mirror/keycloak
1
0
Fork 0
mirror of https://github.com/keycloak/keycloak.git synced 2026-05-01 04:30:44 -05:00
Code Issues Packages Projects Releases Wiki Activity
25,713 Commits 33 Branches 304 Tags
3ab2446074d303aba28dda87f57dd46339dfdce7
Commit Graph

465 Commits

Author SHA1 Message Date
Pedro Igor 3ab2446074 Do not return identity providers when querying the realm representation 
Closes #21072

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-08-07 10:06:51 -03:00
rmartinc acbbfde4ab Adding upgrading notes for brute force changes 
Closes #31960

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-08-07 14:38:30 +02:00
Ryan Emerson db14ab1365 Refactor HA guide to refer to generic multi-site deployments 
Old Active/Passive guides replaced with Active/Active architecture, but
A/P vs A/A distinction hidden from users in favour of generic multi-site
docs.

Closes #31029

Signed-off-by: Ryan Emerson <remerson@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-08-07 08:22:59 +00:00
Tero Saarni 62fd969fe1 Allow requests from local IPv6 addresses 
If administrator selects EXTERNAL for Require SSL setting, allow clear-text
HTTP requests when client is coming from IPv6 link-local or unique local
address (ULA).

Previously only private IPv4 addresses were allowed and private IPv6 addresses
were rejected.

Closes #30678

Signed-off-by: Tero Saarni <tero.saarni@est.tech>
 2024-08-05 16:38:55 +02:00
rmartinc 942d5d0aa3 Convert chapter planning for securing applications and services to guides 
Final removal of the securing_apps documentation
Final checks for links, order and other minor things
Closes #31328

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-08-01 16:45:56 +02:00
Giuseppe Graziano adb2af442a Move token exchange documentation to guides (#31707) 
Closes #31334


Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
Signed-off-by: Marek Posolda <mposolda@gmail.com>
Co-authored-by: Marek Posolda <mposolda@gmail.com>
 2024-07-30 21:04:05 +02:00
Giuseppe Graziano a3c9944610 Move Keycloak JavaScript adapter to guides (#31751) 
Closes #31695


Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
Signed-off-by: Marek Posolda <mposolda@gmail.com>
Co-authored-by: Marek Posolda <mposolda@gmail.com>
 2024-07-30 18:39:33 +02:00
rmartinc b07b120f2a Convert chapter client registration CLI from securing apps into guides 
Closes #31333

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-30 18:30:46 +02:00
rmartinc b2b27f8a4e Convert chapter client registration service from securing apps into guides 
Closes #31332

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-30 18:30:46 +02:00
Giuseppe Graziano e1266c2678 Move mod-auth-openidc.adoc to guides 
Closes #31697

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
 2024-07-30 18:23:40 +02:00
Peter Zaoral 07cfdac862 Document admin bootstrapping and recovery 
Closes: #30011

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
 2024-07-30 15:45:56 +02:00
Giuseppe Graziano ca2b6dc754 Move Node.js adapter to guides 
Closes #31696

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
 2024-07-30 11:29:51 +02:00
Marek Posolda 5b52117351 Documentation for Delete Credential action and related changes (#31719) 
closes #31718


Signed-off-by: mposolda <mposolda@gmail.com>
Signed-off-by: Marek Posolda <mposolda@gmail.com>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2024-07-30 10:05:14 +02:00
Giuseppe Graziano c3019fb2d3 Move oidc documentation to guides (#31627) 
Closes #31329

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
 2024-07-30 09:46:14 +02:00
Steven Hawkins 22f8e5cdf0 Added field to the RealmImport spec to replace environment variables within the realm import (#31232) 
* Added field to the RealmImport spec to replace environment variables within the realm import

Closes #26470

Signed-off-by: stustison <scott.tustison@gmail.com>

* Added field to the RealmImport spec to replace environment variables within the realm import

Closes #26470

Signed-off-by: stustison <scott.tustison@gmail.com>

* testing refinement for placeholder handling

closes: #26470

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* changing from placeholdersecret to placeholder

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update docs/guides/operator/realm-import.adoc

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

* Update docs/documentation/release_notes/topics/26_0_0.adoc

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

---------

Signed-off-by: stustison <scott.tustison@gmail.com>
Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: stustison <scott.tustison@gmail.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
 2024-07-29 11:16:09 +02:00
rmartinc e97ffe7a32 Convert chapter docker registry from securing apps into guides 
Closes #31331

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-26 15:39:51 +02:00
Alexander Schwartz 227c71f7f0 Persisting revoked access tokens 
Closes #31296

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-07-26 11:46:14 +02:00
rmartinc e30230488e Convert chapter mod_auth_mellon from securing apps into guides 
Closes #31569

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-24 21:16:49 +02:00
Pedro Igor f4b1a5ca88 Updating docs 
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-07-24 15:12:16 -03:00
Maciej Mierzwa 97e89e2071 feature: password age in days policy 
Closes #30210

Signed-off-by: Maciej Mierzwa <dev.maciej.mierzwa@gmail.com>
 2024-07-24 15:12:16 -03:00
rmartinc 9f2eddead8 Re-add notes about not supporting DPoP and holder-of-key in the remaining adapters 
Closes #30874

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-24 11:55:47 +02:00
rmartinc ccab30d5f2 Move saml documentation to guides 
Closes #31330

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-24 11:50:24 +02:00
Thomas Darimont dbd4079f92 Allow users to customize the footer of a login theme (#31391) 
Closes  #31390

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
 2024-07-23 09:29:38 +02:00
Hynek Mlnarik a7374f92be Update login theme to login v2 
Fixes: #29009

