mposolda
|
1aff8af336
|
Enable ExportImportTest
|
2014-07-16 19:43:47 +02:00 |
|
Bill Burke
|
a5593469ae
|
rename ModelProvider->RealmProvider
|
2014-07-15 15:44:50 -04:00 |
|
Bill Burke
|
484a4c1454
|
user provider refactor complete
|
2014-07-15 15:25:06 -04:00 |
|
Bill Burke
|
ff86bdc35f
|
userprovider split
|
2014-07-15 12:11:12 -04:00 |
|
mposolda
|
726ce08700
|
More cleanup and removed export-import-impl module
|
2014-07-15 16:43:55 +02:00 |
|
mposolda
|
c14840a4c0
|
More cleanup after rebase
|
2014-07-15 14:44:38 +02:00 |
|
mposolda
|
24a492ffe0
|
Export/import refactoring to use same representation as admin endpoints
|
2014-07-15 05:35:24 +02:00 |
|
Stian Thorgersen
|
3f68180ee7
|
KEYCLOAK-512 Pagination support for sessions
|
2014-07-14 11:49:59 +01:00 |
|
Stian Thorgersen
|
d625fb014c
|
Added JPA connection provider and added basic support for multiple transactions to KeycloakSession
|
2014-07-14 10:10:03 +01:00 |
|
Stian Thorgersen
|
86671a2354
|
Started UserSessionProvider
|
2014-07-10 16:48:25 +01:00 |
|
Stian Thorgersen
|
ad6d52cb0f
|
Removed model methods from KeycloakSession
|
2014-07-08 15:27:42 +01:00 |
|
Bill Burke
|
48a0e564b9
|
fix json file
|
2014-07-07 18:51:38 -04:00 |
|
Bill Burke
|
0758d89a59
|
Merge pull request #502 from mposolda/master
Changes in representations - adding role mappings under user representat...
|
2014-07-07 18:41:42 -04:00 |
|
Bill Burke
|
a1beff7d3d
|
admin rest api test
|
2014-07-07 18:37:30 -04:00 |
|
mposolda
|
ffc30b4c03
|
Changes in representations - adding role mappings under user representation
|
2014-07-07 22:48:53 +02:00 |
|
Bill Burke
|
df7aac01dd
|
fix delete realm
|
2014-07-07 14:59:51 -04:00 |
|
Bill Burke
|
e99a675c50
|
HttpServletRequest.logout()
|
2014-07-03 14:08:19 -04:00 |
|
Stian Thorgersen
|
9ba61af83b
|
Fix reset password test
|
2014-06-27 14:48:36 +01:00 |
|
Stian Thorgersen
|
34a1923d18
|
Refactor to prepar for splitting model
|
2014-06-27 09:39:06 +01:00 |
|
mposolda
|
b1cfab34fd
|
Support for test of LDAP connection and authentication
|
2014-06-24 10:03:14 +02:00 |
|
Bill Burke
|
c780918501
|
perf test fix
|
2014-06-20 17:15:16 -04:00 |
|
Bill Burke
|
f0d02f24b1
|
user cache
|
2014-06-20 17:06:56 -04:00 |
|
Bill Burke
|
d21a19925b
|
stateless access codes
|
2014-06-20 10:37:27 -04:00 |
|
Bill Burke
|
1eafb01c8d
|
keycloak-521
|
2014-06-16 11:59:27 -04:00 |
|
Bill Burke
|
c71fdc72c7
|
keycloak-518
|
2014-06-16 10:43:50 -04:00 |
|
Bill Burke
|
f50177996d
|
better fetch for role mappings
|
2014-06-16 10:15:53 -04:00 |
|
Bill Burke
|
ab87c03732
|
cache 1st iteration finished
|
2014-06-13 19:39:20 -04:00 |
|
Bill Burke
|
8eaf77b3c1
|
cache impl again
|
2014-06-13 19:05:05 -04:00 |
|
Bill Burke
|
cbea141a54
|
cache impl
|
2014-06-13 17:17:45 -04:00 |
|
Bill Burke
|
211a279248
|
Merge remote-tracking branch 'upstream/master'
|
2014-06-12 11:11:27 -04:00 |
|
Bill Burke
|
0dd06e3343
|
model refactor for caching
|
2014-06-10 18:50:08 -04:00 |
|
mposolda
|
0bfcbdb359
|
Support for Active Directory and RHDS
|
2014-06-09 16:20:19 +02:00 |
|
Bill Burke
|
2f3c8bf079
|
cache refactor
|
2014-06-06 15:12:58 -04:00 |
|
Stian Thorgersen
|
5f6687ec62
|
KEYCLOAK-244 Social should be stateless
|
