6f92bac782
|
Merge pull request #3000 from tonswieb/master
KEYCLOAK-3265 Support writing a NameIDType AttributeValue
|
2016-07-20 11:23:18 -04:00 |
|
Stian Thorgersen
|
1b517a461e
|
Merge pull request #3041 from stianst/KEYCLOAK-3302
KEYCLOAK-3302 Allow logout with expired refresh token
|
2016-07-19 08:03:52 +02:00 |
|
Marek Posolda
|
a6bdf81e6d
|
Merge pull request #3040 from mposolda/master
KEYCLOAK-3220 Added test for missing response_type
|
2016-07-15 22:19:52 +02:00 |
|
Stian Thorgersen
|
e708c53730
|
KEYCLOAK-3302 Allow logout with expired refresh token
|
2016-07-15 12:56:31 +02:00 |
|
Stian Thorgersen
|
1ce17c459d
|
Merge pull request #3039 from stianst/KEYCLOAK-3192
KEYCLOAK-3192 Ignore disabled required action
|
2016-07-15 10:38:49 +02:00 |
|
mposolda
|
fda0a79e27
|
KEYCLOAK-3237 Add scopes_supported to OIDC WellKnown endpoint
|
2016-07-15 09:47:09 +02:00 |
|
Stian Thorgersen
|
970c89dd6a
|
KEYCLOAK-3192 Ignore disabled required action
|
2016-07-15 09:01:44 +02:00 |
|
mposolda
|
13a21e5fda
|
KEYCLOAK-3220 Improve error handling on adapters
|
2016-07-14 23:56:46 +02:00 |
|
mposolda
|
dcc4ea3aea
|
KEYCLOAK-3237 Change OIDC adapters to use scope=openid as required per specs
|
2016-07-14 23:56:46 +02:00 |
|
Pedro Igor
|
aacf2e9390
|
[KEYCLOAK-3137] - Review i18n for AuthZ Services
|
2016-07-14 13:54:37 -03:00 |
|
mposolda
|
ee3ac3fdaf
|
KEYCLOAK-3223 Basic support for acr claim
|
2016-07-14 12:36:12 +02:00 |
|
Stian Thorgersen
|
4f1d83b9dc
|
Merge pull request #3030 from stianst/KEYCLOAK-2824-2
KEYCLOAK-2824 Password Policy SPI
|
2016-07-14 10:12:25 +02:00 |
|
Stian Thorgersen
|
ea44b5888b
|
KEYCLOAK-2824 Password Policy SPI
|
2016-07-14 07:20:30 +02:00 |
|
mposolda
|
abde62f369
|
KEYCLOAK-3220 redirect to client with error if possible
|
2016-07-13 20:57:43 +02:00 |
|
mposolda
|
38f89b93ff
|
KEYCLOAK-3281 OIDC 'state' parameter is url-encoded twice when responseMode=form_post
|
2016-07-13 18:07:57 +02:00 |
|
mposolda
|
d5199501c7
|
KEYCLOAK-3219 Added claims info to OIDCWellKnownProvider. More tests
|
2016-07-13 10:17:45 +02:00 |
|
Stian Thorgersen
|
5b0980172d
|
KEYCLOAK-3267 Fix identity broker login with brute force enabled
|
2016-07-12 15:21:00 +02:00 |
|
Stian Thorgersen
|
f97d0846ed
|
Merge pull request #3010 from wadahiro/KEYCLOAK-3278
KEYCLOAK-3278 Add support for any encoding property file in theme
|
2016-07-12 10:34:34 +02:00 |
|
Stian Thorgersen
|
19e5ddeba5
|
Merge pull request #3015 from martin-kanis/master
KEYCLOAK-3096 Remove leading/trailing spaces from username/email
|
2016-07-12 10:03:55 +02:00 |
|
mposolda
|
039bb103c2
|
KEYCLOAK-3295 Kerberos authenticator changed during userFederationProvider update just if it was DISABLED
