mirror/keycloak
1
0
Fork 0
mirror of https://github.com/keycloak/keycloak.git synced 2026-04-26 08:58:59 -05:00
Code Issues Packages Projects Releases Wiki Activity
28,455 Commits 33 Branches 304 Tags
e5bb7f5249ea08cc4bb80dd0a33310a3e73bb424
Commit Graph

558 Commits

Author SHA1 Message Date
Gilvan Filho e5bb7f5249 add labels and annotations to service (httpSpec) (#39925) 
closes #23283

Signed-off-by: Gilvan Filho <gfilho@redhat.com>
 2025-06-17 11:27:16 +02:00
Alexander Schwartz 61586ff328 Disabling persistent sessions affects also offline session cache 
Closes #40483

Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2025-06-17 08:02:28 +00:00
andymunro 75cc28a9d1 Clarify FIPS instructions 
Closes #40533

Signed-off-by: AndyMunro <amunro@redhat.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
 2025-06-17 09:54:46 +02:00
Thomas Darimont 0ae49b96c3 Fix link to client-registration in docs 
Fixes #40444

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
 2025-06-13 20:59:46 +02:00
AvivGuiser 7736ca20e9 support setting periodSeconds and failureThreashold in the Keyclock CR (#40117) 
* add probe spec

Signed-off-by: AvivGuiser <avivguiser@gmail.com>

* make default for probes if not configured, add skeleton test files

Signed-off-by: AvivGuiser <avivguiser@gmail.com>

* fix tests

Signed-off-by: AvivGuiser <avivguiser@gmail.com>

* fix tests

Signed-off-by: AvivGuiser <avivguiser@gmail.com>

* add docs

Signed-off-by: AvivGuiser <avivguiser@gmail.com>

* move test to unittest and apiserver test

Signed-off-by: AvivGuiser <avivguiser@gmail.com>

* adding asserts to check new fields

Signed-off-by: AvivGuiser <avivguiser@gmail.com>

* fix test

Signed-off-by: AvivGuiser <aviv.guiser@placer.ai>

* update docs

Signed-off-by: AvivGuiser <aviv.guiser@placer.ai>

---------

Signed-off-by: AvivGuiser <avivguiser@gmail.com>
Signed-off-by: AvivGuiser <aviv.guiser@placer.ai>
 2025-06-13 17:32:20 +00:00
Steven Hawkins 76bc9fadcb fix: adding a -- separator for spi options (#40005) 
* fix: adding a -- separator for spi options

closes: #39063

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* adding a warning for ambiguous spi options

also adding a note about the change

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
# Conflicts:
#	docs/documentation/upgrading/topics/changes/changes-26_3_0.adoc

* updating docs to the new format

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
# Conflicts:
#	docs/guides/high-availability/examples/generated/keycloak-ispn.yaml
#	docs/guides/high-availability/examples/generated/keycloak.yaml

* internally using the new spi options

also adding a deprecation notice

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Apply suggestions from code review

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

* correcting options output

adding + + inlining where needed

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* adding test showing the env mapping with __

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
 2025-06-13 16:13:53 +02:00
Steven Hawkins 0e28bd3981 fix: adding a mapping directly from an env property to a wildcard (#39602) 
* fix: adding a map directly from an env property to a wildcard

closes: #38259

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* switching unit test logic to not directly manipulate env vars

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Apply suggestions from code review

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

* modifications based upon review feedback

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
 2025-06-13 08:26:18 +00:00
Thomas Darimont a89be114e9 Add link to OIDC discovery specification to the docs. 
Fixes #40440

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
 2025-06-12 11:35:44 +02:00
Niko Köbler 2e7a88f052 update links to OAuth 2.1 draft spec and change link from BCP to RFC9700 
closes #40419

Signed-off-by: Niko Köbler <niko@n-k.de>
 2025-06-11 18:48:43 +02:00
Alexander Schwartz 74027bfbfe Remove obsolete information from the Keycloak deployment 
Closes #40375

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2025-06-11 09:17:48 -03:00
Alexander Schwartz 4af3d7cc9d Redirect requests from outdated theme version to the current theme version 
Closes #39723

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2025-06-11 11:13:55 +02:00
Steven Hawkins f8ba9d3429 fix: adding docs about Keycloak CR security (#40260) 
closes: #40188

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2025-06-06 16:47:33 +02:00
Ryan Emerson 0c62bd0878 Change discovery in Kubernetes to jdbc-ping 
Closes #39544

