mirror/keycloak
1
0
Fork 0
mirror of https://github.com/keycloak/keycloak.git synced 2026-01-05 14:30:03 -06:00
Code Issues Packages Projects Releases Wiki Activity
28,439 Commits 18 Branches 287 Tags
d2f4635ea0768c8fbeb69e168fd5da13a271d957
Commit Graph

715 Commits

Author SHA1 Message Date
Steven Hawkins
76bc9fadcb fix: adding a -- separator for spi options (#40005) 
* fix: adding a -- separator for spi options

closes: #39063

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* adding a warning for ambiguous spi options

also adding a note about the change

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
# Conflicts:
#	docs/documentation/upgrading/topics/changes/changes-26_3_0.adoc

* updating docs to the new format

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
# Conflicts:
#	docs/guides/high-availability/examples/generated/keycloak-ispn.yaml
#	docs/guides/high-availability/examples/generated/keycloak.yaml

* internally using the new spi options

also adding a deprecation notice

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Apply suggestions from code review

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

* correcting options output

adding + + inlining where needed

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* adding test showing the env mapping with __

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
 2025-06-13 16:13:53 +02:00
Martin Bartoš
21bd46cb18 Add templates for release notes and migration guide 
Closes #40441

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
 2025-06-12 11:38:06 +02:00
Alexander Schwartz
0b3950529e Re-sort the release notes and upgrading guide (#40424) 
Closes #40422

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: Michal Hajas <mhajas@redhat.com>
 2025-06-12 10:25:42 +02:00
Ricardo Martin
b89f8a0225 Documentation changes for the 2FA additions 
Closes #40001

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2025-06-12 09:30:27 +02:00
Alexander Schwartz
4af3d7cc9d Redirect requests from outdated theme version to the current theme version 
Closes #39723

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2025-06-11 11:13:55 +02:00
vramik
aafb140529 Add a note to release notes about admin roles mapping 
Fixes #39956

Signed-off-by: vramik <vramik@redhat.com>
 2025-06-09 09:34:45 -03:00
Ryan Emerson
0c62bd0878 Change discovery in Kubernetes to jdbc-ping 
Closes #39544

Signed-off-by: Ryan Emerson <remerson@redhat.com>
 2025-06-05 16:48:30 +02:00
mposolda
b03b9f9e3a Improve documentation of service-accounts and make it more clear. Delete the unused file service-accounts.adoc 
closes #39748

Signed-off-by: mposolda <mposolda@gmail.com>
 2025-06-05 08:45:12 +02:00
rmartinc
abd7f88526 Make the checkbox "Sign out from other devices" unchecked by default 
Closes #39975

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2025-06-04 14:11:29 +02:00
Alexander Schwartz
2b2d7bbcbe Updated documentation to handle the conf folder on upgrades (#40175) 
Closes #40046
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2025-06-03 16:14:11 +02:00
Pedro Igor
7cc055f8a6 Verify brokered user email based on the email_verified claim from the ID Token returned by the OP 
Closes #39885

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-05-29 10:45:18 -03:00
Pedro Igor
e6e6fa60fa Adding OAuth2-based identity broker 
Closes #35266

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-05-27 12:07:01 -03:00
Michal Hajas
88f660b235 Add experimental feature rolling-updates:v2 that allows rolling updat… (#39751) 
...e for patch releases
Closes #38882
Signed-off-by: Michal Hajas <mhajas@redhat.com>
 2025-05-27 11:17:42 -03:00
foliengriller
54b131e34e Update themes-react.adoc 
Fixes link formatting

Signed-off-by: foliengriller <info@simpelwebservice.de>
 2025-05-27 09:19:05 +02:00
Pedro Igor
b22b1f298c Adding parameter to control whether the count of subgroups of subgroups should be returned 
Closes #39668

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-05-22 11:15:38 -03:00
rmartinc
3c511635ba Skip AIA for webauthn register if a crendential of teh correct type already exists 
Closes #39191

