libre.sh/keycloak-scim
4
0
Fork 0
Code Issues 15 Pull requests Releases 1 Activity Actions
26431 commits 4 branches 9 tags 483 MiB
Commit graph

1178 commits

Author SHA1 Message Date
Douglas Palmer
2dd754533d Flaky Test ResetPasswordTest.resetPasswordLoggedUser:188->openResetPasswordUrlAndDoFlow:252 
Closes #34023

Signed-off-by: Douglas Palmer <dpalmer@redhat.com>
 2024-10-21 08:36:49 +02:00
Igor Petrov
8e872818c5 feat: eliminate client secret requirement 
This commit eliminates neccessity for providing client secret when
constructing client via Admin Client API. The requirement for client
secret became obsolete when Keycloak onboarded a X509 certificate
authorizer.

closes #33755

Signed-off-by: Igor Petrov <igor.petrov-ext@camunda.com>
 2024-10-18 16:35:15 +02:00
Jon Koops
228c21a7a0
Allow Keycloak JS to be initialized without passing options (#33950) 
Closes #8935

Signed-off-by: Jon Koops <jonkoops@gmail.com>
 2024-10-15 17:46:15 +02:00
Douglas Palmer
a276b3bb3d Flaky test: org.keycloak.testsuite.forms.BrowserButtonsTest#appInitiatedRegistrationWithBackButton 
Closes #32676

Signed-off-by: Douglas Palmer <dpalmer@redhat.com>
 2024-10-09 08:00:57 +02:00
rmartinc
467e881725 Use clickLink in delete credential page 
Closes #33505

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-10-08 12:22:53 +02:00
ikhomyn
6b96ee2b6d
Fix social login tests (#33525) 
Part of #33524

Signed-off-by: Ivan Khomyn <ikhomyn@redhat.com>
 2024-10-07 16:44:33 +02:00
mposolda
95c529104e Remove retry in LoginPage.resetPassword due the more universal fix exists in UIUtils.clickLink 
closes #33492

Signed-off-by: mposolda <mposolda@gmail.com>
(cherry picked from commit 88c94c28b0092df3f44277a5cc47e1d5026fe3af)
 2024-10-04 14:25:58 +02:00
mposolda
cb5c510c49 Adding retry when clicking on rememberMe checkbox on the loginPage during tests 
closes #32476
closes #32677
closes #32767
closes #33132
closes #32550

Signed-off-by: mposolda <mposolda@gmail.com>
 2024-10-04 12:01:38 +02:00
rmartinc
38e0568f9f Use clickLink in LanguageComboboxAwarePage 
Closes #32473
Closes #32939

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-10-03 18:26:10 +02:00
rmartinc
456878bb00 Use clickLink for logout in webauthn 
Closes #32923
Closes #32606
Closes #32605
Closes #32503

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-10-03 08:23:48 +02:00
rmartinc
7a886aab64 Use sendKeys instead of click for the webauthn tests 
Closes #33362
Closes #33037
Closes #32548

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-10-02 18:18:56 +02:00
vramik
c1653448f3 [Organizations] Allow orgs to define the redirect URL after user registers or accepts invitation link 
Closes #33201

Signed-off-by: vramik <vramik@redhat.com>
 2024-10-02 07:37:48 -03:00
Pedro Igor
353392f6ac Wait for the register page being loaded after clicking the registration link. Flaky tests are failing in a similar fashion after clicking the link. 
Closes #32930

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-10-02 08:20:12 +02:00
Giuseppe Graziano
b46fab2308 Remove root auth session after backchannel logout 
Closes #32197

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
 2024-10-01 11:56:57 +02:00
Jon Koops
67b6b4c942
Require Keycloak JS configuration to be passed explicitly (#33399) 
Closes #32823

Signed-off-by: Jon Koops <jonkoops@gmail.com>
 2024-10-01 10:29:10 +02:00
Peter Zaoral
d5d6390b1c
Make Keycloak fail with an error when the persisted build options differs from those provided (#33241) 
* PropertyException is now thrown instead of a warning
* Operator guides clarification around health and metrics options

Closes: #32717

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
 2024-09-30 19:28:23 +02:00
rmartinc
aaf8136c89 Move deleteCookies to before for RecoveryAuthnCodesAuthenticatorTest 
Closes #26176

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-09-30 12:05:16 +02:00
rmartinc
1d23c3c720 Use note to detect the IDP verify email action is already done 
Closes #31563

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-09-27 09:16:53 +02:00
Stefan Guilhen
42cde0cfdd
Fix various issues holding up CI (#33086) 
- Disables the remote operator tests, which will have to be fixed later.
- Fixes the action expired error which occurs when accessing regular registration page with Organizations enabled.
- Fixes a race condition in the test suite causing sporadic failures.

