mirror/keycloak
1
0
Fork 0
mirror of https://github.com/keycloak/keycloak.git synced 2026-01-06 06:49:53 -06:00
Code Issues Packages Projects Releases Wiki Activity
26,697 Commits 19 Branches 288 Tags
a2d33cf4aa3fb67aaf69ff50c185c03da9923af8
Commit Graph

969 Commits

Author SHA1 Message Date
Ryan Emerson
db14ab1365 Refactor HA guide to refer to generic multi-site deployments 
Old Active/Passive guides replaced with Active/Active architecture, but
A/P vs A/A distinction hidden from users in favour of generic multi-site
docs.

Closes #31029

Signed-off-by: Ryan Emerson <remerson@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-08-07 08:22:59 +00:00
Tero Saarni
62fd969fe1 Allow requests from local IPv6 addresses 
If administrator selects EXTERNAL for Require SSL setting, allow clear-text
HTTP requests when client is coming from IPv6 link-local or unique local
address (ULA).

Previously only private IPv4 addresses were allowed and private IPv6 addresses
were rejected.

Closes #30678

Signed-off-by: Tero Saarni <tero.saarni@est.tech>
 2024-08-05 16:38:55 +02:00
rmartinc
942d5d0aa3 Convert chapter planning for securing applications and services to guides 
Final removal of the securing_apps documentation
Final checks for links, order and other minor things
Closes #31328

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-08-01 16:45:56 +02:00
Giuseppe Graziano
adb2af442a Move token exchange documentation to guides (#31707) 
Closes #31334


Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
Signed-off-by: Marek Posolda <mposolda@gmail.com>
Co-authored-by: Marek Posolda <mposolda@gmail.com>
 2024-07-30 21:04:05 +02:00
Giuseppe Graziano
a3c9944610 Move Keycloak JavaScript adapter to guides (#31751) 
Closes #31695


Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
Signed-off-by: Marek Posolda <mposolda@gmail.com>
Co-authored-by: Marek Posolda <mposolda@gmail.com>
 2024-07-30 18:39:33 +02:00
rmartinc
b07b120f2a Convert chapter client registration CLI from securing apps into guides 
Closes #31333

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-30 18:30:46 +02:00
rmartinc
b2b27f8a4e Convert chapter client registration service from securing apps into guides 
Closes #31332

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-30 18:30:46 +02:00
Giuseppe Graziano
e1266c2678 Move mod-auth-openidc.adoc to guides 
Closes #31697

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
 2024-07-30 18:23:40 +02:00
Peter Zaoral
07cfdac862 Document admin bootstrapping and recovery 
Closes: #30011

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
 2024-07-30 15:45:56 +02:00
Giuseppe Graziano
ca2b6dc754 Move Node.js adapter to guides 
Closes #31696

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
 2024-07-30 11:29:51 +02:00
Marek Posolda
5b52117351 Documentation for Delete Credential action and related changes (#31719) 
closes #31718


Signed-off-by: mposolda <mposolda@gmail.com>
Signed-off-by: Marek Posolda <mposolda@gmail.com>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2024-07-30 10:05:14 +02:00
Giuseppe Graziano
c3019fb2d3 Move oidc documentation to guides (#31627) 
Closes #31329

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
 2024-07-30 09:46:14 +02:00
Steven Hawkins
6a91436746 enhance: add bootstrap admin handling to the operator (#31646) 
switching to manual invocation of statefulset reconciliation

closes: #30004



* Update docs/guides/operator/advanced-configuration.adoc




* enhance: add bootstrap admin handling to the operator

closes: #30004



---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
 2024-07-29 14:08:31 +02:00
Steven Hawkins
22f8e5cdf0 Added field to the RealmImport spec to replace environment variables within the realm import (#31232) 
* Added field to the RealmImport spec to replace environment variables within the realm import

Closes #26470

Signed-off-by: stustison <scott.tustison@gmail.com>

* Added field to the RealmImport spec to replace environment variables within the realm import

