libre.sh/keycloak-scim
2
0
Fork 0
Code Issues 14 Pull requests Releases Packages Activity Actions 6
15115 commits 4 branches 5 tags 480 MiB
Commit graph

15115 commits

This branch
This branch
All branches
Author SHA1 Message Date
Alexander Schwartz
621da7b803 Credential validation shouldn't invalidate the user in the cache 
Instead create a new instance of LegacyUserCredentialManager to ensure all calls are routed via the CacheAdapter and its SubjectCredentialManagerCacheAdapter.

Closes #14309
 2022-09-13 09:36:19 -03:00
Martin Bartoš
aa5a4e3d84
Remove remote WildFly server from the testsuite (#14321) 
Closes #14319
 2022-09-13 12:49:40 +02:00
fwojnar
cee69e1abc
Remove Server Config Migration tests from testsuite (#14334) 
Closes #14303

Co-authored-by: wojnarfilip <fwojnar@redhat.com>
 2022-09-13 12:47:35 +02:00
fwojnar
a58f0593a6
Remove Clean Start test from testsuite (#14345) 
Closes #14305

Co-authored-by: wojnarfilip <fwojnar@redhat.com>
 2022-09-13 12:46:55 +02:00
Christian Lutz
9e41053587 [fixes #9287] Fix *-Capability OSGI manifest to provide ClaimInformationPointProviderFactory via service loader 2022-09-13 07:22:45 -03:00
Václav Muzikář
490590625d Fix listApplicationsThirdParty 2022-09-13 08:33:31 +02:00
Jurjan-Paul Medema
eb0124e3e1
Mapper option 'Aggregate attribute values' is now applied to group hierarchy (#7871) 
Closes #11255
 2022-09-12 13:34:28 +02:00
Stian Thorgersen
68140dfb1f
Update ci.yml (#14352) 2022-09-12 13:32:09 +02:00
vramik
3120848ef0 Unify package name format in jpa map store 
Closes #14276
 2022-09-12 13:03:17 +02:00
Stian Thorgersen
8d5c11a4a5
Enable test reporting for Foresight (#14333) 
* Enable test reporting for Foresight

* Temporarily allow running CI on main

This is to allow generating more data for Foresight
 2022-09-12 11:19:23 +02:00
Lex Cao
320320f419
Make post_logout_redirect_uri configurable for legacy admin UI (#14324) 
Closes #14246
 2022-09-12 11:12:38 +02:00
Jan Adriaan Leegwater
1f9b6d9151
Update messages_nl.properties (#14330) 2022-09-12 11:12:26 +02:00
Sebastian Schuster
cc8567e9f4 14294 fixed admin event expiration sql error 2022-09-12 09:15:47 +02:00
Christoph Leistert
7e5b45f999 Issue #8749: Add an option to control the order of the event query and admin event query 2022-09-11 21:30:12 +02:00
Alexander Schwartz
1d2d3e5ca5 Move UserFederatedStorageProvider into legacy module 
Closes #13627
 2022-09-11 18:37:45 +02:00
Thomas Darimont
962a685b7b KEYCLOAK-15773 Control availability of admin api and admin-console via feature flags 
Inline profile checks for enabled admin-console to avoid issues during
static initialization with quarkus.

Potentially Re-enable admin-api feature if admin-console is enabled
via the admin/admin2 feature flag.

Add legacy admin console as deprecated feature flag
Throw exception if admin-api feature is disabled but admin-console is enabled

Adapt ProfileTest

Consider adminConsoleEnabled flag in QuarkusWelcomeResource
Fix check for Admin-Console / Admin-API feature dependency.

Add new features to approved help output files

Co-authored-by: Stian Thorgersen <stian@redhat.com>
Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
 2022-09-09 18:18:51 -03:00
Pedro Igor
3518362002 Validate auth time when max_age is sent to brokered OPs 
Closes #14146
 2022-09-09 10:30:51 -03:00
Pedro Igor
a0079b516b
Allow setting response mode (#14104) 
Closes #14083
 2022-09-09 14:28:47 +02:00
Martin Bartoš
0fcf5d3936 Reuse of token in TOTP is possible 
Fixes #13607
 2022-09-09 08:56:02 -03:00
Marek Posolda
040e52cfd7
SAML javascript protocol mapper: disable uploading scripts through admin console by default (#14293) 
Closes #14292
 2022-09-09 13:47:51 +02:00
vramik
869ccc82b2 Enable MapUserProvider storing username with the letter case significance 
Closes #10245
Closes #11602
 2022-09-09 11:46:11 +02:00
vramik
fb33cbc2bd Set correct entity version when adding a child entity with its own entity versioning 
Closes #14273
 2022-09-09 09:43:44 +02:00
Bruno Oliveira da Silva
84576ffc0e
Merge pull request from GHSA-w9mf-83w3-fv49 
* escape the output of the ui-select2

