mirror/keycloak
1
0
Fork 0
mirror of https://github.com/keycloak/keycloak.git synced 2026-04-29 03:21:02 -05:00
Code Issues Packages Projects Releases Wiki Activity
25,491 Commits 33 Branches 304 Tags
e79d10e71e286a7dc6787b1da98388fd0d67b16a
Commit Graph

439 Commits

Author SHA1 Message Date
Thomas Darimont e79d10e71e Add missing user event translations to admin-ui 
Fixes #27677

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-07-12 10:04:57 +02:00
Steven Hawkins 4970a9b729 fix: deprecate KEYCLOAK_ADMIN and KEYCLOAK_ADMIN_PASSWORD 
closes: #30658

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Jon Koops <jonkoops@gmail.com>
 2024-07-11 18:07:57 +02:00
rmartinc e80c3fee9b Change link to https://github.com/eclipse/microprofile/wiki/JWT_Auth 
Closes #31219

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-11 18:03:57 +02:00
Steve Hawkins 9247029ca3 fix: removes the operator's usage of the v1 proxy option 
closes: #30945

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2024-07-11 14:21:50 +02:00
rmartinc 096e335a92 Support for vault and AES and HMAC algorithms to JavaKeystoreKeyProvider 
Closes #30880
Closes #29755

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-11 12:40:45 +02:00
Lucy Linder 0f7c2364f0 Update links in ReCAPTCHA doc 
Google links changed and are now causing redirect issues reports.

Closes: #31187

Signed-off-by: Lucy Linder <lucy.derlin@gmail.com>
 2024-07-11 00:27:09 +02:00
Martin Kanis 922eaa9fc8 Disable username prohibited chars validator when email as username is… (#31140) 
* Disable username prohibited chars validator when email as the username is set

Closes #25339

Signed-off-by: Martin Kanis <mkanis@redhat.com>
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-07-10 09:46:24 -03:00
rmartinc ce195b81f8 Improve consent deletion when a realm is removed 
Closes #30992

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-10 09:44:42 +02:00
Gilvan Filho a918eb1e30 Fix user storage spi jpa quickstart description 
Closes #30941

Signed-off-by: Gilvan Filho <gfilho@redhat.com>
 2024-07-08 14:44:41 +02:00
Pedro Igor 1a8075d62a Update migration and upgrade guides about GroupRemovedEvent no longer fired when removing a realm 
Closes #30919

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-07-05 10:14:30 +02:00
Pedro Igor b745ac8259 Documenting LDAP connection pooling 
Closes #30995

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-07-04 13:21:47 +02:00
Steven Hawkins a7ae90cbb6 fix: adds affinity and other scheduling to the operator (#29977) 
closes: #29258

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2024-07-03 20:07:03 +02:00
Thomas Darimont f34bb21af6 Fix deprecations in common module 
- Use charset in `Encode` class
- Replace reflective call to protected `Liquibase#resetServices()` with call to exposed public method on a custom subclass `KeycloakLiquibase`
- Remove usage of deprecated AccessController class in Reflections
- Deprecated SetAccessibleProvilegedAction and UnsetAccessibleProvilegedAction

Fixes #22209

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-07-02 16:02:35 +00:00
Peter Zaoral add45a25a8 Add default CPU limit/request for the operator (#30601) 
Closes: #27432

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
 2024-07-01 15:12:43 +02:00
Christoph Schulz 657aff787f Add missing comma to (#30914) 
Signed-off-by: Christoph Schulz <mail@ciis0.de>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
 2024-06-28 13:13:13 +00:00
Stan Silvert a1445cd93f Minor doc fix. (#30899) 
Signed-off-by: Stan Silvert <ssilvert@redhat.com>
 2024-06-27 16:18:32 -04:00
andymunro 30264c7dd4 Remove inclusive language foreword 
Closes #30856