Signed-off-by: Ryan Emerson <remerson@redhat.com>
 2025-06-05 16:48:30 +02:00
SoMin Park a115a442f4 Add warning about using exec in custom entrypoint scripts 
Closes #39817

Signed-off-by: Somin Park <ps4708@naver.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2025-06-02 17:49:20 +02:00
Michal Hajas 88f660b235 Add experimental feature rolling-updates:v2 that allows rolling updat… (#39751) 
...e for patch releases
Closes #38882
Signed-off-by: Michal Hajas <mhajas@redhat.com>
 2025-05-27 11:17:42 -03:00
Pedro Ruivo 077173d24f Improve JGroups network bind address documentation (#39874) 
Closes #39872

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
 2025-05-27 08:35:01 +00:00
Stan Silvert b7db98383b New UI Customization Guide (#39756) 
* New UI Customization Guide

Closes #33721

Signed-off-by: Stan Silvert <ssilvert@redhat.com>

* Fix grammatical error.

Signed-off-by: Stan Silvert <ssilvert@redhat.com>

* Minor changes.

Signed-off-by: Stan Silvert <ssilvert@redhat.com>

* Fix typo.

Signed-off-by: Stan Silvert <ssilvert@redhat.com>

* Added preview warning.

Signed-off-by: Stan Silvert <ssilvert@redhat.com>

---------

Signed-off-by: Stan Silvert <ssilvert@redhat.com>
 2025-05-22 08:23:34 -04:00
mposolda fe2790a09d Fix documentation link to quickstarts to point to 'main' branch instead of 'latest' branch 
closes #39798

Signed-off-by: mposolda <mposolda@gmail.com>
 2025-05-19 10:32:06 +02:00
Steven Hawkins 603ecf20eb fix: adding a doc note about clean up (#39731) 
closes: #39338

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2025-05-15 14:08:31 +02:00
Steven Hawkins a74b60199b fix: updating the examples to bind docker/podman 8080 only to localhost (#39584) 
closes: #39144

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2025-05-13 09:40:33 +02:00
andymunro afe6d4d4a0 Fix callouts 
Closes #39590

Signed-off-by: AndyMunro <amunro@redhat.com>
 2025-05-09 14:10:59 +00:00
andymunro 1e2b0fdfc4 Edit Observability guide 
Close #39572

Signed-off-by: AndyMunro <amunro@redhat.com>
 2025-05-09 15:02:47 +02:00
andymunro 0b3de6ee6c Fix link to FGAP v1 
Closes #39541

Signed-off-by: AndyMunro <amunro@redhat.com>
 2025-05-08 09:00:40 +02:00
andymunro eb51c03f90 Edit Operator Guide 
Closes #39543

Signed-off-by: AndyMunro <amunro@redhat.com>
 2025-05-08 08:45:41 +02:00
Steven Hawkins 3e05f676e5 fix: adds a warning about auto-build behavior (#38899) 
also correcting the language across the warnings

closes: #38662

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2025-05-05 18:24:19 +02:00
andymunro d106de4f83 Clarify podman use 
Closes #39418

Signed-off-by: AndyMunro <amunro@redhat.com>
Signed-off-by: andymunro <48995441+andymunro@users.noreply.github.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
 2025-05-05 16:16:58 +02:00
Alexander Schwartz f79408788d Document how to configure Istio to allow for JGroups mTLS 
Closes #39065

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: Pedro Ruivo <pruivo@users.noreply.github.com>
 2025-05-02 12:08:02 +00:00
Steven Hawkins faa1c194f3 fix: remove ANY mode modification of truststores (#39366) 
also note that ANY should not be used in production

closes: CVE-2025-3501 #39350 #38392



Add a test for the error (#1)



Update docs/guides/server/keycloak-truststore.adoc

Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Marek Posolda <mposolda@gmail.com>
 2025-04-30 15:00:12 +00:00
Steven Hawkins 24910d9e1c addresses slow import/export performance by limiting persistence context size (#37926) 
* fix: addresses slow import/export performance with more batching

closes: #37991

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* removing flush/detach manipulation

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* refining the doc note about using multiple files for larger user counts

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* adding doc note about useExistingSession method removal

and expanding javadocs

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2025-04-29 18:57:45 -04:00
Alexander Schwartz 4c17ec26e3 SLO measurement should mention a month as a period 
Closes #39312

