mposolda
7571dc07f9
KEYCLOAK-1733 added verifySSL checks for 'basic' and 'query' authentication
2016-07-20 11:04:31 +02:00
Marek Posolda
e03bf6eef6
Merge pull request #2990 from trex667/feat/keycloak-1733
...
[KEYCLOAK-1733]: introduce token as query paramter
2016-07-20 10:46:11 +02:00
Thomas Darimont
f574173ed3
KEYCLOAK-3301 Add support for Undertow in Spring Boot Adapter
...
We now support using Undertow in combination with the Spring Boot Adapter.
2016-07-18 10:07:07 +02:00
Stian Thorgersen
a42e4af78d
Merge pull request #3018 from thomasdarimont/issue/KEYCLOAK-3300-support-jetty-in-spring-boot-adapter
...
KEYCLOAK-3300 Add support for jetty in spring-boot-adapter
2016-07-15 13:29:16 +02:00
mposolda
13a21e5fda
KEYCLOAK-3220 Improve error handling on adapters
2016-07-14 23:56:46 +02:00
mposolda
dcc4ea3aea
KEYCLOAK-3237 Change OIDC adapters to use scope=openid as required per specs
2016-07-14 23:56:46 +02:00
Stian Thorgersen
9ddec7d1eb
Merge pull request #3019 from ssilvert/KEYCLOAK-3273-ear
...
KEYCLOAK-3273: Prefer module name for secure-deployment in Keycloak
2016-07-14 12:06:44 +02:00
Thomas Darimont
be5468a7cf
KEYCLOAK-3300 Add support for jetty in spring-boot-adapter
...
This adds support for using Jetty together with the Keycloak
spring-boot-adapter. Sadly the KeycloakSpringBootProperties.SecurityCollection
definition is mostly inspired by Tomcats SecurityConstraint/SecurityCollection
which doesn't provide a good fit for jettys structures.
In cases where jetty only allows one setting, we use the first value.
We only initialize KeycloakJettyServerCustomizer if jetty is used, same
applies for tomcat.
Revised configuration and extracted serverCustomizer code into
dedicated classes.
Prepared infrastructure for Undertow support.
2016-07-12 23:19:30 +02:00
Stan Silvert
1d4e76117c
KEYCLOAK-3273: Prefer module name for secure-deployment name.
2016-07-12 12:42:24 -04:00
Stan Silvert
73cbf857c1
KEYCLOAK-3273: Prefer module name for secure-deployment in Keycloak
...
adapter subsystem
2016-07-11 20:58:31 -04:00
mposolda
629390dd4a
KEYCLOAK-2986 Require either expiration or issuedAt for client authentication with signed JWT
2016-07-08 16:16:38 +02:00
Bill Burke
bd2887aa77
Merge pull request #2982 from ahus1/jetty_9_3
...
KEYCLOAK-2684: jetty 9.3 implementation (oidc/saml)
2016-07-07 14:59:29 -04:00
awpwb
159b371973
[KEYCLOAK-1733]: introduce token as query paramter
...
add functional tests for access token as query paramter
2016-07-06 14:12:23 +02:00
Stian Thorgersen
948f37b01a
Merge pull request #2997 from pedroigor/KEYCLOAK-3246
...
[KEYCLOAK-3246] - Authz client missing from tomcat 8 OpenID adapter
2016-07-06 09:24:19 +02:00
Stian Thorgersen
f52504ac41
KEYCLOAK-3262 Add support to save multiple state in keycloak.js
2016-07-05 08:45:12 +02:00
Pedro Igor
6bb59b7f63
[KEYCLOAK-3246] - Authz client missing from tomcat 8 OpenID adapter
2016-07-04 13:27:14 -03:00
Stian Thorgersen
f3a780cc2d
KEYCLOAK-2617 Ignore postmessages if not initiated by keycloak.js
2016-07-04 13:07:17 +02:00
Alexander Schwartz
9384aa1398
KEYCLOAK-2684: jetty 9.3 implementation
2016-07-01 12:26:59 +02:00
Bill Burke
b224917fc5
bump version
2016-06-30 17:17:53 -04:00
Pedro Igor
2db41ef052
[KEYCLOAK-2999] - Changes to authz examples for integration test
2016-06-30 10:26:05 -03:00
Pedro Igor
afa9471c7c
[KEYCLOAK-3128] - Admin Client Authorization Endpoints
2016-06-30 10:26:05 -03:00
Pedro Igor
f48288865b
[KEYCLOAK-3156] - Missing CORS when responding with denies
2016-06-22 14:39:07 -03:00
Pedro Igor
905421a292
[KEYCLOAK-3152] - Keycloak Authorization JS Adapter
2016-06-22 14:28:02 -03:00
Stian Thorgersen
3c0f7e2ee2
Merge pull request #2617 from pedroigor/KEYCLOAK-2753
...
