keycloak-scim

Author	SHA1	Message	Date
Denis Bernard	5db64133b8	Add Attribute to Group Mapper for SAML IDP Cleansing code as PR Comment Add test for Advanced Attribute to Group Mapper Closes #12950	2023-02-06 10:58:48 -03:00
Pedro Igor	1a1ee78dbd	Removing tests from base group broker mapper test classes	2023-02-06 10:58:48 -03:00
Pedro Igor	d97b9c48c4	Make sure PBKDF2 providers are using the expect size for derived keys (#16798 ) Closes #16797	2023-02-03 15:31:25 +01:00
rmartinc	f8f112d8d2	Upgrade twitter4j (#16828 ) Closes https://github.com/keycloak/keycloak/issues/16731	2023-02-03 15:28:37 +01:00
Marek Posolda	51bed81814	Fixes for OOB endpoint and KeycloakSanitizer (#16773 ) (cherry picked from commit 91ac2fb9dd50808ff5c76d639594ba14a8d0d016)	2023-02-02 08:34:50 +01:00
Pedro Igor	e3c41ec3a0	Ignoring test methods from parent classes Closes #15687	2023-02-01 14:58:03 -08:00
Stian Thorgersen	d9025231f9	HTML Injection in Keycloak Admin REST API (#16765 ) Resolves #GHSA-m4fv-gm5m-4725 Co-authored-by: Martin Bartoš <mabartos@redhat.com>	2023-02-01 14:34:15 +01:00
Marek Posolda	33ff9ef17e	Fix remaining failing tests with BCFIPS approved mode (#16699 ) * Fix remaining failing tests with BCFIPS approved mode Closes #16698	2023-01-30 16:01:57 +01:00
mposolda	7f017f540e	BCFIPS approved mode: Some tests failing due the short secret for client-secret-jwt client authentication Closes #16678	2023-01-30 08:40:46 +01:00
Martin Kanis	c4255e7301	Wrong property for events in map-storage-hot-rod on Undertow	2023-01-27 14:24:34 +01:00
mposolda	5591b5198b	Still test failures with BCFIPS approved mode due the hardcoded keys Closes #16643	2023-01-26 15:50:29 +01:00
Pedro Igor	f6602e611b	Allow managing the username idn homograph validator Closes #13346	2023-01-26 04:55:43 -08:00
mposolda	a804400c84	Added KERBEROS feature. Disable it when running tests on FIPS closes #14966	2023-01-25 18:38:46 +01:00
mposolda	16888eaeab	Only available RSA key sizes should be shown in admin console Closes #16437	2023-01-25 13:15:07 +01:00
mposolda	29888dbf1a	Update realm keys in the testsuite to be generated where possible. Update other keys to be FIPS compliant Closes #12420	2023-01-25 08:26:15 +01:00
Hynek Mlnarik	977cc473bb	Fix linebreaks in XML / SAML signatures See https://bugs.openjdk.org/browse/JDK-8264194 See https://issues.apache.org/jira/browse/SANTUARIO-482 Fixes: #14529	2023-01-23 15:39:10 +01:00
Konstantinos Georgilakis	c73859794e	Short verification_uri for Device Authorization Request Closes #16107	2023-01-18 08:34:52 +01:00
Pedro Igor	33cb1ad7cd	Support runnning tests using an embedded distribution Closes #16420	2023-01-13 12:03:36 -08:00
mposolda	79fa6bb3c9	Initial support for running testsuite in BCFIPS approved mode Closes #16429	2023-01-13 02:59:06 -08:00
ムハマドザクワンビンムハマドザヒド / MOHDZAHID，BIN MUHAMMADZAKWAN	cc6597967a	Refactoring ClientPoliciesTest Closes #14795	2023-01-12 09:38:12 +01:00
Pedro Igor	9945135861	Verify if token is revoked when validating bearer tokens (#16394 ) Closes #16388	2023-01-11 14:42:29 +01:00
mposolda	ac490a666c	Fix KcSamlSignedBrokerTest in FIPS. Support for choosing realm encryption key for decrypt SAML assertions instead of realm signature key Closes #16324	2023-01-10 20:39:59 +01:00
Miquel Simon	7bd78f604a	Added MariaDB to Legacy Store IT. (#16157 )	2023-01-10 17:37:27 +01:00
Pedro Igor	d797d07d8f	Ignore user profile attributes for service accounts Closes #13236	2023-01-10 16:26:53 +01:00
mposolda	4d55c6a647	Adding SAML tests for FIPS - with addition of XMLDSig security provider Closes #14969	2023-01-10 08:37:03 +01:00
Pedro Igor	53ee95764e	Do not show username field when updating profile if UPDATE_EMAIL feature is enabled and email as username is enabled Closes #16263	2023-01-06 14:12:47 +01:00
Réda Housni Alaoui	141c9dd803	update-email: email change does not affect the username when "Email as username" option is checked (#15583 ) Closes #13988	2023-01-06 14:04:48 +01:00