2014-06-05 10:09:17 +01:00 |
|
Bill Burke
|
9410adf9ce
|
fix deadlocks
|
2014-06-02 21:33:43 -04:00 |
|
Stian Thorgersen
|
eb47d43497
|
For installed app urn redirect to a page instead of returning the html, this is to prevent NPE if page is refreshed
|
2014-05-21 10:32:03 +01:00 |
|
Bill Burke
|
79828ddc78
|
Merge pull request #409 from patriot1burke/master
fix urn redirect uri
|
2014-05-20 16:15:40 -04:00 |
|
Bill Burke
|
fcca9dd90a
|
fix urn redirect uri
|
2014-05-20 16:15:13 -04:00 |
|
Stian Thorgersen
|
b09e2f697e
|
Email audit listener
|
2014-05-20 17:04:17 +01:00 |
|
Bill Burke
|
b3dd349342
|
check redirect uri exists in token service
|
2014-05-20 11:38:35 -04:00 |
|
Stian Thorgersen
|
cc97265c06
|
Add realm option to enable/disable Resource Owner Password Credentials Grant
|
2014-05-20 11:32:22 +01:00 |
|
Bill Burke
|
b5aa9efefb
|
fix remove expired sessions
|
2014-05-19 18:53:28 -04:00 |
|
Bill Burke
|
95f56e2e62
|
fix removeexpired sessions
|
2014-05-19 18:33:54 -04:00 |
|
Stian Thorgersen
|
a3d08e7191
|
Added theme support to emails
|
2014-05-19 17:34:58 +01:00 |
|
Stian Thorgersen
|
855269f35d
|
Added 'keycloak-server.json' for configuring the server
Added SPI interface to detect SPI's
Converted Model to SPI/Provider to be loaded through ProviderSessionFactory
|
2014-05-16 17:33:22 +01:00 |
|
Bill Burke
|
67e3e60f28
|
test sso idle, logout on idle
|
2014-05-15 23:10:14 -04:00 |
|
Bill Burke
|
27efd3c0a4
|
ssoSessionIdleTimeout refactor
|
2014-05-15 13:53:28 -04:00 |
|
Bill Burke
|
07dbb7d7b7
|
check ssl required in adapter
|
2014-05-14 15:23:45 -04:00 |
|
Bill Burke
|
0e0dfb60e0
|
composite role mapping listing
|
2014-05-14 10:37:50 -04:00 |
|
Stian Thorgersen
|
f4f9b1e323
|
KEYCLOAK-431 View open sessions, and logout all sessions, through account management
|
2014-05-14 11:56:28 +01:00 |
|
Stian Thorgersen
|
6f0b12174c
|
KEYCLOAK-432 Added user sessions
|
2014-05-09 11:52:45 +01:00 |
|
Bill Burke
|
2d949b63b5
|
keycloak.js login for admin
|
2014-05-08 19:55:57 -04:00 |
|
Bill Burke
|
f987d331b7
|
/rest removal and pom fixes
|
2014-05-06 20:43:01 -04:00 |
|
Bill Burke
|
64f591769a
|
remove /rest from RealmsResource
|
2014-05-06 20:21:49 -04:00 |
|
Bill Burke
|
7ff2c77a82
|
relative uri tests and fixes
|
2014-05-02 12:30:08 -04:00 |
|
Stian Thorgersen
|
38e6bde07e
|
KEYCLOAK-415 Make sure query params are included when navigating in acct mngmt
|
2014-04-30 11:03:13 +01:00 |
|
Stian Thorgersen
|
646e762cbe
|
Ensure user loginName and email unique within realm
|
2014-04-29 17:15:28 +01:00 |
|
Stian Thorgersen
|
364998b34b
|
Enforce that realm name is unique in model
|
2014-04-29 10:43:27 +01:00 |
|
Bill Burke
|
541e865fe8
|
brute force fixes
|
2014-04-23 17:55:13 -04:00 |
|
Bill Burke
|
2b8d2288fb
|
more brute force detection
|
2014-04-14 18:58:45 -04:00 |
|
mposolda
|
d8937b11cf
|
Reenable AuthProvidersIntegrationTest.registerUserLdapSuccess. Add variable sleep after undertow stop in testsuite (some windows envs have issues when server is not fully stopped)
|
2014-04-10 10:29:13 +02:00 |
|
Bill Burke
|
cdc35d99bc
|
cleanup
|
2014-04-09 22:34:36 -04:00 |
|
mposolda
|
5aefe52ccc
|
Refactoring of Authentication SPI and Picketlink to use ProviderSessions
