Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[1.15.x][ELY-2362] Add support for the bearer-only option when using the OIDC HTTP mechanism #1917

Merged
merged 12 commits into from Jun 14, 2023
Merged

[1.15.x][ELY-2362] Add support for the bearer-only option when using the OIDC HTTP mechanism #1917

merged 12 commits into from Jun 14, 2023

Commits on Jun 8, 2023

  1. [ELY-2362] Fix invalid configuration logic for bearer auth

    @fjuma
    fjuma committed Jun 8, 2023
    Configuration menu
    Copy the full SHA
    cd2557e View commit details
    Browse the repository at this point in the history

  2. [ELY-2362] Add support for the bearer-only option when using the OIDC… 

    … HTTP mechanism
    @fjuma
    fjuma committed Jun 8, 2023
    Configuration menu
    Copy the full SHA
    0c62f94 View commit details
    Browse the repository at this point in the history

  3. [ELY-2362] Add the ability to handle CORS preflight requests

    @fjuma
    fjuma committed Jun 8, 2023
    Configuration menu
    Copy the full SHA
    01640ef View commit details
    Browse the repository at this point in the history

  4. [ELY-2362] Ensure that a bearer token passed via an access_token quer… 

    …y parameter can be processed appropriately
    @fjuma
    fjuma committed Jun 8, 2023
    Configuration menu
    Copy the full SHA
    201869a View commit details
    Browse the repository at this point in the history

  5. [ELY-2362] Add the ability to retrieve the bearer token using credent… 

    …ials obtained from Basic auth
    @fjuma
    fjuma committed Jun 8, 2023
    Configuration menu
    Copy the full SHA
    3fafb91 View commit details
    Browse the repository at this point in the history

  6. [ELY-2362] Return resource name if client-id hasn't been configured

    @fjuma
    fjuma committed Jun 8, 2023
    Configuration menu
    Copy the full SHA
    875343a View commit details
    Browse the repository at this point in the history

  7. [ELY-2362] Add tests for bearer-only authentication

    @fjuma
    fjuma committed Jun 8, 2023
    Configuration menu
    Copy the full SHA
    38a29ce View commit details
    Browse the repository at this point in the history

  8. [ELY-2362] Small fixes for bearer-only support

    @fjuma
    fjuma committed Jun 8, 2023
    Configuration menu
    Copy the full SHA
    d4f222f View commit details
    Browse the repository at this point in the history

  9. [ELY-2356] No need to sanitize the providerUrl

    @fjuma
    fjuma committed Jun 8, 2023
    Configuration menu
    Copy the full SHA
    b32780c View commit details
    Browse the repository at this point in the history

  10. [ELY-2357] Set the issuer URL for OIDC based on discovery

    @fjuma
    fjuma committed Jun 8, 2023
    Configuration menu
    Copy the full SHA
    39d9716 View commit details
    Browse the repository at this point in the history

  11. [ELY-2487] Misplaced invocation of isAutodetectedBearerOnly() 

    Method isAutodetectedBearerOnly() should be invoked after checking cached token.

Invoking isAutodetectedBearerOnly() early will break every AJAX request that relies on HTTP session. A clear example is JSF Partial Request, it will never send the header "Authorization" neither the query parameter "auth". During the initial load of view the user was authenticated, then the token was stored in HTTP session, so, JSF Partial Request relies on HTTP session onwards.

https://issues.redhat.com/browse/ELY-2487
    @santoszv @fjuma
    santoszv authored and fjuma committed Jun 8, 2023
    Configuration menu
    Copy the full SHA
    8931eed View commit details
    Browse the repository at this point in the history

  12. [ELY-2303] enables combined realm & resource roles 

    Signed-off-by: Patrick Reinhart <patrick@reini.net>
    @reinhapa @fjuma
    reinhapa authored and fjuma committed Jun 8, 2023
    Configuration menu
    Copy the full SHA
    d541f51 View commit details
    Browse the repository at this point in the history