keycloak

mirror of https://github.com/keycloak/keycloak.git synced 2025-12-16 20:15:46 -06:00

Author	SHA1	Message	Date
Alexander Schwartz	3111148fe7	Fixing link to external docs Closes #33991 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-10-18 06:52:31 -03:00
Alexander Schwartz	9092be9640	Fixing broken links after KC26 docs changes Closes #33576 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-10-18 06:52:05 -03:00
Ricardo Martin	f671e4c38b	Fix CRL verification failing due to client cert not being in chain (#29582 ) closes #19853 Signed-off-by: Micah Algard <micahalgard@gmail.com> Signed-off-by: rmartinc <rmartinc@redhat.com> Co-authored-by: Micah Algard <micahalgard@gmail.com> Co-authored-by: rmartinc <rmartinc@redhat.com> (cherry picked from commit `74a80997c7`)	2024-10-17 13:10:58 +02:00
rmartinc	1cda1be1e2	Change certificates for SAML testing Closes #34004 In upstream this was solved by `e9c9efc3f4` but the backport needs to strip the commit and just maintain the certificate changes. Signed-off-by: rmartinc <rmartinc@redhat.com>	2024-10-17 10:31:43 +02:00
Ricardo Martin	56da6f0c71	Fixes for FIPS IT in CI (22.0) (#33921 ) * Temporarily comment FIPS CI until it is figured what causes the issue closes #33875 Signed-off-by: mposolda <mposolda@gmail.com> * Run all maven commands inside the ubi docker container Closes #33881 Signed-off-by: rmartinc <rmartinc@redhat.com> --------- Signed-off-by: mposolda <mposolda@gmail.com> Signed-off-by: rmartinc <rmartinc@redhat.com> Co-authored-by: mposolda <mposolda@gmail.com>	2024-10-16 10:53:04 +02:00
Ricardo Martin	78bb4f8733	Bump manusa/actions-setup-minikube from 2.11.0 to 2.13.0 (#33801 ) (#33935 ) Bumps [manusa/actions-setup-minikube](https://github.com/manusa/actions-setup-minikube) from 2.11.0 to 2.13.0. - [Release notes](https://github.com/manusa/actions-setup-minikube/releases) - [Commits](https://github.com/manusa/actions-setup-minikube/compare/v2.11.0...v2.13.0) --- updated-dependencies: - dependency-name: manusa/actions-setup-minikube dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (cherry picked from commit `268229dbe8`) Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-10-15 12:50:44 +02:00
Stefan Guilhen	dbf5bc6af2	Fix various issues holding up CI (#33086 ) - Disables the remote operator tests, which will have to be fixed later. - Fixes the action expired error which occurs when accessing regular registration page with Organizations enabled. - Fixes a race condition in the test suite causing sporadic failures. Closes #33064 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com> Signed-off-by: rmartinc <rmartinc@redhat.com> Signed-off-by: Jon Koops <jonkoops@gmail.com> Co-authored-by: rmartinc <rmartinc@redhat.com> Co-authored-by: Jon Koops <jonkoops@gmail.com>	2024-10-04 15:32:16 +02:00
Giuseppe Graziano	ef75a4dc50	Remove root auth session after backchannel logout Closes #32197 Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com> (cherry picked from commit `b46fab2308`)	2024-10-03 08:50:08 +02:00
Stian Thorgersen	5d1e20efd3	Improve handling for loopback redirect-uri validation (#197 ) Signed-off-by: stianst <stianst@gmail.com>	2024-09-16 13:34:01 +02:00
Ricardo Martin	47c04218ce	Use references to obtain the signed elements in a signature (#194 ) Closes keycloak/keycloak-private#191 Signed-off-by: rmartinc <rmartinc@redhat.com>	2024-09-13 12:49:03 +02:00
Alexander Schwartz	e7e16b44b7	Do not automatically re-import users if they already exist locally when searching by attributes (#32888 ) Closes #32870 Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Stefan Guilhen <sguilhen@redhat.com>	2024-09-13 12:43:20 +02:00
Ricardo Martin	5b3de0c7e7	Honor turnOffChangeSessionIdOnLogin in SAML adapter (#187 ) Closes keycloak/keycloak-private#183 Signed-off-by: rmartinc <rmartinc@redhat.com>	2024-08-20 09:36:24 +02:00
