Bill Burke
eb4ffbca29
co-existence of bearer and basic auth
2015-08-21 11:02:56 -04:00
mposolda
d8d6348f67
KEYCLOAK-1295 Adapter support. Fixes
2015-08-21 08:26:12 +02:00
Stian Thorgersen
5ca3a48094
KEYCLOAK-1723 Allow aud to be single field or array
2015-08-20 15:55:52 +02:00
Stian Thorgersen
0295824923
KEYCLOAK-1747
...
Deal with time inconsistency in keycloak.js
2015-08-20 13:29:32 +02:00
Alexander Schwartz
7b0a3989e2
JettySessionTokenStore sets content type on restoring form values
...
Closes: KEYCLOAK-1776
2015-08-18 15:32:27 +02:00
mposolda
7028496601
KEYCLOAK-1295 pluggable client authentication. Support authenticate clients with signed JWT
2015-08-17 23:21:23 +02:00
Thomas Raehalme
3a4897c7d2
Separated the error message for Bearer token and Basic authentication failures.
2015-08-17 22:36:59 +03:00
Thomas Raehalme
b3f142d715
KeycloakAuthenticationProcessingFilter now handles Basic Authentication the same way as Bearer token.
2015-08-17 18:05:49 +03:00
Stian Thorgersen
f32b38cdbc
KEYCLOAK-1702 KEYCLOAK-1703 Make Infinispan default user session and cache provider
2015-07-29 10:08:15 +02:00
Stian Thorgersen
f3bfb06dec
Version bump
2015-07-28 10:20:40 +02:00
Scott Rossillo
1839b24b90
Support for loading keycloak.json from the classpath
...
Spring Boot and non-web based applications don't have a WEB-INF
directory. Support loading Spring Security adapter's keycloak.json
from the class path.
2015-07-19 12:10:33 -04:00
Stian Thorgersen
1642ac2394
KEYCLOAK-1385 Introduce end-of-line normalization
2015-07-17 13:46:51 +02:00
Marko Strukelj
fc7ba85639
KEYCLOAK-1345 Remove distribution/subsystem-war
2015-07-17 12:41:00 +02:00
Marko Strukelj
7ae62c1060
KEYCLOAK-1529 Drop InfinispanCacheActivator and make subsystem do it
2015-07-07 16:40:03 +02:00
Stian Thorgersen
5af4785ba1
KEYCLOAK-1507
...
Tomcat Adapter throws NPE under certain conditions
2015-07-02 09:08:40 +02:00
Marko Strukelj
d00e128920
KEYCLOAK-1448 Cannot configure an authenticator for method KEYCLOAK
2015-06-16 14:51:31 +02:00
Stian Thorgersen
001b874903
Add missing ExampleDS
2015-06-16 14:40:19 +02:00
Stian Thorgersen
1b0c4e5d1f
KEYCLOAK-1468
...
Infinispan cache not available in JNDI
2015-06-16 13:31:51 +02:00
Stian Thorgersen
4c98b04ab7
KEYCLOAK-1447 LinkageError deploying oauth-client-cdi to WildFly 8.2.0.Final
2015-06-15 13:22:36 +02:00
Stian Thorgersen
38c1945ce4
Bump version
2015-06-12 14:35:34 +02:00
Stian Thorgersen
cc2de52a1a
Revert to old RestEasy until we can drop support for EAP 6.4
2015-06-12 14:20:08 +02:00
Stian Thorgersen
5bd53804f9
Fix admin-api to show that users are retrieved by ip, not username
2015-06-12 13:32:30 +02:00
Stian Thorgersen
5993d40fab
Merge pull request #1353 from Smartling/KEYCLOAK-1438
...
Fix Spring Security adapter logout handling
2015-06-12 07:50:00 +01:00
Marko Strukelj
9a37696d29
Fixed pom issues that were generating tons of Maven warnings
2015-06-11 16:57:33 +02:00
Marko Strukelj
92e17f4b40
KEYCLOAK-1412 Server-overlay for EAP 6.4
...
- Added as7-server-subsystem
- Added eap6-server-overlay
- Moved modules to eap6-server-modules
- Renamed wildfly-server-subsystem to wf9-server-subsystem for consistency
2015-06-11 09:40:47 +02:00
Scott Rossillo
abfec23404
Fix Spring Security adapter logout handling
...
Stops KeycloakLogoutHandler from throwing an exception if the
authentication is not of type KeycloakAuthenticationToken.
Fixes KEYCLOAK-1438.
2015-06-10 12:22:18 -04:00
Marko Strukelj
3643e76a06
Cleanup, and simplify keycloak-server-subsystem
...
