You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

This project adheres to Semantic Versioning.

Changelog for "keycloak-client"

[v2.1.0-SNAPSHOT]

Added token-exchange support, also with offline-token scope, and methods to add extra headers during the OIDC token requests.
Added custom base URL set via factory (not automatically working cross environments) [#27234].

Removed the discovery functionality to be compatible with SmartGears.v4 and moved to the new library keycloak-client-legacy-is that will provide the backward compatibility. (#23478).
Fixed typo in AccessToken class for setAccessToken(..) method (#23654)
Added predictive infrastructure URL support based on context (and on context and realm if the target realm is not the default one) and overloaded all methods that take the URL as argument with the context. (#23655)
Added support for the use of the custom Keycloak's D4S mapper that maps/shrink the aud (and optionally also the resource access) to the value requested via X-D4Science-Context HTTP header.
Added support of password grant flow (corresponding to the now deprecated OAuth2 flow: Resource Owner Password Credentials grant) also for specific context/audience by using the specific D4S mapper. (#25291)
Added new KeycloakClientHelper class to perform token request for user in one shot and without the need to provide the clientId parameter (#25291). Only context, username and password are required. (#25291)

Added functions to introspect and verify access tokens (both OIDC and UMA are supported) (#23326).

Added OIDC token retrieve for clients [#23076] and UMA token from OIDC token as bearer auth, instead of credentials only (basic auth)

Added refresh token facilities for expired tokens (#22515) and some helper methods added.

First release (#21389 #22155) provides the basic helper classes for Keycloak tokens retrieve and functions for the gCube framework integration (automatic service discovery).