Ricardo Martin	e4fb4f73fc	SAML IdMapperUpdaterSessionListener should be added always and must implement HttpSessionIdListener interface (#32239 ) Closes #32084 Signed-off-by: rmartinc <rmartinc@redhat.com>	2024-08-20 09:19:57 +02:00
rmartinc	0f270dbf30	Adding upgrading notes for brute force changes Closes #31960 Signed-off-by: rmartinc <rmartinc@redhat.com>	2024-08-09 16:38:38 +02:00
rmartinc	b25c28458a	Remove the attempt in brute force when the off-thread finishes Closes #31881 Signed-off-by: rmartinc <rmartinc@redhat.com>	2024-08-09 16:38:38 +02:00
Pedro Igor	d78b3072ff	Support for blocking concurrent requests when brute force is enabled Closes #31726 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Douglas Palmer <dpalmer@redhat.com> Signed-off-by: mposolda <mposolda@gmail.com>	2024-08-09 16:38:38 +02:00
Alexander Schwartz	1cf16ce42d	All CURL commands should check the HTTP response code (#31599 ) Closes #31598 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-07-26 12:39:03 +02:00
Miquel Simon	5f8f59c8aa	LDAPSyncTest - additional removal of users at the end of the test Necessary when running with external AD Closes #27499 (cherry picked from commit `be7775a9be`) Signed-off-by: Pavel Drozd <pdrozd@redhat.com> Co-authored-by: Pavel Drozd <pdrozd@redhat.com>	2024-07-26 12:18:21 +02:00
Miquel Simon	3f8c12ba25	Updated connection configuration for MSSQL test container Closes #31558 Signed-off-by: Miquel Simon <msimonma@redhat.com> (cherry picked from commit `aab7a912c4`) Signed-off-by: Miquel Simon <msimonma@redhat.com>	2024-07-25 09:10:23 +02:00
Aboullos	6265ef68d7	Add step to Google Social Login Closes #30335 Signed-off-by: Alfredo Moises Boullosa <aboullos@redhat.com>	2024-07-18 11:06:06 +02:00
Ricardo Martin	be23d70f23	Fix test LDAP connection with multiple ldap connection urls Previously, the given connection string was check with URI.create(..) which failed when multiple space separated LDAP URLs were given. Closes #31267 Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Thomas Darimont <thomas.darimont@googlemail.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2024-07-16 14:20:11 +00:00
rmartinc	4af8c99fd4	Change link to https://github.com/eclipse/microprofile/wiki/JWT_Auth Closes #31219 Signed-off-by: rmartinc <rmartinc@redhat.com> (cherry picked from commit `e80c3fee9b`)	2024-07-12 08:59:28 +02:00
rmartinc	0912c62b40	Do not compare user DN using DN comparison as Ad can login via username@domain Closes #31196 Signed-off-by: rmartinc <rmartinc@redhat.com> (cherry picked from commit `bd90ead892`)	2024-07-11 17:10:05 +02:00
Pedro Igor	c4ef3a3006	Testing ldap connection should not process or bind the credentials (#31081 ) Closes #30821 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-07-11 00:24:08 +02:00
rmartinc	2c6da042b8	Improve consent deletion when a realm is removed Closes #30992 Signed-off-by: rmartinc <rmartinc@redhat.com> (cherry picked from commit `ce195b81f8`)	2024-07-10 16:17:26 +02:00
Steve Hawkins	d170ee7c2e	fix: scale to zero for version changes backport of #30450 closes: #30449 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2024-07-09 19:04:57 +02:00
wojnarfilip	c5d54964ae	Backport update in Bitbucket login flow Signed-off-by: wojnarfilip <fwojnar@redhat.com>	2024-07-09 07:32:05 -03:00
Jon Koops	3e426267b6	Fix return type of clients.findRole() in @keycloak/keycloak-admin-client (#27429 ) (#30882 ) Closes #27444 Signed-off-by: Simon Hanna <simon.hanna@aeb.com> (cherry picked from commit `401e1bd636`) Co-authored-by: Simon Hanna <33220646+simhnna@users.noreply.github.com>	2024-06-27 14:14:34 +00:00
Jon Koops	d618a27283	Use the Keycloak server URL for common resources (#30823 ) (#30827 ) Closes #30541 Signed-off-by: Jon Koops <jonkoops@gmail.com> (cherry picked from commit `cd0dbdf264`)	2024-06-26 16:19:27 +00:00
graziang	ec4b43bca2	Revoked token cache expiration fix Added 1 second to the duration of the cache for revoked tokens to prevent them from still being valid for 1 second after the expiration date of the access token. Closes #26113 Signed-off-by: graziang <g.graziano94@gmail.com> (cherry picked from commit `54b40d31b6`)	2024-06-26 12:27:20 +02:00
