mirror/keycloak
1
0
Fork 0
mirror of https://github.com/keycloak/keycloak.git synced 2026-05-02 05:00:58 -05:00
Code Issues Packages Projects Releases Wiki Activity
30,007 Commits 33 Branches 304 Tags
2f4f36eabc6889822a7ee6043e0358ca967e1808
Commit Graph

383 Commits

Author SHA1 Message Date
Šimon Vacek 8f0cbcb244 Run new framework db testsuite on Aurora 
Closes #41940

Signed-off-by: Simon Vacek <simonvacky@email.cz>
 2026-01-22 20:14:54 +01:00
vramik 111ba36504 Organization Groups Core Backend & API 
Closes #45562

Signed-off-by: vramik <vramik@redhat.com>
 2026-01-22 09:39:24 -03:00
Alexander Schwartz fd9c513c9c When creating or updating a Kubernetes IDP, check if issuer URL is unique 
Closes #45449

Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
 2026-01-21 17:52:11 +01:00
Lukas Hanusovsky 59396057c1 Removing cross module dependency between tests/base and tests/clustering. (#45353) 
Signed-off-by: Lukas Hanusovsky <lhanusov@redhat.com>
 2026-01-21 17:42:39 +01:00
Giuseppe Graziano b74be6ed41 JWT Authorization Grant for Google idp (#45543) 
Closes #45179

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
 2026-01-21 16:17:52 +01:00
rmartinc b7a23e88d2 Test for authorization chaining across domains 
Closes #45468

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2026-01-21 15:52:59 +01:00
rmartinc 7e20b87136 Add abstract property for themes and do not display base for selection 
Closes #41924

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2026-01-21 15:42:52 +01:00
Hathoute ea2083ed2c Support for clients in workflows 
Signed-off-by: Hathoute <whitesmith.thedj@gmail.com>
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2026-01-21 11:20:30 -03:00
Giuseppe Graziano 3c3915556c OIDC identity provider issuer config 
Closes #45590

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
 2026-01-20 13:19:16 +01:00
Stian Thorgersen 0223b6823b Updates testframework to JUnit 6 and Test Containers 2.x. Removed transitive dependencies from keycloak-junit5 
CLoses #44350, Closes #45383, Closes #44490

Signed-off-by: stianst <stianst@gmail.com>
 2026-01-20 11:42:28 +01:00
forkimenjeckayang fa28ddddb2 [OID4VCI] Disable OID4VCI functionality when Verified Credentials switch is off (#44995) 
closes #44622


Signed-off-by: forkimenjeckayang <forkimenjeckayang@gmail.com>
Signed-off-by: mposolda <mposolda@gmail.com>
Co-authored-by: mposolda <mposolda@gmail.com>
 2026-01-19 14:09:42 +01:00
rmartinc 07b9b9656b Allow client_id as an audience in the JWT Authorization Grant and Client Assertions 
Closes #45178

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2026-01-16 15:48:28 +01:00
stianst 8aaf3e4606 Allow re-using server when running tests with the new framework 
Closes #44101

Signed-off-by: stianst <stianst@gmail.com>
 2026-01-16 09:11:43 -03:00
Martin Kanis 4f91b5246e User REST Admin API - count and search returns different amount of users 
Closes #45219

Signed-off-by: Martin Kanis <mkanis@redhat.com>
 2026-01-16 07:29:42 -03:00
Stefan Guilhen 5ed7894502 Add step implementation to remove user attributes 
Closes #44650

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2026-01-15 14:28:35 -03:00
Stefan Guilhen 744dfd0468 Allow ISO-8601 time formats for the workflows step-runner-task-interval config 
Closes #45172

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2026-01-15 14:27:20 -03:00
Sebastian Schuster 9d0f679ece 45417 fixed unmanaged attributes to not allow writing when only admin can view policy is enabled 
Signed-off-by: Sebastian Schuster <sebastian.schuster@bosch.com>
 2026-01-15 14:06:54 -03:00
Pedro Igor ab351170b4 Support aggregated policies during partial evaluation 
Closes #45324

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2026-01-15 15:20:52 +01:00
ksushant881 b2a1219937 Rename config 
Closes #44676

Signed-off-by: ksushant881 <ksushant881@gmail.com>
 2026-01-13 16:42:07 -03:00
ksushant881 def4edd7d4 Make target configurable in workflow notify user step 
Closes #44676

