keycloak-scim

Author	SHA1	Message	Date
Vlasta Ramik	d63c0fbd13	Decouple Identity provider mappers from RealmModel (#32251 ) * Decouple Identity provider mappers from RealmModel Closes #31731 Signed-off-by: vramik <vramik@redhat.com>	2024-08-22 12:05:19 -03:00
Alexander Schwartz	04d2126c73	Don't fetch expired user sessions from the database Closes #32273 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-08-22 12:51:43 +02:00
Alexander Schwartz	5740f8836a	Cleanup Closes #32273 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-08-22 12:51:43 +02:00
yelhouti	e8840df0e0	Fix: admin GUI not working with 1000s of realms Search by RealmName is done before loading all realms when filtering Closes #31956 Signed-off-by: Youssef El Houti <youssef.elhouti@gmail.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2024-08-21 14:58:36 +02:00
Stefan Guilhen	585d179fe0	Ensure identity providers returned to the org IDP selection are IDPs not associated with any orgs. Closes #32238 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2024-08-21 07:49:01 -03:00
Stefan Guilhen	fa7c2b5da6	Address review comments Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2024-08-19 09:06:35 -03:00
Stefan Guilhen	f82159cf65	Rework logic to fetch IDPs for the login page so that IDPs are fetched from the provider and not filtered in code. Closes #32090 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2024-08-19 09:06:35 -03:00
Alexander Schwartz	74fec50ac5	Load client sessions in chunks from the database (#32185 ) Closes #32180 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-08-16 15:00:57 +00:00
Alexander Schwartz	49d2efbfb2	Specify version column name in a case-sensitive manner (#32169 ) Closes #32127 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-08-16 10:12:33 +02:00
Stefan Guilhen	aeb1951aba	Replace calls to deprecated RealmModel IDP methods - use the new provider instead Closes #31254 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2024-08-15 10:55:36 -03:00
Martin Kanis	708a6898db	Add a count method to the OrganizationMembersResource Closes #31388 Signed-off-by: Martin Kanis <mkanis@redhat.com>	2024-08-15 09:12:57 -03:00
vramik	4d7f25535c	IDP storage provider Infinispan implementation Closes #31251 Signed-off-by: vramik <vramik@redhat.com>	2024-08-13 08:36:15 -03:00
Michal Hajas	50c07c6e7c	Simplify configuration for MULTI_SITE Closes #31807 Signed-off-by: Michal Hajas <mhajas@redhat.com>	2024-08-06 16:14:33 +00:00
Alexander Schwartz	00bfc2c34f	Adding an index for the revoked tokens table to speed up the cleanup (#31790 ) Closes #31725 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-08-01 11:12:53 +02:00
Martin Kanis	d91d6d18d5	Can not update organization group error when trying to create organisation from REST API Closes #31144 Signed-off-by: Martin Kanis <mkanis@redhat.com>	2024-07-29 17:39:56 +02:00
Stefan Guilhen	f45529de8c	Deprecate IDP related methods in RealmModel - delegate to the new provider Closes #31253 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2024-07-29 16:02:26 +02:00
Stefan Guilhen	4c5f54ce0b	Add JPA implementation for the IDPProvider Closes #31250 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2024-07-29 16:02:26 +02:00
Pedro Igor	04bd6653ec	Invalidating domain cache and introducing cache for more query methods Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-07-29 09:02:36 +02:00
Pedro Igor	1f8280c71a	Allow members joining multiple organizations Closes #30747 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-07-29 09:02:36 +02:00
Alexander Schwartz	227c71f7f0	Persisting revoked access tokens Closes #31296 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-07-26 11:46:14 +02:00
vramik	649b35929e	Make sure users created through a registration link are managed members Closes #30743 Signed-off-by: vramik <vramik@redhat.com>	2024-07-25 04:30:13 -03:00
Alexander Schwartz	65d4b74758	Filter out null values when looking up entries by ID This should prevent null elements in the stream when doing concurrent operations. Closes #28865 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-07-23 09:22:41 +02:00
Pedro Igor	de1de06354	Avoid adding organization flows if they are already exist Closes #31182 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-07-17 08:28:00 +02:00
Giuseppe Graziano	1df60461a9	Avoid race condition when using initial-access-token Closes #27294 Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>	2024-07-12 16:33:02 +02:00
rmartinc	ce195b81f8	Improve consent deletion when a realm is removed Closes #30992 Signed-off-by: rmartinc <rmartinc@redhat.com>	2024-07-10 09:44:42 +02:00
Thomas Darimont	f34bb21af6	Fix deprecations in common module - Use charset in `Encode` class - Replace reflective call to protected `Liquibase#resetServices()` with call to exposed public method on a custom subclass `KeycloakLiquibase` - Remove usage of deprecated AccessController class in Reflections - Deprecated SetAccessibleProvilegedAction and UnsetAccessibleProvilegedAction Fixes #22209 Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2024-07-02 16:02:35 +00:00
Pedro Igor	cc2ccc87b0	Filtering organization groups when managing or processing groups Closes #30589 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-06-28 10:27:18 -03:00
Pascal Knüppel	c4ebd0cd0c	Add event for ClientScope created (#30715 ) closes #30795 Signed-off-by: Pascal Knüppel <pascal.knueppel@governikus.de>	2024-06-27 19:05:29 +02:00
Jon Koops	df18629ffe	Use a default Java version from root POM (#29927 ) Signed-off-by: Jon Koops <jonkoops@gmail.com>	2024-06-21 14:19:31 +02:00
rmartinc	592c2250fc	Add briefRepresentation query parameter to getUsersInRole endpoint Closes #29480 Signed-off-by: rmartinc <rmartinc@redhat.com>	2024-06-21 11:21:02 +02:00
Pedro Igor	a0ad680346	Adding an alias to organization and exposing them to templates Closes #30312 Closes #30313 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-06-20 14:36:14 -03:00
Stefan Guilhen	db846a792d	Set a time of 23:59:59:999 in JpaEventQuery.toDate so that events from that date are properly returned in searches Closes #30414 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2024-06-18 13:14:28 -03:00
Nicola Beghin	5192275780	issue keycloak/keycloak#30300 Signed-off-by: Nicola Beghin <nicolabeghin@gmail.com>	2024-06-18 10:13:39 -03:00
vramik	8f72a77582	getByMember Signed-off-by: vramik <vramik@redhat.com>	2024-06-13 08:13:36 -03:00
