UNIX.dog
/
keycloak
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
21,676 Commits 1 Branch 0 Tags 434 MiB
Commit Graph

5950 Commits

Author SHA1 Message Date
Pedro Igor 83676bf927 Extract JUnit5 support in the distributoin testsuite to a separate module 
Closes #19552
 2023-04-11 10:48:56 +02:00
Martin Kanis 37af5fbffe Introduce optimistic locking for HotRod storage 
Closes #15402
 2023-04-11 09:33:01 +02:00
Lukas Hanusovsky 9bb18400ad
Remove AccountTotpPage from the testsuite (#17657) 
Closes #15201
 2023-04-06 11:49:29 +02:00
fwojnar f55794f8bf
Removes AccountApplicationsPage (#17651) 
Closes #15198 


Co-authored-by: wojnarfilip <fwojnar@redhat.com>
 2023-04-05 16:54:16 +02:00
mposolda c6f13363b9 Add nashorn javascript engine to Keycloak server 
closes #17671
 2023-04-04 14:56:46 +02:00
rmartinc 99330dbb6d Manage JsonProcessingException to not return error 500 when json data is wrong 
Closes https://github.com/keycloak/keycloak/issues/11517
 2023-04-03 18:07:34 +02:00
mposolda 4d8d6f8cd8 Preserve authentication flow IDs after import 
closes #9564
 2023-04-03 16:01:52 +02:00
Jon Koops bdc019b02c
Fully deprecate function-style constructor for Keycloak JS (#19438) 2023-04-03 14:45:55 +02:00
Hynek Mlnarik 85c0b47c31 Fix ClientPoliciesExtendedEventTest 
Closes: #19487
 2023-04-03 14:43:50 +02:00
Hynek Mlnarik 0d5363d0d5 Throw an exception rather than returning response 
Closes: #17644
 2023-04-03 14:43:50 +02:00
Alexander Schwartz d210980988 Close factory when creation fails 
Closes #16671
 2023-03-31 10:19:29 +02:00
Pedro Igor 6086201fe0 Do not verify identity cookie when processing required actions 
Closes #17539
 2023-03-31 09:56:27 +02:00
rmartinc 89dfeeec38 The getAttributes method in UserAttributeLDAPStorageMapper does not work for email or other UserModel properties 
Closes https://github.com/keycloak/keycloak/issues/10412
 2023-03-30 21:45:07 +02:00
mposolda 709c6b5a47 Regressions in redirect URL verification when redirect_uri has encoded path or default port 
closes #16851
closes #16587
 2023-03-30 14:20:10 +02:00
Pedro Igor 48082d08ec Email visible on registration page when edit username is not allowed 
Closes #17439
 2023-03-30 08:11:30 +02:00
Douglas Palmer ff27f6c77c Fix SSSDTest 
closes #19397
 2023-03-29 21:54:00 +02:00
Jon Koops 8f627517cb
Remove legacy Promise APIs from Keycloak JS (#19389) 2023-03-29 16:29:27 +00:00
Michal Hajas e49dfe534e Fix missing migration when reading TERMS_AND_CONDITIONS required action in legacy store 
Closes #17277
 2023-03-29 16:43:01 +02:00
Daniel Kobras a45b5dcd90 Prefer cert over pubkey in SAML metadata 
If SAML key material was given as a certificate, consistently
expose the certificate rather than just the public key when
presenting SAML metadata info. This change ensures that the
client obtains sufficient information (eg. issuer) to close
the trust chain.

Closes: #17549

Signed-off-by: Daniel Kobras <kobras@puzzle-itc.de>
 2023-03-29 11:17:24 +02:00
Marek Posolda 032ece9f7b
Clarify user session limits documentation and test SSO scenario (#19372) 
Closes #17374


Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2023-03-29 10:08:45 +02:00
rmartinc 2bb9de1a8c Allow application/jwt media type for userinfo endpoint 
Closes: https://github.com/keycloak/keycloak/issues/19346
 2023-03-28 08:47:35 -03:00
Michal Hajas beca22311b Add RefreshTokenTest to database suite so it can catch some expiration issues similar to #17570 2023-03-28 08:32:31 +02:00
Michal Hajas 2a5b5c4a40 Fix stale client session is present in user session 
Closes #17570
 2023-03-28 08:32:31 +02:00
Pedro Igor a9c605750d Returning email as username setting for admins 
Fixes #17591
 2023-03-27 16:33:44 -03:00
Alexander Schwartz 251f6151e8 Rework the Import SPI to be configurable via the Config API 
Also rework the export/import CLI for Quarkus, so that runtime options are available.

