Pedro Igor
80a67149af
Merge pull request #3002 from pedroigor/KEYCLOAK-3249
...
[KEYCLOAK-3249] - AuthorizationContext.hasScopePermission() gives NPE
2016-07-08 09:16:51 -03:00
mposolda
c10a005997
KEYCLOAK-3290 UserInfoEndpoint error responses don't have correct statuses
2016-07-08 12:15:07 +02:00
mposolda
a7c9e71490
KEYCLOAK-3218 Support for max_age OIDC authRequest parameter and support for auth_time in IDToken
2016-07-07 17:04:32 +02:00
Pedro Igor
5ef65e837c
[KEYCLOAK-3249] - AuthorizationContext.hasScopePermission() gives NPE
2016-07-06 09:39:56 -03:00
Stian Thorgersen
7cfee80e58
KEYCLOAK-3189 KEYCLOAK-3190 Add kid and typ to JWT header
2016-07-05 08:26:26 +02:00
Bill Burke
b224917fc5
bump version
2016-06-30 17:17:53 -04:00
Pedro Igor
01f3dddd91
Adding a column to list policies associated with a permission.
2016-06-30 10:26:05 -03:00
Pedro Igor
afa9471c7c
[KEYCLOAK-3128] - Admin Client Authorization Endpoints
2016-06-30 10:26:05 -03:00
Pedro Igor
f48288865b
[KEYCLOAK-3156] - Missing CORS when responding with denies
2016-06-22 14:39:07 -03:00
Pedro Igor
086c29112a
[KEYCLOAK-2753] - Fine-grained Authorization Services
2016-06-17 02:07:34 -03:00
Ben Loy
ec180db39f
KEYCLOAK-2028: Add preemptive access token refresh support
...
Add a new keycloak.json property and mechanism to automatically
refresh access tokens if they are going to expire in less than a configurable
amount of time.
2016-06-09 19:22:15 +02:00
Bill Burke
4c9a0b45d4
Merge pull request #2229 from thomasdarimont/issue/KEYCLOAK-2489-script-based-authenticator-definitions
...
KEYCLOAK-2489 - Add support for Script-based AuthenticationExecution definitions.
2016-06-05 11:12:05 -04:00
mposolda
f58936025f
KEYCLOAK-3003 Support for admin events in AuthenticationManagementResource
2016-05-25 23:17:24 +02:00
mposolda
bea2678e85
KEYCLOAK-2862 AuthenticationManagementResource tests
2016-05-06 20:19:58 +02:00
Stian Thorgersen
2355db57da
KEYCLOAK-2880 Permissions tests for admin endpoints
2016-05-04 08:25:05 +02:00
Thomas Darimont
c8d47926b8
KEYCLOAK-2489 - Add support for Script-based AuthenticationExecution definitions.
...
This is a POC for script based authenticator support.
Introduced a ScriptBasedAuthenticator that is bootstraped via a
ScriptBasedAuthenticatorFactory can be execute a configured script
against a provided execution context.
Added an alias property to the AuthFlowExecutionRepresentation in order
to be able to differentiate multiple instances of an Authenticator
within the same AuthFlow.
For convenience editing the AngularJS bindings for the ACE editor were
added for fancy script editing - this needs to be cut down a bit wrt to
themes and supported scripts - e.g. we probably don't expect users to write
authenticator scripts in Cobol...
Removed currently not needed ACE sytax highlighting and themes.
Scripting is now available to all keycloak components that have access to the KeycloakSession.
Introduced new Scripting SPI for configurable scripting providers.
2016-04-27 14:37:13 +02:00
mposolda
f6a718f10a
KEYCLOAK-2878 Testing of UserFederation admin REST endpoints
2016-04-21 23:11:14 +02:00
mposolda
afc8179cf8
KEYCLOAK-2846 export/import of clientTemplate scopes
2016-04-20 13:30:01 +02:00
Stian Thorgersen
01beff741d
KEYCLOAK-2766 Add missing id to AuthenticatorConfigRepresentation
2016-04-11 07:42:55 +02:00
Thomas Darimont
bccc5fa7b1
KEYCLOAK-2054 - Allow to configure proxy for auth-server requests in adapters.
...
Previously the adapter configuration did not support specifying a proxy
for auth-server requests issued via the Apache HTTP Client by Keycloak.
This made it very difficult to connect an Application with Keycloak
that was required to use a proxy.
Introduced new `proxy-url` attribute to the adapter configuration
which makes it possible to configure a proxy to be used for auth-server
requests. Proxy-Host, Proxy-Port and Proxy-Scheme are taken from the
configured proxy URL.
