mirror/keycloak
1
0
Fork 0
mirror of https://github.com/keycloak/keycloak.git synced 2026-05-06 15:11:16 -05:00
Code Issues Packages Projects Releases Wiki Activity
22,783 Commits 34 Branches 304 Tags
5b3de0c7e7f367103affe2f5167913a2ce021cf1
Commit Graph

424 Commits

Author SHA1 Message Date
rmartinc 0f270dbf30 Adding upgrading notes for brute force changes 
Closes #31960

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-08-09 16:38:38 +02:00
rmartinc 4af8c99fd4 Change link to https://github.com/eclipse/microprofile/wiki/JWT_Auth 
Closes #31219

Signed-off-by: rmartinc <rmartinc@redhat.com>
(cherry picked from commit e80c3fee9b)
 2024-07-12 08:59:28 +02:00
rmartinc 2c6da042b8 Improve consent deletion when a realm is removed 
Closes #30992

Signed-off-by: rmartinc <rmartinc@redhat.com>
(cherry picked from commit ce195b81f8)
 2024-07-10 16:17:26 +02:00
Douglas Palmer 1f2ddde6f3 Broken external links 
Closes #30717

Signed-off-by: Douglas Palmer <dpalmer@redhat.com>
 2024-06-25 18:09:02 +02:00
Alexander Schwartz 5f051c99c1 Don't check docs in upstream as this is a release branch (#30626) 
Closes #30619

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-06-21 08:32:43 +02:00
Alexander Schwartz c31c3f3a87 Remove links to Jetty docs which are no longer available on their website (#30167) 2024-06-07 08:39:25 +02:00
Giuseppe Graziano 5756cc244c Encrypted KC_RESTART cookie and removed sensitive notes (#168) 
Closes #keycloak/keycloak-private#162

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
 2024-05-21 12:01:50 +02:00
Stian Thorgersen 109f20e073 Ignore all links to GitHub when checking external links in docs due to rate limiting issues (#29291) 
Closes #28330

Signed-off-by: stianst <stianst@gmail.com>
 2024-05-06 08:03:57 +02:00
Douglas Palmer 86454c122c Broken link in documentation (#29275) 
Closes #29233

Signed-off-by: Douglas Palmer <dpalmer@redhat.com>
 2024-05-06 07:57:52 +02:00
Ricardo Martin e310604cf6 Perform exact string match if redirect URI contains userinfo, encoded slashes or parent access (#114) 
Closes keycloak/keycloak-private#113
Closes keycloak/keycloak-private#134

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-03-23 15:09:43 +01:00
Václav Muzikář c8a5618434 Clarify format of keys in additionalOptions field in the Keycloak CR (#27435) (#27619) 
Closes #27433

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
(cherry picked from commit 43727aa10f)
 2024-03-22 15:50:57 +01:00
Alexander Schwartz 28b80275ed Remove http metrics from the docs as they are not available in the current release (#27949) 
Fixes #27925

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-03-18 09:54:27 +01:00
Alexander Schwartz d07fe2f7fd URL change as liquibase.org now redirects 
Closes #27540

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-03-05 14:48:36 +01:00
Alexander Schwartz 2fb6906c69 Adding missing explicit IDs for cross-references 
Closes #27316

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-02-29 08:55:31 +01:00
AndyMunro 122683612e notes about access and refresh tokens 
Closes #26919

Signed-off-by: AndyMunro <amunro@redhat.com>
(cherry picked from commit 7d504ed1c9)
 2024-02-28 16:07:50 +01:00
AndyMunro 86e0861b33 Change docker image to container image 
Closes #27315

(cherry picked from commit c6896da155)
 2024-02-28 15:48:48 +01:00
Thomas Darimont 3a35cf28f8 Shorter lifespan for offline session cache entries in memory 
Closes #26810

Co-authored-by: Thomas Darimont <thomas.darimont@googlemail.com>
Co-authored-by: Martin Kanis <mkanis@redhat.com>

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
Signed-off-by: Martin Kanis <mkanis@redhat.com>
(cherry picked from commit 93fc6a6c54)
 2024-02-13 18:07:26 +01:00
mposolda b4148b190c Documentation for AIA 
closes #25569

Signed-off-by: mposolda <mposolda@gmail.com>

Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
(cherry picked from commit 7af753e166)
 2024-02-12 09:58:01 +01:00
mposolda f14bb94567 Documentation for SuppressRefreshTokenRotationExecutor 
closes #26587

Signed-off-by: mposolda <mposolda@gmail.com>

Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
(cherry picked from commit 56a605fae7)
 2024-02-01 17:55:43 +01:00
Alexander Schwartz 8e2154be85 Remove product specific content about Linux only (#26377) 
Closes #26220

