Christoph Leistert
e131de9574
KEYCLOAK-14855 Added realm-specific localization texts which affect texts in every part of the UI (admin console / login page / personal info page / email templates). Also new API endpoints and a new UI screen to manage the realm-specific localization texts were introduced.
...
Co-authored-by: Daniel Fesenmeyer <daniel.fesenmeyer@bosch.io>
2020-10-30 08:02:43 -03:00
Martin Bartos
2e59d5c232
KEYCLOAK-14679 Unable to log in with WebAuthn on unsupported browsers
2020-10-29 14:03:17 +01:00
Martin Bartos
a8df7d88a1
[KEYCLOAK-14139] Upgrade login screen to PF4
2020-10-27 20:24:07 +01:00
Grandys
c122e72178
[KEYCLOAK-15850] Removed references to unminimized versions of javascript libraries in base admin template
2020-10-23 10:57:32 +02:00
Roland Werner
d544b132f9
KEYCLOAK-15806:
...
Extension to SignatureAlgorithm to support more Algorithms (RSA_SHA256_MGF1, RSA_SHA512_MGF1).
Also included in clients.js and realms.js so it can be chosen as signature algorithm when connecting as SAML client and when brokering through SAML.
2020-10-15 20:55:27 +02:00
Jonathan Buzzetti
a2efb84e00
KEYCLOAK-15978 Update spanish email verification message
...
For it to be similar to its english counterpart
2020-10-15 16:46:24 +02:00
Luca Leonardo Scorcia
0621e4ceb9
KEYCLOAK-15697 Fix config entry tooltip
2020-10-14 07:39:49 +02:00
Elisabeth Schulz
4c4750f1d9
KEYCLOAK-13983 Include algorithm parameters
...
Restore accidental change
2020-10-12 10:12:01 +02:00
Elisabeth Schulz
9143bc748f
KEYCLOAK-13983 Include algorithm parameters
...
Include suggestions made by @mposolda to enable more generic
usage
2020-10-12 10:12:01 +02:00
Luca Leonardo Scorcia
f274ec447b
KEYCLOAK-15697 Make the Service Provider Entity ID user configurable
2020-10-09 22:04:02 +02:00
vmuzikar
790b549cf9
KEYCLOAK-15262 Logout all sessions after password change
2020-09-18 20:09:40 -03:00
Luca Leonardo Scorcia
c6608c1561
KEYCLOAK-15383 Translation strings escaped twice in saml-post-form.ftl
2020-09-16 21:31:51 +02:00
Luca Leonardo Scorcia
10077b1efe
KEYCLOAK-15485 Add option to enable SAML SP metadata signature
2020-09-16 16:40:45 +02:00
Joaquim Fellmann
be4780243b
KEYCLOAK-15483 Replace badly displayed HTML message with simple text message for french locale (align with en, de, pt, po, tr, nl locales)
2020-09-15 17:09:53 -04:00
Stan Silvert
952e8fecee
KEYCLOAK-15481: Display forbidden screen
2020-09-11 07:03:24 -04:00
Clement Cureau
73378df52e
[KEYCLOAK-11621] Allow user creation via group permissions (Admin API)
...
Problem:
Using fine-grained admin permissions on groups, it is not permitted to create new users
within a group.
