Bill Burke
|
64f591769a
|
remove /rest from RealmsResource
|
2014-05-06 20:21:49 -04:00 |
|
mposolda
|
0801c9c120
|
Full export-import implemented. Remove dependency of mongo on picketlink-common
|
2014-05-06 22:15:57 +02:00 |
|
Stian Thorgersen
|
1d760388de
|
KEYCLOAK-441 Remove org.json
|
2014-05-06 12:32:29 +01:00 |
|
Bill Burke
|
e7c64b7812
|
adatper deployment context fixes, picketlink abstraction
|
2014-05-05 18:20:52 -04:00 |
|
Bill Burke
|
7ff2c77a82
|
relative uri tests and fixes
|
2014-05-02 12:30:08 -04:00 |
|
Bill Burke
|
e5e43173bc
|
relative redirect uris
|
2014-05-02 10:58:29 -04:00 |
|
Bill Burke
|
2576975988
|
fix mimetype
|
2014-04-30 14:25:23 -04:00 |
|
Bill Burke
|
8c5ae9d052
|
fix mimetype
|
2014-04-30 14:24:37 -04:00 |
|
Stian Thorgersen
|
38e6bde07e
|
KEYCLOAK-415 Make sure query params are included when navigating in acct mngmt
|
2014-04-30 11:03:13 +01:00 |
|
Stian Thorgersen
|
9811aaeecc
|
KEYCLOAK-333 Removed use of RestEasy's Logger
|
2014-04-30 10:13:53 +01:00 |
|
Stian Thorgersen
|
316431c4d1
|
Ensure role name unique within realm/app
|
2014-04-30 09:50:29 +01:00 |
|
Stian Thorgersen
|
646e762cbe
|
Ensure user loginName and email unique within realm
|
2014-04-29 17:15:28 +01:00 |
|
Stian Thorgersen
|
1d94649b96
|
Ensure application and client names are unique within realm
|
2014-04-29 12:03:09 +01:00 |
|
Stian Thorgersen
|
364998b34b
|
Enforce that realm name is unique in model
|
2014-04-29 10:43:27 +01:00 |
|
Bill Burke
|
62f8811a46
|
Merge remote-tracking branch 'upstream/master'
Conflicts:
bundled-war-example/src/main/java/org/keycloak/server/KeycloakServerApplication.java
bundled-war-example/src/main/webapp/WEB-INF/web.xml
|
2014-04-28 18:04:50 -04:00 |
|
Bill Burke
|
2d1dc4a874
|
application refactor
|
2014-04-28 17:34:06 -04:00 |
|
Stian Thorgersen
|
3d02fd5d0e
|
KEYCLOAK-429 Remove role from composite roles when deleted
|
2014-04-28 12:55:04 +01:00 |
|
Stian Thorgersen
|
292089cee8
|
Ensure Realm names are unique
|
2014-04-25 17:02:03 +01:00 |
|
Stian Thorgersen
|
f64f55a4c6
|
KEYCLOAK-347 Link realm and realm-permissions application
|
2014-04-25 15:32:28 +01:00 |
|
Stian Thorgersen
|
b8dfac391a
|
KEYCLOAK-385 Add CORS support to refresh token
|
2014-04-25 14:09:39 +01:00 |
|
Stian Thorgersen
|
d6e5e376bf
|
Theme support for admin
|
2014-04-25 13:58:58 +01:00 |
|
Bill Burke
|
541e865fe8
|
brute force fixes
|
2014-04-23 17:55:13 -04:00 |
|
Bill Burke
|
54abfb670c
|
brute force settings
|
2014-04-15 11:37:27 -04:00 |
|
Bill Burke
|
2b8d2288fb
|
more brute force detection
|
2014-04-14 18:58:45 -04:00 |
|
Bill Burke
|
272806a3f3
|
app/keycloak self bootstrapping bundle
|
2014-04-11 13:24:07 -04:00 |
|
Bill Burke
|
cc982cf246
|
workarounds for resteasy 2.3.7 bugs
|
2014-04-11 10:33:53 -04:00 |
|
Bill Burke
|
b41c45d40a
|
remove transitive dependencies
|
2014-04-10 11:29:47 -04:00 |
|
Bill Burke
|
ecaa0d1401
|
use resteasy 2.3.7
|
2014-04-10 05:21:07 -04:00 |
|
Bill Burke
|
cdc35d99bc
|
cleanup
|
2014-04-09 22:34:36 -04:00 |
|
Stian Thorgersen
|
eb3e69d5d7
|
Updated audit timer
|
2014-04-09 06:40:15 +01:00 |
|
mposolda
|
5aefe52ccc
|
