Added RESOURCE_OWNER_PASSWORD_CREDENTIALS_REQUEST - Fixes policy enforcement gap for direct access grant flows #46283
+4,276
−1,461
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…rcement gap for direct access grant flows. Signed-off-by: Marie Daly <[email protected]>
Signed-off-by: Marie Daly <[email protected]>
fix: use getSchemeSpecificPart updating how we determine the script jar file Signed-off-by: Steve Hawkins <[email protected]> Co-authored-by: Konstantinos Kyriakou <[email protected]>
Closes keycloak#46100 Signed-off-by: Pedro Ruivo <[email protected]> Co-authored-by: Pedro Ruivo <[email protected]>
Closes keycloak#45646 Signed-off-by: rmartinc <[email protected]>
Closes keycloak#46150 Signed-off-by: rmartinc <[email protected]>
Closes keycloak#46115 Signed-off-by: vramik <[email protected]>
Signed-off-by: Thomas Diesler <[email protected]>
Closes keycloak#46025 Signed-off-by: vramik <[email protected]>
…utor (keycloak#46082) Closes keycloak#45587 Signed-off-by: Marie Daly <[email protected]>
…eycloak#46148) Closes keycloak#46146 Signed-off-by: Giuseppe Graziano <[email protected]>
Closes keycloak#45654 Signed-off-by: Giuseppe Graziano <[email protected]>
…er, add tests (keycloak#45787) Closes keycloak#45649 Signed-off-by: Valeria Epifanova <[email protected]>
Signed-off-by: Thomas Diesler <[email protected]>
…tion (keycloak#46155) Closes keycloak#46145 Signed-off-by: Pedro Igor <[email protected]>
Closes keycloak#46144 Signed-off-by: Giuseppe Graziano <[email protected]>
Signed-off-by: Lukas Hanusovsky <[email protected]>
…the uma policy (keycloak#46154) Closes keycloak#46147 Signed-off-by: Pedro Igor <[email protected]>
closes: keycloak#46042 Signed-off-by: Steve Hawkins <[email protected]>
Closes keycloak#46121 Signed-off-by: Martin Bartoš <[email protected]>
Closes keycloak#46162 Signed-off-by: stianst <[email protected]>
Signed-off-by: Thomas Diesler <[email protected]>
Closes keycloak#45818 Signed-off-by: rmartinc <[email protected]>
Closes keycloak#45917 Signed-off-by: Stefan Guilhen <[email protected]>
closes: keycloak#45606 Signed-off-by: Steve Hawkins <[email protected]>
closes: keycloak#46160 Signed-off-by: Steve Hawkins <[email protected]>
* [client-v2] Create tests for checking permissions Closes keycloak#45975 Signed-off-by: Martin Bartoš <[email protected]> * Simplify admin client creation, test abstraction Signed-off-by: Martin Bartoš <[email protected]> * Address Vasek's comments Signed-off-by: Martin Bartoš <[email protected]> --------- Signed-off-by: Martin Bartoš <[email protected]>
it will now be applied by default closes: keycloak#44232 Signed-off-by: Steve Hawkins <[email protected]>
Closes keycloak#45528 Signed-off-by: Martin Bartoš <[email protected]>
closes: keycloak#46235 Signed-off-by: Steve Hawkins <[email protected]>
Closes: keycloak#46255 Signed-off-by: Peter Zaoral <[email protected]>
Closes keycloak#46263 Signed-off-by: vramik <[email protected]>
Closes keycloak#46267 Signed-off-by: rmartinc <[email protected]>
Closes keycloak#45646 Signed-off-by: rmartinc <[email protected]>
Closes keycloak#46150 Signed-off-by: rmartinc <[email protected]>
Signed-off-by: Thomas Diesler <[email protected]>
Closes keycloak#46025 Signed-off-by: vramik <[email protected]>
…eycloak#46148) Closes keycloak#46146 Signed-off-by: Giuseppe Graziano <[email protected]>
Signed-off-by: Thomas Diesler <[email protected]>
Closes keycloak#46144 Signed-off-by: Giuseppe Graziano <[email protected]>
Signed-off-by: Thomas Diesler <[email protected]>
Closes keycloak#46263 Signed-off-by: vramik <[email protected]>
Closes keycloak#46267 Signed-off-by: rmartinc <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
20 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Apply ClientAccessTypeCondition to password grant requests
Add RESOURCE_OWNER_PASSWORD_CREDENTIALS_REQUEST event handling to
ClientAccessTypeCondition for consistent policy enforcement.
Closes #45740