mirror/keycloak
1
0
Fork 0
mirror of https://github.com/keycloak/keycloak.git synced 2026-01-25 16:48:49 -06:00
Code Issues Packages Projects Releases Wiki Activity
26,181 Commits 24 Branches 291 Tags
97c032d220adec2bb2ae78059cd9bbfa4bd69f13
Commit Graph

57 Commits

Author SHA1 Message Date
Pedro Ruivo
2d6140cb34 Revisit Multi Site Guide 
Closes #32745

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-09-24 12:08:15 +00:00
Michal Hajas
d85ce41377 Update STONITH lambda with the latest changes from KCB 
Closes #32803

Signed-off-by: Michal Hajas <mhajas@redhat.com>
Signed-off-by: Ryan Emerson <remerson@redhat.com>
Co-authored-by: Ryan Emerson <remerson@redhat.com>
 2024-09-11 13:48:26 +02:00
Pedro Ruivo
3a8160b71d Remove session related caches from external Infinispan in HA guide 
Closes #32131

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-08-30 10:35:45 +02:00
Alexander Schwartz
8e0d50edc0 Upgrade Keycloak's sizing guide for KC26 (#32344) 
Closes #32343
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: Kamesh Akella <kakella@redhat.com>
 2024-08-27 16:38:38 +02:00
Michal Hajas
709165a90a High availability guide updates (#32093) 
* Remove connecting Infinispan to Keycloak building block
* Rephrase two sites restriction limitation
* Update the KCB generated yaml files for HA guide
* Remove setting number of owners to 1 for session caches as it is no longer necessary
* Add multi-site feature
* Remove histrograms and slos
* Replace stonith with fencing
* Switch for DG in community and product

Closes #31029

Signed-off-by: Michal Hajas <mhajas@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-08-19 13:29:11 +02:00
Pedro Ruivo
07c92c85cb Drop AuthenticatedClientSessionStore from user sessions 
New entities for client and user sessions, more query friendly.
The client sessions are found using query instead of storing them in the
user session entity.
Remove of sessions by its field is done based on queries.

Closes #30934

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
 2024-08-12 20:35:50 +02:00
Ryan Emerson
c0a51b94ea Update HA cache configurations to latest blueprint 
Closes #31029

Signed-off-by: Ryan Emerson <remerson@redhat.com>
 2024-08-07 19:06:14 +02:00
Ryan Emerson
31d610c2fc Upgrade to Infinispan 15.0.7.Final 
Closes #31963

Signed-off-by: Ryan Emerson <remerson@redhat.com>
 2024-08-07 13:32:23 +02:00
Ryan Emerson
db14ab1365 Refactor HA guide to refer to generic multi-site deployments 
Old Active/Passive guides replaced with Active/Active architecture, but
A/P vs A/A distinction hidden from users in favour of generic multi-site
docs.

Closes #31029

Signed-off-by: Ryan Emerson <remerson@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-08-07 08:22:59 +00:00
Steven Hawkins
14a9927e29 fix: scaling and tuning getting started guide 
closes: #29388

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2024-07-18 13:31:37 +00:00
Pedro Ruivo
9b39498085 Add default stack in cache-ispn.xml 
A bug in Infinispan prevents the metrics to be registered if the "stack"
is not specified.
Change the default configuration shipped with Keycloak to use the UDP
stack as default.
UDP is the default in previous Keycloak versions.

Fixes #31218

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-07-16 12:05:38 +02:00
Steven Hawkins
4970a9b729 fix: deprecate KEYCLOAK_ADMIN and KEYCLOAK_ADMIN_PASSWORD 
closes: #30658

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Jon Koops <jonkoops@gmail.com>
 2024-07-11 18:07:57 +02:00
Pedro Ruivo
c48e7bc24c Update to Infinispan 15.0.5.Final 
Closes #30557

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
 2024-06-19 11:50:24 +02:00
Alexander Schwartz
af23150343 Fixing typo in the upgrading guide for persistent sessions 
Closes #30028

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-05-31 13:18:34 +02:00
Ryan Emerson
5788263413 Document Failover Lambda for Active/Passive deployments 
Closes #29787

Signed-off-by: Ryan Emerson <remerson@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2024-05-29 12:33:13 +02:00
Ryan Emerson
0f17f0abc5 Require external Infinispan be of version 15 or greater 
Signed-off-by: Ryan Emerson <remerson@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-05-22 11:26:26 +00:00
Pedro Ruivo
7182bc2125 Infinispan 15.0.4.Final 
Closes #29743

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
 2024-05-21 16:47:26 +02:00
Alexander Schwartz
8deca303e2 Update instruction on how to enable persistent sessions (#29490) 
Closes #29489

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-05-15 13:26:51 +02:00
Kamesh Akella
1d613d9037 Argon2 release notes and sizing guide update 
Closes #29033

Signed-off-by: Kamesh Akella <kamesh.asp@gmail.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-05-14 17:40:51 +02:00
Alexander Schwartz
6fbe207d64 Create documentation for persistent user sessions 
Closes #29218

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Signed-off-by: Michal Hajas <mhajas@redhat.com>
Co-authored-by: Michal Hajas <mhajas@redhat.com>
 2024-05-13 11:02:45 +02:00
Pedro Ruivo
cbce548e71 Infinispan 15.0.3.Final 
Closes #29068

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
 2024-05-08 17:18:39 +02:00
AndyMunro
eb9b19abe9 Corrections to HA Guide 
Closes #29183

Signed-off-by: AndyMunro <amunro@redhat.com>
 2024-05-06 17:00:54 +02:00
Dimitri Papadopoulos Orfanos
9db1443367 Fix typos found by codespell in docs (#28890) 
Run `chmod -x` on files that need not be executable.