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-01-22 16:32:18 +01:00
Alexander Schwartz 5ae466434a Update dependencies to enable Maven also-make working for Quarkus (#26123) 
Closes #23019

(cherry picked from commit f086e008dc)
 2024-01-15 09:24:02 +01:00
Alexander Schwartz aed9679bd4 Remove conditionals about Linux vs. Windows (#26086) 
Closes #26028

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-01-15 09:21:56 +01:00
AndyMunro 38b48c8459 Change RHDG to Infinispan 
Closes #26083

Signed-off-by: AndyMunro <amunro@redhat.com>
(cherry picked from commit 520c849995)
 2024-01-10 17:49:46 +01:00
andymunro 4a575d52e9 Clarify note about containers 
Closes #26006

Signed-off-by: AndyMunro <amunro@redhat.com>
(cherry picked from commit 70e15bdaa4)
 2024-01-09 16:40:58 +01:00
Ryan Emerson 1627251e08 Update Route53 HA guide to be compatible with ROSA and OpenShift 4.14.x (#25900) 
Closes #25733

Signed-off-by: Ryan Emerson <remerson@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-01-08 16:34:45 +01:00
Pedro Ruivo d2e9dfa684 High Availability Docs: use unbounded token for cross-site connection 
Expirable tokens are more secure but it requires manual intervention to
create and share them when they expire.

I have updated the documentation to use non-expirable tokens.

Closes #25909

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-01-08 16:34:18 +01:00
AndyMunro 9c6a8f9a66 Remove topic on user attributes in Account Console 
Closes #22555

Signed-off-by: AndyMunro <amunro@redhat.com>
(cherry picked from commit 2853136bbb)
 2023-12-15 18:50:06 +01:00
Ricardo Martin 15a21bf8e4 CVE-2023-6291 keycloak: redirect_uri validation logic that allows for a bypass of otherwise explicitly allowed hosts (#57) 
* Remove lowercase for the hostname as recommended/advised by OAuth spec
Closes https://github.com/keycloak/keycloak/issues/25001

Signed-off-by: rmartinc <rmartinc@redhat.com>

* Strip off user-info from redirect URI when validating using wildcard
Closes https://issues.redhat.com/browse/RHBK-679

Signed-off-by: rmartinc <rmartinc@redhat.com>

---------

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2023-12-06 13:51:02 +01:00
Michal Hajas aecf36cd8c Add tests for lb-check endpoint 
Added documentation why the check retries and updated outdated docs

Closes #25113

Signed-off-by: Michal Hajas <mhajas@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
(cherry picked from commit d387f13525)
Signed-off-by: Michal Hajas <mhajas@redhat.com>

Conflicts:
	quarkus/tests/junit5/src/main/java/org/keycloak/it/junit5/extension/DatabaseContainer.java
 2023-12-04 16:44:52 +01:00
Michal Hajas 8ffb91a34a Add documentation for lb-check 
Closes #25077

Signed-off-by: Michal Hajas <mhajas@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>

(cherry picked from commit cafc238ff2)
 2023-11-30 19:31:19 +01:00
Tomas Ondrusko d64026a0b4 Social Identity Providers documentation adjustments (#24840) 
Closes #24601

Signed-off-by: Tomas Ondrusko <tondrusk@redhat.com>
(cherry picked from commit 8ac6120274)
 2023-11-30 14:15:43 +01:00
rmartinc d17e3bf1d7 Use LinkedIn instead of LinkedIn OpenID Connect for better UI experience 
Closes https://github.com/keycloak/keycloak/issues/24659

Signed-off-by: rmartinc <rmartinc@redhat.com>
(cherry picked from commit 5fad76070a)
 2023-11-30 14:15:43 +01:00
Tomas Ondrusko 46821fec0c Update Social Identity Providers documentation (#24601) 
Signed-off-by: Tomas Ondrusko <tondrusk@redhat.com>
(cherry picked from commit fe48afc1dc)
 2023-11-30 14:15:43 +01:00
Alexander Schwartz 87542596e1 Documentation Inconsistency about Open Banking(Finance) Brasil FAPI security profile (#25163) 
closes #25108

Signed-off-by: Takashi Norimatsu <takashi.norimatsu.ws@hitachi.com>
(cherry picked from commit 29aec9c5b5)

Co-authored-by: Takashi Norimatsu <takashi.norimatsu.ws@hitachi.com>
 2023-11-30 14:14:55 +01:00
Alexander Schwartz 79650aeb75 Fix cross-links in guides and remove unprocessed content in include 
Closes #25090

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2023-11-29 13:52:38 +01:00
Alexander Schwartz 062af9bccc Adress keycloak high-availability guide follow-up items 
Closes #24975

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
(cherry picked from commit 68b33be655)
 2023-11-29 13:52:38 +01:00
Alexander Schwartz b41d2a8af5 Adding a Keycloak High Availability section to Keycloak's docs 
The content was moved over from the Keycloak Benchmark subproject.

