Commit graph

35 commits

Author SHA1 Message Date
rmartinc
e9c9efc3f4 Upgrade bc-fips to 1.0.2.5
Closes #26568
Closes #27884

Signed-off-by: rmartinc <rmartinc@redhat.com>
2024-06-25 11:07:27 +02:00
Andre F de M
0f061a75e2 Issue: 26568 - bcfips version bump and fixes
* bump BCFIPS to 1.0.2.5
               * fix bc-fips related test error
               * remove unused imports

               Closes: #26568

Signed-off-by: Andre F de M <trixpan@users.noreply.github.com>
2024-06-25 11:07:27 +02:00
Ryan Emerson
2f11605a5b Pin Ansible version for Aurora Store IT tests to 9.x.y stream
Closes #30201

Signed-off-by: Ryan Emerson <remerson@redhat.com>
2024-06-13 22:17:42 +02:00
Ryan Emerson
25cf961114 Utilise ansible-core included with Ubuntu
Closes #30201

Signed-off-by: Ryan Emerson <remerson@redhat.com>
2024-06-06 21:29:01 +02:00
Bruno Oliveira da Silva
2059d4d2ee Snyk report to identify branches impacted by a CVE
Closes #29813

Signed-off-by: Bruno Oliveira da Silva <bruno@abstractj.com>
2024-06-06 11:37:13 -03:00
Martin Bartoš
262fc09edc
OpenJDK 21 support (#28518)
* OpenJDK 21 support

Closes #28517

Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Signed-off-by: Martin Bartoš <mabartos@redhat.com>

* x509 SAN UPN other name is not handled in JDK 21 (#904)

closes #29968

Signed-off-by: mposolda <mposolda@gmail.com>

---------

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: mposolda <mposolda@gmail.com>
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Co-authored-by: Marek Posolda <mposolda@gmail.com>
2024-06-03 14:17:28 +02:00
Bruno Oliveira da Silva
8577573fe4 Snyk Report is not preventing duplicates
Closes #29699

Signed-off-by: Bruno Oliveira da Silva <bruno@abstractj.com>
2024-05-29 15:10:13 -03:00
Bruno Oliveira da Silva
b8f163ec8e Snyk Report is not preventing duplicates
Closes #29699

Signed-off-by: Bruno Oliveira da Silva <bruno@abstractj.com>
2024-05-20 11:29:25 -03:00
Bruno Oliveira da Silva
65a96757bd Move Snyk reports from GitHub Security tab to GitHub issues
Closes #29494

Signed-off-by: Bruno Oliveira da Silva <bruno@abstractj.com>
2024-05-16 09:57:22 -03:00
Peter Zaoral
28afd77917
Stabilize the quarkus-next build stage (#27684)
* edited prepare-quarkus-next.sh in order to add the Quarkus nightly snapshot repository as a plugin repository to avoid multiple "artifacts are not being found" failures

Closes #27683

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
2024-03-15 18:10:01 +01:00
Ryan Emerson
870befa422 Specify ansible shell executable as child of args element. Fixes #27133
Signed-off-by: Ryan Emerson <remerson@redhat.com>
2024-02-19 19:07:24 +01:00
Alexander Schwartz
7135b4ec4c
Add Amazon Aurora PostgreSQL to the list of tested databases (#27049)
Closes #27048

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-02-19 09:16:49 +01:00
Ryan Emerson
c30b9545ef
Aurora Postgres IT: Upload flaky and surefire test reports
Closes #26967

Signed-off-by: Ryan Emerson <remerson@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2024-02-16 11:57:56 +01:00
Ryan Emerson
67f6f2f657
Add Multi-AZ Aurora DB to CI store-integration-tests
Closes #26730

Signed-off-by: Ryan Emerson <remerson@redhat.com>
2024-02-14 16:51:08 +01:00
Peter Zaoral
d9f8a1bf4e
Testing Keycloak with nightly Quarkus releases (#23407)
Closes #23322

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
2024-01-23 09:43:31 +01:00
Alexander Schwartz
a420b46913
Adding parsing of "fixes"/"fixed" Keyword and the colon (#25634)
Closes #25633

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2023-12-21 13:49:07 +01:00
Alexander Schwartz
c4ada85233
Showing the original exception plus any swallowed exceptions. (#25428)
Closes #25424

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2023-12-13 11:56:08 +01:00
Lukas Hanusovsky
99d197b309
[enhancement] pr-backport.sh - make it more understandable when using gh and git (#25411)
[enhancement] pr-backport.sh improve usability
* Make it more understandable when using gh and git
* Update pr-backport.sh - WORK_BRANCH param 
* Update pr-backport.sh - cherry-pick -x