Refactoring of Authentication SPI and Picketlink to use ProviderSessions
Refactoring of ProviderSessionFactory to support dependencies between components
Calling lifecycle methods
Removing KeycloakRegistry
|
2014-04-09 00:34:01 +02:00 |
|
mposolda
|
c8c4cfbaae
|
Restructure of authentication module and packages
|
2014-04-09 00:06:04 +02:00 |
|
Stian Thorgersen
|
7f0cf3eda8
|
Allow clearing audit events through admin console, and added timer to clear expired events
|
2014-04-08 11:32:20 +01:00 |
|
Stian Thorgersen
|
8ca46fa35d
|
Audit configurable through admin console
|
2014-04-07 17:58:52 +01:00 |
|
Stian Thorgersen
|
948960f33f
|
Allow changing base url for Keycloak
|
2014-04-07 10:54:27 +01:00 |
|
mposolda
|
58083fbb96
|
Hide password tab in acct management if passwordUpdate not supported
|
2014-04-04 23:47:12 +02:00 |
|
mposolda
|
ad068a300b
|
Basic support for registration of new users in AuthenticationProvider
|
2014-04-04 19:53:02 +02:00 |
|
Stian Thorgersen
|
216e24864a
|
Merge branch 'ldap' of https://github.com/mposolda/keycloak into mposolda-ldap
Conflicts:
admin-ui/src/main/resources/META-INF/resources/admin/js/app.js
admin-ui/src/main/resources/META-INF/resources/admin/js/controllers/realm.js
|
2014-04-04 15:29:03 +01:00 |
|
Stian Thorgersen
|
88ddc8ebca
|
Added audit to admin console
|
2014-04-04 15:16:08 +01:00 |
|
mposolda
|
2aac603fad
|
Added configuration of authentication providers into admin console
|
2014-04-04 13:20:12 +02:00 |
|
Stian Thorgersen
|
8caf3fa83a
|
Added details to log view in acct mngmt
|
2014-04-04 11:01:18 +01:00 |
|
Stian Thorgersen
|
3433227fa7
|
Added audit log to account mngmt
|
2014-04-03 16:27:31 +01:00 |
|
Stian Thorgersen
|
e6067c915d
|
Added ProviderSession to requests
|
2014-04-03 16:27:31 +01:00 |
|
Bill Burke
|
126b444d77
|
brute force merge
|
2014-04-02 20:26:33 -04:00 |
|
Bill Burke
|
d58870545f
|
brute force protection
|
2014-04-02 20:09:14 -04:00 |
|
mposolda
|
25bf6d63b4
|
Refactoring of AuthenticationProvider SPI
|
2014-04-02 17:27:07 +02:00 |
|
mposolda
|
05cd8a82e5
|
Storing default AuthenticationProvider at the realm creation time
|
2014-04-02 17:17:33 +02:00 |
|
Stian Thorgersen
|
225307e855
|
KEYCLOAK-389 Added AuditListener SPI
KEYCLOAK-390 Added JBoss Logging AuditListener
KEYCLOAK-391 Audit Token events
|
2014-03-31 17:35:14 +01:00 |
|
mposolda
|
77a44751a6
|
KEYCLOAK-388 - Auth SPI should be able to differentiate between the INVALID_USERNAME and INVALID_CREDENTIALS
|
2014-03-26 09:49:47 +01:00 |
|
mposolda
|
ab02dea902
|
Fixes in AuthenticationProvider. Fixing testsuite
|
2014-03-25 15:05:08 +01:00 |
|
mposolda
|
793f69d4b6
|
Authentication SPI. Implementations based on Picketlink+LDAP, model and external model (other realm). Added KeycloakRegistry
|
2014-03-24 23:11:11 +01:00 |
|
Stian Thorgersen
|
702ae0307e
|
Fixes to account referrer to allow configurable referrer uri based on app redirect uri
|
2014-03-19 16:52:41 +00:00 |
|
Stian Thorgersen
|
331ab71427
|
KEYCLOAK-380 Added OAuth2Constants
|
2014-03-15 10:43:52 +00:00 |
|
Stian Thorgersen
|
f9aaa16cfe
|
KEYCLOAK-378 KEYCLOAK-379 KEYCLOAK-381 Fix refresh token if token contains app roles. Changed long time fields in AccessCode and AccessToken to int
