Commit graph

885 commits

Author SHA1 Message Date
Douglas Palmer
52eeac76e1 Set connection TTL in adapters HttpClientBuilder
closes #17304
2023-04-25 20:06:29 +02:00
Peter Skopek
5cc385d460
Add a Galleon feature pack to allow Galleon provisioning of the SAML adapter to WildFly (#19710)
* Add a Galleon feature pack to allow Galleon provisioning of the SAML adapter to WildFly

Closes #12363

Signed-off-by: Peter Skopek <pskopek@redhat.com>

* Transition SAML adapter modules to Jakarta #12363

Signed-off-by: Peter Skopek <pskopek@redhat.com>

* Wildfly Galleon Pack version and configuration updated #12363

Signed-off-by: Peter Skopek <pskopek@redhat.com>

---------

Signed-off-by: Peter Skopek <pskopek@redhat.com>
Co-authored-by: Farah Juma <fjuma@redhat.com>
2023-04-18 08:47:24 +02:00
rmartinc
8bc5273792 EAP7 and wildfly adapter tests fixes. Execute enable-elytron-se17.cli for EAP7 and JDK-17.
Closes https://github.com/keycloak/keycloak/issues/19273
2023-03-23 17:02:39 -03:00
Pedro Igor
a30b6842a6 Decouple the policy enforcer from adapters and provide a separate library
Closes keycloak#17353
2023-03-17 11:40:51 +01:00
rmartinc
cab7e50410 Better handling for SAML signatures in POST and REDIRECT bindings
Closes https://github.com/keycloak/keycloak/issues/17456
2023-03-15 09:06:59 -03:00
Jon Koops
6d2e57f93a
Move Keycloak JS into the NPM workspace (#17401) 2023-03-03 13:56:53 +01:00
Jon Koops
972ebb9650
Use a valid SemVer format for the SNAPSHOT version (#17334)
* Use a valid SemVer format for the SNAPSHOT version

* Update pom.xml

* Update pom.xml

---------

Co-authored-by: Stian Thorgersen <stianst@gmail.com>
Co-authored-by: Stian Thorgersen <stian@redhat.com>
2023-03-03 11:11:44 +01:00
Pedro Igor
fbf5541802 Remove duplicated set-cookie header from response when expiring cookies
Closes #17192
2023-02-27 14:17:27 -03:00
Alexander Schwartz
d4604984d0
Compatibility with Maven4 and parallel builds (#16312)
Closes #16308
2023-02-14 11:44:53 +01:00
Marco Schmidlin
537be78455
Use redirectUri for the Cordova adapter (#17038) 2023-02-13 16:54:29 +01:00
laskasn
dc8b759c3d Use encryption keys rather than sig for crypto in SAML
Closes #13606

Co-authored-by: mhajas <mhajas@redhat.com>
Co-authored-by: hmlnarik <hmlnarik@redhat.com>
2023-02-10 12:06:49 +01:00
rmartinc
3b6dc5152e
ElytronSessionTokenStore#logoutHttpSessions() does not work as expected due to UNDERTOW-2159 (#16501)
Closes #16465
2023-01-19 19:52:29 +01:00
Stian Thorgersen
a5670af745
Keycloak CI workflow refactoring (#15968)
* Keycloak CI workflow refactoring

Closes #15861

* Update testsuite/integration-arquillian/tests/base/testsuites/base-suite.sh

Co-authored-by: Hynek Mlnařík <hmlnarik@users.noreply.github.com>

* Update testsuite/integration-arquillian/tests/base/testsuites/suite.sh

Co-authored-by: Hynek Mlnařík <hmlnarik@users.noreply.github.com>

* Update testsuite/integration-arquillian/tests/base/testsuites/suite.sh

Co-authored-by: Hynek Mlnařík <hmlnarik@users.noreply.github.com>

* Update CodeQL actions

Co-authored-by: Hynek Mlnařík <hmlnarik@users.noreply.github.com>
2022-12-14 16:12:23 +01:00
Rafał Gała
b7d7268744 Initialize CryptoIntegration before loading adapter config
Initialize CryptoIntegration before building KeycloakDeploymentBuilder, same way as in public static KeycloakDeployment build(InputStream is) method