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Signed-off-by: Michal Hajas <mhajas@redhat.com>
Co-authored-by: Michal Hajas <mhajas@redhat.com>
 2025-04-29 14:19:19 +02:00
Alexander Schwartz 54499d94ab Avoid automatic DB upgrades (#39275) 
Closes #39274

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2025-04-29 09:02:10 +02:00
Pedro Ruivo eafe08a73a Create CacheEmbeddedConfigProvider 
Closes #38497

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2025-04-28 13:00:53 +02:00
Steven Hawkins 68096ee27e fix: documenting known issues with docker (#39162) 
* fix: documenting known issues with docker

closes: #38801 #38893

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update docs/guides/server/containers.adoc

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
 2025-04-25 11:21:04 +02:00
Francisco Freire e2958d3783 fix: metric name Update jgrp_metrics.adoc (#39205) 
Closes #39206

fix UDP metric name

Signed-off-by: Francisco Freire <franciscocfreire@gmail.com>
 2025-04-25 11:05:55 +02:00
andymunro 75557bc312 Adjust introductory sentences 
Closes #39008

Signed-off-by: AndyMunro <amunro@redhat.com>
 2025-04-25 09:18:04 +02:00
Alexander Schwartz 579b185e7a Document operator Auto update strategy when used with podTemplate 
Closes #39059

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2025-04-17 21:19:32 +02:00
Michal Hajas 922294cd28 Change Grafana dashboards guide title to plural 
Closes #39057

Signed-off-by: Michal Hajas <mhajas@redhat.com>
 2025-04-17 15:17:19 +02:00
Martin Bartoš 60fb7a5fa7 Support asynchronous logging (#38094) 
Closes #38578

Closes #28851

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
 2025-04-16 15:08:15 +00:00
Louis FRULEUX 263e7fbf45 fix doc typo getting started 
Closes #39014

Signed-off-by: Louis Fruleux <louis.fruleux1@gmail.com>
 2025-04-16 11:12:38 +02:00
Nicola Baiocco 34630a4176 fix(docs): correct typo in token exchange guide 
Fixed a typo in the example token exchange request section by replacing "folowing" with "following." This improves the clarity and professionalism of the documentation.

Closes #38976

Signed-off-by: Nicola Baiocco <nicola.baiocco@intesys.it>
 2025-04-15 22:34:02 +02:00
Alexander Schwartz c7ed9fe2c7 Avoid duplicate ID in downstream 
Closes #38920

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2025-04-15 08:41:05 +02:00
sophie [⛧-440729] d1ff1b186e add option to the nginx x509 client cert lookup provider to not url-decode the passed client cert 
Closes #17171 

Signed-off-by: ⛧-440729 [sophie] <sophie@999eagle.moe>
 2025-04-11 10:38:38 +02:00
Peter Zaoral 6d6f9667c6 Document how Keycloak is upgraded when Operator is upgraded via OLM (#38297) 
Closes: #35901

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
 2025-04-10 13:56:42 +02:00
Falko Modler 770a575f95 Allow zero tracing-sampler-ratio 
Closes #38764

Signed-off-by: Falko Modler <famod@users.noreply.github.com>
 2025-04-09 11:57:03 +00:00
Alexander Schwartz 73ee966feb Sorting the chapters of the HA guide 
Closes #38721

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2025-04-08 07:23:53 -03:00
Alexander Schwartz 2ad776553a Adding a guide on how to enable and use exemplars 
Closes #38688

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2025-04-08 07:23:28 -03:00
Marek Posolda f984644d07 Clarify in documentation that legacy token exchange requires FGAP:v1 (#38694) 
closes #38693

Signed-off-by: mposolda <mposolda@gmail.com>


Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Signed-off-by: Marek Posolda <mposolda@gmail.com>
 2025-04-07 08:27:56 +02:00
Alexander Schwartz 38b543af19 Review comments to align with style guide 
Closes #38338

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2025-04-05 14:04:21 -03:00
Alexander Schwartz b3b30a8620 Rework observability page titles and summaries 
Closes #38583

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2025-04-04 11:14:00 +02:00
Akbar Husain 6d2de61b8e Fix some ascii doc warnings 
Closes #38479

Signed-off-by: akbarhusainpatel <apatel@intermiles.com>
Co-authored-by: akbarhusainpatel <apatel@intermiles.com>
 2025-03-27 19:42:18 +01:00