keycloak

mirror of https://github.com/keycloak/keycloak.git synced 2025-12-16 20:15:46 -06:00

Author	SHA1	Message	Date
Martin Bartoš	8def691053	[OTel] Provide general options for telemetry settings (#41705 ) * [OTel] Provide general options for telemetry settings Closes #41263 Co-authored-by: Ryan Emerson <remerson@redhat.com> Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Update docs/guides/observability/telemetry.adoc Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Provide release notes and deprecation note Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Ignore link to the telemetry guide for now Signed-off-by: Martin Bartoš <mabartos@redhat.com> --------- Signed-off-by: Martin Bartoš <mabartos@redhat.com> Co-authored-by: Ryan Emerson <remerson@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>	2025-12-10 12:03:46 +00:00
vramik	5dbc91e028	Deprecate Fine-Grained Admin Permissions v1 Closes #44121 Signed-off-by: vramik <vramik@redhat.com>	2025-12-08 10:26:27 -03:00
alyneldc	56b08c02ed	Add documentation warning about 0.0.0.0 binding in dev mode (#43522 ) Inform users that Keycloak binds to all network addresses (0.0.0.0) by default in development mode. Add warning in Getting Started guide and configuration documentation, and enhance HttpOptions description. Closes #43522 Signed-off-by: Lopes De Carvalho Alyne <alynelopes298@gmail.com>	2025-12-07 14:45:34 +00:00
Sebastian Schuster	b5178a2bec	Added section on recommended isolation level to db guides Closes #44611 Signed-off-by: Sebastian Schuster <sebastian.schuster@bosch.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-12-05 14:48:31 +01:00
Steve Hawkins	25186278fc	fix: consolidating config logic closes: #42000 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-12-04 14:25:56 -03:00
Martin Bartoš	bf969b7e9d	[admin-api-v2] Remove GlassFish Expressly dependency for Hibernate Validator (#44628 ) Closes #43569 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-12-03 14:18:17 +00:00
Steven Hawkins	f7a0bb7cbd	fix: rationalizing cli using hidden options vs hard errors (#43945 ) closes: #43940 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-11-27 11:43:08 +01:00
vramik	7167262909	Add PK creation for databasechangelog in MySQL to keycloak-database-update.sql when manual migration is used. Closes #44349 Signed-off-by: vramik <vramik@redhat.com>	2025-11-26 17:06:36 -03:00
ruchikajha95	570ac40025	Promote MDC Logging Feature to Supported State Closes #41205 Signed-off-by: Ruchika Jha <ruchika@li-0551ffcc-341d-11b2-a85c-a28deda416be.ibm.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Ruchika Jha <ruchika@li-0551ffcc-341d-11b2-a85c-a28deda416be.ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-11-25 18:53:34 +00:00
Steven Hawkins	3b491bc9bf	fix: removing the keycloak hidden option for disabling http server (#44388 ) closes: #43199 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-11-21 17:37:52 +00:00
Steven Hawkins	731414e44a	fix: reverting dev property key changes (#44293 ) closes: #44287 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-11-19 07:35:50 +01:00
Peter Zaoral	b9d94d325b	Remove JSON Patch support from the Client API v2 MVP (#44120 ) Closes: #43572 Signed-off-by: Peter Zaoral <pzaoral@redhat.com>	2025-11-18 09:42:10 +00:00
Stian Thorgersen	a2c1055f8d	Proposed import order (#43432 ) * Add importOrder to Spotless Closes #43235 Signed-off-by: stianst <stianst@gmail.com> * Re-order imports with Spotless Signed-off-by: stianst <stianst@gmail.com> --------- Signed-off-by: stianst <stianst@gmail.com>	2025-11-14 09:34:49 +01:00
Steven Hawkins	63fc0eec28	task: use client v1 logic for v2 impl (#43982 ) * task: use client v1 logic for v2 impl closes: #43733 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * removing the provider module Signed-off-by: Steve Hawkins <shawkins@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-11-12 15:08:27 +01:00
Steven Hawkins	6be362de95	fix: ensure that direct building works (#44042 ) also cleaning up a couple of javadocs closes: #44031 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-11-11 16:32:44 +01:00
Steven Hawkins	ed9d6cc40a	fix: adding the built system property to the README (#43850 ) * fix: adding the built system property to the README closes: #43606 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * removing the doc / note about directly launching from the jar Signed-off-by: Steve Hawkins <shawkins@redhat.com> * Update docs/building.md Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Signed-off-by: Steven Hawkins <shawkins@redhat.com> * removing one more reference to running the jar directly Signed-off-by: Steve Hawkins <shawkins@redhat.com> * Move a chapter in README Signed-off-by: Václav Muzikář <vmuzikar@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> Signed-off-by: Václav Muzikář <vmuzikar@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Co-authored-by: Václav Muzikář <vmuzikar@redhat.com>	2025-11-11 15:06:48 +01:00