Refactoring of ProviderSessionFactory to support dependencies between components
Calling lifecycle methods
Removing KeycloakRegistry
|
2014-04-09 00:34:01 +02:00 |
|
mposolda
|
c8c4cfbaae
|
Restructure of authentication module and packages
|
2014-04-09 00:06:04 +02:00 |
|
Stian Thorgersen
|
354cf02aaa
|
Fix audit mongo tests
|
2014-04-08 12:43:01 +01:00 |
|
Stian Thorgersen
|
8ca46fa35d
|
Audit configurable through admin console
|
2014-04-07 17:58:52 +01:00 |
|
mposolda
|
58083fbb96
|
Hide password tab in acct management if passwordUpdate not supported
|
2014-04-04 23:47:12 +02:00 |
|
mposolda
|
ad068a300b
|
Basic support for registration of new users in AuthenticationProvider
|
2014-04-04 19:53:02 +02:00 |
|
Stian Thorgersen
|
88ddc8ebca
|
Added audit to admin console
|
2014-04-04 15:16:08 +01:00 |
|
Stian Thorgersen
|
3433227fa7
|
Added audit log to account mngmt
|
2014-04-03 16:27:31 +01:00 |
|
Stian Thorgersen
|
e6067c915d
|
Added ProviderSession to requests
|
2014-04-03 16:27:31 +01:00 |
|
mposolda
|
25bf6d63b4
|
Refactoring of AuthenticationProvider SPI
|
2014-04-02 17:27:07 +02:00 |
|
mposolda
|
05cd8a82e5
|
Storing default AuthenticationProvider at the realm creation time
|
2014-04-02 17:17:33 +02:00 |
|
Stian Thorgersen
|
21239fbab9
|
Added Mongo audit provider
|
2014-04-01 18:00:35 +01:00 |
|
Stian Thorgersen
|
225307e855
|
KEYCLOAK-389 Added AuditListener SPI
KEYCLOAK-390 Added JBoss Logging AuditListener
KEYCLOAK-391 Audit Token events
|
2014-03-31 17:35:14 +01:00 |
|
mposolda
|
129eb6a3be
|
Fix LDAP tests and teststuite on windows. Set initial password directly in code as import from LDIF is problematic on windows
|
2014-03-27 16:20:03 +01:00 |
|
mposolda
|
ab02dea902
|
Fixes in AuthenticationProvider. Fixing testsuite
|
2014-03-25 15:05:08 +01:00 |
|
mposolda
|
793f69d4b6
|
Authentication SPI. Implementations based on Picketlink+LDAP, model and external model (other realm). Added KeycloakRegistry
|
2014-03-24 23:11:11 +01:00 |
|
Stian Thorgersen
|
702ae0307e
|
Fixes to account referrer to allow configurable referrer uri based on app redirect uri
|
2014-03-19 16:52:41 +00:00 |
|
Stian Thorgersen
|
331ab71427
|
KEYCLOAK-380 Added OAuth2Constants
|
2014-03-15 10:43:52 +00:00 |
|
Stian Thorgersen
|
f9aaa16cfe
|
KEYCLOAK-378 KEYCLOAK-379 KEYCLOAK-381 Fix refresh token if token contains app roles. Changed long time fields in AccessCode and AccessToken to int
|
2014-03-15 10:15:10 +00:00 |
|
Bill Burke
|
466b6762d9
|
further adapter tests
|
2014-03-14 11:21:32 -04:00 |
|
Bill Burke
|
3f1b7a0335
|
adapter testing
|
2014-03-13 21:47:46 -04:00 |
|
Stian Thorgersen
|
0214827492
|
KEYCLOAK-364 Show access denied if social login is cancelled
|
2014-03-12 09:21:11 +00:00 |
|
Stian Thorgersen
|
6dc156712e
|
KEYCLOAK-359 Add user friendly username for social links
|
2014-03-12 08:52:47 +00:00 |
|
Bill Burke
|
dd292c1d52
|
remove scope support for now part 2
|
2014-03-06 10:26:46 -05:00 |
|
Bill Burke
|
801ef3281a
|
remove scope support for now
|
2014-03-06 09:59:27 -05:00 |
|
Bill Burke
|
599faa3cb5
|
public clients
|
2014-03-05 20:26:27 -05:00 |
|
Stian Thorgersen
|
60bb05e6ca
|
Added Config to centralize system properties used to configure KC
|
