Martin Kanis
0e2e867e4a
KEYCLOAK-5023 database migration fails if mysql schema name has hyphen
2018-06-27 10:11:09 +02:00
Takashi Norimatsu
2fb022e501
KEYCLOAK-7688 Offline Session Max for Offline Token
2018-06-26 08:25:06 +02:00
Martin Kanis
998227ac53
KEYCLOAK-5461 Upgrade to Liquibase 3.5.5
2018-06-22 13:20:10 +02:00
Marek Posolda
49407c2e4f
KEYCLOAK-6630 Client scopes initial support ( #5076 )
...
* KEYCLOAK-6630 KEYCLOAK-349 Client Scopes
Co-authored-by: vramik <vramik@redhat.com>
* KEYCLOAK-6630 Change some clientTemplate occurences to clientScope
2018-06-08 15:38:38 +02:00
Federico M. Facca
5a9bfea419
[KEYCLOAK-7353] Support Policy Management in Protection API
...
See https://issues.jboss.org/browse/KEYCLOAK-7353
2018-06-06 19:36:42 -03:00
Pedro Igor
2b6597e9f1
[KEYCLOAK-7367] - User-Managed Policy Provider
2018-05-25 16:18:15 -03:00
Pedro Igor
5cae1bb134
Merge pull request #5093 from pedroigor/KEYCLOAK-4102
...
[KEYCLOAK-4102] - Support lazy load paths
2018-03-29 09:16:34 -03:00
pedroigor
4a425c2674
[KEYCLOAK-4102] - Support lazy loading of paths via policy enforcer config
2018-03-28 09:23:59 -03:00
dongay
707b80f436
KEYCLOAK-3210 Apply @Nationalized attribute to entity fields that should support unicode character sets
2018-03-27 20:55:59 +02:00
pedroigor
758ae41999
[KEYCLOAK-6529] - Constraint name too long
2018-03-22 07:05:03 -03:00
pedroigor
08896ee9c9
[KEYCLOAK-6529] - Resource Attributes
2018-03-19 13:21:39 -03:00
Pedro Igor
2aa71d1737
Merge pull request #5051 from pedroigor/KEYCLOAK-6787
...
[KEYCLOAK-6787] - Wrong validation of resources with same name and different owners
2018-03-12 11:41:49 -03:00
Bill Burke
4b6b45cf43
KEYCLOAK-6026
2018-03-05 11:57:05 -05:00
vramik
9bd2e70376
KEYCLOAK-6790 Identifier for RESOURCE_SERVER_PERMISSION_TICKET table is too long for Oracle databases
2018-03-02 12:46:19 +01:00
Bill Burke
7f21cdd1f4
KEYCLOAK-6551
2018-03-02 10:41:05 +01:00
pedroigor
1e1de85685
[KEYCLOAK-6787] - Wrong validation of resources with same name and different owners
2018-03-01 16:50:05 -03:00
pedroigor
cb531056a6
[KEYCLOAK-6621] - Fixing cache and queries of policies with type scope
2018-02-28 16:33:45 -03:00
Pedro Igor
91bdc4bde2
[KEYCLOAK-3169] - UMA 2.0 ( #4368 )
...
* [KEYCLOAK-3169] - UMA 2.0 Support
* [KEYCLOAK-3169] - Changes to account service and more tests
* [KEYCLOAK-3169] - Code cleanup and tests
* [KEYCLOAK-3169] - Changes to account service and tests
* [KEYCLOAK-3169] - Changes to account service and tests
* [KEYCLOAK-3169] - More tests
* [KEYCLOAK-3169] - Changes to adapter configuration
* [KEYCLOAK-3169] - Reviewing UMA specs and more tests
* [KEYCLOAK-3169] - Reviewing UMA specs and more tests
* [KEYCLOAK-3169] - Changes to UMA Grant Type and refactoring
* [KEYCLOAK-3169] - Refresh tokens for RPT responses and tests
* [KEYCLOAK-3169] - Changes to account my resources and policy enforcers
* [KEYCLOAK-3169] - Realm settings flag to enable/disable user-managed access in account mgmt console
* [KEYCLOAK-3169] - More changes to my resource pages in account mgmt console
* [KEYCLOAK-3169] - Need to enable user-managed on realm to run tests
* [KEYCLOAK-3169] - Removing more UMA 1.0 related code
* [KEYCLOAK-3169] - Only submit requests if ticket exists
* [KEYCLOAK-3169] - Returning UMA 401 response when not authenticated
* [KEYCLOAK-3169] - Removing unused code
* [KEYCLOAK-3169] - Removing unused code
* [KEYCLOAK-3169] - 403 response in case ticket is not created
* [KEYCLOAK-3169] - Fixing AbstractPhotozExampleAdapterTest#testClientRoleRepresentingUserConsent
* [KEYCLOAK-3169] - 403 status code only returned for non-bearer clients
2018-02-28 08:53:10 +01:00
gonzalad
898347366d
KEYCLOAK-6589: Optimize jpql in User search API
...
This commit removes the 6 n+1 select
that are issued when calling GET /users api.
We now have 4 select queries.
2018-02-22 14:21:42 +01:00
pedroigor
d590600c12
[KEYCLOAK-6321] - NPE when deleting a resource with admin events enabled
2018-02-21 19:41:44 +01:00
Bruno Oliveira
b91998a0d8
[KEYCLOAK-6111] 'Override User-Initiated Action Lifespan' admin GUI can break realm configuration
2018-02-09 06:36:23 -02:00
pedroigor
76657d5239
[KEYCLOAK-6528] - Fixing mysql error. Probably a consequence of KEYCLOAK-6228 changes.