Cause:
The POST /{realm}/users API does not check permission for each group part of the new
user representation
Solution:
- Change access logic for POST /{realm}/users to require MANAGE_MEMBERS and
MANAGE_MEMBERSHIP permissions on each of the incoming groups
Tests:
Manual API testing performed:
1. admin user from master realm:
- POST /{realm}/users without groups => HTTP 201 user created
- POST /{realm}/users with groups => HTTP 201 user created
2. user with MANAGE_MEMBERS & MANAGE_MEMBERSHIP permissions on group1
- POST /{realm}/users without groups => HTTP 403 user NOT created
- POST /{realm}/users with group1 => HTTP 201 user created
- POST /{realm}/users with group1 & group2 => HTTP 403 user NOT created
- POST /{realm}/users with group1 & wrong group path => HTTP 400 user NOT created
3. user with MANAGE_MEMBERS permission on group1
- POST /{realm}/users without groups => HTTP 403 user NOT created
- POST /{realm}/users with group1 => HTTP 403 user NOT created
- POST /{realm}/users with group1 & group2 => HTTP 403 user NOT created
- POST /{realm}/users with group1 & wrong group path => HTTP 400 user NOT created
2020-09-10 12:26:55 -03:00
Luca Leonardo Scorcia
67b2d5ffdd
KEYCLOAK-14961 SAML Client: Add ability to request specific AuthnContexts to remote IdPs
2020-09-03 21:25:36 +02:00
Simon Legner
bed664e4fe
KEYCLOAK-15186 Sort user federation table
2020-09-02 17:40:41 -04:00
stianst
a92bf0c3be
KEYCLOAK-15091 Fix issue with custom favicon.ico
2020-09-02 23:18:49 +02:00
Konstantinos Georgilakis
1fa93db1b4
KEYCLOAK-14304 Enhance SAML Identity Provider Metadata processing
2020-09-02 20:43:09 +02:00
Takashi Norimatsu
aad3bdcb88
KEYCLOAK-15251 keycloak-themes build fails in windows
2020-09-02 12:40:07 -04:00
testn
0362d3a430
KEYCLOAK-15113: Move away from deprecated Promise.success()/error()
2020-09-01 14:26:44 -04:00
Iavael
f021f72fcd
[KEYCLOAK-14663] Fix spelling in RU translation
...
https://en.wiktionary.org/wiki/%D0%BF%D1%80%D0%B8%D0%B2%D0%B8%D0%BB%D0%B5%D0%B3%D0%B8%D1%8F
2020-09-01 12:01:13 +02:00
Jon Koops
b64cf3c315
KEYCLOAK-14980 Remove references to Bower
2020-09-01 11:49:58 +02:00
Luca Leonardo Scorcia
03c07bd2d7
KEYCLOAK-14902 Replace SAML SP metadata export with link to descriptor
2020-08-31 22:26:30 +02:00
Martin Bartos
9c847ab176
[KEYCLOAK-14432] Unhandled NPE in identity broker auth response
2020-08-31 14:14:42 +02:00
kaibo-ondruska
6d45d715d3
KEYCLOAK-15369 fix Czech translation
...
"Přihlasovací" should be "Přihlašovací"
2020-08-28 14:54:50 +02:00
Thomas Darimont
0f967b7acb
KEYCLOAK-12729 Add password policy not-email
...
Added test cases and initial translations
2020-08-21 14:55:07 +02:00
Stan Silvert
35931d60eb
KEYCLOAK-15137: Move PF4 css files to keycloak/common
2020-08-20 08:46:28 -04:00
Benjamin Weimer
fdcfa6e13e
KEYCLOAK-15156 backchannel logout offline session handling
2020-08-13 08:09:59 -03:00
David Hellwig
ddc2c25951
KEYCLOAK-2940 - draft - Backchannel Logout ( #7272 )
...
* KEYCLOAK-2940 Backchannel Logout
Co-authored-by: Benjamin Weimer <external.Benjamin.Weimer@bosch-si.com>
Co-authored-by: David Hellwig <hed4be@bosch.com>
2020-08-12 09:07:58 -03:00
Lorent Lempereur
9200195f25
[KEYCLOAK-13950] SAML2 Identity Provider - Send Subject in SAML requests (missing translations)
2020-08-06 10:35:03 -03:00
Peter Valdemar Mørch
7217b597f3
KEYCLOAK-8493: Added danish translation from abandoned PR-5567
...
This is based on:
Author: Thomas Sørensen <tvs@flexdanmark.dk>
Date: Thu Sep 13 14:24:43 2018 +0200
Added danish translation. by FuKe · Pull Request #5567
https://github.com/keycloak/keycloak/pull/5567
However, I:
* Fixed up a couple of theme.properties merge conflicts compared to
current master
* Fixed some spelling mistakes and added missing entries
* Introduced Danish to list of locales in messages_en.properties
* Squashed it all into a single commit as pr.
https://github.com/keycloak/keycloak/blob/master/CONTRIBUTING.md
2020-08-04 13:25:18 -04:00
Stan Silvert
1e6c37e423
KEYCLOAK-14787: Update dependencies for new account console
2020-08-03 14:08:08 -04:00
Réda Housni Alaoui
47f5b56a9a
KEYCLOAK-14747 LDAP pooling should include SSL protocol by default
2020-07-28 18:59:42 +02:00
Erik Jan de Wit
0ba9055d28
KEYCLOAK-14709 removed circular dependency
2020-07-27 16:24:17 -04:00
Erik Jan de Wit
34dcbe8533
KEYCLOAK-14707 use native promises
2020-07-27 16:20:26 -04:00
Luca Leonardo Scorcia
7b112e5f7b
KEYCLOAK-14734 Field SAML Signature Key Name is empty on IdP creation
...