|
2014-03-15 10:15:10 +00:00 |
|
Bill Burke
|
08769a2daa
|
NPE in create user
|
2014-03-13 10:56:09 -04:00 |
|
Bill Burke
|
52018b1f81
|
revoke on logoutAll
|
2014-03-12 15:57:43 -04:00 |
|
Bill Burke
|
e48cc006f6
|
Merge remote-tracking branch 'upstream/master'
|
2014-03-12 10:17:24 -04:00 |
|
Bill Burke
|
accb56be7f
|
user import fix
|
2014-03-12 10:17:09 -04:00 |
|
Stian Thorgersen
|
a1f10ef54b
|
Merge pull request #285 from stianst/master
Add user friendly username for social links. Show access denied if social login is cancelled
|
2014-03-12 13:52:28 +00:00 |
|
Stian Thorgersen
|
0214827492
|
KEYCLOAK-364 Show access denied if social login is cancelled
|
2014-03-12 09:21:11 +00:00 |
|
Stian Thorgersen
|
6dc156712e
|
KEYCLOAK-359 Add user friendly username for social links
|
2014-03-12 08:52:47 +00:00 |
|
Bill Burke
|
e836371887
|
security context propagation
|
2014-03-11 17:40:53 -04:00 |
|
mposolda
|
3d0d130622
|
KEYCLOAK-26 Linking social providers to existing account
|
2014-03-10 11:31:59 +01:00 |
|
Bill Burke
|
2b01de5ecf
|
remove transaction
|
2014-03-07 08:35:41 -05:00 |
|
Bill Burke
|
dd292c1d52
|
remove scope support for now part 2
|
2014-03-06 10:26:46 -05:00 |
|
Bill Burke
|
801ef3281a
|
remove scope support for now
|
2014-03-06 09:59:27 -05:00 |
|
Bill Burke
|
8f29bf0a5a
|
client type selection
|
2014-03-06 09:48:52 -05:00 |
|
Bill Burke
|
599faa3cb5
|
public clients
|
2014-03-05 20:26:27 -05:00 |
|
Stian Thorgersen
|
60bb05e6ca
|
Added Config to centralize system properties used to configure KC
|
2014-03-05 15:20:53 +00:00 |
|
Stian Thorgersen
|
0219aa1e4c
|
Added support for any port with http://localhost redirect uri
|
2014-03-05 12:54:57 +00:00 |
|
Bill Burke
|
d6bd02ea7d
|
session mgmt
|
2014-03-04 22:25:33 -05:00 |
|
Bill Burke
|
7699dd2701
|
Merge remote-tracking branch 'upstream/master'
|
2014-03-04 15:52:40 -05:00 |
|
Bill Burke
|
2d86b29b6c
|
session stats
|
2014-03-04 15:52:27 -05:00 |
|
Stian Thorgersen
|
77259320cf
|
Fix js for cors requests
|
2014-03-04 15:27:13 +00:00 |
|
Bill Burke
|
06288fa07b
|
revocation app level
|
2014-03-03 17:10:15 -05:00 |
|
Bill Burke
|
01154f18dd
|
Merge remote-tracking branch 'upstream/master'
|
2014-03-03 15:50:21 -05:00 |
|
Bill Burke
|
716972347d
|
revocation
|
2014-03-03 15:50:10 -05:00 |
|
Stian Thorgersen
|
87aaaf0b06
|
Started support for installed applications
|
2014-03-03 12:58:16 +00:00 |
|
Bill Burke
|
8126110312
|
refactor getRoleById
|
2014-03-02 20:28:58 -05:00 |
|
Bill Burke
|
c8023c6651
|
revocation next phase: undertow complete
|
2014-03-02 17:32:25 -05:00 |
|
Bill Burke
|
7b30cc59b8
|
revocation phase 1
|
2014-02-28 19:47:05 -05:00 |
|
Bill Burke
|
0d309d058c
|
add claims to grant page
|
2014-02-28 10:45:12 -05:00 |
|
Bill Burke
|
11559cba50
|
public realm info update
|
2014-02-28 09:52:53 -05:00 |
|
Bill Burke
|
4dc4c56921
|
fix NPE
|
2014-02-28 09:19:26 -05:00 |
|
Bill Burke
|
3fc273070e
|
remove clientmodel.agent phase1
|
2014-02-27 13:55:04 -05:00 |
|
Bill Burke
|
f8da693fd0
|
move secret to clientmodel
|
2014-02-27 10:59:47 -05:00 |
|
Stian Thorgersen
|
32b7c464c7
|