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2025-05-20 18:09:12 +02:00
mposolda
fe2790a09d Fix documentation link to quickstarts to point to 'main' branch instead of 'latest' branch 
closes #39798

Signed-off-by: mposolda <mposolda@gmail.com>
 2025-05-19 10:32:06 +02:00
Kai J. Witt
c76bb0683c Make max auth age configurable for all required actions by default 
Moved the current configuration implementation for the update password

Closes #39408

Signed-off-by: Kai Josef Witt <KWitt@vhv.de>
Signed-off-by: Marek Posolda <mposolda@gmail.com>
Co-authored-by: Kai Josef Witt <KWitt@vhv.de>
Co-authored-by: Marek Posolda <mposolda@gmail.com>
 2025-05-15 08:44:38 +02:00
Douglas Palmer
64cb66f451 Inconsistency in User enabled status in Rest query results. 
Closes #39549 #28713

Signed-off-by: Douglas Palmer <dpalmer@redhat.com>
 2025-05-14 20:10:14 +02:00
Pedro Igor
34ad280665 Build user representations when searching based on the user profile settings 
Closes #39595

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-05-14 10:42:25 +02:00
Pedro Igor
4171da9fbb Updating upgrading guide with the changes to theme templates 
Closes #39562

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-05-14 09:38:41 +02:00
yorickdevries
d5b873d705 Change screenshot from permissions view to correct resources view 
Cropped it in accordance with the other images

Closes #39697

Signed-off-by: Yorick <yorickdevries@live.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2025-05-14 07:00:37 +00:00
Awambeng
ea4ef74917 Fix doc(oid4vc): Correct realm-attributes example and update HTTP method in docs (#39409) 
Closes #39264

Signed-off-by: Awambeng Rodrick <awambengrodrick@gmail.com>
 2025-05-13 10:09:14 +02:00
andymunro
0fc18c3a0b Make links generic 
Closes #39469

Signed-off-by: AndyMunro <amunro@redhat.com>
 2025-05-09 16:18:15 +02:00
andymunro
afe6d4d4a0 Fix callouts 
Closes #39590

Signed-off-by: AndyMunro <amunro@redhat.com>
 2025-05-09 14:10:59 +00:00
Alexander Schwartz
a17f551eb2 Log out other sessions including offline sessions on password change 
Closes #38850

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2025-05-06 14:04:13 +02:00
Daniel Höxtermann
46ed361278 Fix footer ftl snippet in documentation 
Closes #39442

Signed-off-by: Daniel Höxtermann <daniel@hxtm.dev>
 2025-05-05 06:46:15 +00:00
Alexander Schwartz
f79408788d Document how to configure Istio to allow for JGroups mTLS 
Closes #39065

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: Pedro Ruivo <pruivo@users.noreply.github.com>
 2025-05-02 12:08:02 +00:00
Steven Hawkins
24910d9e1c addresses slow import/export performance by limiting persistence context size (#37926) 
* fix: addresses slow import/export performance with more batching

closes: #37991

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* removing flush/detach manipulation

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* refining the doc note about using multiple files for larger user counts

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* adding doc note about useExistingSession method removal

and expanding javadocs

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2025-04-29 18:57:45 -04:00
Steven Hawkins
08b5183784 fix: relaxes the admin root redirect check (#39095) 
* fix: relaxes the admin root redirect check

also deprecates the usage of local_admin

closes: #39085

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* moving deprecation to 26.3

also changing the adminroot test to seem like it's coming from a proxy

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2025-04-29 11:09:51 -04:00
rmartinc
4730dbdd8d Make recovery codes supported 
Closes #38994

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2025-04-29 10:25:46 +02:00
mposolda
e9283ee71d Documentation for recovery codes (deprecation of password policy and required action config) 
closes #39245

