Marek Posolda
51a9712e59
Improper Client Certificate Validation for OAuth/OpenID clients ( #20 )
...
Co-authored-by: Stian Thorgersen <stianst@gmail.com>
2023-06-28 17:52:48 -03:00
Ricardo Martin
1973d0f0d4
Check the redirect URI is http(s) when used for a form Post ( #22 )
...
Closes https://github.com/keycloak/security/issues/22
Co-authored-by: Stian Thorgersen <stianst@gmail.com>
Signed-off-by: Peter Skopek <pskopek@redhat.com>
2023-06-28 17:52:48 -03:00
Steven Hawkins
e9c9f80e8d
adds an instance label to support multiple instances ( #20906 )
...
Closes #10562 #14220
2023-06-28 18:05:23 +02:00
Boris Kheyfets
e80107757f
Update getting-started-zip.adoc
...
https://www.keycloak.org/docs/21.0.1/release_notes/index.html#java-11-support-for-keycloak-server-deprecated
2023-06-28 15:49:10 +02:00
Pedro Igor
28aa1d730d
Verify holder of the device code ( #21 )
...
Closes https://github.com/keycloak/security/issues/32
Co-authored-by: Stian Thorgersen <stianst@gmail.com>
Conflicts:
services/src/main/java/org/keycloak/protocol/oidc/grants/device/DeviceGrantType.java
2023-06-28 15:45:26 +02:00
jaime-pineiro-imatia
52186f0cc8
Added missing translation for login-config-totp template in spanish ( #21282 )
2023-06-28 08:23:12 -04:00
Réda Housni Alaoui
516fbcdd66
Improve French translation ( #21174 )
2023-06-28 08:22:38 -04:00
Jon Koops
e60d893c29
Ensure basic auth header is encoded properly ( #20896 )
2023-06-28 13:03:19 +02:00
Steven Hawkins
4dba17253e
changes the label prefix to operator.keycloak.org ( #21175 )
...
closes #21141
2023-06-28 11:21:02 +02:00
rmartinc
4bc11bdf7f
Do not return an error when moving a group to the current parent
...
Closes https://github.com/keycloak/keycloak/issues/21242
2023-06-28 10:34:15 +02:00
rmartinc
a5a2753d11
Don't allow impersonate disabled users or service accounts
...
Closes https://github.com/keycloak/keycloak/issues/21106
2023-06-28 10:18:21 +02:00
Hynek Mlnarik
b8149d66ca
Remove ldapsOnly (console and docs)
...
Closes : #9313
2023-06-28 08:30:09 +02:00
Hynek Mlnarik
c092c76ae8
Remove ldapsOnly (Java)
...
In `LDAPConstants.java`, the function to set the Truststore SPI system property was removed, as this is now handled by the `shouldUseTruststoreSpi` method in `LdapUtil`.
Closes : #9313
2023-06-28 08:30:09 +02:00
Douglas Palmer
59e1a5d992
Custom theme - url.resourcesCommonPath references wrong theme
...
closes #20085
2023-06-28 08:25:44 +02:00
Stian Thorgersen
4fcb154d36
Add removal of account console v1 to release notes ( #21212 )
...
* Add removal of account console v1 to release notes
* Update docs/documentation/release_notes/topics/22_0_0.adoc
Co-authored-by: Jon Koops <jonkoops@gmail.com>
* Update docs/documentation/release_notes/topics/22_0_0.adoc
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
* Update docs/documentation/release_notes/topics/22_0_0.adoc
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
* Update docs/documentation/release_notes/topics/22_0_0.adoc
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
---------
Co-authored-by: Jon Koops <jonkoops@gmail.com>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
2023-06-28 07:52:10 +02:00
Joshua Sorah
c28eba6382
Fix failing External Link Checks
...
Update URLs that are just redirects to another page.
Point to RFC 7517 for JWK draft docs that were hosted on personal site
Closes keycloak/keycloak#21263
2023-06-27 20:58:17 +02:00
Douglas Palmer
c75bf31398
Empty shortVerificationUri not the same with default (null) value
...
closes #20851
2023-06-27 14:57:24 +02:00
Pedro Igor
d0691b0884
Support for the locale user attribute
...
Closes #21163
2023-06-27 09:21:08 -03:00
Martin Kanis
db9b6c2152
Make awaitInitialTransfer for ISPN configurable
...
