Martin Kanis
0e7b475449
KEYCLOAK-12694 Upgrade to owasp-java-html-sanitizer 20191001.1
2020-01-31 09:28:57 +01:00
Bart Monhemius
52fd2b4aa4
KEYCLOAK-12698: Allow setting lifespan on executeActionsEmail
2020-01-31 09:27:07 +01:00
Martin Kanis
7a51ec486c
KEYCLOAK-12691 Upgrade to freemarker 2.3.29
2020-01-31 09:22:51 +01:00
mhajas
fc7b769b6e
KEYCLOAK-6817 Ignore SniSSLSocketFactory exception for IBM jdk
2020-01-31 09:08:44 +01:00
Bruno Oliveira da Silva
22bd945332
[KEYCLOAK-10304] Configure JS Adapter to use PKCE for new Account Management
2020-01-30 09:26:27 -05:00
vmuzikar
6eb6418208
KEYCLOAK-12834 Fix Account Console build is missing some dependencies
2020-01-30 10:31:27 -03:00
Bruno Oliveira da Silva
a9c3e4b8bd
Update node_modules folder
2020-01-30 14:25:29 +01:00
Bruno Oliveira da Silva
c36bcc8701
[KEYCLOAK-12439] Update to Angular 1.7.9
2020-01-30 14:25:29 +01:00
Pedro Igor
c37ca235ab
[KEYCLOAK-11352] - Can't request permissions by name by a non-owner resource service, although the audience is set
2020-01-30 11:36:21 +01:00
Pedro Igor
2a82ed6eea
[KEYCLOAK-9402] - 401 response when enforcement mode is DISABLED
2020-01-30 11:09:32 +01:00
Pedro Igor
873c62bbef
[KEYCLOAK-12569] - User cannot be deleted if he has owned resources / permission tickets
...
Co-authored-by: mhajas <mhajas@redhat.com>
2020-01-30 11:08:28 +01:00
stianst
faf37e32af
KEYCLOAK-12525 Update docs for authentor scripts
2020-01-30 10:56:12 +01:00
Erik Jan de Wit
8a022da30d
KEYCLOAK-10303 configure JS Adapter to use PKCE
2020-01-30 10:29:06 +01:00
stianst
2916af351a
KEYCLOAK-12712 Add thread-safety for provider hot-deployment
2020-01-29 14:06:11 +01:00
stianst
c38baa32ba
KEYCLOAK-12685 Set callback URI for identity providers to use frontend URL
2020-01-29 14:05:48 +01:00
stianst
a3e5f9d547
KEYCLOAK-12736 Set time for admin events in milliseconds, instead of converted seconds
2020-01-29 14:05:22 +01:00
Pedro Igor
c821dcf820
[KEYCLOAK-12438] - Scope-based policies falsely give a permit with an empty scope list
2020-01-29 14:02:44 +01:00
mposolda
e6a9efe365
KEYCLOAK-12174 Applying iankko's suggestions
2020-01-29 09:34:40 +01:00
mposolda
fdc59d8122
KEYCLOAK-12174 WebAuthn passwordless support
2020-01-29 09:34:40 +01:00
Marek Posolda
d46620569a
KEYCLOAK-12174 WebAuthn: create authenticator, requiredAction and policy for passwordless ( #6649 )
2020-01-29 09:33:45 +01:00
Alex Szczuczko
1a53110bb6
KEYCLOAK-11293 Filter out cruft from account2 modules
2020-01-29 05:26:55 -03:00
Alex Szczuczko
7dd7686635
KEYCLOAK-11293 Run mvn clean package -Pnpm-update
2020-01-29 05:26:55 -03:00
Alex Szczuczko
52d8b759d3
KEYCLOAK-11293 Update theme build for keycloak-preview
...
`npm install` is changed to run at build time, removing the need for commiting
the js modules, which are getting a bit silly in size with the introduction of
account2. Appropriate changes to prod-arguments.json are included that should
enable the product build to function properly. The community and developer
builds will continue to work without the proxying PNC provides.
This also changes the themes pom to work with more than one `package.json`
file. The only other one at the moment is for the new account console /
account2.
The documentation file has been updated.
Since we're building directly out of the source directories, it is possible in
a local dev environment for unintended files (e.g. old compiled .js files),
placed within src/main/resources/, to be included in the themes jar. This
shouldn't be a problem for actual builds though, which use a fresh clone.
Other small changes include refactoring the npm setup stuff to a global
definition, and the introduction of some properties to avoid duplicating path
definitions everywhere.
This commit does not include the churn that would result from deleting the
existing commited modules.
2020-01-29 05:26:55 -03:00
BrunoJCM
5c910d6f13
KEYCLOAK-12437 Revert KEYCLOAK-11802 ( #6700 )
...
This reverts commit e018ca3e29
from:
Simplifying logic for determining disabled status (#6416 )
Co-authored-by: brunomedeiros-visagio <55057005+brunomedeiros-visagio@users.noreply.github.com>
2020-01-28 14:59:03 +01:00
Takashi Norimatsu
993ba3179c
KEYCLOAK-12615 HS384 and HS512 support for Client Authentication by Client Secret Signed JWT ( #6633 )
2020-01-28 14:55:48 +01:00
Takashi Norimatsu
678d80cbc8
KEYCLOAK-12615 HS384 and HS512 support for Client Authentication by Client Secret Signed JWT
2020-01-28 14:55:25 +01:00
Erik Jan de Wit
3beef2a4c0
KEYCLOAK-8098 use html5 email validation
2020-01-27 15:16:05 -05:00
Stian Thorgersen
87cab778eb
KEYCLOAK-11996 Authorization Endpoint does not return an error when a request includes a parameter more than once ( #6696 )
...
