Bill Burke
1c6e90c4ef
protocol mapper ui
2015-02-27 17:21:02 -05:00
pedroigor
b45d6b896a
[KEYCLOAK-883] - Configuration option to disable token retrieval from applications.
2015-02-27 02:13:27 -03:00
pedroigor
6e38964838
[KEYCLOAK-883] - Minor changes to the configuration of identity providers for clients.
2015-02-25 21:00:49 -03:00
Bill Burke
9f759ed77c
rest interface for claim mapping
2015-02-25 11:34:51 -05:00
Bill Burke
1704a6c643
Merge remote-tracking branch 'upstream/master'
2015-02-24 19:37:22 -05:00
Bill Burke
c20ad93807
claim mappings next phase
2015-02-24 19:37:07 -05:00
Stian Thorgersen
0ad3c72c0a
Merge pull request #982 from girirajsharma/master
...
[KEYCLOAK-1031]-Multiple accounts with the same email.
2015-02-24 13:35:15 +01:00
Bill Burke
100dbd5fd7
ProviderFactory.postInit()
2015-02-23 12:11:48 -05:00
girirajsharma
f83f76b143
[KEYCLOAK-1031]-Multiple accounts with the same email.
2015-02-23 22:29:00 +05:30
Bill Burke
1dde3e1459
provider events
2015-02-23 11:39:24 -05:00
Bill Burke
69582ee3be
more claims work
2015-02-21 10:26:55 -05:00
Bill Burke
42ffe21f91
Merge remote-tracking branch 'upstream/master'
2015-02-20 09:23:18 -05:00
Bill Burke
20f12ea960
changes
2015-02-20 09:22:49 -05:00
mposolda
d8024b0c6c
Kerberos refactored to be federation provider. Support for Kerberos and LDAP. Username/password authentication support with kerberos credentials.
...
First step - KerberosFederationProvider
Finished KerberosFederationProvider. Added support for username/password authentication with kerberos credentials
Added Kerberos UI to LDAPFederationProvider
Fixes
2015-02-18 17:19:15 +01:00
Bill Burke
ebd9bae1ee
client to protocol mapping model
2015-02-15 17:01:34 -05:00
Bill Burke
2fb97f058b
claim support phase 2
2015-02-14 09:56:19 -05:00
Bill Burke
8586a8d1a5
Merge remote-tracking branch 'upstream/master'
2015-02-13 20:57:51 -05:00
Bill Burke
c09b17c2e2
claim mapping phase 1
2015-02-13 20:57:38 -05:00
mposolda
3ef243dd42
Add authenticateByDefault flag to IdentityProviderModel
2015-02-13 10:08:51 +01:00
pedroigor
1e13254598
[KEYCLOAK-992] - Initial code for examples. Fixing cors when retreiving tokens.
2015-02-08 03:27:57 -02:00
pedroigor
4b1ba704ec
[KEYCLOAK-992] - Token retrieval from brokered idps.
2015-02-06 22:23:34 -02:00
pedroigor
47f8f44347
[KEYCLOAK-883] - Fixing alias update.
2015-02-06 16:03:47 -02:00
pedroigor
2065815627
[KEYCLOAK-883] - Model tests.
2015-01-27 23:53:56 -02:00
Bill Burke
a0ba6d2c16
saml redirect logout 1st step
2015-01-16 18:57:33 -05:00
pedroigor
fa2533ed11
[KEYCLOAK-883] - Initial changes.
