keycloak-scim

History

Matt Eaton 9f0a348e4c Allow certificate with duplicate principals in truststore. The previous implementation uses principal as a key for a hashmap storing one certificate per entry. To preserve lookups, the value is now a List of certificates. Additional logic was added to build certification validation chains using signature verification rather than just principal. Closes #33125 Signed-off-by: Matt Eaton <git@divinehawk.com>	2024-10-08 12:03:03 +02:00
..
main	Allow certificate with duplicate principals in truststore.	2024-10-08 12:03:03 +02:00
test/java/org/keycloak	Handle ClientData parsing errors in SessionCodeChecks gracefully	2024-09-05 10:50:27 +02:00

Matt Eaton 9f0a348e4c Allow certificate with duplicate principals in truststore.

The previous implementation uses principal as a key for a hashmap storing one certificate per entry. To preserve lookups, the value is now a List of certificates.

Additional logic was added to build certification validation chains using signature verification rather than just principal.

Closes #33125

Signed-off-by: Matt Eaton <git@divinehawk.com>

2024-10-08 12:03:03 +02:00

main

Allow certificate with duplicate principals in truststore.

2024-10-08 12:03:03 +02:00

test/java/org/keycloak

Handle ClientData parsing errors in SessionCodeChecks gracefully

2024-09-05 10:50:27 +02:00