Signed-off-by: mposolda <mposolda@gmail.com>
 2025-04-29 09:29:38 +02:00
Pedro Ruivo
eafe08a73a Create CacheEmbeddedConfigProvider 
Closes #38497

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2025-04-28 13:00:53 +02:00
Steven Hawkins
837c2e25a2 fix: adding docs about h2 migration (#39159) 
* fix: adding docs about h2 migration

closes: #39046

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update docs/documentation/upgrading/topics/changes/changes-26_2_0.adoc

Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

* Update docs/documentation/upgrading/topics/migrate_db.adoc

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

* Apply suggestions from code review

Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
 2025-04-24 17:37:03 +02:00
Emmanuel Lécharny
a48469896e Added a link to the ApacheDS doc for server side password hashing 
Closes #39136

Signed-off-by: Emmanuel Lécharny <elecharny@gmail.com>
 2025-04-24 09:25:03 +00:00
Alexander Schwartz
050d3ccba4 Fix broken link for XOAUTH2 configuration 
Closes #39096

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2025-04-23 08:47:40 +02:00
Emmanuel Lécharny
1dc97d5d4d Update ldap.adoc with ApacheDS details 
Added some precision about ApacheDS password management.

Closes #39136

Signed-off-by: Emmanuel Lécharny <elecharny@apache.org>
Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
 2025-04-23 07:55:59 +02:00
Marek Posolda
f8a4a8da86 Unexpected AIA Cause Server Errors 
closes #37526

Signed-off-by: mposolda <mposolda@gmail.com>
 2025-04-17 14:15:07 +00:00
Marek Posolda
025b2ba442 Introducing IdpLinkAction as AIA to replace client-initiated account linking (#38952) 
closes #37269
closes #35446

Signed-off-by: mposolda <mposolda@gmail.com>


Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
Signed-off-by: Marek Posolda <mposolda@gmail.com>
 2025-04-17 13:20:05 +02:00
Alexander Schwartz
a312632468 Add new user event metrics to the release notes 
Closes #39027

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2025-04-17 10:58:34 +02:00
Alexander Schwartz
2be2958b8e Update release notes docs for removed remote store 
Closes #39028

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2025-04-17 10:56:29 +02:00
Pedro Igor
1ba8fe16ac Deprecate for removal Instagram Identity Broker (#38998) 
Closes #37967
Closes #36562

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-04-17 09:07:06 +02:00
andymunro
17e3bad7b2 Clarify upgrading language 
Closes #38956

Signed-off-by: AndyMunro <amunro@redhat.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
 2025-04-16 20:32:03 +00:00
Martin Bartoš
60fb7a5fa7 Support asynchronous logging (#38094) 
Closes #38578

Closes #28851

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
 2025-04-16 15:08:15 +00:00
Michal Hajas
4dc4de7c12 Remove CACHE-EMBEDDED-REMOTE-STORE experimental feature 
Closes #34160

Signed-off-by: Michal Hajas <mhajas@redhat.com>
 2025-04-16 12:01:55 +00:00
Martin Bartoš
e7c7dce5c7 [Docs] Broken link in ExternalLinksTest for importmap (#38969) 
Closes #38930

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
 2025-04-15 09:02:57 +00:00
Pedro Igor
288b6dae12 More information to docs 
Closes #38798

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-04-10 20:03:05 +02:00
Thomas Darimont
478e0b3264 Make sure that there is single audience allowed by default in JWT tokens sent to client authentication 
closes #38819

Signed-off-by: mposolda <mposolda@gmail.com>

Co-authored-by: Thomas Darimont <thomas.darimont@googlemail.com>
Co-authored-by: mposolda <mposolda@gmail.com>
 2025-04-10 18:08:10 +02:00
Pedro Igor
ae88d7921f Improvements to partial evaluation 
Closes #38732

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-04-09 18:15:28 +02:00
Pedro Igor
87430fc181 Add impersonate-members scope to group resource type 
Closes #38566

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-04-07 14:56:27 +00:00