libre.sh/keycloak-scim
2
0
Fork 0
Code Issues 14 Pull requests Releases Packages Activity Actions
21580 commits 4 branches 5 tags 483 MiB
Commit graph

21580 commits

This branch
This branch
All branches
Author SHA1 Message Date
Erik Jan de Wit
acbc6df9f9
fixed ids for axa (#2860) 
fixes: #2845
 2022-06-24 13:43:59 +02:00
Stan Silvert
c70fa2d5f5
Always Display in Console missing from OIDC clients (#2869) 
* Always Display in Console missing from OIDC clients

* Fix flaky test: Realm settings --> Go to login tab

* Make comment more accurate.
 2022-06-24 13:31:02 +02:00
Pedro Igor
3d2c3fbc6a Support JSON objects when evaluating claims in regex policy 
Closes #11514
 2022-06-23 14:04:09 -03:00
Pedro Igor
c95ecd9e88 More information in the proxy guide about exposing the administration console 
Closes #12450
 2022-06-23 10:36:19 -03:00
Pedro Igor
d3a40e8620 Use backend baseURL for UMA-related backend endpoints 
Closes #12549
 2022-06-23 10:35:26 -03:00
agagancarczyk
c4cd7c376e
fixed subheading (#2868) 
Co-authored-by: Agnieszka Gancarczyk <agancarc@redhat.com>
 2022-06-23 11:51:41 +01:00
agagancarczyk
4ec40a52a6
Critical accessibility fixes for User federation page - Issue #2848 (#2867) 
* added form labels

* fixed labels

* fix

Co-authored-by: Agnieszka Gancarczyk <agancarc@redhat.com>
 2022-06-23 11:50:24 +01:00
Erik Jan de Wit
2ce59b6f7c
added missing id attribute (#2858) 
fixes: #2837
 2022-06-23 11:23:57 +02:00
Patrick Jennings
d048bf22fb Do not try to delete from related federated user tables when deleting a service account linked user. 2022-06-22 22:52:16 +02:00
Pedro Igor
95528e77bb
Fixing env vars precedence over conf file (#12638) 
Closes #12413
 2022-06-22 15:13:58 +02:00
dependabot[bot]
12093753e9 Bump aquasecurity/trivy-action from 0.3.0 to 0.4.1 
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.3.0 to 0.4.1.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](4b9b6fb4ef...49e970d7ac)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-06-22 10:07:16 -03:00
Erik Jan de Wit
b3c4bfe6e3
Make all routes lower case (#2863) 2022-06-22 13:35:10 +02:00
Takashi Norimatsu
a10eef882f DeviceTokenRequestContext.getEvent returns a wrong ClientPolicyEvent 
Closes #12455
 2022-06-22 13:01:35 +02:00
Takashi Norimatsu
d396ee7d30 CIBA flow : no error on invalid scope 
Closes #12589
 2022-06-22 12:55:55 +02:00
Stefan Guilhen
cc65d5491d Filter out expired entities in JpaMapKeycloakTransaction 
Closes #12623
 2022-06-22 11:35:50 +02:00
Erik Jan de Wit
ea4f122a73
Use realm id instead of realm name as parentId (#2836) 2022-06-22 10:50:47 +02:00
Erik Jan de Wit
60fc598a08
added some production build options (#2832) 2022-06-22 10:48:53 +02:00
Alexander Schwartz
a5615ab438 Automatic profile activated when using JDK 9+ that sets the compiler's release flag that is not understood by JDK 8 
Closes #12631
 2022-06-22 08:50:10 +02:00
agagancarczyk
25faa1366c
Fixed subheading in the dialog (#2855) 2022-06-21 22:14:13 +02:00
agagancarczyk
05f5dc3d5b
Fixed heading for create client policy (#2856) 2022-06-21 22:13:51 +02:00
agagancarczyk
3c0e1fde0c
Fixed misspelling (#2854) 2022-06-21 22:13:30 +02:00
Václav Muzikář
2c1fc739f0 Explicitly set failIfNoSpecifiedTests to false 2022-06-21 12:26:17 -03:00
rmartinc
711440e513 [#11036] Identity Providers: Add support for elliptic curve signatures (ES256/ES384/ES512) using JWKS URL 2022-06-21 10:52:25 -03:00
Aboullos
64deaa5fb7
Fix error message and update and add tests (#2807) 
* Fix user-fed-password-policy-error-message