Signed-off-by: ksushant881 <ksushant881@gmail.com>
 2026-01-13 16:42:07 -03:00
Ryan Emerson c8635f9bf2 ISPN16: Upgrade to Infinispan 16.0.5 
Closes #45341

- Remove query modules
- Remove unused config file
- Update config file versions
- Update jgroups attributes
- Remove ISPN-16595 workaround
- Call HotRodServer#postStart in HotRodServerRule to start caches as well as the server
- Simplify cluster-ha.xml
- Utilise org.infinispan.commons.util.TimeQuantity in CacheConfiguration
- Cleanup when InfinispanContainer startup fails
- RemoteUserSessionProvider remote query calls must not use negative values for offsets and maxResults
- Remove use of deprecated org.infinispan.server.test.core.InfinispanContainer class
- Use testcontainers-infinispan dependency
- Explicitly utilise "legacy" metrics
- Remove explicit `name-as-tags` configuration as Infinispan 16 defaults to true
- Remove test configuration not required since #31807

Signed-off-by: Ryan Emerson <remerson@ibm.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>
 2026-01-13 17:26:43 +01:00
Stefan Guilhen 75b0a8aa2a When fetching scheduled workflows, return all steps with status completed/pending 
Closes #45212

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2026-01-13 14:34:13 +01:00
Pedro Igor c33d94da65 Allow admins with any admin role to map roles if the constraints apply 
Closes #44371
Closes #45182

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2026-01-12 12:56:30 -03:00
Ricardo Martin 1aa1621eaa Use MIME decoder instead of the default one to replace deprecated Base64 class 
Closes #45226

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2026-01-09 16:38:09 +01:00
Stian Thorgersen 91a6fc880a Add default surefire args for tests using new testframework 
Closes #44098, Closes #44099

Signed-off-by: stianst <stianst@gmail.com>
 2026-01-09 08:33:54 +01:00
Pedro Ruivo 99828b4cc4 Fix Cluster Compatibility Tests 
Closes #45221

Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
 2026-01-07 15:26:19 +00:00
Alexander Schwartz 3b01bbb551 Adding x-robots HTTP header to all Keycloak resources (#44864) 
Closes #44863

Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
 2026-01-07 15:11:54 +01:00
ksushant881 5939864b76 Add action that removes a required action step in workflow 
Closes #44647

Signed-off-by: ksushant881 <ksushant881@gmail.com>
 2026-01-05 16:10:20 -03:00
Pedro Igor 0d5766f3a8 Allow running scheduled workflows 
Closes #44865

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2026-01-05 13:03:47 -03:00
Ruchika Jha 60b369c622 Validate client session timeout and lifetime settings on realm settings edit 
Closes #44910

Signed-off-by: Ruchika <Ruchika.Jha1@ibm.com>
Signed-off-by: Ryan Emerson <remerson@ibm.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Co-authored-by: Ryan Emerson <remerson@ibm.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>
 2026-01-05 08:50:56 +00:00
Stefan Guilhen 66f3868ccf Suppress the step's priority in the returned workflow JSON/YAML 
Closes #45075

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2025-12-29 10:26:21 -03:00
Stefan Guilhen 985ec6d306 Add name uniqueness validation to workflows 
Closes #43914

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>

# Conflicts:
#	tests/base/src/test/java/org/keycloak/tests/workflow/WorkflowManagementTest.java
 2025-12-29 10:24:56 -03:00
Stefan Guilhen e6b2f0dc60 Review workflows test coverage (#45041) 
Closes #42694

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2025-12-19 13:06:30 -05:00
Stian Thorgersen 78274ccc5d Migrate parts of model package to new test framework (#45024) 
Part of #44983

Signed-off-by: stianst <stianst@gmail.com>
 2025-12-19 14:52:23 +01:00
Stian Thorgersen 47c1afde5a Migrate parts of model package to new test framework (#44988) 
Part of #44983

Signed-off-by: stianst <stianst@gmail.com>
 2025-12-18 16:48:58 +01:00
Pedro Igor f36819e943 Adding join and leave group steps (#44841) 
Closes #44649

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-12-18 13:07:23 +01:00
Giuseppe Graziano 790fb557db Limit access Token expiration for jwt authorization grant (#44775) 
Closes #43972


Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
 2025-12-18 09:21:29 +01:00
Lukas Hanusovsky 92849ef5d3 Move AdminClientTest to the new testsuite (#44705) 
* Moving files to the new test suite

Signed-off-by: Simon Vacek <simonvacky@email.cz>

* Move AdminClientTest to the new testsuite

Part of: #35040

Signed-off-by: Simon Vacek <simonvacky@email.cz>
Co-authored: Lukas Hanusovsky <lhanusov@redhat.com>

* Refactoring of ManagedCertificates

* Fix compatiblity issue with ManagedCertificates dependency

Signed-off-by: stianst <stianst@gmail.com>

* Fixing trustStrategy for SSLContext truststore.