Signed-off-by: AndyMunro <amunro@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-06-27 15:22:03 +02:00
Douglas Palmer 5af3001122 Check if OSGI metadata can be removed entirely 
Closes #29104

Signed-off-by: Douglas Palmer <dpalmer@redhat.com>
 2024-06-25 14:12:33 +02:00
Douglas Palmer 54f4ab50f0 Broken external links 
Closes #30717

Signed-off-by: Douglas Palmer <dpalmer@redhat.com>
 2024-06-25 09:55:50 +02:00
Jon Koops df18629ffe Use a default Java version from root POM (#29927) 
Signed-off-by: Jon Koops <jonkoops@gmail.com>
 2024-06-21 14:19:31 +02:00
Pedro Igor a0ad680346 Adding an alias to organization and exposing them to templates 
Closes #30312
Closes #30313

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-06-20 14:36:14 -03:00
Jon Koops 77fb3c4dd4 Use correct host URL for Admin Console requests (#30535) 
Closes #30432

Signed-off-by: Jon Koops <jonkoops@gmail.com>
 2024-06-19 15:21:53 +02:00
CARBONNEAUX Mathieu acf79b81c7 add RS256 algorithm to webauthn default policy (#30528) 
closes #28020 

Signed-off-by: Mathieu CARBONNEAUX <mathieu.carbonneaux@ch2o.info>
 2024-06-19 10:16:46 +02:00
Pedro Ruivo 5c0dddd837 Batch cluster events 
Sending multiple events in a single network request should minimize
latency and traffic.

Closes #30445

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
 2024-06-14 21:14:22 +02:00
Thibault Morin f6fa869b12 feat(SAML): add Artifact Binding on brokering scenarios when Keycloak is SP (#29619) 
* feat: add Artifact Binding on brokering scenarios when Keycloak is SP

Signed-off-by: tmorin <git@morin.io>

* Adding broker test and minor improvements

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>

* Fixing IdentityProviderTest

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>

* Renaming methods related to idp initiated flows

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>

* Fixing partial_import_test.spec.ts

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>

---------

Signed-off-by: tmorin <git@morin.io>
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-06-14 08:54:49 -03:00
Pedro Ruivo 18a6c79011 Infinispan Protostream Marshaller (#29474) 
Closes #29394

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-06-13 18:02:46 +02:00
Kohei Tamura d96967682b Improve procedure for handling open transactions (#29748) 
Signed-off-by: k-tamura <ktamura.biz.80@gmail.com>
 2024-06-12 23:21:24 +02:00
Martin Bartoš 04b16a914c Remove link to management interface guide from ignored links in docs 
Closes #28475

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
 2024-06-12 11:50:21 +02:00
daviddelannoy d4fc5249c4 fix label error for persistent-user-sessions feature flag in documentation 
Closes #30368

Signed-off-by: daviddelannoy <16318239+daviddelannoy@users.noreply.github.com>
 2024-06-12 09:32:10 +00:00
Pedro Igor e6df8a2866 Allow multiple instances of the same social broker in a realm 
Closes #30088

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-06-11 12:44:10 -03:00
Pedro Igor 22da43c619 Fixing broken link (#30299) 
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-06-10 15:22:48 +02:00
Pedro Igor c35bf11b1b Adding organization section (#29796) 
Closes #28731

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2024-06-10 09:08:50 +02:00
Giuseppe Graziano 6067f93984 Improvements to refresh token rotation with multiple tabs (#29966) 
Closes #14122

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
 2024-06-07 12:02:36 +02:00
Steven Hawkins 5059a02eb2 fix: minor refinements to collection utils (#29536) 
closes: #29535

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2024-06-06 10:07:34 -04:00
Steven Hawkins c7e9ee2bff fix: adds handling for all kcadm prompts as env variables (#29430) 
closes: #21961

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2024-06-06 13:08:23 +00:00
Marek Posolda 79c8c80058 Example for X.509 direct grant flow authentication (#30203) 
closes #29639

