inteligr8/alfresco-keycloak
1
0
Fork 0
mirror of https://github.com/bmlong137/alfresco-keycloak.git synced 2025-05-19 21:34:42 +00:00
Code Issues Packages Projects Releases Wiki Activity
103 Commits 7 Branches 7 Tags
Commit Graph

76 Commits

Author SHA1 Message Date
Brian Long
74c63dfff6 Merge branch 'feature/login-plugin' into bugfix/setCurrentUser-race-condition 2025-01-09 14:09:34 -05:00
Brian Long
dd6717607a use accessToken preferredUsername instead of AuthenticationUtil fullyAuthenticatedUser 2025-01-09 14:08:14 -05:00
Brian Long
776434296e Merge branch 'feature/acs23' into feature/login-plugin 2025-01-09 14:07:27 -05:00
Brian Long
cd4f5f6fdb fixing new ClientCredentialsProviderUtils usage 2024-08-23 12:29:03 -04:00
Brian Long
d5ef5a78b1 com.hazelcast.map to com.hazelcast.spi due to hz upgrade from v3 to v5 2024-08-23 10:54:35 -04:00
Brian Long
4b92989605 Merge branch 'feature/login-plugin' into bugfix/setCurrentUser-race-condition 2024-08-22 14:38:34 -04:00
Brian Long
77db75c199 Merge branch 'feature/acs23' into feature/login-plugin 2024-08-22 14:37:44 -04:00
Brian Long
8c0857edb9 upgrade to ACS v23.x, jakarta, jdk17 2024-08-22 14:21:39 -04:00
Brian Long
5f5c6c134d Merge branch 'feature/login-plugin' into bugfix/setCurrentUser-race-condition 2023-03-07 22:31:43 -05:00
Brian Long
0b7612edaa added setAuthenticationService() 2023-03-07 22:31:13 -05:00
Brian Long
c799b7d37e Merge branch 'feature/login-plugin' into bugfix/setCurrentUser-race-condition 2023-03-07 15:21:30 -05:00
Brian Long
26ee2896b2 added ticket invalidation on group change 2023-03-07 15:18:54 -05:00
AFaust
d5a9d521c9 Enhancements from PR review 
- split authority mapper into granted authority and person processor
- rename authority sync to group sync (since it only handles groups not
  generic authorities), with slight rename of config properties
- add javadoc
- add copyright headers
- add test configuration
- use direct component injection instead of auth component pass-along
- add additional "global-and-subsystem-properties" to Spring context for
  subsystem to handle dynamic config specified in
  alfresco-global.properties for which there is no pre-defined default in
  subsystem defaults (found during test with acme-group role mapping in
  alfresco-global.addition.properties)
 2022-07-16 16:04:23 +02:00
Brian Long
970f1348e9 added retry for setCurrentUser race condition 2022-07-11 18:52:16 -04:00
Brian Long
782e785b6d added authority sync token handler 2022-07-11 18:44:57 -04:00
Brian Long
19b5fe2475 abstraction of KeycloakAuthenticationComponent.handleUserTokens() 2022-07-11 18:42:40 -04:00
AFaust
5727c21f5c Prepare release 2022-01-27 11:36:52 +01:00
AFaust
e44afc7d47 Update Keycloak libs and enable SOLR for Docker 2022-01-23 15:11:00 +01:00
AFaust
b02eaaa896 Re-introduce force route option 2021-12-14 18:46:25 +01:00
AFaust
a521dd87de Correct logging 2021-12-06 01:04:04 +01:00
AFaust
b1f97ada95 Add couple of toString / simplify 2021-12-05 12:48:02 +01:00
AFaust
b4ca07d0c2 Use default fields for timeout + proxy 2021-10-20 02:12:17 +02:00
AFaust
a9bb9c32a8 Fix missed caller adaption 2021-10-19 15:39:04 +02:00
AFaust
4a2f4a5f67 Improve case specific scope use + test realm 2021-10-19 11:43:24 +02:00
AFaust
cff32d017b Test and deal with granular client scopes 2021-10-18 01:36:12 +02:00
AFaust
5933acbb04 Update parent POM / ACS 7 test setup 2021-10-18 01:35:22 +02:00
AFaust
28c7ddb87f Map middle name from default OIDC profile 2021-10-17 11:58:40 +02:00
AFaust
c2b17cbf93 (#18) Use KC group name for ALF group display name 2021-10-15 01:18:38 +02:00
AFaust
363d09140b Update Keycloak; two Share AMPs for compat with <7.0 + >=7.0 2021-04-15 10:48:38 +02:00
AFaust
abf49db783 Prepare release 2021-03-10 20:00:02 +01:00
AFaust
35d07b1616 Extend utility flexible authenticator with access token awareness 2021-01-17 23:20:29 +01:00
AFaust
f9e16e0ef4 Service to obtain tokens for integrations 2021-01-09 16:29:28 +01:00
AFaust
89d8ecc5dc Add inverse mapping / check 2021-01-08 14:36:25 +01:00
AFaust
ea2a2ee43a Add reasonable default timeouts 
- KeycloakDeployment.resolveUrls() blocks otherwise e.g. if realm is
  misconfigured
 2021-01-02 19:21:04 +01:00
AFaust
6f9578ca63 Deal with spurious Share errors in last RC 2020-11-30 19:33:34 +01:00
AFaust
a3e3d9cac9 Release preparation 2020-11-26 17:51:34 +01:00
AFaust
45721fcb53 Consolidate projects / shaded dependencies 2020-10-30 13:31:06 +01:00
AFaust
4ad55b7a77 Subsystem documentation / consistency fixes 2020-10-21 19:04:26 +02:00
AFaust
a31309296a Adapter documentation / fix confidential port 2020-10-20 23:34:54 +02:00
AFaust
f34b6eed2d Start proper documentation 2020-10-19 22:28:21 +02:00
AFaust
74f79afa8a Add suport for user name correction in Share 
- effectively support login by alternative identity attributes, e.g.
  Keycloak login by email
 2020-09-04 21:39:34 +02:00
AFaust
96746690b3 Update version for next dev iteration + update Keycloak / deps 2020-09-04 21:39:15 +02:00
AFaust
608ca62af6 Prepare RC release 2020-09-01 17:21:27 +02:00
AFaust
5ce816e3ee Further fixes for inconsistent ACS / Share auth integration 2020-07-28 02:53:39 +02:00
AFaust
f894d79c2e Share backend token handling + NPE fix 2020-07-25 00:29:57 +02:00
AFaust
65f2804734 Update for next RC release 2020-07-08 12:29:14 +02:00
AFaust
169b1ddb15 Automatic Share Keycloak reauth on session expiration; correct logout handling 2020-07-06 01:57:03 +02:00
AFaust
8c53046cb1 Handle corner cases (e.g. XHR after session timeout) 2020-06-22 12:49:39 +02:00
AFaust
4ca4c66998 RC release for pilot customer deployment 2020-06-09 20:00:51 +02:00
AFaust
4096f741a5 Revise Share token exchange handling 
- retry if refresh of exchanged token yields invalid token (wrong
  audience - known case of apparently incorrect Keycloak behaviour)
- use custom header instead of redirect patch to have Repository tier not
  redirect to Keycloak login page on unauthenticated access from Share
- activate audience verification which is inactive with Keycloak class
  defaults
 2020-06-05 14:52:18 +02:00