mposolda
046edbbd54
KEYCLOAK-904 Consents support. Added scopeParamRequired flag to RoleModel
2015-09-23 12:52:47 +02:00
Stian Thorgersen
7ac1d1f14c
KEYCLOAK-1866
...
Allow changing name and view details of imported realm
2015-09-23 11:08:53 +02:00
dcampagna
43541d3028
Show error when username already exists (KEYCLOAK-1857)
2015-09-23 07:43:38 +02:00
dcampagna
fde4bc99aa
Allow username change at first login (KEYCLOAK-1849)
2015-09-23 07:43:38 +02:00
mposolda
7ec3f86efb
KEYCLOAK-904 Offline tokens
2015-09-21 10:28:30 +02:00
mposolda
c11539cccb
docs and javadoc fixes
2015-09-21 10:13:41 +02:00
Stian Thorgersen
28f4409768
Merge pull request #1623 from mstruk/asciidoc
...
KEYCLOAK-1241 Can't build release with Java 8
2015-09-18 13:03:02 +02:00
Bill Burke
9dc54815eb
Merge pull request #1616 from dbarentine/master
...
Bug fixes
2015-09-17 14:01:13 -04:00
Marko Strukelj
71e2be5d3d
KEYCLOAK-1241 Can't build release with Java 8
...
- Fix Null title in some build environments
2015-09-17 14:10:15 +02:00
Stian Thorgersen
4878073867
Merge pull request #1587 from mstruk/asciidoc
...
KEYCLOAK-1241 Can't build release with Java 8
2015-09-17 09:06:22 +02:00
Stian Thorgersen
2eaa03539c
KEYCLOAK-1854
...
NPE in SystemInfoRepresentation if user.country or user.language not set
2015-09-17 07:38:37 +02:00
Marko Strukelj
3bbe82057c
KEYCLOAK-1241 Can't build release with Java 8
...
- Improve javadoc comments for new REST API documentation generation
2015-09-15 21:22:43 +02:00
Marko Strukelj
0c49fce78f
KEYCLOAK-1241 Can't build release with Java 8
2015-09-15 21:22:43 +02:00
Dane Barentine
6291e90f9c
KEYCLOAK-1844 Login endpoint needs to handle POST as well for SAML clients using HTTP-POST binding
2015-09-14 14:57:38 -07:00
Stan Silvert
75bd8d4627
Load admin messages through Themes.
2015-09-08 15:22:50 -04:00
Stan Silvert
e118a06a09
Bundles now read from base theme instead of from classpath. Bundle names
...
no longer hard-coded.
2015-09-08 12:57:20 -04:00
Stan Silvert
4898d74c6d
KEYCLOAK-1152 Initial commit for i18n support
2015-09-08 12:57:19 -04:00
mposolda
050c65a520
KEYCLOAK-1811 Pluggable client authentication config through adapter subsystem
2015-09-07 23:30:08 +02:00
mposolda
81f4c50574
KEYCLOAK-1799 Download adapter JSON config with proper adapter
2015-09-04 22:23:01 +02:00
mposolda
35e63a9398
KEYCLOAK-1801 Additional fix and cleanup
2015-09-04 15:19:43 +02:00
mposolda
6318964374
KEYCLOAK-1802
2015-09-04 12:21:45 +02:00
mposolda
bc189554aa
KEYCLOAK-1795 Add just one clientAuthenticatorType per client
2015-09-04 00:09:54 +02:00
Bill Burke
a1cfc0a0ff
KEYCLOAK-1792
2015-09-02 17:17:57 -04:00
Bill Burke
7d4b93e01e
client session required actions
2015-09-02 16:30:16 -04:00
mposolda
5b9d1286cc
KEYCLOAK-1789 KEYCLOAK-1759 Export/import fixes
2015-09-02 12:03:16 +02:00
mposolda
be8394158f
KEYCLOAK-1780 documentation + Generic client authentication screen
2015-09-01 13:17:14 +02:00
Bill Burke
eec3a3d5c3
more mappers
2015-08-31 16:23:17 -04:00
Bill Burke
03006522e2
docs
2015-08-31 10:54:57 -04:00
Bill Burke
43fd24f02b
Merge remote-tracking branch 'upstream/master'
2015-08-31 10:13:55 -04:00
Bill Burke
22ebb81650
refactor recover password
2015-08-31 10:13:42 -04:00
William DeCoste
ad497a66cd
KEYCLOAK-1783
2015-08-29 08:57:04 -07:00
Vlastimil Elias
244d879d00
KEYCLOAK-1741 - Login form keeps "Username or email" field value after
...
reshown due validation error
2015-08-26 15:39:41 +02:00
Bill Burke
434197c10d
Merge remote-tracking branch 'upstream/master'
2015-08-21 18:30:52 -04:00
Bill Burke
d4af694c6f
refactor profile and totp update
2015-08-21 18:30:39 -04:00
Bill Burke
f245b67036
totp refactor
2015-08-21 17:53:26 -04:00
Bill Burke
945673c7da
Merge pull request #1558 from patriot1burke/master
...
refactor update password
2015-08-21 17:27:42 -04:00
Bill Burke
165fba6b9c
refactor update password
2015-08-21 15:17:01 -04:00
mposolda
b0e2624343
KEYCLOAK-1295 Fixes and javadoc
2015-08-21 19:00:31 +02:00
mposolda
d8d6348f67
KEYCLOAK-1295 Adapter support. Fixes
2015-08-21 08:26:12 +02:00
Bill Burke
d9cb1fc4a9
Merge remote-tracking branch 'upstream/master'
2015-08-20 17:43:54 -04:00
Bill Burke
1654be0a85
change reset password
2015-08-20 17:43:37 -04:00
Stian Thorgersen
5ca3a48094
KEYCLOAK-1723 Allow aud to be single field or array
2015-08-20 15:55:52 +02:00
mposolda
7028496601
KEYCLOAK-1295 pluggable client authentication. Support authenticate clients with signed JWT
2015-08-17 23:21:23 +02:00
Bill Burke
f87ba8a3a9
oops, .info messages
2015-08-16 17:28:07 -04:00
Bill Burke
51e927adf7
Merge remote-tracking branch 'upstream/master'
2015-08-16 16:41:08 -04:00
Bill Burke
bf4b681506
tests
2015-08-16 16:40:39 -04:00
Bill Burke
c7b5975ac1
reset password refactor
2015-08-16 15:20:16 -04:00
Bill Burke
c0f3d851db
reset password refactor/flow
2015-08-16 12:23:15 -04:00
Bill Burke
98b6344f03
Merge pull request #1539 from patriot1burke/master
...
fix holes
2015-08-15 11:37:20 -04:00
Bill Burke
e4b6e4c167
Merge pull request #1523 from velias/KEYCLOAK-1731
...
KEYCLOAK-1731 - patched user attribute handling for update profile action
2015-08-15 11:30:22 -04:00
Bill Burke
374a2ad957
fix holes
2015-08-15 10:39:33 -04:00
Bill Burke
6d7be80930
refactor auth-spi, auth demo, and docs
2015-08-14 14:38:59 -04:00
Bill Burke
1f13f6372a
register required action
2015-08-14 12:03:37 -04:00
Bill Burke
d11a83d6e2
stuff
2015-08-13 15:32:58 -04:00
Bill Burke
8a23463328
auth spi refactor and doco
2015-08-13 11:28:11 -04:00
Bill Burke
bcc2c893ef
refactor requiredactions, start doco
2015-08-11 13:04:40 -04:00
Bill Burke
5469db311d
document auth spi
2015-08-09 15:06:24 -04:00
Bill Burke
33e402e7be
binding custom flows
2015-08-07 19:00:07 -04:00
Bill Burke
1ad7d4f1d8
Merge remote-tracking branch 'upstream/master'
2015-08-06 16:55:16 -04:00
mposolda
8232773d97
Log more details about possible error in UserInfoEndpoint
2015-08-06 17:28:35 +02:00
Bill Burke
53b752ccfe
Merge remote-tracking branch 'upstream/master'
2015-08-05 20:40:02 -04:00
Bill Burke
07efba364e
hotp
2015-08-05 20:39:47 -04:00
Vlastimil Elias
2e52d8ea7a
KEYCLOAK-1731 - patched user attribute handling for
...
login-update-profile.ftl form. Relevant tests added. Tests for user
attributes handling from register.ftl also added.
2015-08-05 17:07:21 +02:00
mposolda
e27a754f5f
KEYCLOAK-1595 Don't send 401 from AuthorizeClientUtil if public client sent client_id parameter together with Authorization: Negotiate
2015-08-04 15:22:03 +02:00
Bill Burke
930fc66ebf
flow editing
2015-08-03 18:58:14 -04:00
Bill Burke
04d3d26cb1
refactor execution model
2015-08-03 09:52:56 -04:00
Bill Burke
de940ccff9
auth flow editing
2015-08-02 19:03:33 -04:00
Stian Thorgersen
8d90ad816a
KEYCLOAK-1710 UserInfoEndpoint throws NPE if user session is not found
2015-07-27 15:43:52 +02:00
Stian Thorgersen
6a2b369014
KEYCLOAK-1707 Can't export SAML keys
2015-07-27 13:00:22 +02:00
Stian Thorgersen
a8775f757f
KEYCLOAK-1694 Null Client Exception on OAuth Grant Page
2015-07-27 09:59:50 +02:00
Bill Burke
f76b90fab9
timeout message
2015-07-25 12:43:46 -04:00
Bill Burke
ccd8beae92
Merge remote-tracking branch 'upstream/master'
2015-07-25 12:16:05 -04:00
Bill Burke
33f01009d2
login timeouts, verify email
2015-07-25 12:13:41 -04:00
Stian Thorgersen
86de481ba1
Merge pull request #1499 from stianst/master
...
KEYCLOAK-1542
2015-07-24 17:30:29 +02:00
Stian Thorgersen
5d075a97dd
Fixes to server-info
2015-07-24 16:45:58 +02:00
Stian Thorgersen
d1964c20ab
Refactored server-info and updated admin console
2015-07-24 14:47:37 +02:00
mposolda
d068cddbaf
Fix MSAD and OpenLDAP
2015-07-23 18:03:12 +02:00
Vlastimil Elias
ee57c79784
KEYCLOAK-1542 - rewrote showing info from providers to be generic
2015-07-23 16:40:57 +02:00
Vlastimil Elias
7e41b8df27
KEYCLOAK-1542 - code formatting cleanup
2015-07-23 16:40:56 +02:00
Vlastimil Elias
79c1d7bafa
KEYCLOAK-1542 - code cleanup ahead of PR
2015-07-23 16:40:55 +02:00
Vlastimil Elias
652b2fee86
KEYCLOAK-1542 - Server Info page extended by info about DB and MongoDB.
...
Functional test for /serverinfo REST endpoint added.
2015-07-23 16:40:54 +02:00
Vlastimil Elias
dfb871c26a
KEYCLOAK-1542 - added system and memory info into "System Info" page
2015-07-23 16:40:53 +02:00
mposolda
c99785f266
KEYCLOAK-401 Service account refactoring and fixes
2015-07-23 11:29:52 +02:00
Bill Burke
7dc05a45ac
conflict
2015-07-22 14:20:52 -04:00
Bill Burke
48a76c2d0d
test brute force
2015-07-22 12:30:52 -04:00
Bill Burke
d9b0415047
brute force fixes, code cleanup, tests
2015-07-22 09:40:11 -04:00
mposolda
d8c1081578
KEYCLOAK-401 KEYCLOAK-941 Service accounts initial impl. Client credentials grant support
2015-07-22 10:55:50 +02:00
Bill Burke
576db8e0e1
Merge remote-tracking branch 'upstream/master'
2015-07-21 20:56:22 -04:00
Bill Burke
fe9dc4a28d
non-browser flow
2015-07-21 20:56:05 -04:00
Stian Thorgersen
2dd2173553
Merge pull request #1473 from mstruk/KEYCLOAK-1560
...
