Pedro Igor
|
fe4e089e81
|
[KEYCLOAK-18745] - Client JWT authentication should allow PAR endpoint as audience
|
2021-07-19 14:23:53 -03:00 |
|
Vlastimil Elias
|
61aa4e6a70
|
KEYCLOAK-18750 - Set "Email Verified" to false when email changed in
UserProfile Provider
|
2021-07-19 11:19:29 -03:00 |
|
Takashi Norimatsu
|
f188f02d03
|
KEYCLOAK-18826 FAPI-CIBA-ID1 conformance test : ID Token needs to include auth_time claim
|
2021-07-19 15:11:23 +02:00 |
|
Takashi Norimatsu
|
63f04c1118
|
KEYCLOAK-18683 Client policy executor for check Backchannel signed request algorithms matching FAPI compliant algorithms
|
2021-07-19 14:48:31 +02:00 |
|
Pedro Igor
|
a79d28f115
|
[KEYCLOAK-18729] - Support JAR when using PAR
|
2021-07-19 11:42:20 +02:00 |
|
bal1imb
|
2c8d4ad9b4
|
KEYCLOAK-18590 Realm localizations of one realm must not affect themes displayed in context of other realms.
|
2021-07-16 16:12:58 +02:00 |
|
bal1imb
|
fbaeb18a5f
|
KEYCLOAK-18471 Added ID to admin event object.
|
2021-07-16 12:46:07 +02:00 |
|
Pedro Igor
|
f1face6973
|
[KEYCLOAK-18748] - Do not remove attributes when declarative provider is enabled
|
2021-07-15 12:00:39 -03:00 |
|
Vlastimil Elias
|
7618e66136
|
[KEYCLOAK-18541] separate template for IDP review page
|
2021-07-13 21:43:52 -03:00 |
|
vramik
|
00017b44a3
|
KEYCLOAK-18311 fix creation of roles during client registration
|
2021-07-12 11:39:47 +02:00 |
|
Pedro Igor
|
1baab67f3b
|
[KEYCLOAK-18630] - Request object encryption support
|
2021-07-09 11:27:30 -03:00 |
|
Vlastimil Elias
|
6686482ba5
|
[KEYCLOAK-18591] - Support a dynamic IDP user review form
|
2021-07-09 10:05:26 -03:00 |
|
Takashi Norimatsu
|
7cdcf0f93e
|
KEYCLOAK-18654 Client Policy - Endpoint : support Token Request by CIBA Backchannel Authentication
|
2021-07-09 11:24:12 +02:00 |
|
Takashi Norimatsu
|
43eb2b7c90
|
KEYCLOAK-18123 Client Policy - Executor : Enforce Backchannel Authentication Request satisfying high security level
|
2021-07-09 09:11:13 +02:00 |
|
Takashi Norimatsu
|
63b737545f
|
KEYCLOAK-18653 Client Policy - Endpoint : support Pushed Authorization Request Endpoint
|
2021-07-09 09:06:38 +02:00 |
|
Pedro Igor
|
4099833be8
|
[KEYCLOAK-18693] - Declarative profile validating read-only attribute if it exists
|
2021-07-08 15:22:02 -03:00 |
|
Takashi Norimatsu
|
dce163d3e2
|
KEYCLOAK-18587 CIBA signed request: Client must configure the algorithm
|
2021-07-08 10:16:22 +02:00 |
|
Dmitry Telegin
|
3b3a61dfba
|
KEYCLOAK-18639 Token Exchange SPI Milestone 1
|
2021-07-06 15:48:45 -03:00 |
|
Benjamin Weimer
|
8c1ea60b04
|
* Add sid claim to ID Token
* deprecate session state parameter in ID Token
* remove charset=UTF-8 from backchannel logout post request Content-Type header
|
2021-07-06 15:30:53 -03:00 |
|
Takashi Norimatsu
|
2b1624390a
|
KEYCLOAK-17937 Client Policy - Endpoint : support CIBA Backchannel Authentication Endpoint
|
2021-07-03 08:57:20 +02:00 |
|
Hryhorii Hevorkian
|
2803685cd7
|
KEYCLOAK-18353 Implement Pushed Authorization Request inside the Keycloak
Co-authored-by: Takashi Norimatsu <takashi.norimatsu.ws@hitachi.com>
Co-authored-by: mposolda <mposolda@gmail.com>
|
2021-07-03 08:47:42 +02:00 |
|
lbortoli
|
e5ae113453
|
KEYCLOAK-18452 FAPI JARM: JWT Secured Authorization Response Mode for OAuth 2.0
|
2021-07-03 00:00:32 +02:00 |
|
Vlastimil Elias
|
04ff2c327b
|
[KEYCLOAK-18429] Support a dynamic update profile form
|
2021-07-02 10:22:47 -03:00 |
|
Vlastimil Elias
|
f32447bcc1
|
[KEYCLOAK-18424] GUI order for user profile attributes
|
2021-07-02 08:37:24 -03:00 |
|
Pedro Igor
|
b26b41332e
|
[KEYCLOAK-18626] - Avoid changing username when registration as email is enabled
|
2021-07-02 08:07:04 -03:00 |
|
Pedro Igor
|
3e07ca3c22
|
[KEYCLOAK-18425] - Allow mapping user profile attributes
|
2021-07-01 10:19:28 -03:00 |
|
lbortoli
|
164f3df080
|
KEYCLOAK-18502 - Support for additional parameters from the backchannel authentication request and backchannel authentication callback.