Pedro Igor	f8d55ca7cd	Export import realm with organizations Closes #30006 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-06-05 09:50:03 +02:00
Martin Kanis	33331788a4	Introduce count method to avoid fetching all organization upon checking for existence Closes #29697 Signed-off-by: Martin Kanis <mkanis@redhat.com>	2024-06-04 10:45:28 -03:00
vramik	a8ceada973	Fix creation of domains when creating the organization Closes #29005 Signed-off-by: vramik <vramik@redhat.com>	2024-06-03 10:22:20 +02:00
Erik Jan de Wit	f088b0009c	initial ui for organizations (#29643 ) * initial screen Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * more screens Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * added members tab Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * added the backend Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * added member add / invite models Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * initial version of the identity provider section Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * add link and unlink providers Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * small fix Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * PR comments Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * Do not validate broker domain when the domain is an empty string Closes #29759 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * added filter and value Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * added test Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * added first name last name Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * refresh menu when realm organization is changed Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * changed to record Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * changed to form data Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * fixed lint error Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * Changing name of invitation parameters Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * Chancing name of parameters on the client Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * Enable organization at the realm before running tests Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * Domain help message Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * Handling model validation errors when creating organizations Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * Message key for organizationDetails Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * Do not change kc.org attribute on group Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * add realm into the context Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * tests Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * Changing button in invitation model to use Send instead of Save Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * Better message when validating the organization domain Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * Fixing compilation error after rebase Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * fixed test Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * removed wait as it no longer required and skip flacky test Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * skip tests that are flaky Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * stabilize user create test Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> --------- Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-05-29 14:34:02 +02:00
Pedro Igor	bbb83236f5	Do not lower-case the username from the IdP when creating the federated identity Closes #28495 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-05-29 01:58:20 -03:00
Stefan Guilhen	694ffaf289	Allow organizations in different realms to have the same domain Closes #29886 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2024-05-28 08:02:30 -03:00
Alexander Schwartz	97cc973af0	Remove explicit flush from JPA user and client session handling (#29819 ) Closes #29818 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-05-28 09:23:20 +02:00
mposolda	ea1cdc10bd	MigrateTo25_0_0 does not complete within default transaction timeout closes #29756 Signed-off-by: mposolda <mposolda@gmail.com>	2024-05-27 10:31:39 +02:00
sebastianh6r	f34a7c2af4	Optimize settings for Hibernate ORM * Optimize settings for Hibernate ORM * Teach exception handler about the new BatchUpdateException exceptions Closes #26162 Signed-off-by: Sebastian Hoeninger <Sebastian.Hoeninger@bosch.io> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Sebastian Hoeninger <Sebastian.Hoeninger@bosch.io> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2024-05-27 10:20:19 +02:00
Thomas Darimont	ab376d9101	Make required actions configurable (#28400 ) - Add tests for crud operations on configurable required actions - Add support exposing the required action configuration via RequiredActionContext - Make configSaveError message reusable in other contexts - Introduced admin-ui specific endpoint for retrieving required actions with config metadata Fixes #28400 Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com> Co-authored-by: Erik Jan de Wit <erikjan.dewit@gmail.com>	2024-05-23 08:38:36 +02:00
Stefan Guilhen	37f85937a7	Move organization authenticator into conditional subflows in the default browser and first broker login flows Closes #29446 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2024-05-22 20:48:29 -03:00
vramik	278341aff9	Add organizations enabled/disabled capability Closes #28804 Signed-off-by: vramik <vramik@redhat.com>	2024-05-22 07:58:26 -03:00
Stefan Guilhen	553b1ce695	Ensure org domain removal from the IDP is properly propagated to the DB Closes #29599 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2024-05-16 10:43:50 -03:00
Stefan Guilhen	c4760b8188	Ensure that IDP's linked domains are remove when org is deleted or when the domain is removed from the org. Closes #29481 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2024-05-14 15:39:18 -03:00
Martin Kanis	3985157f9f	Make sure operations on a organization are based on realm they belong to Closes #28841 Signed-off-by: Martin Kanis <mkanis@redhat.com>	2024-05-14 10:47:39 -03:00
Pedro Igor	b4d231fd40	Fixing realm removal when removing groups and brokers associated with an organization Closes #29495 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-05-14 14:29:27 +02:00

1 2 3 4 5 ...

1231 commits