spurreiter
6332ed42c0
KEYCLOAK-13940 remove duplicated urlsafe decoding
2020-05-08 15:18:56 +02:00
Hynek Mlnarik
32f13016fa
KEYCLOAK-12874 Align Destination field existence check with spec
2020-05-04 09:19:44 +02:00
keycloak-bot
ae20b7d3cd
Set version to 11.0.0-SNAPSHOT
2020-04-29 12:57:55 +02:00
Pedro Igor
2e54ebda76
[KEYCLOAK-13579] - Ignore exceptions when shutting down loopback server
2020-04-29 12:33:35 +02:00
Stefan Guilhen
fd9c4e9228
[KEYCLOAK-12097] Fix NPE when trying to obtain the cache container name from jboss-web.xml
...
- check if the cache name as configured in jboss-web.xml is composite - i.e. has a 'parent.child' structure
2020-04-27 10:13:25 +02:00
Luke Nadur
74c379c3df
[KEYCLOAK-13586] Fix typos related to QueryParamterTokenRequestAuthenticator
2020-04-21 21:14:03 +02:00
Jon Koops
9f3b847817
KEYCLOAK-13714 Add missing type definition for logout options
2020-04-21 11:31:16 +02:00
keycloak-bot
33314ae3ca
Set version to 10.0.0-SNAPSHOT
2020-04-21 09:19:32 +02:00
Pedro Igor
acfbdf6b0e
[KEYCLOAK-13187] - Concurrency issue when refreshing tokens and updating security context state
2020-04-16 12:25:42 +02:00
stianst
1f02f87a6e
KEYCLOAK-13565 Add support for kc_action to keycloak.js
...
Co-authored-by mhajas <mhajas@redhat.com>
2020-04-14 19:23:56 +02:00
mhajas
10d92a01a6
KEYCLOAK-13577 Remove property from child class since parents class contains it
2020-03-26 09:55:52 -03:00
keycloak-bot
f6a592b15a
Set version to 9.0.4-SNAPSHOT
2020-03-24 08:31:18 +01:00
Pedro Igor
84d099e48f
[KEYCLOAK-11282] - Properly resolve config resolver
...
Co-authored-by: mhajas <mhajas@redhat.com>
2020-03-17 15:49:00 +01:00
Laure-Emmanuelle Issler
967ff939ec
KEYCLOAK-13026 Set path of OAuth_Token_Request_State cookie to /
2020-03-05 16:21:24 +01:00
Pedro Igor
30b07a1ff5
[KEYCLOAK-13175] - Setting the enforcement mode when fetching lazily fetching resources
2020-03-05 13:31:21 +01:00
Hynek Mlnarik
0cf0955318
KEYCLOAK-13181 Fix NPE in EAP 6 adapter
2020-03-04 10:19:43 +01:00
Jon Koops
c1bf183998
KEYCLOAK-9346 Add new KeycloakPromise to support native promises
...
Co-authored-by: mhajas <mhajas@redhat.com>
2020-03-04 08:53:35 +01:00
Thomas Kuestermann
8ed355a5fe
KEYCLOAK-12749 single worker/IO thread, use OAUTH2 constants
2020-03-03 12:39:19 -03:00
Thomas Kuestermann
22555371d8
KEYCLOAK-12749 fix "invalid state" error due to IE requesting favicon
...
Internet Explorer occasionally requests a favicon before doing the
actual redirect to localhost. This commit adds Undertow to properly
handle those unwanted requests.
2020-03-03 12:39:19 -03:00
mhajas
8061aa5217
KEYCLOAK-13161 Use iterator instead of for-each loop in ClientCredentialsProviderUtils
2020-02-28 16:22:03 +01:00
Erik Jan de Wit
8297c0c878
KEYCLOAK-11155 split on first '=' instead of all
2020-02-27 09:12:51 +01:00
keycloak-bot
d352d3fa8e
Set version to 9.0.1-SNAPSHOT
2020-02-17 20:38:54 +01:00
stianst
42773592ca
KEYCLOAK-9632 Improve handling of user locale
2020-02-14 08:32:20 +01:00
Pedro Igor
da0e2aaa12
[KEYCLOAK-12897] - Policy enforcer should just deny when beare is invalid
2020-02-07 15:04:45 +01:00
Stefan Guilhen
d943b8a9e3
[KEYCLOAK-12873] Fix differences between keycloak-saml.xml (adapter) and the keycloak-saml subsystem
2020-02-07 12:06:28 +01:00
Sebastian Laskawiec
9b2e7f6e2c
KEYCLOAK-12650 Fix NullPointerException when creating HttpClient
2020-02-05 15:52:33 +01:00
mhajas
fc7b769b6e
KEYCLOAK-6817 Ignore SniSSLSocketFactory exception for IBM jdk
2020-01-31 09:08:44 +01:00
Pedro Igor
2a82ed6eea
[KEYCLOAK-9402] - 401 response when enforcement mode is DISABLED
2020-01-30 11:09:32 +01:00
Takashi Norimatsu
993ba3179c
KEYCLOAK-12615 HS384 and HS512 support for Client Authentication by Client Secret Signed JWT ( #6633 )
2020-01-28 14:55:48 +01:00
vmuzikar
03306b87e8
KEYCLOAK-12125 Introduce SameSite attribute in cookies
...
