Commit graph

857 commits

Author SHA1 Message Date
Václav Muzikář
ecdf8e897f
Upgrade to Quarkus 3.2.2.Final (#21912)
Closes #21907
2023-07-26 16:20:23 +02:00
Alexander Schwartz
7c9593f88a
Upgrade Infinispan to 14.0.13.Final (#21565)
Closes #21564
2023-07-20 16:59:19 +00:00
Václav Muzikář
776bcbcbd4
Update bcpkix and bcprov dependencies (#21543)
Closes #21360
2023-07-20 11:57:18 +02:00
Bruno Oliveira da Silva
ebf878e1f0
CVE-2022-45868 H2 Cleartext Storage of Sensitive Information (#21568)
Closes #21567
2023-07-11 08:09:24 +02:00
Václav Muzikář
97a37f565e
Align guava dependency with the Quarkus Platform BOM (#21544)
Closes #21364
2023-07-10 16:13:13 +02:00
Bruno Oliveira da Silva
ebc9e9f4ef CVE-2023-21971 - Update Connector/J to 8.0.33
Updates to the library name to align with the changes here:
- https://dev.mysql.com/doc/relnotes/connector-j/8.0/en/news-8-0-31.html

Closes #21199
2023-07-07 20:48:38 +02:00
Gregor Tudan
4517ef5d7e
Bump Freemarker to Version 2.3.32. (#16866)
Co-authored-by: Bruno Oliveira da Silva <bruno@abstractj.com>
2023-07-07 10:40:59 -03:00
Peter Zaoral
2b1c29a6f2 Use Quarkus Platform BOM
Closes #20570
Closes #15870

Co-authored-by: Peter Zaoral <pzaoral@redhat.com>
2023-07-06 12:45:48 -03:00
Alexander Schwartz
3f1553c6cb Referencing information in pom.xml for the list of tested databases
Closes: #21349
2023-07-06 11:39:11 -03:00
Miquel Simon
e1eb5146a6 Closes #20226 and #20227. Upgrade ojdbc11 version due to CVE-2022-21510 and CVE-2022-21511. 2023-07-06 13:27:39 +02:00
Miquel Simon
9513cbbca0
Upgrade nexus staging maven plugin version (#21428)
Closes #21427
2023-07-04 11:00:04 +00:00
mposolda
0ea2891eee Remove support for OpenJDK 11 on the server side
closes #15014
2023-07-03 13:12:22 -03:00
Václav Muzikář
8db6f8185b Upgrade to Quarkus 3.2.0.Final and QOSDK 6.2.0
Closes #21272
2023-07-03 08:11:18 -03:00
Václav Muzikář
ad988ca914 Upgrade to Quarkus 3.2.0.Final and QOSDK 6.2.0
Closes #21272
2023-07-03 08:11:18 -03:00
Miquel Simon
83d043e7a8
Upgrade supported and tested version of Postgresql to 15 in order to match supported configuration for Keycloak 22. (#21333)
Closes #21338
2023-06-30 11:29:06 +00:00
Joshua Sorah
f695eeaa44 Refactor Admin REST API Documentation to use OpenAPI annotations.
Removes dependencies on swagger-doclet
Adds dependencies on microprofile-openapi-api
Plugins for smallrye-open-api-maven-plugin, openapi-generator-maven-plugin

Customized ascii doc template for openapi-generator-maven-plugin, to give similar feel to previous documentation.

OpenAPI annotations added to Admin REST API resources.