Co-authored-by: stianst <stianst@gmail.com>
Co-authored-by: Takashi Norimatsu <takashi.norimatsu.ws@hitachi.com>
2020-01-24 12:10:56 +01:00
Denis Richtárik
24c6e2ba08
KEYCLOAK-12742 Authentication -> WebAuthn Policy: Unable to delete the Acceptable AAGUIDS via the provided minus (-) button, once set ( #6695 )
2020-01-24 11:55:20 +01:00
Thomas Darimont
303861f7e8
KEYCLOAK-10003 Fix handling of request parameters for SMTP Connection Test
...
We now transfer the SMTP connection configuration via HTTP POST
request body parameters instead of URL parameters.
The improves handling of SMTP connection configuration values with
special characters. As a side effect sensitive information like SMTP
credentials are now longer exposed via URL parameters.
Previously the SMTP connection test send the connection parameters
as encoded URL parameters in combination with parameters in the request body.
However the server side endpoint did only look at the URL parameters.
Certain values, e.g. passwords with + or ; could lead to broken URL parameters.
2020-01-23 13:19:31 -06:00
Leon Graser
f1ddd5016f
KEYCLOAK-11821 Add account api roles to the client on creation
...
Co-authored-by: stianst <stianst@gmail.com>
2020-01-23 13:10:04 -06:00
Martin Kanis
1fbee8134b
KEYCLOAK-12697 Remove mvel2 from parent pom and licenses
2020-01-23 13:04:31 -06:00
Benjamin Weimer
dd9ad305ca
KEYCLOAK-12757 New Identity Provider Mapper "Advanced Claim to Role Mapper" with
...
following features
* Regex support for claim values.
* Support for multiple claims.
2020-01-23 07:17:22 -06:00
Stan Silvert
210fd92d23
KEYCLOAK-11550: Signing In page
2020-01-23 07:35:09 -05:00
Domenico Briganti
812b69af13
KEYCLOAK-9837 Not hide exception in email templating - clean code
2020-01-23 05:45:25 -06:00
Domenico Briganti
f07e08ef28
KEYCLOAK-9837 Not hide exception in email templating - Throws always an Exception
2020-01-23 05:45:25 -06:00
Domenico Briganti
476da4f276
KEYCLOAK-9837 Not hide exception in email templating
2020-01-23 05:45:25 -06:00
Peter Skopek
530b99c933
KEYCLOAK-12281 Fix export/import for users that have custom credential algorithms with no salt
...
- do not swallow exception when decoding salt
2020-01-23 05:43:29 -06:00
Peter Skopek
b8a8f88764
KEYCLOAK-12281 Fix export/import for users that have custom credential algorithms with no salt
...
- do not swallow exception when decoding salt
2020-01-23 05:43:29 -06:00
mposolda
f0d95da52d
KEYCLOAK-12281 Fix export/import for users that have custom credential algorithms with no salt
2020-01-23 05:43:29 -06:00
Captain-P-Goldfish
b90a0307ea
Add certificate timestamp validation ( #6330 )
...
KEYCLOAK-11818 Add certificate timestamp validation
2020-01-22 20:53:06 +01:00
Vlasta Ramik
d6c5f79f2c
KEYCLOAK-12236 NumberFormatException when starting container ( #6689 )
2020-01-22 20:44:23 +01:00
vramik
47d6d65bbb
KEYCLOAK-12724 - workaround hibernate bug - set explicitly dialect for oracle version greater than 12
2020-01-22 18:34:11 +01:00
Denis Richtárik
8d312d748b
KEYCLOAK-12163 Old account console: UI not updated after removing of TOTP ( #6688 )
2020-01-22 12:26:28 +01:00
Tomas Kyjovsky
36eba64f07
KEYCLOAK-12674 Performance degradation after upgrade to Keycloak 8 ( #6685 )
2020-01-21 19:43:25 +01:00
Tobias Oort
910324e4eb
minor changes (punctuation, caps)
2020-01-20 06:51:08 -06:00
Tobias Oort
632925cc06
[i18n nl] Updated totpStep1 - removed a-href tags
...
A tags are not rendered as-is - they are escaped. This fixes html output as plaintext in the dutch translation.
2020-01-20 06:51:08 -06:00
Martin Kanis
89fc0e1fcc
KEYCLOAK-12462 Align to EAP 7.3.0.CR3
2020-01-17 14:11:38 +01:00
vmuzikar
03306b87e8
KEYCLOAK-12125 Introduce SameSite attribute in cookies
...
Co-authored-by: mhajas <mhajas@redhat.com>
Co-authored-by: Peter Skopek <pskopek@redhat.com>
2020-01-17 08:36:53 -03:00
Stan Silvert
922c9260a4
KEYCLOAK-12526: Fix when switch is displayed
2020-01-17 08:35:01 -03:00