├── .ci.settings.xml ├── .editorconfig ├── .github └── workflows │ └── ci.yml ├── .gitignore ├── .pre-commit-config.yaml ├── CHANGELOG.md ├── CONTRIBUTING.md ├── LICENSE ├── README.md ├── distribution ├── Makefile ├── README.html ├── README.md ├── build.properties ├── build.sh └── tests │ ├── endpoints.sh │ ├── endpoints_bat.ps1 │ └── endpoints_ps.ps1 ├── docs ├── README.md ├── RELEASE.md ├── adrs │ └── 0001-Internal-JWT-Token-Details.md ├── config │ ├── assertion-consumer-service-default-url.png │ ├── assertion-creation-summary.png │ ├── attribute-contract-values.png │ ├── attribute-extend-contract.png │ ├── import-cert-summary.png │ ├── keycloak-export-cert.png │ ├── openldap-example.md │ ├── ping-federate-example.md │ ├── protocol-settings-summary.png │ └── slo-default-url.png └── resource │ ├── component │ ├── keycloak-sample-components.png │ └── keycloak-sample-components.puml │ ├── images │ └── first-broker-login.png │ └── sequence │ ├── high-level-ldap-auth-sequence.png │ ├── high-level-ldap-auth-sequence.puml │ ├── high-level-saml-auth-sequence.png │ └── high-level-saml-auth-sequence.puml ├── extra └── java.security ├── helm └── alfresco-keycloak │ ├── .helmignore │ ├── Chart.yaml │ ├── README.md │ ├── README.md.gotmpl │ ├── alfresco-realm.json │ ├── ci │ └── ci-values.yaml │ ├── templates │ ├── _helpers.tpl │ ├── identity-ingress.yaml │ └── realm-secret.yaml │ └── values.yaml ├── tag.sh └── test ├── helm └── delete_keycloak_pods.sh ├── postman ├── README.ldap-user-provider-tests.md ├── change-keycloak-access-token-lifespan-collection.json ├── check-keycloak-access-token-lifespan-change-persisted.json ├── keycloak-test-collection.json ├── ldap-config01.png ├── ldap-config02.png ├── ldap-config03.png ├── ldap-test-data.json ├── ldap-test-data.ldif └── ldap-user-provider-tests.postman_collection.json ├── saml ├── README.md ├── pom.xml ├── src │ └── test │ │ ├── java │ │ └── org │ │ │ └── alfresco │ │ │ └── identity │ │ │ └── service │ │ │ └── saml │ │ │ └── test │ │ │ ├── TokenTest.java │ │ │ └── TokenTestConstants.java │ │ └── resources │ │ ├── application.properties │ │ └── logback-test.xml └── upgrade │ └── test-upgrade.sh └── scripts ├── auth0-api.sh ├── check-keycloak-version.sh ├── common.func ├── config-files ├── emailMapper.json ├── firstNameMapper.json ├── idpSamlConfig.json ├── lastNameMapper.json ├── realmRsaKeys.json.enc └── samlBrowserFlowExecution.json ├── configure-saml-kc.sh ├── ldap-auth-defn.json ├── ldap-config.yaml └── set_idp_config.sh /.ci.settings.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/.ci.settings.xml -------------------------------------------------------------------------------- /.editorconfig: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/.editorconfig -------------------------------------------------------------------------------- /.github/workflows/ci.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/.github/workflows/ci.yml -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/.gitignore -------------------------------------------------------------------------------- /.pre-commit-config.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/.pre-commit-config.yaml -------------------------------------------------------------------------------- /CHANGELOG.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/CHANGELOG.md -------------------------------------------------------------------------------- /CONTRIBUTING.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/CONTRIBUTING.md -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/LICENSE -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/README.md -------------------------------------------------------------------------------- /distribution/Makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/distribution/Makefile -------------------------------------------------------------------------------- /distribution/README.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/distribution/README.html -------------------------------------------------------------------------------- /distribution/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/distribution/README.md -------------------------------------------------------------------------------- /distribution/build.properties: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/distribution/build.properties -------------------------------------------------------------------------------- /distribution/build.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/distribution/build.sh -------------------------------------------------------------------------------- /distribution/tests/endpoints.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/distribution/tests/endpoints.sh -------------------------------------------------------------------------------- /distribution/tests/endpoints_bat.ps1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/distribution/tests/endpoints_bat.ps1 -------------------------------------------------------------------------------- /distribution/tests/endpoints_ps.ps1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/distribution/tests/endpoints_ps.ps1 -------------------------------------------------------------------------------- /docs/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/docs/README.md -------------------------------------------------------------------------------- /docs/RELEASE.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/docs/RELEASE.md -------------------------------------------------------------------------------- /docs/adrs/0001-Internal-JWT-Token-Details.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/docs/adrs/0001-Internal-JWT-Token-Details.md -------------------------------------------------------------------------------- /docs/config/assertion-consumer-service-default-url.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/docs/config/assertion-consumer-service-default-url.png -------------------------------------------------------------------------------- /docs/config/assertion-creation-summary.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/docs/config/assertion-creation-summary.png -------------------------------------------------------------------------------- /docs/config/attribute-contract-values.