2018-02-08 21:17:33 +01:00
Bill Burke
a0d275c850
whoops, fix db script
2018-01-31 14:28:40 -05:00
Bill Burke
26411a123e
migrate fix
2018-01-31 13:11:46 -05:00
Bill Burke
bd3eb9d662
more hynek db changes
2018-01-30 19:46:42 -05:00
Bill Burke
a571781240
hynek db changes
2018-01-30 17:00:55 -05:00
Bill Burke
dd4c0d448c
Merge remote-tracking branch 'upstream/master' into client-storage-spi
2018-01-27 09:47:41 -05:00
Bill Burke
6b84b9b4b6
done 1st iteration
2018-01-27 09:47:16 -05:00
vramik
b0fbe5c8ba
KEYCLOAK-6300 List of group members is not sorted alphabetically
2018-01-25 20:21:03 +01:00
Bill Burke
4bfb62d7f4
marek suggested fixes
2018-01-24 09:32:38 -05:00
Bill Burke
a9297df89c
KEYCLOAK-6335
2018-01-23 12:09:49 -05:00
Douglas Palmer
fc3c07f6de
[KEYCLOAK-6236] Use MessageDigest.isEquals in place of String.equals
2018-01-18 13:04:54 +01:00
Hynek Mlnarik
e4c875eb41
KEYCLOAK-6108 Remove DROP INDEX in postgres (handled automatically)
2018-01-04 09:03:52 +01:00
Hynek Mlnarik
f0c1e65b2d
KEYCLOAK-6095 Include schema in custom SQL
2018-01-04 09:03:52 +01:00
Martin Kanis
351dbffaf2
KEYCLOAK-5172 Set oidc as default protocol to clients
2017-12-20 13:38:12 +01:00
mposolda
6696c0f0b2
KEYCLOAK-5245 Restart failures when deleting a client with existing sessions/offline_tokens
2017-12-13 15:53:10 +01:00
Bill Burke
efa5949f69
Merge pull request #4814 from patriot1burke/master
...
KEYCLOAK-5350
2017-12-07 10:07:35 -05:00
stianst
c055ffb083
KEYCLOAK-4215 Consider session expiration when setting token timeouts
2017-12-07 10:45:02 +01:00
stianst
5fd3c9161d
KEYCLOAK-5868
2017-12-07 10:42:21 +01:00
Bill Burke
64f8d7ce25
KEYCLOAK-5350
2017-12-06 16:00:23 -05:00
stianst
6d1c33ccdc
KEYCLOAK-5667
2017-12-06 06:45:23 +01:00
pedroigor
17748d5ba8
[KEYCLOAK-5660] - Adding UserQueryProvider.getUsersCount(realm, includeServiceAccount) method
2017-11-30 10:45:54 +01:00
pedroigor
674fb31a2c
[KEYCLOAK-5660] - Rest API User count returns wrong value
2017-11-30 10:45:54 +01:00
stianst
2be78a0239
KEYCLOAK-5924 Add error handler for uncaught errors
2017-11-30 10:33:13 +01:00
pedroigor
9ffc11d04f
[KEYCLOAK-4231] - Unable to import PEM certificate > 2048
2017-11-29 20:26:22 +01:00
Bill Burke
8993ca08ad
KEYCLOAK-4715
2017-11-21 17:46:48 -05:00
Hynek Mlnarik
a787cfa33a
KEYCLOAK-5425 Have preconditions evaluated in manual mode
2017-11-15 13:37:32 +01:00
Bruno Oliveira
03d0488335
[KEYCLOAK-2052] Allows independently set timeouts for e-mail verification link and rest e.g. forgot password link
...
Co-authored-by: Hynek Mlnarik <hmlnarik@redhat.com>
2017-11-13 19:57:04 -02:00
Hynek Mlnarik
c9aa5e638e
KEYCLOAK-5230 Add indices to FED_* tables
2017-10-27 12:43:22 +02:00
vramik
223713bc53
KEYCLOAK-4928 Add primary key constraints
2017-10-24 10:46:46 +02:00
Bruno Oliveira da Silva
b6ab2852c2
Remove unused imports ( #4558 )
2017-10-16 14:23:42 +02:00
Gabriel Lavoie
134daeac7f
KEYCLOAK-3303: Allow reuse of refresh tokens.
...
- Configurable max reuse count.
2017-09-28 15:30:40 -04:00
Bill Burke
fd025ae76b
Merge pull request #4209 from guitaro/feature/group-search-and-pagination
...
[KEYCLOAK-2538] - groups pagination and group search
2017-09-23 20:52:19 -04:00
howcroft
e78bf5f876
Keycloak 2035
...
This PR adds:
* an endpoint to Role that lists users with the Role
* a tab "Users in Role" in Admin console Role page
* it is applicable to Realm and Client Roles
* Extends UserQueryProvider with default methods (throwing Runtime Exception if not overriden)
* Testing in base testsuite and Console
2017-09-22 15:05:49 +01:00
Oguz Kilcan
6ec5264f20
KEYCLOAK-5416 Migration from 3.2.1 to 3.3.0 doesn't work on MSSQL due to constraint violation ( #4461 )
2017-09-15 09:56:22 +02:00
Levente NAGY
d18aa44fb4
Merge branch 'feature/group-search-and-pagination' of https://github.com/guitaro/keycloak into feature/group-search-and-pagination
2017-09-13 16:48:24 +02:00
Levente NAGY
e907da77d7
KEYCLOAK 2538 - UI group pagination - Remove junit mocked TUs, add arquillian Tests, delete mockito from poms, fix groups sorting when get result from cache
2017-09-13 16:45:45 +02:00
Léventé NAGY
503ce3a47f
Merge branch 'master' into feature/group-search-and-pagination
2017-09-13 10:27:38 +02:00
Pedro Igor
90db6654d3
Merge pull request #4451 from glavoie/KEYCLOAK-4858-ResourceServer
...