2015-01-13 00:58:19 -02:00
Stian Thorgersen
a843e31c12
KEYCLOAK-862 Use HmacSHA256 for code signatures
2014-11-27 10:02:08 +01:00
Stian Thorgersen
9b0d5acb50
KEYCLOAK-704 KEYCLOAK-768 Improvements to access code generation
2014-10-31 12:45:03 +01:00
mposolda
7d8f265789
KEYCLOAK-759 dynamic registration of managementUrls in cluster
2014-10-17 21:51:46 +02:00
Bill Burke
4d007c776a
generate/store realm certificate
2014-10-11 10:49:04 -04:00
Bill Burke
a1d1877751
ClientModel attributes and protocol
2014-10-08 10:54:13 -04:00
Bill Burke
4b399fe05a
login protocol abstraction
2014-10-01 10:01:42 -04:00
Stian Thorgersen
7c7025a83d
KEYCLOAK-648 Fix removing role from composite role
2014-08-29 10:18:00 +02:00
Stian Thorgersen
3bfe3d256e
Rename audit to events
2014-08-28 10:56:37 +02:00
Bill Burke
7c97e02715
X-Frame-Options, Content-Security-Policy
2014-08-11 17:45:01 -04:00
Bill Burke
8d1ff1d49c
add jpa realm attributes
2014-08-11 12:33:17 -04:00
mposolda
d699404ce7
Support for periodic users sync
2014-08-10 23:23:50 +02:00
Bill Burke
9aa6b4cbfa
optimize imports
2014-08-10 12:17:45 -04:00
Bill Burke
d332851a75
Merge pull request #606 from alarikmyrin/KEYCLOAK-621
...
KEYCLOAK-621 fix searchForUserByAttributes method
2014-08-10 11:02:08 -04:00
Alarik Myrin
428cd54a81
KEYCLOAK-621 fix searchForUserByAttributes method so that it works and is not subject to SQL injection
2014-08-09 13:59:20 -04:00
Bill Burke
99e6f0edad
delete fed provider
2014-08-06 20:38:30 -04:00
mposolda
38c0b4ad65
Fixing oracle
2014-08-05 15:45:28 +02:00
Bill Burke
ea0ceeb65d
Merge pull request #589 from patriot1burke/master
...
app full scope
2014-08-04 16:26:51 -04:00
Bill Burke
731d75c756
app full scope by default
2014-08-04 16:04:10 -04:00
mposolda
5edb84ccfb
Ensure that displayName is persisted. Add 'user' to ActiveDirectory classes
2014-08-04 16:42:48 +02:00
Bill Burke
101a72cd65
remove AuthenticationProvider/Link
2014-08-01 18:03:48 -04:00
Stian Thorgersen
6cbeeb1b1a
KEYCLOAK-591 Require SSL for all external requests by default
2014-08-01 13:52:04 +01:00
Bill Burke
b72a7db6fe
federation display name
2014-07-31 10:51:04 -04:00
Bill Burke
d0dc75c06f
federation ui
2014-07-30 22:52:39 -04:00
Bill Burke
8ea0d19d2f
federation refactor
2014-07-30 16:01:54 -04:00
Bill Burke
3bb0842eae
federation iteration 2
2014-07-25 21:05:45 -04:00
Bill Burke
b1cd37814a
rename
2014-07-25 10:40:46 -04:00
Bill Burke
1b14444eba
rename FederationProvider to UserFederationProvider
2014-07-24 11:11:21 -04:00
Stian Thorgersen
511cc483cb
Moved audit/tests and model/tests to testsuite
2014-07-24 13:49:15 +01:00
Bill Burke
eec582e704
merge
2014-07-23 15:10:36 -04:00
Bill Burke
148d494905
federation iteration
2014-07-23 10:21:25 -04:00
mposolda
b3b46339a4
More DB schema refactoring. Ensure that all columns are named in code
2014-07-22 07:53:05 +02:00
Stian Thorgersen
213b685b43
KEYCLOAK-569 Check application roles for scope
2014-07-21 13:50:27 +01:00
Bill Burke
b999c1e5b1
remove hack comment
2014-07-18 12:07:30 -04:00
Stian Thorgersen
85621bdd9f
KEYCLOAK-566 Configure db in keycloak-server.json instead of persistence.xml
2014-07-18 11:21:52 +01:00
Bill Burke
aa2d1bcc93
db schema
2014-07-17 16:32:36 -04:00
Bill Burke
20cde9cd00
realmId and roleId used in User and user relationships
2014-07-17 15:41:02 -04:00
Bill Burke
3edce7f580
named queries and roleId in RoleMapping
2014-07-17 15:20:56 -04:00
Stian Thorgersen
46c04561ff
Removed long ids and replaced with composite ids
2014-07-17 11:16:15 +01:00
mposolda
b041f2a857
Added method UserProvider.getUsersCount(). Refactor export-import with users pagination available
2014-07-17 10:15:13 +02:00
Bill Burke
a323fe7992
schema changes
2014-07-16 19:34:54 -04:00
Bill Burke
1963e94e33
use long for primary key
2014-07-16 17:11:59 -04:00
Stian Thorgersen
c21be01e97
Merge pull request #529 from stianst/master
...