KEYCLOAK-1560 IDENTITY_PROVIDER_LOGIN event is send twice
2015-07-21 10:28:32 +02:00
Marko Strukelj
fcd5400cda
KEYCLOAK-1560 IDENTITY_PROVIDER_LOGIN event is send twice
2015-07-21 09:49:37 +02:00
Bill Burke
548c0db0ae
Merge remote-tracking branch 'upstream/master'
2015-07-20 12:21:57 -04:00
Bill Burke
3ecd1307b0
clean up client sessions
2015-07-20 12:21:48 -04:00
Stian Thorgersen
f884aed25e
KEYCLOAK-1576
2015-07-20 13:35:56 +02:00
Stian Thorgersen
66a2b916f2
Fix CRLF with LF
2015-07-20 07:48:02 +02:00
Bill Burke
2e848da1a8
resolve conflicts
2015-07-17 09:45:53 -04:00
Stian Thorgersen
1642ac2394
KEYCLOAK-1385 Introduce end-of-line normalization
2015-07-17 13:46:51 +02:00
Stian Thorgersen
0bec2bcd1e
KEYCLOAK-1504
2015-07-17 10:21:15 +02:00
Bill Burke
e51d2137cf
migrate RequiredCredentials
2015-07-16 22:03:12 -04:00
Bill Burke
e825be1c79
nonce in tokens
2015-07-16 10:17:44 -04:00
Bill Burke
57cfbb3770
SAML IDP Initiated login
2015-07-15 20:08:55 -04:00
Gregor Tudan
c8c0d0e804
KEYCLOAK-1564: Add CORS-Headers to token requests by password credentials
2015-07-14 08:22:08 +02:00
Bill Burke
8dcc909b6e
Merge remote-tracking branch 'upstream/master'
2015-07-12 10:12:31 -04:00
Bill Burke
fafaf2c490
test impersonate
2015-07-12 10:12:19 -04:00
mposolda
dc366c53a7
KEYCLOAK-1175 Import at startup can fail if master realm not present
2015-07-11 18:56:52 +02:00
mposolda
fe1ede26be
KEYCLOAK-1558 Can't import the file exported in 1.2.0.Beta1 through admin console
2015-07-11 18:56:52 +02:00
Bill Burke
1017a0af1d
Merge remote-tracking branch 'upstream/master'
2015-07-11 11:09:48 -04:00
Bill Burke
ff25484a34
viewUser fixes
2015-07-11 11:01:26 -04:00
Bill Burke
919a3f1b91
fixes
2015-07-11 10:30:23 -04:00
Bill Burke
608701aea7
impersonation redo in admin console
2015-07-11 10:10:05 -04:00
mposolda
142d44a01f
KEYCLOAK-1233 Admin console support for add/remove federated identity
2015-07-11 14:08:49 +02:00
Bill Burke
6e55604dc3
impersonation
2015-07-10 20:38:43 -04:00
Bill Burke
4a962aa75a
Merge remote-tracking branch 'upstream/master'
2015-07-08 19:18:23 -04:00
Bill Burke
e786158071
role selector
2015-07-08 19:18:11 -04:00
mposolda
bde65a6c57
KEYCLOAK-1533 Handle importing LDAP user with duplicate email during authentication
2015-07-08 20:41:32 +02:00
mposolda
94c0a436b5
KEYCLOAK-1534 handle account management update email or username to the already existing value
2015-07-08 15:27:05 +02:00
Bill Burke
d49c7d47a2
Merge remote-tracking branch 'upstream/master'
2015-07-06 17:44:52 -04:00
Bill Burke
8f18e9bbbc
auth config ui
2015-07-06 17:44:39 -04:00
mposolda
71ea61e7a6
KEYCLOAK-1532 LDAP sync fixes and other bugfixing
2015-07-04 22:25:47 +02:00
Bill Burke
917151123f
display flows
2015-07-02 11:25:51 -04:00
Bill Burke
212f5b4082
Merge pull request #1410 from dbarentine/master
...
Spec compliance, bug fixes
2015-07-01 15:27:47 -04:00
Bill Burke
39f2a4ab71
repatcha
2015-07-01 15:10:04 -04:00
Bill Burke
39aa09ca36
form action refactor
2015-07-01 14:07:02 -04:00
Bill Burke
a1c612f833
remove old code
2015-06-30 12:47:34 -04:00
Bill Burke
bc39bb32d4
Merge remote-tracking branch 'upstream/master'
2015-06-30 12:46:29 -04:00
Bill Burke
884308ecb5
reg flow
2015-06-30 12:46:10 -04:00
Bill Burke
afa65d9ead
registration flow
2015-06-29 22:12:06 -04:00
mposolda
605c88a029
KEYCLOAK-1487 Multivalued support for UserAttribute protocol mapper. End-to-end LDAP example test including application
2015-06-29 21:45:47 +02:00
mposolda
09994d1730
KEYCLOAK-1487 Support for multiple values of one UserModel attribute. LDAP multivalued attribute support
2015-06-29 14:56:40 +02:00
Bill Burke
064d677fdc
form auth
2015-06-24 21:07:38 -04:00
Dane Barentine
8da532da93
[KEYCLOAK-1492] Fix mapClaim when nested attribute already exists
2015-06-22 11:00:40 -07:00
Bill Burke
000159226d
refactor
2015-06-21 12:09:22 -04:00
Bill Burke
4ebdb8d24b
refactor
2015-06-21 11:52:30 -04:00
Bill Burke
adff0d5da0
make authenticator config optional
2015-06-19 21:16:45 -04:00
Bill Burke
a26ade3988
refactor registration and console pages
2015-06-19 17:51:59 -04:00
Bill Burke
d7b818cba2
cleanup client sessions
2015-06-19 14:43:40 -04:00
Bill Burke
84faac0cd6
handle page refresh better
2015-06-18 20:01:12 -04:00
Bill Burke
1bce639d35
refactor flow first phase
2015-06-18 16:48:28 -04:00
Bill Burke
70fd7bea99
cleanup authenticators
2015-06-17 17:15:01 -04:00
Bill Burke
f5b4a0788e
timeout message
2015-06-17 10:16:21 -04:00
Bill Burke
5615d8d870
required actions edit
2015-06-17 09:42:58 -04:00
Bill Burke
dddc5181e7
required actions storage/display
2015-06-16 22:48:39 -04:00
Bill Burke
3b78fa2d5d
required actions model
2015-06-16 18:17:38 -04:00
Bill Burke
8f5b53e3ce
clientsession timeout checks
2015-06-16 09:29:36 -04:00
Bill Burke
cd84e78b27
access code checks
2015-06-16 07:59:53 -04:00
Bill Burke
9638c0dd83
verify clientsession actions
2015-06-15 18:04:55 -04:00
Bill Burke
43bad9a608
merge
2015-06-15 09:02:15 -04:00
Bill Burke
c51cc4703b
kerberos fixes
2015-06-14 20:58:02 -04:00
Stian Thorgersen
c89a412661
KEYCLOAK-1321
...
Error page is displayed if user rejects sign in with social provider
2015-06-12 13:32:30 +02:00
Stian Thorgersen
2d82d15e5b
Merge pull request #1361 from ssilvert/KEYCLOAK-1083-unlock-user-account
...
KEYCLOAK-1083: Provide a way for admin to unlock user account
2015-06-12 07:44:07 +01:00
Bill Burke
392fa21f1e
finish reg
2015-06-11 21:15:53 -04:00
Bill Burke
fa99b5415d
flow alias lookup
2015-06-11 18:02:49 -04:00
Stan Silvert
d6e64a2c5e
KEYCLOAK-1083: Provide a way for admin to unlock user account
2015-06-11 15:32:03 -04:00
Bill Burke
3f62cd9271
terms and conditions
2015-06-11 14:39:08 -04:00
Matthias Wessendorf
d3e178d459
Applying suggested import change from mstruk 💄
2015-06-11 08:52:53 +02:00
Bill Burke
3dd282e11b
pluggable required actions backend
2015-06-10 11:38:01 -04:00
Bill Burke
95349e6e2e
clientsession.action to String
2015-06-10 09:21:23 -04:00
mposolda
557edbec6d
KEYCLOAK-1416 federation provider/mapper model fixes
2015-06-09 23:15:43 +02:00
mposolda
d3e9b29d78
KEYCLOAK-1088 Audit of user grants during login
2015-06-09 20:37:12 +02:00
mposolda
9a5ca4d367
Minor improve in error messages and tests
2015-06-09 17:43:20 +02:00
Stian Thorgersen
c61c05be51
Merge pull request #1335 from ssilvert/keycloak-config
...
KEYCLOAK-1404: Need recovery mechanism for master admin user
2015-06-09 07:02:47 +01:00
Stan Silvert
e977a363ef
Require user to specify a temporary admin password to do admin recovery.
2015-06-08 13:04:52 -04:00
Bill Burke
dcc40b0a63
error handling
2015-06-05 15:51:43 -04:00
Bill Burke
dc0d9a8dce
merge
2015-06-05 14:44:37 -04:00
Bill Burke
021b01f0bd
passing tests
2015-06-05 13:49:24 -04:00
Stan Silvert
6812514683
KEYCLOAK-1404: Need recovery mechanism for master admin user
2015-06-04 15:29:44 -04:00
Bill Burke
9ab023cc6c
more
2015-06-04 10:18:24 -04:00
Stian Thorgersen
f50570e350
KEYCLOAK-1325
...
Public/private SPI
2015-06-04 15:59:47 +02:00
Marek Posolda
826c60ae36
Merge pull request #1324 from velias/KEYCLOAK-1371
...
KEYCLOAK-1371 - Perform "Update Profile on First Login" only if some of mandatory user profile fields is missing from identity provider
2015-06-04 15:19:59 +02:00
Bill Burke
b54061fc3f
more
2015-06-03 18:51:57 -04:00
Bill Burke
c12fe28b2d
phased auth spi introduction
2015-06-03 10:55:03 -04:00
Stian Thorgersen
1dd0b563b6
KEYCLOAK-1386 Direct Grant API always on
2015-06-03 16:24:15 +02:00
Vlastimil Elias
dcc19a39d7
KEYCLOAK-1371 - Perform "Update Profile on First Login" only if some of
...
mandatory user profile fields is missing from identity provider
2015-06-03 15:24:25 +02:00
Stian Thorgersen
3d3871b0e6
Merge pull request #1291 from AOEpeople/KEYCLOAK-1305
...
KEYCLOAK-1305 Add possibility to change username
2015-06-03 10:51:34 +01:00
Stian Thorgersen
060a59f982
Merge pull request #1317 from velias/KEYCLOAK-1372
...
KEYCLOAK-1372 - do not perform email verification if email is provided by trusted Identity provider
2015-06-03 10:29:52 +01:00
Sebastian Rose
17affe576f
KEYCLOAK-1350 client_session_state should be updated when refreshing a token
2015-06-02 15:01:47 +02:00
Vlastimil Elias
b86d091ad1
KEYCLOAK-1372 - do not perform email verification if email is provided
...
by trusted Identity provider
2015-06-02 14:59:29 +02:00
Niko Köbler
492e6cd856
KEYCLOAK-1305 Add possibility to change username
2015-06-02 14:08:19 +02:00
Stian Thorgersen
6baefa7490
Merge pull request #1307 from velias/KEYCLOAK-1361
...
KEYCLOAK-1361 - ability to add custom fields (user.attributes) on login-update-profile.ftl page
2015-06-02 08:40:54 +01:00
Stian Thorgersen
319b29aa7d
Merge pull request #1300 from girirajsharma/master
...
[KEYCLOAK-1200] From and To filter fields in Event viewer in admin app
2015-06-02 08:32:02 +01:00
mposolda
f57ab78916
KEYCLOAK-886 LDAP: Fixes and improvements
2015-06-01 17:38:34 +02:00
Vlastimil Elias
ea98b26766
KEYCLOAK-1361 - ability to add custom fields (user.attributes) on
...
login-update-profile.ftl page
2015-06-01 15:44:36 +02:00
Stian Thorgersen
5f787028df
KEYCLOAK-1327 Updated for users
2015-05-29 15:29:04 +01:00
girirajsharma
5bb71d396a
[KEYCLOAK-1200] From and To filter fields in Event viewer in admin app
2015-05-29 19:13:56 +05:30
Stian Thorgersen
5a3a0ae437
KEYCLOAK-1325 Log warning if internal SPI is used
2015-05-29 13:58:40 +01:00
Stian Thorgersen
a953b52eac
KEYCLOAK-1327 Updated for client stats
2015-05-29 13:15:35 +01:00
Stian Thorgersen
6f164f0ee9
KEYCLOAK-1327 Updated for clients
2015-05-29 13:15:34 +01:00
mposolda
bcd607a1ee
KEYCLOAK-1360 ModelExceptionMapper logges the exception
2015-05-28 19:54:15 +02:00
Stian Thorgersen
f65b502a96
Merge pull request #1283 from girirajsharma/master
...