KEYCLOAK-4858: Slow query performance for client with large data volume
2017-09-12 15:54:16 -03:00
Levente NAGY
c8c88dd58c
KEYCLOAK 2538 - UI group pagination - TU + some code improvement + add mockito dependency
2017-09-12 15:09:08 +02:00
Levente NAGY
db56d82dbd
KEYCLOAK 2538 - UI group pagination - fix duplicate result for search + sort result
2017-09-12 11:45:37 +02:00
Marek Posolda
2a1f40d487
Merge pull request #4408 from MarkSchmitt/master
...
KEYCLOAK-5322: Rewrote delete statement to scale better
2017-09-12 11:14:08 +02:00
Gabriel Lavoie
bf184e8599
KEYCLOAK-4858: ResourceServer PK change to CLIENT_ID.
...
- MSSQL needs the index to be dropped before the column.
- Different UPDATE statement format to support MSSQL.
2017-09-11 13:50:58 -04:00
Levente NAGY
2c24b39268
KEYCLOAK 2538 - UI group pagination
2017-09-07 19:39:06 +02:00
fmugrau
998262177f
KEYCLOAK-5422: Rewrote statement to scale better
2017-09-07 10:17:22 +02:00
Pedro Igor
f10891b662
[KEYCLOAK-4858] - Migration configuration for resource server pk changes
2017-09-06 11:28:58 -03:00
Gabriel Lavoie
c1664478d9
KEYCLOAK-4858: Slow query performance for client with large data volume
...
- Changing RESOURCE_SERVER PK to the client ID.
- Changing FK on children of RESOURCE_SERVER.
- Use direct fetch of ResourceServer through ID/PK to avoid a lot of implicit Hibernate flush.
2017-09-06 09:55:53 -03:00
vramik
37479a9afe
KEYCLOAK-5405 add synchronization of the persistence context when creating a group
2017-09-05 14:34:43 +02:00
vramik
d62164f6f0
KEYCLOAK-5385 add not null constraint for user_entity.not_before ( #4446 )
2017-09-01 08:57:50 +02:00
vramik
8bfab22417
KEYCLOAK-5049 add explicit removal of groups ( #4416 )
2017-08-30 08:16:00 +02:00
Hynek Mlnařík
23560d9e41
KEYCLOAK-5235 Fix JPA update script for MariaDB ( #4423 )
2017-08-28 08:05:49 +02:00
mposolda
fe5891fbdb
KEYCLOAK-5293 Add notBefore to user
2017-08-23 08:58:26 +02:00
mark.schmitt
6a28971218
KEYCLOAK-5322: Rewrote delete statement to scale better
2017-08-22 13:15:09 +00:00
Levente NAGY
c8aa708cff
Merge remote-tracking branch 'upstream/master'
2017-08-10 18:14:49 +02:00
Pedro Igor
6865b4bbb1
[KEYCLOAK-4808] - Import large authz settings a bit faster
2017-07-06 18:22:13 -03:00
Pedro Igor
65251748c7
[KEYCLOAK-5148] - Create authorization settings when creating a new client using a config file
2017-07-05 18:19:00 -03:00
Josh Cain
89fcddd605
KEYCLOAK-3592 Docker auth implementation
2017-06-29 06:37:34 +02:00
Léventé NAGY
1a50e77a4d
Merge branch 'master' into feature/group-search-and-pagination
2017-06-26 20:36:36 +02:00
Bill Burke
3ee86fedc7
Merge remote-tracking branch 'upstream/master'
2017-06-23 09:57:35 -04:00
Léventé NAGY
41d8d17062
Merge branch 'master' into feature/group-search-and-pagination
2017-06-22 17:41:30 +02:00
Levente NAGY
124bf43a27
[KEYCLOAK-2538] - groups count for pagination
2017-06-22 17:32:38 +02:00
Bill Burke
d08ddade2e
merge
2017-06-21 17:43:54 -04:00
Bill Burke
52e40922bc
removal
2017-06-21 17:42:57 -04:00
mposolda
fc61a4e89f
KEYCLOAK-4631 Move ClientInitialAccessModel from userSession model to realm model
2017-06-21 22:14:20 +02:00
mposolda
e91dd011c5
KEYCLOAK-4438 Disable kerberos flow when provider removed
2017-06-21 09:38:20 +02:00
Levente NAGY
f377a45c4e
[KEYCLOAK-2538] - groups count for pagination limits
2017-06-07 20:52:22 +02:00
Levente NAGY
c4da7637d6
[KEYCLOAK-2538] - groups pagination and group search
2017-06-06 18:32:48 +02:00
Bill Burke
b9f7a43a72
group permissions
2017-06-01 20:16:35 -04:00
Gabriel Lavoie
e59aeb56cc
KEYCLOAK-3990: Very slow use of NamedQueries.
...
- Generates too many auto-flush checks by Hibernate.
- Moved to collections mapping to allow batching and the use of Hibernate L2 cache.
2017-05-23 08:09:39 -04:00
Stian Thorgersen
e3a04ebd90
Merge pull request #3557 from glavoie/KEYCLOAK-3988
...
KEYCLOAK-3988: Multiple missing indexes on FKs.
