Benjamin Weimer
|
8c1ea60b04
|
* Add sid claim to ID Token
* deprecate session state parameter in ID Token
* remove charset=UTF-8 from backchannel logout post request Content-Type header
|
2021-07-06 15:30:53 -03:00 |
|
Takashi Norimatsu
|
2b1624390a
|
KEYCLOAK-17937 Client Policy - Endpoint : support CIBA Backchannel Authentication Endpoint
|
2021-07-03 08:57:20 +02:00 |
|
Hryhorii Hevorkian
|
2803685cd7
|
KEYCLOAK-18353 Implement Pushed Authorization Request inside the Keycloak
Co-authored-by: Takashi Norimatsu <takashi.norimatsu.ws@hitachi.com>
Co-authored-by: mposolda <mposolda@gmail.com>
|
2021-07-03 08:47:42 +02:00 |
|
lbortoli
|
e5ae113453
|
KEYCLOAK-18452 FAPI JARM: JWT Secured Authorization Response Mode for OAuth 2.0
|
2021-07-03 00:00:32 +02:00 |
|
Vlastimil Elias
|
04ff2c327b
|
[KEYCLOAK-18429] Support a dynamic update profile form
|
2021-07-02 10:22:47 -03:00 |
|
Vlastimil Elias
|
f32447bcc1
|
[KEYCLOAK-18424] GUI order for user profile attributes
|
2021-07-02 08:37:24 -03:00 |
|
Pedro Igor
|
b26b41332e
|
[KEYCLOAK-18626] - Avoid changing username when registration as email is enabled
|
2021-07-02 08:07:04 -03:00 |
|
Pedro Igor
|
3e07ca3c22
|
[KEYCLOAK-18425] - Allow mapping user profile attributes
|
2021-07-01 10:19:28 -03:00 |
|
lbortoli
|
164f3df080
|
KEYCLOAK-18502 - Support for additional parameters from the backchannel authentication request and backchannel authentication callback.
|
2021-07-01 00:31:26 +02:00 |
|
Valentin Hervieu
|
aab6782bae
|
KEYCLOAK-18603 Remove duplicated statement
This is super minor but saw this while reading this file.
|
2021-06-30 15:56:32 +02:00 |
|
Vlastimil Elias
|
bcfa6e4309
|
KEYCLOAK-18592 - put attribute validators configuration into freemarker
template for user profile pages
|
2021-06-30 09:01:12 -03:00 |
|
Václav Muzikář
|
eb3bd8bbb5
|
KEYCLOAK-18554 Make ErrorHandler to log all errors for debugging purposes
|
2021-06-30 08:58:09 +02:00 |
|
Takashi Norimatsu
|
cef742ee3f
|
KEYCLOAK-18583 Remove OIDCWellKnownProvider.isAsymmetricAlgorithm
|
2021-06-30 07:35:46 +02:00 |
|
Luca Leonardo Scorcia
|
ae98d8ea28
|
KEYCLOAK-18315 SAML Client - Add parameter to request specific AttributeConsumingServiceIndex
|
2021-06-29 16:22:38 +02:00 |
|
Takashi Norimatsu
|
57c80483bb
|
KEYCLOAK-17936 FAPI-CIBA : support Signed Authentication Request
Co-authored-by: Pritish Joshi <pritish@banfico.com>
Co-authored-by: mposolda <mposolda@gmail.com>
|
2021-06-29 08:07:40 +02:00 |
|
Pedro Igor
|
948f453e2d
|
[KEYCLOAK-18427] - Allowing switching to declarative provider
|
2021-06-28 15:50:04 -03:00 |
|
Vlastimil Elias
|
512bcd14f7
|
[KEYCLOAK-18428] - dynamic registration form
|
2021-06-25 17:11:15 -03:00 |
|
Pedro Igor
|
faadb896ea
|
[KEYCLOAK-18426] - Support required by role and scopes in Admin UI
|
2021-06-24 10:43:49 -03:00 |
|
Vlastimil Elias
|
b7a4fd8745
|
KEYCLOAK-18423 - Support a user-friendly name property for user profile
attributes
|
2021-06-24 08:17:06 -03:00 |
|
Luca Leonardo Scorcia
|
cdf9621257
|
KEYCLOAK-18450 Add basic tests for the Identity Provider Redirector Default IdP feature
|
2021-06-23 08:42:14 +02:00 |
|
Vlastimil Elias
|
458c841c39
|
[KEYCLOAK-18447] Dynamically select attributes based on requested scopes
|
2021-06-22 08:54:03 -03:00 |
|
Vlastimil Elias
|
82491ae5d2
|
KEYCLOAK-17446 - Prefill username in "Forgot Your Password" form if
called from Login form
|
2021-06-22 08:48:43 -03:00 |
|
Vlastimil Elias
|
b87d764137
|
[KEYCLOAK-17443] Username and email form fields kept in registration
form when duplicate
|
2021-06-22 08:46:42 -03:00 |
|
Luca Leonardo Scorcia
|
f5123cb51b
|
KEYCLOAK-17935 SAML Client - Validate InResponseTo attribute
|
2021-06-21 12:25:18 +02:00 |