[KEYCLOAK-1200]- From and To filter fields in Event viewer in admin app
2015-05-28 15:03:22 +02:00
girirajsharma
efe8342965
[KEYCLOAK-1200]- From and To filter fields in Event viewer in admin app
2015-05-28 18:05:31 +05:30
mposolda
98dd87efbc
Added ProviderConfigProperty.CLIENT_LIST and refactor role federation mapper to use it
2015-05-28 12:28:26 +02:00
mposolda
ce6576ce84
KEYCLOAK-1355 Make admin requests to have RealmModel and ClientModel available in KeycloakContext
2015-05-28 12:28:26 +02:00
behana
e8e22ee44c
KEYCLOAK-1352 Add send-verify-email to admin-rest-api
2015-05-28 00:05:39 +02:00
Bill Burke
a2718a889d
unfinished working auth spi
2015-05-27 14:28:47 -04:00
Bill Burke
143d176dcd
Merge remote-tracking branch 'upstream/master'
2015-05-27 10:39:59 -04:00
Bill Burke
a1f7cfaf3a
auth spi initialization
2015-05-27 10:39:46 -04:00
mposolda
dfe232cf80
KEYCLOAK-886 User Federation Mappers - admin console
2015-05-26 17:48:52 +02:00
Stian Thorgersen
ab934f3d35
Merge pull request #1273 from girirajsharma/master
...
[KEYCLOAK-1334] Forgot password page does not return validation error
2015-05-26 08:56:04 +02:00
Bill Burke
f5e301fe0d
merge
2015-05-22 16:15:55 -04:00
Bill Burke
68976f5b0c
auth spi datamodel
2015-05-22 16:03:26 -04:00
girirajsharma
8e7e208265
[KEYCLOAK-1334] Forgot password page does not return validation error
...
message when input field is empty
2015-05-23 01:18:23 +05:30
mposolda
61c35265a6
KEYCLOAK-826 Show count of created/updated users during federation sync
2015-05-22 21:06:38 +02:00
Stian Thorgersen
12c3aa83dd
Updated admin events
2015-05-19 11:40:17 +02:00
Stian Thorgersen
c193ba0c81
Merge pull request #1261 from panga/master
...
KEYCLOAK-1306 - Better Admin API error handling (new)
2015-05-19 08:56:19 +02:00
Bill Burke
3851a2fe72
merge
2015-05-18 16:41:51 -04:00
Bill Burke
338300df32
1st phase auth/required action spi
2015-05-18 16:32:38 -04:00
Stian Thorgersen
0c7f63b2f3
Merge branch 'master' of https://github.com/girirajsharma/keycloak into girirajsharma-master
...
Conflicts:
services/src/main/java/org/keycloak/services/resources/admin/RealmAdminResource.java
2015-05-18 06:56:12 +02:00
Leonardo Loch Zanivan
abcd830af1
Fix response code
2015-05-13 15:39:51 -03:00
Leonardo Loch Zanivan
f807c999b6
Initial messages SPI implementation for Admin REST Services.
2015-05-13 11:13:49 -03:00
girirajsharma
ccd5deb85f
[KEYCLOAK 392] Audit admin events
2015-05-13 16:47:30 +05:30
Stian Thorgersen
698660c92a
Added isPrivate to Spi
2015-05-12 08:25:24 +02:00
Stian Thorgersen
d00e0021b6
Merge branch 'master' of https://github.com/girirajsharma/keycloak into girirajsharma-master
...
Conflicts:
connections/jpa-liquibase/src/main/resources/META-INF/jpa-changelog-master.xml
services/src/main/java/org/keycloak/services/resources/admin/IdentityProvidersResource.java
2015-05-11 13:36:30 +02:00
Stian Thorgersen
ccbd4bace1
KEYCLOAK-1289 Support environment variables in keycloak.json
2015-05-11 10:17:25 +02:00
Bill Burke
e4204a56f5
username mapper
2015-05-08 20:41:31 -04:00
mposolda
91eb80beb0
Minor improvements
2015-05-07 20:07:30 +02:00
Bill Burke
69347aa7f6
Merge pull request #1220 from panga/master
...
KEYCLOAK-1269 and KEYCLOAK-1270
2015-05-05 14:31:48 -04:00
Bill Burke
082ebe8043
no backchannel if state
2015-05-05 13:58:07 -04:00
Leonardo Zanivan
a13a02c995
KEYCLOAK-1270 fix
2015-05-05 11:17:27 -03:00
mposolda
e03140a9f2
Fix redirect after unlink federated identity and logout from account management
2015-05-04 14:42:25 +02:00
girirajsharma
70f53c6c06
[KEYCLOAK-392] - Admin audit events
2015-05-03 01:46:52 +05:30
Bill Burke
311fca5a72
exception handling fix
2015-05-01 10:31:03 -04:00
Bill Burke
9372d23ad9
bump default keysize to 2048
2015-05-01 10:11:49 -04:00
Stian Thorgersen
3768c1f1ad
KEYCLOAK-1243
...
Federated Identities table is empty for user synced from classpath properties provider
2015-04-30 14:31:20 +02:00
Bill Burke
35c33f132e
demo fix and error message fix
2015-04-29 21:16:59 -04:00
Bill Burke
666827b7cb
remove resteasy ClientRequest
2015-04-29 20:46:14 -04:00
Stian Thorgersen
ee358ccbc4
Removed PatternFly themes
2015-04-29 19:47:56 +02:00
Stian Thorgersen
0b821a71e3
KEYCLOAK-887 Updated admin console theme
2015-04-29 19:34:08 +02:00
mposolda
063cefa18c
When revoke consent from admin console, logout clientSessions similarly like done in Account mgmt
2015-04-29 15:35:33 +02:00
Bill Burke
be656b2dba
Merge remote-tracking branch 'upstream/master'
2015-04-28 18:52:42 -04:00
Bill Burke
bfcf595346
backchannel broker logout
2015-04-28 18:52:30 -04:00
mposolda
5e0f560fdc
KEYCLOAK-1070 Migration for adding names to builtin clients
2015-04-28 09:35:57 +02:00
mposolda
1d4bf4ddaa
UserSessionNote mapper have combobox for claim type in admin console
2015-04-28 07:56:45 +02:00
mposolda
316053018b
KEYCLOAK-1070 Support for view and revoke consents in admin console
2015-04-28 07:56:45 +02:00
Bill Burke
4166393396
model migration
2015-04-27 16:12:43 -04:00
Bill Burke
44787d83d2
more broker mappers
2015-04-26 10:31:53 -04:00
Bill Burke
9151d2aebd
Merge remote-tracking branch 'upstream/master'
2015-04-24 18:37:18 -04:00
Bill Burke
5e1ac684a5
broker logout fixes
2015-04-24 16:32:32 -04:00
mposolda
a338626d2b
KEYCLOAK-1216 Click on 'Logout all sessions' in Account mgmt should propagate logout to the apps
2015-04-24 18:42:18 +02:00
Bill Burke
104a9f9842
Merge remote-tracking branch 'upstream/master'
2015-04-23 16:31:09 -04:00
Bill Burke
d49e0eda9e
broker token role
2015-04-23 15:26:07 -04:00
mposolda
14b3d085a0
KEYCLOAK-1070 Rename 'Access' to 'Applications'
2015-04-23 18:21:21 +02:00
mposolda
c942a8ac4f
KEYCLOAK-1070 ClientModel.setName/getName
2015-04-23 18:21:21 +02:00
mposolda
535023d800
KEYCLOAK-1070 add setProtocolMappers/getProtocolMappers to ClientSession
2015-04-23 18:20:34 +02:00
Bill Burke
a7d245b1fb
finish
2015-04-23 11:40:29 -04:00
Bill Burke
1f4df58e6c
broker token exchange refactor
2015-04-23 11:26:44 -04:00
mposolda
34e033e351
KEYCLOAK-1070 JSON representation and export/import for userConsent
2015-04-22 11:29:43 +02:00
mposolda
11035dbe1b
KEYCLOAK-1070 Rename GrantedConsentModel to UserConsentModel. Mongo support for consents. Mongo fixes
2015-04-22 11:29:36 +02:00
Stian Thorgersen
b5f3efe272
KEYCLOAK-1218 Better security for ServerInfoAdminResource
2015-04-22 08:59:00 +02:00
Bill Burke
af736a29f1
Merge pull request #1144 from TFaga/master
...
[KEYCLOAK-1211] Fixed AD users authenticating without providing a password
2015-04-20 12:31:58 -04:00
Bill Burke
8eb2f35423
Merge remote-tracking branch 'upstream/master'
2015-04-17 16:41:16 -04:00
Bill Burke
a7c563b0eb
oidc broker role mapper
2015-04-17 16:41:04 -04:00
mposolda
78830836b8
KEYCLOAK-1070 Persistent grants - step 1
2015-04-17 14:03:23 +02:00
girirajsharma
f959332117
[KEYCLOAK-402] - Force password changes at regular intervals
2015-04-16 23:41:45 +05:30
Stian Thorgersen
115e533a71
KEYCLOAK-1061 Add back to application link to error page
...
KEYCLOAK-1148 space in redirect uri gives error
2015-04-16 14:17:32 +02:00
Stian Thorgersen
5addabe893
KEYCLOAK-1212 CORS requests blocked on OPTIONS request
2015-04-16 11:27:30 +02:00
Stian Thorgersen
0027d22964
KEYCLOAK-1213 Installation file for bearer-only doesn't include auth-server-url
2015-04-16 09:19:55 +02:00
Bill Burke
edb9f0cecf
merge conflicts
2015-04-15 11:18:47 -04:00
Bill Burke
0addc4cf58
broker mapper mgmt
2015-04-15 11:10:53 -04:00
Tilen Faganel
770d2d8a4c
[KEYCLOAK-1211] Fixed Active Directory users authenticating without providing a password
2015-04-15 16:59:55 +02:00
Stian Thorgersen
f3e5541b7d
KEYCLOAK-1109 Added KeycloakContext
...
KEYCLOAK-1042 Access to Cookies within Events
KEYCLOAK-1209 Enable jboss-logging event listener by default and allow configuring log level
2015-04-15 13:34:54 +02:00
girirajsharma
e3bb61248a
[KEYCLOAK-405] - Feature that doesn't allow old password to be reused
2015-04-15 02:08:05 +05:30
Bill Burke
f61fb4ba18
fix conflicts
2015-04-13 09:59:59 -04:00
Bill Burke
d2a5403527
refactor for broker mappers
2015-04-13 09:45:23 -04:00
Stian Thorgersen
4fbbf39c51
KEYCLOAK-1187 Admin console and endpoints
2015-04-13 13:29:31 +02:00
Stian Thorgersen
9a047eda36
KEYCLOAK-1187 Updated representations
2015-04-13 10:13:32 +02:00
Stian Thorgersen
a18715a774
Deprecate OAuthClientRepresentation and ApplicationRepresentation and added ClientRepresentation
2015-04-10 13:33:29 +02:00
Stian Thorgersen
6fbc0975c0
KEYCLOAK-1187 First round: Combined ApplicationModel and OAuthClientModel into ClientModel. Removed OAuth Clients from Admin console and renamed Applications to Clients.
2015-04-09 12:27:30 +02:00
girirajsharma
ca13e3c4ba
[KEYCLOAK-400]Provide a configuration for regex in the password policies
2015-04-02 23:37:25 +05:30
Bill Burke
10ced1e908
Merge remote-tracking branch 'upstream/master'
2015-04-01 10:33:25 -04:00
Bill Burke
1d56805faf
unique username for brokered user
2015-04-01 10:32:47 -04:00
Stian Thorgersen
41828cd865
Prompt query param not added correctly after OIDC refactoring
2015-04-01 13:33:28 +02:00
mposolda
a5567ead7a
KEYCLOAK-1169 Skip DB write at each broker login if 3rd party token is not required
2015-04-01 11:00:02 +02:00
Stian Thorgersen
a2c4a1f760
Merge branch 'KEYCLOAK-1113' of https://github.com/velias/keycloak into velias-KEYCLOAK-1113
...
