pedroigor
|
4b1ba704ec
|
[KEYCLOAK-992] - Token retrieval from brokered idps.
|
2015-02-06 22:23:34 -02:00 |
|
pedroigor
|
99a457c5c1
|
[KEYCLOAK-996] - Allow application to select provider.
|
2015-01-30 14:02:53 -02:00 |
|
Bill Burke
|
fd20a25100
|
Merge remote-tracking branch 'upstream/master'
|
2015-01-28 17:09:59 -05:00 |
|
Bill Burke
|
ea3bba98aa
|
saml frontchannel logout
|
2015-01-28 17:09:13 -05:00 |
|
Stian Thorgersen
|
67ba1de56f
|
KEYCLOAK-999 Load providers from file-system
|
2015-01-28 09:15:07 +01:00 |
|
mposolda
|
ee4fbca868
|
Improve OOTB experience for ssh and jmx authentication in fuse
|
2015-01-23 20:57:40 +01:00 |
|
pedroigor
|
edecda8599
|
[KEYCLOAK-986] - Escape characters when doing SAML POST Binding.
|
2015-01-23 12:09:44 -02:00 |
|
Bill Burke
|
ef2698936b
|
Merge pull request #919 from pedroigor/KEYCLOAK-884
[KEYCLOAK-884] - OpenID Connect UserInfo Endpoint.
|
2015-01-16 14:28:30 -05:00 |
|
pedroigor
|
4f432775ed
|
[KEYCLOAK-884] - OpenID Connect UserInfo Endpoint.
|
2015-01-16 15:45:27 -02:00 |
|
mposolda
|
d928c26e27
|
KEYCLOAK-539 Fuse adapter. OSGI bundling. OSGI headers in keycloak adapter maven artifacts. Rename package in jetty-core
|
2015-01-15 19:02:45 +01:00 |
|
pedroigor
|
fa2533ed11
|
[KEYCLOAK-883] - Initial changes.
|
2015-01-13 00:58:19 -02:00 |
|
Stian Thorgersen
|
959933a227
|
Version bump
|
2015-01-12 10:35:50 +01:00 |
|
Michael Gerber
|
9c484b9938
|
add test
|
2015-01-09 14:03:36 +01:00 |
|
mposolda
|
e62858cefd
|
KEYCLOAK-900 Fix resolving of current hostname
|
2015-01-08 11:09:11 +01:00 |
|
Stian Thorgersen
|
628437c146
|
KEYCLOAK-760 OAuth2 refresh token expiration date
|
2015-01-05 10:50:50 +01:00 |
|
Bill Burke
|
28a56289d9
|
Merge pull request #897 from patriot1burke/master
saved requests
|
2014-12-17 22:29:46 -05:00 |
|
Bill Burke
|
08be04b337
|
saved requests
|
2014-12-17 22:29:18 -05:00 |
|
Michael Gerber
|
9169a3df76
|
IE 11 does not store cookie because of wrong time zone
https://issues.jboss.org/browse/KEYCLOAK-875
|
2014-12-13 21:24:49 +01:00 |
|
Bill Burke
|
6c04e26376
|
bump
|
2014-12-05 21:09:38 -05:00 |
|
Bill Burke
|
c0059a875b
|
bump version
|
2014-12-05 19:03:13 -05:00 |
|
objectiser
|
8e01f8ecf1
|
KEYCLOAK-861 Support basic authentication against user credentials managed by KeyCloak.
