June 2015 - keycloak-dev - Jboss List Archives

by Petr Mensik

Hello guys, I came across this while I was rewriting integration tests to Arquillian. There is a code which calls KeycloakSession#sessions().removeExpiredUserSessions(realm) (in AdapterTestStragetegy), is there any equivalent of this in the UI of admin console or a call through REST API (via org.keycloak.admin.client.Keycloak) ? Because I haven't been able to find neither of these options. Thanks a lot for help. Petr Mensik | IRC: pmensik Quality Engineer | Quality Engineering Red Hat Czech, s.r.o. 612 45 Brno, Czech Republic

9 years, 6 months

2
1
0 / 0

Re: [keycloak-dev] [wildfly-dev] 2 places to edit modules now?

by Stan Silvert

On 6/16/2015 8:36 AM, Tomaž Cerar wrote: > A feature-pack can extend another feature pack, > I am sure you guys know that. > > so you could have "keycloak-base" feature pack that all other 3 extend. > > the base would than have all common modules defined. > and other 3 extra specializations. That's an OK approach if there is a well-defined base of modules that several projects use. But that's really not the case. In any feature pack I should be able to just list the artifacts I'm using and it provides a default module.xml file for that. > > -- > tomaz > > On Tue, Jun 16, 2015 at 2:18 PM, Stan Silvert <ssilvert(a)redhat.com > <mailto:ssilvert@redhat.com>> wrote: > > Cross-posting to wildfly-dev. > > It sounds like we need a way to standardize module.xml definitions > across projects and have them accessible from maven GAV's. These > module.xml files are rarely different between projects and it doesn't > make sense for each feature pack to define its own copy. > > On 6/15/2015 4:08 PM, Bill Burke wrote: > > Module definition is now done in 3 places? Copies of one another? > > > > eap6-service-overlay > > server-feature-pack > > adapter-feature-pack > > > > This is very very error prone guys. I guarantee somebody will > forget to > > update something. > > > > > > _______________________________________________ > wildfly-dev mailing list > wildfly-dev(a)lists.jboss.org <mailto:wildfly-dev@lists.jboss.org> > https://lists.jboss.org/mailman/listinfo/wildfly-dev > >

9 years, 6 months

2
1
0 / 0

2 places to edit modules now?

by Bill Burke

Module definition is now done in 3 places? Copies of one another? eap6-service-overlay server-feature-pack adapter-feature-pack This is very very error prone guys. I guarantee somebody will forget to update something. -- Bill Burke JBoss, a division of Red Hat http://bill.burkecentral.com

9 years, 6 months

3
2
0 / 0

Propagating system props to keycloak.json on WildFly

by Tomas Kyjovsky

While working on arquillian adapter tests I hit a problem when deploying some of the test servlets to standalone WF. The original AdapterTest sets some system props that are later used by "session-portal" and "input-portal": [1-3]. AdapterTest.java: // Test that replacing system properties works for adapters System.setProperty("app.server.base.url", "http://localhost:8081"); System.setProperty("my.host.name", "localhost"); App's keycloak.json: "auth-server-url" : "http://${my.host.name}:8081/auth", While this works on embedded container, with a standalone WF I get this error during deployment: IllegalArgumentException: Illegal character in authority at index 7: http://${my.host.name}:8180/auth Any ideas on how to proceed? Do I just need to set the actual values in keycloak.json before test as it is done for the other test apps? Regards, Tomas [1] https://github.com/keycloak/keycloak/blob/master/testsuite/integration/sr... [2] https://github.com/keycloak/keycloak/blob/master/testsuite/integration/sr... [3] https://github.com/keycloak/keycloak/blob/master/testsuite/integration/sr...

9 years, 6 months

2
2
0 / 0

Keycloak Admin Console - Pixel fu?

by Matthias Wessendorf

Hi, looking at the Keycloak Admin Console from the (standalone) OpenShift cartridge, I think the logo is a bit cut-off: https://www.dropbox.com/s/axlw08h5emyz6fp/Screen%20Shot%202015-06-16%20at... Is that on intention? Or something wrong w/ PatternFly, or the default theme? Greetings, Matthias -- Matthias Wessendorf blog: http://matthiaswessendorf.wordpress.com/ sessions: http://www.slideshare.net/mwessendorf twitter: http://twitter.com/mwessendorf

9 years, 6 months

2
1
0 / 0

bring back ability to disable direct grant

by Bill Burke

I was thinking about recaptcha support. The purpose of recaptcha is to make sure a bot is not trying to log into system. Really good for something like registration, but also very useful for regular logins for extra security. Recaptcha would elleviate the need for Brute Force Protector. This thing is though, if you still have direct grant, then putting in recaptcha at login is pointless as an attacker can just go through direct grant. Can we bring back the ability to disable direct grant? -- Bill Burke JBoss, a division of Red Hat http://bill.burkecentral.com

9 years, 6 months

2
1
0 / 0

auth spi merged

by Bill Burke

Big changes on how we do authentication. I still need to use this new model for direct grant. There's still a bit of worked to do around Events and ClientSessionCode. I'd like to do a presentation on it Thursday. -- Bill Burke JBoss, a division of Red Hat http://bill.burkecentral.com

9 years, 6 months

1
0
0 / 0

meet about auth spi before commit?

by Bill Burke

Can I commit the auth spi after I fix my 10 merge conflicts? Or do we need to meet so I can explain the changes before I commit? -- Bill Burke JBoss, a division of Red Hat http://bill.burkecentral.com

9 years, 6 months

2
1
0 / 0

Re: [keycloak-dev] verify email is skipped if no email

by Vlastimil Elias

This is covered by https://issues.jboss.org/browse/KEYCLOAK-1371 which allows to configure Identity provider to Show "update profile" page on first login only when some mandatory field is missing. For now user profile mandatory fields are hardcoded (email, first and last name). It should be cool to allow configuration of which user profile fields are mandatory. Vl. On 10.6.2015 19:13, Stian Thorgersen wrote: > > ----- Original Message ----- >> From: "Bill Burke" <bburke(a)redhat.com> >> To: keycloak-dev(a)lists.jboss.org >> Sent: Wednesday, 10 June, 2015 4:48:17 PM >> Subject: [keycloak-dev] verify email is skipped if no email >> >> The verify email required action is skipped if the user has no email. >> Is this the right behavior? Should the user instead be required to >> enter in an email address that can be verified? > +1 It doesn't really make sense to require users to verify their email, but at the same time not require users to enter one > >> -- >> Bill Burke >> JBoss, a division of Red Hat >> http://bill.burkecentral.com >> _______________________________________________ >> keycloak-dev mailing list >> keycloak-dev(a)lists.jboss.org >> https://lists.jboss.org/mailman/listinfo/keycloak-dev >> > _______________________________________________ > keycloak-dev mailing list > keycloak-dev(a)lists.jboss.org > https://lists.jboss.org/mailman/listinfo/keycloak-dev -- Vlastimil Elias Principal Software Engineer jboss.org Development Team

9 years, 6 months

2
2
0 / 0

Start committing for 1.4

by Stian Thorgersen

I've created a branch for 1.3, which will be released early next week. So go ahead and commit stuff for 1.4 :)

9 years, 6 months

1
0
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

keycloak-dev June 2015