Closes keycloak/keycloak#20433
2023-06-29 17:03:38 +02:00
Bruno Oliveira da Silva
67c64c37df Guava vulnerable to insecure use of temporary directory
Closes #21079
2023-06-23 11:50:17 -03:00
Bruno Oliveira da Silva
4103ec58d8 Update to Quarkus 3.1.2.Final
Closes #21051
2023-06-19 12:59:11 -03:00
Martin Bartoš
c3000984db
Upgrade to Quarkus 3.1.1.Final (#20958)
Co-authored-by: Bruno Oliveira da Silva <bruno@abstractj.com>
2023-06-14 08:51:38 -03:00
Jon Koops
72af6a0454
Enable Dependabot for PNPM (#20975) 2023-06-14 07:24:27 +02:00
Bruno Oliveira da Silva
f90536d6be
High severity - Use of a Broken or Risky Cryptographic Algorithm vulnerability in org.bitbucket.b_c:jose4j (#20632)
Closes #20631
2023-06-13 08:22:50 +02:00
Alexander Schwartz
475b4fa05b
Remove override of mime4j version in parent pom (#20893)
Closes #20892

Co-authored-by: Stian Thorgersen <stianst@gmail.com>
2023-06-12 13:23:41 +02:00
Martin Kanis
5730b54ac7 keycloak-server from testsuite won't start
Closes #20920
2023-06-12 13:22:21 +02:00
Alexander Schwartz
4d0fa6796f
Upgrade to Infinispan 14.0.10.Final (#20804)
Closing #20803
2023-06-08 10:43:22 +02:00
Jon Koops
fcd2a5138d
Update dependencies to latest version (#20788) 2023-06-06 12:35:06 -04:00
Bruno Oliveira da Silva
dcdd102f8c
Update Keycloak to Quarkus 3.1.0.Final (#20698)
Closes #20697
2023-06-01 13:50:15 +02:00
Václav Muzikář
f627e9535f
Add support to the Operator for setting default labels on Keycloak pods (#20661)
Closes #20625
2023-06-01 13:39:41 +02:00
stianst
0832992e59 Removing OpenShift integration and moving to separate extension
closes #20496

Co-authored-by: mposolda <mposolda@gmail.com>
2023-05-30 17:39:32 +02:00
Bruno Oliveira da Silva
38994de056
Update Keycloak to Quarkus 3.0.4.Final (#20561)
Closes #20560
2023-05-25 15:42:43 +02:00
rmartinc
827943571e Downgrade jna to 4.5.1 to align with prod
Closes https://github.com/keycloak/keycloak/issues/20387
2023-05-24 11:43:20 +02:00
mposolda
588265e463 Upgrade owasp sanitizer to newest version
closes #20388
2023-05-23 09:57:14 +02:00
dependabot[bot]
22593c5878
Bump undertow-core from 2.2.22.Final to 2.2.24.Final (#20463)
Bumps [undertow-core](https://github.com/undertow-io/undertow) from 2.2.22.Final to 2.2.24.Final.
- [Commits](https://github.com/undertow-io/undertow/compare/2.2.22.Final...2.2.24.Final)

---
updated-dependencies:
- dependency-name: io.undertow:undertow-core
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-22 16:31:19 +02:00
Alexander Schwartz
d7a408d081 Remove log4j dependency from model/jpa which is EOL
Closes #20421
2023-05-19 17:43:51 -03:00
Václav Muzikář
893a285ac4 Upgrade to Quarkus 3.0.3.Final
Closes #20300
2023-05-18 12:54:11 -03:00
Alex Szczuczko
1578506475
Seperate version properties for hibernate-enhance and quarkus-maven (#20264)
This will allow them to be defined seperately from aligned dependency
versions suitable for product

Closes #20261
2023-05-18 14:37:55 +00:00
Martin Bartoš
812a6c0b99
Improve readability of Operator guides (#20093)
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2023-05-17 17:34:32 +02:00
Bruno Oliveira da Silva
ac83754cfb Remove duplicated properties from the main POM file
The property `jakarta.persistence.version` is duplicated in the main POM
file.