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/docs/config/attribute-contract-values.png -------------------------------------------------------------------------------- /docs/config/attribute-extend-contract.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/docs/config/attribute-extend-contract.png -------------------------------------------------------------------------------- /docs/config/import-cert-summary.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/docs/config/import-cert-summary.png -------------------------------------------------------------------------------- /docs/config/keycloak-export-cert.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/docs/config/keycloak-export-cert.png -------------------------------------------------------------------------------- /docs/config/openldap-example.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/docs/config/openldap-example.md -------------------------------------------------------------------------------- /docs/config/ping-federate-example.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/docs/config/ping-federate-example.md -------------------------------------------------------------------------------- /docs/config/protocol-settings-summary.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/docs/config/protocol-settings-summary.png -------------------------------------------------------------------------------- /docs/config/slo-default-url.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/docs/config/slo-default-url.png -------------------------------------------------------------------------------- /docs/resource/component/keycloak-sample-components.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/docs/resource/component/keycloak-sample-components.png -------------------------------------------------------------------------------- /docs/resource/component/keycloak-sample-components.puml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/docs/resource/component/keycloak-sample-components.puml -------------------------------------------------------------------------------- /docs/resource/images/first-broker-login.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/docs/resource/images/first-broker-login.png -------------------------------------------------------------------------------- /docs/resource/sequence/high-level-ldap-auth-sequence.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/docs/resource/sequence/high-level-ldap-auth-sequence.png -------------------------------------------------------------------------------- /docs/resource/sequence/high-level-ldap-auth-sequence.puml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/docs/resource/sequence/high-level-ldap-auth-sequence.puml -------------------------------------------------------------------------------- /docs/resource/sequence/high-level-saml-auth-sequence.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/docs/resource/sequence/high-level-saml-auth-sequence.png -------------------------------------------------------------------------------- /docs/resource/sequence/high-level-saml-auth-sequence.puml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/docs/resource/sequence/high-level-saml-auth-sequence.puml -------------------------------------------------------------------------------- /extra/java.security: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/extra/java.security -------------------------------------------------------------------------------- /helm/alfresco-keycloak/.helmignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/helm/alfresco-keycloak/.helmignore -------------------------------------------------------------------------------- /helm/alfresco-keycloak/Chart.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/helm/alfresco-keycloak/Chart.yaml -------------------------------------------------------------------------------- /helm/alfresco-keycloak/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/helm/alfresco-keycloak/README.md -------------------------------------------------------------------------------- /helm/alfresco-keycloak/README.md.gotmpl: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/helm/alfresco-keycloak/README.md.gotmpl -------------------------------------------------------------------------------- /helm/alfresco-keycloak/alfresco-realm.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/helm/alfresco-keycloak/alfresco-realm.json -------------------------------------------------------------------------------- /helm/alfresco-keycloak/ci/ci-values.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/helm/alfresco-keycloak/ci/ci-values.yaml -------------------------------------------------------------------------------- /helm/alfresco-keycloak/templates/_helpers.tpl: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/helm/alfresco-keycloak/templates/_helpers.tpl -------------------------------------------------------------------------------- /helm/alfresco-keycloak/templates/identity-ingress.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/helm/alfresco-keycloak/templates/identity-ingress.yaml -------------------------------------------------------------------------------- /helm/alfresco-keycloak/templates/realm-secret.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/helm/alfresco-keycloak/templates/realm-secret.yaml -------------------------------------------------------------------------------- /helm/alfresco-keycloak/values.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/helm/alfresco-keycloak/values.yaml -------------------------------------------------------------------------------- /tag.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/tag.sh -------------------------------------------------------------------------------- /test/helm/delete_keycloak_pods.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/helm/delete_keycloak_pods.sh -------------------------------------------------------------------------------- /test/postman/README.ldap-user-provider-tests.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/postman/README.ldap-user-provider-tests.md -------------------------------------------------------------------------------- /test/postman/change-keycloak-access-token-lifespan-collection.