Makes sure the SAML Signature Key Name field is initialized with a valid default value
2020-07-25 00:02:53 +02:00
Lorent Lempereur
e82fe7d9e3
KEYCLOAK-13950 SAML2 Identity Provider - Send Subject in SAML requests
2020-07-24 21:41:57 +02:00
Marcel Hoppe
344003264a
[KEYCLOAK-14677] - Add french time units
2020-07-24 15:03:27 -04:00
lmorocz
c3271bbe51
KEYCLOAK-14691 Hungarian translation to account, email and login themes
2020-07-24 14:59:28 -04:00
Marcel Hoppe
955b8cec56
[KEYCLOAK-14677] - Add german time units
2020-07-24 14:53:55 -04:00
keycloak-bot
afff0a5109
Set version to 12.0.0-SNAPSHOT
2020-07-22 14:36:15 +02:00
Bruno Oliveira da Silva
a080111515
[KEYCLOAK-14755] Update dependencies for package-lock.json file - Removal of unused file
2020-07-21 18:09:18 +02:00
Erik Jan de Wit
7d77969617
KEYCLOAK-14680 added header and smaller link
2020-07-13 09:30:02 -04:00
Alessandro Ricchiuti
30e708d958
KEYCLOAK-13246 Update Italian translations
2020-07-13 10:22:14 +02:00
Erik Jan de Wit
6cf62b71a5
KEYCLOAK-14689 remove headings better symantic
2020-07-12 14:14:29 -04:00
Erik Jan de Wit
162c8a4974
KEYCLOAK-14692 added aria labels
2020-07-12 13:59:40 -04:00
Jeff Tian
90cf478f13
KEYCLOAK-14084: fix zh-CN translation for bearerOnlyMessage
2020-07-09 09:37:40 +02:00
Erik Jan de Wit
2f5397a199
KEYCLOAK-14602 fixed the session time out test
...
reverts part of #7163 as the app needs to refresh that token, but only when user performs an action
2020-07-06 10:05:46 -04:00
Stan Silvert
556c61160c
KEYCLOAK-14574: Update angularjs to 1.8.0
2020-07-02 16:50:14 -03:00
Stan Silvert
f4596d6816
KEYCLOAK-14245: Upgrade jquery
2020-07-02 10:30:58 -03:00
Bartosz Siemieńczuk
e2040f5d13
KEYCLOAK-14006 Allow administrator to add additional fields to be fetched with Facebook profile request
2020-07-01 18:27:04 -03:00
Eric Rodrigues Pires
de9a0a0a4a
[KEYCLOAK-13044] Fix owner name representations of UMA tickets for client-owned resources
2020-07-01 18:15:22 -03:00
Erik Jan de Wit
4a88c6472e
KEYCLOAK-14576 fixed NPE in undertow
2020-07-01 11:58:24 -04:00
Stan Silvert
3b4ebb3141
KEYCLOAK-14585: effectiveUrl wrongly formatted
2020-06-29 09:42:50 -03:00
Douglas Palmer
5e44bb781b
[KEYCLOAK-14344] Cannot revoke offline access for an app if the app doesn't require consent
2020-06-26 14:56:08 -04:00
Jakub Knejzlik
5f500f478e
KEYCLOAK-6304: Czech translation
2020-06-26 12:56:12 +02:00
Erik Jan de Wit
ed1aacb623
KEYCLOAK-13981 use a dropdown on smaller devices
2020-06-25 10:39:33 -03:00
Erik Jan de Wit
8a31c331f5
KEYCLOAK-14566 dynamic hidden on WelcomeScreen
2020-06-24 11:40:16 -04:00
Erik Jan de Wit
08da208fcd
KEYCLOAK-14562 icon nd descriptionLabel can be undefined
2020-06-23 15:47:37 -03:00
Douglas Palmer
1434f14663
[KEYCLOAK-14346] Base URL for applications is broken
2020-06-23 15:26:07 -03:00
Erik Jan de Wit
55291bad76
KEYCLOAK-14531 Welcome cards should be driven by content.json
...