Signed-off-by: Lukas Hanusovsky <lhanusov@redhat.com>

* Fix FIPS

Signed-off-by: stianst <stianst@gmail.com>

---------

Signed-off-by: Simon Vacek <simonvacky@email.cz>
Signed-off-by: stianst <stianst@gmail.com>
Signed-off-by: Lukas Hanusovsky <lhanusov@redhat.com>
Co-authored-by: Simon Vacek <simonvacky@email.cz>
Co-authored-by: stianst <stianst@gmail.com>
 2025-12-17 14:31:22 +00:00
Sebastian Łaskawiec 9597537bf3 Additional fields for the Welcome Resource (#44758) 
* Additional fields added to the Welcome Page

Signed-off-by: Sebastian Łaskawiec <sebastian.laskawiec@gmail.com>

* Updated the order of fields

Signed-off-by: Sebastian Łaskawiec <sebastian.laskawiec@gmail.com>

---------

Signed-off-by: Sebastian Łaskawiec <sebastian.laskawiec@gmail.com>
 2025-12-17 13:11:44 +01:00
Lukas Hanusovsky e8c6a7b98d [Test Framework] Migrate initial WebAuthn setup + WebAuthnRegisterAndLoginTest. (#44016) 
Signed-off-by: Lukas Hanusovsky <lhanusov@redhat.com>
 2025-12-15 15:01:42 +01:00
Stefan Guilhen 22c144dd30 Rename workflow events 
- USER_ADDED -> USER_CREATED
- USER_ROLE_ADDED -> USER_ROLE_GRANTED
- USER_ROLE_REMOVED -> USER_ROLE_REVOKED

Closes #44879

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2025-12-12 14:15:24 -03:00
Stefan Guilhen 7858e6ff6b Change workflow condition grammar to accept the token 'not' as the negation operator instead of '!' 
Closes #44880

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2025-12-12 13:31:55 -03:00
Stefan Guilhen 0fc9650acc Set Workflows as tech preview 
Closes #44881

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2025-12-12 13:05:59 -03:00
stianst a07500045f Move workflow tests out of admin package 
Closes #44847

Signed-off-by: stianst <stianst@gmail.com>
 2025-12-12 11:54:58 -03:00
Pedro Igor 84a0324d60 Adding grant and revoke role steps 
Closes #44648

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-12-12 09:38:39 -03:00
Pedro Igor 138d1e0588 Allow restarting the step chain at a specific position 
Closes #44789

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-12-12 09:38:01 -03:00
Ruchika Jha 26fe8dc7d8 Added validation for client session timeout post comparing the realm session timeouts 
Closes #41019

Signed-off-by: ruchikajha95 <Ruchika.Jha1@ibm.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
 2025-12-11 13:58:04 +01:00
Stian Thorgersen d25a731ae5 Fix Chrome and Firefox in new test framework on GitHub Actions (#44804) 
Closes #44776

Signed-off-by: stianst <stianst@gmail.com>
 2025-12-10 12:22:47 -03:00
Martin Kanis ef011ea4d2 Fix compilation error in AbstractUserTest after merging #43620 (#44777) 
Signed-off-by: Martin Kanis <mkanis@redhat.com>
 2025-12-09 13:57:46 +01:00
Martin Kanis 5ee4cb5157 Fix for missing object representation in admin event log when deleting user, group, client (#43620) 
* Fix for missing object representation in admin event log when deleting user, group, client

Closes #33009

Signed-off-by: jwozniakowski <wozniakowski@netguardians.ch>

* Fix issues and add role representation when deleting a role

Closes #33009

Signed-off-by: Martin Kanis <mkanis@redhat.com>

---------

Signed-off-by: jwozniakowski <wozniakowski@netguardians.ch>
Signed-off-by: Martin Kanis <mkanis@redhat.com>
Co-authored-by: jwozniakowski <wozniakowski@netguardians.ch>
 2025-12-09 12:32:18 +01:00