libre.sh/keycloak-scim
2
0
Fork 0
Code Issues 14 Pull requests Releases Packages Activity Actions 6
4529 commits 4 branches 5 tags 480 MiB
Commit graph

472 commits

Author SHA1 Message Date
Stian Thorgersen
5bd53804f9 Fix admin-api to show that users are retrieved by ip, not username 2015-06-12 13:32:30 +02:00
Stian Thorgersen
5993d40fab Merge pull request #1353 from Smartling/KEYCLOAK-1438 
Fix Spring Security adapter logout handling
 2015-06-12 07:50:00 +01:00
Marko Strukelj
9a37696d29 Fixed pom issues that were generating tons of Maven warnings 2015-06-11 16:57:33 +02:00
Marko Strukelj
92e17f4b40 KEYCLOAK-1412 Server-overlay for EAP 6.4 
- Added as7-server-subsystem
 - Added eap6-server-overlay
 - Moved modules to eap6-server-modules
 - Renamed wildfly-server-subsystem to wf9-server-subsystem for consistency
 2015-06-11 09:40:47 +02:00
Scott Rossillo
abfec23404 Fix Spring Security adapter logout handling 
Stops KeycloakLogoutHandler from throwing an exception if the
authentication is not of type KeycloakAuthenticationToken.

Fixes KEYCLOAK-1438.
 2015-06-10 12:22:18 -04:00
Marko Strukelj
3643e76a06 Cleanup, and simplify keycloak-server-subsystem 
- KEYCLOAK-1346 Remove support for overlays in server subsystem
 - KEYCLOAK-1347 Remove support for multiple auth-servers
 - KEYCLOAK-1348 Simplify server subsystem definition
 2015-06-08 15:33:34 +02:00
mposolda
35e4a5e56d KEYCLOAK-1368 allow forwarding to error page in bearer-only deployments. Adding DeploymentBuilder 2015-06-03 12:34:56 +02:00
Marko Strukelj
3df504b6b4 KEYCLOAK-1304 WF9 server subsystem 
- remove unnecessary dependencies
 2015-06-01 16:07:59 +02:00
Stian Thorgersen
5f787028df KEYCLOAK-1327 Updated for users 2015-05-29 15:29:04 +01:00
Stian Thorgersen
e1e65af8ea Merge pull request #1301 from mstruk/wf9 
KEYCLOAK-1303 WF9 adapter subsystem
 2015-05-29 15:23:28 +01:00
Marko Strukelj
2077a2a3af KEYCLOAK-1303 WF9 adapter subsystem 
- not dependent on distribution/modules any more
 - keycloak-adapter-subsystem moved to keycloak-wf9-subsystem
 - still installed as <extension module="org.keycloak.keycloak-adapter-subsystem"/>
 2015-05-29 15:17:41 +02:00
Stian Thorgersen
a953b52eac KEYCLOAK-1327 Updated for client stats 2015-05-29 13:15:35 +01:00
Stian Thorgersen
6f164f0ee9 KEYCLOAK-1327 Updated for clients 2015-05-29 13:15:34 +01:00
Marko Strukelj
4f270bffd0 Refactor EAP 6 adapter distribution 
- not dependent on distribution/modules any more
 - uses the same modules as AS7
 - again use <extension module="org.keycloak.keycloak-adapter-subsystem"/>
 2015-05-28 23:56:11 +02:00
Marko Strukelj
fa90602aa0 Refactor AS 7 adapter distribution 
- not dependent on distribution/modules any more
 - again use <extension module="org.keycloak.keycloak-adapter-subsystem"/>
 2015-05-28 23:56:11 +02:00
behana
bbc3e99bb5 KEYCLOAK-1353 Option to pass client_id to resetPasswordMail 2015-05-28 00:10:36 +02:00
behana
e8e22ee44c KEYCLOAK-1352 Add send-verify-email to admin-rest-api 2015-05-28 00:05:39 +02:00
Marko Strukelj
d70fd86a82 Wildfly 8.2.0.Final compatibility 
- added integration/keycloak/wf8-subsystem
 - added distribution/adapters/wf8-adapter containing wf8-modules, and wf8-adapter-zip
 - there's no dependency on distribution/modules
 - subsystem is installed by unzipping keycloak-wf8-adapter-dist.zip to Wildfly 8.2.0.Final, and adding <extension-module>org.keycloak.keycloak-wf8-subsystem</extension-module> to standalone.xml
 2015-05-22 17:38:02 +02:00
Stian Thorgersen
4e0a32a37a Version bump 2015-05-22 09:04:30 +02:00
Marko Strukelj
91bf50eb6c AS 7.1.1.Final / EAP 6.4 compatibility 2015-05-21 11:30:26 +02:00
Stian Thorgersen
362babe5e2 Fixed server-dist 2015-05-19 08:15:39 +02:00
Stian Thorgersen
dbf9525860 KEYCLOAK-1312 Add clearToken to keycloak.js 2015-05-13 13:13:36 +02:00
Stian Thorgersen
6c98d64874 Merge pull request #1238 from raehalme/KEYCLOAK-1294 
Added support for GrantedAuthoritiesMapper in KeycloakAuthenticationProvider
 2015-05-13 06:57:29 +02:00
Scott Rossillo
4d32ac8765 Add Servlet 2.x support to the Spring Security adapter 
Cookie.setHttpOnly() was added in Servlet 3.0. Make setting a
cookie as HttpOnly dependent on servlet version.
