sebastien blanc
621d234adc
renaming fields to align with json names
2016-10-27 16:16:30 +02:00
Stian Thorgersen
7f04dd20b3
KEYCLOAK-1862
2016-10-19 17:28:22 +02:00
Stian Thorgersen
d2cae0f8c3
KEYCLOAK-905
...
Realm key rotation for OIDC
2016-10-13 11:19:52 +02:00
Bill Burke
d4c3fae546
merge conflicts
2016-09-30 19:19:12 -04:00
mposolda
f9a0abcfc4
KEYCLOAK-3493 KEYCLOAK-3532 Added KeyStorageProvider. Support key rotation for OIDC clients and identity providers with JWKS url.
2016-09-30 21:28:23 +02:00
Bill Burke
8967ca4066
refactor mongo entities, optimize imports
2016-09-28 15:25:39 -04:00
mposolda
bf6246f5c1
KEYCLOAK-905 Realm keys rotation support on adapters
2016-09-12 21:24:04 +02:00
Pedro Igor
ce78cc1d1c
[KEYCLOAK-3472] - Multiple paths with the same name and tests
2016-08-31 21:04:36 -03:00
mposolda
a8fb988e31
KEYCLOAK-3406 OIDC dynamic client registrations specs fixes
2016-08-11 15:54:51 +02:00
Pedro Igor
ae1a7542d8
[KEYCLOAK-3385] - Improvements to evaluation tool UI and result
2016-08-01 18:01:24 -03:00
Pedro Igor
3c8ed8e3d8
[KEYCLOAK-3372] - Code cleanup
2016-07-29 05:18:38 -03:00
mposolda
56e011dce4
KEYCLOAK-3318 Adapter support for prompt and max_age. Refactoring to not hardcode OIDC specifics to CookieAuthenticator
2016-07-21 18:19:53 +02:00
mposolda
7571dc07f9
KEYCLOAK-1733 added verifySSL checks for 'basic' and 'query' authentication
2016-07-20 11:04:31 +02:00
Marek Posolda
e03bf6eef6
Merge pull request #2990 from trex667/feat/keycloak-1733
...
[KEYCLOAK-1733]: introduce token as query paramter
2016-07-20 10:46:11 +02:00
mposolda
dcc4ea3aea
KEYCLOAK-3237 Change OIDC adapters to use scope=openid as required per specs
2016-07-14 23:56:46 +02:00
mposolda
629390dd4a
KEYCLOAK-2986 Require either expiration or issuedAt for client authentication with signed JWT
2016-07-08 16:16:38 +02:00
awpwb
159b371973
[KEYCLOAK-1733]: introduce token as query paramter
...
add functional tests for access token as query paramter
2016-07-06 14:12:23 +02:00
Pedro Igor
afa9471c7c
[KEYCLOAK-3128] - Admin Client Authorization Endpoints
2016-06-30 10:26:05 -03:00
Pedro Igor
f48288865b
[KEYCLOAK-3156] - Missing CORS when responding with denies
2016-06-22 14:39:07 -03:00
Stian Thorgersen
3c0f7e2ee2
Merge pull request #2617 from pedroigor/KEYCLOAK-2753
...
[KEYCLOAK-2753] - Fine-grained Authorization Services
2016-06-17 13:40:15 +02:00
Pedro Igor
086c29112a
[KEYCLOAK-2753] - Fine-grained Authorization Services
2016-06-17 02:07:34 -03:00
Michaël van de Giessen
55910f5f70
KEYCLOAK-3050 - fix npe on deployment
2016-06-13 20:15:41 +02:00
mposolda
72736e5e47
KEYCLOAK-2028 Add test for token-minimum-time-to-live adapter option
2016-06-09 19:22:15 +02:00
Ben Loy
ec180db39f
KEYCLOAK-2028: Add preemptive access token refresh support
...
Add a new keycloak.json property and mechanism to automatically
refresh access tokens if they are going to expire in less than a configurable
amount of time.
2016-06-09 19:22:15 +02:00
Thomas Raehalme
babe94c50d
KEYCLOAK-3016: BasicAuthRequestAuthenticator now consumes HttpEntity also on errors.
2016-05-19 08:47:51 +03:00
Vaclav Muzikar
e6f0da99e6
KEYCLOAK-2995 Revert changes from KEYCLOAK-2989 in JWTClientCredentialsProvider
2016-05-12 10:45:45 +02:00
Vaclav Muzikar
9ad584b34d
KEYCLOAK-2989 Extend ClientAuthSignedJWTTest
2016-05-10 13:30:55 +02:00
mposolda
6baa2228e7
KEYCLOAK-2852 Moved JAAS classes back to package org.keycloak.adapters.jaas
2016-04-19 22:19:10 +02:00
Bill Burke
cca91dd175
public/private
2016-04-12 15:19:46 -04:00
Thomas Darimont
bccc5fa7b1
KEYCLOAK-2054 - Allow to configure proxy for auth-server requests in adapters.
...
Previously the adapter configuration did not support specifying a proxy
for auth-server requests issued via the Apache HTTP Client by Keycloak.
This made it very difficult to connect an Application with Keycloak
that was required to use a proxy.
Introduced new `proxy-url` attribute to the adapter configuration
which makes it possible to configure a proxy to be used for auth-server
requests. Proxy-Host, Proxy-Port and Proxy-Scheme are taken from the
configured proxy URL.
Note that proxies that require authentication are currently not supported.
2016-04-07 11:09:40 +02:00
mposolda
784b724fe0
Removed docker-cluster as integration-arquillian has support for clustering tests now
2016-04-05 11:45:34 +02:00
mposolda
65dc7ddb44
KEYCLOAK-2623 Remove auth-server-url-for-backend-requests from adapters
2016-04-05 11:43:41 +02:00
Stian Thorgersen
bf38ec040f
KEYCLOAK-2592 Set http-only on OAuth_Token_Request_State cookie
2016-03-04 13:43:00 +01:00
Stian Thorgersen
528e3127e6
KEYCLOAK-2434
...
BasicAuthRequestAuthenticator ignores HttpClientBuilder configuration
2016-02-09 08:41:35 +01:00
mhajas
8a8552822a
KEYCLOAK-2428 Log also other accesses
2016-02-05 11:56:05 +01:00
Marko Strukelj
683487aafe
KEYCLOAK-2439 Client adapter fails to set SNI field during TLS handshake
2016-02-03 14:47:19 +01:00
Stian Thorgersen
c7a8742a36
KEYCLOAK-1524
...
Source code headers
2016-02-03 11:20:22 +01:00
Stian Thorgersen
06caa8e67e
KEYCLOAK-2391
...
View history of access to Resource Server
2016-01-26 08:50:28 +01:00
Bill Burke
fedf3d0e52
KEYCLOAK-2377
2016-01-22 17:00:51 -05:00
Bill Burke
d9487a8745
social broker reorg
2016-01-20 16:46:38 -05:00