KEYCLOAK-435 Added pagination support for users
2014-07-16 18:04:36 +01:00
Stian Thorgersen
72d240a57e
KEYCLOAK-435 Added pagination support for users
2014-07-16 17:54:11 +01:00
Bill Burke
8fbfba907b
Merge remote-tracking branch 'upstream/master'
2014-07-16 12:05:31 -04:00
Bill Burke
f342a8c7a3
move credential validation to UserProvider
2014-07-16 12:05:15 -04:00
Stian Thorgersen
3451778f48
KEYCLOAK-554 Fix for MySQL 5.1. Set length of keys to 36 for uuid's or 200 for others
2014-07-16 09:51:31 +01:00
Bill Burke
a5593469ae
rename ModelProvider->RealmProvider
2014-07-15 15:44:50 -04:00
Bill Burke
484a4c1454
user provider refactor complete
2014-07-15 15:25:06 -04:00
Bill Burke
ff86bdc35f
userprovider split
2014-07-15 12:11:12 -04:00
mposolda
c14840a4c0
More cleanup after rebase
2014-07-15 14:44:38 +02:00
Stian Thorgersen
d625fb014c
Added JPA connection provider and added basic support for multiple transactions to KeycloakSession
2014-07-14 10:10:03 +01:00
Bill Burke
5f5316fbdc
session transaction
2014-07-11 19:29:11 -04:00
Stian Thorgersen
86671a2354
Started UserSessionProvider
2014-07-10 16:48:25 +01:00
Stian Thorgersen
62dd6fbc6b
Revert JPA model provider
2014-07-09 15:40:23 +01:00
Stian Thorgersen
387aed6269
Removed JPA model provider
2014-07-08 15:35:49 +01:00
Stian Thorgersen
ad6d52cb0f
Removed model methods from KeycloakSession
2014-07-08 15:27:42 +01:00
Stian Thorgersen
8dc293f629
Removed removeAllData from model
2014-07-08 15:27:42 +01:00
mposolda
ffc30b4c03
Changes in representations - adding role mappings under user representation
2014-07-07 22:48:53 +02:00
Bill Burke
060a90197e
Merge remote-tracking branch 'upstream/master'
2014-07-07 15:00:05 -04:00
Bill Burke
df7aac01dd
fix delete realm
2014-07-07 14:59:51 -04:00
Bill Burke
bda218af07
Merge pull request #500 from patriot1burke/master
...
configurable hash iterations
2014-07-07 12:12:25 -04:00
Bill Burke
15d7568792
configurable hash iterations
2014-07-07 12:11:45 -04:00
Stian Thorgersen
38857cf2e6
Remove notBefore from users
2014-07-07 16:23:53 +01:00
Stian Thorgersen
099743d448
Rename loginName to username
2014-07-07 15:56:21 +01:00
Bill Burke
e37b5613ed
turn on cache
2014-07-03 15:29:31 -04:00
Bill Burke
b4f5fe9977
model fix for caching
2014-06-30 13:12:42 -04:00
Stian Thorgersen
34a1923d18
Refactor to prepar for splitting model
2014-06-27 09:39:06 +01:00
mposolda
19a545049b
KEYCLOAK-536 Fix Sybase - role can't be used as column name as it's keyword in sybase
2014-06-18 12:31:55 +02:00
mposolda
2fd7fdaa74
KEYCLOAK-535 Fix Keycloak with Oracle
2014-06-18 10:29:57 +02:00
mposolda
f9cb99a1ee
KEYCLOAK-534 Fix MS-SQL
2014-06-17 19:41:19 +02:00
Bill Burke
f50177996d
better fetch for role mappings
2014-06-16 10:15:53 -04:00
Bill Burke
cbea141a54
cache impl
2014-06-13 17:17:45 -04:00
Bill Burke
4a518c964b
mongo refactor for caching
2014-06-12 16:51:19 -04:00
Bill Burke
bb2ad656a3
cache implement
2014-06-12 11:45:50 -04:00
Bill Burke
2ae2067841
refactor for caching again
2014-06-12 11:11:14 -04:00
Bill Burke
0dd06e3343
model refactor for caching
2014-06-10 18:50:08 -04:00
Bill Burke
2f3c8bf079
cache refactor
2014-06-06 15:12:58 -04:00
Bill Burke
9410adf9ce
fix deadlocks
2014-06-02 21:33:43 -04:00
Bill Burke
e4232c73c6
admin rest api example
2014-05-23 18:20:55 -04:00
Stian Thorgersen
cc97265c06
Add realm option to enable/disable Resource Owner Password Credentials Grant
2014-05-20 11:32:22 +01:00
Stian Thorgersen
8d1149dc07
Add email theme config for realm
2014-05-20 11:00:43 +01:00
Bill Burke
95f56e2e62
fix removeexpired sessions
2014-05-19 18:33:54 -04:00
Bill Burke
c2bf6c3822
Merge remote-tracking branch 'upstream/master'
2014-05-17 14:24:37 -04:00
Bill Burke
ab8de6ba25
client user-session association
2014-05-17 14:24:32 -04:00
Stian Thorgersen
855269f35d
Added 'keycloak-server.json' for configuring the server
...