|
2021-07-01 00:31:26 +02:00 |
|
Valentin Hervieu
|
aab6782bae
|
KEYCLOAK-18603 Remove duplicated statement
This is super minor but saw this while reading this file.
|
2021-06-30 15:56:32 +02:00 |
|
Vlastimil Elias
|
bcfa6e4309
|
KEYCLOAK-18592 - put attribute validators configuration into freemarker
template for user profile pages
|
2021-06-30 09:01:12 -03:00 |
|
Václav Muzikář
|
eb3bd8bbb5
|
KEYCLOAK-18554 Make ErrorHandler to log all errors for debugging purposes
|
2021-06-30 08:58:09 +02:00 |
|
Takashi Norimatsu
|
cef742ee3f
|
KEYCLOAK-18583 Remove OIDCWellKnownProvider.isAsymmetricAlgorithm
|
2021-06-30 07:35:46 +02:00 |
|
Luca Leonardo Scorcia
|
ae98d8ea28
|
KEYCLOAK-18315 SAML Client - Add parameter to request specific AttributeConsumingServiceIndex
|
2021-06-29 16:22:38 +02:00 |
|
Takashi Norimatsu
|
57c80483bb
|
KEYCLOAK-17936 FAPI-CIBA : support Signed Authentication Request
Co-authored-by: Pritish Joshi <pritish@banfico.com>
Co-authored-by: mposolda <mposolda@gmail.com>
|
2021-06-29 08:07:40 +02:00 |
|
Pedro Igor
|
948f453e2d
|
[KEYCLOAK-18427] - Allowing switching to declarative provider
|
2021-06-28 15:50:04 -03:00 |
|
Vlastimil Elias
|
512bcd14f7
|
[KEYCLOAK-18428] - dynamic registration form
|
2021-06-25 17:11:15 -03:00 |
|
Pedro Igor
|
faadb896ea
|
[KEYCLOAK-18426] - Support required by role and scopes in Admin UI
|
2021-06-24 10:43:49 -03:00 |
|
Vlastimil Elias
|
b7a4fd8745
|
KEYCLOAK-18423 - Support a user-friendly name property for user profile
attributes
|
2021-06-24 08:17:06 -03:00 |
|
Luca Leonardo Scorcia
|
cdf9621257
|
KEYCLOAK-18450 Add basic tests for the Identity Provider Redirector Default IdP feature
|
2021-06-23 08:42:14 +02:00 |
|
Vlastimil Elias
|
458c841c39
|
[KEYCLOAK-18447] Dynamically select attributes based on requested scopes
|
2021-06-22 08:54:03 -03:00 |
|
Vlastimil Elias
|
82491ae5d2
|
KEYCLOAK-17446 - Prefill username in "Forgot Your Password" form if
called from Login form
|
2021-06-22 08:48:43 -03:00 |
|
Vlastimil Elias
|
b87d764137
|
[KEYCLOAK-17443] Username and email form fields kept in registration
form when duplicate
|
2021-06-22 08:46:42 -03:00 |
|
Luca Leonardo Scorcia
|
f5123cb51b
|
KEYCLOAK-17935 SAML Client - Validate InResponseTo attribute
|
2021-06-21 12:25:18 +02:00 |
|
vramik
|
e3c76035b2
|
KEYCLOAK-18359 Default role migration is not performed correctly when empty realm id
|
2021-06-14 20:54:37 +02:00 |
|
Davide Setti
|
74089a51b3
|
KEYCLOAK-18383 Update Group: don't check siblings if the name doesn't change
|
2021-06-14 12:58:45 +02:00 |
|
Pedro Igor
|
ef3a0ee06c
|
[KEYCLOAK-17399] - Declarative User Profile and UI
Co-authored-by: Vlastimil Elias <velias@redhat.com>
|
2021-06-14 11:28:32 +02:00 |
|
Martin Bartoš
|
7ffa2835ef
|
KEYCLOAK-18391 CIBATest failure
|
2021-06-11 10:36:56 +02:00 |
|
Yoshiyuki Tabata
|
4d1576b96a
|
KEYCLOAK-18328 "access_denied" instead of "interaction_required" should
be returned when a user cancels the login
|
2021-06-10 11:16:50 +02:00 |
|
mposolda
|
070c68e18a
|
KEYCLOAK-18069 Migration of client policies JSON from Keycloak 13
|
2021-06-10 10:40:14 +02:00 |
|
Douglas Palmer
|
aac0b6ec5f
|
[KEYCLOAK-17602] Email account verification link is wrongly encoded
|
2021-06-10 08:34:53 +02:00 |
|
mposolda
|
91865fa93e
|
KEYCLOAK-18368 Invalidate client session after refresh token re-use
|
2021-06-09 14:43:29 +02:00 |
|