keycloak

mirror of https://github.com/keycloak/keycloak.git synced 2026-01-21 14:49:56 -06:00

Author	SHA1	Message	Date
Christian Ja	06a44202db	Send UserRemovedEvent containing all user attributes (#33151 ) Invalidate CachedUserModel before UserRemovedEvent closes #32194 Signed-off-by: Christian Janker <christian.janker@gmx.at>	2024-09-21 17:33:01 +02:00
Thomas Darimont	8c813e0e3a	Ensure realm attributes import happens before client import Fixes #32799 Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com> (cherry picked from commit `445a7da902`)	2024-09-11 16:38:54 +02:00
Alexander Schwartz	19e557daab	Set idle time the same as for the internal cache, but extend it for refreshes Closes #32100 Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Signed-off-by: Michal Hajas <mhajas@redhat.com> Co-authored-by: Michal Hajas <mhajas@redhat.com>	2024-09-10 10:12:22 +02:00
Alexander Schwartz	94e213a13b	Load client sessions in chunks from the database (#32208 ) Closes #32180 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-08-16 16:01:24 +00:00
Michal Hajas	db95afd73c	Set clientId if it is not set in the entity Closes #32195 Signed-off-by: Michal Hajas <mhajas@redhat.com> (cherry picked from commit `6a9245546e`)	2024-08-16 15:50:22 +02:00
Alexander Schwartz	31d393a12a	Specify version column name in a case-sensitive manner (#32190 ) Closes #32127 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-08-16 13:27:37 +02:00
Alexander Schwartz	10aaa67d1a	For persistent sessions, don't remove user session if there is no session in the remote store (#31787 ) Closes #31115 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-07-31 12:00:23 +02:00
Alexander Schwartz	213063bed1	Trigger clearing the user cache when the duplicate email allowed flag changes (#31722 ) Closes #31045 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-07-30 14:58:32 +02:00
Alexander Schwartz	d767c784c9	Filter out null values when looking up entries by ID This should prevent null elements in the stream when doing concurrent operations. Closes #28865 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-07-24 15:25:35 -03:00
rmartinc	31f475d7a7	Improve consent deletion when a realm is removed Closes #30992 Signed-off-by: rmartinc <rmartinc@redhat.com> (cherry picked from commit `ce195b81f8`)	2024-07-10 16:15:57 +02:00
Stefan Guilhen	49ffc040a0	issue keycloak/keycloak#30300 (#30530 ) Closes #30300 Signed-off-by: Nicola Beghin <nicolabeghin@gmail.com> (cherry picked from commit `5192275780`) Co-authored-by: Nicola Beghin <nicolabeghin@gmail.com>	2024-06-19 12:36:06 +02:00
Alexander Schwartz	7c297efbd9	Migration of sessions in KC25 should run only on migration, not on imports (#30388 ) Closes #30351 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-06-13 09:42:38 +02:00
Giuseppe Graziano	6067f93984	Improvements to refresh token rotation with multiple tabs (#29966 ) Closes #14122 Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>	2024-06-07 12:02:36 +02:00
Pedro Igor	f8d55ca7cd	Export import realm with organizations Closes #30006 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-06-05 09:50:03 +02:00
Martin Kanis	33331788a4	Introduce count method to avoid fetching all organization upon checking for existence Closes #29697 Signed-off-by: Martin Kanis <mkanis@redhat.com>	2024-06-04 10:45:28 -03:00
Alexander Schwartz	1f6c939efd	Ignore unknown realms when migrating sessions (#30041 )	2024-06-03 10:43:16 +02:00
vramik	a8ceada973	Fix creation of domains when creating the organization Closes #29005 Signed-off-by: vramik <vramik@redhat.com>	2024-06-03 10:22:20 +02:00
Andrejs Mivreniks	1cf87407fe	Allow setting authentication flow execution priority value via Admin API Closes #20747 Signed-off-by: Andrejs Mivreniks <andrejs@fastmail.com>	2024-05-30 19:17:45 +02:00
Erik Jan de Wit	f088b0009c	initial ui for organizations (#29643 ) * initial screen Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * more screens Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * added members tab Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * added the backend Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * added member add / invite models Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * initial version of the identity provider section Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * add link and unlink providers Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * small fix Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * PR comments Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * Do not validate broker domain when the domain is an empty string Closes #29759 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * added filter and value Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * added test Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * added first name last name Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * refresh menu when realm organization is changed Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * changed to record Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * changed to form data Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * fixed lint error Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * Changing name of invitation parameters Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * Chancing name of parameters on the client Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * Enable organization at the realm before running tests Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * Domain help message Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * Handling model validation errors when creating organizations Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * Message key for organizationDetails Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * Do not change kc.org attribute on group Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * add realm into the context Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * tests Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * Changing button in invitation model to use Send instead of Save Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * Better message when validating the organization domain Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * Fixing compilation error after rebase Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * fixed test Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * removed wait as it no longer required and skip flacky test Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * skip tests that are flaky Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> * stabilize user create test Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> --------- Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-05-29 14:34:02 +02:00