Added SPI interface to detect SPI's
Converted Model to SPI/Provider to be loaded through ProviderSessionFactory
2014-05-16 17:33:22 +01:00
Bill Burke
bc2360e985
sso session idle and max lifespan
2014-05-15 17:25:57 -04:00
Bill Burke
27efd3c0a4
ssoSessionIdleTimeout refactor
2014-05-15 13:53:28 -04:00
Stian Thorgersen
f4f9b1e323
KEYCLOAK-431 View open sessions, and logout all sessions, through account management
2014-05-14 11:56:28 +01:00
Bill Burke
1e1991e285
per-realm admin
2014-05-12 10:12:31 -04:00
Stian Thorgersen
6f0b12174c
KEYCLOAK-432 Added user sessions
2014-05-09 11:52:45 +01:00
mposolda
0801c9c120
Full export-import implemented. Remove dependency of mongo on picketlink-common
2014-05-06 22:15:57 +02:00
Stian Thorgersen
9811aaeecc
KEYCLOAK-333 Removed use of RestEasy's Logger
2014-04-30 10:13:53 +01:00
Stian Thorgersen
316431c4d1
Ensure role name unique within realm/app
2014-04-30 09:50:29 +01:00
Stian Thorgersen
646e762cbe
Ensure user loginName and email unique within realm
2014-04-29 17:15:28 +01:00
Stian Thorgersen
1d94649b96
Ensure application and client names are unique within realm
2014-04-29 12:03:09 +01:00
Stian Thorgersen
364998b34b
Enforce that realm name is unique in model
2014-04-29 10:43:27 +01:00
Stian Thorgersen
3d02fd5d0e
KEYCLOAK-429 Remove role from composite roles when deleted
2014-04-28 12:55:04 +01:00
Stian Thorgersen
573c88564b
Temporarily disabled unique constraint on Realm names as it breakes tests
2014-04-25 17:58:49 +01:00
Stian Thorgersen
292089cee8
Ensure Realm names are unique
2014-04-25 17:02:03 +01:00
Stian Thorgersen
f64f55a4c6
KEYCLOAK-347 Link realm and realm-permissions application
2014-04-25 15:32:28 +01:00
Bill Burke
54abfb670c
brute force settings
2014-04-15 11:37:27 -04:00
Bill Burke
2b8d2288fb
more brute force detection
2014-04-14 18:58:45 -04:00
Stian Thorgersen
8ca46fa35d
Audit configurable through admin console
2014-04-07 17:58:52 +01:00
Bill Burke
126b444d77
brute force merge
2014-04-02 20:26:33 -04:00
Bill Burke
d58870545f
brute force protection
2014-04-02 20:09:14 -04:00
mposolda
25bf6d63b4
Refactoring of AuthenticationProvider SPI
2014-04-02 17:27:07 +02:00
mposolda
05cd8a82e5
Storing default AuthenticationProvider at the realm creation time
2014-04-02 17:17:33 +02:00
Stian Thorgersen
225307e855
KEYCLOAK-389 Added AuditListener SPI
...