Signed-off-by: Lukas Hanusovsky lhanusov@redhat.com
2023-12-08 16:33:40 +00:00
Marek Posolda
80aa1d1367
Confusing error message by pr-backport.sh when not authenticated to gh (#25425)
closes #25423

Signed-off-by: mposolda <mposolda@gmail.com>
2023-12-08 15:29:27 +00:00
Stian Thorgersen
10bcd896a9
Fix pr-find-issues script (#25252) 2023-12-04 08:50:39 +01:00
Stian Thorgersen
02857a065d
Fix auto labelling for release labels (#25249)
Closes #25248

Signed-off-by: stianst <stianst@gmail.com>
2023-12-04 08:41:09 +01:00
stianst
2ce7d318a6 Add release labels to issues on merge
Signed-off-by: stianst <stianst@gmail.com>
2023-11-30 06:51:16 +01:00
Stian Thorgersen
efd41a9a27
Add script to help with backporting PRs to release branches (#24015)
Signed-off-by: Jon Koops <jonkoops@gmail.com>
Signed-off-by: stianst <stianst@gmail.com>
Co-authored-by: Jon Koops <jonkoops@gmail.com>
2023-11-29 05:52:49 +01:00
rmartinc
3d3c00b0e8 Add caret to regex expressions in federation-sssd-setup.sh to avoid comments
Closes https://github.com/keycloak/keycloak/issues/23128
2023-09-13 10:00:31 +02:00
Martin Bartoš
ee6a29fdf1
Execute only FIPS Unit tests, not UT of dependent modules (#22038) 2023-08-02 14:55:33 +02:00
rmartinc
f21c35c21f Compare SSSD email ignoring the case
Closes https://github.com/keycloak/keycloak/issues/21394
2023-07-03 12:06:29 -03:00
rmartinc
f1468091f1 SSSD testing with GH actions
Closes https://github.com/keycloak/keycloak/issues/20265
2023-05-11 11:29:32 +02:00
Martin Bartoš
8d5a4f2677 Fix FIPS tests 2023-04-27 13:36:54 +02:00
rmartinc
3f8c4e24e2 Change container image in FIPS tests to ubi9
Closes https://github.com/keycloak/keycloak/issues/12422
2023-02-15 20:23:59 +01:00
rmartinc
fbc9177f27 Doublecheck if we need to override properties in java.security
Closes https://github.com/keycloak/keycloak/issues/16702
2023-02-15 12:33:48 +01:00
rmartinc
5b626231d9 Doublecheck if real FIPS host available in GH actions
Closes https://github.com/keycloak/keycloak/issues/15069
2023-02-10 11:56:35 +01:00
Stian Thorgersen
a5670af745
Keycloak CI workflow refactoring (#15968)
* Keycloak CI workflow refactoring

Closes #15861

* Update testsuite/integration-arquillian/tests/base/testsuites/base-suite.sh

Co-authored-by: Hynek Mlnařík <hmlnarik@users.noreply.github.com>

* Update testsuite/integration-arquillian/tests/base/testsuites/suite.sh

Co-authored-by: Hynek Mlnařík <hmlnarik@users.noreply.github.com>

* Update testsuite/integration-arquillian/tests/base/testsuites/suite.sh

Co-authored-by: Hynek Mlnařík <hmlnarik@users.noreply.github.com>

* Update CodeQL actions

Co-authored-by: Hynek Mlnařík <hmlnarik@users.noreply.github.com>
2022-12-14 16:12:23 +01:00
Bruno Oliveira da Silva
6ebad26904
Failure to upload the SARIF file on pull requests (#10725)
The changes proposed here will resolve the issues we have with
pull-request after the merge of #10606. It creates 3 different
workflows to conditionally execute the job based on changes submitted.

A detailed explanation about the issue can be found on #10717.

Resolves #10717
2022-03-15 08:59:59 +01:00
Bruno Oliveira da Silva
f06ba05405
The CodeQL analysis is broken due to the large content of the SARIF file (#10606)
The issue was originally caused by high number of flows paths per alert
generated by the LDAP federation module. That was identified taking the
SARIF file generated and running:

```
jq '.runs[0].results | map({query_id: .rule.id, numPaths: .codeFlows |
length})' java.sarif

```

Together we reduced the number of flows paths, adding optimizations to
skip some paths and avoid false alerts.

Co-authored-by: Bruno Oliveira da Silva <bruno@abstractj.com>

Closes #10203

Co-authored-by: Joshua Mulliken <joshua@mulliken.net>
2022-03-11 13:55:17 +01:00
Václav Muzikář
f2c08e9b8f KEYCLOAK-17743 Run QS tests with each PR in the Keycloak repo 2021-05-04 13:12:18 -03:00