Closes #15767
2022-12-02 12:46:16 +01:00
dependabot[bot]
da91f8563a Bump minimatch from 3.0.4 to 3.1.2 in /adapters/oidc/js
Bumps [minimatch](https://github.com/isaacs/minimatch) from 3.0.4 to 3.1.2.
- [Release notes](https://github.com/isaacs/minimatch/releases)
- [Commits](https://github.com/isaacs/minimatch/compare/v3.0.4...v3.1.2)

---
updated-dependencies:
- dependency-name: minimatch
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-11-25 10:58:30 -03:00
Peter Skopek
8f9c3cdeab SAML adapter is missing "crypto/default" module (#15146)
Closes #15146
2022-10-26 11:59:56 +02:00
Stian Thorgersen
97ae90de88
Remove Red Hat Single Sign-On product profile from upstream (#14697)
* Remove Red Hat Single Sign-On product profile from upstream

Closes #14916

* review suggestions: Remove Red Hat Single Sign-On product profile from upstream

Closes #14916

Co-authored-by: Peter Skopek <pskopek@redhat.com>
2022-10-18 14:43:04 +02:00
Stian Thorgersen
ded52c6228
Move session iframe pages (#14769)
Closes #14767
2022-10-13 08:16:20 +02:00
Jon Koops
a670e1d965
Check for 3rd-party storage access in ifames (#14680)
Closes #14466
2022-10-06 10:22:47 +02:00
Jon Koops
c56b69bbc9
Add proper variable declaration for AuthZ JS (#14561) 2022-09-23 11:17:16 -04:00
Christian Lutz
9e41053587 [fixes #9287] Fix *-Capability OSGI manifest to provide ClaimInformationPointProviderFactory via service loader 2022-09-13 07:22:45 -03:00
Lex Cao
1f197aa96b
Add basic auth compliant to RFC 6749 (#14179)
Closes #14179
2022-09-07 10:09:30 +02:00
Marcin Niedzielski
5dbbc0e7bf
[resolve #9084] - Log more information in adapter-core module (#9086)
Co-authored-by: Stian Thorgersen <stianst@gmail.com>
2022-08-26 15:25:21 +02:00
David Anderson
ce1331f550
Remove bouncycastle dependency from keycloak-services (#13489)
Closes #12857


Co-authored-by: mposolda <mposolda@gmail.com>
2022-08-22 15:43:59 +02:00
Pedro Igor
15bbb46657 Avoid removing static path config from cache
Closes #9855
2022-08-17 16:29:59 -03:00
dependabot[bot]
a82f08fdb2 Bump rollup from 2.77.2 to 2.78.0 in /adapters/oidc/js
Bumps [rollup](https://github.com/rollup/rollup) from 2.77.2 to 2.78.0.
- [Release notes](https://github.com/rollup/rollup/releases)
- [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md)
- [Commits](https://github.com/rollup/rollup/compare/v2.77.2...v2.78.0)

---
updated-dependencies:
- dependency-name: rollup
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-08-15 15:37:57 -03:00
dependabot[bot]
7006e0d6fa Bump @types/node from 18.6.4 to 18.7.4 in /adapters/oidc/js
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 18.6.4 to 18.7.4.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

---
updated-dependencies:
- dependency-name: "@types/node"
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-08-15 15:37:37 -03:00
dependabot[bot]
7bf4ac7983 Bump @types/node from 18.6.2 to 18.6.4 in /adapters/oidc/js
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 18.6.2 to 18.6.4.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

---
updated-dependencies:
- dependency-name: "@types/node"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-08-10 09:34:44 -03:00
dependabot[bot]
25235db38d Bump @rollup/plugin-commonjs from 22.0.1 to 22.0.2 in /adapters/oidc/js
Bumps [@rollup/plugin-commonjs](https://github.com/rollup/plugins/tree/HEAD/packages/commonjs) from 22.0.1 to 22.0.2.
- [Release notes](https://github.com/rollup/plugins/releases)
- [Changelog](https://github.com/rollup/plugins/blob/master/packages/commonjs/CHANGELOG.md)
- [Commits](https://github.com/rollup/plugins/commits/commonjs-v22.0.2/packages/commonjs)

