d4d8cf0940
Merge branch 'feature/login-plugin' into feature/newuser-concurrency
2025-07-29 13:14:29 -04:00
ef24c44721
Merge remote-tracking branch 'github/master' into feature/login-plugin
2025-07-29 13:11:35 -04:00
AFaust
31936cdcea
Fix error on failed Bearer authentication
2025-03-12 11:42:39 +01:00
AFaust
96d01b34fe
Handle user and group name synchronisation consistently, and fix resource role exposure
...
- user names can now also be custom mapped from attributes
- introduced priority in user/group processors
- introduced operation dedicated to mapping authority name for use in user/group name collection operations
2025-02-26 16:24:00 +01:00
AFaust
4b1b0cbd08
Improved group synchronisation
...
- add exact path match condition to allow selection of specific groups
- add negative match conditions to exclude specific groups/users
- support group names derived from attibutes
2025-02-23 18:28:57 +01:00
AFaust
725f768535
Fix sources attachment + MANIFSET overlaps
2025-02-21 14:38:03 +01:00
AFaust
fc83b6c7a5
Update README + switch to GitHub actions
2025-02-21 14:38:03 +01:00
AFaust
78042e0212
Update file headers
2025-02-21 14:38:03 +01:00
AFaust
d6a6b3c2bd
Rework project's Docker test setup
...
- use Docker Compose instead of fabric8io
- don't use local paths to support running with remote Docker contexts
- use latest Keycloak Docker image and make sure test realm works out-of-the-box
- add flag to avoid failing on missing properties during JSON deserialisation
(newer Keycloak versions offer more properties in IDM API response payloads)
2025-02-21 14:38:03 +01:00
6f7910aa93
Upgrade to ACS v23.x, Jakarta, jdk17
2025-02-21 14:38:03 +01:00
4324d9c47b
Merge branch 'feature/login-plugin' into feature/newuser-concurrency
2025-01-09 14:10:07 -05:00
dd6717607a
use accessToken preferredUsername instead of AuthenticationUtil fullyAuthenticatedUser
2025-01-09 14:08:14 -05:00
776434296e
Merge branch 'feature/acs23' into feature/login-plugin
2025-01-09 14:07:27 -05:00
AFaust
0044ce3f6b
Add missing subject token
2024-09-10 13:08:02 +02:00
cd4f5f6fdb
fixing new ClientCredentialsProviderUtils usage
2024-08-23 12:29:03 -04:00
d5ef5a78b1
com.hazelcast.map to com.hazelcast.spi due to hz upgrade from v3 to v5
2024-08-23 10:54:35 -04:00
bb032b6706
Merge branch 'feature/login-plugin' into feature/newuser-concurrency
2024-08-22 14:39:06 -04:00
77db75c199
Merge branch 'feature/acs23' into feature/login-plugin
2024-08-22 14:37:44 -04:00
8c0857edb9
upgrade to ACS v23.x, jakarta, jdk17
2024-08-22 14:21:39 -04:00
f0c19c427b
added concurrency support for new users
2023-03-14 15:14:19 +01:00
0b7612edaa
added setAuthenticationService()
2023-03-07 22:31:13 -05:00
26ee2896b2
added ticket invalidation on group change
2023-03-07 15:18:54 -05:00
AFaust
d5a9d521c9
Enhancements from PR review
...
- split authority mapper into granted authority and person processor
- rename authority sync to group sync (since it only handles groups not
generic authorities), with slight rename of config properties
- add javadoc
- add copyright headers
- add test configuration
- use direct component injection instead of auth component pass-along
- add additional "global-and-subsystem-properties" to Spring context for
subsystem to handle dynamic config specified in
alfresco-global.properties for which there is no pre-defined default in
subsystem defaults (found during test with acme-group role mapping in
alfresco-global.addition.properties)
2022-07-16 16:04:23 +02:00
782e785b6d
added authority sync token handler
2022-07-11 18:44:57 -04:00
19b5fe2475
abstraction of KeycloakAuthenticationComponent.handleUserTokens()
2022-07-11 18:42:40 -04:00
AFaust
5727c21f5c
Prepare release
2022-01-27 11:36:52 +01:00
AFaust
e44afc7d47
Update Keycloak libs and enable SOLR for Docker
2022-01-23 15:11:00 +01:00
AFaust
b02eaaa896
Re-introduce force route option
2021-12-14 18:46:25 +01:00
AFaust
a521dd87de
Correct logging
2021-12-06 01:04:04 +01:00
AFaust
b1f97ada95
Add couple of toString / simplify
2021-12-05 12:48:02 +01:00
AFaust
b4ca07d0c2
Use default fields for timeout + proxy
2021-10-20 02:12:17 +02:00
AFaust
a9bb9c32a8
Fix missed caller adaption
2021-10-19 15:39:04 +02:00
AFaust
4a2f4a5f67
Improve case specific scope use + test realm
2021-10-19 11:43:24 +02:00
AFaust
cff32d017b
Test and deal with granular client scopes
2021-10-18 01:36:12 +02:00
AFaust
5933acbb04
Update parent POM / ACS 7 test setup
2021-10-18 01:35:22 +02:00
AFaust
28c7ddb87f
Map middle name from default OIDC profile
2021-10-17 11:58:40 +02:00
AFaust
c2b17cbf93
( #18 ) Use KC group name for ALF group display name
2021-10-15 01:18:38 +02:00
AFaust
363d09140b
Update Keycloak; two Share AMPs for compat with <7.0 + >=7.0
2021-04-15 10:48:38 +02:00
AFaust
abf49db783
Prepare release
2021-03-10 20:00:02 +01:00
AFaust
35d07b1616
Extend utility flexible authenticator with access token awareness
2021-01-17 23:20:29 +01:00
AFaust
f9e16e0ef4
Service to obtain tokens for integrations
2021-01-09 16:29:28 +01:00
AFaust
89d8ecc5dc
Add inverse mapping / check
2021-01-08 14:36:25 +01:00
AFaust
ea2a2ee43a
Add reasonable default timeouts
...
- KeycloakDeployment.resolveUrls() blocks otherwise e.g. if realm is
misconfigured
2021-01-02 19:21:04 +01:00
AFaust
6f9578ca63
Deal with spurious Share errors in last RC
2020-11-30 19:33:34 +01:00
AFaust
a3e3d9cac9
Release preparation
2020-11-26 17:51:34 +01:00
AFaust
45721fcb53
Consolidate projects / shaded dependencies
2020-10-30 13:31:06 +01:00
AFaust
4ad55b7a77
Subsystem documentation / consistency fixes
2020-10-21 19:04:26 +02:00
AFaust
a31309296a
Adapter documentation / fix confidential port
2020-10-20 23:34:54 +02:00
AFaust
f34b6eed2d
Start proper documentation
2020-10-19 22:28:21 +02:00
AFaust
74f79afa8a
Add suport for user name correction in Share
...
- effectively support login by alternative identity attributes, e.g.
Keycloak login by email
2020-09-04 21:39:34 +02:00