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/postman/change-keycloak-access-token-lifespan-collection.json -------------------------------------------------------------------------------- /test/postman/check-keycloak-access-token-lifespan-change-persisted.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/postman/check-keycloak-access-token-lifespan-change-persisted.json -------------------------------------------------------------------------------- /test/postman/keycloak-test-collection.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/postman/keycloak-test-collection.json -------------------------------------------------------------------------------- /test/postman/ldap-config01.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/postman/ldap-config01.png -------------------------------------------------------------------------------- /test/postman/ldap-config02.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/postman/ldap-config02.png -------------------------------------------------------------------------------- /test/postman/ldap-config03.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/postman/ldap-config03.png -------------------------------------------------------------------------------- /test/postman/ldap-test-data.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/postman/ldap-test-data.json -------------------------------------------------------------------------------- /test/postman/ldap-test-data.ldif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/postman/ldap-test-data.ldif -------------------------------------------------------------------------------- /test/postman/ldap-user-provider-tests.postman_collection.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/postman/ldap-user-provider-tests.postman_collection.json -------------------------------------------------------------------------------- /test/saml/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/saml/README.md -------------------------------------------------------------------------------- /test/saml/pom.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/saml/pom.xml -------------------------------------------------------------------------------- /test/saml/src/test/java/org/alfresco/identity/service/saml/test/TokenTest.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/saml/src/test/java/org/alfresco/identity/service/saml/test/TokenTest.java -------------------------------------------------------------------------------- /test/saml/src/test/java/org/alfresco/identity/service/saml/test/TokenTestConstants.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/saml/src/test/java/org/alfresco/identity/service/saml/test/TokenTestConstants.java -------------------------------------------------------------------------------- /test/saml/src/test/resources/application.properties: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/saml/src/test/resources/application.properties -------------------------------------------------------------------------------- /test/saml/src/test/resources/logback-test.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/saml/src/test/resources/logback-test.xml -------------------------------------------------------------------------------- /test/saml/upgrade/test-upgrade.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/saml/upgrade/test-upgrade.sh -------------------------------------------------------------------------------- /test/scripts/auth0-api.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/scripts/auth0-api.sh -------------------------------------------------------------------------------- /test/scripts/check-keycloak-version.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/scripts/check-keycloak-version.sh -------------------------------------------------------------------------------- /test/scripts/common.func: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/scripts/common.func -------------------------------------------------------------------------------- /test/scripts/config-files/emailMapper.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/scripts/config-files/emailMapper.json -------------------------------------------------------------------------------- /test/scripts/config-files/firstNameMapper.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/scripts/config-files/firstNameMapper.json -------------------------------------------------------------------------------- /test/scripts/config-files/idpSamlConfig.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/scripts/config-files/idpSamlConfig.json -------------------------------------------------------------------------------- /test/scripts/config-files/lastNameMapper.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/scripts/config-files/lastNameMapper.json -------------------------------------------------------------------------------- /test/scripts/config-files/realmRsaKeys.json.enc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/scripts/config-files/realmRsaKeys.json.enc -------------------------------------------------------------------------------- /test/scripts/config-files/samlBrowserFlowExecution.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/scripts/config-files/samlBrowserFlowExecution.json -------------------------------------------------------------------------------- /test/scripts/configure-saml-kc.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/scripts/configure-saml-kc.sh -------------------------------------------------------------------------------- /test/scripts/ldap-auth-defn.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/scripts/ldap-auth-defn.json -------------------------------------------------------------------------------- /test/scripts/ldap-config.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/scripts/ldap-config.yaml -------------------------------------------------------------------------------- /test/scripts/set_idp_config.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Alfresco/alfresco-identity-service/HEAD/test/scripts/set_idp_config.sh --------------------------------------------------------------------------------