 2015-05-11 19:48:16 -04:00
Thomas Raehalme
78999537f0 Added support for GrantedAuthoritiesMapper in KeycloakAuthenticationProvider. 2015-05-09 13:42:09 +03:00
Bill Burke
e3b0cc7093 Merge pull request #1236 from Smartling/KEYCLOAK-1291 
Improve Spring Security adapter default configuration
 2015-05-08 20:53:36 -04:00
Bill Burke
50014f4398 Merge pull request #1235 from Smartling/KEYCLOAK-1290 
Use backchannel logout for Spring Security SSO
 2015-05-08 20:53:26 -04:00
Bill Burke
833c276424 Merge pull request #1234 from mstruk/wfly-subs-split-master 
Wildfly 9 - subsystem split + feature packs
 2015-05-08 20:53:17 -04:00
Scott Rossillo
d37a9eada3 Improve Spring Security adapter default configuration 2015-05-08 18:24:49 -04:00
Scott Rossillo
a7bfae2f56 Use backchannel logout for Spring Security SSO 
Use backchannel logout for Keycloak's Spring Security adapter
single sign-out to allow Spring Security's logout complete handler
to fire.
 2015-05-08 18:20:17 -04:00
Stian Thorgersen
58fc4520c9 Merge pull request #1232 from Smartling/KEYCLOAK-1287 
Enable Spring Security adapter to register nodes
 2015-05-08 07:09:42 +02:00
Stian Thorgersen
53716697ca Merge pull request #1222 from Smartling/KEYCLOAK-1273 
Improve Spring Security adapter client to client authorization
 2015-05-08 07:01:14 +02:00
Scott Rossillo
8ca9a6a64a Enable Spring Security adapter to register nodes 
Enable dynamic application node registration and unregistration
from Spring Security protected applications.
 2015-05-07 20:09:16 -04:00
Scott Rossillo
2ce3925ba9 Permit Spring Security adapter to process admin tasks with CSRF enabled 
Spring Security's CSRF protection blocks Keycloak administrative
actions when configured with the default request matcher.

This provides a CSRF request matcher that permits Keycloak
administrative actions without the CSRF token.
 2015-05-07 19:58:27 -04:00
Scott Rossillo
b05da425b9 Improve Spring Security adapter client to client authorization 2015-05-06 16:54:55 -04:00
Marko Strukelj
4e58bed39e Move keycloak modules under integration/keycloak 2015-05-05 20:48:13 +02:00
Marko Strukelj
7d2942e1be KEYCLOAK-1183 Split subsystem into separate server and adapter subsystems 
- Rename keycloak-server-subsystem dir to wildfly-server-subsystem
 - Rename keycloak-agent-subsystem dir to keycloak-wildfly-agent-subsystem
 - Rename artifacts accordingly (keycloak- prefix)
 Only maven artifacts are renamed, jboss-modules modules are still called keycloak-server-subsystem, and keycloak-agent-subsystem
 2015-05-05 20:43:23 +02:00
Marko Strukelj
943404689e KEYCLOAK-1183 Split subsystem into separate server and adapter subsystems 
- Use WildFly 9.0.0.CR1
 2015-05-05 20:40:05 +02:00
Marko Strukelj
89875aea02 KEYCLOAK-1183 Split subsystem into separate server and adapter subsystems 
- Fix deprecated uses, and more code cleanup
 2015-05-05 20:40:05 +02:00
Marko Strukelj
70ce96caa0 KEYCLOAK-1183 Split subsystem into separate server and adapter subsystems 
- Fix overlooked file renames causing subsystem tests to fail
 2015-05-05 20:40:05 +02:00
Stan Silvert
3a7bba041f Create builds based on WildFly 9 feature packs. 2015-05-05 20:40:04 +02:00
Marko Strukelj
87cb28eaab KEYCLOAK-1183 Split subsystem into separate server and adapter subsystems 
- Fix server-subsystem tests
 2015-05-05 20:40:04 +02:00
