keycloak

mirror of https://github.com/keycloak/keycloak.git synced 2025-12-16 20:15:46 -06:00

Author	SHA1	Message	Date
Pedro Igor	b46b0321d6	Skip FGAP when evaluating permissions for regular clients Closes #40712 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-11-13 22:16:09 +01:00
Vlasta Ramik	d2697232b9	Rename `bind` endpoint to `activate` Closes #44155 Signed-off-by: vramik <vramik@redhat.com>	2025-11-13 22:15:33 +01:00
Pedro Ruivo	0876ca9aa1	Use batches to expire entries from Database Closes #44067 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>	2025-11-13 15:13:15 +00:00
stianst	8dce1eff15	Migrate keys package to new test framework Closes #44118 Signed-off-by: stianst <stianst@gmail.com>	2025-11-13 10:19:53 -03:00
Stan Silvert	f106a63f0b	Remove unused messages. Closes #43665 Signed-off-by: Stan Silvert <ssilvert@redhat.com>	2025-11-13 10:04:00 -03:00
Stan Silvert	33b479fa3b	Workflows now use YAML instead of JSON. Closes #43665 Signed-off-by: Stan Silvert <ssilvert@redhat.com>	2025-11-13 10:04:00 -03:00
Chance Coleman	b2317dabdc	Add configurable HTTP retry mechanism for OCSP validation (#42535 ) Closes #42401 Signed-off-by: UnicornChance <chance@defenseunicorns.com> Signed-off-by: Chance Coleman <139784371+chance-coleman@users.noreply.github.com>	2025-11-13 13:21:13 +01:00
vramik	748b58bf64	Remove creation of default policy, resource and permission upon enabling authorization for a client Closes #43867 Signed-off-by: vramik <vramik@redhat.com>	2025-11-13 09:14:56 -03:00
Rathan-Naik	5c04124d86	Fix duplicate mapper save error by auto-navigating after creation Closes #43948 Signed-off-by: Rathan Naik <30756840+Rathan-Naik@users.noreply.github.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-11-13 08:45:30 +00:00
Sebastian Łaskawiec	3288f83dc9	Adding an integration test with Minikube for Kubernetes Service Account Federated Authenticator Closes #42983 Signed-off-by: Sebastian Łaskawiec <sebastian.laskawiec@defenseunicorns.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-11-13 08:52:46 +01:00
Stefan Guilhen	da7993896d	Allow ISO-8601 compatible format for the after field in workflow steps - aligns the format with what is used in the JPA connection provider pool max lifetime for time-based configurations Closes #42913 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2025-11-12 18:51:49 -03:00
Stefan Guilhen	5ff2e22f18	Fix representation so that workflows can be properly disabled/enabled. - also removes empty 'with' configurations from the steps when retrieving the workflow. Closes #44163 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2025-11-12 18:51:36 -03:00
Stefan Guilhen	7acf2ceccb	Add pagination and search by name capabilities to WorkflowsResource Closes #44164 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2025-11-12 17:18:11 -03:00
vramik	84a679224b	Add operation to deactivate a workflow execution for a resource Closes #42124 Signed-off-by: vramik <vramik@redhat.com>	2025-11-12 17:02:17 -03:00
Pedro Igor	9d728dd686	Missing message properties when rendering pages for organization invites Closes #44113 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-11-12 15:56:39 -03:00
Steven Hawkins	26bdee3052	fix: removing unknown field validation parameter (#44173 ) closes: #43728 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-11-12 17:27:05 +00:00
Martin Kanis	a7c02076a1	UPDATE_EMAIL action invalidates old email Closes #43738 Signed-off-by: Martin Kanis <mkanis@redhat.com>	2025-11-12 11:32:36 -03:00
mposolda	fa3e964df7	Sd-Jwt unit tests in the crypto/fips1402 module closes #44104 Signed-off-by: mposolda <mposolda@gmail.com>	2025-11-12 15:11:39 +01:00
Steven Hawkins	63fc0eec28	task: use client v1 logic for v2 impl (#43982 ) * task: use client v1 logic for v2 impl closes: #43733 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * removing the provider module Signed-off-by: Steve Hawkins <shawkins@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-11-12 15:08:27 +01:00
Awambeng	c0be5c42b9	[OID4VCI]: Add backward compatibility for Draft 15 wallets (single proof support) (#43951 ) Closes #43926 Signed-off-by: Awambeng Rodrick <awambengrodrick@gmail.com>	2025-11-12 14:30:33 +01:00
forkimenjeckayang	a05ed3154c	[OID4VCI] Relax CORS policy on credential offer endpoint (#43182 ) Closes #43183 Signed-off-by: forkimenjeckayang <forkimenjeckayang@gmail.com> Signed-off-by: Awambeng Rodrick <awambengrodrick@gmail.com> Co-authored-by: Awambeng Rodrick <awambengrodrick@gmail.com>	2025-11-12 14:25:20 +01:00