Closes #17663
 2023-03-24 15:28:55 -03:00
Pedro Hos bd0a23a865 /users/count endpoint with search field has different behavior than /users query endpoint #17620 
closes #17620
 2023-03-24 13:43:47 +01:00
Klajdi Paja cf61a65198 Return a user friendly message when a group name already exists on the same level. 
Closes #16888
 2023-03-24 08:13:49 +01:00
rmartinc 8bc5273792 EAP7 and wildfly adapter tests fixes. Execute enable-elytron-se17.cli for EAP7 and JDK-17. 
Closes https://github.com/keycloak/keycloak/issues/19273
 2023-03-23 17:02:39 -03:00
Ayrat Hudaygulov f578f91a0b Fix ID token not being sent after expiration for OIDC logout 
Closes #10164
 2023-03-23 13:01:02 +01:00
Hiroyuki Wada 46eb2e1b84 Fix attribute deleted from LDAP is not immediately reflected even if it is "Always Read Value From LDAP" 2023-03-21 10:28:41 +01:00
Ricardo Martin 1a622e707f
Flaky tests org.keycloak.testsuite.federation.sync.SyncFederationTest (#19095) 
Closes: https://github.com/keycloak/keycloak/issues/17430
Closes: https://github.com/keycloak/keycloak/issues/17431
 2023-03-21 08:30:42 +01:00
Alexander Schwartz 513bb809f3 Add a map storage global locking implementation for JPA 
Closes #14734
 2023-03-21 08:21:11 +01:00
rmartinc bef0a4a6f1 Check frontendUrl in the hostname providers 
Closes https://github.com/keycloak/keycloak/issues/17686
 2023-03-20 18:54:58 -03:00
Miquel Simon 80d3cc5dea Added option for Chrome driver needed for version >= 111. 
Closes #19137
 2023-03-20 13:09:23 +01:00
Pedro Igor a30b6842a6 Decouple the policy enforcer from adapters and provide a separate library 
Closes keycloak#17353
 2023-03-17 11:40:51 +01:00
rmartinc cab7e50410 Better handling for SAML signatures in POST and REDIRECT bindings 
Closes https://github.com/keycloak/keycloak/issues/17456
 2023-03-15 09:06:59 -03:00
Martin Kanis 5e7793b64d Unexpected invalid_grant error on offline session refresh when client session is not in the cache 
Closes #9959

Co-authored-by: Martin Kanis <mkanis@redhat.com>
Co-authored-by: Lex Cao <lexcao@foxmail.com>
 2023-03-15 12:39:43 +01:00
Jon Koops 96aa4b3394
Add Maven build for the Admin UI (#17552) 2023-03-13 18:16:12 +00:00
Hynek Mlnarik fe5d89295f Fix client (scope) model test placement 
Fixes: #17212
 2023-03-13 14:35:14 +01:00
Pedro Igor af475ffe23 Fixing classloading issue due to the curated application being eagerly closed 2023-03-13 09:34:49 +01:00
Alexander Schwartz 0b2802fa18 Fixing compile time warnings 
Avoiding calling deprecated methods, and adding compile time dependencies for annotations.

Closes #17499
 2023-03-09 15:42:55 +01:00
vramik 31e4c5cb7e Add `storage-jpa-db` property into Quarkus. Distinguish postgres and crdb for jpa map store. 
Closes #17305
 2023-03-09 11:09:56 +01:00
Tero Saarni 9052ec2b02
Add admin events for realm create/delete. (#10831) 
Closes #10733
 2023-03-07 15:57:06 +01:00
Simon Levermann 96c1cf3c49 Allow mapping of UserSessionNotes into UserInfo 
Fixes #15369
 2023-03-07 15:25:14 +01:00
rmartinc a56b38c5a6 Don't remove session and don't reset restart cookie if passive check error 
Closes https://github.com/keycloak/keycloak/issues/11340
 2023-03-07 15:10:09 +01:00
rmartinc 06ff8b016c Don't set REMEMBER_ME if it's disabled at realm level 
Closes https://github.com/keycloak/keycloak/issues/11330
 2023-03-07 15:01:58 +01:00
Michal Hajas 837c64de3d Add support for pessimistic locking to HotRod 
Closes #13273
 2023-03-07 10:44:31 +01:00
Alexander Schwartz f6f179eaca Rework the export to use CLI options and property mappers 
Also, adding the wiring to support Model tests for the export.

Closes #13613
 2023-03-07 08:22:12 +01:00
mposolda a0192d61cc Redirect loop with authentication success but access denied at default identity provider 
closes #17441
 2023-03-06 10:45:01 +01:00
Michal Hajas 465019bec4 Extract attachDevice outside of storage layer 
Closes #17336
 2023-03-03 17:58:34 +01:00