Steven Hawkins	9ef7ff22d2	allow non-optimized commands to run without a separate java launch (#43591 ) * fix: allow non-optimized commands to run without a separate java launch closes: #43611 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * Update quarkus/runtime/src/main/java/org/keycloak/quarkus/runtime/cli/command/AbstractAutoBuildCommand.java Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Signed-off-by: Steven Hawkins <shawkins@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>	2025-11-11 08:57:17 +01:00
Stian Thorgersen	d8275fe5df	Remove wildcard imports (#44060 ) Closes #44059 Signed-off-by: stianst <stianst@gmail.com>	2025-11-10 11:46:05 +01:00
Pedro Ruivo	18eeef7b26	Create user session expired event Closes #43942 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-11-07 22:36:47 +00:00
Martin Bartoš	d8f1476d7b	Improve test case for single feature option (#44041 ) Closes #44040 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-11-07 15:40:22 +00:00
Martin Bartoš	1f9694358f	Ability to enable/disable feature via single property (#43542 ) * Ability to enable/disable feature via single property Closes #43541 Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Provide support for specifying profile preview Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Remove duplication check, use the new WildcardOptionUtil Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Create quarkus specific single profile config resolver Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Remove the feature profile capability for single feature option Signed-off-by: Martin Bartoš <mabartos@redhat.com> --------- Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-11-07 13:35:39 +01:00
Martin Bartoš	229cd9450e	Improve error message for the HTTPS material loading (#44006 ) Closes #44005 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-11-07 09:48:32 +01:00
Steven Hawkins	4a63fcffaf	fix: considering source ordinality with spi options (#43805 ) closes: #43793 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-11-06 18:01:18 +01:00
Martin Bartoš	1d3a1b554b	Print a warning on duplicate options (#43918 ) * Print a warning on duplicate options Closes #43604 Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Print duplicated CLI keys and even sys props Signed-off-by: Martin Bartoš <mabartos@redhat.com> --------- Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-11-06 14:47:29 +00:00
Lukas Hanusovsky	768cea1b82	Add FIPS suite to the new tests (#43431 ) * Add FIPS test suite to the new tests Signed-off-by: Lukas Hanusovsky <lhanusov@redhat.com> * Tweaks to FIPS suite in new test Signed-off-by: stianst <stianst@gmail.com> --------- Signed-off-by: Lukas Hanusovsky <lhanusov@redhat.com> Signed-off-by: stianst <stianst@gmail.com> Co-authored-by: stianst <stianst@gmail.com>	2025-11-06 14:08:19 +01:00
Steven Hawkins	a04d5d7b5e	task: clarifying home dir unset logic (#43904 ) closes: #43903 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-11-05 08:45:06 +01:00
Václav Muzikář	9c86eae7ed	Initial Client API v2 impl (#43395 ) Closes #43224 Signed-off-by: Václav Muzikář <vmuzikar@redhat.com> Co-authored-by: Martin Bartoš <mabartos@redhat.com> Co-authored-by: Peter Zaoral <pzaoral@redhat.com> Co-authored-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Robin Meese <39960884+robson90@users.noreply.github.com>	2025-11-03 14:31:54 +01:00
Steven Hawkins	f7735b573c	fix: removing the fast start optimization (#43686 ) * fix: removing the fast start optimization closes: #38790 #42960 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * updating the docs based upon a review comment Signed-off-by: Steve Hawkins <shawkins@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-11-03 12:37:13 +01:00
Martin Bartoš	8502cc3ae1	Including OTLP headers for tracing (#43122 ) * Including OTLP headers for tracing Closes #41007 Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Polishing, add test for the util class, address review Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Remove the WildcardOptionsUtil#isKcWildcardOption Signed-off-by: Martin Bartoš <mabartos@redhat.com> --------- Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-10-31 15:46:05 +01:00
Martin Bartoš	12d9ec048b	[quarkus-next] Removed exception escaped OTel attribute (#43848 ) Closes #43845 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-10-31 08:52:07 +01:00
Steven Hawkins	74e5da49c7	fix: moving h2 logic out of Database so that it can be resolved (#43750 ) closes: #43687 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-10-30 11:08:10 -04:00
Steven Hawkins	9e98f2bf96	fix: simplify debug handling and remove the 0.0.0.0 default (#43574 ) * fix: simplify debug handling and remove the 0.0.0.0 default closes: #43160 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * Update quarkus/dist/src/main/content/bin/kc.sh Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Signed-off-by: Steven Hawkins <shawkins@redhat.com> * removing the ability to specify just the ip Signed-off-by: Steve Hawkins <shawkins@redhat.com> * Apply suggestions from code review Co-authored-by: Peter Zaoral <pepo48@gmail.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Co-authored-by: Peter Zaoral <pepo48@gmail.com>	2025-10-30 15:57:37 +01:00