Co-authored-by: mhajas <mhajas@redhat.com>
Co-authored-by: Peter Skopek <pskopek@redhat.com>
2020-01-17 08:36:53 -03:00
root
4cbe478129
Fix KEYCLOAK-10838, use bytesRead to make sure the output stream does not get padded with null bytes.
2020-01-14 13:20:10 +01:00
vramik
3b1bdb216a
KEYCLOAK-11486 Add support for system property or env variable in AllowedClockSkew in keycloak-saml subsystem
2020-01-14 13:17:13 +01:00
mhajas
a79d6289de
KEYCLOAK-11416 Fix nil AttributeValue handling
2020-01-10 12:47:09 +01:00
Pedro Igor
c596647241
[KEYCLOAK-11712] - Request body not buffered when using body CIP in Undertow
2020-01-09 10:02:18 +01:00
Michael Thirion
44ab3f46b7
[KEYCLOAK-6008] - Spring Boot does not honour wildcard auth-role ( #6579 )
2019-12-24 19:06:55 -03:00
Asbjørn Dyhrberg Thegler
1162455f32
KEYCLOAK-10894 Adds a ready indicating promise
...
This is non-intrusive and backwards compatible. With this change it is possible
to `await keycloakAuthorization.ready` to make sure the component has been
properly initialized.
2019-12-24 18:33:20 -03:00
Pedro Igor
e316e2a2f0
[KEYCLOAK-8616] - Process requests only if a deployment can be resolved
2019-12-20 13:33:12 +01:00
Pedro Igor
3bd193acd7
[KEYCLOAK-12412] - Policy enforcer should consider charset when comparing the content-type of the request
2019-12-19 14:14:33 +01:00
keycloak-bot
76aa199fee
Set version to 9.0.0-SNAPSHOT
2019-11-15 20:43:21 +01:00
scranen
2d3f771b70
Cookie token store not working in Spring Security adapter
...
Co-authored-by: scranen <scranen@gmail.com>
Co-authored-by: rainerfrey <frey.rainer@gmail.com>
Co-authored-by: pedroigor <pigor.craveiro@gmail.com>
2019-11-13 16:54:45 +01:00
Andrei Arlou
df5cdea1e8
KEYCLOAK-12006 Use diamond operator in module adapters/oidc/as7-eap6
2019-11-13 09:54:10 +01:00
Andrei Arlou
dca8835fbc
KEYCLOAK-12008 Fix minor warnings in module adapters/oidc/installed
2019-11-13 09:35:49 +01:00
Andrei Arlou
7f1de02ca0
KEYCLOAK-11994 Fix minor warnings in module in adapters/oidc/adapter-core
2019-11-11 09:49:13 +01:00
Andrei Arlou
066cdb7dec
KEYCLOAK-11993 Remove unused import and use diamond operator for collection in module adapters/oidc/adapter-core
2019-11-11 09:42:12 +01:00
Leonid Rozenblyum
a4edb083c3
KEYCLOAK-6752, KEYCLOAK-6565
...
Fixed missing deployment after deserialization.
Other adapters already have logic for filling in deployment when it's
missing in the context, Spring Security adapter lacked that feature.
The solution is based on an attachment
https://issues.jboss.org/secure/attachment/12431091/FixKeycloakSecurityContextRequestFilter.java
from https://issues.jboss.org/browse/KEYCLOAK-6565
2019-11-08 11:51:27 -03:00
Jon Koops
5281a38cf7
[KEYCLOAK-11771] Add missing type definitions for config
2019-11-08 10:36:04 -03:00
Jon Koops
913056b2b2
[KEYCLOAK-11971] Remove credentials option from configuration
2019-11-08 11:36:18 +01:00
sebastienblanc
263a64ef0a
add a legacy shaded adapters jar for spring boot 1
2019-11-07 13:58:20 +01:00
Stian Thorgersen
f14f92ab0b
KEYCLOAK-6073 Make adapters use discovery endpoint for URLs instead of hardcoding ( #6412 )
2019-11-06 10:34:35 +01:00
Peter Skopek
d0386dab85
KEYCLOAK-8785 remove k_version endpoint ( #6428 )
2019-11-05 11:35:55 +01:00