Signed-off-by: Dimitri Papadopoulos <3234522+DimitriPapadopoulos@users.noreply.github.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-05-03 12:41:16 +00:00
Alexander Schwartz
99cb437dc7 Fix product name usage for downstream documentation 
Closes #29154

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-04-29 18:05:00 +02:00
Ryan Emerson
9bf131b5fb HA guide erroneously refers to AWS Global Accelerator. Fixes #28174 
Signed-off-by: Ryan Emerson <remerson@redhat.com>
 2024-04-04 13:15:42 +02:00
Alexander Schwartz
305dd5812e Make use of attributes consistent between old docs and new guides 
Closes #28215

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-03-26 17:07:54 +01:00
Pedro Ruivo
2387549308 Upgrade Infinispan to 14.0.27.Final 
Closes #28033

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
 2024-03-19 11:18:42 +01:00
Alexander Schwartz
fbdb2ed9f7 Updated performance impact due to changed hashing 
Fixes #27900

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-03-19 09:30:49 +01:00
Pedro Ruivo
a5634b201c Use new remote-store options in HA guides 
Fixes #27508

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-03-14 12:47:35 +01:00
Ryan Emerson
a32808e8eb Upgrade to Infinispan 14.0.26.Final 
Closes #27871

Signed-off-by: Ryan Emerson <remerson@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-03-13 17:24:20 +00:00
Ryan Emerson
244ecd45a7 Upgrade to Aurora Postgres 15.5 
Closes #27509

Signed-off-by: Ryan Emerson <remerson@redhat.com>
 2024-03-05 10:29:20 +01:00
Vojtěch Mareš
8230655880 docs(cpu and memory sizing): typo GB -> MB 
Closes #27504

Signed-off-by: Vojtech Mares <iam@vojtechmares.com>
 2024-03-04 16:12:29 +01:00
AndyMunro
a4a6b4f015 Edit HA guide 
Closes #27481

Signed-off-by: AndyMunro <amunro@redhat.com>
 2024-03-04 13:10:23 +01:00
Michal Hajas
87993905c8 Minor HA guide fixes (#27436) 
Signed-off-by: Michal Hajas <mhajas@redhat.com>
 2024-03-01 20:28:59 +01:00
Michal Hajas
d7c6464ad6 Update the HA guide with the workaround for ISPN-15758 
Closes #27353

Signed-off-by: Michal Hajas <mhajas@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-02-28 15:56:15 +00:00
Michal Hajas
eadd1c45c4 Document using AWS JDBC Wrapper in HA guide 
Closes #27211

Signed-off-by: Michal Hajas <mhajas@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-02-26 12:15:04 +00:00
Alexander Schwartz
25f2b52afd Remove the preview note from Keycloak's HA guide 
Closes #27084

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-02-21 19:59:15 +01:00
Alexander Schwartz
5f56a9b356 Keycloak users should not need to understand the depths of Quarkus configuration to implement Keycloak HA (#27122) 
Closes #27121

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-02-21 13:49:14 +01:00
Alexander Schwartz
5f797e3e71 Update Keycloak HA Guide new resource limit settings (#27079) 
Closes #27078

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-02-19 10:41:49 +01:00
Alexander Schwartz
7135b4ec4c Add Amazon Aurora PostgreSQL to the list of tested databases (#27049) 
Closes #27048

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-02-19 09:16:49 +01:00
Michal Hajas
83f3e91e4f Use http-pool-max-threads in HA guides 
Closes #26849

Signed-off-by: Michal Hajas <mhajas@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-02-13 10:01:59 +00:00
Alexander Schwartz
786023fd06 Update HA guide about non-blocking probes (#26783) 
Closes #26781

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-02-07 16:16:50 +01:00
Kamesh Akella
4459ed66ad update cpu sizing based on the hashing changes 
Closes #26490

Signed-off-by: Kamesh Akella <kamesh.asp@gmail.com>
 2024-02-05 14:41:44 +01:00
Michal Hajas
80de12d59a Update HA guides to use the new ISPN config options 
Closes #26776

Signed-off-by: Michal Hajas <mhajas@redhat.com>
 2024-02-05 11:40:08 +01:00
Alexander Schwartz
c1ae9a0817 Prevent blank after backslash which breaks shell execution (#26632) 
Closes #26631

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-01-31 13:17:31 +01:00
Thomas Darimont
cc7d6a9b79 Improve wording for Concepts for configuring thread pools in docs 
Closes #26402

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-01-23 12:56:55 +00:00
Ryan Emerson
ba76682590 Use the http-max-queued-requests option for load shedding in HA docs 
Resolves #26223

Signed-off-by: Ryan Emerson <remerson@redhat.com>
 2024-01-17 15:44:08 +01:00
Alexander Schwartz
0f48027ffb Reduce internal unsupported options in the Keycloak HA documentation 
Closes #26068

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-01-10 17:38:15 +01:00
Ryan Emerson
60f80ce0c8 Update Route53 HA guide to be compatible with ROSA and OpenShift 4.14.x (#25900) 
Closes #25733

Signed-off-by: Ryan Emerson <remerson@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-01-04 17:45:32 +00:00
Pedro Ruivo
2c70b45205 High Availability Docs: use unbounded token for cross-site connection 
Expirable tokens are more secure but it requires manual intervention to
create and share them when they expire.

I have updated the documentation to use non-expirable tokens.

Closes #25909

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-01-04 17:12:17 +00:00