mposolda	37c10b4d43	Improve documentation for the case when 'basic' client scope already exists closes #29880 Signed-off-by: mposolda <mposolda@gmail.com>	2024-05-29 13:32:05 +02:00
Pedro Igor	bbb83236f5	Do not lower-case the username from the IdP when creating the federated identity Closes #28495 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-05-29 01:58:20 -03:00
Stefan Guilhen	694ffaf289	Allow organizations in different realms to have the same domain Closes #29886 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2024-05-28 08:02:30 -03:00
Alexander Schwartz	97cc973af0	Remove explicit flush from JPA user and client session handling (#29819 ) Closes #29818 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-05-28 09:23:20 +02:00
mposolda	ea1cdc10bd	MigrateTo25_0_0 does not complete within default transaction timeout closes #29756 Signed-off-by: mposolda <mposolda@gmail.com>	2024-05-27 10:31:39 +02:00
sebastianh6r	f34a7c2af4	Optimize settings for Hibernate ORM * Optimize settings for Hibernate ORM * Teach exception handler about the new BatchUpdateException exceptions Closes #26162 Signed-off-by: Sebastian Hoeninger <Sebastian.Hoeninger@bosch.io> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Sebastian Hoeninger <Sebastian.Hoeninger@bosch.io> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2024-05-27 10:20:19 +02:00
Alexander Schwartz	c6e071cf07	Clear entries in remote caches and force events on the remote site (#29597 ) Closes #29592 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-05-23 14:47:32 +02:00
Marek Posolda	2efc163b89	Entry 999.0.0 in MIGRATION_MODEL prevents future migrations of the database Closes #27941 Signed-off-by: mposolda <mposolda@gmail.com>	2024-05-23 12:00:18 +00:00
Thomas Darimont	ab376d9101	Make required actions configurable (#28400 ) - Add tests for crud operations on configurable required actions - Add support exposing the required action configuration via RequiredActionContext - Make configSaveError message reusable in other contexts - Introduced admin-ui specific endpoint for retrieving required actions with config metadata Fixes #28400 Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com> Co-authored-by: Erik Jan de Wit <erikjan.dewit@gmail.com>	2024-05-23 08:38:36 +02:00
Stefan Guilhen	37f85937a7	Move organization authenticator into conditional subflows in the default browser and first broker login flows Closes #29446 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2024-05-22 20:48:29 -03:00
vramik	55bf4feebc	Disable identity provider at the realm level when an organization is disabled Closes #29483 Signed-off-by: vramik <vramik@redhat.com>	2024-05-22 07:58:26 -03:00
vramik	278341aff9	Add organizations enabled/disabled capability Closes #28804 Signed-off-by: vramik <vramik@redhat.com>	2024-05-22 07:58:26 -03:00
Alexander Schwartz	80de3a0a71	Allow migration of non-persistent sessions to persistent sessions Closes #29375 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-05-22 10:30:46 +02:00
rmartinc	f7044ba5c2	Use SessionExpirationUtils for validate user and client sessions Check client session is valid in TokenManager Closes #24936 Signed-off-by: rmartinc <rmartinc@redhat.com>	2024-05-22 10:12:20 +02:00
Stefan Guilhen	1aab371912	Fix errors when importing realms with the organization feature enabled Closes #29630 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2024-05-17 07:25:31 -03:00
Stefan Guilhen	553b1ce695	Ensure org domain removal from the IDP is properly propagated to the DB Closes #29599 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2024-05-16 10:43:50 -03:00
Dimitri Papadopoulos Orfanos	64a145e960	Fix user-facing typos in error messages (#29326 ) Update resource file and tests accordingly Signed-off-by: Dimitri Papadopoulos <3234522+DimitriPapadopoulos@users.noreply.github.com>	2024-05-16 09:55:41 +02:00
Stefan Guilhen	c4760b8188	Ensure that IDP's linked domains are remove when org is deleted or when the domain is removed from the org. Closes #29481 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2024-05-14 15:39:18 -03:00
Martin Kanis	3985157f9f	Make sure operations on a organization are based on realm they belong to Closes #28841 Signed-off-by: Martin Kanis <mkanis@redhat.com>	2024-05-14 10:47:39 -03:00
Pedro Igor	b4d231fd40	Fixing realm removal when removing groups and brokers associated with an organization Closes #29495 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-05-14 14:29:27 +02:00
Alexander Schwartz	673e122443	Avoid sorting items returned from the database which are already stable Closes #29319 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-05-13 16:15:38 +02:00
Alexander Schwartz	6cc8d653f3	Make SessionWrapper related fields immutable that are part of the equals method The cache replace logic depends on it, as values returned by reference from a local cache must never be modified on those critical fields directly. Closes #28906 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-05-13 09:59:50 +02:00
Pedro Igor	b50d481b10	Make sure organization groups can not be managed but when managing an organization Closes #29431 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-05-10 21:28:11 -03:00
Stefan Guilhen	3186b6db8e	Fix realm removal when orgs are enabled Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2024-05-10 17:23:08 -03:00
Stefan Guilhen	ceed7bc120	Add ability to search organizations by attribute Closes #29411 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2024-05-10 16:45:41 -03:00
Alexander Schwartz	eaeffe95ac	Avoid conflicts when writing to session stores by checking for concurrent requests within the JVM (#29393 ) Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Signed-off-by: Michal Hajas <mhajas@redhat.com> Co-authored-by: Michal Hajas <mhajas@redhat.com>	2024-05-09 08:24:43 +00:00
Pedro Ruivo	cbce548e71	Infinispan 15.0.3.Final Closes #29068 Signed-off-by: Pedro Ruivo <pruivo@redhat.com>	2024-05-08 17:18:39 +02:00
Martin Kanis	d4b7e1a7d9	Prevent to manage groups associated with organizations from different APIs Closes #28734 Signed-off-by: Martin Kanis <mkanis@redhat.com>	2024-05-07 11:16:40 -03:00
Stefan Guilhen	aa945d5636	Add description field to OrganizationEntity Closes #29356 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2024-05-07 10:35:51 -03:00
Pedro Igor	c0325c9fdb	Do not manage brokers through the Organization API Closes #29268 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-05-07 09:15:25 -03:00
Alice W	584e92aaba	Add support for organizational invites to new and existing users based on tokens Signed-off-by: Alice W <105500542+alice-wondered@users.noreply.github.com>	2024-05-06 17:57:13 -03:00

1 2 3 4 5 ...

2372 Commits