2017-05-23 14:07:51 +02:00
Bill Burke
ab763e7c5b
fixes after merge
2017-05-19 15:54:36 -04:00
Bill Burke
2cac8b1bb7
KEYCLOAK-4929
2017-05-18 16:53:31 -04:00
Bill Burke
c291748f43
KEYCLOAK-4929
2017-05-18 16:48:04 -04:00
mposolda
c178a2392d
KEYCLOAK-4907 Fix postgresql and mssql. Fix migration
2017-05-17 22:44:44 +02:00
Gabriel Lavoie
4581272dcd
KEYCLOAK-3988: Multiple missing indexes on FKs.
2017-05-15 08:15:58 -04:00
Hynek Mlnarik
b8262a9f02
KEYCLOAK-4628 Single-use cache + its functionality incorporated into reset password token. Utilize single-use cache for relevant actions in execute-actions token
2017-05-11 22:16:26 +02:00
mposolda
168153c6e7
KEYCLOAK-4626 Authentication sessions - SAML, offline tokens, broker logout and other fixes
2017-05-11 22:16:26 +02:00
mposolda
a9ec69e424
KEYCLOAK-4626: AuthenticationSessions - working login, registration, resetPassword flows
2017-05-11 22:16:26 +02:00
mposolda
83b29c5080
KEYCLOAK-4626 AuthenticationSessions: start
2017-05-11 22:16:26 +02:00
Pedro Igor
e14be4460b
[KEYCLOAK-4867] - Cluster events and invalidations
2017-05-05 22:48:51 -03:00
Stian Thorgersen
8da766e02e
Merge pull request #4104 from sjvs/master
...
Fix three lgtm.com alerts: two possible NPEs, one possible int overflow
2017-05-05 13:13:02 +02:00
Bas van Schaik
eb93eef874
Fix lgtm.com alert: variable 'config' is always null (likely false logic)
...
Details:
https://lgtm.com/projects/g/keycloak/keycloak/snapshot/dist-7900299-1490802114895/files/model/jpa/src/main/java/org/keycloak/models/jpa/JpaUserCredentialStore.java#V122
2017-04-28 14:50:30 +01:00
Eriksson Fabian
ca1152c3e5
KEYCLOAK-4204 Extend brute force protection with permanent lockout on failed attempts
...
- Can still use temporary brute force protection.
- After X-1 failed login attempt, if the user successfully logs in his/her fail login count is reset.
2017-04-28 09:02:10 +02:00
mposolda
8000baeb1f
KEYCLOAK-4789 Can't remove userStorage when linked users have consent
2017-04-25 11:32:26 +02:00
Stian Thorgersen
54ee055bd8
KEYCLOAK-4671 Add server-private-spi to dependency deployer
2017-04-25 10:16:24 +02:00
mposolda
d05a894831
KEYCLOAK-4326 KEYCLOAK-4588 Can't get granted consents if client template mappers were consented to
2017-04-24 15:44:38 +02:00
Pedro Igor
8e877a7f6c
[KEYCLOAK-3135] - More tests
2017-04-12 14:34:27 -03:00
Pedro Igor
eec712a259
[KEYCLOAK-3135] - Role and user policies apis
2017-04-12 00:52:14 -03:00
Pedro Igor
54ebc1918c
[KEYCLOAK-3135] - Using abstract policy representation when creating policies and updating tests
2017-04-12 00:52:13 -03:00
Johannes Knutsen
9a0de676c4
KEYCLOAK-4559 Filter users by realm id when searching for user by user attribute
2017-03-14 11:05:12 +01:00
Pedro Igor
e7e6314146
[KEYCLOAK-4555] - Fixes and improvements to evaluation code
2017-03-13 14:08:54 -03:00
Stian Thorgersen
e7cd8d41c6
Merge pull request #3558 from glavoie/KEYCLOAK-3989
...
KEYCLOAK-3989: Replacing COMPOSITE_ROLE Collection with Set.
2017-03-10 12:00:59 +01:00
Bill Burke
efffcc5f41
Merge pull request #3915 from TeliaSoneraNorge/KEYCLOAK-4524
...
KEYCLOAK-4524
2017-03-08 10:08:04 -05:00
Martin Hardselius
a0a85f62c6
KEYCLOAK-4524 possible to add identity prover mappers with same name into single identity provider
...
- unique name enforcement working
- test added
2017-03-03 16:40:49 +01:00
Bill Burke
3bb29e033b
KEYCLOAK-4501, KEYCLOAK-4511, KEYCLOAK-4513
2017-03-03 09:48:52 -05:00
Bill Burke
d9633dc20c
Merge remote-tracking branch 'upstream/master'
2017-02-09 09:13:00 -05:00
Bill Burke
cf5e2a1d20
unlink/remoteimported
2017-02-08 19:48:22 -05:00
Stian Thorgersen
1c7de24084
Merge pull request #3832 from stianst/KEYCLOAK-4370
...
KEYCLOAK-4370 Prevent LDAP provider from being migrated twice
2017-02-06 08:21:30 +01:00
Stian Thorgersen
f73aaef67a
KEYCLOAK-4370 Prevent LDAP provider from being migrated twice
2017-02-03 10:05:57 +01:00
Bill Burke
0d308e2b69
KEYCLOAK-4218
2017-01-31 15:15:49 -05:00
mposolda
e487db349c
KEYCLOAK-4274 Fix recursive composite role mappings
2017-01-23 17:55:45 +01:00
Hynek Mlnarik
13e4f607ad
KEYCLOAK-2847 Fix exception convertor for Wildfly
2017-01-19 18:11:51 +01:00
Bill Burke
73d3e8afd9
Merge pull request #3770 from patriot1burke/master
...
