mirror/keycloak
1
0
Fork 0
mirror of https://github.com/keycloak/keycloak.git synced 2025-12-21 06:20:05 -06:00
Code Issues Packages Projects Releases Wiki Activity
26,697 Commits 20 Branches 287 Tags
a2d33cf4aa3fb67aaf69ff50c185c03da9923af8
Commit Graph

969 Commits

Author SHA1 Message Date
AndyMunro
da9774b281 Update Leveraging Jakarta EE 
Closes #34873

Signed-off-by: AndyMunro <amunro@redhat.com>
 2024-11-13 10:14:06 +01:00
AndyMunro
85765f94f2 Apply QE authorization services guide comments 
Closes #34882

Signed-off-by: AndyMunro <amunro@redhat.com>
 2024-11-13 10:06:06 +01:00
AndyMunro
77de5bcec9 Address QE comments on HA guide 
Closes #34887

Signed-off-by: AndyMunro <amunro@redhat.com>
 2024-11-13 10:00:25 +01:00
andymunro
3ca3a4ad34 Update installation locations 
Closes #34855

Signed-off-by: AndyMunro <amunro@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-11-12 14:10:32 +00:00
Marek Posolda
92d9ac6621 Update KEYCLOAK_SESSION cookie to not have sessionId in plaintext (#34551) 
closes #34026

Signed-off-by: mposolda <mposolda@gmail.com>
 2024-11-11 18:47:18 +01:00
Pedro Ruivo
d7e5319f70 Document network ports for Keycloak clustering 
Also switch the default to jdbc-ping as this  should be a drop-in replacement looking at the networking behavior of udp.

Closes #34658

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-11-11 13:28:15 +01:00
Stian Thorgersen
b82ec62eb7 Add database testsuite matrix to new testsuite (#34775) 
Closes #34692

Signed-off-by: stianst <stianst@gmail.com>
 2024-11-11 07:04:30 +01:00
Pedro Igor
0a05ba49d1 Adding a details map to admin events to store additional contextual data when the event is fired 
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-11-07 17:19:43 -03:00
Pedro Ruivo
33cae33ae4 Remove JGroups thread pool docs from HA Guide 
Clustering is disabled with multi-site deployment and there is no
JGroups thread pool to configure.

Closes #34715

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-11-07 09:00:48 +00:00
Ricardo Martin
226daa41c7 Add service account mappers via client scope instead of dedicated scope (#34664) 
Closes #10417

Signed-off-by: rmartinc <rmartinc@redhat.com>


Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
Signed-off-by: Ricardo Martin <rmartinc@redhat.com>
 2024-11-07 08:45:11 +01:00
Ricardo Martin
ce454bda47 Remove online session when offline access is requested as the first request (#34346) 
Closes #34001

Signed-off-by: rmartinc <rmartinc@redhat.com>


Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
Signed-off-by: Marek Posolda <mposolda@gmail.com>

---------

Signed-off-by: rmartinc <rmartinc@redhat.com>
Signed-off-by: Marek Posolda <mposolda@gmail.com>
Co-authored-by: Marek Posolda <mposolda@gmail.com>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2024-11-06 08:33:12 +01:00
Alexander Schwartz
25e4995eb7 Fixing explicit Anchor for downstream 
Closes #34634

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-11-04 18:27:46 +01:00
Alexander Schwartz
373656593d Fixing cross-references between guides 
Closes #34624

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-11-04 16:11:08 +01:00
Gilvan Filho
910caf5ff8 Update brute force docs 
Fixes #27378

Signed-off-by: Gilvan Filho <gilvan.sfilho@gmail.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2024-11-04 09:41:26 +00:00
Bernd Bohmann
7681687e0a Provide missing user event metrics from aerogear/keycloak-metrics-spi to a keycloak micrometer event listener 
inspired by
https://github.com/aerogear/keycloak-metrics-spi
https://github.com/please-openit/keycloak-native-metrics

Closes #33043

Signed-off-by: Bernd Bohmann <bommel@apache.org>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Signed-off-by: Michal Hajas <mhajas@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Michal Hajas <mhajas@redhat.com>
 2024-11-04 08:56:24 +01:00
mposolda
d80cb010ff Make documentation more clear that keycloak javascript adapter and node.js adapter are OIDC 
closes #34570