- KEYCLOAK-1346 Remove support for overlays in server subsystem
- KEYCLOAK-1347 Remove support for multiple auth-servers
- KEYCLOAK-1348 Simplify server subsystem definition
2015-06-08 15:33:34 +02:00
mposolda
35e4a5e56d
KEYCLOAK-1368 allow forwarding to error page in bearer-only deployments. Adding DeploymentBuilder
2015-06-03 12:34:56 +02:00
Marko Strukelj
3df504b6b4
KEYCLOAK-1304 WF9 server subsystem
...
- remove unnecessary dependencies
2015-06-01 16:07:59 +02:00
Stian Thorgersen
5f787028df
KEYCLOAK-1327 Updated for users
2015-05-29 15:29:04 +01:00
Stian Thorgersen
e1e65af8ea
Merge pull request #1301 from mstruk/wf9
...
KEYCLOAK-1303 WF9 adapter subsystem
2015-05-29 15:23:28 +01:00
Marko Strukelj
2077a2a3af
KEYCLOAK-1303 WF9 adapter subsystem
...
- not dependent on distribution/modules any more
- keycloak-adapter-subsystem moved to keycloak-wf9-subsystem
- still installed as <extension module="org.keycloak.keycloak-adapter-subsystem"/>
2015-05-29 15:17:41 +02:00
Stian Thorgersen
a953b52eac
KEYCLOAK-1327 Updated for client stats
2015-05-29 13:15:35 +01:00
Stian Thorgersen
6f164f0ee9
KEYCLOAK-1327 Updated for clients
2015-05-29 13:15:34 +01:00
Marko Strukelj
4f270bffd0
Refactor EAP 6 adapter distribution
...
- not dependent on distribution/modules any more
- uses the same modules as AS7
- again use <extension module="org.keycloak.keycloak-adapter-subsystem"/>
2015-05-28 23:56:11 +02:00
Marko Strukelj
fa90602aa0
Refactor AS 7 adapter distribution
...
- not dependent on distribution/modules any more
- again use <extension module="org.keycloak.keycloak-adapter-subsystem"/>
2015-05-28 23:56:11 +02:00
behana
bbc3e99bb5
KEYCLOAK-1353 Option to pass client_id to resetPasswordMail
2015-05-28 00:10:36 +02:00
behana
e8e22ee44c
KEYCLOAK-1352 Add send-verify-email to admin-rest-api
2015-05-28 00:05:39 +02:00
Marko Strukelj
d70fd86a82
Wildfly 8.2.0.Final compatibility
...
- added integration/keycloak/wf8-subsystem
- added distribution/adapters/wf8-adapter containing wf8-modules, and wf8-adapter-zip
- there's no dependency on distribution/modules
- subsystem is installed by unzipping keycloak-wf8-adapter-dist.zip to Wildfly 8.2.0.Final, and adding <extension-module>org.keycloak.keycloak-wf8-subsystem</extension-module> to standalone.xml
2015-05-22 17:38:02 +02:00
Stian Thorgersen
4e0a32a37a
Version bump
2015-05-22 09:04:30 +02:00
Marko Strukelj
91bf50eb6c
AS 7.1.1.Final / EAP 6.4 compatibility
2015-05-21 11:30:26 +02:00
Stian Thorgersen
362babe5e2
Fixed server-dist
2015-05-19 08:15:39 +02:00
Stian Thorgersen
dbf9525860
KEYCLOAK-1312 Add clearToken to keycloak.js
2015-05-13 13:13:36 +02:00
Stian Thorgersen
6c98d64874
Merge pull request #1238 from raehalme/KEYCLOAK-1294
...
Added support for GrantedAuthoritiesMapper in KeycloakAuthenticationProvider
2015-05-13 06:57:29 +02:00
Scott Rossillo
4d32ac8765
Add Servlet 2.x support to the Spring Security adapter
...
Cookie.setHttpOnly() was added in Servlet 3.0. Make setting a
cookie as HttpOnly dependent on servlet version.
2015-05-11 19:48:16 -04:00
Thomas Raehalme
78999537f0
Added support for GrantedAuthoritiesMapper in KeycloakAuthenticationProvider.
2015-05-09 13:42:09 +03:00
Bill Burke
e3b0cc7093
Merge pull request #1236 from Smartling/KEYCLOAK-1291
...
Improve Spring Security adapter default configuration
2015-05-08 20:53:36 -04:00
Bill Burke
50014f4398
Merge pull request #1235 from Smartling/KEYCLOAK-1290
...