* Add test for error messages

* Remove only function

* Change switch toggle

* Modify toggle

* Add save action

* Set error messages to constant

* Remove alert and message changes
 2022-06-21 14:15:29 +02:00
Stefan Guilhen
7d96f3ad5a Events Map JPA implementation 
Closes #9667
 2022-06-21 13:53:48 +02:00
Marek Posolda
3f5741e988
Possibility to switch between FIPS and non-FIPS during keycloak+quarkus seerver build (#12513) 
* Possibility to switch between FIPS and non-FIPS during keycloak+quarkus server build

Closes #12522
 2022-06-21 11:17:45 +02:00
Alexander Schwartz
6094f2ad1a Adding migration guide for the extraction of the legacy modules. 
Related to keycloak/keycloak#10279

Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
Co-authored-by: Hynek Mlnařík <hmlnarik@users.noreply.github.com>
 2022-06-21 08:53:44 +02:00
Alexander Schwartz
ae7c01b719 Moving the CacheRealmProvider interface to the legacy module 2022-06-21 08:53:06 +02:00
Alexander Schwartz
7855b93390 Moving the UserCache interface to the legacy module 
Co-Authored-By: hmlnarik@redhat.com
 2022-06-21 08:53:06 +02:00
Alexander Schwartz
6376db0f9c code cleanup 2022-06-21 08:53:06 +02:00
Alexander Schwartz
896afc4644 rename SingleEntityCredentialManager to SubjectCredentialManager, part 2 2022-06-21 08:53:06 +02:00
Alexander Schwartz
cb0c881821 rename SingleEntityCredentialManager to SubjectCredentialManager 2022-06-21 08:53:06 +02:00
Alexander Schwartz
84d21f0230 for all added files in the PR, update the copyright header or add it if it was missing 2022-06-21 08:53:06 +02:00
Alexander Schwartz
3fe477885c when userStorageManager() is called recursively, provided a meaningful exception to the caller. 2022-06-21 08:53:06 +02:00
Hynek Mlnarik
26198e4b0b Disable tests irrelevant for map storage 2022-06-21 08:53:06 +02:00
Hynek Mlnarik
f1ca325b6b Add map datastore provider 2022-06-21 08:53:06 +02:00
Hynek Mlnarik
64b1e976af Quarkus 2022-06-21 08:53:06 +02:00
Alexander Schwartz
d41764b19b Inline deprecated methods in legacy code 2022-06-21 08:53:06 +02:00
Alexander Schwartz
30b5c646e1 Deprecated old KeycloakSession APIs 2022-06-21 08:53:06 +02:00
Alexander Schwartz
1a227212de Simplify implementation of a federated storage by moving the default implementation to the abstract base class; this will also allow the quickstarts and implementations derived from that to run without changes. 2022-06-21 08:53:06 +02:00
Alexander Schwartz
08bbb1fb92 Move LDAP REST Endpoints to LDAP package 
- Thus remove implicit dependency on services on the legacy modules
- Disable tests for LDAP/Kerberos that won't work when map storage is enabled
 2022-06-21 08:53:06 +02:00
Alexander Schwartz
1bc6133e4e redirect calls to userLocalStorage from legacy modules (federation, ldap, sssd, kerberos) 2022-06-21 08:53:06 +02:00
Alexander Schwartz
a109e28be7 moving some functionality around imports 2022-06-21 08:53:06 +02:00
Alexander Schwartz
f89b8c356d Moving logic to create a user from a representation to the legacy module 2022-06-21 08:53:06 +02:00
Alexander Schwartz
a43321c720 Moving logic to create service accounts in local storage only to legacy module 2022-06-21 08:53:06 +02:00
Hynek Mlnarik
e396d0daa1 Renaming SingleUserCredentialManager and UserModel.getUserCredentialManager(): 
- class SingleUserCredentialManager to SingleEntityCredentialManager
- method UserModel.getUserCredentialManager() to credentialManager()

Renaming of API without "get" prefix to make it consistent with other APIs like for example with KeycloakSession
 2022-06-21 08:53:06 +02:00
Alexander Schwartz
14a369a8cc Added LegacySessionSupport SPI 
While some methods around onCache() are still called from the legacy code, all other methods log a warning with a stacktrace.
 2022-06-21 08:53:06 +02:00
Alexander Schwartz
6f287e7ded Avoid using methods on UserCredentialStoreManager 2022-06-21 08:53:06 +02:00
Alexander Schwartz
bc8fd21dc6 SingleUserCredentialManager moving in 
- UserStorageManager now handles authentication for old Kerberos+LDAP style
- new getUserByCredential method in MapUserProvider would eventually do the same.
 2022-06-21 08:53:06 +02:00
Alexander Schwartz
82094d113e Move User Storage SPI, introduce ExportImportManager 2022-06-21 08:53:06 +02:00