Signed-off-by: mposolda <mposolda@gmail.com>
 2024-11-04 08:44:46 +01:00
Max Hovens
4e540fa2a7 Remove inaccurate statement about master realm imports 
This is supported since 26.0.0

Closes #34301

Signed-off-by: maxhov <14804474+maxhov@users.noreply.github.com>
 2024-10-31 11:23:35 +00:00
Ryan Emerson
a79b67cac8 Deprecate other transport stacks (ec2, azure, google) 
Closes #34253

Signed-off-by: Ryan Emerson <remerson@redhat.com>
 2024-10-31 11:47:13 +01:00
Erik Jan de Wit
19ef0a608b Add switch to toggle dark mode (#33822) 
Closes #33821

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
Signed-off-by: Jon Koops <jonkoops@gmail.com>
Co-authored-by: Jon Koops <jonkoops@gmail.com>
 2024-10-31 10:19:03 +00:00
Pedro Igor
4ad462fbd3 Do not rely on the pwdLastSet attribute when updating AD entries 
Closes #34467

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-10-30 17:43:07 +01:00
Ryan Emerson
7152a8b0f3 Update caching docs to reflect that IP multicast is no longer used by default 
Closes #34495

Signed-off-by: Ryan Emerson <remerson@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-10-30 11:47:32 +00:00
Pedro Ruivo
cf2e2b692b Update sizing guide for client credential grant 
Closes #34347

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
 2024-10-29 13:25:42 +00:00
AndyMunro
4984900bae Make organizations chapter available in downstream 
Closes #34382

Signed-off-by: AndyMunro <amunro@redhat.com>
 2024-10-28 10:28:24 +01:00
Andy
f994cc54d5 Remove robots.txt entirely 
* remove robots.txt entirely, as blocking page-
crawling prevents the `X-Robots-Tag` headers
(and similar meta tags) from working as intended.

Closes #17433

Signed-off-by: Andy <andy@slice.is>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-10-25 12:09:50 +00:00
Ryan Emerson
6eb870fcfc Add JDBC_PING2 stacks for both TCP and UDP 
Closes #34265

Signed-off-by: Ryan Emerson <remerson@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-10-25 00:17:44 +02:00
Kamesh Akella
1dc3b08ba8 update the sizing guide with the correct instance type 
Closes #34315

Signed-off-by: Kamesh Akella <kamesh.asp@gmail.com>
 2024-10-24 21:55:51 +02:00
Dave Meyer
883b0a3378 doc: Replaced dead link (#34239) 
Replaced dead link to quickstart template with a (similar) template.

Signed-off-by: Dave Meyer <7davidmeyer@gmail.com>
 2024-10-24 15:28:42 +02:00
Ryan Emerson
902abfdae4 JDBC_PING as default discovery protocol 
Closes #29399

- Add ProviderFactory#dependsOn to allow dependencies between
  ProviderFactories to be explicitly defined
- Disable Infinispan default shutdownhook disabled to ensure lifecycle
  is managed exclusively by Keycloak
- Remove Infinispan shutdown hook in KeycloakRecorder and manage
  EmbeddedCacheManager lifecycle only in DefaultInfinispanConnectionProviderFactory#close

Signed-off-by: Ryan Emerson <remerson@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-10-22 20:19:19 +00:00
Steven Hawkins
af1a5ea2a8 fix: refining https file type detection (#33703) 
also making common trustore logic align

closes: #33649

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2024-10-22 13:05:56 -04:00
Gilvan Filho
e6cd1a05c1 Update docs/documentation/server_admin/topics/threat/brute-force.adoc 
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
Signed-off-by: Gilvan Filho <gilvan.sfilho@gmail.com>
 2024-10-22 10:33:22 -03:00
Gilvan Filho
c4005d29f0 add linear strategy to brute force 
closes #25917

Signed-off-by: Gilvan Filho <gilvan.sfilho@gmail.com>
 2024-10-22 10:33:22 -03:00
Steven Hawkins
fd89297c15 fix: adding a server guide on installation location / layout (#33604) 
closes: #32110