Closes #16671
2023-06-27 14:04:03 +02:00
Erik Jan de Wit
3a3907ab15
changed to use ConfiguredProvider
instead ( #21097 )
...
fixes : #15344
2023-06-27 08:00:32 -04:00
Bruno Oliveira da Silva
a51fe1d961
Add Alexander Schwartz to the list of maintainers
2023-06-27 06:45:06 -03:00
zyairzy
bdb4dd8070
Support passing in locale
option to init()
( #11760 )
...
Closes #11759
2023-06-27 07:19:13 +00:00
dependabot[bot]
36e85578be
Bump @typescript-eslint/parser from 5.59.11 to 5.60.1 in /js ( #21237 )
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.59.11 to 5.60.1.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.60.1/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-06-27 00:47:07 +02:00
dependabot[bot]
5af35bd744
Bump react-i18next from 13.0.0 to 13.0.1 in /js ( #21216 )
...
Bumps [react-i18next](https://github.com/i18next/react-i18next ) from 13.0.0 to 13.0.1.
- [Changelog](https://github.com/i18next/react-i18next/blob/master/CHANGELOG.md )
- [Commits](https://github.com/i18next/react-i18next/compare/v13.0.0...v13.0.1 )
---
updated-dependencies:
- dependency-name: react-i18next
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-06-26 20:46:37 +00:00
dependabot[bot]
8739153bd2
Bump github/codeql-action from 2.20.0 to 2.20.1
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.20.0 to 2.20.1.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/github/codeql-action/compare/v2.20.0...v2.20.1 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-06-26 17:16:59 -03:00
dependabot[bot]
e6f0e34943
Bump reactflow from 11.7.3 to 11.7.4 in /js ( #21221 )
...
Bumps [reactflow](https://github.com/wbkd/react-flow/tree/HEAD/packages/reactflow ) from 11.7.3 to 11.7.4.
- [Release notes](https://github.com/wbkd/react-flow/releases )
- [Changelog](https://github.com/wbkd/react-flow/blob/main/packages/reactflow/CHANGELOG.md )
- [Commits](https://github.com/wbkd/react-flow/commits/reactflow@11.7.4/packages/reactflow )
---
updated-dependencies:
- dependency-name: reactflow
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-06-26 22:12:42 +02:00
dependabot[bot]
5f21038b5c
Bump vite-plugin-checker from 0.6.0 to 0.6.1 in /js ( #21223 )
...
Bumps [vite-plugin-checker](https://github.com/fi3ework/vite-plugin-checker ) from 0.6.0 to 0.6.1.
- [Release notes](https://github.com/fi3ework/vite-plugin-checker/releases )
- [Changelog](https://github.com/fi3ework/vite-plugin-checker/blob/main/CHANGELOG.md )
- [Commits](https://github.com/fi3ework/vite-plugin-checker/compare/vite-plugin-checker@0.6.0...vite-plugin-checker@0.6.1 )
---
updated-dependencies:
- dependency-name: vite-plugin-checker
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-06-26 22:11:44 +02:00
dependabot[bot]
c618973e93
Bump i18next from 23.2.0 to 23.2.3 in /js ( #21224 )
...
Bumps [i18next](https://github.com/i18next/i18next ) from 23.2.0 to 23.2.3.
- [Release notes](https://github.com/i18next/i18next/releases )
- [Changelog](https://github.com/i18next/i18next/blob/master/CHANGELOG.md )
- [Commits](https://github.com/i18next/i18next/compare/v23.2.0...v23.2.3 )
---
updated-dependencies:
- dependency-name: i18next
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-06-26 22:11:15 +02:00
dependabot[bot]
98f8c67b80
Bump cypress from 12.14.0 to 12.16.0 in /js ( #21233 )
...
Bumps [cypress](https://github.com/cypress-io/cypress ) from 12.14.0 to 12.16.0.
- [Release notes](https://github.com/cypress-io/cypress/releases )
- [Changelog](https://github.com/cypress-io/cypress/blob/develop/CHANGELOG.md )
- [Commits](https://github.com/cypress-io/cypress/compare/v12.14.0...v12.16.0 )
---
updated-dependencies:
- dependency-name: cypress
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-06-26 22:10:56 +02:00
Jon Koops
870769d119
Run Dependabot on the weekend for js
directory
2023-06-26 14:01:15 -03:00
dependabot[bot]
ed2d7bebb6
Bump tar-fs from 3.0.2 to 3.0.3 in /js ( #21225 )
...
