From 2da9d8f7d275b447c597dcdff306044f516e40fd Mon Sep 17 00:00:00 2001
From: iglocska <andras.iklody@gmail.com>
Date: Fri, 18 Feb 2022 11:47:33 +0100
Subject: [PATCH 1/2] new: [keycloak] log enrollment outcome in the audit log

---
 src/Model/Behavior/AuthKeycloakBehavior.php | 24 +++++++++++++++++++++
 1 file changed, 24 insertions(+)

diff --git a/src/Model/Behavior/AuthKeycloakBehavior.php b/src/Model/Behavior/AuthKeycloakBehavior.php
index 12bb3e2..7cbb5ca 100644
--- a/src/Model/Behavior/AuthKeycloakBehavior.php
+++ b/src/Model/Behavior/AuthKeycloakBehavior.php
@@ -137,6 +137,30 @@ class AuthKeycloakBehavior extends Behavior
                 ]
             ]
         );
+        $logChange = [
+            'username' => $data['username'],
+            'individual_id' => $data['individual_id'],
+            'role_id' => $data['role_id']
+        ];
+        if (!$response->isOk()) {
+            $logChange['error_code'] = $response->getStatusCode();
+            $logChange['error_body'] = $response->getStringBody();
+            $this->_table->auditLogs()->insert([
+                'request_action' => 'enrollUser',
+                'model' => 'User',
+                'model_id' => 0,
+                'model_title' => __('Failed Keycloak enrollment for user {0}', $data['username']),
+                'changed' => $logChange
+            ]);
+        } else {
+            $this->_table->auditLogs()->insert([
+                'request_action' => 'enrollUser',
+                'model' => 'User',
+                'model_id' => 0,
+                'model_title' => __('Successful Keycloak enrollment for user {0}', $data['username']),
+                'changed' => $logChange
+            ]);
+        }
         return true;
     }
 

From 8a6f0ed7512cf380781877c04f1856a913593b8f Mon Sep 17 00:00:00 2001
From: iglocska <andras.iklody@gmail.com>
Date: Mon, 28 Feb 2022 10:23:23 +0100
Subject: [PATCH 2/2] fix: [settings] invalid setting name fixed

---
 src/Model/Behavior/AuthKeycloakBehavior.php | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/src/Model/Behavior/AuthKeycloakBehavior.php b/src/Model/Behavior/AuthKeycloakBehavior.php
index 7cbb5ca..fb73bdd 100644
--- a/src/Model/Behavior/AuthKeycloakBehavior.php
+++ b/src/Model/Behavior/AuthKeycloakBehavior.php
@@ -134,7 +134,8 @@ class AuthKeycloakBehavior extends Behavior
                 'headers' => [
                     'Content-Type' => 'application/json',
                     'Authorization' => 'Bearer ' . $token
-                ]
+                ],
+                'ssl_verify_peer' => false
             ]
         );
         $logChange = [