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2024-10-21 18:02:37 +02:00
Pedro Ruivo
fffa9aa72e Enable virtual threads in Infinispan and JGroups by default 
Closes #33939

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-10-21 16:02:28 +00:00
Simon Levermann
dcf1d83199 Enable enforcement of a minimum ACR at the client level (#16884) (#33205) 
closes #16884 

Signed-off-by: Simon Levermann <github@simon.slevermann.de>
 2024-10-21 13:54:02 +02:00
mposolda
dbcb3151a9 Align admin console for client for backchannel and frontchannel logout 
closes #10138

Signed-off-by: mposolda <mposolda@gmail.com>

Co-authored-by: Erik Jan de Wit <edewit@redhat.com>
Signed-off-by: Marek Posolda <mposolda@gmail.com>
 2024-10-21 11:32:03 +02:00
Robin Meese
e9823d0504 Added Catalan and Japanes language to translation.md. Added Badge for translation status (#34094) 
Signed-off-by: Robin Meese <39960884+robson90@users.noreply.github.com>
 2024-10-18 15:16:20 +02:00
Jon Koops
7657e71be1 Automatically retrieve configuration for authorization 
Closes #14562

Signed-off-by: Jon Koops <jonkoops@gmail.com>
 2024-10-18 14:03:36 +02:00
Sutou Kouhei
358ab5512c Add a description which port shoud be reverse proxied 
I misunderstood how to configure reverse proxy with different
hostname/hostname-admin. So this description will help other users.

Closes #33559

Signed-off-by: Sutou Kouhei <kou@clear-code.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-10-18 10:08:00 +02:00
Alexander Schwartz
6efeb0ad37 Fixing link to external docs 
Closes #33991

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-10-17 18:23:40 -03:00
Martin Bartoš
637ca2e138 [PERF] OpenTelemetry is initialized even when disabled (#34031) 
Change host reference in logging guide

Fixes #33948

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
 2024-10-17 15:08:50 +02:00
Jake
946798aa01 Small grammatical error in documentation 
Closes #34009

Signed-off-by: Jake <156826184+jlanning-gl@users.noreply.github.com>
 2024-10-16 18:49:49 +02:00
Marek Posolda
94b5f05c64 Re-add links to policy-enforcer to the authorization services documen… (#33905) 
closes #32644

Signed-off-by: mposolda <mposolda@gmail.com>


Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
Signed-off-by: Marek Posolda <mposolda@gmail.com>
 2024-10-15 08:34:56 +02:00
Stefan Guilhen
a832381a37 Add section to clarify the impact of having imported LDAP users when performing searches 
Closes #16451

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2024-10-11 11:01:14 -03:00
kennhhhhh
dbfd059b21 fix: available SPIs should be found in Provider info (#33805) 
Signed-off-by: kennhhhhh <164991693+kennhhhhh@users.noreply.github.com>
 2024-10-11 06:47:24 +00:00
foliengriller
316e00bb98 Unified case in Dockerfile Example (#33774) 
This prevents a warning on build-time.
https://docs.docker.com/reference/build-checks/from-as-casing/

Signed-off-by: foliengriller <info@simpelwebservice.de>
 2024-10-10 13:22:25 +02:00
Pedro Ruivo
464fc90519 Fail to start if work cache is not replicated 
Keycloak will now fail to start if the work cache is replicated.
Listeners require the data to be local.

Closes #33702

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-10-09 19:40:24 +00:00
Pedro Ruivo
0e3554934e Read cache-ispn.xml from conf/ by default 
Fixed #31492

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-10-09 16:40:17 +00:00
Steven Hawkins
03b5ba3462 fix: linking within getting started on horizontal scaling 
closes: #29390

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-10-08 13:46:24 +00:00
Jon Koops
05e8b932c3 Add dark mode support to welcome theme and unify approach (#32495) 
Closes #26178

Signed-off-by: Jon Koops <jonkoops@gmail.com>
Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
Co-authored-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
 2024-10-04 08:27:37 -04:00
Alexander Schwartz
7b85fc3319 Fix runaway formatting 
Closes #33585

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-10-04 14:09:21 +02:00