mirror/keycloak
1
0
Fork 0
mirror of https://github.com/keycloak/keycloak.git synced 2026-05-20 08:00:11 -05:00
Code Issues Packages Projects Releases Wiki Activity
26,467 Commits 34 Branches 307 Tags
358d234538d242568628fe7dad5811de34e2ffca
Commit Graph

218 Commits

Author SHA1 Message Date
Ryan Emerson 902abfdae4 JDBC_PING as default discovery protocol 
Closes #29399

- Add ProviderFactory#dependsOn to allow dependencies between
  ProviderFactories to be explicitly defined
- Disable Infinispan default shutdownhook disabled to ensure lifecycle
  is managed exclusively by Keycloak
- Remove Infinispan shutdown hook in KeycloakRecorder and manage
  EmbeddedCacheManager lifecycle only in DefaultInfinispanConnectionProviderFactory#close

Signed-off-by: Ryan Emerson <remerson@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-10-22 20:19:19 +00:00
Pedro Ruivo fffa9aa72e Enable virtual threads in Infinispan and JGroups by default 
Closes #33939

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-10-21 16:02:28 +00:00
Jon Koops 7657e71be1 Automatically retrieve configuration for authorization 
Closes #14562

Signed-off-by: Jon Koops <jonkoops@gmail.com>
 2024-10-18 14:03:36 +02:00
Pedro Ruivo 464fc90519 Fail to start if work cache is not replicated 
Keycloak will now fail to start if the work cache is replicated.
Listeners require the data to be local.

Closes #33702

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-10-09 19:40:24 +00:00
Pedro Ruivo 0e3554934e Read cache-ispn.xml from conf/ by default 
Fixed #31492

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-10-09 16:40:17 +00:00
Alexander Schwartz d8c8c6a0be Fixing broken links after KC26 docs changes (#33577) 
Closes #33576

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-10-04 13:59:47 +02:00
Jon Koops b475f936d5 Use crypto.randomUUID() to generate UUIDs for Keycloak JS (#33518) 
Closes #33515

Signed-off-by: Jon Koops <jonkoops@gmail.com>
 2024-10-03 12:07:57 -03:00
Stian Thorgersen 2be2b2ffe5 Upgrade guide updates for renaming account, admin, and login features (#33521) 
* Upgrade guide updates for renaming account, admin, and login features

Signed-off-by: stianst <stianst@gmail.com>

* Update docs/documentation/upgrading/topics/changes/changes-26_0_0.adoc

Signed-off-by: Stian Thorgersen <stian@redhat.com>

---------

Signed-off-by: stianst <stianst@gmail.com>
Signed-off-by: Stian Thorgersen <stian@redhat.com>
 2024-10-03 15:05:48 +02:00
Jon Koops aacdf80664 Add shim for Web Crypto API to admin and account console (#33480) 
Closes #33330

Signed-off-by: Jon Koops <jonkoops@gmail.com>
 2024-10-03 10:51:23 +00:00
Alexander Schwartz cb12f03003 Rework AWS Lambda doc to show it is required (#33462) 
Closes #33461
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-10-02 12:42:11 +02:00
Jon Koops 21704a70c1 Update documentation and release notes for Keycloak JS (#33409) 
Closes #32843

Signed-off-by: Jon Koops <jonkoops@gmail.com>
 2024-10-01 10:29:23 +02:00
Peter Zaoral d5d6390b1c Make Keycloak fail with an error when the persisted build options differs from those provided (#33241) 
* PropertyException is now thrown instead of a warning
* Operator guides clarification around health and metrics options

Closes: #32717

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
 2024-09-30 19:28:23 +02:00
Steven Hawkins 5d99d91818 fix: allows for the detection of a master realm with --import-realms (#32914) 
also moving initial bootstrapping after import

closes: #32689

Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
 2024-09-30 14:40:16 +02:00
Steven Hawkins 53102521d2 fix: correcting the recovery upgrade note (#33356) 
closes: #33307

