Martin Kanis
0ebf862b63
LDAP Import: KERBEROS_PRINCIPAL not updated when UserPrincipal changes and user already exists
...
Closes #32266
Signed-off-by: Martin Kanis <mkanis@redhat.com>
2024-10-11 09:16:17 -03:00
rmartinc
7e5734fd48
Fix incorrect filter in docker protocol
...
Closes #33776
Signed-off-by: rmartinc <rmartinc@redhat.com>
2024-10-11 08:58:18 +02:00
Pedro Igor
9a3d81c23e
Only process organization selection when the user is identified
...
Closes #33699
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2024-10-10 16:24:25 +02:00
rmartinc
a74e60f4d7
Check email with ignorecase when setting basic attributes in IdP
...
Closes #31848
Signed-off-by: rmartinc <rmartinc@redhat.com>
2024-10-10 09:55:58 +02:00
Jon Koops
3930356c21
Treat unencrypted local origins as an insecure context in Safari ( #33700 )
...
Closes #33557
Signed-off-by: Jon Koops <jonkoops@gmail.com>
2024-10-09 23:38:03 +02:00
Douglas Palmer
a276b3bb3d
Flaky test: org.keycloak.testsuite.forms.BrowserButtonsTest#appInitiatedRegistrationWithBackButton
...
Closes #32676
Signed-off-by: Douglas Palmer <dpalmer@redhat.com>
2024-10-09 08:00:57 +02:00
rmartinc
467e881725
Use clickLink in delete credential page
...
Closes #33505
Signed-off-by: rmartinc <rmartinc@redhat.com>
2024-10-08 12:22:53 +02:00
mposolda
07cf71e818
Better logging when error happens during transaction commit
...
closes #33275
Signed-off-by: mposolda <mposolda@gmail.com>
2024-10-08 11:14:10 +02:00
Ricardo Martin
611e6d102e
Create session for the requester client in Token Exchange ( #31290 )
...
Closes #31180
Signed-off-by: rmartinc <rmartinc@redhat.com>
Co-authored-by: Marek Posolda <mposolda@gmail.com>
2024-10-08 10:24:10 +02:00
Gilles Etchepareborde
593afbb4e0
This PR intends to always set the event type in order to prevent error when firing an error event.
...
Closes #30453
Signed-off-by: Gilles Etchepareborde <etchepar@yahoo.fr>
2024-10-08 10:15:53 +02:00
rmartinc
a475cbf009
Re-try login to account for firefox CI
...
Closes #30994
Signed-off-by: rmartinc <rmartinc@redhat.com>
2024-10-08 10:08:49 +02:00
rmartinc
44b1290917
Return next action if the current action is not supported in AIA
...
Closes #33513
Signed-off-by: rmartinc <rmartinc@redhat.com>
2024-10-08 09:54:53 +02:00
ikhomyn
6b96ee2b6d
Fix social login tests ( #33525 )
...
Part of #33524
Signed-off-by: Ivan Khomyn <ikhomyn@redhat.com>
2024-10-07 16:44:33 +02:00
mposolda
95c529104e
Remove retry in LoginPage.resetPassword due the more universal fix exists in UIUtils.clickLink
...
closes #33492
Signed-off-by: mposolda <mposolda@gmail.com>
(cherry picked from commit 88c94c28b0092df3f44277a5cc47e1d5026fe3af)
2024-10-04 14:25:58 +02:00
mposolda
cb5c510c49
Adding retry when clicking on rememberMe checkbox on the loginPage during tests
...
closes #32476
closes #32677
closes #32767
closes #33132
closes #32550
Signed-off-by: mposolda <mposolda@gmail.com>
2024-10-04 12:01:38 +02:00
mposolda
edb05421ac
Issue when running tests from IDE on embedded undertow - org.jboss.threads.EnhancedQueueExecutor.setKeepAliveTime(java.time.Duration)
...
closes #33517
Signed-off-by: mposolda <mposolda@gmail.com>
2024-10-03 18:44:41 +02:00
rmartinc
38e0568f9f
Use clickLink in LanguageComboboxAwarePage
...
Closes #32473
Closes #32939
Signed-off-by: rmartinc <rmartinc@redhat.com>
2024-10-03 18:26:10 +02:00
vramik
b7eaa9b0cb
Wildcard search not working for custom user attributes
...
Closes #32451
Signed-off-by: vramik <vramik@redhat.com>
2024-10-03 08:48:36 -03:00
Maksim Zvankovich
35eba8be8c
Add option to include the organization id in the organization claims
...
