mirror/keycloak
1
0
Fork 0
mirror of https://github.com/keycloak/keycloak.git synced 2026-01-13 10:30:12 -06:00
Code Issues Packages Projects Releases Wiki Activity
25,338 Commits 22 Branches 288 Tags
9d5ccfb22d00a9f63eb62289c1e6dfd855ecd151
Commit Graph

765 Commits

Author SHA1 Message Date
Michal Hajas
6dbe66b3a0 Remove information about online_user_session table 
Closes #32178

Signed-off-by: Michal Hajas <mhajas@redhat.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
(cherry picked from commit 36ad5fb3bd)
 2024-08-16 11:32:15 +02:00
rmartinc
2a8f104f26 Adding upgrading notes for brute force changes 
Closes #31960

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-08-09 09:49:47 +02:00
Ryan Emerson
c70f729a67 Upgrade to Infinispan 15.0.7.Final 
Closes #31963

Signed-off-by: Ryan Emerson <remerson@redhat.com>
 2024-08-07 15:42:59 +02:00
Marek Posolda
89ad2e6b17 Documentation for Delete Credential action and related changes (#31719) 
closes #31718

Signed-off-by: mposolda <mposolda@gmail.com>
Signed-off-by: Marek Posolda <mposolda@gmail.com>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
(cherry picked from commit 5b52117351)
 2024-07-30 10:13:41 +02:00
Steven Hawkins
da43044494 doc: add a note about setting proxy=edge (#31486) 
* doc: add a note about setting proxy=edge

closes: #30945

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update docs/guides/operator/basic-deployment.adoc

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
 2024-07-24 17:34:38 +02:00
Pedro Ruivo
adb3765a84 Add default stack in cache-ispn.xml 
A bug in Infinispan prevents the metrics to be registered if the "stack"
is not specified.
Change the default configuration shipped with Keycloak to use the UDP
stack as default.
UDP is the default in previous Keycloak versions.

Fixes #31218

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-07-16 14:43:01 -03:00
rmartinc
cd50c8af04 Change link to https://github.com/eclipse/microprofile/wiki/JWT_Auth 
Closes #31219

Signed-off-by: rmartinc <rmartinc@redhat.com>
(cherry picked from commit e80c3fee9b)
 2024-07-12 08:58:41 +02:00
Lucy Linder
6783b97c93 Update links in ReCAPTCHA doc 
Google links changed and are now causing redirect issues reports.

Closes: #31187

Signed-off-by: Lucy Linder <lucy.derlin@gmail.com>
 2024-07-11 00:27:39 +02:00
rmartinc
31f475d7a7 Improve consent deletion when a realm is removed 
Closes #30992

Signed-off-by: rmartinc <rmartinc@redhat.com>
(cherry picked from commit ce195b81f8)
 2024-07-10 16:15:57 +02:00
Diego Garcia Lozano
7c22802a1b Update caching docs to match breaking changes in v25 
In the latest Keycloak version (v25.0.1) the cache options are not build options anymore. They now have to be provided during runtime.

Closes #31050

Signed-off-by: Diego Garcia Lozano <diegogarcialozano95@gmail.com>
 2024-07-04 09:07:46 -03:00
Václav Muzikář
9962a70b94 Document how Admin REST API endpoints work with Hostname config (#30916) 
Closes #30537

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
(cherry picked from commit bce7a29035)
 2024-06-28 15:17:57 +02:00
andymunro
55d611a394 Backport 25 Remove inclusive foreword 
Closes #30856

Signed-off-by: AndyMunro <amunro@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-06-28 15:14:36 +02:00
Martin Bartoš
843e4e533e New operator failing on health checks (#30830) 
Closes #30355

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
 2024-06-26 17:51:32 +02:00
Martin Bartoš
6364210285 Describe mTLS overrides for the management interface (#30814) 
Closes #30094

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
 2024-06-26 17:50:58 +02:00
Douglas Palmer
e447d29da2 Broken external links 
Closes #30717

Signed-off-by: Douglas Palmer <dpalmer@redhat.com>
 2024-06-25 18:08:01 +02:00
Steven Hawkins
b28d291cce docs: remove reference to features-disabled=default (#30612) (#30740) 
closes: #29761

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
(cherry picked from commit 1983bfc9b1)
 2024-06-25 14:29:33 +02:00
Martin Bartoš
4a6e14705c Fix usage of management port in the documentation (#30653) (#30732) 
Health and metrics endpoints are documented as being served on port 8443 instead of 9000 in [the guide about Running Keycloak in a container](https://www.keycloak.org/server/containers#_starting_the_optimized_keycloak_container_image).

