Audit renamed to Event
by Stian Thorgersen
Audit has been renamed to Events. This change applies to:
* AuditListener renamed to EventsListener
* AuditProvider renamed to EventsStore
* Admin console
This was a fairly big change, which I wasn't really happy with doing now, but it needed to be done.
10 years, 4 months
Added password token for totp logins
by Stian Thorgersen
In the past when authenticating a user with totp we used to include the username and password in plain-text in hidden input fields on the login-totp form. This was not good in case this html gets cached.
I've improved this by adding a password-token type credential. The flow now is:
1. User logs in with username and password
2. Password is verified, if valid a password-token is generated (realm name, user id and timestamp encrypted with realm private key)
3. Redirect to login-totp, including password-token instead of password
4. User enters totp
5. Password token and totp is verified
10 years, 4 months
Re: [keycloak-dev] [keycloak-user] 1.0 RC 1 released
by Stian Thorgersen
OpenShift cartridge is now updated to 1.0 RC-1
----- Original Message -----
> From: "Steven Pousty" <spousty(a)redhat.com>
> To: "Bill Burke" <bburke(a)redhat.com>, keycloak-dev(a)lists.jboss.org, keycloak-user(a)lists.jboss.org
> Sent: Wednesday, 20 August, 2014 10:21:52 PM
> Subject: Re: [keycloak-user] 1.0 RC 1 released
>
> This is awesome - Has the OpenShift cartridge been updated?
> Thanks
> Steve
> On 08/20/2014 01:20 PM, Bill Burke wrote:
> > We're getting closer to 1.0.Final and are still scheduled for a final
> > release 2nd week of September.
> >
>
> _______________________________________________
> keycloak-user mailing list
> keycloak-user(a)lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>
10 years, 4 months
Last release candidate before final
by Stian Thorgersen
All,
We aim to release RC-2 on Friday. This will hopefully be the last release candidate before 1.0.final is released, so please if you have any issues with RC-1 let us now asap.
Regards,
Stian
10 years, 4 months
Private Key encryption
by Alarik Myrin
Does anyone think it would be a good idea to store the private key
encrypted? This would require a separate secret, presumably stored in a
configuration file, or using the PicketLink Vault Tool, to decrypt the
private key for use. Anyone who can get the private key can start issuing
access tokens to whatever resources they want.
10 years, 4 months
URGENT BUG
by Stan Silvert
Looks like saving a role is broken in the UI. Can someone confirm?
Stan
10 years, 4 months
May need a hold on RC1
by Stan Silvert
I don't know if you are still planning to do the release on Thursday,
but I want to give you a heads up that the subsystem might not be ready
by then.
They've made a change to the WildFly controller API that breaks
backwards compatibility in our subsystem. Hopefully, this can be
resolved quickly, but I wanted to let everyone know just in case it
takes longer.
Stan
10 years, 4 months
Re: [keycloak-dev] [keycloak-user] 1.0 RC 1 released
by Bill Burke
No, I'm not exactly sure how to do it and don't want to screw it up when
Stian isn't here.
On 8/20/2014 4:21 PM, Steven Pousty wrote:
> This is awesome - Has the OpenShift cartridge been updated?
> Thanks
> Steve
> On 08/20/2014 01:20 PM, Bill Burke wrote:
>> We're getting closer to 1.0.Final and are still scheduled for a final
>> release 2nd week of September.
>>
>
--
Bill Burke
JBoss, a division of Red Hat
http://bill.burkecentral.com
10 years, 4 months