Conflicts:
services/src/main/java/org/keycloak/services/resources/LoginActionsService.java
2015-04-01 09:45:13 +02:00
Stian Thorgersen
f9d814598e
KEYCLOAK-946 Only show endpoints relevant for admin rest api
2015-04-01 07:31:17 +02:00
Bill Burke
03bfca5e41
expire cookie on backchannel
2015-03-31 19:33:43 -04:00
Stian Thorgersen
fcc2e0a9f0
Removed admin audit events - need to rethink how to implement it
2015-03-31 14:37:54 +02:00
Stian Thorgersen
96dad77c66
KEYCLOAK-392 Admin events
2015-03-30 14:38:32 +02:00
girirajsharma
962b623b4a
[KEYCLOAK-392] - Admin audit events
2015-03-30 14:06:01 +02:00
Vlastimil Elias
01094663bf
KEYCLOAK-1113 - profile update now uses correct form validation also
2015-03-30 12:53:05 +02:00
Michael Gerber
7b820a4eed
i18n for default claims
...
role description i18n
tests
typo
fix unit test
2015-03-29 11:34:53 +02:00
Bill Burke
878ce0761d
broker fixes
2015-03-27 12:13:48 -04:00
Vlastimil Elias
8727aef647
KEYCLOAK-1113 - LoginFormProvider extended to allow per field errors,
...
freemarker implementation extended (backward compatible), used for
registration form
2015-03-27 15:41:42 +01:00
Stian Thorgersen
b727087f04
KEYCLOAK-1150
...
'iss' should be URL not just realm name
2015-03-26 13:50:36 +01:00
Bill Burke
d36ee0d0af
Merge pull request #1088 from patriot1burke/master
...
oidc and saml broker backchannel logout
2015-03-26 08:43:21 -04:00
mposolda
477d8b35e3
KEYCLOAK-1116 KEYCLOAK-1117 JSON migration and removal of ClientModel.claimsMask
2015-03-26 11:49:22 +01:00
mposolda
2599e77491
Fix oracle
2015-03-26 08:10:26 +01:00
Bill Burke
f64d84b03a
Merge remote-tracking branch 'upstream/master'
2015-03-25 19:02:23 -04:00
Bill Burke
e0c70e1c47
oidc broker backchannel logout
2015-03-25 19:02:07 -04:00
Bill Burke
13268c52c6
saml backchannel logout
2015-03-25 16:51:25 -04:00
Stian Thorgersen
14683882e8
KEYCLOAK-1138 Appliance distribution from master failes with ClassNotFoundException
2015-03-25 10:11:56 +01:00
Bill Burke
c3859fa34f
oidc logout and console fixes
2015-03-23 21:30:56 -04:00
Bill Burke
410953fc5f
broker oidc logout
2015-03-23 13:21:17 -04:00
Bill Burke
f546358d66
oidc logout profile
2015-03-22 12:45:36 -04:00
Bill Burke
97d5f4aafc
broker refactor
2015-03-20 18:56:25 -04:00
Bill Burke
90c815055d
broker logout
2015-03-20 12:13:33 -04:00
Stian Thorgersen
71c7d8e48b
Merge pull request #1062 from velias/KEYCLOAK-1053
...
KEYCLOAK-1053 patch of email validation during social login without email
2015-03-20 05:37:16 +01:00
Michael Gerber
d8193f0f25
ui_locales as specified in:
...
http://openid.net/specs/openid-connect-core-1_0.html#rfc.section.3.1.2
replace ' through '' and introduce msg method for i18n in *.ftl files
replace ' through '' and introduce msg method for i18n in *.ftl files
css dorpdown
get current url with locale as query parameter
Introduce LocaleBean
add css dropdown to account page
css styling...
css styling...
2015-03-19 21:28:55 +01:00
mposolda
a65bac7751
Mongo migration: admin roles, timeout, protocol mappers
2015-03-19 19:58:19 +01:00
mposolda
82e290e06c
Minor model fix
2015-03-19 19:58:19 +01:00
Vlastimil Elias
c0cf537654
KEYCLOAK-1053 - social login do not fail when email validation is
...
enabled for realm but email is not provided by social login provider
(eg. Twitter)
2015-03-19 17:19:55 +01:00
Bill Burke
b26277a17c
broker fixes
2015-03-18 21:58:04 -04:00
mposolda
24f18609dd
Update federated links when identity provider alias is changed
2015-03-18 09:43:53 +01:00
mposolda
aeb27ff047
KEYCLOAK-1108 Remove option for enable/disable login per application
2015-03-18 09:43:53 +01:00
Bill Burke
ce2c4188fb
saml broker import/export, and module fixes
2015-03-17 19:20:46 -04:00
Stian Thorgersen
13b22d6644
KEYCLOAK-1107 saml and oidc broker options don't sho
2015-03-17 12:10:53 +01:00
Stian Thorgersen
2d785b5d5e
KEYCLOAK-1050 Added support for selecting multiple values
2015-03-17 07:52:55 +01:00
Bill Burke
4a8f34f27f
Merge pull request #1052 from patriot1burke/master
...
set saml issuer
2015-03-16 16:18:36 -04:00
Bill Burke
de2aa8e676
javadoc fixes
2015-03-16 15:37:49 -04:00
mposolda
4da566ae4d
KEYCLOAK-1094 Rename k_idp_hint to kc_idp_hint
2015-03-16 20:00:20 +01:00
Bill Burke
321041fccf
Merge pull request #1050 from patriot1burke/master
...
saml broker SPSSO descriptor
2015-03-16 13:31:47 -04:00
Bill Burke
224066f0fd
saml broker defaults and export page
2015-03-16 12:34:20 -04:00
mposolda
5fe0c38498
KEYCLOAK-1092 Fix test for crud of federated identity links
2015-03-16 16:49:01 +01:00
Bill Burke
ec1ba40f4a
Merge remote-tracking branch 'upstream/master'
2015-03-16 09:22:55 -04:00
Stian Thorgersen
e2b02d414f
Change adapters to use auth and token endpoints
2015-03-16 09:23:12 +01:00
Michael Gerber
144ee2c56d
add localization support to realm
...
(cherry picked from commit b00764b)
add localization support to realm
(cherry picked from commit b00764b)
add localization support to realm
(cherry picked from commit b00764b)
admin gui for localization support
(cherry picked from commit c157cc3)
added locale support to ClassLoaderTheme and FolderTheme
(cherry picked from commit 764960a)
rename localizatin to internationalization
(cherry picked from commit 74a0658)
fallback if no message can be found
(cherry picked from commit 2d54e6f)
fallback if no message can be found
(cherry picked from commit 2d54e6f)
add HttpHeaders
(cherry picked from commit be921c8)
add HttpHeaders
(cherry picked from commit be921c8)
NPE fix
(cherry picked from commit 148158b)
improve locale helper
(cherry picked from commit 57a805a)
write cookie
fix npe
(cherry picked from commit 33398b3)
dropdown to choose language
(cherry picked from commit 9e2eb60)
added dropdown to choose locale to the account page.
fixed the path of the cookie.
(cherry picked from commit 871469a)
remove debug info
(cherry picked from commit c3ea6b1)
added dropdown to change locale for user.
(cherry picked from commit 1575bea)
add i18n for emails
(cherry picked from commit b6280e9)
i18n for emails
(cherry picked from commit 6118c51)
set default locale to english
(cherry picked from commit 386447b)
change locale type form String to Locale
(cherry picked from commit 8dcc595)
change file encoding
(cherry picked from commit 2cce96d)
added parameters to setSuccess, setWarning, setError
(cherry picked from commit 64ea438)
i18n for error messages
(cherry picked from commit e75d5ef)
i18n for error message in login
(cherry picked from commit 8b60c96)
add i18n for messages in account pages
(cherry picked from commit 9849d94)
fix unit test
(cherry picked from commit a70a1c7)
fix unit test
(cherry picked from commit 008744b)
locale localization :)
(cherry picked from commit f3a2144)
locale localization :)
(cherry picked from commit 21f6384)
messages refactoring
(cherry picked from commit 08f1ae7)
messages refactoring
(cherry picked from commit 3b4b53a)
messages refactoring
(cherry picked from commit 69146d4)
messages refactoring
(cherry picked from commit cd3db1d)
messages refactoring
(cherry picked from commit 715583f)
fix unit tests after message refactoring
(cherry picked from commit a82c9ff)
fix unit tests after message refactoring
(cherry picked from commit 5662d83)
fix unit tests after message refactoring
(cherry picked from commit 1188de6)
fix unit tests after message refactoring
(cherry picked from commit 90ded07)
German translations
(cherry picked from commit 9822b99)
removed newliines
(cherry picked from commit 34ca1d8)
removed java 8 dependency
(cherry picked from commit 3a23f4f)
typo
(cherry picked from commit a818122)
typo
(cherry picked from commit a818122)
forgotten properties
unit test fixes
unit test fixes
fixes after rebase
add localization support to realm
(cherry picked from commit b00764b)
add localization support to realm
(cherry picked from commit b00764b)
add localization support to realm
(cherry picked from commit b00764b)
admin gui for localization support
(cherry picked from commit c157cc3)
added locale support to ClassLoaderTheme and FolderTheme
(cherry picked from commit 764960a)
rename localizatin to internationalization
(cherry picked from commit 74a0658)
fallback if no message can be found
(cherry picked from commit 2d54e6f)
fallback if no message can be found
(cherry picked from commit 2d54e6f)
add HttpHeaders
(cherry picked from commit be921c8)
add HttpHeaders
(cherry picked from commit be921c8)
NPE fix
(cherry picked from commit 148158b)
improve locale helper
(cherry picked from commit 57a805a)
write cookie
fix npe
(cherry picked from commit 33398b3)
dropdown to choose language
(cherry picked from commit 9e2eb60)
added dropdown to choose locale to the account page.
fixed the path of the cookie.
(cherry picked from commit 871469a)
remove debug info
(cherry picked from commit c3ea6b1)
added dropdown to change locale for user.
(cherry picked from commit 1575bea)
add i18n for emails
(cherry picked from commit b6280e9)
i18n for emails
(cherry picked from commit 6118c51)
set default locale to english
(cherry picked from commit 386447b)
change locale type form String to Locale
(cherry picked from commit 8dcc595)
change file encoding
(cherry picked from commit 2cce96d)
added parameters to setSuccess, setWarning, setError
(cherry picked from commit 64ea438)
i18n for error messages
(cherry picked from commit e75d5ef)
i18n for error message in login
(cherry picked from commit 8b60c96)
add i18n for messages in account pages
(cherry picked from commit 9849d94)
fix unit test
(cherry picked from commit a70a1c7)
fix unit test
(cherry picked from commit 008744b)
locale localization :)
(cherry picked from commit f3a2144)
locale localization :)
(cherry picked from commit 21f6384)
messages refactoring
(cherry picked from commit 08f1ae7)
messages refactoring
(cherry picked from commit 3b4b53a)
messages refactoring
(cherry picked from commit 69146d4)
messages refactoring
(cherry picked from commit cd3db1d)
messages refactoring
(cherry picked from commit 715583f)
fix unit tests after message refactoring
(cherry picked from commit a82c9ff)
fix unit tests after message refactoring
(cherry picked from commit 5662d83)
fix unit tests after message refactoring
(cherry picked from commit 1188de6)
fix unit tests after message refactoring
(cherry picked from commit 90ded07)
German translations
(cherry picked from commit 9822b99)
removed newliines
(cherry picked from commit 34ca1d8)
removed java 8 dependency
(cherry picked from commit 3a23f4f)
typo
(cherry picked from commit a818122)
typo
(cherry picked from commit a818122)
forgotten properties
unit test fixes
unit test fixes
fixes after rebase
fixes after rebase
fixes after rebase
fixes after rebase
2015-03-14 14:08:06 +01:00
Bill Burke
60ecf99aa6
export saml broker SPSSO descriptor
2015-03-13 20:56:40 -04:00
Juraci Paixão Kröhling
a64ce244d5
KEYCLOAK-1101 - Added notUsername() to password policy.
2015-03-13 15:50:28 +01:00
Vlastimil Elias
43aa61ace3
KEYCLOAK-1074
...
- field label changes on login page
- added all relevant integration tests
2015-03-12 15:45:41 +01:00
Vlastimil Elias
dec8d33af1
code formatting improved to keep only real changes done for
...