Marko Strukelj
03fa58a271 KEYCLOAK-1183 Split subsystem into separate server and adapter subsystems 
- POM dependencies cleanup
 2015-05-05 20:40:03 +02:00
Marko Strukelj
3c76a85674 KEYCLOAK-1183 Split subsystem into separate server and adapter subsystems 
- More code and pom cleanup
 2015-05-05 20:40:03 +02:00
Marko Strukelj
c571ad9902 KEYCLOAK-1183 Split subsystem into separate server and adapter subsystems 
- Renamed keycloak-subsystem into keycloak-server-subsystem
 - Added keycloak-adapter-subsystem without auth-server support
 - Removed adapter config from keycloak-server subsystem
 - Added proper .xsd for server subsystem
 2015-05-05 20:40:03 +02:00
Tomaz Cerar
355c440c3d Update subsystem code to reflect latest standards 2015-05-05 20:38:52 +02:00
Tomaz Cerar
9a17658f84 remove eap6 dup 2015-05-05 20:38:52 +02:00
Stian Thorgersen
035529d7a2 Version bump 2015-05-05 11:45:21 +02:00
Bill Burke
761be66362 Merge pull request #1199 from patriot1burke/master 
apache http client fixes
 2015-04-29 21:59:50 -04:00
Bill Burke
666827b7cb remove resteasy ClientRequest 2015-04-29 20:46:14 -04:00
Bill Burke
10998eb35b Merge pull request #1193 from behana/master 
Let admin-client acquire new token if refresh_token is stale
 2015-04-29 16:33:20 -04:00
behana
8dfc7d9e8d Let admin-client acquire new token if refresh_token is stale 2015-04-29 05:01:59 +02:00
Scott Rossillo
06a7938aa6 Add Spring Security adapter 2015-04-28 15:05:56 -04:00
Stian Thorgersen
215a3497ae KEYCLOAK-1189 Add apache httpclient module with slot 4.3 2015-04-27 16:33:48 +02:00
Stian Thorgersen
870f29d797 Merge pull request #1172 from stianst/master 
Dist work
 2015-04-23 12:40:38 +02:00
Stian Thorgersen
e17105cc8e Updated distribution and cleaning of maven modules 2015-04-23 11:15:05 +02:00
Stian Thorgersen
cf75a97f08 Merge pull request #1169 from gkfirst8/KEYCLOAK-1220 
log the right value when keycloak.config.file could not be found or read
 2015-04-22 14:08:29 +02:00
gkfirst8
0b782e9910 Fix logging call 2015-04-22 10:54:43 +02:00
Leonardo Loch Zanivan
642fc996fb Basic Auth token fix 2015-04-21 16:22:14 -03:00
Leonardo Loch Zanivan
6ce0285315 Basic Auth token fix 2015-04-21 12:32:17 -03:00
gkfirst8
aef61411e9 log the right value when keycloak.config.file could not be found or read 
Fix for [KEYCLOAK-1220]
 2015-04-21 11:46:33 +02:00
Stian Thorgersen
5ed864fbbc KEYCLOAK-1208 Allow same-origin if cors is enabled 2015-04-21 10:42:13 +02:00
Dane Barentine
4fe328002a [KEYCLOAK-1206] Change role mapping path in admin client to match API changes 2015-04-14 22:21:28 -07:00
Dane Barentine
b1b149e0c3 [KEYCLOAK-1205] Fix BearerAuthFilter refreshing token after it's expired 2015-04-14 22:19:07 -07:00
Stian Thorgersen
46e386cd43 KEYCLOAK-1187 2015-04-13 13:54:30 +02:00
Stian Thorgersen
4fbbf39c51 KEYCLOAK-1187 Admin console and endpoints 2015-04-13 13:29:31 +02:00
Stian Thorgersen
a18715a774 Deprecate OAuthClientRepresentation and ApplicationRepresentation and added ClientRepresentation 2015-04-10 13:33:29 +02:00
Stian Thorgersen
1567982f0b Merge pull request #1128 from ssilvert/KEYCLOAK-1174-NPE-on-WF9 
KEYCLOAK-1174: NPE on WildFly 9
 2015-04-10 07:05:46 +02:00
Stan Silvert
875aae91fc Add owner attribute to Keycloak server deployment 2015-04-09 14:52:47 -04:00
Stan Silvert