Added create-realm role
|
2014-02-27 11:07:48 +00:00 |
|
Stian Thorgersen
|
b3375d4279
|
Fixed permissions not updated when realm is imported
|
2014-02-27 10:23:27 +00:00 |
|
Bill Burke
|
42d30a5a70
|
rename scope rep username to client
|
2014-02-26 22:23:04 -05:00 |
|
Bill Burke
|
48d39bf977
|
Use ClientModel wherever possible
|
2014-02-26 22:04:57 -05:00 |
|
Bill Burke
|
c02d532001
|
refactor model
|
2014-02-26 19:25:42 -05:00 |
|
Bill Burke
|
0f67feb9dd
|
IDToken setup
|
2014-02-26 19:04:42 -05:00 |
|
Bill Burke
|
8613452f4f
|
Merge remote-tracking branch 'upstream/master'
|
2014-02-26 15:29:31 -05:00 |
|
Bill Burke
|
b249809d2e
|
claims backend
|
2014-02-26 15:29:17 -05:00 |
|
Stian Thorgersen
|
ae1b98e38f
|
Added view roles, including updating console to make forms read-only
|
2014-02-26 17:38:42 +00:00 |
|
Stian Thorgersen
|
9a73936002
|
KEYCLOAK-292 Fine-grained admin control
|
2014-02-25 12:53:36 +00:00 |
|
Bill Burke
|
64065a4573
|
javascript refresh token
|
2014-02-24 19:58:54 -05:00 |
|
Bill Burke
|
166e00f2e8
|
remember me
|
2014-02-23 11:30:32 -05:00 |
|
Bill Burke
|
01ddafa83a
|
central login timeouts, rememberme framework
|
2014-02-22 21:52:29 -05:00 |
|
Bill Burke
|
3e88cb3b76
|
logout
|
2014-02-22 20:40:06 -05:00 |
|
Bill Burke
|
273e706a42
|
undertow refresh token support
|
2014-02-22 17:24:04 -05:00 |
|
Bill Burke
|
0a9b82a6f4
|
refresh tokens server side
|
2014-02-21 17:36:39 -05:00 |
|
Bill Burke
|
97dd7470ce
|
rename tokenLifespan to accessTokenLifespan
|
2014-02-21 12:12:54 -05:00 |
|
Bill Burke
|
e583dc60ae
|
Merge remote-tracking branch 'upstream/master'
|
2014-02-21 12:02:36 -05:00 |
|
Bill Burke
|
9607acdb6a
|
refactor token creation
|
2014-02-21 12:02:24 -05:00 |
|
Stian Thorgersen
|
05bd92d765
|
KEYCLOAK-286 Allow login with username or email. KEYCLOAK-287 Remove recover username as we now support login with email
|
2014-02-21 15:25:55 +00:00 |
|
Bill Burke
|
9442601e42
|
rename some classes
|
2014-02-21 10:16:12 -05:00 |
|
Stian Thorgersen
|
9ce8e16063
|
KEYCLOAK-284 Subject in token is now user id instead of username
|
2014-02-21 09:48:43 +00:00 |
|
Bill Burke
|
6794166b58
|
tokens/access/codes now uses basic auth
|
2014-02-20 17:19:51 -05:00 |
|
Stian Thorgersen
|
e9750c3d70
|
KEYCLOAK-298 If admin or accnt mngmt cookies are invalid, the identity cookie was expired by mistake
|
2014-02-19 11:12:59 +00:00 |
|
Stian Thorgersen
|
325919e24a
|
KEYCLOAK-297 Fixed invalid state param when loggin to admin acct mngmt
|
2014-02-17 15:14:11 +00:00 |
|
Bill Burke
|
81a90232d6
|
Merge pull request #213 from patriot1burke/master
oauth client generates secret
|
2014-02-14 17:46:09 -05:00 |
|
Bill Burke
|
b518fa2f4b
|
oauth client generates secret
|
2014-02-14 17:45:46 -05:00 |
|
Stian Thorgersen
|
01bb835285
|
Updated login forms to use Patternfly styles
|
2014-02-14 17:38:04 +00:00 |
|
Bill Burke
|
0cdd5e857e
|
use secrets
|
2014-02-13 18:36:41 -05:00 |
|
mposolda
|
b9ff73d61c
|
Moved model unit tests from services to model/tests . Mongo profile in testsuite
|
2014-02-11 18:26:50 +01:00 |
|
mposolda
|
b3f1032f96
|
Mongo: Refactoring. All unit tests and testsuite are passing with Mongo.