Closes #32746
Signed-off-by: Maksim Zvankovich <m.zvankovich@nexovagroup.eu>
Co-authored-by: Stefan Guilhen <sguilhen@redhat.com>
2024-10-03 08:11:36 -03:00
Stian Thorgersen
6092524d79
Fix theme resource loading on Windows, and enable additional test in jdk-integration-tests ( #33512 )
...
Closes #33508
Signed-off-by: stianst <stianst@gmail.com>
2024-10-03 11:37:49 +02:00
rmartinc
456878bb00
Use clickLink for logout in webauthn
...
Closes #32923
Closes #32606
Closes #32605
Closes #32503
Signed-off-by: rmartinc <rmartinc@redhat.com>
2024-10-03 08:23:48 +02:00
Martin Kanis
51fd133f05
[Keycloak CI] - User Federation Tests - fixing AD tests
...
Closes #33231
Signed-off-by: Martin Kanis <mkanis@redhat.com>
2024-10-02 16:02:55 -03:00
Pedro Aguiar
f60be4bf8e
update: fix typo "a email" ( #33482 )
...
- "a email" becomes "an email".
Signed-off-by: Pedro Aguiar <contact@codespearhead.com>
2024-10-02 19:34:33 +02:00
rmartinc
7a886aab64
Use sendKeys instead of click for the webauthn tests
...
Closes #33362
Closes #33037
Closes #32548
Signed-off-by: rmartinc <rmartinc@redhat.com>
2024-10-02 18:18:56 +02:00
Pedro Igor
9bbe00e3e3
Wait for welcome page to load as it might take a bit more time to load/redirect.
...
Closes #28953
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2024-10-02 10:09:17 -03:00
vramik
c1653448f3
[Organizations] Allow orgs to define the redirect URL after user registers or accepts invitation link
...
Closes #33201
Signed-off-by: vramik <vramik@redhat.com>
2024-10-02 07:37:48 -03:00
Ricardo Martin
6e471a8477
Add the nonce attribute when the client session context is recreated ( #33422 )
...
Closes #33355
Signed-off-by: rmartinc <rmartinc@redhat.com>
Co-authored-by: Tomas Kralik <tomas.kralik@pbktechnology.cz>
2024-10-02 09:44:25 +02:00
Pedro Igor
ebfb42f9c5
Force tests to wait for brute force login event as they are fired in a separate thread
...
Closes #32942
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2024-10-02 08:43:17 +02:00
Pedro Igor
353392f6ac
Wait for the register page being loaded after clicking the registration link. Flaky tests are failing in a similar fashion after clicking the link.
...
Closes #32930
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2024-10-02 08:20:12 +02:00
Giuseppe Graziano
b46fab2308
Remove root auth session after backchannel logout
...
Closes #32197
Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
2024-10-01 11:56:57 +02:00
Jon Koops
67b6b4c942
Require Keycloak JS configuration to be passed explicitly ( #33399 )
...
Closes #32823
Signed-off-by: Jon Koops <jonkoops@gmail.com>
2024-10-01 10:29:10 +02:00
mposolda
e582a17a7c
Fix client-attributes condition configuration
...
closes #33390
Signed-off-by: mposolda <mposolda@gmail.com>
2024-10-01 10:12:28 +02:00
Peter Zaoral
d5d6390b1c
Make Keycloak fail with an error when the persisted build options differs from those provided ( #33241 )
...
* PropertyException is now thrown instead of a warning
* Operator guides clarification around health and metrics options
Closes : #32717
Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
2024-09-30 19:28:23 +02:00
Douglas Palmer
b5e282648f
org.keycloak.testsuite.forms.BruteForceTest#testRaceAttackPermanentLockout ( #32701 )
...
* org.keycloak.testsuite.forms.BruteForceTest#testRaceAttackPermanentLockout
Closes #32256
Signed-off-by: Douglas Palmer <dpalmer@redhat.com>
Signed-off-by: Marek Posolda <mposolda@gmail.com>
Co-authored-by: Marek Posolda <mposolda@gmail.com>
2024-09-30 18:38:10 +02:00
Kyale
a35edeb488
Resolved errors during component import referencing groups
...