Use backchannel logout for Spring Security SSO
2015-05-08 20:53:26 -04:00
Bill Burke
833c276424
Merge pull request #1234 from mstruk/wfly-subs-split-master
...
Wildfly 9 - subsystem split + feature packs
2015-05-08 20:53:17 -04:00
Scott Rossillo
d37a9eada3
Improve Spring Security adapter default configuration
2015-05-08 18:24:49 -04:00
Scott Rossillo
a7bfae2f56
Use backchannel logout for Spring Security SSO
...
Use backchannel logout for Keycloak's Spring Security adapter
single sign-out to allow Spring Security's logout complete handler
to fire.
2015-05-08 18:20:17 -04:00
Stian Thorgersen
58fc4520c9
Merge pull request #1232 from Smartling/KEYCLOAK-1287
...
Enable Spring Security adapter to register nodes
2015-05-08 07:09:42 +02:00
Stian Thorgersen
53716697ca
Merge pull request #1222 from Smartling/KEYCLOAK-1273
...
Improve Spring Security adapter client to client authorization
2015-05-08 07:01:14 +02:00
Scott Rossillo
8ca9a6a64a
Enable Spring Security adapter to register nodes
...
Enable dynamic application node registration and unregistration
from Spring Security protected applications.
2015-05-07 20:09:16 -04:00
Scott Rossillo
2ce3925ba9
Permit Spring Security adapter to process admin tasks with CSRF enabled
...
Spring Security's CSRF protection blocks Keycloak administrative
actions when configured with the default request matcher.
This provides a CSRF request matcher that permits Keycloak
administrative actions without the CSRF token.
2015-05-07 19:58:27 -04:00
Scott Rossillo
b05da425b9
Improve Spring Security adapter client to client authorization
2015-05-06 16:54:55 -04:00
Marko Strukelj
4e58bed39e
Move keycloak modules under integration/keycloak
2015-05-05 20:48:13 +02:00
Marko Strukelj
7d2942e1be
KEYCLOAK-1183 Split subsystem into separate server and adapter subsystems
...
- Rename keycloak-server-subsystem dir to wildfly-server-subsystem
- Rename keycloak-agent-subsystem dir to keycloak-wildfly-agent-subsystem
- Rename artifacts accordingly (keycloak- prefix)
Only maven artifacts are renamed, jboss-modules modules are still called keycloak-server-subsystem, and keycloak-agent-subsystem
2015-05-05 20:43:23 +02:00
Marko Strukelj
943404689e
KEYCLOAK-1183 Split subsystem into separate server and adapter subsystems
...
- Use WildFly 9.0.0.CR1
2015-05-05 20:40:05 +02:00
Marko Strukelj
89875aea02
KEYCLOAK-1183 Split subsystem into separate server and adapter subsystems
...
- Fix deprecated uses, and more code cleanup
2015-05-05 20:40:05 +02:00
Marko Strukelj
70ce96caa0
KEYCLOAK-1183 Split subsystem into separate server and adapter subsystems
...
- Fix overlooked file renames causing subsystem tests to fail
2015-05-05 20:40:05 +02:00
Stan Silvert
3a7bba041f
Create builds based on WildFly 9 feature packs.
2015-05-05 20:40:04 +02:00
Marko Strukelj
87cb28eaab
KEYCLOAK-1183 Split subsystem into separate server and adapter subsystems
...
- Fix server-subsystem tests
2015-05-05 20:40:04 +02:00
Marko Strukelj
03fa58a271
KEYCLOAK-1183 Split subsystem into separate server and adapter subsystems
...
- POM dependencies cleanup
2015-05-05 20:40:03 +02:00
Marko Strukelj
3c76a85674
KEYCLOAK-1183 Split subsystem into separate server and adapter subsystems
...
- More code and pom cleanup
2015-05-05 20:40:03 +02:00
Marko Strukelj
c571ad9902
KEYCLOAK-1183 Split subsystem into separate server and adapter subsystems
...
- Renamed keycloak-subsystem into keycloak-server-subsystem
- Added keycloak-adapter-subsystem without auth-server support
- Removed adapter config from keycloak-server subsystem
- Added proper .xsd for server subsystem
2015-05-05 20:40:03 +02:00
Tomaz Cerar
355c440c3d
Update subsystem code to reflect latest standards
2015-05-05 20:38:52 +02:00
Tomaz Cerar
9a17658f84
remove eap6 dup
2015-05-05 20:38:52 +02:00
Stian Thorgersen
035529d7a2
Version bump
2015-05-05 11:45:21 +02:00
Bill Burke
761be66362
Merge pull request #1199 from patriot1burke/master
...
apache http client fixes
2015-04-29 21:59:50 -04:00
Bill Burke
666827b7cb
remove resteasy ClientRequest
2015-04-29 20:46:14 -04:00
Bill Burke
10998eb35b
Merge pull request #1193 from behana/master
...