Closes #33064

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
Signed-off-by: rmartinc <rmartinc@redhat.com>
Signed-off-by: Jon Koops <jonkoops@gmail.com>
Co-authored-by: rmartinc <rmartinc@redhat.com>
Co-authored-by: Jon Koops <jonkoops@gmail.com>
 2024-09-19 21:23:21 +02:00
vramik
fcb31a5aa6 Implement invitation-only self-registration for realm users 
Closes #31643

Signed-off-by: vramik <vramik@redhat.com>
 2024-09-18 13:50:23 +02:00
Erik Jan de Wit
1f573eded0
added username field like suggested in issue comment (#32866) 
related: #32522

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
 2024-09-18 13:03:03 +02:00
Pedro Ruivo
f67bec0417 Rename remote-cache Feature 
Renamed to "clusterless"

Closes #32596

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
 2024-09-13 13:03:13 +02:00
Erik Jan de Wit
9aad6f650d
added more style fixes for the login.v2 (#32708) 
* added more style fixes for the login.v2

related: #32522
Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* fixed grant screen

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* test fixes

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* fix for code.ftl

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* test fixes

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* fixed tests

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

---------

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
 2024-09-11 14:52:49 -04:00
rmartinc
b60621d819 Allow brute force to have http request/response and send emails 
Closes #29542

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-09-11 08:35:03 +02:00
Thomas Darimont
6b83a45b2e
Propagate locale when using app initiated registration URL 
Fixes #13505

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
 2024-09-10 12:25:17 +02:00
mposolda
e1d5f0c871 Fix ResetPasswordTest on chrome 128 
closes #32514
closes #32478
closes #32477
closes #32678
closes #32542
closes #32678
closes #32541

Signed-off-by: mposolda <mposolda@gmail.com>
 2024-09-06 20:19:50 +02:00
Martin Bartoš
db7694e7be
Update the welcome page to create a temporary admin user (#32283) 
Closes #30010

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
Co-authored-by: Stan Silvert <ssilvert@redhat.com>
 2024-09-03 09:43:41 +02:00
Pedro Igor
4b5b1a4c25 Unignore backchannel logout tests 
Closes #20643

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-09-02 08:34:21 +02:00
Jon Koops
2d17024b14
Remove redirect_uri support from OIDC logout endpoint 
Closes #10983

Signed-off-by: Jon Koops <jonkoops@gmail.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
 2024-08-30 12:52:49 +00:00
Erik Jan de Wit
e410a83c3c Made the login more modular 
Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
 2024-08-29 07:18:24 -04:00
mposolda
cd947ce3bc Removing policy-enforcer from Keycloak repository 
closes #32191

Signed-off-by: mposolda <mposolda@gmail.com>
 2024-08-28 07:40:20 -03:00
Michal Hajas
f5b2775939 Enable persistent sessions by default 
Run CI with the feature disabled to test also the old settings
Closes #32265

Signed-off-by: Michal Hajas <mhajas@redhat.com>
 2024-08-21 17:37:54 +02:00
Pedro Igor
c1f6d5ca64 Support for selecting an organization when requesting the organization scope 
Closes #31438

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-08-21 13:04:58 +02:00
Martin Bartoš
bf5cf47351
Management Interface is turned on even though nothing is exposed on it (#31938) 
* Management Interface is turned on even though nothing is exposed on it

Fixes #31818

Signed-off-by: Martin Bartoš <mabartos@redhat.com>

* Remove conditional enablement, add relevancy description

Signed-off-by: Martin Bartoš <mabartos@redhat.com>

---------

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
 2024-08-19 15:52:59 +02:00
Justin Tay
966a454548
Add ECDH-ES JWE Algorithm Provider, Add generated ECDH key provider (#23928) 
Closes #23596
Closes #23597

Signed-off-by: Justin Tay <49700559+justin-tay@users.noreply.github.com>
 2024-08-08 17:29:35 +02:00
Michal Hajas
50c07c6e7c
Simplify configuration for MULTI_SITE 
Closes #31807

Signed-off-by: Michal Hajas <mhajas@redhat.com>
 2024-08-06 16:14:33 +00:00
Hynek Mlnarik
183cd6c957 Run tests with keycloak.v2 login theme 
The fixes (mostly selectors) are needed for tests.