2014-03-05 15:20:53 +00:00 |
|
Stian Thorgersen
|
0219aa1e4c
|
Added support for any port with http://localhost redirect uri
|
2014-03-05 12:54:57 +00:00 |
|
Stian Thorgersen
|
87aaaf0b06
|
Started support for installed applications
|
2014-03-03 12:58:16 +00:00 |
|
Bill Burke
|
f8da693fd0
|
move secret to clientmodel
|
2014-02-27 10:59:47 -05:00 |
|
Bill Burke
|
42d30a5a70
|
rename scope rep username to client
|
2014-02-26 22:23:04 -05:00 |
|
Bill Burke
|
48d39bf977
|
Use ClientModel wherever possible
|
2014-02-26 22:04:57 -05:00 |
|
Bill Burke
|
c02d532001
|
refactor model
|
2014-02-26 19:25:42 -05:00 |
|
Stian Thorgersen
|
9a73936002
|
KEYCLOAK-292 Fine-grained admin control
|
2014-02-25 12:53:36 +00:00 |
|
Bill Burke
|
01ddafa83a
|
central login timeouts, rememberme framework
|
2014-02-22 21:52:29 -05:00 |
|
Bill Burke
|
3e88cb3b76
|
logout
|
2014-02-22 20:40:06 -05:00 |
|
Bill Burke
|
97dd7470ce
|
rename tokenLifespan to accessTokenLifespan
|
2014-02-21 12:12:54 -05:00 |
|
Bill Burke
|
e583dc60ae
|
Merge remote-tracking branch 'upstream/master'
|
2014-02-21 12:02:36 -05:00 |
|
Bill Burke
|
9607acdb6a
|
refactor token creation
|
2014-02-21 12:02:24 -05:00 |
|
Stian Thorgersen
|
05bd92d765
|
KEYCLOAK-286 Allow login with username or email. KEYCLOAK-287 Remove recover username as we now support login with email
|
2014-02-21 15:25:55 +00:00 |
|
Bill Burke
|
9442601e42
|
rename some classes
|
2014-02-21 10:16:12 -05:00 |
|
Stian Thorgersen
|
9ce8e16063
|
KEYCLOAK-284 Subject in token is now user id instead of username
|
2014-02-21 09:48:43 +00:00 |
|
Bill Burke
|
6794166b58
|
tokens/access/codes now uses basic auth
|
2014-02-20 17:19:51 -05:00 |
|
mposolda
|
cec57b169e
|
Fix all tests with MySQL. Removing nested transactions
|
2014-02-18 11:22:19 +01:00 |
|
Stian Thorgersen
|
695eb05d66
|
Added a SSO test
|
2014-02-17 14:32:02 +00:00 |
|
Stian Thorgersen
|
0f3b836005
|
Updated account themes to use patternfly
|
2014-02-17 12:17:06 +00:00 |
|
Stian Thorgersen
|
01bb835285
|
Updated login forms to use Patternfly styles
|
2014-02-14 17:38:04 +00:00 |
|
Bill Burke
|
0cdd5e857e
|
use secrets
|
2014-02-13 18:36:41 -05:00 |
|
Bill Burke
|
9390e90b85
|
more subsystem work
|
2014-02-13 10:43:29 -05:00 |
|
Stian Thorgersen
|
564223b30a
|
Fix test
|
2014-02-09 15:54:52 +00:00 |
|
Bill Burke
|
d2ad6349ba
|
remove setComposite
|
2014-02-04 18:41:36 -05:00 |
|
Bill Burke
|
4e66a3bf81
|
Merge remote-tracking branch 'upstream/master'
|
2014-02-04 10:09:25 -05:00 |
|
Bill Burke
|
92091d9474
|
composite tests
|
2014-02-04 10:09:09 -05:00 |
|
Stian Thorgersen
|
97897cab1d
|
KEYCLOAK-15 Customize login and registration forms
|
2014-02-04 11:45:24 +00:00 |
|
Bill Burke
|
8505cc612a
|
composite representations
|
2014-02-03 17:21:56 -05:00 |
|
Bill Burke
|
1543963c9f
|
composite tests
|
2014-01-30 20:31:44 -05:00 |
|
Bill Burke
|
6a5994c3e2
|
composite roles 2
|
2014-01-29 23:28:08 -05:00 |
|
Bill Burke
|
bb5991239b
|
composite roles
|
2014-01-29 20:19:32 -05:00 |
|
Stian Thorgersen
|
06c3a6ea30
|
KEYCLOAK-271 Check password policy when recovering password through email
|
2014-01-24 14:48:58 +00:00 |
|
Stian Thorgersen
|
070c0ddba4
|
