Pedro Igor
2e54ebda76
[KEYCLOAK-13579] - Ignore exceptions when shutting down loopback server
2020-04-29 12:33:35 +02:00
stianst
4afc01e7c8
Fix links
2020-04-29 08:54:22 +02:00
stianst
69729aba9d
Release notes for 10.0.0
2020-04-29 08:54:22 +02:00
Pedro Igor
601bf8d63e
[KEYCLOAK-12735] - Improving queries and cache for authz
2020-04-29 03:58:03 +02:00
Yoshiyuki Tabata
874642fe9e
KEYCLOAK-12406 Add "Client Session Max" and "Client Session Idle" for OIDC
2020-04-28 15:34:25 +02:00
Yoshiyuki Tabata
8d4e1a434b
KEYCLOAK-12406 Add "Client Session Max" and "Client Session Idle"
2020-04-28 15:34:20 +02:00
stianst
5b017e930d
KEYCLOAK-13128 Security Headers SPI and response filter
2020-04-28 15:28:24 +02:00
Yoshiyuki Tabata
d3e18744a8
KEYCLOAK-5325 Provide OAuth token revocation capability
2020-04-28 15:26:37 +02:00
Yoshiyuki Tabata
b40c12c712
KEYCLOAK-5325 Provide OAuth token revocation capability
2020-04-28 15:25:22 +02:00
stianst
06d8a0a4c4
KEYCLOAK-13929 Fix path to text-security.css
2020-04-28 09:50:00 -03:00
Martin Kanis
be28bfee1d
KEYCLOAK-13636 Missing wildfly-dist in EAP 7.4.0.CD19 build
2020-04-28 08:55:42 -03:00
Martin Kanis
04b5836271
KEYCLOAK-13971 Upgrade to EAP 7.4.0.CD19
2020-04-28 08:55:42 -03:00
Andy Munro
92450fb82b
KEYCLOAK-13792 release notes corretions
2020-04-28 12:09:36 +02:00
Erik Jan de Wit
5bb4ee5375
KEYCLOAK-13976 limit field lenght
2020-04-27 16:11:12 -04:00
Stan Silvert
09b54a9473
KEYCLOAK-12776: Make it easier to change the logo and logo link.
2020-04-27 12:29:38 -04:00
rmartinc
3313460249
KEYCLOAK-13908: Database Migration to >=9.0.1 fails on MySQL
2020-04-27 16:01:11 +02:00
Erik Jan de Wit
ab2d1546b4
fix merge errors
2020-04-27 09:09:31 -04:00
Erik Jan de Wit
bbc2169127
fix: removes the dependency on parse-link-header
2020-04-27 09:09:31 -04:00
Erik Jan de Wit
e093fa218d
Fixed console for test
2020-04-27 09:09:31 -04:00
Erik Jan de Wit
7580be8708
KEYCLOAK-13121 added the basic functionality
2020-04-27 09:09:31 -04:00
Stefan Guilhen
da1138a8d2
[KEYCLOAK-13005] Make sure the master URL is used if the consumer POST or REDIRECT URL is an empty string
...
- Fixes issue where admin console sets an empty string when the consumer POST or REDIRECT URL is deleted
2020-04-27 14:25:03 +02:00
Erik Jan de Wit
db8cb63565
KEYCLOAK-12936 only change the locale in the AccountPage.
2020-04-27 07:04:06 -04:00
Stefan Guilhen
fd9c4e9228
[KEYCLOAK-12097] Fix NPE when trying to obtain the cache container name from jboss-web.xml
...
- check if the cache name as configured in jboss-web.xml is composite - i.e. has a 'parent.child' structure
2020-04-27 10:13:25 +02:00
Pedro Igor
44b489b571
[KEYCLOAK-13656] - Deny request if requested scope is not associated to resource or any typed resources
2020-04-27 08:39:38 +02:00
Pedro Igor
dacbe22d53
[KEYCLOAK-9896] - Authorization Scope modified improperly when updating Resource
2020-04-27 08:38:55 +02:00
Michiel Meeuwissen
54d24327ad
'Bevestiging' is raar dar.
2020-04-24 16:26:15 +02:00
Martin Idel
73339b2c0f
Applied suggestions
2020-04-24 15:54:37 +02:00
Martin Idel
eb3e2d468f
Update documentation including Sync Mode
2020-04-24 15:54:37 +02:00
Martin Idel
7e8018c7ca
KEYCLOAK-11862 Add Sync mode option
...
