No description
Find a file
Torsten Juergeleit 6005503a3d Namespace support to group-ldap-mapper
Previously, Keycloak did only support syncing groups from LDAP federation provider as top-level KC groups.

This approach has some limitations:
- If using multiple group mappers then there’s no way to isolate the KC groups synched by each group mapper.
- If the option "Drop non-existing groups during sync” is activated then all KC groups (including the manually created ones) are deleted.
- There’s no way to inherit roles from a parent KC group.

This patch introduces support to specify a prefix for the resulting group path, which effectively serves as a namespace for a group.

A path prefix can be specified via the newly introduced `Groups Path` config option on the mapper. This groups path defaults to `/` for top-level groups.

This also enables to have multiple `group-ldap-mapper`'s which can manage groups within their own namespace.

An `group-ldap-mapper` with a `Group Path` configured as `/Applications/App1` will only manage groups under that path. Other groups, either manually created or managed by other `group-ldap-mapper` are not affected.
2020-05-26 17:37:29 +02:00
.travis Update triggers for Docker Hub 2018-08-20 20:38:57 +02:00
adapters KEYCLOAK-13940 remove duplicated urlsafe decoding 2020-05-08 15:18:56 +02:00
authz KEYCLOAK-13066 Include resourceType in ScopePermissionRepresentation 2020-05-12 17:11:35 -03:00
boms Set version to 11.0.0-SNAPSHOT 2020-04-29 12:57:55 +02:00
common Set version to 11.0.0-SNAPSHOT 2020-04-29 12:57:55 +02:00
core KEYCLOAK-10927 - Implement LDAPv3 Password Modify Extended Operation … (#6962) 2020-05-20 21:04:45 +02:00
dependencies Set version to 11.0.0-SNAPSHOT 2020-04-29 12:57:55 +02:00
distribution [KEYCLOAK-11784] - Quarkus Extension 2020-05-19 14:57:15 +02:00
docs KEYCLOAK-12764 Fix shrinkwrap issue by updating arquillian bom version 2020-02-08 10:51:48 +01:00
examples KEYCLOAK-14060 Update links to user ml 2020-05-05 13:50:49 +02:00
federation Namespace support to group-ldap-mapper 2020-05-26 17:37:29 +02:00
integration KEYCLOAK-10927 - Implement LDAPv3 Password Modify Extended Operation … (#6962) 2020-05-20 21:04:45 +02:00
misc Set version to 11.0.0-SNAPSHOT 2020-04-29 12:57:55 +02:00
model [KEYCLOAK-11784] - Using Hibernate Extension 2020-05-14 11:10:46 +02:00
quarkus [KEYCLOAK-11679] - Server startup on Quarkus 2020-05-26 08:34:07 -03:00
saml-core KEYCLOAK-10729 Do not serialize SAML signature 2020-05-25 15:38:17 +02:00
saml-core-api Set version to 11.0.0-SNAPSHOT 2020-04-29 12:57:55 +02:00
server-spi KEYCLOAK-12414 Remove the need to specify defaults in config file 2020-05-13 09:02:29 -03:00
server-spi-private KEYCLOAK-10927 - Implement LDAPv3 Password Modify Extended Operation … (#6962) 2020-05-20 21:04:45 +02:00
services [KEYCLOAK-11679] - Server startup on Quarkus 2020-05-26 08:34:07 -03:00
testsuite Namespace support to group-ldap-mapper 2020-05-26 17:37:29 +02:00
themes Namespace support to group-ldap-mapper 2020-05-26 17:37:29 +02:00
util KEYCLOAK-10927 - Implement LDAPv3 Password Modify Extended Operation … (#6962) 2020-05-20 21:04:45 +02:00
wildfly [KEYCLOAK-11784] - Using Hibernate Extension 2020-05-14 11:10:46 +02:00
.gitattributes KEYCLOAK-1385 Introduce end-of-line normalization 2015-07-17 13:46:51 +02:00
.gitignore KEYCLOAK-10739: Device Activity UI 2019-09-05 12:22:05 -03:00
.travis.yml KEYCLOAK-11293 Update theme build for keycloak-preview 2020-01-29 05:26:55 -03:00
ADOPTERS.md Add Associazione Rousseau to the adopters 2019-10-09 08:05:46 +02:00
CONTRIBUTING.md [KEYCLOAK-12341] Replace references to Keycloak dev mailing list in the repositories 2019-12-04 15:53:03 +01:00
get-version.sh Added get-version script 2019-03-05 08:42:14 +01:00
GOVERNANCE.md [KEYCLOAK-12341] Replace references to Keycloak dev mailing list in the repositories 2019-12-04 15:53:03 +01:00
LICENSE.txt Added text version of ASL2 license 2019-11-08 12:43:10 +01:00
MAINTAINERS.md Updated MAINTAINERS.md 2019-11-11 09:05:47 +01:00
maven-settings.xml [KEYCLOAK-11764] Upgrade to Wildfly 19 2020-04-24 08:19:43 -03:00
package-lock.json [KEYCLOAK-12439] Update to Angular 1.7.9 2020-01-30 14:25:29 +01:00
pom.xml KEYCLOAK-14225 Performance testsuite DataLoader broken 2020-05-19 18:00:05 -03:00
prod-arguments.json KEYCLOAK-11293 Update theme build for keycloak-preview 2020-01-29 05:26:55 -03:00
README.md Update README.md 2020-05-05 12:09:44 +02:00
release.sh Fixes for releasing 2019-03-06 11:38:09 +01:00
SECURITY.md Create SECURITY.md 2020-05-05 12:09:44 +02:00
set-version.sh Bump versions 2017-11-09 15:37:21 +01:00
travis-run-tests.sh [KEYCLOAK-11764] Upgrade to Wildfly 19 2020-04-24 08:19:43 -03:00

Keycloak

Keycloak is an Open Source Identity and Access Management solution for modern Applications and Services.

This repository contains the source code for the Keycloak Server, Java adapters and the JavaScript adapter.

Help and Documentation

Reporting Security Vulnerabilities

If you've found a security vulnerability, please look at the instructions on how to properly report it

Reporting an issue

If you believe you have discovered a defect in Keycloak please open an issue in our Issue Tracker. Please remember to provide a good summary, description as well as steps to reproduce the issue.

Getting started

To run Keycloak download the distribution from our website. Unzip and run:

bin/standalone.[sh|bat] 

Alternatively, you can use the Docker image by running:

docker run jboss/keycloak

For more details refer to the Keycloak Documentation.

Building from Source

To build from source refer to the building and working with the code base guide.

Testing

To run tests refer to the running tests guide.

Writing Tests

To write tests refer to the writing tests guide.

Contributing

Before contributing to Keycloak please read our contributing guidelines.

Other Keycloak Projects

License