KEYCLOAK-390 Added JBoss Logging AuditListener
KEYCLOAK-391 Audit Token events
2014-03-31 17:35:14 +01:00
mposolda
793f69d4b6
Authentication SPI. Implementations based on Picketlink+LDAP, model and external model (other realm). Added KeycloakRegistry
2014-03-24 23:11:11 +01:00
Bill Burke
52018b1f81
revoke on logoutAll
2014-03-12 15:57:43 -04:00
Bill Burke
fcc95ef99b
fix delete realm
2014-03-12 15:00:31 -04:00
Stian Thorgersen
6dc156712e
KEYCLOAK-359 Add user friendly username for social links
2014-03-12 08:52:47 +00:00
mposolda
3d0d130622
KEYCLOAK-26 Linking social providers to existing account
2014-03-10 11:31:59 +01:00
Bill Burke
599faa3cb5
public clients
2014-03-05 20:26:27 -05:00
Bill Burke
716972347d
revocation
2014-03-03 15:50:10 -05:00
Bill Burke
8126110312
refactor getRoleById
2014-03-02 20:28:58 -05:00
Bill Burke
7b30cc59b8
revocation phase 1
2014-02-28 19:47:05 -05:00
Bill Burke
c78d1c90e4
remove clientmodel.getAgent()
2014-02-27 16:48:34 -05:00
Bill Burke
3fc273070e
remove clientmodel.agent phase1
2014-02-27 13:55:04 -05:00
Bill Burke
f8da693fd0
move secret to clientmodel
2014-02-27 10:59:47 -05:00
Bill Burke
48d39bf977
Use ClientModel wherever possible
2014-02-26 22:04:57 -05:00
Bill Burke
c02d532001
refactor model
2014-02-26 19:25:42 -05:00
Bill Burke
b249809d2e
claims backend
2014-02-26 15:29:17 -05:00
Stian Thorgersen
9a73936002
KEYCLOAK-292 Fine-grained admin control
2014-02-25 12:53:36 +00:00
Bill Burke
01ddafa83a
central login timeouts, rememberme framework
2014-02-22 21:52:29 -05:00
Bill Burke
baa0e453b6
Merge remote-tracking branch 'upstream/master'
2014-02-21 17:37:29 -05:00
Bill Burke
0a9b82a6f4
refresh tokens server side
2014-02-21 17:36:39 -05:00
mposolda
8a4ef40e9e
Added new unit tests. Change get***ById() to find just entities from this realm/application
2014-02-21 23:16:06 +01:00
Bill Burke
9607acdb6a
refactor token creation
2014-02-21 12:02:24 -05:00
Stian Thorgersen
9ce8e16063
KEYCLOAK-284 Subject in token is now user id instead of username
2014-02-21 09:48:43 +00:00
mposolda
02db44cd96
KEYCLOAK-302 Ensure that all tables and columns have maximum length 30 characters
2014-02-18 20:58:40 +01:00
mposolda
cec57b169e
Fix all tests with MySQL. Removing nested transactions
2014-02-18 11:22:19 +01:00
mposolda
1375e72cf7
KEYCLOAK-289 Refactoring to use UUID instead of autogenerated ID in JPA model
2014-02-17 18:23:14 +01:00
mposolda
5578e3b6f3
Added profiles for MySQL and PostgreSQL. Added support for overriding hibernate config with System properties
2014-02-17 18:23:14 +01:00
Bill Burke
0cdd5e857e
use secrets
2014-02-13 18:36:41 -05:00
mposolda
b9ff73d61c
Moved model unit tests from services to model/tests . Mongo profile in testsuite
2014-02-11 18:26:50 +01:00
mposolda
81ff7b0c6d
Refactoring Mongo model. All unit tests passing with mongo
2014-02-11 15:23:30 +01:00
Bill Burke
d2ad6349ba
remove setComposite
2014-02-04 18:41:36 -05:00
Bill Burke
4e66a3bf81
Merge remote-tracking branch 'upstream/master'
2014-02-04 10:09:25 -05:00
Bill Burke
92091d9474
composite tests
2014-02-04 10:09:09 -05:00
Stian Thorgersen
97897cab1d
KEYCLOAK-15 Customize login and registration forms
2014-02-04 11:45:24 +00:00
