GitLab

* block login on error

* When the server responds with an error, disable the login
* Show the 2nd factor message in bold text
* Align the alternate token div with the login div above

* catch error in 2nd step too

replace instance when config changes, set version 1.0.0

* Changing the config now does not require a server restart anymore. When a config for a given realm changes, it is detected by checking the hash of it and a new instance of privacyIDEA is created with new config, replacing the old one.
* Removed generic typing from the Pair (of PrivacyIDEA and Configuration) because it has only a single use
* Catching "User not found error" and displaying it properly
* Removed line wraps for short chained method calls

u2f implementation

support for kc realms with different configurations

update deprecated function use, fix exception on enrollment

* Handle multiple instances of PrivacyIDEA with different configurations identified by the keycloak realm
* Changed code style

* Updated search for groups of the user to use the new GroupModel functions
* Catch error if token enrollment is not possible for the current user (e.g. due to not found in PI)

update keycloak dependencies to 13.0.1.
https://www.cvedetails.com/cve/CVE-2021-20262/

Bumps [keycloak-core](https://github.com/keycloak/keycloak) from 12.0.4 to 13.0.0.
- [Release notes](https://github.com/keycloak/keycloak/releases)
- [Commits](https://github.com/keycloak/keycloak/compare/12.0.4...13.0.0

)

---
updated-dependencies:
- dependency-name: org.keycloak:keycloak-core
  dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Change method names to those sdk 0.3. is *going* to use
* Fixed printing throwables - stacktrace is now included
* Token rollout now checks the trigger response, possibly saving a request
* Language header map is no longer immutable so that things can be added to it by the sdk (like authorziation)

Webauthn support

Merge branch 'webauthn_support' of https://github.com/privacyidea/keycloak-provider into webauthn_support

* Finished WebAuthn (currently only for 1 token)
* Added successive challenge-response capability
* Added preferred token type config entry

it is working but need some polishing, so not ready yet.

Use sdk

Add realm parameter in queries

Bump junit from 4.12 to 4.13.1

Bumps [junit](https://github.com/junit-team/junit4) from 4.12 to 4.13.1.
- [Release notes](https://github.com/junit-team/junit4/releases)
- [Changelog](https://github.com/junit-team/junit4/blob/main/doc/ReleaseNotes4.12.md)
- [Commits](https://github.com/junit-team/junit4/compare/r4.12...r4.13.1

)
Signed-off-by: dependabot[bot] <support@github.com>

Adding 3 lines in the authenticate function of the PrivacyIDEAAuthenticator class, allowing this provider to use the Realm configuration parameter to authenticate, trigger challange and add token to the user.

* If a server reponse contains the multi_challenge object, the transaction id will be kept and message will be displayed
* This allows to trigger challenges without a service account (granted PI+token are setup that way)
#37