Note that proxies that require authentication are currently not supported.
2016-04-07 11:09:40 +02:00
mposolda
65dc7ddb44
KEYCLOAK-2623 Remove auth-server-url-for-backend-requests from adapters
2016-04-05 11:43:41 +02:00
Bill Burke
4ed1061487
KEYCLOAK-2738
2016-04-04 18:47:11 -04:00
mposolda
a4d9aaf916
KEYCLOAK-2613 Add version to RealmRepresentation in JSON exports
2016-04-01 16:04:58 +02:00
Bill Burke
020d090aee
Merge pull request #2430 from mstruk/assert-events
...
KEYCLOAK-2589 KEYCLOAK-2607 KEYCLOAK-2597 Port AssertEvents to integration-arquillian
2016-03-30 15:16:25 -04:00
Stan Silvert
0f52768064
KEYCLOAK-2619: Partial Import doesn't support groups
2016-03-28 14:26:34 -04:00
Marko Strukelj
95d222348d
KEYCLOAK-2589 Copy AssertEvents to Arquillian testsuite and modify to pull events from admin endpoints
2016-03-24 17:13:00 +01:00
Stian Thorgersen
28fe13a800
Next is 2.0.0.CR1
2016-03-10 08:13:00 +01:00
Stian Thorgersen
d722e53108
Next is 1.9.2.Final
2016-03-10 07:28:27 +01:00
Stian Thorgersen
56c3d53a24
Merge pull request #2324 from ssilvert/client-tests
...
KEYCLOAK-2535: ClientResource endpoint tests
2016-03-07 06:13:55 +01:00
Stian Thorgersen
57b6ddbace
KEYCLOAK-2592 Set secure on OAuth_Token_Request_State cookie
2016-03-04 14:22:48 +01:00
Stan Silvert
2c79456e72
KEYCLOAK-2535: ClientResource endpoint tests
2016-03-04 07:41:24 -05:00
Bill Burke
37584a24e0
unsecure url has principal
...
KEYCLOAK-2550
Typo in userguide
KEYCLOAK-1928 Kerberos working with IBM JDK
KEYCLOAK-1928 Remove sun.jdk.jgss module
KEYCLOAK-1928 Fix kerberos with adapter on JDK7
KPR-147 - Initial login scenarios around admin password - test
KEYCLOAK-2561 Fix issues with blank password
KEYCLOAK-2559 Missing add/remove button for 'Valid Redirect URIs' in a client settings form
Added simple test for JPA performance (with many users).
Fixed "re-import" operation logging.
Fixed for Timer.saveData()
Fixed for Timer.saveData()
ManyUsersTest: ArrayList --> LinkedList
Fix AbstractUserTest
Fix parentheses in login page object
Add tests for IDP initiated login
KEYCLOAK-1040
Allow import of realm keys (like we do for SAML)
KEYCLOAK-2556 Remove required for client create root url and saml endpoint
KEYCLOAK-2555 ForbiddenException when importing test realm or creating test user
KEYCLOAK-2553
Unexpected form behavior while creating a client
KEYCLOAK-2551
Broken navigation links while creating/editing a Client Mapper
2016-02-29 09:30:28 -05:00
Bill Burke
abddbfb3a4
clustered testing
2016-02-26 15:39:22 -05:00
Stian Thorgersen
3ca39801dc
KEYCLOAK-2511 Rename session-state in access token response to session_state
2016-02-25 10:14:12 +01:00
Stian Thorgersen
a1d9753ec2
Next is 1.9.1.Final-SNAPSHOT
2016-02-23 08:48:26 +01:00
Stian Thorgersen
4fd97091ff
Version bump to 2.0.0.CR1-SNAPSHOT
2016-02-22 11:36:56 +01:00
mposolda
0f21b6f6d9
KEYCLOAK-2479 Avoid ZIPException during bigger load
2016-02-18 19:28:20 +01:00
Marko Strukelj
dadb470609
KEYCLOAK-1967 Add support for authentication flows into admin-rest-client
2016-02-11 12:18:01 +01:00
Stan Silvert
e89f511465
KEYCLOAK-1976: Add support for events into admin-rest-client. Also,
...
arquillian tests for events.
