libre.sh/keycloak-scim
2
0
Fork 0
Code Issues 14 Pull requests Releases Packages Activity Actions 6
14376 commits 4 branches 5 tags 480 MiB
Commit graph

14376 commits

This branch
This branch
All branches
Author SHA1 Message Date
Stian Thorgersen
fb18b693c4
Add Maven settings for release jobs (#12479) 
Closes #12474
 2022-06-13 15:53:44 +02:00
Václav Muzikář
105d3b955b Refactor Operator test packages 2022-06-13 10:01:43 -03:00
Yohan Siguret
0eaeaef5f0
add display-name and help-text for idp-email-verification and idp-username-password (#12056) 
Closes #12055
 2022-06-12 20:07:15 -04:00
Yohan Siguret
48ffe99f02
Add french i18n for login and email (#12054) 
Closes #11949
 2022-06-12 20:06:31 -04:00
Christoph Leistert
442eff0169
Closes #11851: Apply localization text from realm default locale when it is not defined for the requested language. (#11852) 2022-06-10 14:36:11 -04:00
Franck Kerbiriou
eed790cc2f
Update logout and idp login translation (#11950) 
https://github.com/keycloak/keycloak/issues/11949
Closes #11949

Co-authored-by: Franck Kerbiriou <franck.kerbiriou@dcbrain.com>
 2022-06-10 13:50:52 -04:00
Bruno Oliveira da Silva
cd1ea3054e
Snyk workflow failing while building Quarkus (#12389) 
Resolves #12380
 2022-06-10 10:18:07 -03:00
Dominik Guhr
b5c8f92fe7
Update Quarkus to 2.7.6.Final (#12371) 
Resolves #12370
 2022-06-10 09:14:59 -03:00
Martin Bartoš
2cf089424a
ClientClientScopesTest failures in the test pipeline (#12440) 
Resolves #12439
 2022-06-10 09:13:25 -03:00
Andrea Peruffo
e955a7c9c5
Remove the external base-deployment.yaml file (#12437) 
Resolves #12436
 2022-06-09 13:45:25 -03:00
Tobias Florek
fa22f1bdc7 ingress: set annotation for openshift routes 
fixes #12182
 2022-06-09 13:44:26 -03:00
andreaTP
a40acd413a Fix Ingress creation/deletion loop 2022-06-09 13:26:48 -03:00
Alexander Schwartz
361a813d81 Keep a list of model instances in the JPA map session. 
This allows removing them from the persistence context on bulk delete.

Closes #12384
 2022-06-09 12:39:04 -03:00
Joerg Matysiak
3c19ad627f Repsect permissions configured to firstName and lastName when configured in user profile 
Resolves #12109
 2022-06-09 10:10:15 -03:00
Dominik Guhr
c4001ba198 Fix running operator image tests with prebuilt image 
Closes #9898

Co-authored-by: Andrea Peruffo <andrea.peruffo1982@gmail.com>
 2022-06-09 09:55:26 -03:00
Pedro Igor
5e5cfff4e2 Resolve default values for runtime options when running re-aug 
Closes #10818
 2022-06-09 08:32:30 -03:00
Pedro Igor
b34f46155c Allow setting the admin hostname 
Closes #12190
 2022-06-08 16:41:43 -03:00
Pedro Igor
8aecba1795 Fixing how realm frontendurl is cached when resolving the hostname 
Closes #11894
 2022-06-08 16:41:25 -03:00
Bruno Oliveira da Silva
6ca6588391 Update undertow dependency to fix CVE-2021-3597 
Resolves #12390
 2022-06-08 10:05:16 -03:00
Pedro Igor
c18b87af5f Keycloak server fails to start when using different named schema 
Closes #12219
 2022-06-08 09:10:25 -03:00
Alexander Schwartz
9272c7a5ec Allow for the backend to return granted scopes in any order. 
Closes #12395
 2022-06-08 08:39:14 -03:00
mposolda
5d2bf6ea33 Cannot find ScriptEngine for JDK8 and Wildfly 
Closes #12247
 2022-06-08 11:11:36 +02:00
Stian Thorgersen
73c3517436
Upgrade to WildFly 26.1.1 (#12368) 
Closes #12178
 2022-06-07 16:40:40 +02:00
Pedro Igor
243e63c9f3 Do not set empty permissions to username and email attributes 
Closes #11647
 2022-06-07 10:59:35 -03:00
Pedro Igor
5f349195bb Provide a separate guide for configuring the server truststore 
Closes #12260
 2022-06-07 10:57:37 -03:00
Sebastian Schuster
a0c402b93a
11198 added event information to consent granting and revocation via REST API (#11199) 2022-06-07 11:29:20 +02:00
Stian Thorgersen
e49e8335e0
Refactor BouncyIntegration (#12244) 
Closes #12243
 2022-06-07 09:02:00 +02:00
Martin Kanis
df72cf72f2 Hot Rod map storage: Single-use (action token) no-downtime store 2022-06-06 16:01:18 +02:00
Bruno Oliveira da Silva
a102e28dbb Update webauthn4j to 0.20.0 
A new version which contains a couple of
bug fixes plus CVE updates for its dependencies:

Breaking changes
    - Add EdDSA support #662
    - Correct AuthenticationAlgorithm(0x0011) value #657

Dependency Upgrades
    - Bump spring-boot-dependencies from 2.6.7 to 2.7.0 #661
    - Bump jacksonVersion from 2.13.2 to 2.13.3 #660
    - Bump kerby-asn1 from 2.0.1 to 2.0.2 #659
Bump checker-qual from 3.21.4 to 3.22.0 #654

Resolves #12311
 2022-06-06 13:45:17 +02:00
rmartinc
5332a7d435 Issue #9194: Client authentication fails when using signed JWT, if the JWA signing algorithm is not RS256 2022-06-06 12:07:09 +02:00
Alexander Bokovoy
1915f11cba OAuth2DeviceConfig: fix polling interval defaults 
Instead of DEFAULT_OAUTH2_DEVICE_POLLING_INTERVAL, constant for the
lifespan was used to initialize the default polling interval.

This leads to inability to continuously poll the result as the result
stuck in the actionTokens cache for far longer than expected (600
seconds instead of 5 seconds). As a result, only the first request for
the token succeeds if a resource owner already did grant the access. If
that has not happened, any additional polling within 600 seconds would
get rejected with a 'slow_down' response.

This makes hard to write OAuth 2.0 clients using device code
authorization grant flow against multiple IdPs. Microsoft's
implementation of OAuth 2.0 device code grant flow requires 'nudging'
the Authorization Server's token endpoint before it even starts
recognizing the device code. Keycloak mismatch of the polling interval
default makes this flow impossible.

Closes #12327

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2022-06-06 11:54:56 +02:00
Takashi Norimatsu
3889eeda30 Client Policies: pkce-enforcer executor with client-access-type condition is not applied on client change via Admin API 
Closes #12295
 2022-06-06 11:30:48 +02:00
Nick Farley
91e88f554e Replaces instances of himself with more inclusive language 
Closes #12300
 2022-06-03 12:25:14 -03:00
andreaTP
f9c6ea84ad Respect http-relative-path with probes 2022-06-03 12:23:36 -03:00
vramik
c31d37ddf1 Each JpaRootEntity should have its own current schema version 
Closes #12272
 2022-06-02 17:16:34 +02:00
Michal Hajas
09c0a69a8f Add HotRod no downtime store for events 
Closes #9676
 2022-06-02 13:30:19 +02:00
andreaTP
0a8e132c7c Refactor the packages structure of the operator 2022-06-01 17:30:47 -03:00
Adam Jones
74870a2ac6
Update issues link to GitHub issues rather than JBoss/RedHat JIRA (#12218) 
* Update welcome page link to GitHub issues rather than JBoss/RedHat JIRA

* Update GOVERNANCE.md

* Update index.ftl
 2022-06-01 15:20:36 +02:00
Salih Candir
990df8feb5
fix wrong xRobotsTag label bound (#12288) 
Set the `for` attribute of the xRobotsTag label to `xRobotsTag`

Closes #12286
 2022-06-01 15:18:38 +02:00
Martin Kanis
75754eca6b Extract timestamp from Expirable entity 2022-06-01 13:03:31 +02:00
Alexander Schwartz
6c3d25fd8f Limit the number of clientSessionIds in the test 
Before it was 1500 client sessions, now its only 150 client sessions. This should help to keep the test within its time constraint of 60 + 30 seconds.

Closes #12264
 2022-05-31 17:10:49 +02:00
mposolda
f90fbb9c71 Changing locale on logout confirmation did not work 
Closes #11951
 2022-05-31 16:03:58 +02:00
andreaTP
8f54f03f17 Fix CodeQl actions syntax 2022-05-31 08:53:42 -03:00
andreaTP
8912b6dc96 Improve Operator CI robustness 2022-05-31 08:52:40 -03:00
Takashi Norimatsu
d083b6c484 ciba http auth channel sends client_id and client_secret via delegation request 
Closes #10993
 2022-05-31 08:22:50 +02:00
vramik
be28e866b9 JPA map storage: Authorization services no-downtime store 
Closes #9669
 2022-05-30 21:05:34 +02:00
andreaTP
7c7588e8db Make OLM tests Maven build self-contained 2022-05-30 15:23:11 -03:00
Pedro Igor
ea22989d89 Fixing ClientTokenExchangeTest to also run when TLS is disabled 
Closes #11818
 2022-05-30 11:23:46 -03:00
Pedro Hos
e121371401 /clients-registrations API doesn't return secret anymore and is not coherent #11116 
/clients-registrations API doesn't return secret anymore and is not coherent

fixing merge

/clients-registrations API doesn't return secret anymore and is not coherent

fixing test that was failing

Replace tabs with regular spaces

fixing identation

/clients-registrations API doesn't return secret anymore and is not coherent. Closes #11116

fixing test that was failing
 2022-05-30 15:18:56 +02:00
mposolda
4222de8f41 OIDC RP-Initiated Logout POST method support 
Closes #11958
 2022-05-30 14:10:58 +02:00