KEYCLOAK-4077
2017-01-19 07:35:10 -05:00
Bill Burke
8daa2c3703
KEYCLOAK-4256
2017-01-18 18:28:08 -05:00
Pedro Igor
c19360c6f2
[KEYCLOAK-4203] - Removing references to Drools
2017-01-18 12:44:30 -02:00
Bill Burke
aa78c9eaf5
Merge pull request #3666 from hmlnarik/KEYCLOAK-4072-User-ID-from-User-Storage-Provider-too-long-for-Offline-User-Session
...
KEYCLOAK-4072 Add explicit check for key format
2017-01-13 09:39:45 -05:00
Bill Burke
d075172fd2
KEYCLOAK-3617 KEYCLOAK-4117 KEYCLOAK-4118
2017-01-09 17:14:20 -05:00
Stian Thorgersen
b7c98ed433
KEYCLOAK-2980 Fix admin query for resource path
2017-01-03 10:34:21 +01:00
mposolda
c998198aac
KEYCLOAK-4128 ResourcePermissionManagementTest fails on Oracle DB
2016-12-21 13:01:37 +01:00
Hynek Mlnarik
66eb9095c1
KEYCLOAK-4122
2016-12-20 20:28:13 +01:00
mposolda
aee8398ee8
KEYCLOAK-4072 Minor update
2016-12-20 11:42:24 +01:00
Bill Burke
8b5aafc4b4
KEYCLOAK-4072
2016-12-20 09:42:43 +01:00
Pedro Igor
c9c8acd029
[KEYCLOAK-4034] - Invalidating policy cache when creating resources and scopes
2016-12-19 20:28:49 -02:00
Pedro Igor
40591cff25
Merge pull request #3662 from pedroigor/KEYCLOAK-4034
...
[KEYCLOAK-4034] - Improvements to UI, performance and some code cleanup
2016-12-19 16:49:10 -02:00
Pedro Igor
5cf5168770
[KEYCLOAK-4034] - Improvements to UI, performance and some code cleanup
2016-12-19 16:48:16 -02:00
Marek Posolda
c6363aa146
Merge pull request #3630 from sldab/duplicate-email-support
...
KEYCLOAK-4059 Support for duplicate emails
2016-12-19 15:37:18 +01:00
Pedro Igor
c9c9f05e29
[KEYCLOAK-4034] - Improvements to UI, performance and some code cleanup
2016-12-19 11:22:37 -02:00
Stian Thorgersen
3bd3d0285d
Merge branch 'duplicate-groups' of https://github.com/ssilvert/keycloak into ssilvert-duplicate-groups
2016-12-19 13:07:39 +01:00
Hynek Mlnarik
3e3216fb23
KEYCLOAK-4072 Add explicit check for key format
2016-12-19 11:01:45 +01:00
Slawomir Dabek
93cec9b3ee
KEYCLOAK-4059 Support for duplicate emails
2016-12-19 10:55:12 +01:00
Bill Burke
9b18601102
KEYCLOAK-3973
2016-12-07 16:10:33 -05:00
Bill Burke
223cc1fb50
KEYCLOAK-3973
2016-12-07 12:56:03 -05:00
Bill Burke
77d17de14d
Merge pull request #3611 from patriot1burke/master
...
KEYCLOAK-3620
2016-12-06 08:18:36 -05:00
Marek Posolda
3826e933c1
Merge pull request #3609 from hmlnarik/KEYCLOAK-3439-database-encoding
...
KEYCLOAK-4026 - Workaround for liquibase error in MySQL/MariaDB
2016-12-06 10:25:08 +01:00
Marek Posolda
c8b22e71f0
Merge pull request #3573 from glavoie/KEYCLOAK-4003
...
KEYCLOAK-4003: Slow Infinispan RoleAdapter.hasRole() call.
2016-12-06 09:49:42 +01:00
Bill Burke
6587cd2478
KEYCLOAK-3620
2016-12-05 17:51:06 -05:00
Hynek Mlnarik
819105c3aa
KEYCLOAK-4026 - Workaround for liquibase error in MySQL/MariaDB
2016-12-05 16:48:52 +01:00
Bill Burke
e8f2527fcd
Merge pull request #3555 from vramik/KEYCLOAK-3977
...
KEYCLOAK-3977 fix logicalFilePath for jpa-changelog-1.0.0.Final-db2.xml
2016-12-03 13:44:54 -05:00
Bill Burke
305dcb2b1e
Merge pull request #3552 from hmlnarik/KEYCLOAK-3439-database-encoding
...
KEYCLOAK-3439, KEYCLOAK-3893, KEYCLOAK-3894 - Support for Unicode
2016-12-03 13:44:10 -05:00
Bill Burke
54758b800b
Merge pull request #3585 from abstractj/KEYCLOAK-4011
...
[KEYCLOAK-4011] - Integrity constraint error when try to delete SSSD Federation Provider
2016-12-03 13:37:36 -05:00
Bill Burke
88d08c4f38
component query and remove provider alis fix
2016-12-03 11:34:48 -05:00
Bill Burke
672e1b3575
oops
2016-12-02 20:14:01 -05:00
Bill Burke
e88af874ca
finish
2016-12-02 19:25:17 -05:00
Bruno Oliveira
e7dd49b453
[KEYCLOAK-4011] - Integrity constraint error when try to delete SSSD Federation Provider
2016-12-02 06:52:29 -02:00
Hynek Mlnarik
46d3555798
KEYCLOAK-3439, KEYCLOAK-3893, KEYCLOAK-3894 - Support for Unicode
...
Treatment of Unicode characters varies among databases. This change
adds support for Unicode characters in the following fields:
* Realms: display name, HTML display name
* Users: username, given name, last name, attribute values
* Groups: name, attribute values
* Components: attribute values
* Roles: name
* Descriptions of objects
Unicode support for the rest of the fields depends on database vendor
and is described in the installation guide in more detail.