|
2016-07-11 15:52:49 +02:00 |
|
Martin Kanis
|
c67d834d39
|
KEYCLOAK-3096 Remove leading/trailing spaces from login
|
2016-07-09 18:35:51 +02:00 |
|
mposolda
|
629390dd4a
|
KEYCLOAK-2986 Require either expiration or issuedAt for client authentication with signed JWT
|
2016-07-08 16:16:38 +02:00 |
|
mposolda
|
3bfd999590
|
KEYCLOAK-3222 extend WellKnown to return supported types of client authentications. More tests
|
2016-07-08 15:39:13 +02:00 |
|
Pedro Igor
|
80a67149af
|
Merge pull request #3002 from pedroigor/KEYCLOAK-3249
[KEYCLOAK-3249] - AuthorizationContext.hasScopePermission() gives NPE
|
2016-07-08 09:16:51 -03:00 |
|
mposolda
|
c10a005997
|
KEYCLOAK-3290 UserInfoEndpoint error responses don't have correct statuses
|
2016-07-08 12:15:07 +02:00 |
|
mposolda
|
4dd28c0adf
|
KEYCLOAK-3221 Tokens should be invalidated if an attempt to reuse code is made
|
2016-07-08 11:04:08 +02:00 |
|
Bill Burke
|
bdc57d57c1
|
Merge pull request #3008 from patriot1burke/master
new User Fed SPI initial iteration
|
2016-07-07 14:56:38 -04:00 |
|
Hiroyuki Wada
|
930b0d9ad7
|
KEYCLOAK-3278 Add support for any encoding property file in theme
|
2016-07-08 02:58:48 +09:00 |
|
mposolda
|
a7c9e71490
|
KEYCLOAK-3218 Support for max_age OIDC authRequest parameter and support for auth_time in IDToken
|
2016-07-07 17:04:32 +02:00 |
|
Bill Burke
|
0040d3fc3b
|
Merge remote-tracking branch 'upstream/master'
|
2016-07-07 10:35:45 -04:00 |
|
Bill Burke
|
7e5a5f79cf
|
fixes for new user fed spi
|
2016-07-07 10:35:35 -04:00 |
|
Marek Posolda
|
7a161cc8bb
|
Merge pull request #3005 from mposolda/KEYCLOAK-3217
KEYCLOAK-3217 UserInfo endpoint wasn't accessible by POST request sec…
|
2016-07-07 13:49:43 +02:00 |
|
Marek Posolda
|
c5e8a010dc
|
Merge pull request #3004 from mposolda/KEYCLOAK-3147
KEYCLOAK-3147 Don't allow authRequest without redirect_uri parameter
|
2016-07-07 13:49:34 +02:00 |
|
mposolda
|
56e09bf189
|
KEYCLOAK-3147 Don't allow authRequest without redirect_uri parameter
|
2016-07-07 12:46:36 +02:00 |
|
mposolda
|
7aafbcd5d9
|
KEYCLOAK-3217 UserInfo endpoint wasn't accessible by POST request secured with Bearer header
|
2016-07-07 12:28:25 +02:00 |
|
Pedro Igor
|
5ef65e837c
|
[KEYCLOAK-3249] - AuthorizationContext.hasScopePermission() gives NPE
|
2016-07-06 09:39:56 -03:00 |
|
Stan Silvert
|
a231c1b31b
|
RHSSO-296: Required Action "Configure Totp" should be "Configure OTP"
|
2016-07-05 15:07:52 -04:00 |
|
Ton Swieb
|
fed7339558
|
KEYCLOAK-3265 Support writing a NameIDType AttributeValue
|
2016-07-05 14:54:38 +02:00 |
|
Stian Thorgersen
|
7cfee80e58
|
KEYCLOAK-3189 KEYCLOAK-3190 Add kid and typ to JWT header
|
2016-07-05 08:26:26 +02:00 |
|