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2024-09-30 08:22:29 -04:00
mposolda 8f038f19dd Upgrade BCFIPS to 2.0 
closes #30415

Signed-off-by: mposolda <mposolda@gmail.com>
 2024-09-26 06:52:21 +02:00
Jon Koops 021a2af2fd Compute SHA-256 digest for PKCE using the Web Crypto API (#33251) 
Closes #33250

Signed-off-by: Jon Koops <jonkoops@gmail.com>
 2024-09-25 16:19:16 +02:00
Martin Bartoš 84564f080a Redirect to relative-path from the root path (#32868) 
Closes #32863

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
 2024-09-18 16:37:28 +02:00
mposolda f1ec0a9bb6 Release notes and upgrading guide for the client libraries 
closes #30815

Signed-off-by: mposolda <mposolda@gmail.com>

Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
Signed-off-by: Marek Posolda <mposolda@gmail.com>
 2024-09-18 14:52:11 +02:00
Jon Koops 8bb3598129 Remove deprecated setOrCreateChild() method from Admin Client (#33022) 
Closes #33021

Signed-off-by: Jon Koops <jonkoops@gmail.com>
 2024-09-18 09:33:54 +02:00
Václav Muzikář 83c00731c3 Upgrade to Quarkus 3.14.2 (#32519) 
Closes #32517

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
 2024-09-13 20:18:48 +02:00
Jon Koops 188893222f Remove references of statically served Keycloak JS from documentation 
Closes #32821

Signed-off-by: Jon Koops <jonkoops@gmail.com>
 2024-09-12 09:38:00 +02:00
Pedro Ruivo 24fce87a8e Deprecate old remote store (feedback) 
Closes #32577

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-09-11 14:08:53 +00:00
Alexander Schwartz b88ecc0237 Removing the extra two-minute Window for persistent user sessions (#32660) 
Closes #28418

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Signed-off-by: Michal Hajas <mhajas@redhat.com>
Co-authored-by: Michal Hajas <mhajas@redhat.com>
 2024-09-09 09:28:48 +02:00
Pedro Ruivo 3274591fe1 Deprecate old remote store 
Closes #32577

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-09-04 10:25:51 +00:00
rmartinc cce9ae94c7 Move documentation to keycloak-client 
Closes #31870

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-09-04 10:55:46 +02:00
Theresa Henze a1c23fef8c introduce event types to update/remove credentials 
Closes #10114

Signed-off-by: Theresa Henze <theresa.henze@bare.id>
 2024-09-03 18:27:27 +02:00
Thomas Darimont 88a5c96fff Add kc_action to redirect URI after a required action is cancelled (#31925) 
Closes #31894

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
 2024-09-03 14:26:23 +00:00
Jon Koops 2d17024b14 Remove redirect_uri support from OIDC logout endpoint 
Closes #10983

Signed-off-by: Jon Koops <jonkoops@gmail.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
 2024-08-30 12:52:49 +00:00
Michal Hajas af53af1506 Document persistent sessions are enabled by default 
Closes #32387

Signed-off-by: Michal Hajas <mhajas@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Pedro Ruivo <pruivo@users.noreply.github.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-08-30 09:20:58 +00:00
Václav Muzikář 7d3dcae96e Additional datasources now require XA (#32403) 
* Additional datasources now require XA

Closes #32402

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>

* Apply suggestions from code review

Co-authored-by: Steven Hawkins <shawkins@redhat.com>
Signed-off-by: Václav Muzikář <vaclav@muzikari.cz>

* Relax validation

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>

* Added a note on recovery

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>

* Fix `CustomJpaEntityProviderDistTest`

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>

---------

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
Signed-off-by: Václav Muzikář <vaclav@muzikari.cz>
Co-authored-by: Steven Hawkins <shawkins@redhat.com>
 2024-08-29 11:16:38 +02:00
Václav Muzikář 9bbfec5cdd Remove GELF (#32230) 
Closes #27365

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
 2024-08-28 21:25:05 +02:00
Steven Hawkins 29eb0171de task: remove hostname v1 (#32352) 
closes: #27731