2016-12-01 17:23:58 +01:00
Gabriel Lavoie
6fa504489f
KEYCLOAK-4003: Slow Infinispan RoleAdapter.hasRole() call.
...
- Added a session/query cache for the result getComposites() to avoid always hitting the Infinispan cache.
- KeycloakModelUtils doesn't rely anymore on a "visited" set as performance seems good without it.
- Added test for multiple levels of composite roles. Only one level was covered.
2016-11-30 10:56:26 -05:00
Gabriel Lavoie
4910b35d69
KEYCLOAK-3989: Replacing COMPOSITE_ROLE Collection with Set.
...
- Hibernate optimization that avoids deleting/re-inserting all composite roles when adding/removing a composite.
2016-11-28 09:43:05 -05:00
mposolda
69ce1e05f0
KEYCLOAK-3822 Changing signature validation settings of an external IdP is not sometimes reflected
2016-11-28 15:27:25 +01:00
Vlasta Ramik
8d3136188d
KEYCLOAK-3977 fix logicalFilePath for jpa-changelog-1.0.0.Final-db2.xml
2016-11-28 14:52:09 +01:00
Bill Burke
ccbd8e8c70
remove User Fed SPI
2016-11-23 16:06:44 -05:00
Bill Burke
d5925b8ccf
remove realm UserFed SPI methods
2016-11-23 08:31:20 -05:00
Bill Burke
50fc083d97
fix migration scripts
2016-11-21 11:43:09 -05:00
Bill Burke
798fd84698
Merge remote-tracking branch 'upstream/master'
2016-11-21 11:33:52 -05:00
Bill Burke
19575b2c8f
port kerberos
2016-11-21 11:33:44 -05:00
mposolda
76bfbad2c4
KEYCLOAK-3895 Make UserSessionProvider and UserSessionPersisterProvider to rely on UserRemovedEvent callbacks
2016-11-18 15:58:33 +01:00
mposolda
a27be0cee7
KEYCLOAK-3857 Clustered invalidation cache fixes and refactoring. Support for cross-DC for invalidation caches.
2016-11-16 22:29:23 +01:00
Bill Burke
8794416241
fix db2
2016-11-14 16:22:30 -05:00
Bill Burke
cc0eb47814
merge
2016-11-14 15:09:41 -05:00
Hynek Mlnarik
223041bc6b
KEYCLOAK-3734 Unify master changelog of DB2 and other databases
2016-11-14 15:19:54 +01:00
Bill Burke
8a5f817030
ldap jpa migration
2016-11-10 16:52:18 -05:00
Stian Thorgersen
7e33f4a7d1
KEYCLOAK-3882 Split server-spi into server-spi and server-spi-private
2016-11-10 13:28:42 +01:00
Stan Silvert
80b071024f
KEYCLOAK-2720: Add unique constraint
2016-11-08 15:05:19 -05:00
Bill Burke
4302b440ee
ldap port
2016-11-05 20:04:53 -04:00
Bill Burke
c75dcb90c2
ldap port
2016-11-04 21:25:47 -04:00
Stian Thorgersen
390becb935
Merge pull request #3394 from hmlnarik/KEYCLOAK-3769
...
KEYCLOAK-3769 Workaround for ChangeLogService stale instance
2016-10-20 19:43:24 +02:00
mposolda
c4ad84945c
KEYCLOAK-3773 Testsuite failing with mongo
2016-10-20 17:47:34 +02:00
Hynek Mlnarik
d59f6e397f
KEYCLOAK-3769 Workaround for ChangeLogService stale instance
...
Before applying update or validation operation, Liquibase
ChangeLogService needs to be reset to forget about previously set
change log table. Reason is that the factory creating the
ChangeLogService caches this service per DB connection, not per
Liquibase object, hence changes in name of change log table needed for
custom JpaEntityProvider are not reflected and use only the first
change log table name, i.e. the change log table of the main database.
2016-10-20 14:57:51 +02:00
Bill Burke
fdb8c04ac9
Merge remote-tracking branch 'upstream/master'
2016-10-19 10:06:48 -04:00
Bill Burke
46e32b36d2
onCreate for Components
2016-10-19 10:06:09 -04:00
Hynek Mlnarik
49d3d3f6e3
KEYCLOAK-3698 Manual migration - custom JpaEntityProvide changelog table
...
Reflect in the SQL script that custom JpaEntityProviders have their
own changelog tables, and issue DDL commands to create them when
initializing a new database.
2016-10-19 12:08:14 +02:00
Bill Burke
d941e07169
Merge pull request #3350 from patriot1burke/master
...
federated import/export to json
2016-10-18 14:15:25 -04:00
Stian Thorgersen
a87c08416d
Merge pull request #3346 from hmlnarik/KEYCLOAK-3588
...
KEYCLOAK-3698 Make manual update scripts play nicely with custom JpaEntityProviders
2016-10-18 19:41:02 +02:00
Bill Burke
2199df71bf
Merge remote-tracking branch 'upstream/master'
2016-10-18 10:14:00 -04:00
Bill Burke
4182e4d92a
federated import/export
2016-10-18 10:13:51 -04:00
Marek Posolda
940237ee78
Merge pull request #3304 from hmlnarik/KEYCLOAK-2964
...
KEYCLOAK-2964 - Fix groups not applied for authentication of admin operations
2016-10-18 14:50:12 +02:00
Hynek Mlnarik
658988ccd0
KEYCLOAK-3588 Make manual update scripts play nicely with custom JpaEntityProviders
2016-10-18 13:59:24 +02:00
Marek Posolda
386bf8d39e
Merge pull request #3344 from hmlnarik/KEYCLOAK-3732
...