Douglas Palmer	1f2ddde6f3	Broken external links Closes #30717 Signed-off-by: Douglas Palmer <dpalmer@redhat.com>	2024-06-25 18:09:02 +02:00
Alexander Schwartz	5f051c99c1	Don't check docs in upstream as this is a release branch (#30626 ) Closes #30619 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-06-21 08:32:43 +02:00
rmartinc	bde8568d41	Improvements for ldap test authentication Closes #30434 Signed-off-by: rmartinc <rmartinc@redhat.com> (cherry picked from commit `c51640546d`)	2024-06-18 15:32:09 +02:00
Ricardo Martin	f7dd85e5d5	Allow LDAP provider to search using any attribute configured via mappers (#26235 ) Closes #22436 Signed-off-by: rmartinc <rmartinc@redhat.com> (cherry picked from commit `3bc074913e`)	2024-06-18 10:54:53 +02:00
mposolda	861780447a	Adding method LDAPStorageMapper.getUserAttributes() (cherry picked part of `2c611cb8`) Signed-off-by: mposolda <mposolda@gmail.com>	2024-06-18 10:54:53 +02:00
Ricardo Martin	ccf534a102	Fixes for LDAP group membership and search in chunks Closes #23966 (cherry picked from commit `f78c54fa42`)	2024-06-18 10:54:53 +02:00
rmartinc	adb4eda515	Use conditions instead of String for filters and just use default escape strategy Closes https://github.com/keycloak/keycloak/issues/24767 Signed-off-by: rmartinc <rmartinc@redhat.com> (cherry picked from commit `4e7bd76954`)	2024-06-18 10:54:53 +02:00
rmartinc	8d6f9ab153	Logout from all clients after IdP logout is performed Closes #25234 Signed-off-by: rmartinc <rmartinc@redhat.com> (cherry picked from commit `7d05a7a013`)	2024-06-11 10:36:57 +02:00
Alexander Schwartz	c31c3f3a87	Remove links to Jetty docs which are no longer available on their website (#30167 )	2024-06-07 08:39:25 +02:00
rmartinc	54c91e38a8	Generate RESTART_AUTHENTICATION event on success Closes #29385 Signed-off-by: rmartinc <rmartinc@redhat.com> (cherry picked from commit `b258b459d7`)	2024-06-07 07:40:11 +02:00
Bruno Oliveira da Silva	efdf088b7e	[Backport] Snyk report to identify branches impacted by a CVE Closes #29813	2024-06-06 11:37:37 -03:00
Steven Hawkins	2bbe6e6ed2	Backports for test stability (#29752 ) * backport: cleanup logic and secret test stabilization related to: #24797 #23940 #27080 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * backporting test diagnostics Signed-off-by: Steve Hawkins <shawkins@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2024-06-06 13:20:51 +02:00
Peter Skopek	86ee66f451	Aggregated javadoc generation fix Closes #29816 Signed-off-by: Peter Skopek <pskopek@redhat.com> (cherry picked from commit `25548a7ccc`)	2024-06-05 15:34:19 +02:00
Jon Koops	607acb03d1	Enable user when removing temporary lock (#29618 ) (#29736 ) Closes #29336 Signed-off-by: Himanshi Gupta <higupta@redhat.com> (cherry picked from commit `95d883c76f`)	2024-06-05 12:03:16 +00:00
Miquel Simon	cf417e93c2	Upgrade supported PostgreSQL to version 16 Closes #29875 Signed-off-by: Miquel Simon <msimonma@redhat.com>	2024-06-04 10:06:29 +02:00
Giuseppe Graziano	5756cc244c	Encrypted KC_RESTART cookie and removed sensitive notes (#168 ) Closes #keycloak/keycloak-private#162 Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>	2024-05-21 12:01:50 +02:00
Ricardo Martin	e014504ab4	Missing auth checks in some admin endpoints (#169 ) Closes keycloak/keycloak-private#156 Signed-off-by: rmartinc <rmartinc@redhat.com>	2024-05-21 08:26:22 +02:00
Stian Thorgersen	af9d1a6eaa	Fix release labels (#29727 )	2024-05-21 07:47:51 +02:00
Tomas Ondrusko	fbe4e2c281	Remove Twitter workaround (#28232 ) Relates to #23252 Signed-off-by: Tomas Ondrusko <tondrusk@redhat.com> (cherry picked from commit `3160116a56`)	2024-05-17 16:17:46 +02:00
Pedro Ruivo	872695e3d4	Upgrade Infinispan to 14.0.27.Final Closes #28033 Signed-off-by: Pedro Ruivo <pruivo@redhat.com>	2024-05-15 15:07:01 +02:00

1 2 3 4 5 ...

22794 Commits