rmartinc	c8c110a049	Use normal scope parameter checking for the JWT Authorization grant Closes #43646 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-11-12 14:09:00 +01:00
Stian Thorgersen	2a196cb373	Split new base tests into multiple jobs (#44096 ) * Split new base tests into multiple jobs Closes #38200 Signed-off-by: stianst <stianst@gmail.com> * Update tests/base/src/test/java/org/keycloak/tests/suites/Base2TestSuite.java Signed-off-by: Stian Thorgersen <stian@redhat.com> --------- Signed-off-by: stianst <stianst@gmail.com> Signed-off-by: Stian Thorgersen <stian@redhat.com>	2025-11-12 10:12:32 +01:00
Ricardo Martin	de49500393	Client policy to enforce only downscoping in Token Exchange (#44030 ) Closes #43931 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-11-12 08:48:42 +01:00
Steven Hawkins	281ced0ca8	fix: performing scale down prior to deletion (#44095 ) closes: #34868 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-11-11 21:12:50 +00:00
rmartinc	fb13aa5039	Use http for the DockerClientTest to avoid certificate issues Closes #44117 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-11-11 17:48:44 +01:00
Steven Hawkins	6be362de95	fix: ensure that direct building works (#44042 ) also cleaning up a couple of javadocs closes: #44031 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-11-11 16:32:44 +01:00
Steven Hawkins	ed9d6cc40a	fix: adding the built system property to the README (#43850 ) * fix: adding the built system property to the README closes: #43606 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * removing the doc / note about directly launching from the jar Signed-off-by: Steve Hawkins <shawkins@redhat.com> * Update docs/building.md Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Signed-off-by: Steven Hawkins <shawkins@redhat.com> * removing one more reference to running the jar directly Signed-off-by: Steve Hawkins <shawkins@redhat.com> * Move a chapter in README Signed-off-by: Václav Muzikář <vmuzikar@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> Signed-off-by: Václav Muzikář <vmuzikar@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Co-authored-by: Václav Muzikář <vmuzikar@redhat.com>	2025-11-11 15:06:48 +01:00
Pedro Ruivo	39964befef	Sessions not removed when user is deleted Fixes #43323 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>	2025-11-11 14:09:05 +01:00
Felix Herbst	f9fd9bce9e	MessageFormatterMethod should detect and map SimpleNumber Closes #43993 Fixes: java.lang.IllegalArgumentException: Cannot format given Object as a Number freemarker.template.SimpleNumber was added as is, expected was freemarker.template.Number from java.text.NumberFormat::format Signed-off-by: Felix Herbst <ofherbst@googlemail.com>	2025-11-11 13:21:25 +01:00
Pedro Igor	ded372a57f	Adding utility class for working with throwables and updating the cause check to limit the number of iterations on the stacktrace Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-11-11 08:48:26 -03:00
Martin Kanis	c28cde359c	Local user can't login when ldap error Closes #43639 Signed-off-by: Martin Kanis <mkanis@redhat.com>	2025-11-11 08:48:26 -03:00
Stian Thorgersen	36011008e8	Remove PostgreSQL 13.x support (#44103 ) Closes #42905 Signed-off-by: stianst <stianst@gmail.com>	2025-11-11 09:35:27 +01:00
Steven Hawkins	0064e060fc	fix: redoing the watching logic to provide a better status (#43817 ) closes: #43777 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-11-11 09:34:58 +01:00
Ingrid Kamga	ce05241c7f	[OID4VCI] Tolerate clock skew in SD-JWT time checks (#43506 ) Closes #43456 Signed-off-by: Ingrid Kamga <Ingrid.Kamga@adorsys.com>	2025-11-11 09:02:44 +01:00
Steven Hawkins	9ef7ff22d2	allow non-optimized commands to run without a separate java launch (#43591 ) * fix: allow non-optimized commands to run without a separate java launch closes: #43611 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * Update quarkus/runtime/src/main/java/org/keycloak/quarkus/runtime/cli/command/AbstractAutoBuildCommand.java Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Signed-off-by: Steven Hawkins <shawkins@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>	2025-11-11 08:57:17 +01:00
Šimon Vacek	6926ef83f9	Test framework support for remote databases (#43609 ) Part of #41940 Signed-off-by: Simon Vacek <simonvacky@email.cz>	2025-11-11 07:59:33 +01:00
