mirror/keycloak
1
0
Fork 0
mirror of https://github.com/keycloak/keycloak.git synced 2026-05-01 20:52:51 -05:00
Code Issues Packages Projects Releases Wiki Activity
24,405 Commits 33 Branches 304 Tags
1cc1911ec35ffbf32d191f22dfd8eb75abcf7b09
Commit Graph

109 Commits

Author SHA1 Message Date
andymunro be29be6741 Edit Keycloak 23 part of Upgrading Guide 
Closes #27484

Signed-off-by: AndyMunro <amunro@redhat.com>
 2024-03-14 11:03:58 +01:00
Alexander Schwartz 1788cf2b09 Enable Infinispan metrics automatically if overall metrics are enabled 
Closes #27724

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-03-13 18:55:45 +01:00
Alexander Schwartz 6de5325d1c Limit the received content when handling the content as a String 
Closes #27293

Co-authored-by: rmartinc <rmartinc@redhat.com>
Signed-off-by: rmartinc <rmartinc@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-03-13 16:43:03 +01:00
Alexander Schwartz 967ceddfbb Fixing downstream documentation build (#27781) 
Closes #27780

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-03-12 08:37:41 +01:00
andymunro 66cffca3d4 Simplify Upgrade Guide structure 
Closes #27632

Signed-off-by: AndyMunro <amunro@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-03-11 16:22:46 +01:00
Alexander Schwartz 050acf0d94 Map Storage Removal: Remove deprecated model/legacy module (#27601) 
Closes #26657

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-03-08 15:17:24 +00:00
rmartinc dea15e25da Only add the nonce claim to the ID Token (mapper for backwards compatibility) 
Closes #26893

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-03-07 09:56:57 +01:00
AndyMunro 405feb0bc2 Edit Keycloak 24 changes chapter 
Closes 27452

Signed-off-by: AndyMunro <amunro@redhat.com>
 2024-03-02 21:11:35 +01:00
Václav Muzikář 3e3cb2222d Deprecate GELF (#27367) 
Closes #27364

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
 2024-02-29 12:07:28 +01:00
Alexander Schwartz 3950b4ed46 Cleaning old product documentation from the upstream documentation 
Closes #27324

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-02-28 13:30:39 +01:00
Jon Koops 89af9e3ffd Write announcement and documentation for Account Console v3 (#26318) 
Closes #26122

Signed-off-by: Jon Koops <jonkoops@gmail.com>
 2024-02-21 13:42:33 -05:00
Alexander Schwartz 3b6886d970 Add warning about too long attribute values as it can exhaust caches (#27126) 
Closes #27125

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-02-21 13:47:58 +01:00
Václav Muzikář 33425dacd9 Add proxy-headers option to the Keycloak CR (#27092) 
Closes #25179

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
 2024-02-21 12:19:37 +01:00
Václav Muzikář de60c9b469 Tweak the default memory request and limit in the Operator (#27170) 
Closes #27169

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
 2024-02-21 10:03:17 +01:00
Vlasta Ramik 76453550a5 User attribute value length extension 
Closes #9758

Signed-off-by: vramik <vramik@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Signed-off-by: Michal Hajas <mhajas@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Michal Hajas <mhajas@redhat.com>
 2024-02-16 08:09:34 +01:00
Martin Bartoš 59007844d9 Supported option to specify resource management for pods in Keycloak CR (#26661) 
Closes #26456

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
 2024-02-15 13:38:41 +01:00
rmartinc 4ff4c3f897 Increase internal algorithm security using HS512 and 128 byte hmac keys 
Closes #13080

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-02-15 08:16:45 +01:00
Marek Posolda 16fca0118e User profile - release notes and more migration instructions (#27003) 
closes #26917
closes #26932

Signed-off-by: mposolda <mposolda@gmail.com>


Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2024-02-15 08:14:16 +01:00
Steven Hawkins 77581d2527 fix: change from operator. to kc.operator. keys (#26414) 
closes #12352

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2024-02-08 15:03:20 +01:00
Tero Saarni ac1780a54f Added event for temporary lockout for brute force protector (#26630) 
This change adds event for brute force protector when user account is
temporarily disabled.