KEYCLOAK-3732 Include 2.3.0 DB changelog for DB2
2016-10-18 10:29:01 +02:00
Hynek Mlnarik
2ea93b8a8b
KEYCLOAK-3732 Include 2.3.0 DB changelog for DB2
2016-10-18 09:53:27 +02:00
Hynek Mlnarik
9df3091b22
KEYCLOAK-3588 Update comment with related KC issue
2016-10-18 08:17:18 +02:00
Stian Thorgersen
06ad1537c8
Merge pull request #3323 from hmlnarik/KEYCLOAK-3639
...
KEYCLOAK-3639 Drop default value that prevents MSSQL update
2016-10-17 19:40:05 +02:00
Stian Thorgersen
3b2f7630bb
Merge pull request #3320 from hmlnarik/KEYCLOAK-3698
...
KEYCLOAK-3698: Add creation of DB changelog to SQL script
2016-10-17 18:55:45 +02:00
Stian Thorgersen
7c09b0c7b4
Merge pull request #3319 from hmlnarik/KEYCLOAK-3588
...
KEYCLOAK-3588: DB up-to-date check should not modify DB
2016-10-17 18:54:59 +02:00
Geir Ole Hiåsen Stevning
95f62c6aeb
KEYCLOAK-3626 - CreatedDate and lastUpdatedDate on user consent
2016-10-17 13:53:12 +02:00
mposolda
18e0c0277f
KEYCLOAK-3666 Dynamic client registration policies
2016-10-14 20:20:40 +02:00
Hynek Mlnarik
8bdd8f4274
KEYCLOAK-3639 Drop default value that prevents MSSQL update
2016-10-14 17:51:35 +02:00
Hynek Mlnarik
f256e2b102
KEYCLOAK-3588: DB up-to-date check should not modify DB
...
The DB up-to-date check uses Liquibase.listUnrunChangeSets() that in
its available variants unconditionally creates a DatabaseChangeLog
tables. Until the variant of listUnrunChangeSets() that suppresses this
behaviour is made public [1] (currently it is protected), workaround
has been implemented that invokes less invasive variant of
listUnrunChangeSets() via reflection.
[1] https://liquibase.jira.com/browse/CORE-2919
2016-10-14 14:29:01 +02:00
Hynek Mlnarik
3d47ab3665
KEYCLOAK-3698: Add creation of DB changelog to SQL script
...
Creation of database table DatabaseChangeLog was omitted from SQL
script which prevented creation of the database from scratch. The fix
adds DDL commands to create the table to the output SQL script in case
of empty database initialization.
Please note that DatabaseChangeLogLock is intentionally omitted. It is
created automatically before the update is even executed because a lock
is acquired (thus the table is properly created if it does not exist)
before check for up-to-dateness of database and potential migration in
KeycloakApplication constructor.
2016-10-14 14:27:07 +02:00
Bill Burke
8c8a39c833
sync and import
2016-10-13 20:49:02 -04:00
Bill Burke
0938390654
sync and import
2016-10-13 20:38:49 -04:00
Hynek Mlnarik
6578ce73a1
KEYCLOAK-3697: Evaluate preconditions when generating SQL script
...
Plus minor related change - replace deprecated call with equivalent
supported, add javadoc
Further info:
* http://forum.liquibase.org/topic/unexpected-behaviour-of-preconditions-with-updatesql
* http://stackoverflow.com/questions/17671923/liquibase-migrate-sql-does-not-check-precondtions
2016-10-13 13:00:33 +02:00
Stian Thorgersen
d2cae0f8c3
KEYCLOAK-905
...
Realm key rotation for OIDC
2016-10-13 11:19:52 +02:00
Hynek Mlnarik
03cf9bad2e
KEYCLOAK-2964 - Fix groups not applied for authentication of admin operations
2016-10-11 15:21:38 +02:00
Bill Burke
c5600e888d
revactor CredentialValidationOutput apis
2016-10-04 17:26:45 -04:00
Marek Posolda
c32cf51808
Merge pull request #3254 from didiez/master
...
KEYCLOAK-3608 Update existing user single attribute removes all other attributes from user
2016-10-04 08:43:22 +02:00
Bill Burke
d4c3fae546
merge conflicts
2016-09-30 19:19:12 -04:00
Bill Burke
110f6ad549
mongo fed
2016-09-30 16:48:59 -04:00
Bill Burke
8967ca4066
refactor mongo entities, optimize imports
2016-09-28 15:25:39 -04:00
Stian Thorgersen
34f62eb31d
Fixes to [KEYCLOAK-2438] PR
2016-09-28 10:25:37 +02:00
Bruno Oliveira
98d2fe15e8
[KEYCLOAK-2438] - Add display name to social login buttons
...
[KEYCLOAK-3291] - Names of social identity providers are wrongly capitalized (eg GitHub vs Github)
2016-09-26 13:36:28 -03:00
Bill Burke
8e65356891
creds
2016-09-22 19:57:39 -04:00
Bill Burke
7209a95dce
credential refactoring
2016-09-22 08:34:45 -04:00
didiez
98bf095471
Keep setSingleAttribute from deleting all other attributes of the user being updated.
2016-09-22 10:42:24 +02:00
mposolda
9d79a847c8
KEYCLOAK-3547 Incorrect jpa-changelog-2.2.0.xml
2016-09-09 09:47:32 +02:00
Bill Burke
2a5c778af5
Merge pull request #3209 from patriot1burke/master
...
KEYCLOAK-3440
2016-09-08 09:10:54 -04:00
Stian Thorgersen
1f27fc9e4b
Merge pull request #3153 from cargosoft/KEYCLOAK-3327
...