|
2014-12-01 11:43:19 +00:00 |
|
Bill Burke
|
d0856e024f
|
proxy distro
|
2014-11-24 18:12:17 -05:00 |
|
Bill Burke
|
46983d68f3
|
move ServerCookie to core
|
2014-11-14 09:20:03 -05:00 |
|
Bill Burke
|
0636cd898f
|
fix incorrect JWS implementation
|
2014-11-11 21:28:35 -05:00 |
|
mposolda
|
a94ab5883d
|
KEYCLOAK-835 Move AdapterConstants to different package
|
2014-11-10 22:16:20 +01:00 |
|
mposolda
|
d1e819cef1
|
KEYCLOAK-836 Refactoring of JaxrsBearerTokenFilter to work with both resteasy and Apache CXF. Added test
|
2014-11-10 22:16:14 +01:00 |
|
Timon Veenstra
|
7c9e3f4555
|
KEYCLOAK-829 Adjustment to KetstoreUtil to support loading keystore from classpath
|
2014-11-06 21:43:49 +01:00 |
|
Stian Thorgersen
|
0f8c073354
|
Version bump
|
2014-11-04 09:01:06 +01:00 |
|
Bill Burke
|
9c7e297118
|
principal token attribute mapping
|
2014-10-31 16:40:07 -04:00 |
|
mposolda
|
44d4f6eb95
|
Remove redundant realm property from KeycloakSecurityContext
|
2014-10-31 13:17:35 +01:00 |
|
Stian Thorgersen
|
9b0d5acb50
|
KEYCLOAK-704 KEYCLOAK-768 Improvements to access code generation
|
2014-10-31 12:45:03 +01:00 |
|
Juraci Paixão Kröhling
|
8e764e642f
|
KEYCLOAK-779
Adapter multi-tenancy support
|
2014-10-30 16:54:26 +01:00 |
|
Bill Burke
|
0183ac43bc
|
aud should be client-id, issuer should be realm
|
2014-10-29 15:56:25 -04:00 |
|
Stian Thorgersen
|
05b6dc7af4
|
KEYCLOAK-797
login-status-iframe.html fails if domain contains hyphen
|
2014-10-29 14:02:38 +01:00 |
|
Stian Thorgersen
|
fcda005d88
|
KEYCLOAK-772 Event settings are not imported
|
2014-10-28 20:21:03 +01:00 |
|
mposolda
|
a538e25b9d
|
KEYCLOAK-702 - Added AdapterTokenStore spi. Possibility to save account info to cookie as alternative to http session
|
2014-10-27 16:20:01 +01:00 |
|
mposolda
|
01c705b4d3
|
KEYCLOAK-759 Added adapter clustering to admin console
|
2014-10-21 12:32:53 +02:00 |
|
Stian Thorgersen
|
63b41e2548
|
KEYCLOAK-703 Check valid origin is passed to login-status-iframe
|
2014-10-21 09:57:56 +02:00 |
|
mposolda
|
7d8f265789
|
KEYCLOAK-759 dynamic registration of managementUrls in cluster
|
2014-10-17 21:51:46 +02:00 |
|
Bill Burke
|
7760887ac1
|
app cert support, bug fixes
|
2014-10-14 18:38:48 -04:00 |
|
Bill Burke
|
4d007c776a
|
generate/store realm certificate
|
2014-10-11 10:49:04 -04:00 |
|
Bill Burke
|
0ace5cd746
|
merge conflicts
|
2014-10-09 18:26:14 -04:00 |
|
Bill Burke
|
94da99bf10
|
use app id in admin console urls
|
2014-10-09 18:22:02 -04:00 |
|
mposolda
|
9954d68a1f
|
KEYCLOAK-748 cluster-aware logout for non-distributable apps
|
2014-10-09 21:33:07 +02:00 |
|
mposolda
|
7e7406ddb7
|
KEYCLOAK-743 Stateless session mgmt. Drop statistics for adapters.