Closes #26470

Signed-off-by: stustison <scott.tustison@gmail.com>

* testing refinement for placeholder handling

closes: #26470

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* changing from placeholdersecret to placeholder

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update docs/guides/operator/realm-import.adoc

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

* Update docs/documentation/release_notes/topics/26_0_0.adoc

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

---------

Signed-off-by: stustison <scott.tustison@gmail.com>
Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: stustison <scott.tustison@gmail.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
 2024-07-29 11:16:09 +02:00
rmartinc
e97ffe7a32 Convert chapter docker registry from securing apps into guides 
Closes #31331

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-26 15:39:51 +02:00
Alexander Schwartz
227c71f7f0 Persisting revoked access tokens 
Closes #31296

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-07-26 11:46:14 +02:00
Václav Muzikář
6f62e6768c Revert "operator bootstrap admin handling (#30711)" 
This reverts commit 3139b82e3c.
 2024-07-26 10:02:13 +02:00
rmartinc
e30230488e Convert chapter mod_auth_mellon from securing apps into guides 
Closes #31569

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-24 21:16:49 +02:00
Pedro Igor
f4b1a5ca88 Updating docs 
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-07-24 15:12:16 -03:00
Maciej Mierzwa
97e89e2071 feature: password age in days policy 
Closes #30210

Signed-off-by: Maciej Mierzwa <dev.maciej.mierzwa@gmail.com>
 2024-07-24 15:12:16 -03:00
Steven Hawkins
3139b82e3c operator bootstrap admin handling (#30711) 
* enhance: add bootstrap admin handling to the operator

closes: #30004

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update docs/guides/operator/advanced-configuration.adoc

Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

* enhance: add bootstrap admin handling to the operator

closes: #30004

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
 2024-07-24 17:35:13 +02:00
rmartinc
9f2eddead8 Re-add notes about not supporting DPoP and holder-of-key in the remaining adapters 
Closes #30874

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-24 11:55:47 +02:00
rmartinc
ccab30d5f2 Move saml documentation to guides 
Closes #31330

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-24 11:50:24 +02:00
Thomas Darimont
dbd4079f92 Allow users to customize the footer of a login theme (#31391) 
Closes  #31390

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
 2024-07-23 09:29:38 +02:00
Martin Kanis
fdc35919a0 Wrong command in exposing metrics from caches section 
Closes #31413

Signed-off-by: Martin Kanis <mkanis@redhat.com>
 2024-07-19 09:19:31 +02:00
Steven Hawkins
14a9927e29 fix: scaling and tuning getting started guide 
closes: #29388

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2024-07-18 13:31:37 +00:00
Hynek Mlnarik
a7374f92be Update login theme to login v2 
Fixes: #29009

Signed-off-by: Hynek Mlnarik <hmlnarik@redhat.com>
 2024-07-18 14:33:22 +02:00
rmartinc
764ef4831a Release notes and some notes for JavaKeystoreProvider changes 
Closes #31226

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-17 10:44:45 +02:00
Stian Thorgersen
865c2dabea Update themes.adoc (#31362) 
Closes #30816

Signed-off-by: Stian Thorgersen <stianst@gmail.com>
 2024-07-17 10:32:45 +02:00
Pedro Ruivo
9b39498085 Add default stack in cache-ispn.xml 
A bug in Infinispan prevents the metrics to be registered if the "stack"
is not specified.
Change the default configuration shipped with Keycloak to use the UDP
stack as default.
UDP is the default in previous Keycloak versions.