Let admin-client acquire new token if refresh_token is stale
2015-04-29 16:33:20 -04:00
behana
8dfc7d9e8d
Let admin-client acquire new token if refresh_token is stale
2015-04-29 05:01:59 +02:00
Scott Rossillo
06a7938aa6
Add Spring Security adapter
2015-04-28 15:05:56 -04:00
Stian Thorgersen
215a3497ae
KEYCLOAK-1189 Add apache httpclient module with slot 4.3
2015-04-27 16:33:48 +02:00
Stian Thorgersen
870f29d797
Merge pull request #1172 from stianst/master
...
Dist work
2015-04-23 12:40:38 +02:00
Stian Thorgersen
e17105cc8e
Updated distribution and cleaning of maven modules
2015-04-23 11:15:05 +02:00
Stian Thorgersen
cf75a97f08
Merge pull request #1169 from gkfirst8/KEYCLOAK-1220
...
log the right value when keycloak.config.file could not be found or read
2015-04-22 14:08:29 +02:00
gkfirst8
0b782e9910
Fix logging call
2015-04-22 10:54:43 +02:00
Leonardo Loch Zanivan
642fc996fb
Basic Auth token fix
2015-04-21 16:22:14 -03:00
Leonardo Loch Zanivan
6ce0285315
Basic Auth token fix
2015-04-21 12:32:17 -03:00
gkfirst8
aef61411e9
log the right value when keycloak.config.file could not be found or read
...
Fix for [KEYCLOAK-1220]
2015-04-21 11:46:33 +02:00
Stian Thorgersen
5ed864fbbc
KEYCLOAK-1208 Allow same-origin if cors is enabled
2015-04-21 10:42:13 +02:00
Dane Barentine
4fe328002a
[KEYCLOAK-1206] Change role mapping path in admin client to match API changes
2015-04-14 22:21:28 -07:00
Dane Barentine
b1b149e0c3
[KEYCLOAK-1205] Fix BearerAuthFilter refreshing token after it's expired
2015-04-14 22:19:07 -07:00
Stian Thorgersen
46e386cd43
KEYCLOAK-1187
2015-04-13 13:54:30 +02:00
Stian Thorgersen
4fbbf39c51
KEYCLOAK-1187 Admin console and endpoints
2015-04-13 13:29:31 +02:00
Stian Thorgersen
a18715a774
Deprecate OAuthClientRepresentation and ApplicationRepresentation and added ClientRepresentation
2015-04-10 13:33:29 +02:00
Stian Thorgersen
1567982f0b
Merge pull request #1128 from ssilvert/KEYCLOAK-1174-NPE-on-WF9
...
KEYCLOAK-1174: NPE on WildFly 9
2015-04-10 07:05:46 +02:00
Stan Silvert
875aae91fc
Add owner attribute to Keycloak server deployment
2015-04-09 14:52:47 -04:00
Stan Silvert
bbef4e2be1
KEYCLOAK-1174: Refactor KeycloakAdapterConfigService to be a simple
...
singleton
2015-04-09 10:30:39 -04:00
Stian Thorgersen
6fbc0975c0
KEYCLOAK-1187 First round: Combined ApplicationModel and OAuthClientModel into ClientModel. Removed OAuth Clients from Admin console and renamed Applications to Clients.
2015-04-09 12:27:30 +02:00
mposolda
d0ead0f0a0
More logging
2015-04-07 08:46:39 +02:00
Bill Burke
326818ea45
bump pom versio
2015-04-02 09:36:43 -04:00
mposolda
6a34ad36f5
Fix clustering when auth-server-url-for-backend-requests is used
2015-04-02 13:02:24 +02:00
Stian Thorgersen
48c7bd1b5e
KEYCLOAK-1171 Missing parameters: response_type login to oauth-client and oauth-client-cdi
2015-04-01 13:50:50 +02:00
mposolda
3256337614
CookieTokenStore not working correctly on EAP 6.3
2015-03-31 14:53:37 +02:00
Bill Burke
9d7db174e1
merged
2015-03-26 13:06:50 -04:00
Bill Burke
c20ab4a9a6
fix query parsing
2015-03-26 13:05:09 -04:00
Stian Thorgersen
b727087f04
KEYCLOAK-1150
...
'iss' should be URL not just realm name
2015-03-26 13:50:36 +01:00