|
2014-10-08 22:18:10 +02:00 |
|
mposolda
|
84e1ace539
|
KEYCLOAK-742 Added always-refresh-token option to adapters
|
2014-10-08 22:18:10 +02:00 |
|
Bill Burke
|
a1d1877751
|
ClientModel attributes and protocol
|
2014-10-08 10:54:13 -04:00 |
|
mposolda
|
59bf7e524f
|
Change method signature
|
2014-10-05 20:07:54 +02:00 |
|
mposolda
|
50f148cd7c
|
Use one option "auth-server-url-for-backend-requests" instead of 3 options
|
2014-10-02 19:16:04 +02:00 |
|
mposolda
|
72b5632cfe
|
KEYCLOAK-731 Support for replacing configuration of Java adapters with system properties
|
2014-10-02 19:15:37 +02:00 |
|
Bill Burke
|
71216bf2c9
|
merge
|
2014-10-01 14:21:23 -04:00 |
|
mposolda
|
d7bcd41909
|
Ensure that KeycloakUndertowAccount and referenced classes can be serialized in session
|
2014-10-01 19:08:41 +02:00 |
|
Bill Burke
|
4b399fe05a
|
login protocol abstraction
|
2014-10-01 10:01:42 -04:00 |
|
mposolda
|
80a9a8984a
|
Cleanup. Support to use-hostname-for-local-requests added to Demo examples
|
2014-09-30 17:37:36 +02:00 |
|
mposolda
|
337b03fc62
|
KEYCLOAK-720 added support for oauth clients
|
2014-09-30 17:37:36 +02:00 |
|
Stian Thorgersen
|
99c73a9cc7
|
Clustering support
|
2014-09-30 09:40:20 +02:00 |
|
Stian Thorgersen
|
423dc1b8a7
|
Change version schema to match JBoss
|
2014-09-12 09:35:08 +02:00 |
|
Stian Thorgersen
|
5dea07793b
|
Version bump
|
2014-09-11 09:27:58 +02:00 |
|
Stian Thorgersen
|
557de7690e
|
Fix CRSF protection on Chrome, and add check if 'Referer' header
|
2014-09-10 10:32:56 +02:00 |
|
Bill Burke
|
3f539c6d5c
|
version bump
|
2014-09-09 13:34:56 -04:00 |
|
mposolda
|
1f0dcbddbe
|
KEYCLOAK-659 Export current version number during export
|
2014-09-02 17:06:58 +02:00 |
|
Stian Thorgersen
|
05a1fc1ded
|
Version bump
|
2014-09-01 10:17:00 +02:00 |
|
Stian Thorgersen
|
b9d0f64f74
|
Added password token to use inplace of plain-text password for totp
|
2014-08-28 13:51:55 +02:00 |
|
Stian Thorgersen
|
3bfe3d256e
|
Rename audit to events
|
2014-08-28 10:56:37 +02:00 |
|
Stian Thorgersen
|
55bd889a0f
|
KEYCLOAK-531 Reduce info level logging
|
2014-08-27 11:17:24 +02:00 |
|
Bill Burke
|
7c8edb5d11
|
bump pom
|
2014-08-21 10:46:49 -04:00 |
|
Bill Burke
|
e5d5276135
|
race
|
2014-08-20 14:50:28 -04:00 |
|
Bill Burke
|
edf73af508
|
change password
|
2014-08-13 10:35:49 -04:00 |
|
Bill Burke
|
7c97e02715
|
X-Frame-Options, Content-Security-Policy
|
2014-08-11 17:45:01 -04:00 |
|
mposolda
|
d699404ce7
|
Support for periodic users sync
|