In the future, to switch the keycloak.v2 to the default theme, do
the following:

- Update `ThemeSelectorProvider`: Uncomment relevant lines
- Update `testsuite/integration-arquillian/tests/pom.xml`: Revert the change in `<login.theme.default>` property
- Update `ThemeSelectorTest` per comment

Signed-off-by: Hynek Mlnarik <hmlnarik@redhat.com>
 2024-07-30 10:01:17 +02:00
Pascal Knüppel
94784182df
Implement DPoP for all grantTypes (#29967) 
fixes #30179
fixes #30181


Signed-off-by: Pascal Knüppel <captain.p.goldfish@gmx.de>
Signed-off-by: Pascal Knüppel <pascal.knueppel@governikus.de>
 2024-07-29 16:30:54 +02:00
vramik
649b35929e Make sure users created through a registration link are managed members 
Closes #30743

Signed-off-by: vramik <vramik@redhat.com>
 2024-07-25 04:30:13 -03:00
Kamesh Akella
33b3fd313c
Add migration tests for AuroraDB (#31396) 
Fixes #31024
Signed-off-by: Kamesh Akella <kamesh.asp@gmail.com>
 2024-07-24 16:45:02 +02:00
Steven Hawkins
4970a9b729
fix: deprecate KEYCLOAK_ADMIN and KEYCLOAK_ADMIN_PASSWORD 
closes: #30658

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Jon Koops <jonkoops@gmail.com>
 2024-07-11 18:07:57 +02:00
rmartinc
096e335a92 Support for vault and AES and HMAC algorithms to JavaKeystoreKeyProvider 
Closes #30880
Closes #29755

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-11 12:40:45 +02:00
Jon Koops
a0c99a7ae0
Show full error details in admin and account consoles 
Closes #30705

Signed-off-by: Jon Koops <jonkoops@gmail.com>
Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
Co-authored-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
 2024-07-10 16:20:26 +02:00
wojnarfilip
3c429b7506 Update social login tests login flows 
Signed-off-by: wojnarfilip <fwojnar@redhat.com>
 2024-07-08 08:48:31 +02:00
Douglas Palmer
220f32aa85 Cleanup of adapter pages 
Closes #30870

Signed-off-by: Douglas Palmer <dpalmer@redhat.com>
 2024-06-27 18:57:22 +02:00
fwojnar
015fefad02
Remove Edge from supported web drivers (#30423) 
Closes #29921

Signed-off-by: wojnarfilip <fwojnar@redhat.com>
Co-authored-by: wojnarfilip <fwojnar@redhat.com>
 2024-06-24 17:24:55 +02:00
fwojnar
e30e6cba8e
Remove Safari from supported web drivers (#30424) 
Related to #29921

Signed-off-by: wojnarfilip <fwojnar@redhat.com>
Co-authored-by: wojnarfilip <fwojnar@redhat.com>
 2024-06-24 13:27:12 +02:00
fwojnar
640db99c27
Remove Appium from supported web drivers (#30483) 
Related to #29921

Signed-off-by: wojnarfilip <fwojnar@redhat.com>
Co-authored-by: wojnarfilip <fwojnar@redhat.com>
 2024-06-24 13:26:33 +02:00
Pedro Ruivo
5fc12480fd External Infinispan as cache - Part 4 (#30072) 
UserSessionProvider implementation to make use of Infinispan remote
cache.

Closes #28755

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
 2024-06-19 14:47:57 +02:00
Pedro Ruivo
9006218559 External Infinispan as cache - Part 3 
Implementation of UserLoginFailureProvider using remote caches only.

Closes #28754

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
 2024-06-19 14:47:57 +02:00