KEYCLOAK-1074
2015-03-12 15:43:16 +01:00
Vlastimil Elias
c8c0449124
code formatting patched to be close to original and produce better difs
2015-03-12 15:39:31 +01:00
Vlastimil Elias
21b4f9a2f1
KEYCLOAK-1074 - Allow registration with email as username (without
...
username as separate field)
2015-03-12 15:31:19 +01:00
Stian Thorgersen
ffbb2df1f3
KEYCLOAK-571 OpenID Connect Discovery
...
KEYCLOAK-1091 JSON Web Key Set endpoint
KEYCLOAK-790 One OpenID Connect token endpoint URL
2015-03-12 11:45:13 +01:00
Bill Burke
6450c4c5f3
cleanup and docs for mappers
2015-03-11 12:05:27 -04:00
Bill Burke
451ce64907
role name mapper
2015-03-11 09:59:56 -04:00
Bill Burke
28a5e61dff
role mappers and testing
2015-03-09 21:03:35 -04:00
Bill Burke
5cf64546c8
Merge remote-tracking branch 'upstream/master'
2015-03-09 09:05:53 -04:00
Bill Burke
cdf22669f4
test oidc mappers
2015-03-09 09:05:39 -04:00
Bill Burke
d4468913dd
hardcoded saml mappers
2015-03-09 07:55:20 -04:00
Stian Thorgersen
452931bfb8
Simplified setting to/from dates
2015-03-09 11:47:08 +01:00
girirajsharma
d2188a3f55
Fixed Event Viewer pagination, date filter and added testcases.
2015-03-09 11:47:08 +01:00
girirajsharma
ce33ce2485
[KEYCLOAK-1050] - Improve filtering in Event viewer in admin app.
2015-03-09 11:47:08 +01:00
Bill Burke
5c6c30fef4
saml role list mapper
2015-03-07 19:47:34 -05:00
Bill Burke
1de285b724
mappers
2015-03-06 18:42:20 -05:00
Bill Burke
4a4158a4e4
test saml attributes
2015-03-06 18:29:36 -05:00
mposolda
db07d79009
KEYCLOAK-1066 Kerberos credential delegation support
2015-03-06 12:59:29 +01:00
Stian Thorgersen
1f5fedb0b0
Module provider loader
2015-03-06 05:30:17 +01:00
Bill Burke
db2c01caa9
more mappers
2015-03-05 19:55:53 -05:00
Bill Burke
98831ec05a
fix other claims in IDToken
2015-03-04 20:27:06 -05:00
Bill Burke
453ef808cc
ID token mapping
2015-03-04 18:39:10 -05:00
Bill Burke
94980fff29
merge conflicts
2015-03-04 17:27:44 -05:00
Bill Burke
33520e9fec
reg/account custom attributes
2015-03-04 17:25:50 -05:00
Stian Thorgersen
6c7f35c509
KEYCLOAK-1014 Don't redirect to app after reset password or verify email if new browser session
2015-03-04 13:39:11 +01:00
Stian Thorgersen
f907a749aa
KEYCLOAK-1015 Allow configuring login timeout separate to login actions
2015-03-04 08:45:01 +01:00
Bill Burke
396e0c6171
refactor mappers
2015-03-03 20:38:28 -05:00
Bill Burke
608185f06a
boolean mapper property types
2015-03-03 12:00:40 -05:00
Bill Burke
753feae49e
fixes
2015-03-02 21:39:43 -05:00
mposolda
58a7e549b2
Fix mongo to pass with testsuite
2015-03-02 12:07:31 +01:00
Bill Burke
4361ce1d42
mapper refactoring
2015-02-28 19:48:50 -05:00
Bill Burke
2da925505e
saml attribute mappers
2015-02-28 11:17:06 -05:00
Bill Burke
07b038e126
add mapper category and help text
2015-02-27 18:21:42 -05:00
Bill Burke
8533d49dfb
Merge remote-tracking branch 'upstream/master'
2015-02-27 17:28:09 -05:00
Bill Burke
1c6e90c4ef
protocol mapper ui
2015-02-27 17:21:02 -05:00
pedroigor
b45d6b896a
[KEYCLOAK-883] - Configuration option to disable token retrieval from applications.
2015-02-27 02:13:27 -03:00
pedroigor
17653e7e74
[KEYCLOAK-883] - Reverting change that redirects to error page when federating identities..
2015-02-26 15:27:32 -03:00
pedroigor
8f263a43e3
[KEYCLOAK-883] - Examples config and logging changes.
2015-02-26 12:34:33 -03:00
pedroigor
6e38964838
[KEYCLOAK-883] - Minor changes to the configuration of identity providers for clients.
2015-02-25 21:00:49 -03:00
Bill Burke
430daf4c39
Merge remote-tracking branch 'upstream/master'
2015-02-25 11:35:04 -05:00
Bill Burke
9f759ed77c
rest interface for claim mapping
2015-02-25 11:34:51 -05:00
Stian Thorgersen
195a5dffdc
Merge pull request #995 from stianst/master
...
KEYCLOAK-1017 Add server version to cached resources to prevent problems...
2015-02-25 16:15:11 +01:00
pedroigor
128cd98ce2
[KEYCLOAK-1036] - Revert.
2015-02-25 11:21:56 -03:00
Stian Thorgersen
5a10bbc8ca
KEYCLOAK-1017 Add server version to cached resources to prevent problems with browser cache
2015-02-25 15:03:01 +01:00
Stian Thorgersen
b6a512b494
KEYCLOAK-934 Extract dependencies into modules
2015-02-25 12:05:48 +01:00
Bill Burke
c20ad93807
claim mappings next phase
2015-02-24 19:37:07 -05:00
Bill Burke
100dbd5fd7
ProviderFactory.postInit()
2015-02-23 12:11:48 -05:00
Bill Burke
d06b7a47ac
Merge remote-tracking branch 'upstream/master'
2015-02-23 11:39:39 -05:00
Bill Burke
1dde3e1459
provider events
2015-02-23 11:39:24 -05:00
mposolda
9f8b59dfb6
Kerberos/LDAP fixes
2015-02-23 14:07:55 +01:00
mposolda
9dd5ecd464
Kerberos automated test
2015-02-23 13:13:34 +01:00
Bill Burke
69582ee3be
more claims work
2015-02-21 10:26:55 -05:00
Bill Burke
42ffe21f91
Merge remote-tracking branch 'upstream/master'
2015-02-20 09:23:18 -05:00
Bill Burke
20f12ea960
changes
2015-02-20 09:22:49 -05:00
mposolda
d8024b0c6c
Kerberos refactored to be federation provider. Support for Kerberos and LDAP. Username/password authentication support with kerberos credentials.
...
First step - KerberosFederationProvider
Finished KerberosFederationProvider. Added support for username/password authentication with kerberos credentials
Added Kerberos UI to LDAPFederationProvider
Fixes
2015-02-18 17:19:15 +01:00
mposolda
5da05aa62a
LDAP testing improvements. Support for embedded Kerberos server in testsuite
2015-02-16 11:50:28 +01:00
mposolda
3ef243dd42
Add authenticateByDefault flag to IdentityProviderModel
2015-02-13 10:08:51 +01:00
pedroigor
b0fb737de3
[KEYCLOAK-883] - Code cleanup and refactoring.
2015-02-13 01:27:11 -02:00
mposolda
534187f4d7
KEYCLOAK-1037 Bad error message on login form in case of expired code
2015-02-11 18:48:32 +01:00
mposolda
03d607b022
Fix showing federation links of users in admin console
2015-02-11 13:03:31 +01:00
mposolda
4b637036ac
Display error page if kerberos token is unavailable
2015-02-11 12:25:20 +01:00
Bill Burke
40f2fb91bc
Merge pull request #960 from girirajsharma/master
...
Updated BC provider versions and deprecated CertificateUtil methods.
2015-02-10 17:55:45 -05:00
mposolda
f582250b31
KEYCLOAK-1036 Don't allow registration through identity brokering in case that realm registration is disabled
2015-02-10 16:57:07 +01:00
girirajsharma
c3d7ef8066
Updated BC provider versions and deprecated CertificateUtil methods.
2015-02-10 18:44:54 +05:30
mposolda
90496f62ac
KEYCLOAK-1035 Brokered identity linked by account management may not be recognized during login
2015-02-10 13:54:45 +01:00
mposolda
d523d7f202
Ensure timestamp on clientSession is updated in AccountService when linking identity broker
2015-02-10 09:49:44 +01:00
pedroigor
ff1f10d7a7
[KEYCLOAK-883] - Refactoring to services endpoints and exposing them through admin client.
2015-02-09 21:30:21 -02:00
pedroigor
cb72fa4788
[KEYCLOAK-883] - Idp hint should be processed firts.
2015-02-08 22:01:30 -02:00
pedroigor
1e13254598
[KEYCLOAK-992] - Initial code for examples. Fixing cors when retreiving tokens.
2015-02-08 03:27:57 -02:00
pedroigor
4b1ba704ec
[KEYCLOAK-992] - Token retrieval from brokered idps.
2015-02-06 22:23:34 -02:00
mposolda
8b4e724aeb
KEYCLOAK-1025 Skip automatic logout from KC admin console for non-authorized users
2015-02-06 18:13:17 +01:00
pedroigor
99a457c5c1
[KEYCLOAK-996] - Allow application to select provider.
2015-01-30 14:02:53 -02:00
girirajsharma
2d6e1048ef
Fixed adding right CORS headers to actual and preflight CORS requests.
2015-01-30 13:57:27 +05:30
Pedro Igor
f013796324
Merge pull request #938 from pedroigor/KEYCLOAK-883
...
[KEYCLOAK-883] - Initial tests for SAML brokering.
2015-01-29 09:11:39 -02:00
pedroigor
1960c608cd
[KEYCLOAK-883] - Initial tests for SAML brokering.
2015-01-29 00:04:02 -02:00
Bill Burke
fd20a25100
Merge remote-tracking branch 'upstream/master'
2015-01-28 17:09:59 -05:00
Bill Burke
ea3bba98aa
saml frontchannel logout
2015-01-28 17:09:13 -05:00
Stian Thorgersen
6ecd9fbde7
Merge pull request #936 from stianst/master
...
Provider loaders
2015-01-28 11:51:05 +01:00
Stian Thorgersen
67ba1de56f
KEYCLOAK-999 Load providers from file-system
2015-01-28 09:15:07 +01:00
pedroigor
2065815627
[KEYCLOAK-883] - Model tests.
2015-01-27 23:53:56 -02:00
pedroigor
c2ba2a70ce
[KEYCLOAK-997] - Redirect directly to provider if password login is disabled and there's only one provider.
2015-01-23 18:20:19 -02:00
pedroigor
b9a7594113
[KEYCLOAK-883] - More SAML configuration. Using SAML builders to create AuthnRequest.
2015-01-21 23:40:20 -02:00
Stian Thorgersen
f31bece1b9
KEYCLOAK-980 Password reset is possible with expired link
2015-01-21 13:11:06 +01:00
Stian Thorgersen
e7a792f922
KEYCLOAK-983 Fix login after reset-password
2015-01-21 12:28:30 +01:00
Bill Burke
8b6a3ad8e4
Merge remote-tracking branch 'upstream/master'
2015-01-16 18:58:01 -05:00
Bill Burke
a0ba6d2c16
saml redirect logout 1st step
2015-01-16 18:57:33 -05:00
Bill Burke
ef2698936b
Merge pull request #919 from pedroigor/KEYCLOAK-884
...
[KEYCLOAK-884] - OpenID Connect UserInfo Endpoint.
2015-01-16 14:28:30 -05:00
pedroigor
4f432775ed
[KEYCLOAK-884] - OpenID Connect UserInfo Endpoint.