Whenever a component being imported contained a reference to a group also being imported, the group was not found because groups were being imported after components by DefaultImportExportManager
Closes #10730
Signed-off-by: Kyale <github@chalkyweb.com>
2024-09-30 11:46:19 -03:00
Steven Hawkins
5d99d91818
fix: allows for the detection of a master realm with --import-realms ( #32914 )
...
also moving initial bootstrapping after import
closes : #32689
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2024-09-30 14:40:16 +02:00
rmartinc
aaf8136c89
Move deleteCookies to before for RecoveryAuthnCodesAuthenticatorTest
...
Closes #26176
Signed-off-by: rmartinc <rmartinc@redhat.com>
2024-09-30 12:05:16 +02:00
rmartinc
1d23c3c720
Use note to detect the IDP verify email action is already done
...
Closes #31563
Signed-off-by: rmartinc <rmartinc@redhat.com>
2024-09-27 09:16:53 +02:00
mposolda
8f038f19dd
Upgrade BCFIPS to 2.0
...
closes #30415
Signed-off-by: mposolda <mposolda@gmail.com>
2024-09-26 06:52:21 +02:00
Stefan Guilhen
6424708695
Ensure organization id is preserved on export/import
...
- Also fixes issues with description, enabled, and custom attributes missing when re-importing the orgs.
Closes #33207
Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
2024-09-25 16:07:44 +02:00
Stian Thorgersen
d778a8551a
Use references to obtain the signed elements in a signature ( #188 ) ( #33190 )
...
Closes keycloak/keycloak-private#191
Closes #33116
Signed-off-by: rmartinc <rmartinc@redhat.com>
Co-authored-by: Ricardo Martin <rmartinc@redhat.com>
2024-09-23 13:51:46 +02:00
Stian Thorgersen
af5eef57bf
Improve handling for loopback redirect-uri validation ( #195 ) ( #33189 )
...
Closes #33116
Signed-off-by: stianst <stianst@gmail.com>
2024-09-23 13:51:02 +02:00
Jon Koops
5e2f09f66d
Remove statically served Keycloak JS from the server ( #33083 )
...
Closes #32827
Signed-off-by: Jon Koops <jonkoops@gmail.com>
2024-09-22 19:05:01 +02:00
Giuseppe Graziano
849ca3efb9
Fix amr test
...
Closes #26117
Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
2024-09-20 23:32:55 +02:00
Daniel Fesenmeyer
87da4011f7
Bugfix: "User Profile" attributes not available for Users Attribute search, when admin user does not have view- or manage-realm realm-management role ( #31771 )
...
- UIRealmResource: add "info" sub-resource to get realm-related information, which is visible for ALL admins (users having any realm-management role); for now, only provide the information whether any user profile provider is enabled
- UIRealmResourceTest: test the new endpoint, including permissions check
- UserDataTable.tsx: use this resource to get the info whether user profile providers are enabled, instead of using the realm components resource (which requires "view-realm" permissions)
- .../cypress/e2e/users_attribute_search_test.spec.ts: add cypress test to test the attribute search with minimum access rights
- further small changes for reuse of components, test-code etc
Closes #27536
Signed-off-by: Daniel Fesenmeyer <daniel.fesenmeyer@bosch.com>
2024-09-20 14:06:08 -04:00
Christian Janker
21f90145ac
Send UserRemovedEvent containing all user attributes
...
Invalidate CachedUserModel before UserRemovedEvent
closes #32194
Signed-off-by: Christian Janker <christian.janker@gmx.at>
2024-09-20 16:22:08 +02:00
Stefan Guilhen
900c496ffe
Remove the kc.org.broker.public attribute and use hideOnLogin in the IDP instead
...
Closes #32209
Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
Co-authored-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2024-09-20 16:08:55 +02:00
Stefan Guilhen
42cde0cfdd
Fix various issues holding up CI ( #33086 )
...
- Disables the remote operator tests, which will have to be fixed later.
- Fixes the action expired error which occurs when accessing regular registration page with Organizations enabled.
- Fixes a race condition in the test suite causing sporadic failures.
Closes #33064
Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
Signed-off-by: rmartinc <rmartinc@redhat.com>
Signed-off-by: Jon Koops <jonkoops@gmail.com>
Co-authored-by: rmartinc <rmartinc@redhat.com>
Co-authored-by: Jon Koops <jonkoops@gmail.com>
2024-09-19 21:23:21 +02:00
vramik
fcb31a5aa6
Implement invitation-only self-registration for realm users
...
Closes #31643
Signed-off-by: vramik <vramik@redhat.com>
2024-09-18 13:50:23 +02:00
Erik Jan de Wit
1f573eded0
added username field like suggested in issue comment ( #32866 )
...
related: #32522
Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2024-09-18 13:03:03 +02:00