---
updated-dependencies:
- dependency-name: "@rollup/plugin-commonjs"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-08-10 09:33:34 -03:00
dependabot[bot]
65348e45ea
Bump rollup from 2.77.0 to 2.77.2 in /adapters/oidc/js (#13437)
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-08-01 18:12:16 -03:00
dependabot[bot]
0c24f3542b
Bump @rollup/plugin-typescript from 8.3.3 to 8.3.4 in /adapters/oidc/js (#13436)
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-08-01 18:12:05 -03:00
dependabot[bot]
0742eb541a
Bump @types/node from 18.0.6 to 18.6.2 in /adapters/oidc/js (#13435)
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-08-01 18:11:57 -03:00
Jon Koops
650f3a8367
Add 'prepublishOnly' script for Keycloak JS (#13365) 2022-07-27 12:35:13 -04:00
Stian Thorgersen
a251d785db
Remove text based login flows (#13249)
* Remove text based login flows

Closes #8752

* Add display param back in case it's used by some custom authenticators
2022-07-22 15:15:25 +02:00
dependabot[bot]
1d2cbc79ee Bump rollup from 2.76.0 to 2.77.0 in /adapters/oidc/js
Bumps [rollup](https://github.com/rollup/rollup) from 2.76.0 to 2.77.0.
- [Release notes](https://github.com/rollup/rollup/releases)
- [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md)
- [Commits](https://github.com/rollup/rollup/compare/v2.76.0...v2.77.0)

---
updated-dependencies:
- dependency-name: rollup
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-07-18 10:05:16 -03:00
dependabot[bot]
11d35f21b2 Bump @types/node from 18.0.3 to 18.0.6 in /adapters/oidc/js
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 18.0.3 to 18.0.6.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

---
updated-dependencies:
- dependency-name: "@types/node"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-07-18 10:05:04 -03:00
Lex Cao
f0988a62b8
Use base64 url decoded for client secret when authenticating with Basic Auth (#12486)
Closes #11908
2022-07-16 09:38:41 +02:00
dependabot[bot]
dce40bc5fe
Bump @rollup/plugin-typescript from 8.3.0 to 8.3.3 in /adapters/oidc/js (#12998)
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-12 10:37:38 -03:00
dependabot[bot]
12a2cbe0fd
Bump @types/node from 17.0.16 to 18.0.3 in /adapters/oidc/js (#13000)
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-12 10:37:23 -03:00
dependabot[bot]
d6a60c5e13
Bump @rollup/plugin-commonjs from 21.0.1 to 22.0.1 in /adapters/oidc/js (#13003)
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-12 10:36:42 -03:00
dependabot[bot]
f8775145c5
Bump typescript from 4.5.5 to 4.7.4 in /adapters/oidc/js (#13006)
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-12 10:36:13 -03:00
dependabot[bot]
932b420e5c
Bump @rollup/plugin-node-resolve from 13.1.3 to 13.3.0 in /adapters/oidc/js (#13007)
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-12 10:35:54 -03:00
dependabot[bot]
0e430fa38c
Bump rollup from 2.67.1 to 2.76.0 in /adapters/oidc/js (#13010)
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-12 10:33:40 -03:00
Pedro Igor
5b48d72730 Upgrade Resteasy v4
Closes #10916

Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2022-07-11 12:17:51 -03:00
Marek Posolda
be1e31dc68
Introduce crypto/default module. Refactoring BouncyIntegration (#12692)
Closes #12625
2022-06-29 07:17:09 +02:00
Alexander Schwartz
850af55edc Ensure that only JDK 8 APIs are used where JDK 8 is still required.
Closes #10842
2022-06-20 14:44:33 -03:00
rmartinc
5332a7d435 Issue #9194: Client authentication fails when using signed JWT, if the JWA signing algorithm is not RS256 2022-06-06 12:07:09 +02:00
Marek Posolda
cf386efa40
Support for client_id parameter in OIDC RP-Initiated logout endpoint (#12202)
Closes #12002


Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2022-05-27 14:12:37 +02:00
Robert Pocklington
c462468577
Fix typo in keycloak.d.ts (#12197)
Resolves #12212
2022-05-26 15:45:10 -03:00
Ian
78b88765ec
use toString() instead of cast String or it will fail when using Spring configtree (#10980)
Resolves #10979
Co-authored-by: Bruno Oliveira da Silva <bruno@abstractj.com>
2022-05-25 16:41:00 -03:00
Stian Thorgersen
075e284455
Remove legacy (non-Elytron) WildFly adapter (#11789)
Closes #11683
2022-05-18 10:34:47 +02:00
Eetu Purontaus
cdef39f76c Add scope parameter to KeycloakInitOptions 2022-05-12 11:54:30 -03:00
Stian Thorgersen
491b3262de
Remove Jetty 9.2 and 9.3 adapters (#11792)
Closes #11791
2022-05-04 15:24:46 +02:00
Stian Thorgersen
52ca546cfa
Remove Fuse adapters (#11740)
Closes #11677
2022-05-02 09:55:52 +02:00
Stian Thorgersen
b65d76edab
Remove EAP6 and AS7 adapters (#11605)
Closes #11604
2022-04-28 11:20:44 +02:00
Stian Thorgersen
302e152f86
Remove Spring Boot 1 adapter (#11691)
Closes #11690
2022-04-28 10:59:31 +02:00
Stian Thorgersen
e3f3e65ac5
Remove JDK7 support for adapters (#11607)
Closes #11606
2022-04-27 08:33:23 +02:00
Benjamin Macher
f84f5fd86e
Add README for Keycloak JS to the NPM package (#10085) 2022-04-08 12:43:37 -04:00
Marek Posolda
22a16ee899
OIDC RP-Initiated logout endpoint (#10887)
* OIDC RP-Initiated logout endpoint
Closes #10885

Co-Authored-By: Marek Posolda <mposolda@gmail.com>

* Review feedback

Co-authored-by: Douglas Palmer <dpalmer@redhat.com>
2022-03-30 11:55:26 +02:00
rmartinc
755080d745 [#10894] SAML Adapters tests start failing in recent versions of EAP/wildfly 2022-03-29 12:31:09 +02:00
Alexander Schwartz
fb92b95c33 Revert from getParameterCount() to getParameterTypes().length to be Java 1.7 compatible.
This reverts commit bc27c7c464.

Closes #10840
2022-03-22 10:23:25 +01:00
keycloak-bot
c71aa8b711
Set version to 999-SNAPSHOT (#10784) 2022-03-22 09:22:48 +01:00
Clara Fang
bc27c7c464 Replace occurrences of getParameterTypes().length and getParameters().length with getParameterCount()
Closes #10333
2022-03-18 11:20:52 +01:00
stianst
5ef8265b75 Remove Tomcat 7 adapter
Closes #9428
2022-02-28 07:50:36 +01:00
Luc Berger
c93fee0c68
Update sha256 import to be default import (#10468)
This should fix the "Failed to compile. ./node_modules/keycloak-js/dist/keycloak.mjs
Can't import the named export 'sha256' from non EcmaScript module (only default export is available)" error.

Closes #10314
2022-02-25 12:51:34 -05:00
mposolda
52712d2c82 ACR support in the javascript adapter
Closes #10154
2022-02-24 20:07:50 +01:00
Martin Bartoš
18581ca4f7 Test more recent versions of Spring Boot
Closes #9934
2022-02-17 16:08:57 +01:00
Stian Thorgersen
ef040a1238
Add javadoc artefacts to spring bundles (#10261)
Closes #10260
2022-02-17 10:21:22 +01:00
Jon Koops
43ef7f1b7e Restore function declaration for constructing 2022-02-16 19:52:27 -03:00
Jon Koops
1372ab82d3 Re-export as namespace for UMD compatibility 2022-02-16 19:52:27 -03:00
Jon Koops
c7ede9971b Restore old instance types (but deprecated) 2022-02-16 19:52:27 -03:00
Jon Koops
542415dc4d Modernize TypeScript definitions of JS adapter 2022-02-16 19:52:27 -03:00
Stian Thorgersen
fa87d46210
Remove additional repositories where they are not needed. Set updatePolicy for GA. (#10047)
Closes: #10133
2022-02-16 08:59:05 +01:00
Stian Thorgersen
674fc3d50d Add doctype to login-status-iframe
Closes #9063
2022-02-15 14:34:36 +01:00
keycloak-bot
d9f1a9b207
Set version to 18.0.0-SNAPSHOT (#10165) 2022-02-11 21:28:06 +01:00
Jon Koops
90fe97133c
Unify package files for JS adapter (#9789) 2022-02-08 13:52:46 -05:00
Jon Koops
dea123169f
KEYCLOAK-14817 Allow JS adapter to be bundled as ES module (#9351) 2022-01-13 08:28:30 +01:00
Hans-Christian Halfbrodt
d9d77fe1f7
Fix for KEYCLOAK-18914 (#9355)
Closed #9382 