2015-01-16 15:45:27 -02:00
mposolda
e4a8ced8b0
KEYCLOAK-974 ServerVersionResource doesn't handle cors requests
2015-01-16 12:57:08 +01:00
Stian Thorgersen
8828d6e2f1
KEYCLOAK-965 NPE in TokenManager.verifyAccess if application is deleted
2015-01-16 11:25:05 +01:00
Stian Thorgersen
bf6c46da1c
KEYCLOAK-962 Changed access token request to use redirect_uri from initial request instead of the resolved redirect_uri
2015-01-16 11:01:03 +01:00
Stian Thorgersen
29b8c2c924
KEYCLOAK-949 Disabled user with wrong credentials receive wrong error message
2015-01-14 10:10:53 +01:00
Stian Thorgersen
abd5967be3
KEYCLOAK-957 Access Token Request does not verify redirect_uri
2015-01-14 09:59:21 +01:00
Michael Gerber
3be74cda30
check if email is null
2015-01-14 09:18:05 +01:00
pedroigor
fa2533ed11
[KEYCLOAK-883] - Initial changes.
2015-01-13 00:58:19 -02:00
mposolda
fff8ae9f8a
KEYCLOAK-942 Incorrect condition in ResourceAdminManager could cause global logout
2015-01-08 11:09:11 +01:00
pedroigor
c4892428ae
[KEYCLOAK-928] - Validate duplicated emails when updating profile.
2015-01-07 11:09:40 -02:00
Michael Gerber
181c1c8b5b
add error event if mail can not be send
2015-01-06 13:02:27 +01:00
Stian Thorgersen
45a1f4361e
Add test
2015-01-05 14:34:08 +01:00
Stian Thorgersen
39daeca09c
Merge branch 'reset-password' of https://github.com/gerbermichi/keycloak into gerbermichi-reset-password
2015-01-05 14:26:51 +01:00
gerbermichi
0c73e67372
a disabled user should not receive an email to reset the password
2015-01-05 14:07:03 +01:00
Stian Thorgersen
628437c146
KEYCLOAK-760 OAuth2 refresh token expiration date
2015-01-05 10:50:50 +01:00
Michael Gerber
019bb558d1
reset-password-email with redirect_uri and client_id
2015-01-02 14:10:44 +01:00
Michael Gerber
53e18b3ebe
fix reset-password-email
2015-01-02 12:52:21 +01:00
Stian Thorgersen
f97b71c207
KEYCLOAK-903
...
No client session for direct grant
2014-12-30 13:28:08 +01:00
Stian Thorgersen
a367473386
KEYCLOAK-902 State should not be required
2014-12-30 10:38:08 +01:00
Stian Thorgersen
e174802b0d
KEYCLOAK-825
...
Log out user sessions on password reset
2014-12-17 14:54:33 +01:00
Stian Thorgersen
6cf42db584
KEYCLOAK-891 Create server info page on admin console
2014-12-17 13:21:31 +01:00
gerbermichi
2186fe32a9
Bugfix: Can not read keycloak-server.json if the path contains a space
...
https://issues.jboss.org/browse/KEYCLOAK-892
2014-12-17 12:32:06 +01:00
apenders
f3adf02eea
Added CORS preflight support for realms/<realm>/tokens/refresh
2014-12-02 15:33:15 -07:00
Stian Thorgersen
a843e31c12
KEYCLOAK-862 Use HmacSHA256 for code signatures
2014-11-27 10:02:08 +01:00
Bill Burke
46983d68f3
move ServerCookie to core
2014-11-14 09:20:03 -05:00
mposolda
a94ab5883d
KEYCLOAK-835 Move AdapterConstants to different package
2014-11-10 22:16:20 +01:00
Marek Posolda
c0f377c8c7
Merge pull request #841 from jpkrohling/JPK-KEYCLOAK-821
...
KEYCLOAK-821 - Support for comma-separated list of file names to import.
2014-11-06 20:32:31 +01:00
Juraci Paixão Kröhling
cd0ad70952
KEYCLOAK-821 - Support for comma-separated list of file names to import.
2014-11-05 17:04:17 +01:00
Stian Thorgersen
e7625c2bb1
KEYCLOAK-820 Don't expose realm private key through admin endpoints
2014-11-05 15:34:56 +01:00
Bill Burke
9c175bfb5d
Merge remote-tracking branch 'upstream/master'
2014-11-04 15:55:47 -05:00
Bill Burke
ede59a4441
fix jax-doclets
2014-11-04 15:55:33 -05:00
Stian Thorgersen
7327423a03
Fix ResetPasswordTest
2014-11-04 13:05:50 +01:00
Stian Thorgersen
bb2de4dc59
KEYCLOAK-787 Clicking back to login after sending password reset email fails
2014-10-31 13:59:56 +01:00
Stian Thorgersen
9b0d5acb50
KEYCLOAK-704 KEYCLOAK-768 Improvements to access code generation
2014-10-31 12:45:03 +01:00
Stian Thorgersen
8adad9dddf
KEYCLOAK-806
...
Increase defaults for 'SSO Session Idle Timeout'
2014-10-31 09:41:21 +01:00
Bill Burke
cf747dac22
remove info logging
2014-10-30 09:53:06 -04:00
Bill Burke
0183ac43bc
aud should be client-id, issuer should be realm
2014-10-29 15:56:25 -04:00
Stian Thorgersen
6e4785e74c
KEYCLOAK-777 No login event for social login
2014-10-28 19:56:41 +01:00
Bill Burke
12e2a4698d
idp descriptor
2014-10-28 12:49:31 -04:00
Bill Burke
e3609cc85b
app importer
2014-10-28 11:54:58 -04:00
Bill Burke
971f0f5c16
publish protocol support
2014-10-24 11:25:04 -04:00
Bill Burke
1be070e34d
cleanup
2014-10-24 11:00:34 -04:00
Bill Burke
ce76270ad8
saml key refactor
2014-10-24 10:58:32 -04:00
mposolda
f3da9760a3
Send node registration at 1st request instead of deployment startup. Bugfixing
2014-10-21 23:15:21 +02:00
Bill Burke
668497df4d
upload keys
2014-10-21 16:33:17 -04:00
mposolda
01c705b4d3
KEYCLOAK-759 Added adapter clustering to admin console
2014-10-21 12:32:53 +02:00
Stian Thorgersen
dd4b2f811b
KEYCLOAK-710 Ignore missing roles in access-code
2014-10-21 11:15:35 +02:00
Stian Thorgersen
6b2a4229e3
KEYCLOAK-700 Check path is valid in account/login-redirect
2014-10-21 09:57:56 +02:00
Stian Thorgersen
63b41e2548
KEYCLOAK-703 Check valid origin is passed to login-status-iframe
2014-10-21 09:57:56 +02:00
Stian Thorgersen
ed895ce02d
KEYCLOAK-699 Set maximum size of qr-code
2014-10-21 09:57:56 +02:00
mposolda
7d8f265789
KEYCLOAK-759 dynamic registration of managementUrls in cluster
2014-10-17 21:51:46 +02:00
Bill Burke
8fbc8fc736
Merge remote-tracking branch 'upstream/master'
2014-10-14 18:39:08 -04:00
Bill Burke
7760887ac1
app cert support, bug fixes
2014-10-14 18:38:48 -04:00
Stian Thorgersen
106a0cb48d
KEYCLOAK-755 Support env variables in keycloak-server.json
2014-10-14 15:06:18 +02:00
Stian Thorgersen
1021e8af5c
KEYCLOAK-753 Add 'username:' prefix to remember me cookie to prevent issue with old cookie
2014-10-14 13:44:03 +02:00
Stian Thorgersen
4d401224de
KEYCLOAK-746 Allow linking to account from external provider
2014-10-13 10:48:45 +02:00
Bill Burke
4d007c776a
generate/store realm certificate
2014-10-11 10:49:04 -04:00
Bill Burke
deffa9b4e1
oauth id in admin console
2014-10-10 16:55:57 -04:00
Bill Burke
0ace5cd746
merge conflicts
2014-10-09 18:26:14 -04:00
Bill Burke
94da99bf10
use app id in admin console urls
2014-10-09 18:22:02 -04:00
mposolda
9954d68a1f
KEYCLOAK-748 cluster-aware logout for non-distributable apps
2014-10-09 21:33:07 +02:00
mposolda
ac8b43358d
Reduce logging
2014-10-08 23:28:02 +02:00
mposolda
7e7406ddb7
KEYCLOAK-743 Stateless session mgmt. Drop statistics for adapters.
2014-10-08 22:18:10 +02:00
Bill Burke
a1d1877751
ClientModel attributes and protocol
2014-10-08 10:54:13 -04:00
Bill Burke
5f1e6f3a23
merge
2014-10-07 18:17:44 -04:00
Bill Burke
6d5ab0f66b
saml backchannel logout
2014-10-07 18:06:02 -04:00
Bill Burke
e01424b815
Merge pull request #741 from patriot1burke/master
...
saml basic
2014-10-04 22:15:56 -04:00
Bill Burke
e3a3933390
saml basic
2014-10-04 21:27:48 -04:00
Stian Thorgersen
0d5be568f8
KEYCLOAK-722 Refreshing token throws RuntimeException if realm keys have changed
2014-10-03 13:23:21 +02:00
Stian Thorgersen
d6f030a05a
KEYCLOAK-662 NPE when using direct grant API with email as username
2014-10-03 12:10:52 +02:00
mposolda
e6121f301f
KEYCLOAK-732 AuthenticationManager.logout should logout just current userSession
2014-10-02 22:52:44 +02:00
mposolda
72b5632cfe
KEYCLOAK-731 Support for replacing configuration of Java adapters with system properties
2014-10-02 19:15:37 +02:00
mposolda
95521e8a95
KEYCLOAK-709 ResourceAdminManager.logoutApplication shouldn't immediatelly fail with RuntimeException
2014-10-01 23:20:49 +02:00
Bill Burke
6cf62a2768
move pre-auth
2014-10-01 14:57:52 -04:00
Bill Burke
cbc383d494
finish protocol refactoring
2014-10-01 14:19:59 -04:00
Bill Burke
546d45b009
protocol abstraction
2014-10-01 10:38:42 -04:00
Bill Burke
4b399fe05a
login protocol abstraction
2014-10-01 10:01:42 -04:00
Bill Burke
e32f73880f
Merge remote-tracking branch 'upstream/master'
2014-09-30 15:58:39 -04:00
Bill Burke
63b65c933b
token service refactoring
2014-09-30 15:58:20 -04:00
Stian Thorgersen
1d4e842cc0
Fixes to Mongo user session provider
2014-09-30 14:24:49 +02:00
Stian Thorgersen
99c73a9cc7
Clustering support
2014-09-30 09:40:20 +02:00
Bill Burke
fc867e59ea
action url refactor
2014-09-29 16:57:58 -04:00
Bill Burke
75a3093dda
login refactor phase 2, still more to do
2014-09-29 16:15:33 -04:00
Bill Burke
67f10bee24
Merge remote-tracking branch 'upstream/master'
2014-09-29 09:56:37 -04:00
Bill Burke
524b423733
ClientSession everywhere refactor phase1
2014-09-26 17:44:33 -04:00
Stian Thorgersen
f2e97ff9d6
Add test to add/remove attributes to user through admin endpoints
2014-09-25 19:35:57 +02:00
Bill Burke
66d58476d0
refactor security page flow
2014-09-23 11:05:10 -04:00
Bill Burke
bf42227224
remove junk
2014-09-22 16:35:22 -04:00
Bill Burke
99a6713e6f
clientsession notes
2014-09-22 16:34:42 -04:00
Bill Burke
0b8b31a3ea
KEYCLOAK-705
2014-09-19 10:00:47 -04:00
Stian Thorgersen
dcb5717154
KEYCLOAK-696 Display Keycloak version in admin console
2014-09-18 13:24:03 +02:00
mposolda
89471b7db1
KEYCLOAK-695 Let KEYCLOAK_REMEMBER_ME cookie to be valid for 1 year
2014-09-18 11:03:44 +02:00
mposolda
1049bca433
Prefill login form just if rememberMe enabled for the realm
2014-09-17 08:54:29 +02:00
mposolda
5352872b4b
Use KEYCLOAK_REMEMBER_ME as hint to prefill login form. Change lifespan of KEYCLOAK_IDENTITY to maxSsoSessionLifespan
2014-09-16 22:09:27 +02:00
mposolda
1be2bff95f
Typo
2014-09-12 16:57:02 +02:00
Stian Thorgersen
811cfd52c9
KEYCLOAK-657 Set cache-control for keycloak.js and login-iframe
2014-09-12 13:46:56 +02:00
Stian Thorgersen
7c15a70f53
Fixes to KEYCLOAK-682
2014-09-12 12:26:52 +02:00
Stian Thorgersen
5d141d4d8a
KEYCLOAK-682 Only send logout admin action to clients associated with user session
2014-09-12 11:47:11 +02:00
mposolda
6f173d4554
KEYCLOAK-678 Preserve form values in account mgmt after error
2014-09-11 20:54:48 +02:00
mposolda
649a40f58c
KEYCLOAK-676 Validate email address format during registration or account mgmt
2014-09-11 20:05:00 +02:00
Stian Thorgersen
b23463a1d2
KEYCLOAK-653 Add theme support to welcome-pages
2014-09-11 15:58:29 +02:00
Stian Thorgersen
280cbf2174
KEYCLOAK-680 Add/remove social-links through admin api
2014-09-11 12:09:55 +02:00
mposolda
aa7bbeb11b
Support for cors in PublicRealmResource
2014-09-10 13:05:53 +02:00
mposolda
52920119bd
Ensure that ServerInfo request is authorized and add CORS support to it
2014-09-10 10:42:05 +02:00
Stian Thorgersen
557de7690e
Fix CRSF protection on Chrome, and add check if 'Referer' header
2014-09-10 10:32:56 +02:00
Bill Burke
e3e32982a0
change CSRF to random value
2014-09-09 13:27:34 -04:00
Bill Burke
ac29db51e5
nolog CORS exception
2014-09-09 12:51:55 -04:00
Bill Burke
d0a3a04d34
CSRF
2014-09-09 12:06:48 -04:00
Stian Thorgersen
3530fa6259
KEYCLOAK-666 Update session last refreshed on every token refresh
2014-09-09 11:01:24 +02:00
Stian Thorgersen
8c8c44e50f
KEYCLOAK-658 Fix searching for users
2014-09-02 10:01:44 +02:00
Stian Thorgersen
31b0f5543f
Fixes
2014-08-29 17:11:18 +02:00
Stian Thorgersen
39c0be5d99
KEYCLOAK-652
...