Renamed registration to default roles, add default roles to all users when they are created
|
2014-01-17 10:03:13 +00:00 |
|
Stian Thorgersen
|
c5366f1c81
|
KEYCLOAK-264 Remove option to enable/disable acct mngmt
|
2014-01-17 09:30:56 +00:00 |
|
Stian Thorgersen
|
dcfb83b0f2
|
KEYCLOAK-64 KEYCLOAK-246 Updated social to use update profile required action instead of registration form. Fixed Google provider
|
2014-01-16 12:52:46 +00:00 |
|
Bill Burke
|
b162190c7f
|
remove cookieLoginAllowed
|
2014-01-15 20:31:01 -05:00 |
|
Bill Burke
|
39b61728d6
|
change uri scheme
|
2014-01-13 17:07:36 -05:00 |
|
Stian Thorgersen
|
0a57ba026b
|
KEYCLOAK-180 Renamed JWT prn to sub
|
2014-01-10 10:22:58 +00:00 |
|
Stian Thorgersen
|
212aec8ae3
|
KEYCLOAK-235 Fix test
|
2013-12-18 16:58:31 +00:00 |
|
Bill Burke
|
6380dc3d1b
|
refactor out resteasy from adapters
|
2013-12-17 12:07:02 -05:00 |
|
Bill Burke
|
d22b6f8df7
|
factor out jwt/jose/jws
|
2013-12-16 11:19:46 -05:00 |
|
Bill Burke
|
d28b1ff98b
|
refactor core/adapter
|
2013-12-13 19:53:02 -05:00 |
|
Stian Thorgersen
|
145eab98d8
|
KEYCLOAK-221 Don't require username to recover password
|
2013-12-07 13:34:31 +00:00 |
|
Stian Thorgersen
|
cd8c8d52e8
|
KEYCLOAK-217 Add option to recover username
|
2013-12-07 13:18:06 +00:00 |
|
Stian Thorgersen
|
5415a878e8
|
KEYCLOAK-183 Don't show totp on main login form if totp is required by realm
|
2013-12-04 19:42:41 +00:00 |
|
Stian Thorgersen
|
eea812dfda
|
KEYCLOAK-190 KEYCLOAK-191 Fixed redirect uri's
|
2013-12-04 19:04:19 +00:00 |
|
Stian Thorgersen
|
a7b653de28
|
KEYCLOAK-185 Added cancel button to login form
|
2013-12-03 15:11:18 +00:00 |
|
Stian Thorgersen
|
7f499b2833
|
KEYCLOAK-186 Password policies
|
2013-12-03 12:53:26 +00:00 |
|
Stian Thorgersen
|
85eeb415e1
|
KEYCLOAK-181
Link back to application from account management pages
|
2013-11-28 13:48:30 +00:00 |
|
Bill Burke
|
799df520b8
|
realm import changes
|
2013-11-27 17:02:12 -05:00 |
|
Bill Burke
|
f79739f73e
|
oauth client
|
2013-11-26 15:39:57 -05:00 |
|
Stian Thorgersen
|
42d7e430ce
|
Fix adding all roles for an application to token, should be all roles associated with the user for that application
|
2013-11-18 14:16:37 +00:00 |
|
Stian Thorgersen
|
45424e5eba
|
Removed '*' role
|
2013-11-15 16:38:44 +00:00 |
|
Stian Thorgersen
|
158d1740b8
|
KEYCLOAK-72 and KEYCLOAK-158
|
2013-11-15 11:03:25 +00:00 |
|
Stian Thorgersen
|
fd2bfee7d9
|
Assign default roles to users when they register instead of directly to tokens
|
2013-11-08 17:51:44 +00:00 |
|
Stian Thorgersen
|
c477f7c04c
|
Fix tests
|
2013-11-08 12:33:39 +00:00 |
|
Bill Burke
|
2861ea0e96
|
nasty merge
|
2013-11-05 23:12:07 -05:00 |
|
Bill Burke
|
d04ca2c34f
|
jpa backend
|
2013-11-05 21:26:33 -05:00 |
|
Stian Thorgersen
|
15e9ed5149
|
Fix for jdk7
|
2013-11-05 10:02:32 +00:00 |
|
Stian Thorgersen
|
d083909136
|
Added support for default application roles. Added authz to account, user (or client if oauth) is required to have role manage-account to manage their account, this is a default role for the Account application.
|
2013-11-04 17:21:46 +00:00 |
|
Stian Thorgersen
|
c6f43baf0d
|
Allow oauth clients to ask for permission to view user profile, and manage user account
|
2013-11-03 16:14:15 +00:00 |
|