- Store in config map in database and model
- Expose the field in the OIDC-IDP
- Write logic for import, force and legacy mode
- Show how mappers can be updated keeping correct legacy mode
- Show how mappers that work correctly don't have to be modified
- Log an error if sync mode is not supported
Fix updateBrokeredUser method for all mappers
- Allow updating of username (UsernameTemplateMapper)
- Delete UserAttributeStatementMapper: mapper isn't even registered
Was actually rejected but never cleaned up: https://github.com/keycloak/keycloak/pull/4513
The mapper won't work as specified and it's not easy to tests here
- Fixup json mapper
- Fix ExternalKeycloakRoleToRoleMapper:
Bug: delete cannot work - just delete it. Don't fix it in legacy mode
Rework mapper tests
- Fix old tests for Identity Broker:
Old tests did not work at all:
They tested that if you take a realm and assign the role,
this role is then assigned to the user in that realm,
which has nothing to do with identity brokering
Simplify logic in OidcClaimToRoleMapperTests
- Add SyncMode tests to most mappers
Added tests for UsernameTemplateMapper
Added tests to all RoleMappers
Add test for json attribute mapper (Github as example)
- Extract common test setup(s)
- Extend admin console tests for sync mode
Signed-off-by: Martin Idel <external.Martin.Idel@bosch.io>
2020-04-24 15:54:32 +02:00
Pedro Igor
8f5e58234e
[KEYCLOAK-11317] - IDP review profile allows empty username
2020-04-24 10:52:59 -03:00
Douglas Palmer
d4eeed306b
[KEYCLOAK-11764] Upgrade to Wildfly 19
2020-04-24 08:19:43 -03:00
Erik Jan de Wit
d3e5bf48f0
KEYCLOAK-12431 don't use user agent but patternfly
2020-04-23 16:30:21 -04:00
Erik Jan de Wit
3cdfb422ad
KEYCLOAK-12173 removed escaping of '&'
2020-04-23 16:10:57 -04:00
Erik Jan de Wit
4fa29948b6
use the child components
2020-04-23 16:07:56 -04:00
Erik Jan de Wit
3987ce7d94
KEYCLOAK-13740 use children as Msg parameters
2020-04-23 16:07:56 -04:00
Bart Monhemius
9389332675
[KEYCLOAK-13927] Accept only ticketId instead of the PermissionTicketRepresentation for delete in PermissionResource
2020-04-23 15:59:43 -03:00
Bart Monhemius
56a70bd376
[KEYCLOAK-13927] Fix java doc @param name in PermissionResource
2020-04-23 15:59:43 -03:00
Bart Monhemius
acc5ab9e44
[KEYCLOAK-13927] Allow deleting permission tickets with the Authz client
2020-04-23 15:59:43 -03:00
Martin Kanis
a04c70531a
KEYCLOAK-9623 Disabling logged in user will not allow other user to login after he is thrown out of his session
2020-04-23 14:40:25 +02:00
Takashi Norimatsu
8513760e25
KEYCLOAK-12176 WebAuthn: show the attestation statement format in the admin console
2020-04-23 10:01:19 +02:00
mhajas
1db87acc98
KEYCLOAK-13852 reset time at the end of testTokenConcurrentRefresh test
2020-04-22 15:06:28 +02:00
mposolda
83255e1b08
KEYCLOAK-13922 MigrationModelTest failing in latest master
2020-04-22 14:05:34 +02:00
etchepar
3a42d9e1bc
Update host.adoc
...
a tiny proposal : the command line reference the old "fixed" provider instead of the default one described above
2020-04-22 13:38:11 +02:00
Thomas Darimont
12e53e6f11
KEYCLOAK-11003 Remove UPDATE_PASSWORD RequiredAction on non-temporary password reset
...
We now remove a potentially existing UPDATE_PASSWORD action when
explicitly assigning a non-temporary password.
Adapted tests to use a temporary password when UpdatePassword required actions
were used.
2020-04-22 10:59:49 +02:00
Luke Nadur
74c379c3df
[KEYCLOAK-13586] Fix typos related to QueryParamterTokenRequestAuthenticator
2020-04-21 21:14:03 +02:00
Thomas Darimont
f9f71039ae
KEYCLOAK-13566 ValidateUsername should raise USER_NOT_FOUND event if the user lookup fails
2020-04-21 21:11:11 +02:00
Pedro Igor
cbab159aa8
[KEYCLOAK-8071] - Properly validating requested scopes
2020-04-21 12:23:59 +02:00
Daniel Fernández
6a17878343
Admin REST API with client_secret
...
Authenticating against Admin REST API with `client_id` and `client_secret`
2020-04-21 12:06:02 +02:00
Kohei Tamura
1cc70d180f
Fix typos
2020-04-21 11:49:09 +02:00
Kohei Tamura
88c9d0d516
Fix typos
2020-04-21 11:48:35 +02:00