Social user can't set password
2014-08-29 16:51:10 +02:00
Stian Thorgersen
b9d0f64f74
Added password token to use inplace of plain-text password for totp
2014-08-28 13:51:55 +02:00
Stian Thorgersen
55d614fce8
Reduce log in UserFederationResource
2014-08-28 11:26:55 +02:00
Stian Thorgersen
3bfe3d256e
Rename audit to events
2014-08-28 10:56:37 +02:00
mposolda
fb18004c1d
KEYCLOAK-643 Handle flows with adding user with existing username or email in federation providers
2014-08-27 12:19:23 +02:00
Stian Thorgersen
55bd889a0f
KEYCLOAK-531 Reduce info level logging
2014-08-27 11:17:24 +02:00
mposolda
b3b480c25f
Display proper error message if LDAP-linked user couldn't be deleted due to read-only mode
2014-08-26 19:10:48 +02:00
mposolda
fd9d2ba4d5
Handle exceptions and UI errors when user is read only. Some sync issues
2014-08-26 12:54:05 +02:00
mposolda
6c7d0f27a7
More tooltips for LDAP and generic federation. Minor fixes
2014-08-25 16:28:52 +02:00
Bill Burke
e99afec7ec
import console from export
2014-08-21 17:17:09 -04:00
Bill Burke
5dd84f1d9a
fix AccountService referrer problems
2014-08-20 14:20:59 -04:00
Bill Burke
47f361a4ab
nocache for fed provider list
2014-08-20 11:29:45 -04:00
Bill Burke
6e7924da76
demo fixes
2014-08-20 11:08:40 -04:00
Bill Burke
c38abb2cfe
?
2014-08-18 18:52:51 -04:00
Bill Burke
faf18dfdfd
fix cookie parsing problem
2014-08-18 18:36:36 -04:00
Bill Burke
2dc32fb8c9
fix menu error
2014-08-18 18:06:23 -04:00
Bill Burke
c86a6ba3f3
fix admin reset email
2014-08-15 11:46:38 -04:00
Bill Burke
5dca2a3588
expanded token service coverage
2014-08-14 21:01:05 -04:00
Bill Burke
cfee00d4c5
fix relative uri problem
2014-08-14 11:01:04 -04:00
Bill Burke
29691a3167
Merge pull request #626 from patriot1burke/master
...
more tooltips, change password
2014-08-13 12:17:48 -04:00
Bill Burke
edf73af508
change password
2014-08-13 10:35:49 -04:00
mposolda
4bac0474c6
Sync UI for generic providers
2014-08-12 18:12:28 +02:00
mposolda
f0b66a2241
Admin console UI for sync of users from LDAP. Sync fixes
2014-08-12 18:12:27 +02:00
Bill Burke
abb1647672
Merge pull request #619 from patriot1burke/master
...
fix logout
2014-08-12 10:06:44 -04:00
Bill Burke
114c1b95fa
fix logout
2014-08-12 10:06:19 -04:00
Stian Thorgersen
f95418dfc9
KEYCLOAK-592 Display login form with error message if trying to login with social provider where email already exists
2014-08-12 12:06:13 +01:00
Bill Burke
7c97e02715
X-Frame-Options, Content-Security-Policy
2014-08-11 17:45:01 -04:00
Stian Thorgersen
3f83538fc1
Merge pull request #612 from stianst/master
...
KEYCLOAK-616 Not require registration to add a new social user
2014-08-11 15:35:54 +01:00
Stian Thorgersen
3040f4e89f
KEYCLOAK-616 Not require registration to add a new social user
2014-08-11 15:34:57 +01:00
mposolda
8ba7559cac
Fix transaction handling in KeycloakModelUtils.runJobInTransaction. Start sync tasks for configured federation providers at startup
2014-08-11 13:51:44 +02:00
mposolda
d699404ce7
Support for periodic users sync
2014-08-10 23:23:50 +02:00
mposolda
5cb6c4e77c
Improve TimerSPI to support cancelling of previously scheduled tasks
2014-08-10 23:17:39 +02:00
Bill Burke
48f7efc97f
@NoCache where appropriate
2014-08-10 12:28:43 -04:00
Bill Burke
9aa6b4cbfa
optimize imports
2014-08-10 12:17:45 -04:00
Bill Burke
dc4e8603d7
change logout behavior
2014-08-08 18:33:37 -04:00
Bill Burke
32a19563a5
KEYCLOAK-547
2014-08-06 19:15:52 -04:00
Bill Burke
aff32f69bb
version
2014-08-06 15:44:50 -04:00
Bill Burke
5b5fea347a
improved oauth login/grant
2014-08-05 19:36:19 -04:00
Bill Burke
19e1ddff1d
logging
2014-08-05 16:04:13 -04:00
Bill Burke
ea0ceeb65d
Merge pull request #589 from patriot1burke/master
...
app full scope
2014-08-04 16:26:51 -04:00
Bill Burke
a497c69758
relative logout
2014-08-04 16:17:35 -04:00
Bill Burke
731d75c756
app full scope by default
2014-08-04 16:04:10 -04:00
mposolda
5edb84ccfb
Ensure that displayName is persisted. Add 'user' to ActiveDirectory classes
2014-08-04 16:42:48 +02:00
Bill Burke
60a564dcfd
fix fed example
2014-08-03 10:53:37 -04:00
Bill Burke
101a72cd65
remove AuthenticationProvider/Link
2014-08-01 18:03:48 -04:00
Bill Burke
d1c5c55a61
switch to a get
2014-08-01 13:28:17 -04:00
Bill Burke
bdc31d9459
Merge remote-tracking branch 'upstream/master'
2014-08-01 13:18:46 -04:00
Bill Burke
f08c42a37e
token validation
2014-08-01 13:18:32 -04:00
Stian Thorgersen
6cbeeb1b1a
KEYCLOAK-591 Require SSL for all external requests by default
2014-08-01 13:52:04 +01:00
Bill Burke
705da88daa
fix cache setup
2014-07-31 14:05:23 -04:00
Bill Burke
94c06f3f5d
fed ui
2014-07-31 13:13:48 -04:00
Bill Burke
b72a7db6fe
federation display name
2014-07-31 10:51:04 -04:00
Bill Burke
d0dc75c06f
federation ui
2014-07-30 22:52:39 -04:00
Stian Thorgersen
fa01d53f9e
KEYCLOAK-545 Stop NPE if no client_secret is specified or bearer-only application is used for grants/access
2014-07-30 16:41:07 +01:00
Stian Thorgersen
50bc53d673
KEYCLOAK-562 Cache theme instances
2014-07-30 16:06:08 +01:00
Stian Thorgersen
fcc4781e3a
Updated admin endpoints and console to use oauth client name/clientId to retrieve a oauth client
2014-07-30 14:10:25 +01:00
Stian Thorgersen
614c718304
KEYCLOAK-581 Add login_hint query param to login
2014-07-30 13:43:46 +01:00
Stian Thorgersen
02a59812e6
Added ClientSessionModel to UserSessionProvider
2014-07-29 16:10:41 +01:00
Stian Thorgersen
7f4849e165
Merge pull request #560 from stianst/demo-non-localhost
...
KEYCLOAK-579 Use relative urls in examples
2014-07-28 10:48:30 +01:00
Stian Thorgersen
628c7dd92a
KEYCLOAK-579 Use relative urls in examples
2014-07-28 10:41:21 +01:00
Bill Burke
3bb0842eae
federation iteration 2
2014-07-25 21:05:45 -04:00
Stian Thorgersen
614bee3061
KEYCLOAK-570 Add use-resource-role-mappings to WildFly installation
2014-07-25 11:53:10 +01:00
Bill Burke
1b14444eba
rename FederationProvider to UserFederationProvider
2014-07-24 11:11:21 -04:00
Stian Thorgersen
511cc483cb
Moved audit/tests and model/tests to testsuite
2014-07-24 13:49:15 +01:00
Bill Burke
43d08f2d05
federation iteration 1 complete
2014-07-23 17:05:49 -04:00
Bill Burke
171e9b1ce9
Merge remote-tracking branch 'upstream/master'
2014-07-23 15:10:48 -04:00
Bill Burke
eec582e704
merge
2014-07-23 15:10:36 -04:00
Stian Thorgersen
d6f5bf6cde
Moved rememberMe, usernameUsed fields from AccessCode to UserSessions. Change AccessCode to have a single action instead of a list of required actions, also used action for codes that needs user to grant permissions first. Finally removed expiration time on access code and use timestamp directly
2014-07-23 15:58:09 +01:00
Bill Burke
f1d72d0b6d
fed 2
2014-07-23 10:42:18 -04:00
Bill Burke
148d494905
federation iteration
2014-07-23 10:21:25 -04:00
Stian Thorgersen
b196d0dded
Remove access token from access code, and create token when code is exchanged for token
2014-07-22 09:37:21 +01:00
Bill Burke
f275ecf6d5
cache settings
2014-07-18 11:30:10 -04:00
mposolda
3dff4afe83
Export/import improvements and fixes
2014-07-17 21:31:33 +02:00
Stian Thorgersen
c21be01e97
Merge pull request #529 from stianst/master
...