Stian Thorgersen
38b7dcdf7d
Fixes to persistence.xml for distribution
2014-02-04 11:44:02 +00:00
Bill Burke
1543963c9f
composite tests
2014-01-30 20:31:44 -05:00
Bill Burke
6a5994c3e2
composite roles 2
2014-01-29 23:28:08 -05:00
Bill Burke
bb5991239b
composite roles
2014-01-29 20:19:32 -05:00
Bruno Oliveira
4a53116f2e
Add PBKDF2 encoder support for storing passwords
2014-01-22 10:44:26 -02:00
Stian Thorgersen
070c0ddba4
Renamed registration to default roles, add default roles to all users when they are created
2014-01-17 10:03:13 +00:00
Stian Thorgersen
dcfb83b0f2
KEYCLOAK-64 KEYCLOAK-246 Updated social to use update profile required action instead of registration form. Fixed Google provider
2014-01-16 12:52:46 +00:00
Bill Burke
b162190c7f
remove cookieLoginAllowed
2014-01-15 20:31:01 -05:00
Bill Burke
894c28c64f
role name instead of id
2014-01-15 19:39:21 -05:00
Bill Burke
ed0d33126c
use app name instead of id
2014-01-15 16:57:12 -05:00
Bill Burke
2dbd7cfa02
realm name for url param
2014-01-14 13:03:13 -05:00
Bill Burke
4825974edc
realm name in url
2014-01-13 23:38:00 -05:00
Bill Burke
834baf0e27
refactor admin actions
2013-12-19 15:22:15 -05:00
Stian Thorgersen
cd8c8d52e8
KEYCLOAK-217 Add option to recover username
2013-12-07 13:18:06 +00:00
Stian Thorgersen
c514e6c152
KEYCLOAK-197 Fix search for users returns users for all realms
2013-12-06 19:22:55 +00:00
Stian Thorgersen
a423c38e42
KEYCLOAK-214 view all users in a realm through admin console
2013-12-06 19:09:03 +00:00
Stian Thorgersen
7f499b2833
KEYCLOAK-186 Password policies
2013-12-03 12:53:26 +00:00
Stian Thorgersen
85eeb415e1
KEYCLOAK-181
...
Link back to application from account management pages
2013-11-28 13:48:30 +00:00
Bill Burke
f79739f73e
oauth client
2013-11-26 15:39:57 -05:00
Stian Thorgersen
f933ffba3f
User search returned users for all realms
2013-11-26 13:53:57 +00:00
Stian Thorgersen
52c7ae057a
Delete realm
2013-11-25 15:38:25 +00:00
Stian Thorgersen
fad194fc8f
Improved error handling in admin console. Delete roles through admin console.
2013-11-25 13:46:04 +00:00
Stian Thorgersen
7a0ff0cb66
KEYCLOAK-159
2013-11-16 10:41:49 +00:00
Stian Thorgersen
219c0efbaf
KEYCLOAK-105
2013-11-16 10:13:23 +00:00
Stian Thorgersen
45424e5eba
Removed '*' role
2013-11-15 16:38:44 +00:00
Stian Thorgersen
a923f44619
KEYCLOAK-100
...
UI: Delete User does not work
2013-11-15 16:38:28 +00:00
Stian Thorgersen
158d1740b8
KEYCLOAK-72 and KEYCLOAK-158
2013-11-15 11:03:25 +00:00
Stian Thorgersen
5c541c5cf0
Fix - KEYCLOAK-99 UI: Users query should support wildcard
2013-11-14 17:38:23 +00:00
Stian Thorgersen
50d6d609b4
KEYCLOAK-99 UI: Users query should support wildcard
2013-11-14 17:13:06 +00:00
Stian Thorgersen
10f48a1bda
Change dist to WildFly 1.0.0.Beta1
2013-11-14 16:16:08 +00:00
Stian Thorgersen
2e9a474eac
Use service loader to load model provider
2013-11-12 11:49:03 +00:00
Bill Burke
2861ea0e96
nasty merge
2013-11-05 23:12:07 -05:00
Bill Burke
d04ca2c34f
jpa backend
2013-11-05 21:26:33 -05:00
Stian Thorgersen
a88dcace3d
Added maps for social config and smtp server to realm
2013-10-22 13:47:30 +01:00
Bill Burke
a4e3431445
model module refactor
2013-10-02 09:54:26 -04:00