Signed-off-by: mposolda <mposolda@gmail.com>


Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2024-06-06 11:58:09 +02:00
Erik Jan de Wit 5897334ddb Align environment variables between consoles (#30125) 
* change to make authServerUrl the same as authUrl

fixes: #29641
Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* Remove `authUrl` entirely

Signed-off-by: Jon Koops <jonkoops@gmail.com>

* Remove file that is unrelated

Signed-off-by: Jon Koops <jonkoops@gmail.com>

* Split out and align environment variables between consoles

Signed-off-by: Jon Koops <jonkoops@gmail.com>

* Restore removed variables to preserve backwards compatibility

Signed-off-by: Jon Koops <jonkoops@gmail.com>

* Also deprecate the `authUrl` for the Admin Console

Signed-off-by: Jon Koops <jonkoops@gmail.com>

---------

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
Signed-off-by: Jon Koops <jonkoops@gmail.com>
Co-authored-by: Jon Koops <jonkoops@gmail.com>
 2024-06-06 08:36:46 +02:00
Giuseppe Graziano d5e82356f9 Encrypted KC_RESTART cookie and removed sensitive notes 
Closes #keycloak/keycloak-private#162

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
 2024-06-05 10:33:44 +02:00
Marek Posolda 193439788e Release notes for support application/jwt response in token introspec… (#30105) 
closes #30104

Signed-off-by: mposolda <mposolda@gmail.com>


Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2024-06-04 06:49:13 +02:00
Martin Bartoš 262fc09edc OpenJDK 21 support (#28518) 
* OpenJDK 21 support

Closes #28517

Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Signed-off-by: Martin Bartoš <mabartos@redhat.com>

* x509 SAN UPN other name is not handled in JDK 21 (#904)

closes #29968

Signed-off-by: mposolda <mposolda@gmail.com>

---------

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: mposolda <mposolda@gmail.com>
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Co-authored-by: Marek Posolda <mposolda@gmail.com>
 2024-06-03 14:17:28 +02:00
Peter Zaoral cd2451d58b Remove Oracle JDBC driver out of the box (#29895) 
Closes: #29491

Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
 2024-05-31 17:21:19 +00:00
Alexander Schwartz af23150343 Fixing typo in the upgrading guide for persistent sessions 
Closes #30028

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-05-31 13:18:34 +02:00
Miquel Simon 2c521bd64d Upgrade supported PostgreSQL to version 16 
Closes #29875

Signed-off-by: Miquel Simon <msimonma@redhat.com>
 2024-05-29 16:31:40 +02:00
Marek Posolda 336b2c875f Update release notes for Keycloak 25 (#29894) 
closes #29576

Signed-off-by: mposolda <mposolda@gmail.com>


Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2024-05-29 14:19:17 +02:00
mposolda 37c10b4d43 Improve documentation for the case when 'basic' client scope already exists 
closes #29880

Signed-off-by: mposolda <mposolda@gmail.com>
 2024-05-29 13:32:05 +02:00
Ryan Emerson 5788263413 Document Failover Lambda for Active/Passive deployments 
Closes #29787

Signed-off-by: Ryan Emerson <remerson@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2024-05-29 12:33:13 +02:00
Michal Hajas 61d0d56720 Document it is not possible to use rolling configuration upgrade for enabling persistent sessions 
Closes #29561

Signed-off-by: Michal Hajas <mhajas@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-05-29 10:19:20 +02:00
Pedro Igor bbb83236f5 Do not lower-case the username from the IdP when creating the federated identity 
Closes #28495

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-05-29 01:58:20 -03:00
Jon Koops a3b2dd0735 Remove deprecated ServerCookie class (#29916) 
Signed-off-by: Jon Koops <jonkoops@gmail.com>
 2024-05-28 14:14:05 +00:00
Ryan Emerson 0f17f0abc5 Require external Infinispan be of version 15 or greater 
Signed-off-by: Ryan Emerson <remerson@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-05-22 11:26:26 +00:00