Stefan Guilhen	ef3de183df	Skip checksum validation for 2.5.0-unicode-oracle, that is preventing migrations when schema name changes Closes #43564 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2025-11-10 12:56:45 -03:00
Pedro Igor	c23d2af65c	The admin roles manage-authorization and view-authorization should have precedence over manage-client when managing authorization settings Closes #43883 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-11-10 16:10:48 +01:00
Martin Kanis	39e1e40be4	Document missing artifact dependency for UserStoragePrivateUtil Closes #43212 Signed-off-by: Martin Kanis <mkanis@redhat.com>	2025-11-10 10:41:12 -03:00
Giuseppe Graziano	c0e34fa45f	Additional configuration and validation for jwt assertion grant (#44014 ) Closes #43873 Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>	2025-11-10 14:34:06 +01:00
Vojtěch Boček	cd4543456e	fix: do not re-neable AuthorizationService if it is already enabled The enable action needs the realm-wide "modify client" permission, which restricted admins with the fine-grained-authz feature do not have. This causes a "forbidden" exception when try try to save a client with Authorization already enabled, even if the "enable" action does nothing since it was already enabled. Fixes #22938 Signed-off-by: Vojtěch Boček <vbocek@gmail.com>	2025-11-10 10:20:50 -03:00
vramik	302fa3db08	Make LDAPProvidersIntegrationTest import a test realm after each test Closes #43754 Signed-off-by: vramik <vramik@redhat.com>	2025-11-10 10:19:25 -03:00
Bahaa Zaid	b07e2b8666	Fix Admin Console crash when opening Client'a Authz Permission details (#44061 ) Closes #44056 Signed-off-by: Bahaa Zaid <bahaa.zaid@pixelogicmedia.com>	2025-11-10 07:42:24 -05:00
Stian Thorgersen	d8275fe5df	Remove wildcard imports (#44060 ) Closes #44059 Signed-off-by: stianst <stianst@gmail.com>	2025-11-10 11:46:05 +01:00
Weblate (bot)	39c4c1ed94	Translations update from Hosted Weblate (#43989 ) * Updated translation for Turkish Language: tr Co-authored-by: Arif EROL <arif.erol16@gmail.com> Co-authored-by: Hosted Weblate <hosted@weblate.org> Signed-off-by: Arif EROL <arif.erol16@gmail.com> Signed-off-by: Hosted Weblate <hosted@weblate.org> * Updated translation for Catalan Language: ca Co-authored-by: Ecron <ecron_89@hotmail.com> Co-authored-by: Hosted Weblate <hosted@weblate.org> Signed-off-by: Ecron <ecron_89@hotmail.com> Signed-off-by: Hosted Weblate <hosted@weblate.org> * Updated translation for Czech Language: cs Co-authored-by: Hosted Weblate <hosted@weblate.org> Co-authored-by: Martin Kluska <martin@kluska.cz> Signed-off-by: Hosted Weblate <hosted@weblate.org> Signed-off-by: Martin Kluska <martin@kluska.cz> * Updated translation for French Language: fr Co-authored-by: Sylvain Pichon <service@spichon.fr> Signed-off-by: Hosted Weblate <hosted@weblate.org> Signed-off-by: Sylvain Pichon <service@spichon.fr> * Updated translation for Chinese (Traditional Han script) Language: zh_Hant Co-authored-by: Hosted Weblate <hosted@weblate.org> Co-authored-by: 秉虎 <s96016641@gmail.com> Signed-off-by: Hosted Weblate <hosted@weblate.org> Signed-off-by: 秉虎 <s96016641@gmail.com> --------- Signed-off-by: Arif EROL <arif.erol16@gmail.com> Signed-off-by: Hosted Weblate <hosted@weblate.org> Signed-off-by: Ecron <ecron_89@hotmail.com> Signed-off-by: Martin Kluska <martin@kluska.cz> Signed-off-by: Sylvain Pichon <service@spichon.fr> Signed-off-by: 秉虎 <s96016641@gmail.com> Co-authored-by: Arif EROL <arif.erol16@gmail.com> Co-authored-by: Ecron <ecron_89@hotmail.com> Co-authored-by: Martin Kluska <martin@kluska.cz> Co-authored-by: Sylvain Pichon <service@spichon.fr> Co-authored-by: 秉虎 <s96016641@gmail.com>	2025-11-09 10:29:52 +01:00
Pedro Ruivo	18eeef7b26	Create user session expired event Closes #43942 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-11-07 22:36:47 +00:00
Pedro Ruivo	80895d7fb4	AUTH_SESSION_ID cookie has the incorrect route Fixes #43933 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>	2025-11-07 21:32:45 +00:00
Pedro Igor	c67b6bc007	Ordering attributes will unset the unmanaged attribute policy Closes #44010 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-11-07 16:03:42 -03:00
Martin Bartoš	d8f1476d7b	Improve test case for single feature option (#44041 ) Closes #44040 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-11-07 15:40:22 +00:00

... 3 4 5 6 7 ...

29779 Commits