It also lowers the priority of free-text log for failed login attempts.

Signed-off-by: Tero Saarni <tero.saarni@est.tech>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-02-07 14:13:33 +00:00
zak905 bcd423b270 rephrase sentence in changes-22_0_0.adoc for more clarity 
Signed-off-by: zak905 <zakaria.amine88@gmail.com>
 2024-02-07 09:32:43 -03:00
zak905 c7db7bd528 Update custom rest endpoint documentation and example 
Add a mention about beans.xml and @Provider in the extending server documentation

Add beans.xml in the rest provider example

Add a mention about @Provider in the upgrading guides

Closes #25882

Signed-off-by: zak905 <zakaria.amine88@gmail.com>

Address suggested change for docs/documentation/server_development/topics/extensions.adoc

Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>

Address suggested change for docs/documentation/server_development/topics/extensions.adoc

Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>
Signed-off-by: zak905 <zakaria.amine88@gmail.com>

Address suggested change for docs/documentation/upgrading/topics/keycloak/changes-22_0_0.adoc

Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>
Signed-off-by: zak905 <zakaria.amine88@gmail.com>
 2024-02-07 09:32:43 -03:00
mposolda ab7426b857 User profile migration documentation for default validations and strange attributes 
closes #26634
closes #25979

Signed-off-by: mposolda <mposolda@gmail.com>

Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2024-02-06 16:48:03 -03:00
Stian Thorgersen c4b1fd092a Use code from RestEasy to create and set cookies (#26558) 
Closes #26557

Signed-off-by: stianst <stianst@gmail.com>
 2024-02-06 15:14:04 +01:00
Alexander Schwartz 43c200a8ce Update migration guide 
Closes #26490

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-02-05 14:41:44 +01:00
Martin Kanis a3fcacdab7 Map Store Removal: deprecate model legacy module 
Closes #26598

Signed-off-by: Martin Kanis <mkanis@redhat.com>
 2024-01-31 17:40:45 +01:00
Steven Hawkins f55e903092 Convert watching to polling and adding infinispan config file support (#26510) 
Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2024-01-31 12:57:34 +00:00
Stian Thorgersen bc3c27909e Cookie Provider (#26499) 
Closes #26500

Signed-off-by: stianst <stianst@gmail.com>
 2024-01-26 10:45:00 +01:00
Martin Kanis 7797f778d1 Map Store Removal: Rename legacy modules 
Closes #24107

Signed-off-by: Martin Kanis <mkanis@redhat.com>
 2024-01-25 16:29:16 +01:00
Thomas Darimont e7363905fa Change password hashing defaults according to OWASP recommendations (#16629) 
Changes according to the latest [OWASP cheat sheet for secure Password Storage](https://cheatsheetseries.owasp.org/cheatsheets/Password_Storage_Cheat_Sheet.html#pbkdf2):

- Changed default password hashing algorithm from pbkdf2-sha256 to pbkdf2-sha512
- Increased number of hash iterations for pbkdf2-sha1 from 20.000 to 1.300.000
- Increased number of hash iterations for pbkdf2-sha256 from 27.500 to 600.000
- Increased number of hash iterations for pbkdf2-sha512 from 30.000 to 210.000
- Adapt PasswordHashingTest to new defaults
- The test testBenchmarkPasswordHashingConfigurations can be used to compare the different hashing configurations.
- Document changes in changes document with note on performance and how
  to keep the old behaviour.
- Log a warning at the first time when Pbkdf2PasswordHashProviderFactory is used directly

Fixes #16629

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
 2024-01-24 18:35:51 +01:00
Stian Thorgersen fea49765f0 Remove Jetty 9.4 adapters (#26261) 
Only removing the distribution of the Jetty adapter for now, and leaving the rest for now. This is due to the complexity of removing all Jetty adapter code due to Spring, OSGI, Fuse, testsuite, etc. and it will be better to leave the rest of the clean-up to after 24 when we are removing most adapters

Closes #26255

Signed-off-by: stianst <stianst@gmail.com>
 2024-01-24 11:17:29 +01:00
Martin Kanis 84603a9363 Map Store Removal: Rename Legacy* classes (#26273) 
Closes #24105

Signed-off-by: Martin Kanis <mkanis@redhat.com>
 2024-01-23 13:50:31 +00:00
rmartinc 2f0a0b6ad8 Remove deprecated mode for saml encryption 
Closes #26291

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-01-18 16:52:10 +01:00
Lex Cao a960d0d8fa Add upgrading docs for changes to send-verify-email API 
Closes #26146.