2014-08-10 23:23:50 +02:00 |
|
Bill Burke
|
9aa6b4cbfa
|
optimize imports
|
2014-08-10 12:17:45 -04:00 |
|
Bill Burke
|
aff32f69bb
|
version
|
2014-08-06 15:44:50 -04:00 |
|
Bill Burke
|
e04af84ac0
|
bump version
|
2014-08-06 09:00:23 -04:00 |
|
Bill Burke
|
905061e2b7
|
bump version
|
2014-08-05 20:52:50 -04:00 |
|
Bill Burke
|
731d75c756
|
app full scope by default
|
2014-08-04 16:04:10 -04:00 |
|
Bill Burke
|
6cf708f6e1
|
fed exampe
|
2014-08-02 22:18:17 -04:00 |
|
Bill Burke
|
101a72cd65
|
remove AuthenticationProvider/Link
|
2014-08-01 18:03:48 -04:00 |
|
Stian Thorgersen
|
c460630cf8
|
Allow private addresses to use http with ssl-required=external
|
2014-08-01 15:05:45 +01:00 |
|
Stian Thorgersen
|
6cbeeb1b1a
|
KEYCLOAK-591 Require SSL for all external requests by default
|
2014-08-01 13:52:04 +01:00 |
|
Bill Burke
|
b72a7db6fe
|
federation display name
|
2014-07-31 10:51:04 -04:00 |
|
Bill Burke
|
8ea0d19d2f
|
federation refactor
|
2014-07-30 16:01:54 -04:00 |
|
Stian Thorgersen
|
02a59812e6
|
Added ClientSessionModel to UserSessionProvider
|
2014-07-29 16:10:41 +01:00 |
|
Stian Thorgersen
|
628c7dd92a
|
KEYCLOAK-579 Use relative urls in examples
|
2014-07-28 10:41:21 +01:00 |
|
Bill Burke
|
b1cd37814a
|
rename
|
2014-07-25 10:40:46 -04:00 |
|
Bill Burke
|
171e9b1ce9
|
Merge remote-tracking branch 'upstream/master'
|
2014-07-23 15:10:48 -04:00 |
|
Bill Burke
|
eec582e704
|
merge
|
2014-07-23 15:10:36 -04:00 |
|
Stian Thorgersen
|
d6f5bf6cde
|
Moved rememberMe, usernameUsed fields from AccessCode to UserSessions. Change AccessCode to have a single action instead of a list of required actions, also used action for codes that needs user to grant permissions first. Finally removed expiration time on access code and use timestamp directly
|
2014-07-23 15:58:09 +01:00 |
|
Bill Burke
|
148d494905
|
federation iteration
|
2014-07-23 10:21:25 -04:00 |
|
Stian Thorgersen
|
b196d0dded
|
Remove access token from access code, and create token when code is exchanged for token
|
2014-07-22 09:37:21 +01:00 |
|
Bill Burke
|
f275ecf6d5
|
cache settings
|
2014-07-18 11:30:10 -04:00 |
|
Stian Thorgersen
|
46c04561ff
|
Removed long ids and replaced with composite ids
|
2014-07-17 11:16:15 +01:00 |
|
mposolda
|
24a492ffe0
|
Export/import refactoring to use same representation as admin endpoints
|
2014-07-15 05:35:24 +02:00 |
|
Bill Burke
|
0758d89a59
|
Merge pull request #502 from mposolda/master
Changes in representations - adding role mappings under user representat...