|
2014-02-11 18:25:57 +01:00 |
|
mposolda
|
81ff7b0c6d
|
Refactoring Mongo model. All unit tests passing with mongo
|
2014-02-11 15:23:30 +01:00 |
|
Stian Thorgersen
|
a89a1d524c
|
KEYCLOAK-288 Check if totp setup or email verification is required on social login
|
2014-02-07 16:13:53 +00:00 |
|
Bill Burke
|
127ee40f23
|
Merge pull request #194 from patriot1burke/master
composite switch
|
2014-02-05 10:28:41 -05:00 |
|
Bill Burke
|
cce8814254
|
composite switch
|
2014-02-05 10:28:11 -05:00 |
|
Stian Thorgersen
|
722f7c8840
|
KEYCLOAK-272 Improved user credential management, including option to send user password reset email from admin console
|
2014-02-05 14:43:48 +00:00 |
|
Stian Thorgersen
|
457853aa28
|
KEYCLOAK-233 Add referrer query parm to manage app link in admin console to display back to app link
|
2014-02-05 11:31:18 +00:00 |
|
Stian Thorgersen
|
8b5fbe92d6
|
Added GitHub provider. Simplified FaceBook provider
|
2014-02-05 10:55:52 +00:00 |
|
Bill Burke
|
d2ad6349ba
|
remove setComposite
|
2014-02-04 18:41:36 -05:00 |
|
Bill Burke
|
7c190e40ee
|
fix demo
|
2014-02-04 12:02:09 -05:00 |
|
Bill Burke
|
4e66a3bf81
|
Merge remote-tracking branch 'upstream/master'
|
2014-02-04 10:09:25 -05:00 |
|
Bill Burke
|
92091d9474
|
composite tests
|
2014-02-04 10:09:09 -05:00 |
|
Stian Thorgersen
|
4c22a8c92b
|
Renamed login forms provider classes
|
2014-02-04 14:45:11 +00:00 |
|
Stian Thorgersen
|
97897cab1d
|
KEYCLOAK-15 Customize login and registration forms
|
2014-02-04 11:45:24 +00:00 |
|
Bill Burke
|
8505cc612a
|
composite representations
|
2014-02-03 17:21:56 -05:00 |
|
Bill Burke
|
e222240282
|
composite UI
|
2014-01-31 21:39:54 -05:00 |
|
Bill Burke
|
1543963c9f
|
composite tests
|
2014-01-30 20:31:44 -05:00 |
|
Bill Burke
|
6a5994c3e2
|
composite roles 2
|
2014-01-29 23:28:08 -05:00 |
|
Bill Burke
|
bb5991239b
|
composite roles
|
2014-01-29 20:19:32 -05:00 |
|
Stian Thorgersen
|
06c3a6ea30
|
KEYCLOAK-271 Check password policy when recovering password through email
|
2014-01-24 14:48:58 +00:00 |
|
Bill Burke
|
cbd1e0aad5
|
error screen
|
2014-01-21 13:05:56 -05:00 |
|
Stian Thorgersen
|
e92980b776
|
Simplified check for ssl, since x-forward is sorted by Undertow
|
2014-01-20 19:31:02 +00:00 |
|
Stian Thorgersen
|
070c0ddba4
|
Renamed registration to default roles, add default roles to all users when they are created
|
2014-01-17 10:03:13 +00:00 |
|
Stian Thorgersen
|
c5366f1c81
|
KEYCLOAK-264 Remove option to enable/disable acct mngmt
|
2014-01-17 09:30:56 +00:00 |
|
Stian Thorgersen
|
dcfb83b0f2
|
KEYCLOAK-64 KEYCLOAK-246 Updated social to use update profile required action instead of registration form. Fixed Google provider
|
2014-01-16 12:52:46 +00:00 |
|
Bill Burke
|
b162190c7f
|
remove cookieLoginAllowed
|
2014-01-15 20:31:01 -05:00 |
|
Bill Burke
|
894c28c64f
|
role name instead of id
|
2014-01-15 19:39:21 -05:00 |
|
Bill Burke
|
ed0d33126c
|
use app name instead of id
|
2014-01-15 16:57:12 -05:00 |
|
Bill Burke
|
6326d5d2b5
|
auth-server-url and Realm/App name changes
|
2014-01-15 10:02:56 -05:00 |
|
Bill Burke
|
cb391eb89a
|
finish using realm name instead of id
|
2014-01-14 16:13:52 -05:00 |
|
Bill Burke
|
2dbd7cfa02
|
realm name for url param
|
2014-01-14 13:03:13 -05:00 |
|
Bill Burke
|
4825974edc
|
realm name in url
|
2014-01-13 23:38:00 -05:00 |
|
Bill Burke
|
62cc002396
|
constants
|
2014-01-13 19:42:34 -05:00 |
|
Bill Burke
|
39b61728d6
|
change uri scheme
|
2014-01-13 17:07:36 -05:00 |
|