KEYCLOAK-435 Added pagination support for users
2014-07-16 18:04:36 +01:00
Stian Thorgersen
72d240a57e
KEYCLOAK-435 Added pagination support for users
2014-07-16 17:54:11 +01:00
Bill Burke
8fbfba907b
Merge remote-tracking branch 'upstream/master'
2014-07-16 12:05:31 -04:00
Bill Burke
f342a8c7a3
move credential validation to UserProvider
2014-07-16 12:05:15 -04:00
Stian Thorgersen
e0ec121012
KEYCLOAK-559 If session iframe is enabled, check this before doing a login if onload is check-sso
2014-07-16 10:47:42 +01:00
Bill Burke
a5593469ae
rename ModelProvider->RealmProvider
2014-07-15 15:44:50 -04:00
Bill Burke
484a4c1454
user provider refactor complete
2014-07-15 15:25:06 -04:00
Bill Burke
ff86bdc35f
userprovider split
2014-07-15 12:11:12 -04:00
mposolda
c14840a4c0
More cleanup after rebase
2014-07-15 14:44:38 +02:00
mposolda
24a492ffe0
Export/import refactoring to use same representation as admin endpoints
2014-07-15 05:35:24 +02:00
Bill Burke
d2c27daa16
changes
2014-07-14 11:31:25 -04:00
Stian Thorgersen
3f68180ee7
KEYCLOAK-512 Pagination support for sessions
2014-07-14 11:49:59 +01:00
Stian Thorgersen
d625fb014c
Added JPA connection provider and added basic support for multiple transactions to KeycloakSession
2014-07-14 10:10:03 +01:00
Bill Burke
626cecba95
enlist
2014-07-11 19:43:37 -04:00
Bill Burke
5f5316fbdc
session transaction
2014-07-11 19:29:11 -04:00
Stian Thorgersen
86671a2354
Started UserSessionProvider
2014-07-10 16:48:25 +01:00
Stian Thorgersen
7491b1c369
KEYCLOAK-553 Added minified keycloak.js
2014-07-09 12:23:29 +01:00
Stian Thorgersen
ad6d52cb0f
Removed model methods from KeycloakSession
2014-07-08 15:27:42 +01:00
Stian Thorgersen
8dc293f629
Removed removeAllData from model
2014-07-08 15:27:42 +01:00
Stian Thorgersen
621cae61b6
Added hybrid model provider with jpa stores
2014-07-08 12:04:09 +01:00
mposolda
ffc30b4c03
Changes in representations - adding role mappings under user representation
2014-07-07 22:48:53 +02:00
Stian Thorgersen
38857cf2e6
Remove notBefore from users
2014-07-07 16:23:53 +01:00
Stian Thorgersen
099743d448
Rename loginName to username
2014-07-07 15:56:21 +01:00
Stian Thorgersen
270d6108ca
KEYCLOAK-501 Check if old session for browser exists and delete before creating a new
2014-06-27 12:55:33 +01:00
Stian Thorgersen
26eac398e0
KEYCLOAK-541 Create session after resetting password through email
2014-06-27 12:20:32 +01:00
Stian Thorgersen
34a1923d18
Refactor to prepar for splitting model
2014-06-27 09:39:06 +01:00
mposolda
b1cfab34fd
Support for test of LDAP connection and authentication
2014-06-24 10:03:14 +02:00
mposolda
aea4fd8e30
Upgrade to picketlink 2.6.0.CR5. Support for sync whole UserModel into AuthenticationProvider
2014-06-23 15:29:00 +02:00
Stian Thorgersen
d73d2e0788
Started test tools module
2014-06-23 11:37:03 +01:00
Bill Burke
d21a19925b
stateless access codes
2014-06-20 10:37:27 -04:00
Stian Thorgersen
469d044254
KEYCLOAK-532
2014-06-17 14:07:07 +01:00
Bill Burke
1eafb01c8d
keycloak-521
2014-06-16 11:59:27 -04:00
Bill Burke
cbea141a54
cache impl
2014-06-13 17:17:45 -04:00
Bill Burke
2ae2067841
refactor for caching again
2014-06-12 11:11:14 -04:00
Bill Burke
0dd06e3343
model refactor for caching
2014-06-10 18:50:08 -04:00
Bill Burke
2f3c8bf079
cache refactor
2014-06-06 15:12:58 -04:00
Stian Thorgersen
5f6687ec62
KEYCLOAK-244 Social should be stateless
2014-06-05 10:09:17 +01:00
Bill Burke
9410adf9ce
fix deadlocks
2014-06-02 21:33:43 -04:00
Stian Thorgersen
5dafad71ac
Set cache-control on static resources from themes
2014-05-30 16:59:25 +01:00
Stian Thorgersen
24ac6cbbac
Fix themes displayed multiple times in admin console
2014-05-29 10:28:05 +01:00
Stian Thorgersen
dd30a35e1e
Disable session iframe in Corodova
2014-05-28 17:29:13 +01:00
Stian Thorgersen
9261c1608f
Fix missing @Path in admin console
2014-05-27 13:40:32 +01:00
Bill Burke
199c786e22
jaxrs-doclet support
2014-05-26 20:41:33 -04:00
Bill Burke
1f8b2d4c7b
stuff
2014-05-26 12:49:56 -04:00
Bill Burke
ab2932f75e
effective roles to oauth
2014-05-23 19:01:09 -04:00
Bill Burke
e4232c73c6
admin rest api example
2014-05-23 18:20:55 -04:00
Bill Burke
54cc095ff5
admin cors support
2014-05-23 16:02:14 -04:00
Bill Burke
236f3ab768
admin cors
2014-05-23 09:37:07 -04:00
Stian Thorgersen
37099f3177
KEYCLOAK-494
...
Session state iframe uses first redirect uri for a client
2014-05-22 17:51:51 +01:00
Bill Burke
0d9e14d4c7
Merge remote-tracking branch 'upstream/master'
2014-05-21 10:56:21 -04:00
Stian Thorgersen
73f59417bd
Remove index.html from redirect on '/auth/admin/'
2014-05-21 12:47:07 +01:00
Stian Thorgersen
6814230193
Fix NPE in account service
2014-05-21 12:13:00 +01:00
Stian Thorgersen
d68131ac00
KEYCLOAK-475
...
Log is shown in menu when audit is disabled for realm
2014-05-21 12:05:32 +01:00
Stian Thorgersen
952f098440
KEYCLOAK-483
...
Remove 'index.html' from console url
2014-05-21 11:16:48 +01:00
Stian Thorgersen
f08477ea66
Run import before creating default realm
2014-05-21 11:16:47 +01:00
Stian Thorgersen
eb47d43497
For installed app urn redirect to a page instead of returning the html, this is to prevent NPE if page is refreshed
2014-05-21 10:32:03 +01:00
Stian Thorgersen
59440840fe
Read keycloak-sever.json from <JBOSS_HOME>/standalone/configuration if it exists
2014-05-21 09:35:01 +01:00
Bill Burke
ae3c4e8459
default web origin is redirect uris
2014-05-20 17:40:45 -04:00
Bill Burke
8e79f550b0
Merge remote-tracking branch 'upstream/master'
2014-05-20 16:49:28 -04:00
Bill Burke
0137918701
urn
2014-05-20 16:49:25 -04:00
Bill Burke
79828ddc78
Merge pull request #409 from patriot1burke/master
...
fix urn redirect uri
2014-05-20 16:15:40 -04:00
Bill Burke
fcca9dd90a
fix urn redirect uri
2014-05-20 16:15:13 -04:00
Stian Thorgersen
b09e2f697e
Email audit listener
2014-05-20 17:04:17 +01:00
Bill Burke
b3dd349342
check redirect uri exists in token service
2014-05-20 11:38:35 -04:00
Bill Burke
57f0ea0638
Merge remote-tracking branch 'upstream/master'
2014-05-20 09:27:18 -04:00
Bill Burke
f723ac79d1
redirect not required with bearer only
2014-05-20 09:19:04 -04:00
Stian Thorgersen
cc97265c06
Add realm option to enable/disable Resource Owner Password Credentials Grant
2014-05-20 11:32:22 +01:00
Stian Thorgersen
8d1149dc07
Add email theme config for realm
2014-05-20 11:00:43 +01:00
Bill Burke
a53206995a
stuff
2014-05-19 15:08:38 -04:00
Bill Burke
11c23a7945
require redirect
2014-05-19 14:44:36 -04:00
Stian Thorgersen
a3d08e7191
Added theme support to emails
2014-05-19 17:34:58 +01:00
Bill Burke
7e8b16f975
acct svc + sessions
2014-05-19 17:34:48 +01:00
Bill Burke
dc7923c436
fix brute shutdown
2014-05-19 10:33:49 -04:00
Bill Burke
c2bf6c3822
Merge remote-tracking branch 'upstream/master'
2014-05-17 14:24:37 -04:00
Bill Burke
ab8de6ba25
client user-session association
2014-05-17 14:24:32 -04:00
Stian Thorgersen
855269f35d
Added 'keycloak-server.json' for configuring the server
...
Added SPI interface to detect SPI's
Converted Model to SPI/Provider to be loaded through ProviderSessionFactory
2014-05-16 17:33:22 +01:00
Stian Thorgersen
a3ed02ea16
Merge pull request #391 from jeroenr/master
...
CORS improvements and clean up
2014-05-16 16:06:43 +01:00
Jeroen Rosenberg
84f13eadc1
* Possibility to add exposed headers
...
* Default allow headers
* Fix warnings, unused import, redundancies
2014-05-16 16:39:17 +02:00
Jeroen Rosenberg
cedf43c084
Refactored joining of allowed headers to be more efficient
2014-05-16 14:28:49 +02:00
Jeroen Rosenberg
4c281a39bb
Unused import
2014-05-16 14:10:13 +02:00
Jeroen Rosenberg
5533357c46
Added HEAD as default allowed method for Cors
2014-05-16 14:09:50 +02:00
Bill Burke
67e3e60f28
test sso idle, logout on idle
2014-05-15 23:10:14 -04:00
Bill Burke
bc2360e985
sso session idle and max lifespan
2014-05-15 17:25:57 -04:00
Bill Burke
27efd3c0a4
ssoSessionIdleTimeout refactor
2014-05-15 13:53:28 -04:00
Bill Burke
26f6da10dd
Merge pull request #385 from patriot1burke/master
...
Improved role and scope mapping screens
2014-05-14 14:50:52 -04:00
Bill Burke
7ba8e09aef
improved scope screen
2014-05-14 14:50:11 -04:00
Stian Thorgersen
7bea4af6c9
Redirect to login page if logged out and submitting forms in acct mngmt
2014-05-14 17:46:30 +01:00
Bill Burke
0e0dfb60e0
composite role mapping listing
2014-05-14 10:37:50 -04:00
Stian Thorgersen
f4f9b1e323
KEYCLOAK-431 View open sessions, and logout all sessions, through account management
2014-05-14 11:56:28 +01:00
Bill Burke
639b7c5610
fix IE problems
2014-05-13 22:33:46 -04:00
Bill Burke
b30809d681
httponly, ie keycloak.js fix
2014-05-13 22:06:32 -04:00
Bill Burke
e8f8829a76
cors example
2014-05-13 17:17:27 -04:00
Bill Burke
ea672e36ae
rename realm management app
2014-05-12 19:28:34 -04:00
Bill Burke
1e1991e285
per-realm admin
2014-05-12 10:12:31 -04:00
Bill Burke
1194e40ef2
iframe check login
2014-05-10 11:23:44 -04:00
Stian Thorgersen
624fcf6197
KEYCLOAK-421 Set realm admin apps to bearer-only
2014-05-09 12:03:39 +01:00
Stian Thorgersen
6f0b12174c
KEYCLOAK-432 Added user sessions
2014-05-09 11:52:45 +01:00
Bill Burke
d957cc4883
Merge remote-tracking branch 'upstream/master'
2014-05-08 20:03:20 -04:00
Bill Burke
2d949b63b5
keycloak.js login for admin
2014-05-08 19:55:57 -04:00
mposolda
c51011acef
KEYCLOAK-354 Possibility for admin to see social links of some user in admin console
2014-05-07 17:28:13 +02:00
mposolda
6b1e0401ba
KEYCLOAK-361 it shouldn't be possible to remove last social link if user don't have password
2014-05-07 17:28:13 +02:00
Bruno Oliveira
334b981741
notBefore wasn't being assigned
2014-05-07 08:10:03 -03:00
Bill Burke
5edf05d569
Merge pull request #366 from mposolda/export-import-rebased
...
Full export-import implemented. Remove dependency of mongo on picketlink...
2014-05-06 21:17:51 -04:00
Bill Burke
f987d331b7
/rest removal and pom fixes
2014-05-06 20:43:01 -04:00
Bill Burke
64f591769a
remove /rest from RealmsResource
2014-05-06 20:21:49 -04:00
mposolda
0801c9c120
Full export-import implemented. Remove dependency of mongo on picketlink-common
2014-05-06 22:15:57 +02:00
Stian Thorgersen
1d760388de
KEYCLOAK-441 Remove org.json
2014-05-06 12:32:29 +01:00
Bill Burke
e7c64b7812
adatper deployment context fixes, picketlink abstraction
2014-05-05 18:20:52 -04:00
Bill Burke
7ff2c77a82
relative uri tests and fixes
2014-05-02 12:30:08 -04:00
Bill Burke
e5e43173bc
relative redirect uris
2014-05-02 10:58:29 -04:00
Bill Burke
2576975988
fix mimetype
2014-04-30 14:25:23 -04:00
Bill Burke
8c5ae9d052
fix mimetype
2014-04-30 14:24:37 -04:00