Co-authored-by: Hans-Christian Halfbrodt <hc-github42@halfbrodt.org>
2022-01-06 18:05:50 +01:00
ammannmi
80873ea4b9
Allow changing the session id on login in Tomcat adapter 2022-01-05 08:23:46 -03:00
keycloak-bot
9f3d4a7d42 Set version to 17.0.0-SNAPSHOT 2021-12-20 10:50:39 +01:00
stianst
85240c9606 Remove deprecated kcinit from keycloak
Closes #9106
2021-12-13 15:51:51 +01:00
Hisanobu Okuda
24e7ab6748 8942 - port in location header is -1 when doing SAML global logout 2021-12-13 13:22:50 +01:00
Martin Bartoš
1e1a6779be Issue 8814: Replace deprecated hamcrest-all dependencies 2021-11-23 13:56:28 +01:00
David Perrenoud
36da2d20e9 KEYCLOAK-17039 Local file in a webview fails when requesting with "Origin: null" since 11.0.2 2021-11-11 10:55:33 +01:00
maito1201
5d560c1051 KEYCLOAK-16426 add optional field to token parsed 2021-10-13 16:48:07 -03:00
maito1201
bf01ae0885 KEYCLOAK-16426 adapt signature to official spec 2021-10-13 16:48:07 -03:00
maito1201
f9fdee0fba KEYCLOAK-16426 add attributes to keycloak.d.ts 2021-10-13 16:48:07 -03:00
Adamczyk Błażej
e5b05d05f0 KEYCLOAK-18551 Fixed the adapter to use dynamic openid-configuration instead of building the tokenUrl by itself. 2021-10-04 10:37:25 -03:00
stianst
f471a110cd KEYCLOAK-19408 Better client secrets 2021-09-29 18:19:43 +02:00
stianst
8b262e3094 Rewrite camel-undertow to stick with 1.7 2021-09-28 08:11:39 +02:00
stianst
9f79476520 KEYCLOAK-19403 Fix issues in IntelliJ 2021-09-28 08:11:39 +02:00
Stefan Guilhen
271033c3a4 [KEYCLOAK-19102] Replace usages of deprecated setAllowNull(boolean) calls in the adapters subsystems with setRequired(boolean)
- WildFly will remove deprecated APIs, code needs to be changed before the next WildFly upgrade.
2021-09-24 13:01:50 +02:00
Yang Xie
d8cb279bc4 KEYCLOAK-17693 add config for loading custom IdMapper class 2021-08-03 17:44:47 +02:00
Sanket Bhalerao
443bd4a1ba KEYCLOAK-15595: update keycloak js for KEYCLOAK-15595
while working on cordova+angular+ios the keycloak logout is not working. as the user clicks logout the user can again see the app instead of the inappbrowser page for login.
with clearcache=yes in the inappbrowser open the issue appears no more.
2021-08-02 10:56:25 -03:00
keycloak-bot
262ec3d031 Set version to 16.0.0-SNAPSHOT 2021-07-30 14:56:10 +02:00
Stefan Guilhen
9e676fce7e [KEYCLOAK-18559] Fix SAML adapters so they allow unescaped characters in URIs
- Makes adapters bahavior consistent with containers that allow unescaped characters in URIs
2021-07-29 12:11:32 +02:00
Martin Bartoš
1b989d6b52 KEYCLOAK-18893 Adapters tests for EAP6 are failing 2021-07-27 16:12:31 +02:00
Stefan Guilhen
579302f396 [KEYCLOAK-18878] Register the subsystem parser for older versions of the OIDC adapter schemas 2021-07-23 10:10:23 +02:00
Martin Bartoš
06077dc4ea KEYCLOAK-18466 Configure HTTP client timeouts for adapters - change property names 2021-07-22 10:54:59 +02:00
ruromero
464475caa0 [KEYCLOAK-17872] Add missing HTTPClient properties
Signed-off-by: ruromero <rromerom@redhat.com>
2021-07-22 10:54:59 +02:00