Closes #30652

Signed-off-by: julien <julien.sarik@gmail.com>
Co-authored-by: julien-sarik <45511956+julien-sarik@users.noreply.github.com>
 2024-06-25 10:39:33 +02:00
Jon Koops
28cd9684b0 Use correct host URL for Admin Console requests (#30535) (#30579) 
Closes #30432

Signed-off-by: Jon Koops <jonkoops@gmail.com>
(cherry picked from commit 77fb3c4dd4)
 2024-06-19 15:50:19 -04:00
Alexander Schwartz
f3c30ca462 Fix the website on https://www.keycloak.org/server/db showing some asciidoc related ifeval text (#30569) 
Closes #30417

Signed-off-by: Wim Deblauwe <wim.deblauwe@gmail.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Wim Deblauwe <wim.deblauwe@gmail.com>
 2024-06-19 15:32:53 +02:00
Pedro Ruivo
2f9e94ece7 Update to Infinispan 15.0.5.Final 
Closes #30557

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
 2024-06-19 12:18:49 +02:00
daviddelannoy
97ba5dbe6c fix label error for persistent-user-sessions feature flag in documentation 
Signed-off-by: daviddelannoy <16318239+daviddelannoy@users.noreply.github.com>
 2024-06-12 11:46:35 +02:00
Václav Muzikář
ee4dc6cfff Enhance masking around config-keystore (#30348) (#30363) 
Closes #30346

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
(cherry picked from commit 375ea9da03)
 2024-06-12 10:42:52 +02:00
Pedro Igor
6084820738 Fixing broken link (#30299) (#30301) 
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-06-10 15:30:09 +02:00
Pedro Igor
c35bf11b1b Adding organization section (#29796) 
Closes #28731

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2024-06-10 09:08:50 +02:00
Giuseppe Graziano
6067f93984 Improvements to refresh token rotation with multiple tabs (#29966) 
Closes #14122

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
 2024-06-07 12:02:36 +02:00
Steven Hawkins
5059a02eb2 fix: minor refinements to collection utils (#29536) 
closes: #29535

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2024-06-06 10:07:34 -04:00
Steven Hawkins
c7e9ee2bff fix: adds handling for all kcadm prompts as env variables (#29430) 
closes: #21961

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2024-06-06 13:08:23 +00:00
Marek Posolda
79c8c80058 Example for X.509 direct grant flow authentication (#30203) 
closes #29639

Signed-off-by: mposolda <mposolda@gmail.com>


Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2024-06-06 11:58:09 +02:00
Erik Jan de Wit
5897334ddb Align environment variables between consoles (#30125) 
* change to make authServerUrl the same as authUrl

fixes: #29641
Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* Remove `authUrl` entirely

Signed-off-by: Jon Koops <jonkoops@gmail.com>

* Remove file that is unrelated

Signed-off-by: Jon Koops <jonkoops@gmail.com>

* Split out and align environment variables between consoles

Signed-off-by: Jon Koops <jonkoops@gmail.com>

* Restore removed variables to preserve backwards compatibility

Signed-off-by: Jon Koops <jonkoops@gmail.com>

* Also deprecate the `authUrl` for the Admin Console

Signed-off-by: Jon Koops <jonkoops@gmail.com>

---------

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
Signed-off-by: Jon Koops <jonkoops@gmail.com>
Co-authored-by: Jon Koops <jonkoops@gmail.com>
 2024-06-06 08:36:46 +02:00
Giuseppe Graziano
d5e82356f9 Encrypted KC_RESTART cookie and removed sensitive notes 
Closes #keycloak/keycloak-private#162

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
 2024-06-05 10:33:44 +02:00
Marek Posolda
193439788e Release notes for support application/jwt response in token introspec… (#30105) 
closes #30104