2016-02-05 18:45:25 -05:00
Bill Burke
c63ef3c825
Merge remote-tracking branch 'upstream/master'
2016-02-04 16:50:16 -05:00
Bill Burke
e26ac0983a
KEYCLOAK-2367
2016-02-04 16:50:02 -05:00
Stian Thorgersen
579ab56a5a
Bump version to 1.9.0.Final-SNAPSHOT
2016-02-04 15:55:11 +01:00
Stian Thorgersen
c7a8742a36
KEYCLOAK-1524
...
Source code headers
2016-02-03 11:20:22 +01:00
Stian Thorgersen
26897ea46d
KEYCLOAK-2299
...
createdDate of credential is not exported
2016-02-03 09:49:10 +01:00
Stian Thorgersen
54abfa4859
KEYCLOAK-2237
...
Offer the possibility to add own locale to login/registration dialogs
2016-01-26 10:16:05 +01:00
Bill Burke
fedf3d0e52
KEYCLOAK-2377
2016-01-22 17:00:51 -05:00
Stian Thorgersen
3dc090b893
KEYCLOAK-2185 Add support to disable realm and user cache, and added support to clear caches from admin console
2016-01-20 14:09:03 +01:00
Stian Thorgersen
435980d776
KEYCLOAK-1809
...
Upgrade jackson to version 2.x
2016-01-14 16:34:30 +01:00
Stian Thorgersen
0193c696ab
Version bump
2016-01-13 09:20:38 +01:00
mposolda
3336d4d7ac
KEYCLOAK-2290 bulk update of algorithm field during migration from 1.7
2016-01-12 18:04:50 +01:00
Pedro Igor
c9f9ee9799
[KEYCLOAK-2266] - OAuth2 Token Introspection.
2016-01-12 11:16:42 -02:00
Stian Thorgersen
f1602b3b8d
Merge pull request #1998 from ssilvert/partial-import
...
KEYCLOAK-1979: Partial import
2016-01-11 09:22:09 +01:00
Stan Silvert
fbff61bfba
For overwrite, do all deletes, then all adds.
...
Minor UI enhancements.
Fix 2 JPA bugs.
General cleanup.
Documentation.
2016-01-08 13:45:22 -05:00
Bill Burke
2892b093ab
Merge remote-tracking branch 'upstream/master'
2016-01-07 17:25:58 -05:00
Stian Thorgersen
8695e16971
KEYCLOAK-2269
...
add-user script adds identityFederationEnabled field to keycloak-add-user.json
2016-01-07 13:17:10 +01:00
Bill Burke
64de96d34b
installation provider
2016-01-06 16:49:58 -05:00
Stan Silvert
55e36acfc0
For overwrite, delete then create.
...
Do all prepares to check for errors, then call doImport on each type.
Combine Realm Role and Client Role processing (RolesPartialImport).
2016-01-05 15:33:45 -05:00
Stan Silvert
f6a02bd408
Clean commit for partial import with single page for all imports.
2016-01-05 15:33:42 -05:00
Bill Burke
3bacbdf6ff
set framework for template config
2016-01-04 17:13:15 -05:00
mposolda
1747e0981f
KEYCLOAK-2154 Added Group mapper for LDAP. LDAP mappers improvements and fixes
2015-12-22 08:54:09 +01:00
Stian Thorgersen
606e6fa479
KEYCLOAK-1934
...
Add display-name and display-name-html to realm
2015-12-21 12:15:13 +01:00
Bill Burke
5caf3e0a2d
Merge remote-tracking branch 'upstream/master'
2015-12-18 17:15:40 -05:00
Bill Burke
d939b6a431
template scope
2015-12-18 17:15:27 -05:00
mposolda
0d52e4e6c5
Added sync support to UserFederationMapper
2015-12-16 13:52:11 +01:00
Bill Burke
96e1813b34
client templates backend
2015-12-11 10:31:42 -05:00
mposolda
081db0d353
KEYCLOAK-2124 Post-Broker login flow support
2015-12-09 16:36:26 +01:00
Stian Thorgersen
34c3ffaae1
Ported AdminApiTest to use admin client
2015-12-03 08:24:23 +01:00
Stian Thorgersen
ff806eae08
Version bump
2015-12-01 19:54:28 +01:00
mposolda
ec327c99f4
KEYCLOAK-2152 KEYCLOAK-2061 Client switches changes. Support for response_types and grant_types in OIDC Client registration
2015-11-30 15:31:38 +01:00
mposolda
57b60797ce
KEYCLOAK-1129 Implicit flow: more work
2015-11-28 00:15:41 +01:00
mposolda
ef80b64d1c
KEYCLOAK-1129 Implicit flow and Hybrid flow support
2015-11-27 22:28:38 +01:00
mposolda
8d2e4c0316
KEYCLOAK-2061 Add switches to enable/disable grant types for clients
2015-11-27 22:28:38 +01:00
Stian Thorgersen
7200996ae0
Merge pull request #1886 from stianst/master
...