`content.js` is now `content.json` it's used in freemarker to create the cards
2020-06-22 11:29:20 -04:00
Dirk Weinhardt
08dca9e89f
KEYCLOAK-13205 Apply locale resolution strategy to admin console.
2020-06-19 10:27:13 -04:00
Erik Jan de Wit
f37fa31639
KEYCLOAK-13978 onTokenExpired + onAuthRefreshError
...
implemented handlers and use context for "services"
2020-06-18 18:12:05 -03:00
Erik Jan de Wit
c191ae373a
KEYCLOAK-14499 added toggle menu back on welcome screen
2020-06-18 18:02:24 -03:00
Julián Berbel Alt
75b50439d2
Fix typos in es locales
2020-06-18 18:01:33 -03:00
Eric Rodrigues Pires
9679c32a61
[KEYCLOAK-14482] Fixed rendering for "Resources shared with me" on missing baseUri
2020-06-18 17:25:00 -03:00
Stan Silvert
3f7ebb21f6
KEYCLOAK-14490: Use snowpack optimze flag
2020-06-17 15:14:56 -04:00
Erik Jan de Wit
e239699b81
KEYCLOAK-14476 revert location change of base64url.js
2020-06-17 14:49:17 -04:00
Erik Jan de Wit
c20766f2d7
KEYCLOAK-14140 added more test cases
...
Co-authored-by: vmuzikar <vmuzikar@redhat.com>
2020-06-17 13:56:11 -04:00
External Frank Thiele
206ccb3f13
KEYCLOAK-14370 Client selection shortcut
2020-06-16 20:12:46 -04:00
CarlosVilla
3d5e976097
Update user-credentials.html
...
fix style on specific @media resolution
2020-06-15 14:51:21 -04:00
Dirk Weinhardt
63e6e13cd3
KEYCLOAK-14218 Fixes some missing localizations in admin console;
...
KEYCLOAK-10927 Fixes use of language features not supported in Internet Explorer.
2020-06-09 14:15:33 -04:00
Martin Bartos
f70af83fb6
[KEYCLOAK-14307] Page for create client registration policy is broken
2020-06-08 20:05:11 +02:00
Erik Jan de Wit
8b0760a6d1
KEYCLOAK-14158 Polished the My Resource page
...
empty state
change case
added dropdown menu instead of buttons
now on edit you can add and remove permissions
changed how the actions work
updated success messages
use live region alerts toast alerts
username or email search
labels for the buttons
margin between accecpt and deny button
fixed test and types
changed to bigger distance with split component
changed to use seperate empty state component
2020-06-08 09:05:30 -04:00
Stan Silvert
4c7f4a8d9e
KEYCLOAK-11268: Change project layout
2020-06-07 12:42:44 -04:00
k-tamura
8a528a0a59
KEYCLOAK-14226 Update Japanese translation for 10.0.1
2020-06-05 10:04:52 +02:00
Yoshiyuki Tabata
f03ee2ec98
KEYCLOAK-14145 OIDC support for Client "offline" session lifespan
2020-06-04 14:24:52 +02:00
Denis
8d6f8d0465
EYCLOAK-12741 Add name and description edit functionality to Authentication and Execution Flows
2020-06-04 08:08:52 +02:00
Torsten Juergeleit
6005503a3d
Namespace support to group-ldap-mapper
...
Previously, Keycloak did only support syncing groups from LDAP federation provider as top-level KC groups.
This approach has some limitations:
- If using multiple group mappers then there’s no way to isolate the KC groups synched by each group mapper.
- If the option "Drop non-existing groups during sync” is activated then all KC groups (including the manually created ones) are deleted.
- There’s no way to inherit roles from a parent KC group.
This patch introduces support to specify a prefix for the resulting group path, which effectively serves as a namespace for a group.
A path prefix can be specified via the newly introduced `Groups Path` config option on the mapper. This groups path defaults to `/` for top-level groups.
This also enables to have multiple `group-ldap-mapper`'s which can manage groups within their own namespace.