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2024-08-28 17:48:06 +02:00
Jon Koops 5ac8ffa5b5 Move unrelated files out of common resources (#32285) 
Closes #24861

Signed-off-by: Jon Koops <jonkoops@gmail.com>
 2024-08-22 09:57:15 +02:00
Steven Hawkins 087647dab3 fix: adding docs around client redirect uris and hostname-strict (#32101) 
* fix: adding docs around admin client redirect uris and hostname-strict

closes: #31640

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update docs/documentation/upgrading/topics/changes/changes-25_0_0.adoc

Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

* Update docs/documentation/upgrading/topics/changes/changes-25_0_0.adoc

Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
 2024-08-21 14:19:30 +00:00
yelhouti e8840df0e0 Fix: admin GUI not working with 1000s of realms 
Search by RealmName is done before loading all realms when filtering

Closes #31956

Signed-off-by: Youssef El Houti <youssef.elhouti@gmail.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-08-21 14:58:36 +02:00
Pedro Ruivo 4675a4eda9 Deprecate UserSessionCrossDCManager 
Fixes #31878

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
 2024-08-21 08:52:39 +02:00
Stefan Guilhen fa7c2b5da6 Address review comments 
Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2024-08-19 09:06:35 -03:00
Stefan Guilhen f82159cf65 Rework logic to fetch IDPs for the login page so that IDPs are fetched from the provider and not filtered in code. 
Closes #32090

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2024-08-19 09:06:35 -03:00
Václav Muzikář cb418b0bfc Upgrade to Quarkus 3.13.2 (#31678) 
* Upgrade to Quarkus 3.13.2

Closes #31676

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
Co-authored-by: Peter Zaoral <pzaoral@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
 2024-08-16 11:41:34 +02:00
Michal Hajas 36ad5fb3bd Remove information about online_user_session table 
Closes #32178

Signed-off-by: Michal Hajas <mhajas@redhat.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
 2024-08-16 09:23:14 +02:00
Steven Hawkins ea3937f37c fix: always replacing placeholders (#31871) 
closes: #31625

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2024-08-12 16:20:47 +00:00
Pedro Igor 3ab2446074 Do not return identity providers when querying the realm representation 
Closes #21072

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-08-07 10:06:51 -03:00
rmartinc acbbfde4ab Adding upgrading notes for brute force changes 
Closes #31960

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-08-07 14:38:30 +02:00
Ryan Emerson db14ab1365 Refactor HA guide to refer to generic multi-site deployments 
Old Active/Passive guides replaced with Active/Active architecture, but
A/P vs A/A distinction hidden from users in favour of generic multi-site
docs.

Closes #31029

Signed-off-by: Ryan Emerson <remerson@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-08-07 08:22:59 +00:00
rmartinc 942d5d0aa3 Convert chapter planning for securing applications and services to guides 
Final removal of the securing_apps documentation
Final checks for links, order and other minor things
Closes #31328

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-08-01 16:45:56 +02:00
Peter Zaoral 07cfdac862 Document admin bootstrapping and recovery 
Closes: #30011

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
 2024-07-30 15:45:56 +02:00
Marek Posolda 5b52117351 Documentation for Delete Credential action and related changes (#31719) 
closes #31718


Signed-off-by: mposolda <mposolda@gmail.com>
Signed-off-by: Marek Posolda <mposolda@gmail.com>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2024-07-30 10:05:14 +02:00
Alexander Schwartz 227c71f7f0 Persisting revoked access tokens 
Closes #31296

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-07-26 11:46:14 +02:00
Thomas Darimont dbd4079f92 Allow users to customize the footer of a login theme (#31391) 
Closes  #31390

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
 2024-07-23 09:29:38 +02:00
Steven Hawkins 4970a9b729 fix: deprecate KEYCLOAK_ADMIN and KEYCLOAK_ADMIN_PASSWORD 
closes: #30658

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Jon Koops <jonkoops@gmail.com>
 2024-07-11 18:07:57 +02:00