fixes XSS issue

* removed ES6 Destructuring assignment

* Update themes/src/main/resources/theme/base/admin/resources/js/services.js

Co-authored-by: Jon Koops <jonkoops@gmail.com>

Co-authored-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
Co-authored-by: Jon Koops <jonkoops@gmail.com>
 2022-09-08 10:43:43 +02:00
Dominik Guhr
f2b02f19e6 Closes #13786 2022-09-07 18:29:26 +02:00
Andre Nascimento RH
4594243a33
Add 'imagePullSecret' field to the Keycloak CR 2022-09-07 14:03:28 +02:00
Rasmus Buchholdt
aec8e6af50
Fix linkExpirationFormatter properties (#14240) 2022-09-07 11:31:15 +02:00
cgeorgilakis
07b0df8f62
View groups from account console (#7933) 
Closes #8748
 2022-09-07 11:25:31 +02:00
Lex Cao
1f197aa96b
Add basic auth compliant to RFC 6749 (#14179) 
Closes #14179
 2022-09-07 10:09:30 +02:00
MajorZiploc
fc93ab1d54
Fix 2FA user page icon (#14050) 
Co-authored-by: Manyu Lakhotia <mlakhotia@conservis.ag>
 2022-09-06 16:11:21 -04:00
evtr
4469bdc0a9
RelayState max length not respected 
Fixes: #10227
 2022-09-06 22:01:14 +02:00
Stu Tomlinson
f57560afd3 Improve error messages for invalid SAML responses 
Closes #13534
 2022-09-06 21:49:14 +02:00
Christoph Leistert
cc2bb96abc Fixes #9482: A user could be assigned to a parent group if he is already assigned to a subgroup. 2022-09-06 21:31:31 +02:00
Jan-Otto Kröpke
c70b4eaade
keycloak-admin-client: Provide logout method to TokenService 2022-09-06 16:31:04 -03:00
nehachopra27
68a07465a6
Widening cast for BCProvider for existing provider (#14202) 
Closes #14210
 2022-09-06 19:40:58 +02:00
Thomas Peter
19d69169b1 introduce expiration option for admin events 2022-09-06 16:05:53 +02:00
Pedro Igor
a6137b9b86 Do not empty attributes if they are not provided when user profile is enabled 
Closes #11096
 2022-09-06 12:59:05 +02:00
Michal Hajas
f69497eb28 KEYCLOAK-12988 Deprecate getUsers* methods in favor of searchUsers* variants 
Closes #14018
 2022-09-06 10:38:28 +02:00
Stian Thorgersen
f789b7997e
Remove CrossDC tests from GA (#14196) 2022-09-05 16:03:27 +02:00
Bruno Monteiro
33614ab891
Mistyping correction (#8185) 
Co-authored-by: Stian Thorgersen <stianst@gmail.com>
 2022-09-02 20:34:20 +02:00
Tang-Tang Zhou
fd5a423b55
Theme: Update messages_it.properties (#14164) 
Add missing `identity-provider-login-label` in italian language used when there is the option to login with an identity provider
 2022-09-02 11:58:06 +02:00
Youssef El Houti
7f58c1c570 KEYCLOAK-19138 nginx x509 client trusted certificate lookup 2022-09-01 15:02:56 -03:00
Sergey Ch
860c3fbbd3
KEYCLOAK-17263 Add exact searching for users (#8059) 
Co-authored-by: Stian Thorgersen <stianst@gmail.com>
 2022-09-01 19:27:24 +02:00
Thomas Darimont
43623ea9d0 KEYCLOAK-18499 Add max_age support to oauth2 brokered logins 
Revise KcOidcBrokerPassMaxAgeTest to use setTimeOffset(...)
 2022-09-01 09:24:44 -03:00
cgeorgilakis
a3f339a1c4
Add again Client fields( Logo URL, Policy URL and Terms of service URL ) in ApplicationsPage.tsx of AccountConsole (#11837) 
Closes #11825
 2022-08-31 16:30:29 -04:00
Joerg Matysiak
a8019d78e7 Fixed handling of required setting for email in user profile. 
Resolves #13923
 2022-08-31 17:19:19 -03:00
Pedro Igor
ced18f2722 Requests to health endpoint still dispatched to worker threads when http-relative-path is set 
Closes #14011
 2022-08-31 12:42:41 +02:00
Martin Bartoš
677579fce6 Environment variables for admin creation in testsuite 
Closes #14102
 2022-08-31 07:29:55 -03:00
Nagy Vilmos
f6db484172
Keep the locale related authNotes through the IdentityBroker flow. (#10444) 
Closes #8827
 2022-08-31 09:37:26 +02:00
Martin Bartoš
e6a5f9c124 Default required action providers are still available after feature disabling 
Closes #13189
 2022-08-31 08:42:47 +02:00
Marek Posolda
19daf2b375
Not possible to login in FIPS enabled RHEL 8.6. Support for parsing PEM private keys in BCFIPS module in both traditional and PKCS8 format (#14008) 
Closes #13994
 2022-08-30 22:33:12 +02:00