|
2014-07-07 18:41:42 -04:00 |
|
Bill Burke
|
a1beff7d3d
|
admin rest api test
|
2014-07-07 18:37:30 -04:00 |
|
mposolda
|
ffc30b4c03
|
Changes in representations - adding role mappings under user representation
|
2014-07-07 22:48:53 +02:00 |
|
Stian Thorgersen
|
711b8ca747
|
Return null for selected provider if empty string
|
2014-06-27 09:39:21 +01:00 |
|
Stian Thorgersen
|
34a1923d18
|
Refactor to prepar for splitting model
|
2014-06-27 09:39:06 +01:00 |
|
Bill Burke
|
d21a19925b
|
stateless access codes
|
2014-06-20 10:37:27 -04:00 |
|
Stian Thorgersen
|
df2305eb02
|
Bumped version to 1.0-beta-4-SNAPSHOT
|
2014-06-19 10:19:10 +01:00 |
|
mposolda
|
f9cb99a1ee
|
KEYCLOAK-534 Fix MS-SQL
|
2014-06-17 19:41:19 +02:00 |
|
Bill Burke
|
c71fdc72c7
|
keycloak-518
|
2014-06-16 10:43:50 -04:00 |
|
Bill Burke
|
d5b34a0b41
|
bump version again
|
2014-06-02 13:12:04 -04:00 |
|
Bill Burke
|
0fcf80dd6e
|
bump version
|
2014-06-02 12:21:58 -04:00 |
|
Stian Thorgersen
|
2025d314ec
|
Bump version to 1.0.beta2-SNAPSHOT
|
2014-05-30 08:52:03 +01:00 |
|
Bill Burke
|
2ae3775841
|
bump version
|
2014-05-29 12:12:33 -04:00 |
|
Bill Burke
|
e880b77692
|
update docs
|
2014-05-28 09:31:33 -04:00 |
|
Bill Burke
|
e4232c73c6
|
admin rest api example
|
2014-05-23 18:20:55 -04:00 |
|
Bill Burke
|
29070cec77
|
add KeycloakSecurityContext to principal
|
2014-05-23 16:26:44 -04:00 |
|
Stian Thorgersen
|
b09e2f697e
|
Email audit listener
|
2014-05-20 17:04:17 +01:00 |
|
Stian Thorgersen
|
cc97265c06
|
Add realm option to enable/disable Resource Owner Password Credentials Grant
|
2014-05-20 11:32:22 +01:00 |
|
Stian Thorgersen
|
8d1149dc07
|
Add email theme config for realm
|
2014-05-20 11:00:43 +01:00 |
|
Bill Burke
|
11c23a7945
|
require redirect
|
2014-05-19 14:44:36 -04:00 |
|
Bill Burke
|
dc7923c436
|
fix brute shutdown
|
2014-05-19 10:33:49 -04:00 |
|
Bill Burke
|
c2bf6c3822
|
Merge remote-tracking branch 'upstream/master'
|
2014-05-17 14:24:37 -04:00 |
|
Bill Burke
|
ab8de6ba25
|
client user-session association
|
2014-05-17 14:24:32 -04:00 |
|
Stian Thorgersen
|
855269f35d
|
Added 'keycloak-server.json' for configuring the server
Added SPI interface to detect SPI's
Converted Model to SPI/Provider to be loaded through ProviderSessionFactory
|
2014-05-16 17:33:22 +01:00 |
|
Stian Thorgersen
|
a3ed02ea16
|
Merge pull request #391 from jeroenr/master
CORS improvements and clean up
|
2014-05-16 16:06:43 +01:00 |
|
Jeroen Rosenberg
|
cedf43c084
|
Refactored joining of allowed headers to be more efficient
|
2014-05-16 14:28:49 +02:00 |
|
Bill Burke
|
c51c7fe189
|
Merge pull request #389 from jeroenr/master
Improved exception handling. Don't swallow exception
|
2014-05-16 06:34:18 -04:00 |
|
Jeroen Rosenberg
|
bde9944449
|
Improved exception handling. Don't swallow exception
|
2014-05-16 09:35:19 +02:00 |
|
Bill Burke
|
27efd3c0a4
|
ssoSessionIdleTimeout refactor
|
2014-05-15 13:53:28 -04:00 |
|
Stian Thorgersen
|
f4f9b1e323
|
KEYCLOAK-431 View open sessions, and logout all sessions, through account management
|
2014-05-14 11:56:28 +01:00 |