Signed-off-by: Hynek Mlnarik <hmlnarik@redhat.com>
 2024-07-18 14:33:22 +02:00
rmartinc 764ef4831a Release notes and some notes for JavaKeystoreProvider changes 
Closes #31226

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-17 10:44:45 +02:00
Stian Thorgersen 865c2dabea Update themes.adoc (#31362) 
Closes #30816

Signed-off-by: Stian Thorgersen <stianst@gmail.com>
 2024-07-17 10:32:45 +02:00
Thomas Darimont e79d10e71e Add missing user event translations to admin-ui 
Fixes #27677

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-07-12 10:04:57 +02:00
Steven Hawkins 4970a9b729 fix: deprecate KEYCLOAK_ADMIN and KEYCLOAK_ADMIN_PASSWORD 
closes: #30658

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Jon Koops <jonkoops@gmail.com>
 2024-07-11 18:07:57 +02:00
rmartinc e80c3fee9b Change link to https://github.com/eclipse/microprofile/wiki/JWT_Auth 
Closes #31219

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-11 18:03:57 +02:00
Steve Hawkins 9247029ca3 fix: removes the operator's usage of the v1 proxy option 
closes: #30945

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2024-07-11 14:21:50 +02:00
rmartinc 096e335a92 Support for vault and AES and HMAC algorithms to JavaKeystoreKeyProvider 
Closes #30880
Closes #29755

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-11 12:40:45 +02:00
Lucy Linder 0f7c2364f0 Update links in ReCAPTCHA doc 
Google links changed and are now causing redirect issues reports.

Closes: #31187

Signed-off-by: Lucy Linder <lucy.derlin@gmail.com>
 2024-07-11 00:27:09 +02:00
Martin Kanis 922eaa9fc8 Disable username prohibited chars validator when email as username is… (#31140) 
* Disable username prohibited chars validator when email as the username is set

Closes #25339

Signed-off-by: Martin Kanis <mkanis@redhat.com>
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-07-10 09:46:24 -03:00
rmartinc ce195b81f8 Improve consent deletion when a realm is removed 
Closes #30992

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-10 09:44:42 +02:00
Gilvan Filho a918eb1e30 Fix user storage spi jpa quickstart description 
Closes #30941

Signed-off-by: Gilvan Filho <gfilho@redhat.com>
 2024-07-08 14:44:41 +02:00
Pedro Igor 1a8075d62a Update migration and upgrade guides about GroupRemovedEvent no longer fired when removing a realm 
Closes #30919

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-07-05 10:14:30 +02:00
Pedro Igor b745ac8259 Documenting LDAP connection pooling 
Closes #30995

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-07-04 13:21:47 +02:00
Steven Hawkins a7ae90cbb6 fix: adds affinity and other scheduling to the operator (#29977) 
closes: #29258

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2024-07-03 20:07:03 +02:00
Thomas Darimont f34bb21af6 Fix deprecations in common module 
- Use charset in `Encode` class
- Replace reflective call to protected `Liquibase#resetServices()` with call to exposed public method on a custom subclass `KeycloakLiquibase`
- Remove usage of deprecated AccessController class in Reflections
- Deprecated SetAccessibleProvilegedAction and UnsetAccessibleProvilegedAction

Fixes #22209

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-07-02 16:02:35 +00:00
Peter Zaoral add45a25a8 Add default CPU limit/request for the operator (#30601) 
Closes: #27432

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
 2024-07-01 15:12:43 +02:00
Christoph Schulz 657aff787f Add missing comma to (#30914) 
Signed-off-by: Christoph Schulz <mail@ciis0.de>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
 2024-06-28 13:13:13 +00:00
Stan Silvert a1445cd93f Minor doc fix. (#30899) 
Signed-off-by: Stan Silvert <ssilvert@redhat.com>
 2024-06-27 16:18:32 -04:00
andymunro 30264c7dd4 Remove inclusive language foreword 
Closes #30856

Signed-off-by: AndyMunro <amunro@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-06-27 15:22:03 +02:00
Douglas Palmer 5af3001122 Check if OSGI metadata can be removed entirely 
Closes #29104

Signed-off-by: Douglas Palmer <dpalmer@redhat.com>
 2024-06-25 14:12:33 +02:00
Douglas Palmer 54f4ab50f0 Broken external links 
Closes #30717

Signed-off-by: Douglas Palmer <dpalmer@redhat.com>
 2024-06-25 09:55:50 +02:00
Jon Koops df18629ffe Use a default Java version from root POM (#29927) 
Signed-off-by: Jon Koops <jonkoops@gmail.com>
 2024-06-21 14:19:31 +02:00
Pedro Igor a0ad680346 Adding an alias to organization and exposing them to templates 
Closes #30312
Closes #30313

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-06-20 14:36:14 -03:00
Jon Koops 77fb3c4dd4 Use correct host URL for Admin Console requests (#30535) 
Closes #30432

Signed-off-by: Jon Koops <jonkoops@gmail.com>
 2024-06-19 15:21:53 +02:00
CARBONNEAUX Mathieu acf79b81c7 add RS256 algorithm to webauthn default policy (#30528) 
closes #28020 

Signed-off-by: Mathieu CARBONNEAUX <mathieu.carbonneaux@ch2o.info>
 2024-06-19 10:16:46 +02:00
Pedro Ruivo 5c0dddd837 Batch cluster events 
Sending multiple events in a single network request should minimize
latency and traffic.

Closes #30445

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
 2024-06-14 21:14:22 +02:00