Fixes #31218

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-07-16 12:05:38 +02:00
Thomas Darimont
e79d10e71e Add missing user event translations to admin-ui 
Fixes #27677

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-07-12 10:04:57 +02:00
Steven Hawkins
4970a9b729 fix: deprecate KEYCLOAK_ADMIN and KEYCLOAK_ADMIN_PASSWORD 
closes: #30658

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Jon Koops <jonkoops@gmail.com>
 2024-07-11 18:07:57 +02:00
rmartinc
e80c3fee9b Change link to https://github.com/eclipse/microprofile/wiki/JWT_Auth 
Closes #31219

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-11 18:03:57 +02:00
Steve Hawkins
9247029ca3 fix: removes the operator's usage of the v1 proxy option 
closes: #30945

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2024-07-11 14:21:50 +02:00
rmartinc
096e335a92 Support for vault and AES and HMAC algorithms to JavaKeystoreKeyProvider 
Closes #30880
Closes #29755

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-11 12:40:45 +02:00
Lucy Linder
0f7c2364f0 Update links in ReCAPTCHA doc 
Google links changed and are now causing redirect issues reports.

Closes: #31187

Signed-off-by: Lucy Linder <lucy.derlin@gmail.com>
 2024-07-11 00:27:09 +02:00
Martin Kanis
922eaa9fc8 Disable username prohibited chars validator when email as username is… (#31140) 
* Disable username prohibited chars validator when email as the username is set

Closes #25339

Signed-off-by: Martin Kanis <mkanis@redhat.com>
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-07-10 09:46:24 -03:00
rmartinc
ce195b81f8 Improve consent deletion when a realm is removed 
Closes #30992

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-10 09:44:42 +02:00
Gilvan Filho
a918eb1e30 Fix user storage spi jpa quickstart description 
Closes #30941

Signed-off-by: Gilvan Filho <gfilho@redhat.com>
 2024-07-08 14:44:41 +02:00
Pedro Igor
1a8075d62a Update migration and upgrade guides about GroupRemovedEvent no longer fired when removing a realm 
Closes #30919

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-07-05 10:14:30 +02:00
Pedro Igor
b745ac8259 Documenting LDAP connection pooling 
Closes #30995

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-07-04 13:21:47 +02:00
Diego Garcia Lozano
2ff0d4e4f8 Update caching docs to match breaking changes in v25 
In the latest Keycloak version (v25.0.1) the cache options are not build options anymore. They now have to be provided during runtime.

Closes #31050

Signed-off-by: Diego Garcia Lozano <diegogarcialozano95@gmail.com>
 2024-07-04 11:54:32 +02:00
Steven Hawkins
a7ae90cbb6 fix: adds affinity and other scheduling to the operator (#29977) 
closes: #29258

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2024-07-03 20:07:03 +02:00
Pedro Aguiar
2316b8d82a update: fix typo in hostname.adoc (#31007) 
- `proxy_name` becomes `project_name`.

Signed-off-by: Pedro Aguiar <contact@codespearhead.com>
 2024-07-02 16:50:38 +00:00
Thomas Darimont
f34bb21af6 Fix deprecations in common module 
- Use charset in `Encode` class
- Replace reflective call to protected `Liquibase#resetServices()` with call to exposed public method on a custom subclass `KeycloakLiquibase`
- Remove usage of deprecated AccessController class in Reflections
- Deprecated SetAccessibleProvilegedAction and UnsetAccessibleProvilegedAction

Fixes #22209

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-07-02 16:02:35 +00:00
Peter Zaoral
add45a25a8 Add default CPU limit/request for the operator (#30601) 
Closes: #27432

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
 2024-07-01 15:12:43 +02:00
Christoph Schulz
657aff787f Add missing comma to (#30914) 
Signed-off-by: Christoph Schulz <mail@ciis0.de>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
 2024-06-28 13:13:13 +00:00
Václav Muzikář
bce7a29035 Document how Admin REST API endpoints work with Hostname config 
Closes #30537

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
 2024-06-28 09:31:41 +02:00
Stan Silvert
a1445cd93f Minor doc fix. (#30899) 
Signed-off-by: Stan Silvert <ssilvert@redhat.com>
 2024-06-27 16:18:32 -04:00
andymunro
30264c7dd4 Remove inclusive language foreword 
Closes #30856

Signed-off-by: AndyMunro <amunro@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-06-27 15:22:03 +02:00