|
keycloak-bot
|
13f7831a77
|
Set version to 15.0.0-SNAPSHOT
|
2021-06-18 10:42:27 +02:00 |
|
vramik
|
e3c76035b2
|
KEYCLOAK-18359 Default role migration is not performed correctly when empty realm id
|
2021-06-14 20:54:37 +02:00 |
|
Davide Setti
|
74089a51b3
|
KEYCLOAK-18383 Update Group: don't check siblings if the name doesn't change
|
2021-06-14 12:58:45 +02:00 |
|
Pedro Igor
|
ef3a0ee06c
|
[KEYCLOAK-17399] - Declarative User Profile and UI
Co-authored-by: Vlastimil Elias <velias@redhat.com>
|
2021-06-14 11:28:32 +02:00 |
|
Martin Bartoš
|
7ffa2835ef
|
KEYCLOAK-18391 CIBATest failure
|
2021-06-11 10:36:56 +02:00 |
|
Yoshiyuki Tabata
|
4d1576b96a
|
KEYCLOAK-18328 "access_denied" instead of "interaction_required" should
be returned when a user cancels the login
|
2021-06-10 11:16:50 +02:00 |
|
mposolda
|
070c68e18a
|
KEYCLOAK-18069 Migration of client policies JSON from Keycloak 13
|
2021-06-10 10:40:14 +02:00 |
|
Douglas Palmer
|
aac0b6ec5f
|
[KEYCLOAK-17602] Email account verification link is wrongly encoded
|
2021-06-10 08:34:53 +02:00 |
|
mposolda
|
91865fa93e
|
KEYCLOAK-18368 Invalidate client session after refresh token re-use
|
2021-06-09 14:43:29 +02:00 |
|
Benjamin Weimer
|
f66354a80e
|
KEYCLOAK-16947 add error parameters to access token response & improve logging
|
2021-06-07 17:53:30 +02:00 |
|
Marek Posolda
|
7a81dfff7a
|
Update services/src/main/java/org/keycloak/services/clientpolicy/executor/FullScopeDisabledExecutorFactory.java
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
|
2021-06-04 15:46:33 +02:00 |
|
mposolda
|
3d16a1e8d3
|
KEYCLOAK-16811 Add executor for disable 'Full Scope Allowed' and add it to FAPI profiles
|
2021-06-04 15:46:33 +02:00 |
|
Douglas Palmer
|
986b69c03f
|
[KEYCLOAK-17405] Session auth time updated when user has not re-authenticated
|
2021-06-01 19:35:42 +02:00 |
|
stianst
|
c3a15cb368
|
KEYCLOAK-17796 Add options to http-builder to enable expect-continue, and to disable re-use of connections
|
2021-06-01 10:28:31 +02:00 |
|
mposolda
|
73a38997d8
|
KEYCLOAK-14208 Default client profiles for FAPI
|
2021-05-31 12:31:52 +02:00 |
|
Michito Okai
|
bc6a746780
|
KEYCLOAK-18112 Token introspection of the revoked refresh token
|
2021-05-31 11:01:01 +02:00 |
|
Michal Hajas
|
4dcb69596b
|
KEYCLOAK-18146 Search for clients by client attribute when doing saml artifact resolution
|
2021-05-27 23:02:22 +02:00 |
|
Stian Thorgersen
|
2cb59e2503
|
KEYCLOAK-17844 Add option to disable authorization services to workaround issues with many clients
|
2021-05-27 22:28:56 +02:00 |
|
Hynek Mlnarik
|
3d8f152787
|
KEYCLOAK-17747 KEYCLOAK-17754 Optimize getClients() calls
|
2021-05-27 22:12:56 +02:00 |
|
Martin Kanis
|
23aee6c210
|
KEYCLOAK-16616 Limit number of authSessios per rootAuthSession
|
2021-05-27 22:10:36 +02:00 |
|
Martin Kanis
|
122fbe1bc6
|
KEYCLOAK-18298 ClearExpiredUserSessions timeouts with large number of sessions
|
2021-05-27 16:31:10 +02:00 |
|
Takashi Norimatsu
|
669556af71
|
KEYCLOAK-18296 RefreshTokenRequest returns incorrect error code during failed HoK request
|
2021-05-27 15:28:29 +02:00 |
|
vramik
|
4e8b18f560
|
KEYCLOAK-17752 Avoid iterating over all clients in UserResource.getConsents()
|
2021-05-27 13:45:28 +02:00 |
|
vramik
|
3aa06c2721
|
KEYCLOAK-18073 avoid ModelDuplicateException during parallel starup of servers
|
2021-05-27 07:10:35 +02:00 |
|
Stefan Guilhen
|
eb631bf63b
|
[KEYCLOAK-8730] Ensure role mappers don't remove roles already granted by another mapper when updating a brokered user
|
2021-05-26 17:21:54 +02:00 |
|
mposolda
|
9b76b07144
|
KEYCLOAK-18284 WARNING in the log when login to public clients
|
2021-05-26 14:38:14 +02:00 |
|