Signed-off-by: Lex Cao <lexcao@foxmail.com>
 2024-01-18 09:48:01 +01:00
Alexander Schwartz b9498b91cb Deprecating the offline session preloading (#26160) 
Closes #25300

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-01-16 09:29:01 +01:00
rmartinc 179ca3fa3a Sanitize logs in JBossLoggingEventListenerProvider 
Closes #25078

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-01-10 16:50:27 +01:00
Alexander Schwartz 01939bcf34 Remove concurrent loading of remote sessions as at startup time only one node is up anyway. (#25709) 
Closes #22082

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Martin Kanis <martin-kanis@users.noreply.github.com>
 2024-01-09 16:55:22 +01:00
Sebastian Schuster 92d6da437b Fixed tiny doc typo (#26012) 
Signed-off-by: Sebastian Schuster <sebastian.schuster@bosch.io>
 2024-01-09 08:02:02 +01:00
Alexander Schwartz badf3f461d Making metrics with labels for embedded Infinispan the default 
Closes #25935

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-01-08 21:29:03 +01:00
Jon Koops ddcaa6dcbf Add release announcement and migration for new welcome theme (#25895) 
Closes #25894

Signed-off-by: Jon Koops <jonkoops@gmail.com>
 2024-01-08 13:10:51 +00:00
Steven Hawkins 7bde7c30cc fix: do not split on space for option errors (#25876) 
closes #25783

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2024-01-05 13:01:17 +01:00
Steven Hawkins 667ce4be9e enhance: supporting versioned features (#24811) 
also adding a common PropertyMapper validation method

closes #24668

Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
 2024-01-03 17:56:31 +01:00
Pedro Igor ceb085e7b8 Update the UPDATE_EMAIL feature to rely on the user profile configuration when rendering templates and validating the email 
Closes #25704

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2023-12-20 15:15:06 -03:00
Pedro Igor 778847a3ce Updating theme templates to render user attributes based on the user profile configuration 
Closes #25149

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2023-12-18 15:35:52 -03:00
Steven Hawkins e148021a67 fix: adding filtering to ignore anything runtime during a build (#25434) 
fix: adding filtering to ignore anything runtime during a build

closes: #25166

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
 2023-12-18 12:50:47 +00:00
Marek Posolda be935c2763 Incorrect version of the fix in release notes (#25661) 
closes #25660

Signed-off-by: mposolda <mposolda@gmail.com>
 2023-12-18 11:56:58 +01:00
Erwin Rooijakkers 860978b15a Change arg of getSubGroups to briefRepresentation 
Parameter name briefRepresentation should mean briefRepresentation,
   not full. This way callers will by default get the full
   representation, unless true is passed as value for
   briefRepresentation.

   Fixes #25096

Signed-off-by: Erwin Rooijakkers <erwin@rooijakkers.software>
 2023-12-14 17:23:27 +01:00
Václav Muzikář e4c348e99e Add new --proxy-headers option (#25178) 
* Add new `--proxy-headers` option

Closes #23431

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>

* Address review comments vol. 03

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>

* Address review comments vol. 04

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>

---------

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2023-12-13 10:48:12 -03:00
Pedro Igor fa79b686b6 Refactoring user profile interfaces and consolidating user representation for both admin and account context 
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2023-12-13 08:27:55 +01:00
Steven Hawkins ba3451ff2e doc: adding a note about removing the (#25436) 
closes: #25307

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2023-12-08 17:47:33 +01:00