[KEYCLOAK-2753] - Fine-grained Authorization Services
2016-06-17 13:40:15 +02:00
Pedro Igor
086c29112a
[KEYCLOAK-2753] - Fine-grained Authorization Services
2016-06-17 02:07:34 -03:00
Michaël van de Giessen
55910f5f70
KEYCLOAK-3050 - fix npe on deployment
2016-06-13 20:15:41 +02:00
mposolda
72736e5e47
KEYCLOAK-2028 Add test for token-minimum-time-to-live adapter option
2016-06-09 19:22:15 +02:00
Ben Loy
ec180db39f
KEYCLOAK-2028: Add preemptive access token refresh support
...
Add a new keycloak.json property and mechanism to automatically
refresh access tokens if they are going to expire in less than a configurable
amount of time.
2016-06-09 19:22:15 +02:00
Thomas Raehalme
babe94c50d
KEYCLOAK-3016: BasicAuthRequestAuthenticator now consumes HttpEntity also on errors.
2016-05-19 08:47:51 +03:00
Vaclav Muzikar
e6f0da99e6
KEYCLOAK-2995 Revert changes from KEYCLOAK-2989 in JWTClientCredentialsProvider
2016-05-12 10:45:45 +02:00
Vaclav Muzikar
9ad584b34d
KEYCLOAK-2989 Extend ClientAuthSignedJWTTest
2016-05-10 13:30:55 +02:00
Paolo Antinori
87a7879e71
KEYCLOAK-2777 - Added PathBasedKeycloakConfigResolver for OSGi + examples
2016-05-05 15:23:35 +02:00
Paolo Antinori
53799297b3
KEYCLOAK-2805 - Moved cxf.version up to the main pom
2016-05-05 15:22:03 +02:00
Paolo Antinori
f5f36545f3
KEYCLOAK-2805 - Support for JBoss Fuse 6.3
...
Upgrade of CXF, Jetty and Pax-Web required to rewrite part of the integration.
2016-05-05 15:21:51 +02:00
Maximilian Szengel
c3c3b90fb9
KEYCLOAK-2838: Add cookie storage fallback to keycloak.js
2016-04-21 11:07:41 +02:00
mposolda
6baa2228e7
KEYCLOAK-2852 Moved JAAS classes back to package org.keycloak.adapters.jaas
2016-04-19 22:19:10 +02:00
Jonathan Masmejean
b4ce19c231
fix formating issue.
2016-04-14 12:00:41 +02:00
Jonathan Masmejean
93b54ce13a
KEYCLOAK-2821 : Add the adapter option
...
You just can add an 'adapter' option to the kc.init() function like :
kc.init({adapter: "default | cordova"});
This will allow the users to choose the adapter they want. They can force the use of the default adapter even if they are using cordova or use the cordova adapter even if they are using a regular desktop.
If you omit this parameter, it just fallback to the old way. So, if you are under cordova it will run the cordova adapter and if you are under a desktop, it will load the default adapter instead.
Hope this can help.
2016-04-14 11:59:34 +02:00
Bill Burke
b080e1e782
merge adapter-spi adapter-spi-public
2016-04-13 22:25:30 -04:00
Bill Burke
515ed226be
Merge remote-tracking branch 'upstream/master'
2016-04-12 15:19:58 -04:00
Bill Burke
cca91dd175
public/private
2016-04-12 15:19:46 -04:00
Stian Thorgersen
2a9304eb79
KEYCLOAK-2646 Admin console shows 'Page not found' after password reset
2016-04-07 16:26:20 +02:00
Thomas Darimont
bccc5fa7b1
KEYCLOAK-2054 - Allow to configure proxy for auth-server requests in adapters.
...
Previously the adapter configuration did not support specifying a proxy
for auth-server requests issued via the Apache HTTP Client by Keycloak.
This made it very difficult to connect an Application with Keycloak
that was required to use a proxy.
Introduced new `proxy-url` attribute to the adapter configuration
which makes it possible to configure a proxy to be used for auth-server
requests. Proxy-Host, Proxy-Port and Proxy-Scheme are taken from the
configured proxy URL.
Note that proxies that require authentication are currently not supported.
2016-04-07 11:09:40 +02:00
mposolda
784b724fe0
Removed docker-cluster as integration-arquillian has support for clustering tests now
2016-04-05 11:45:34 +02:00
mposolda
65dc7ddb44
KEYCLOAK-2623 Remove auth-server-url-for-backend-requests from adapters
2016-04-05 11:43:41 +02:00
Bill Burke
f21cede378
KEYCLOAK-2662
2016-04-01 16:43:38 -04:00
mposolda
95a1fc32eb
KEYCLOAK-2681 JS adapter init function with initOptions argument doesn't call success callback
2016-03-18 12:06:46 +01:00
Stian Thorgersen
28fe13a800
Next is 2.0.0.CR1
2016-03-10 08:13:00 +01:00
Stian Thorgersen
d722e53108
Next is 1.9.2.Final
2016-03-10 07:28:27 +01:00
Stian Thorgersen
bf38ec040f
KEYCLOAK-2592 Set http-only on OAuth_Token_Request_State cookie
2016-03-04 13:43:00 +01:00