Closes #20317
2023-05-15 20:41:11 -03:00
rmartinc
cfaaa07529 Upgrade JNA library
Closes https://github.com/keycloak/keycloak/issues/20305
2023-05-15 18:24:31 +02:00
Miquel Simon
e959e20e1a Upgrade tested DB versions 2023-05-15 12:36:27 -03:00
Jon Koops
8331f57bfd
Update dependencies to latest version (#20355) 2023-05-15 14:58:04 +00:00
Jon Koops
2a18bcb246
Move from NPM to PNPM (#19839) 2023-05-05 12:03:24 -04:00
Martin Bartoš
960e3503ec
Artifact SLF4J LOG4J-12 has been relocated (#20113) 2023-05-05 13:57:45 +02:00
Bruno Oliveira da Silva
d106de1c87
Update to Quarkus 3.0.2.Final (#20154)
Closes #20152
2023-05-04 13:08:47 +00:00
Alexander Schwartz
c2c5012cfb Upgrade to latest Infinispan version 14.0.8
Closes #20067
2023-05-02 13:45:05 +02:00
Bruno Oliveira da Silva
373b5c1d9f
Update to Quarkus 3.0.1.Final (#20011)
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>

Closes #20010
Closes #19080
Closes #17476
Closes #19286
Closes #17557
Closes #17556
Closes #17555
Closes #17475
Closes #15879
Closes #15878
2023-05-02 10:13:23 +02:00
Martin Bartoš
3f6925143a
Support JavaEE for Admin client (#19988) 2023-04-28 16:35:31 +02:00
Martin Bartoš
9186327807 Remove duplicate Servlet API dependency
Closes #19993
2023-04-28 09:07:39 +02:00
Martin Bartoš
30ea43f06f Remove workaround related to the SmallRye configuration
Upgrade to Quarkus 3.0.0.Final

Closes #19084
2023-04-27 13:36:54 +02:00
Alexander Schwartz
c7749dc5dd Upgrading to latest Hibernate release
---
Quarkus3 branch sync no. 14 (24.4.2023)
Resolved conflicts:
keycloak/pom.xml - Modified
2023-04-27 13:36:54 +02:00
Alexander Schwartz
7a5e265e92 Update to Quarkus 3.0.0.Beta1
---
Quarkus3 branch sync no. 14 (24.4.2023)
Resolved conflicts:
keycloak/pom.xml - Modified
2023-04-27 13:36:54 +02:00
Martin Bartoš
8fb7fb0de9 Integrate Quarkus 3.0.0.Alpha6
---
Quarkus3 branch sync no. 14 (24.4.2023)
Resolved conflicts:
keycloak/pom.xml - Modified
2023-04-27 13:36:54 +02:00
Martin Bartoš
bc43e4f435 Integrate Jakarta Mail API 2.1.0 2023-04-27 13:36:54 +02:00
Martin Bartoš
952faed4c9 Run Adapter tests with JavaEE support
---
Quarkus3 branch sync no. 9 (10.3.2023)
Resolved conflicts:
keycloak/.github/actions/build-keycloak/action.yml - Modified
2023-04-27 13:36:54 +02:00
Martin Bartoš
64738ea708 Fix issues with JakartaEE Mail dependencies
This reverts commit da4644844ed88818c05d777460624403326ab01c

---
Quarkus3 branch sync no. 12 (31.3.2023)
Resolved conflicts:
keycloak/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/sessionlimits/UserSessionLimitsTest.java - Modified
2023-04-27 13:36:54 +02:00
Stefan Guilhen
5e0182ac24 Adds com.sun.xml.ws.rt dependency to saml-core-api
Closes #16743
2023-04-27 13:36:54 +02:00
Stefan Guilhen
3409a0c840 Fixes SAML tests in testsuite
- adds dependency to saaj-impl in saml core public
- updates test apps' web.xml files to use jakarta namespaces
- small cleanup in main pom
- changes order of e-mail servers in testsuite pom to enforce usage of greenmail (changes order in Undertow's classpath)

Closes #16711
2023-04-27 13:36:54 +02:00
Martin Bartoš
b1da7bd613 Revert Mail API
---
Quarkus3 branch sync no. 13 (11.4.2023)
Resolved conflicts:
keycloak/quarkus/pom.xml - Modified
---
Quarkus3 branch sync no. 12 (31.3.2023)
Resolved conflicts:
keycloak/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/sessionlimits/UserSessionLimitsTest.java - Modified
2023-04-27 13:36:54 +02:00
Martin Bartoš
1f126647fe Update dependencies 2023-04-27 13:36:54 +02:00
Peter Zaoral
4ff2de7f46 Quarkus3 branch sync
18.1.2023:
* applied Quarkus 3 OpenRewrite recipe
* fixed the parts that were missed by the script