Closes #24844

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Pedro Ruivo <pruivo@redhat.com>
Co-authored-by: Michal Hajas <mhajas@redhat.com>
Co-authored-by: Kamesh Akella <kakella@redhat.com>
Co-authored-by: Ryan Emerson <remerson@redhat.com>
Co-authored-by: Anna Manukyan <amanukya@redhat.com>
Co-authored-by: Thomas Darimont <thomas.darimont@googlemail.com>
Co-authored-by: Stian Thorgersen <stian@redhat.com>
Co-authored-by: Thomas Darimont <thomas.darimont@googlemail.com>
Co-authored-by: AndyMunro <amunro@redhat.com>

(cherry picked from commit 834ef79509)
 2023-11-29 13:52:38 +01:00
andymunro 0179daa4e7 Create an attribute for Getting Started (#24825) 
* Create an attribute for Getting Started

Closes #24824

Signed-off-by: AndyMunro <amunro@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
(cherry picked from commit 7d62f6308d)
 2023-11-27 16:23:49 +01:00
stianst 92cc7708fe Fix anchors in securing apps guide in prod profile 2023-11-14 11:19:50 +01:00
Stian Thorgersen e9e6563561 Correct Securing Apps Guide (#24730) (#24737) 
* Correcting Securing Apps guide

Closes #24729



* Update docs/documentation/securing_apps/topics/saml/java/general-config/sp_role_mappings_provider_element.adoc



---------

Signed-off-by: AndyMunro <amunro@redhat.com>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2023-11-14 11:10:03 +01:00
Stian Thorgersen d7f2ad747d Update EAP documentation for OIDC and SAML (#24734) 
* Update EAP documentation for OIDC and SAML

Signed-off-by: stianst <stianst@gmail.com>

* Add note that only Spring Boot 2 is supported by RH-SSO adapters

Signed-off-by: stianst <stianst@gmail.com>

* Update docs/documentation/securing_apps/topics/oidc/java/java-adapters-product.adoc

Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>

* Update docs/documentation/securing_apps/topics/oidc/java/java-adapters-product.adoc

Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>

* Update docs/documentation/securing_apps/topics/oidc/java/java-adapters-product.adoc

Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>

* Update docs/documentation/securing_apps/topics/oidc/java/java-adapters-product.adoc

Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>

* Update docs/documentation/securing_apps/topics/saml/java/java-adapters-product.adoc

Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>

---------

Signed-off-by: stianst <stianst@gmail.com>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2023-11-14 10:57:11 +01:00
andymunro 1359ea5332 Fix broken links (#24476) (#24717) 
(cherry picked from commit bf17fcc0be)

Signed-off-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2023-11-14 05:09:08 +01:00
andymunro 4ca0447457 Addressing Server Admin review comments (#24716) 
Closes #24643

Signed-off-by: AndyMunro <amunro@redhat.com>
(cherry picked from commit 20f5edc708)
 2023-11-14 05:08:21 +01:00
Alexander Schwartz 38f8401492 Fix broken link to node.js and internal anchor (#24709) 
Closes #24699

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
(cherry picked from commit 8acb6c1845)
 2023-11-14 05:07:16 +01:00
Stian Thorgersen 0cf7fec47c Add attributes.adoc for guides to share common attributes (#24590) 2023-11-08 16:46:29 +01:00
AndyMunro b5124c794c Minor fixes for FIPS and Operator Guide 
Closes #24513

(cherry picked from commit 994b6ccecf)
 2023-11-07 02:36:45 +01:00
AndyMunro ac9679e8f1 Minor changes to documentation 
Closes #24456

(cherry picked from commit 9ef9c944d0)
 2023-11-02 17:55:47 +01:00
Joshua Sorah 759c392a9b [docs] Update Docker Registry links to new locations 
Closes keycloak/keycloak#24179

(cherry picked from commit e889d0f12c)
 2023-10-31 14:49:07 +01:00
Hynek Mlnařík e76f0f479d Docs: Fix account name 
Closes: #24341
(cherry picked from commit 3f55cd72d7)
 2023-10-31 14:47:59 +01:00
Alexander Schwartz d26130cb09 Tidy up documentation around Windows/Linux usage 
Closes #23856

(cherry picked from commit a3c29b8880)
 2023-10-18 09:37:23 +02:00