7bbf4e15b7
fix: Refactor auto refresh ( #415 )
* refactor: Factor our OpenIdConnectionManager class and deprecate old methods
* refactor: Refactor keycloak uma client to use openid connection manager
* fix: Perform token renewal at 90% of lifetime
* refactor: Add optional openid connection constructor param to keycloak admin
* refactor: Remove auto_refresh_token in favour of automatic refresh on expiry
* refactor: move KeycloakOpenIDConnectionManager to a separate file
* docs: uma additions and fixes
* refactor: rename token_renewal_fraction->token_lifetime_fraction
* refactor: shorten KeycloakOpenIDConnectionManager->KeycloakOpenIDConnection
* docs: incorporate review comments
1 year ago
2d9308f078
feat: implement cache clearing API ( #414 )
Co-authored-by: Sebastian Neuser <pzkz@infra.run>
1 year ago
04af3af170
fix: get_group_by_path uses Keycloak API to load ( #417 )
Keycloak provides an API endpoint to directly load a group by its path.
This commit changes get_group_by_path to not filter the groups locally
and instead uses the API endpoint.
1 year ago
f39fc53858
feat: Add Client Scopes of Client
1 year ago
23ecba1e6f
style: fix formatting
1 year ago
9c51d02a63
feat: update header if token is given
1 year ago
fb0445c0c7
feat: init KeycloakAdmin with token
1 year ago
aa207286f0
feat: added default realm roles handlers
1 year ago
eeb2fbb628
feat(api): add tests for create_authz_scopes
1 year ago
4fe06af677
refactor: code formatting after tox checks
1 year ago
e9b173024b
refactor: remove print statements
1 year ago
477e0c5a3c
feat: option for enabling users
2 years ago
6b30631378
feat: helping functions for disabling users
2 years ago
fc6a70f459
feat: attack detection API implementation
2 years ago
739e9abfbe
feat: added missing functionality to include attributes when returning realm roles according to specifications
2 years ago
acd457ef39
docs: fixed docstrings stating incorrect return types for get_client_role(s) and get_realm_role(s)
2 years ago
7c486ccb4f
feat: add client scope-mappings client roles operations
2 years ago
0fb6c2058d
feat: add client scope-mappings realm roles operations
2 years ago
c98189ca69
docs: more docstring linting
2 years ago
2bf150f7c1
style: start of more checks
2 years ago
067673f81b
fix: now get_required_action_by_alias now returns None if action does not exist
2 years ago
2d217eca1c
fix: remove duplicate function
2 years ago
96085b7b1d
fix: applied flake linting checks
2 years ago
fb942c11d8
feat: add unit tests
2 years ago
9bff615fec
feat: add docstrings
2 years ago
5bc5d4f321
feat: add functions covering some missing REST API calls
2 years ago
1c6524e4db
fix: check client existence based on clientId
Remove the necessity for supplying client name for create a new client
request, also don't check existing clients based on client name as those
can be duplicate
BREAKING CHANGE: Renamed parameter client_name to client_id in get_client_id method
Closes #351
2 years ago
25f1f68705
style: fix docstring for docs pages
2 years ago
5e6c775735
style: fixed docstrings everywhere
2 years ago
81b3cc80db
docs: add timeout to docstring
2 years ago
bead0aff2b
fix: raise correct exceptions
2 years ago
e7152e5c74
build: use poetry for package management
2 years ago
d2a6262d61
feat: Ability to set custom timeout for KCOpenId and KCAdmin
2 years ago
2f212c1350
feat: Allow fetching existing policies before calling create_client_authz_client_policy()
2 years ago
667d1e088e
feat: support token exchange config via admin API
This adds support for the basic endpoints necessary to configure client-to-client token exchange.
The /authz API is lacking official documentation. Basic docs added to docstrings instead.
2 years ago
bcdf1b825b
feat: Add update_idp
2 years ago
f3de47e1b3
feat: Add update_mapper_in_idp
2 years ago
9a13f67fea
feat: Add get_idp_mappers, fix #329
2 years ago
e95649a93c
fix: fixed bugs in events methods
2 years ago
e56889e5db
fix: fixed components bugs
2 years ago
8c8c0e8141
fix: use param for update client mapper
2 years ago
1029e46a68
feat: added new methods for client scopes
2 years ago
d9c3326fd1
fix: allow query parameters for users count
2 years ago
fe160531f4
fix: allow client_credentials token if username and password not specified
2 years ago
960af199b4
fix: escape when get role fails
2 years ago
54beb51fba
chore: move source files into src folder
Moved all of the source files into the src folder
2 years ago
fa9e56ef42
feat: added authenticator providers getters
2 years ago
6cce29f26b
fix: full tox fix ready
2 years ago
b911d94db9
feat: fixed admin client to pass the tests
2 years ago
8d19ea8180
fix: raise correct errors
2 years ago
Nuwan Goonasekera
PizZaKatZe
Tobias Genannt
Philippe Moll
Jerónimo Mendes
Richard Nemeth
hadeer_e
iglimanaj
Fredrik Lindner
Merle Nerger
Antonio Lucas Neres
Luca Paganin
Chuma Umenze
Erik Cederstrand
Bruno Bonfils
Jackson Kwok