KEYCLOAK-2156
2015-11-27 12:32:07 +01:00
Stian Thorgersen
34cc750b13
KEYCLOAK-2156
...
Unrecognized field identityFederationEnabled importing old realm json
2015-11-27 12:31:00 +01:00
Stian Thorgersen
c83e3bd2d1
KEYCLOAK-2106 HTTP 500 for unparsable refresh tokens
2015-11-27 08:59:23 +01:00
Stian Thorgersen
cfc28b861b
KEYCLOAK-1758 add-user script
2015-11-24 21:54:58 +01:00
Stian Thorgersen
4f2b97de7f
KEYCLOAK-1937
...
OpenID Connect Dynamic Client Registration
KEYCLOAK-1938
Register clients from SAML Entity Descriptors
2015-11-24 15:39:36 +01:00
Bill Burke
98958a2bc4
default groups
2015-11-18 19:40:30 -05:00
Bill Burke
6989589e72
Merge remote-tracking branch 'upstream/master'
2015-11-18 15:24:45 -05:00
Bill Burke
41331111da
resolve conflicts
2015-11-18 09:39:19 -05:00
Bill Burke
bff334d365
group token/assertion and tests
2015-11-18 09:36:47 -05:00
Stian Thorgersen
764c20d748
KEYCLOAK-2085 Initial access tokens for client registration
2015-11-18 10:33:24 +01:00
Stian Thorgersen
bad0a95123
KEYCLOAK-1749 Client registration service
...
Changed endpoints of client registration to just clients
Started installation
Added adapter config retrival to client reg
2015-11-16 13:24:56 +01:00
Bill Burke
21119604c6
user group membership
2015-11-12 11:31:44 -05:00
Bill Burke
33ac048c8c
resolve conflicts
2015-11-11 18:06:39 -05:00
Bill Burke
e25157655b
group ui
2015-11-11 18:03:53 -05:00
mposolda
4ca442d1b2
KEYCLOAK-1750 Option updateProfileOnFirstLogin moved from IdentityProvider to IdpReviewProfile authenticator
2015-11-10 11:06:23 +01:00
mposolda
adbf2b22ad
KEYCLOAK-1750 Improve first time login with social. Added 'first broker login' flow
2015-11-09 10:34:55 +01:00
Bill Burke
d896800ec6
groups initial
2015-10-29 16:33:02 -04:00
Stian Thorgersen
3f8312427a
Version bump
2015-10-19 16:15:29 +02:00
mposolda
9cc5ca3ce4
KEYCLOAK-1972 docs and export/import fixes for offline tokens. DB fixes
2015-10-16 19:09:52 +02:00
mposolda
4587fd23b6
KEYCLOAK-1929 Change package names. Fix Fuse demo
2015-10-16 16:30:42 +02:00
Stian Thorgersen
a6556a49c2
Merge pull request #1738 from gerbermichi/locale
...
KEYCLOAK-1962 update realm overwrites supported locales with empty list
2015-10-16 10:21:20 +02:00
mposolda
802a39b1ce
KEYCLOAK-904 Offline session idle timeout + admin console
2015-10-15 22:30:17 +02:00
Stian Thorgersen
e582de2837
KEYCLOAK-1961
...
Same token can be used multiple times to obtain access token
2015-10-15 09:11:18 +02:00
Michael Gerber
f8effaee58
return null instead of an empty set.
2015-10-15 08:19:18 +02:00
Thomas Darimont
870702fd81
KEYCLOAK-1918 - Add description field to client definition.
...
Introduced description field with support for i18n for more descriptive client information.
Applications can use the description to display a "slightly" longer gist of
what the client / application is about, especially useful for tooltips.
The description is currently limited to 255 characters.
2015-10-15 07:33:38 +02:00
Stian Thorgersen
c85e0248dd
KEYCLOAK-1883
...
Improve setting of users locale
2015-10-13 19:47:10 +02:00
Stian Thorgersen
366a1629e5
KEYCLOAK-1749 Client registration service and client java api
2015-10-08 11:55:42 +02:00
mposolda
7816f053a6
KEYCLOAK-1856 KEYCLOAK-1860 Fix onoffswitchvalue directive
2015-10-02 11:09:54 +02:00