Miquel Simon	c2682157fb	Added MS SQL Server to Legacy Store IT. (#16121 ) * Added MS SQL Server to Legacy Store IT. * Update testsuite/integration-arquillian/pom.xml Co-authored-by: Stian Thorgersen <stianst@gmail.com> Co-authored-by: Stian Thorgersen <stian@redhat.com>	2023-01-06 08:55:09 +01:00
Réda Housni Alaoui	dbe0c27bcf	Allowing client registration access token rotation deactivation	2023-01-05 20:53:57 +01:00
mposolda	e374e309c6	Deprecate SHA1 based algorithms for sign SAML documents and assertions Closes #16240	2023-01-05 20:45:20 +01:00
Michal Hajas	6566b58be1	Introduce Infinispan GlobalLock implementation Closes #14721	2023-01-05 16:58:44 +01:00
Hynek Mlnarik	071fc03f41	Move transaction processing into session close Fixes: #15223	2023-01-05 16:12:32 +01:00
Stian Thorgersen	6c1f981eec	Fix UserTest.sendResetPasswordEmailWithCustomLifespan (#16233 ) Closes #16232	2023-01-04 13:03:33 +01:00
Stian Thorgersen	7dc16c69cb	Force refreshing token for admin client if time offset is set (#16242 ) Closes #16143	2023-01-04 13:03:10 +01:00
ムハマドザクワンビンムハマドザヒド / MOHDZAHID，BIN MUHAMMADZAKWAN	ce6b737e33	NPE in userinfo endpoint Closes #15429	2023-01-02 13:53:29 +01:00
Miquel Simon	9bb5b08015	Added Oracle to Legacy Store IT. (#16097 )	2022-12-21 08:15:38 +01:00
mposolda	36bd76957d	Make Keycloak FIPS working with OpenJDK 17 on FIPS enabled RHEL Closes #15721	2022-12-20 21:03:55 +01:00
Michal Hajas	c79d29e68c	Move HotRod profile to the same pom as other map profiles and introduce map-storage-chm profile Closes #16046	2022-12-20 17:51:40 +01:00
Alexander Schwartz	1d758fac2b	Adding CRDB into GHA for the new store (#16021 ) The CockroachDB database is slower than PostgreSQL, therefore it will only run branches and nightly builds. Closes #16020	2022-12-17 08:50:21 +01:00
Pedro Igor	857b02be63	Allow managing the required settigs for the email attribute Closes #15026	2022-12-15 13:11:06 -08:00
Pedro Igor	782d145cef	Allow updating authz settings via default client registration provider Closes #9008	2022-12-15 20:43:43 +01:00
Stian Thorgersen	c1b0f2a6ab	Rebalanace BaseIT test groups (#16007 )	2022-12-15 08:52:30 +01:00
Stian Thorgersen	a5670af745	Keycloak CI workflow refactoring (#15968 ) * Keycloak CI workflow refactoring Closes #15861 * Update testsuite/integration-arquillian/tests/base/testsuites/base-suite.sh Co-authored-by: Hynek Mlnařík <hmlnarik@users.noreply.github.com> * Update testsuite/integration-arquillian/tests/base/testsuites/suite.sh Co-authored-by: Hynek Mlnařík <hmlnarik@users.noreply.github.com> * Update testsuite/integration-arquillian/tests/base/testsuites/suite.sh Co-authored-by: Hynek Mlnařík <hmlnarik@users.noreply.github.com> * Update CodeQL actions Co-authored-by: Hynek Mlnařík <hmlnarik@users.noreply.github.com>	2022-12-14 16:12:23 +01:00
Stian Thorgersen	0f2ca3bfdd	fixes from release/20 (#15982 ) * Avoid path traversal vis double-url encoding of redirect URI (#8) (cherry picked from commit a2128fb9e940d96c2f9a64edcd4fbcc768eedb4f) * Do not resolve user session if corresponding auth session does not exist (#7) * Stabilizing the ConcurrentLoginTest when running with JPA map storage by locking user sessions (#9) Co-authored-by: Marek Posolda <mposolda@gmail.com> Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>	2022-12-14 07:46:17 +01:00
Stian Thorgersen	30cc16e648	Move authorization tests into authz package (#15957 ) Closes #15956	2022-12-12 18:09:11 +01:00
Michal Hajas	de7dd77aeb	Change id of TermsAndConditions required actions to uppercase Closes #9991	2022-12-07 10:51:37 -03:00
mposolda	f4e91a5312	The redirect URI cannot be verified during logout in the case when client was removed closes #15866	2022-12-07 08:20:30 +01:00
mposolda	264c5a6cdb	Support for KcReg and KcAdm CLI to use BCFIPS instead of BC on FIPS platforms Closes #14968	2022-12-06 13:02:46 +01:00
Pedro Igor	022d2864a6	Make sure JAX-RS resource methods are advertizing the media type they support Closes #15811 Closes #15810	2022-12-06 08:13:43 -03:00
Stian Thorgersen	2f0d8cd895	Move hok, par, and rar tests to oauth package (#15834 ) Closes #15833	2022-12-05 15:42:20 +01:00

1 2 3 4 5 ...

3427 commits