Alexander Schwartz	0f01444543	Allow only normalized paths in requests (#43765 ) Closes #43763 Signed-off-by: Martin Bartoš <mabartos@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Martin Bartoš <mabartos@redhat.com>	2025-10-30 14:37:50 +01:00
Alexander Schwartz	ba0fe9bd70	Cleaning up threadlocals to prevent (small) memory leak Closes #43759 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-10-28 10:36:27 -03:00
Steven Hawkins	422eadecf4	fix: adding type validation and lazily adding cli options (#43467 ) * fix: adding type validation and lazily adding cli options closes: #43466 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * consolidating empty value checking Signed-off-by: Steve Hawkins <shawkins@redhat.com> * stripping the smallrye code if possible Signed-off-by: Steve Hawkins <shawkins@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-10-23 13:46:35 +00:00
vramik	b5ed45f2a0	Ability to define workflows with YAML Closes #42687 Signed-off-by: vramik <vramik@redhat.com> Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-10-23 09:33:50 -03:00
Steven Hawkins	49305d1567	fix: generalizing the misconfiguration detection. (#43500 ) closes: #43166 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-10-21 11:44:00 +02:00
Steven Hawkins	3b7f364b4f	fix: allow for --optimized to receive signals (#43580 ) * fix: allowing --optimized to terminate gracefully closes: #43561 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * Update quarkus/dist/src/main/content/bin/kc.sh Co-authored-by: Martin Bartoš <mabartos@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Martin Bartoš <mabartos@redhat.com>	2025-10-20 17:52:27 +02:00
Martin Bartoš	37bea126c7	[PERF] Jackson reflection-free serialization/deserialization (#42946 ) * [PERF] Jackson reflection-free serialization/deserialization Closes #42945 Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Update docs/guides/server/configuration-production.adoc Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net> Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Docs improvements Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Update docs/guides/server/configuration-production.adoc Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Polish the features template macros Signed-off-by: Martin Bartoš <mabartos@redhat.com> --------- Signed-off-by: Martin Bartoš <mabartos@redhat.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>	2025-10-17 20:24:47 +02:00
Steven Hawkins	f28e34ee79	fix: fully sanitizing mappers and changing duplicated log to trace (#42959 ) closes: #38438 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-10-14 12:28:29 -04:00
Steven Hawkins	aa04ff8781	fix: adding checks around the hostname path (#43193 ) closes: #43166 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-10-14 17:41:25 +02:00
Martin Bartoš	38909da47d	[quarkus-next] DatasourcesConfigurationTest fails (#43448 ) Closes #43447 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-10-14 14:50:33 +00:00
Steven Hawkins	700b86fad8	fix: refining https-protocols documentation (#43420 ) closes: #43164 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-10-14 08:01:08 -04:00
rmartinc	248d6d1feb	Upgrade xmlsec to 3.0.4 and remove KeycloakFipsSecurityProvider workaround Closes #43263 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-10-13 15:38:58 +02:00
stianst	aedd7fe5db	Remove unused imports as part of #43233 Signed-off-by: stianst <stianst@gmail.com>	2025-10-13 13:32:01 +02:00
Steven Hawkins	a74c178195	fix: making picocli ansi handling match quarkus (#43268 ) closes: #42446 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-10-08 08:51:09 +02:00
rmartinc	94a4e062f7	Add a debug statement when the KeycloakFipsSecurityProvider is created Closes #43015 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-10-07 16:59:22 +02:00
Steven Hawkins	7bfc33fd5f	fix: auto-defaulting log console color (#42669 ) closes: #42445 Signed-off-by: Steve Hawkins <shawkins@redhat.com> Co-authored-by: Martin Bartoš <mabartos@redhat.com>	2025-10-06 17:14:30 +00:00
Ryan Emerson	5cb0562fd2	Prevent users configuring max-count=-1 for caches with a default upper-bound Closes #33146 Signed-off-by: Ryan Emerson <remerson@ibm.com>	2025-10-02 19:58:28 +00:00
Erasure5959	3d9eb434b8	Disable Secure Client-Initiated Renegotiation by default The parameter -Djdk.tls.rejectClientInitiatedRenegotiation=true disables Secure Client-Initiated Renegotiation in Keycloak to resolve a potential DoS vulnerability. Note this is applicable only to TLS 1.2. Closes #43020 Signed-off-by: Erasure5959 <154384607+Erasure5959@users.noreply.github.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-10-01 14:35:29 +00:00

1 2 3 4 5 ...

1117 Commits