CHANGELOG.md

1.15.0 (January 20, 2020)

FEATURES:

• new resource: keycloak_ldap_hardcoded_role_mapper (#195)

IMPROVEMENTS:

• add full_scope_allowed attribute to keycloak_openid_client resource (#193)
• add exclude_session_state_from_auth_response attribute to keycloak_openid_client resource (#191)
• allow empty value for pkce_code_challenge_method attribute on keycloak_openid_client resource (#198)
• support attributes for keycloak_group resource (#199)

1.14.0 (December 18, 2019)

FEATURES:

• add keycloak_openid_client_service_account_user data source (#181)
• add keycloak_group data source (#185)

IMPROVEMENTS:

• support Keycloak v8.0.0 (#183)
• new functionality for keycloak_realm: brute_force_detection, ssl_required, and custom attributes (#183)
• allow you to prevent refresh token reuse with a new revoke_refresh_token attribute for the keycloak_realm resource (#183)
  • note: please refer to the docs for the new configuration values if you currently use refresh_token_max_reuse

1.13.2 (November 27, 2019)

BUG FIXES:

• fix: update Keycloak API call to handle groups with more than 100 members (#179)

1.13.1 (November 19, 2019)

BUG FIXES:

• correctly handle Keycloak role names that contain a forward slash (#175)

1.13.0 (November 8, 2019)

IMPROVEMENTS:

• use cookiejar for Keycloak API requests (#173)

1.12.0 (November 4, 2019)

IMPROVEMENTS:

• add pkce_code_challenge_method attribute for keycloak_openid_client resource (#170)

BUG FIXES:

• always use valid client secret for keycloak_oidc_identity_provider resource (#171)
• fix state issues for keycloak_openid_client_service_account_role resource (#171)

1.11.1 (October 17, 2019)

BUG FIXES:

• fix required attribute for keycloak_realm data source (#166)
• automatically retry role deletion if the first attempt fails (#168)

1.11.0 (October 14, 2019)

FEATURES:

• new resource: keycloak_openid_user_realm_role_protocol_mapper (#159)
• new data source: keycloak_realm (#160)

IMPROVEMENTS:

• added timeout provider attribute (#155)
• always export serviceAccountId for keycloak_openid_client resource (#162)

BUG FIXES:

• fix default value for reset_credentials_flow attribute in keycloak_realm resource (#158)

1.10.0 (September 6, 2019)

note: this release contains a bug in the keycloak_realm resource that incorrectly sets the default attribute for reset_credentials_flow to "registration". Please ensure that you set this attribute manually to override the incorrect default until a future release fixes this issue.

FEATURES:

• new resource: keycloak_required_action (#131)
• new resource: keycloak_default_groups (#146)
• new resources: keycloak_role, keycloak_group_roles, keycloak_openid_hardcoded_role_protocol_mapper (#143)
• new data source: keycloak_role (#143)

IMPROVEMENTS:

• add security_defences attribute to keycloak_realm resource (#130)
• support custom config for keycloak_custom_user_federation resource (#134)
• add initial_login provider attribute to optionally avoid requests during provider setup (#136)
• support custom config for keycloak_oidc_identity_provider resource (#137)
• add password_policy attribute for keycloak_realm resource (#139)
• add flow binding attributes for keycloak_realm resource (#140)

BUG FIXES:

• fix user attributes to handle attributes longer than 255 characters (#132)
• fix import for keycloak_oidc_identity_provider (#142)

1.9.0 (June 20, 2019)

FEATURES:

• add full_scope_allowed attribute to keycloak_saml_client resource (#118)
• add internationalization attribute to keycloak_realm resource (#124)
• add smtp_server attribute to keycloak_realm resource (#122)

IMPROVEMENTS:

• allow the provider to use a confidential client with the password grant (#114)
• update Terraform SDK to 0.12.1 (#120)
• bump dependency versions for custom user federation example (#121)
• add static binary to release for use within Alpine Docker iamges (#129)

1.8.0 (May 14, 2019)

FEATURES:

• new resources: keycloak_openid_client_authorization_resource, keycloak_openid_client_authorization_scope, keycloak_openid_client_authorization_permission, keycloak_openid_client_service_account_role (#104)
  • note: docs for these resources will be released at a later date. for now, please refer to the source files.
• new data sources: keycloak_openid_client, keycloak_openid_client_authorization_policy (#104)
  • note: docs for these data sources will be released at a later date. for now, please refer to the source files.

IMPROVEMENTS:

• chore: update provider SDK to 0.12 (#107)
• chore: support Keycloak v6.0.1 (#106)
• chore: renames provider resource/data files (#105)

1.7.0 (April 18, 2019)

FEATURES:

• new resources: keycloak_identity_provider and mappers (#92)
  • note: docs for these resources will be released at a later date. for now, please refer to the source files.

IMPROVEMENTS:

• new attributes added for keycloak_saml_client resource (#103)

1.6.0 (March 6, 2019)

FEATURES:

• new resource: keycloak_openid_client_optional_scopes (#96)
• new resource: keycloak_openid_audience_protocol_mapper (#97)

1.5.0 (February 22, 2019)

FEATURES:

• adds support for non-master realms and resource owner password grant for Keycloak authentication (#88)

IMPROVEMENTS:

• support Keycloak v4.8.3.Final and Terraform v0.11.11 (#93)

BUG FIXES:

• handle 404 errors when reading a group for group memberships (#95)

1.4.0 (January 28, 2019)

FEATURES:

• new resource: keycloak_saml_user_property_protocol_mapper (#85)

1.3.0 (January 25, 2019)

FEATURES:

• new resource: keycloak_saml_user_attribute_protocol_mapper (#84)

1.2.0 (January 24, 2019)

FEATURES:

• new resource: keycloak_saml_client (#82)

IMPROVEMENTS:

• add validation for usernames to ensure they are always lowercase (#83)

1.1.0 (January 7, 2019)

IMPROVEMENTS:

• openid_client: add web_origins attribute (#81)
• user: add initial_password attribute (#77)

BUG FIXES:

• ldap mappers: don't assume component fields are returned by Keycloak API (#80)

1.0.0 (December 16, 2018)

Initial Release!

Docs: https://mrparkers.github.io/terraform-provider-keycloak