An `group-ldap-mapper` with a `Group Path` configured as `/Applications/App1` will only manage groups under that path. Other groups, either manually created or managed by other `group-ldap-mapper` are not affected.
2020-05-26 17:37:29 +02:00
Stan Silvert
6a96576296
KEYCLOAK-14267: Update readme for New Account Console
2020-05-20 16:33:15 -04:00
cachescrubber
3382682115
KEYCLOAK-10927 - Implement LDAPv3 Password Modify Extended Operation … ( #6962 )
...
* KEYCLOAK-10927 - Implement LDAPv3 Password Modify Extended Operation (RFC-3062).
* KEYCLOAK-10927 - Introduce getLDAPSupportedExtensions(). Use result instead of configuration.
Co-authored-by: Lars Uffmann <lars.uffmann@vitroconnect.de>
Co-authored-by: Kevin Kappen <kevin.kappen@vitroconnect.de>
Co-authored-by: mposolda <mposolda@gmail.com>
2020-05-20 21:04:45 +02:00
Stan Silvert
13d0491ff3
KEYCLOAK-14038: Re-allow special characters for Roles only
2020-05-20 07:53:23 -04:00
mposolda
12d965abf3
KEYCLOAK-13047 LDAP no-import fixes. Avoid lost updates - dont allow update attributes, which are not mapped to LDAP
2020-05-19 16:58:25 +02:00
Kohei Tamura
0a4db5b3b5
KEYCLOAK-14227 Remove unnecessary double quotations
2020-05-19 09:44:45 +02:00
stianst
d99d65eb92
KEYCLOAK-14163 Common resources are not loaded from common path
2020-05-18 15:08:34 +02:00
Stan Silvert
a827d20a90
KEYCLOAK-11201: Use snowpack instead of SystemJs.
...
Co-authored-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2020-05-15 08:58:26 +02:00
stianst
73aff6d60e
KEYCLOAK-14117 Exclude rcue module in community
2020-05-12 08:58:11 +02:00
Neon Ngo
141eeb1f49
KEYCLOAK-13939 Remove unused mixed-case themes/.../rcue/.../git-Logo.svg
2020-05-11 12:06:07 +02:00
vmuzikar
098ec91dd2
KEYCLOAK-12045 Improve UX for the Credentials tab in Admin Console
2020-05-07 14:14:54 -04:00
Charles-Eric Giraud
3ebfdb59ab
[KEYCLOAK-13854] Fixing client role creation with configure permission
2020-05-07 16:41:19 +02:00
Takashi Norimatsu
3716bd96ad
KEYCLOAK-14093 Specify Signature Algorithm in Signed JWT with Client Secret
2020-05-07 11:28:39 +02:00
Stan Silvert
deead471a9
KEYCLOAK-12852: Internal query params not removed after AIA
2020-05-06 16:07:21 -03:00
Takashi Norimatsu
0d0617d44a
KEYCLOAK-13720 Specify Signature Algorithm in Signed JWT Client Authentication
2020-05-05 17:43:00 +02:00
stianst
7c97c25ede
KEYCLOAK-14060 Update links to user ml
2020-05-05 13:50:49 +02:00
Johann Schmitz
600fd83078
Remove impersonation button on user detail page if feature is disabled
...
The impersonation button in the user list is already removed when the impersonation feature is disabled. Remove the button from the detail page too.
2020-05-04 15:10:53 -04:00
Erik Jan de Wit
1f462a2ae2
KEYCLOAK-12916 add name or username in toolbar
...
Update testsuite/integration-arquillian/tests/other/base-ui/src/test/java/org/keycloak/testsuite/ui/account2/page/fragment/LoggedInPageHeader.java
Co-Authored-By: Václav Muzikář <vaclav@muzikari.cz>
Moved concatenation to messages_en.properties
fix: renamed loggedInUser to landingLoggedInUser
for the welcome page
moved `loggedInUserName` to WelcomePageScrips
2020-05-04 14:58:27 -04:00
Erik Jan de Wit
5102e26865
KEYCLOAK-12987 "Sign In" instead of "Log In"
2020-05-04 07:34:22 -04:00
Erik Jan de Wit
b19b3a40ad
KEYCLOAK-14004 fixed the test
2020-04-30 12:47:18 -04:00