bbef4e2be1 KEYCLOAK-1174: Refactor KeycloakAdapterConfigService to be a simple 
singleton
 2015-04-09 10:30:39 -04:00
Stian Thorgersen
6fbc0975c0 KEYCLOAK-1187 First round: Combined ApplicationModel and OAuthClientModel into ClientModel. Removed OAuth Clients from Admin console and renamed Applications to Clients. 2015-04-09 12:27:30 +02:00
mposolda
d0ead0f0a0 More logging 2015-04-07 08:46:39 +02:00
Bill Burke
326818ea45 bump pom versio 2015-04-02 09:36:43 -04:00
mposolda
6a34ad36f5 Fix clustering when auth-server-url-for-backend-requests is used 2015-04-02 13:02:24 +02:00
Stian Thorgersen
48c7bd1b5e KEYCLOAK-1171 Missing parameters: response_type login to oauth-client and oauth-client-cdi 2015-04-01 13:50:50 +02:00
mposolda
3256337614 CookieTokenStore not working correctly on EAP 6.3 2015-03-31 14:53:37 +02:00
Bill Burke
9d7db174e1 merged 2015-03-26 13:06:50 -04:00
Bill Burke
c20ab4a9a6 fix query parsing 2015-03-26 13:05:09 -04:00
Stian Thorgersen
b727087f04 KEYCLOAK-1150 
'iss' should be URL not just realm name
 2015-03-26 13:50:36 +01:00
mposolda
477d8b35e3 KEYCLOAK-1116 KEYCLOAK-1117 JSON migration and removal of ClientModel.claimsMask 2015-03-26 11:49:22 +01:00
Bill Burke
97d5f4aafc broker refactor 2015-03-20 18:56:25 -04:00
Stian Thorgersen
8ed1c475e4 KEYCLOAK-498 Package theme as a JAR 2015-03-20 14:13:25 +01:00
Stian Thorgersen
1714ce91d1 KEYCLOAK-1076 XML tag <enable-basic-auth> needed in secure-deployments for AS-7 subsystem 2015-03-20 07:37:16 +01:00
Stian Thorgersen
93f9706297 KEYCLOAK-1110 Fix role not removed from default roles when not deleted 2015-03-20 06:17:35 +01:00
Stian Thorgersen
1d4e8118f0 Updated admin-client to use new token endpoint 2015-03-20 06:04:36 +01:00
Bill Burke
b26277a17c broker fixes 2015-03-18 21:58:04 -04:00
Bill Burke
ce2c4188fb saml broker import/export, and module fixes 2015-03-17 19:20:46 -04:00
mposolda
4da566ae4d KEYCLOAK-1094 Rename k_idp_hint to kc_idp_hint 2015-03-16 20:00:20 +01:00
Stian Thorgersen
e2b02d414f Change adapters to use auth and token endpoints 2015-03-16 09:23:12 +01:00
mposolda
9b74393add KEYCLOAK-1102 Used just one ResteasyClient in admin client 2015-03-13 19:56:05 +01:00
Stian Thorgersen
1f5fedb0b0 Module provider loader 2015-03-06 05:30:17 +01:00
Stian Thorgersen
4cb3d51781 KEYCLOAK-1082 
Make sure session is valid if keycloak.js is initialized with tokens
 2015-03-05 07:42:31 +01:00
Bill Burke
98831ec05a fix other claims in IDToken 2015-03-04 20:27:06 -05:00
mposolda
03d607b022 Fix showing federation links of users in admin console 2015-02-11 13:03:31 +01:00
girirajsharma
c3d7ef8066 Updated BC provider versions and deprecated CertificateUtil methods. 2015-02-10 18:44:54 +05:30
pedroigor
ff1f10d7a7 [KEYCLOAK-883] - Refactoring to services endpoints and exposing them through admin client. 2015-02-09 21:30:21 -02:00
pedroigor
4ce2e76a2d [KEYCKOAK-883] - Adding idpHint config option when configuring login url. 2015-02-08 20:52:44 -02:00
mposolda
1d8ebd441d KEYCLOAK-1023 Improve osgi packaging for hawtio. Fix typos in fuse example docs. 2015-02-02 23:25:56 +01:00
Pedro Igor
e452165c4a Merge pull request #941 from pedroigor/KEYCLOAK-996 
[KEYCLOAK-996] - Allow application to select provider.
 2015-01-30 14:28:50 -02:00
pedroigor
99a457c5c1 [KEYCLOAK-996] - Allow application to select provider. 2015-01-30 14:02:53 -02:00