Bumps [tar-fs](https://github.com/mafintosh/tar-fs ) from 3.0.2 to 3.0.3.
- [Commits](https://github.com/mafintosh/tar-fs/compare/v3.0.2...v3.0.3 )
---
updated-dependencies:
- dependency-name: tar-fs
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-06-26 16:44:30 +00:00
dependabot[bot]
9f9447bdb0
Bump rollup from 3.25.1 to 3.25.2 in /js ( #21219 )
...
Bumps [rollup](https://github.com/rollup/rollup ) from 3.25.1 to 3.25.2.
- [Release notes](https://github.com/rollup/rollup/releases )
- [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rollup/rollup/compare/v3.25.1...v3.25.2 )
---
updated-dependencies:
- dependency-name: rollup
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-06-26 16:43:09 +00:00
dependabot[bot]
cc7199c5d6
Bump @types/react from 18.2.13 to 18.2.14 in /js ( #21226 )
...
Bumps [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react ) from 18.2.13 to 18.2.14.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react )
---
updated-dependencies:
- dependency-name: "@types/react"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-06-26 16:42:56 +00:00
dependabot[bot]
920ce9ee2b
Bump @typescript-eslint/eslint-plugin from 5.59.11 to 5.60.0 in /js ( #21227 )
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.59.11 to 5.60.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.60.0/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-06-26 16:42:35 +00:00
infl00pLabs
9dbaa32daf
Add support for Greek localization ( #20190 )
2023-06-26 11:53:09 -04:00
Miquel Simon
46fa7d2e6c
Enable back a few tests that have been fixed to run on Firefox and Chrome.
2023-06-26 11:25:07 -03:00
Pavel Drozd
216bbe512f
Add tests and profiles for testing EAP6, SpringBoot and Fuse adapters
2023-06-26 11:24:02 -03:00
eatik
6d0636987e
keeping VIEW_USERS related tests in PermissionTest
...
Closes #20783
2023-06-26 11:05:35 -03:00
eatik
7cfa012427
adding test code
...
Closes #20783
2023-06-26 11:05:35 -03:00
eatik
0cc464695e
Allowing users with view-users permission to call configured-user-storage-credential-types endpoint as per issue #20783
...
Closes #20783
2023-06-26 11:05:35 -03:00
Takashi Norimatsu
f6ecc3f3f8
FAPI 2.0 security profile - not allow an authorization request whose parameters were not included in Request Object pushed to PAR request
...
closes #20710
2023-06-26 12:09:25 +02:00
Jon Koops
c026884734
Use a different API method to move groups ( #20820 )
...
Closes #20615
Co-authored-by: daniel-brannon <daniel.brannon@ososlo.com>
2023-06-23 21:42:13 +02:00
Steve Hawkins
6a92669139
finishes the conversion away from createOrReplace
...
however this is a broader change given the implications of
serverSideApply vs createOrReplace - mostly the concern of only applying
the managed state not based upon an existing resource
Closes #20850
2023-06-23 11:55:47 -03:00
Bruno Oliveira da Silva
67c64c37df
Guava vulnerable to insecure use of temporary directory
...
Closes #21079
2023-06-23 11:50:17 -03:00
Stan Silvert
080b6a7981
Allow view client roles tab without view-realm access ( #21142 )
...
* Allow view client->roles tab with view-clients access.
Fixes #21047
* Fix role deleted success message.
2023-06-23 07:04:37 -04:00
vramik
7fe7dfc529
ResourceType lost during clonning
...
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Closes #20947
2023-06-23 09:31:44 +02:00
Douglas Palmer
a0d1ac6baa
processGrantRequest in TokenEndPoint uses new TokenManager instead of this.tokenMananager
...
closes #20978
2023-06-23 08:12:44 +02:00
Pedro Igor
aff6cc1cbd
Running mappers during account linking
...
Closes #11195
Co-authored-by: mposolda <mposolda@gmail.com>
Co-authored-by: toddkazakov
2023-06-22 17:41:31 +02:00
Sazzad Hossain
41e253c054
Check whether CREATE_REALM role exists in realm role mappings before hasRole check for user.
...
Closes #20332
2023-06-22 15:35:50 +02:00
Douglas Palmer
f526f7a091
Emails with non-ascii characters are not allowed since v21.0.0
...
closes #20878
2023-06-22 10:27:48 -03:00