Signed-off-by: mposolda <mposolda@gmail.com>


Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2024-06-04 06:49:13 +02:00
Martin Bartoš
262fc09edc OpenJDK 21 support (#28518) 
* OpenJDK 21 support

Closes #28517

Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Signed-off-by: Martin Bartoš <mabartos@redhat.com>

* x509 SAN UPN other name is not handled in JDK 21 (#904)

closes #29968

Signed-off-by: mposolda <mposolda@gmail.com>

---------

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: mposolda <mposolda@gmail.com>
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Co-authored-by: Marek Posolda <mposolda@gmail.com>
 2024-06-03 14:17:28 +02:00
Peter Zaoral
cd2451d58b Remove Oracle JDBC driver out of the box (#29895) 
Closes: #29491

Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
 2024-05-31 17:21:19 +00:00
Alexander Schwartz
af23150343 Fixing typo in the upgrading guide for persistent sessions 
Closes #30028

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-05-31 13:18:34 +02:00
Miquel Simon
2c521bd64d Upgrade supported PostgreSQL to version 16 
Closes #29875

Signed-off-by: Miquel Simon <msimonma@redhat.com>
 2024-05-29 16:31:40 +02:00
Marek Posolda
336b2c875f Update release notes for Keycloak 25 (#29894) 
closes #29576

Signed-off-by: mposolda <mposolda@gmail.com>


Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2024-05-29 14:19:17 +02:00
mposolda
37c10b4d43 Improve documentation for the case when 'basic' client scope already exists 
closes #29880

Signed-off-by: mposolda <mposolda@gmail.com>
 2024-05-29 13:32:05 +02:00
Ryan Emerson
5788263413 Document Failover Lambda for Active/Passive deployments 
Closes #29787

Signed-off-by: Ryan Emerson <remerson@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2024-05-29 12:33:13 +02:00
Michal Hajas
61d0d56720 Document it is not possible to use rolling configuration upgrade for enabling persistent sessions 
Closes #29561

Signed-off-by: Michal Hajas <mhajas@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-05-29 10:19:20 +02:00
Pedro Igor
bbb83236f5 Do not lower-case the username from the IdP when creating the federated identity 
Closes #28495

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-05-29 01:58:20 -03:00
Jon Koops
a3b2dd0735 Remove deprecated ServerCookie class (#29916) 
Signed-off-by: Jon Koops <jonkoops@gmail.com>
 2024-05-28 14:14:05 +00:00
Ryan Emerson
0f17f0abc5 Require external Infinispan be of version 15 or greater 
Signed-off-by: Ryan Emerson <remerson@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-05-22 11:26:26 +00:00
Alexander Schwartz
80de3a0a71 Allow migration of non-persistent sessions to persistent sessions 
Closes #29375

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-05-22 10:30:46 +02:00
rmartinc
f7044ba5c2 Use SessionExpirationUtils for validate user and client sessions 
Check client session is valid in TokenManager
Closes #24936

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-05-22 10:12:20 +02:00
Marek Posolda
6dc28bc7b5 Clarify the documentation about step-up authentication (#29735) 
closes #28341

Signed-off-by: mposolda <mposolda@gmail.com>


Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2024-05-21 19:46:27 +02:00
Pedro Ruivo
7182bc2125 Infinispan 15.0.4.Final 
Closes #29743

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
 2024-05-21 16:47:26 +02:00
Bruno Oliveira da Silva
4a21b44b5f Add documentation about how to handle CVEs on third-party libraries reported by Snyk 
Closes #29707

Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Signed-off-by: Bruno Oliveira da Silva <bruno@abstractj.com>
 2024-05-21 09:08:18 -03:00
mposolda
bbd4b60163 Update documentation after adapters removal 
closes #28792

Signed-off-by: mposolda <mposolda@gmail.com>
 2024-05-21 09:34:48 +02:00
Alex Szczuczko
34a61d72e5 Add chmod to ADD examples in docs (#29626) 
Closes #29625

Signed-off-by: Alex Szczuczko <aszczucz@redhat.com>
 2024-05-17 09:15:37 +02:00
vramik
35df0140ee Add a note to the migration guide about index name length for Oracle database 
Closes #29594

Signed-off-by: vramik <vramik@redhat.com>
 2024-05-16 10:06:39 -03:00