Backport to fix input type and help text for IDP SAML Certificate (#31194)

Signed-off-by: Agnieszka Gancarczyk <agancarc@redhat.com> Co-authored-by: Agnieszka Gancarczyk <agancarc@redhat.com>
2026-01-06 06:49:53 -06:00 · 2024-07-10 14:24:51 +01:00
parent f161b4e021
commit 3a05abcfaa
2 changed files with 5 additions and 2 deletions
--- a/js/apps/admin-ui/maven-resources/theme/keycloak.v2/admin/messages/messages_en.properties
+++ b/js/apps/admin-ui/maven-resources/theme/keycloak.v2/admin/messages/messages_en.properties
@@ -3201,4 +3201,5 @@ redirectWhenEmailMatchesHelp=Automatically redirect the user to this identity pr
 emailVerificationHelp=Specifies independent timeout for email verification.
 idpAccountEmailVerificationHelp=Specifies independent timeout for IdP account email verification.
 forgotPasswordHelp=Specifies independent timeout for forgot password.
-executeActionsHelp=Specifies independent timeout for execute actions.
+executeActionsHelp=Specifies independent timeout for execute actions.
+validatingX509CertsHelp=The public certificates Keycloak uses to validate the signatures of SAML requests and responses from the external IDP when Use metadata descriptor URL is OFF. Multiple certificates can be entered separated by comma (,). The certificates can be re-imported from the Metadata descriptor URL clicking the Import Keys action in the identity provider page. The action downloads the current certificates in the metadata endpoint and assigns them to the config in this same option. You need to click Save to definitely store the re-imported certificates.
--- a/js/apps/admin-ui/src/identity-providers/add/DescriptorSettings.tsx
+++ b/js/apps/admin-ui/src/identity-providers/add/DescriptorSettings.tsx
@@ -6,6 +6,7 @@ import { useTranslation } from "react-i18next";
 import {
  NumberControl,
  SelectControl,
+  TextAreaControl,
  TextControl,
 } from "@keycloak/keycloak-ui-shared";
 import { DefaultSwitchControl } from "../../components/SwitchControl";
@@ -284,9 +285,10 @@ const Fields = ({ readOnly }: DescriptorSettingsProps) => {
              isDisabled={readOnly}
            />
            {useMetadataDescriptorUrl !== "true" && (
-              <TextControl
+              <TextAreaControl
                name="config.signingCertificate"
                label={t("validatingX509Certs")}
+                labelIcon={t("validatingX509CertsHelp")}
                readOnly={readOnly}
              />
            )}