KEYCLOAK-3327 Make realm attributes accessible via the RealmModel
2016-09-08 08:00:14 +02:00
Bill Burke
3b9a6b32e1
Revert "Revert "KEYCLOAK-3440""
...
This reverts commit 01e48dc4b8
.
2016-09-07 23:41:32 -04:00
Bill Burke
01e48dc4b8
Revert "KEYCLOAK-3440"
2016-09-07 23:17:35 -04:00
Bill Burke
3f35234cf5
Merge remote-tracking branch 'upstream/master'
2016-09-07 23:11:38 -04:00
Bill Burke
da135389c7
KEYCLOAK-3440
2016-09-07 23:11:28 -04:00
mposolda
5a015a6518
KEYCLOAK-3494 Input elements backed by user attributes fail to update in themes
2016-09-07 20:08:09 +02:00
Bill Burke
15d31a202f
Merge remote-tracking branch 'upstream/master'
2016-09-06 08:56:17 -04:00
Bill Burke
6714c1a136
cred refactor
2016-09-06 08:55:47 -04:00
mposolda
494d9973a6
KEYCLOAK-3460 Support for ClientUpdatedEvent
2016-08-23 14:57:31 +02:00
Stian Thorgersen
c522a20ab9
KEYCLOAK-3447 Manual upgrade of database schema
2016-08-22 10:22:08 +02:00
Dimitri Teleguin
b109ce14b0
KEYCLOAK-3327 Make realm attributes accessible via the RealmModel
2016-08-18 23:28:32 +03:00
Pedro Igor
4cd0a8e894
[KEYCLOAK-3377] - Add pagination to authorization UI
2016-08-18 13:29:54 -03:00
Bill Burke
6c44e9befa
Merge remote-tracking branch 'upstream/master'
2016-08-18 11:57:25 -04:00
Bill Burke
8e9cfc4a28
creds
2016-08-18 11:52:00 -04:00
mposolda
0520d465c1
KEYCLOAK-3414 Support for client registration from trusted hosts
2016-08-11 15:55:32 +02:00
Bill Burke
ff703f935f
component export/import
2016-08-09 12:25:04 -04:00
Thomas Darimont
e49afb2d83
KEYCLOAK-3142 - Revised according to codereview
...
Liquibase Moved schema evolution configuration from jpa-changelog-2.1.0
to jpa-changelog-2.2.0.
Corrected wrong ResourceType references in tests.
Adapted AdminEvents copy-routines to be aware of resourceType attribute.
Added ResourceType enum to exposed ENUMS of ServerInfoAdminResource.
Signed-off-by: Thomas Darimont <thomas.darimont@gmail.com>
2016-08-05 00:01:03 +02:00
Thomas Darimont
586f6eeece
KEYCLOAK-3142 - Capture ResourceType that triggers an AdminEvent
...
Introduced new ResourceType enum for AdminEvents which lists
the current supported ResourceTypes for which AdminEvents
can be fired.
Previously it was difficult for custom EventListeners to figure
out which ResourceType triggered an AdminEvent in order
to handle it appropriately, effectively forcing users to parse
the representation.
Having dedicated resource types as a marker on an AdminEvent helps
to ease custom EventListener code.
We now also allow filtering of admin events by ResourceType in the
admin-console.
Signed-off-by: Thomas Darimont <thomas.darimont@gmail.com>
2016-08-04 11:30:02 +02:00
Bill Burke
534ee2e50c
Merge remote-tracking branch 'upstream/master'
2016-08-03 19:16:45 -04:00
Bill Burke
70722d0d3d
user storage provider jpa example
2016-08-03 19:16:11 -04:00
mposolda
9242e972c0
Fix Oracle DB
2016-08-03 13:01:30 +02:00
Bill Burke
09693eb108
component model
2016-08-02 05:48:57 +02:00
Bill Burke
5facec73e4
Merge remote-tracking branch 'upstream/master'
2016-08-01 11:19:09 -04:00
Bill Burke
91a267a0d8
component model
2016-08-01 11:18:58 -04:00
mposolda
c5d40a76ff
Fix DB2 and Oracle
2016-08-01 12:31:16 +02:00
Bill Burke
2219cd363e
Merge pull request #3079 from patriot1burke/master
...
KEYCLOAK-3268
2016-07-28 07:22:45 -04:00
Pedro Igor
7e1b97888a
[KEYCLOAK-3338] - Adding client roles to role policy and UX improvements
2016-07-27 15:15:14 -03:00
Bill Burke
69f051fb0a
test user fed registration spi
2016-07-23 08:55:06 -04:00
Bill Burke
db852f7e11
preRemove
2016-07-22 14:24:37 -04:00
Bill Burke
06fca9c897
Merge remote-tracking branch 'upstream/master'
2016-07-22 11:42:14 -04:00
Bill Burke
72d134748c
user fed spi querying tests
2016-07-22 11:42:07 -04:00
Marek Posolda
079026a7be
Merge pull request #3055 from mposolda/master
...
KEYCLOAK-3344 Can't remove realm with mongo model
2016-07-21 14:18:49 +02:00
mposolda
981ff90c81
KEYCLOAK-3344 Can't remove realm with mongo model
2016-07-21 12:47:25 +02:00
Pedro Igor
484d5d6e08
[KEYCLOAK-3313] - UI improvements and messages
2016-07-20 22:11:24 -03:00
Bill Burke
c709598fdd
user fed spi simple test
2016-07-20 10:59:45 -04:00
Stian Thorgersen
ea44b5888b
KEYCLOAK-2824 Password Policy SPI
2016-07-14 07:20:30 +02:00