|
Bill Burke
|
1e1991e285
|
per-realm admin
|
2014-05-12 10:12:31 -04:00 |
|
Stian Thorgersen
|
6f0b12174c
|
KEYCLOAK-432 Added user sessions
|
2014-05-09 11:52:45 +01:00 |
|
Bruno Oliveira
|
4424c425a6
|
Redundant initialization
|
2014-05-07 08:15:31 -03:00 |
|
Bruno Oliveira
|
5f7b0aae06
|
Variables will be never used
|
2014-05-07 08:15:02 -03:00 |
|
Bruno Oliveira
|
f77e3b5532
|
Unused imports
|
2014-05-07 08:14:32 -03:00 |
|
Bruno Oliveira
|
334b981741
|
notBefore wasn't being assigned
|
2014-05-07 08:10:03 -03:00 |
|
Bruno Oliveira
|
957ff7d206
|
Make it final
|
2014-05-07 08:05:57 -03:00 |
|
Bruno Oliveira
|
5973ccd522
|
Scope can be private
|
2014-05-07 08:03:21 -03:00 |
|
Bruno Oliveira
|
1ea1f0af96
|
Removing redundant local variable
|
2014-05-07 07:49:45 -03:00 |
|
Bruno Oliveira
|
f5ac81db41
|
Return not necessary here
|
2014-05-07 07:48:42 -03:00 |
|
Bruno Oliveira
|
9e7f52ccda
|
extends Object isn't necessary
|
2014-05-07 07:47:39 -03:00 |
|
Bill Burke
|
64f591769a
|
remove /rest from RealmsResource
|
2014-05-06 20:21:49 -04:00 |
|
Bill Burke
|
6f3822e6ea
|
relative adapter urls
|
2014-05-02 10:17:40 -04:00 |
|
Bill Burke
|
54abfb670c
|
brute force settings
|
2014-04-15 11:37:27 -04:00 |
|
Bill Burke
|
2b8d2288fb
|
more brute force detection
|
2014-04-14 18:58:45 -04:00 |
|
mposolda
|
5aefe52ccc
|
Refactoring of Authentication SPI and Picketlink to use ProviderSessions
Refactoring of ProviderSessionFactory to support dependencies between components
Calling lifecycle methods
Removing KeycloakRegistry
|
2014-04-09 00:34:01 +02:00 |
|
Stian Thorgersen
|
8ca46fa35d
|
Audit configurable through admin console
|
2014-04-07 17:58:52 +01:00 |
|
Stian Thorgersen
|
e6067c915d
|
Added ProviderSession to requests
|
2014-04-03 16:27:31 +01:00 |
|
Bill Burke
|
231e8895a5
|
Merge pull request #309 from vibe13/master
Cleaning of pom.xml files
|
2014-04-02 11:39:04 -04:00 |
|
mposolda
|
25bf6d63b4
|
Refactoring of AuthenticationProvider SPI
|
2014-04-02 17:27:07 +02:00 |
|
Stian Thorgersen
|
722a077de7
|
Added JPA audit provider£
|
2014-04-01 15:13:53 +01:00 |
|
Andrea Vibelli
|
84f1e1b56e
|
Extraction into properties of maven-compiler-plugin source and target
|
2014-03-31 11:17:16 +02:00 |
|
Andrea Vibelli
|
3ddb2084cd
|
Remove duplicated dead code
|
2014-03-31 10:44:47 +02:00 |
|
Andrea Vibelli
|
37fdc50fb4
|
Remove warnings about no schema definition in pom.xml files
|
2014-03-31 10:44:22 +02:00 |
|
mposolda
|
793f69d4b6
|
Authentication SPI. Implementations based on Picketlink+LDAP, model and external model (other realm). Added KeycloakRegistry
|
2014-03-24 23:11:11 +01:00 |
|
Stian Thorgersen
|
331ab71427
|
KEYCLOAK-380 Added OAuth2Constants
|
2014-03-15 10:43:52 +00:00 |
|
Stian Thorgersen
|
f9aaa16cfe
|
KEYCLOAK-378 KEYCLOAK-379 KEYCLOAK-381 Fix refresh token if token contains app roles. Changed long time fields in AccessCode and AccessToken to int
|
2014-03-15 10:15:10 +00:00 |
|
Stian Thorgersen
|
2ebc32793a
|
Started installed application adapter
|
2014-03-14 17:01:08 +00:00 |
|