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
2023-04-27 13:36:54 +02:00
Martin Bartoš
124591ce1a Adapters can still use Java EE
- Provided all JavaEE dependencies for adapters
- Automatically build Undertow Jakarta EE for testsuite (missing SAML)
---
Quarkus3 branch sync no. 11 (24.3.2023)
Resolved conflicts:
keycloak/adapters/oidc/spring-security/pom.xml - Modified
---
Quarkus3 branch sync no. 7 (27.2.2023)
Resolved conflicts:
keycloak/pom.xml - Modified
---
Quarkus3 branch sync no. 5 (10.2.2023)
Resolved conflicts:
keycloak/testsuite/integration-arquillian/servers/auth-server/services/testsuite-providers/pom.xml - Modified
---
Quarkus3 branch sync no. 1 (18.1.2023)
Resolved conflicts:
keycloak/testsuite/integration-arquillian/tests/base/pom.xml - Modified
2023-04-27 13:36:54 +02:00
Martin Bartoš
40c38e0133 Fix dependencies in testsuite, adapters and Quarkus module
---
Quarkus3 branch sync no. 11 (24.3.2023)
Resolved conflicts:
keycloak/adapters/oidc/spring-security/pom.xml - Modified
2023-04-27 13:36:54 +02:00
Stefan Guilhen
384d7c17f7 - Fix issues in legacy store
- Testsuite (switch undertow-embedded.version)
2023-04-27 13:36:54 +02:00
Martin Bartoš
cecd059af2 WiP - Resolve failure with JakartaEE Tx and Infinispan/HotRod
---
Quarkus3 branch sync #1 (18.1.2023)
Resolved conflicts:
keycloak/quarkus/runtime/pom.xml - Modified
keycloak/quarkus/pom.xml - Modified
keycloak/quarkus/deployment/pom.xml - Modified
2023-04-27 13:36:54 +02:00
Stefan Guilhen
e505021681 Model upgrade Hibernate/JPA
---
Quarkus3 branch sync no. 14 (24.4.2023)
Resolved conflicts:
keycloak/pom.xml - Modified
---
Quarkus3 branch sync no. 13 (11.4.2023)
Resolved conflicts:
keycloak/model/map-jpa/src/main/java/org/keycloak/models/map/storage/jpa/JpaMapStorageProviderFactory.java - Modified
---
Quarkus3 branch sync no. 11 (24.3.2023)
Resolved conflicts:
keycloak/model/map-jpa/src/main/java/org/keycloak/models/map/storage/jpa/JpaMapStorageProviderFactory.java - Modified
---
Quarkus3 branch sync no. 7 (27.2.2023)
Resolved conflicts:
keycloak/model/map-jpa/src/main/java/org/keycloak/models/map/storage/jpa/client/entity/JpaClientEntity.java - Modified
keycloak/model/map-jpa/src/main/java/org/keycloak/models/map/storage/jpa/clientScope/entity/JpaClientScopeEntity.java - Modified
keycloak/pom.xml - Modified
---
Quarkus3 branch sync no. 6 (17.2.2023)
Resolved conflicts:
keycloak/model/map-jpa/src/main/java/org/keycloak/models/map/storage/jpa/JpaMapStorageProviderFactory.java - Modified
---
Quarkus3 branch sync no. 1 (18.1.2023)
Resolved conflicts:
keycloak/model/map-jpa/src/main/java/org/keycloak/models/map/storage/jpa/hibernate/dialect/JsonbPostgreSQL95Dialect.java - Modified
2023-04-27 13:36:54 +02:00
Martin Bartoš
25862a15ad Upgrade components 2023-04-27 13:36:54 +02:00
Martin Bartoš
6118e5cfb7 Use JakartaEE dependencies
---
Quarkus3 branch sync no. 14 (24.4.2023)
Resolved conflicts:
keycloak/pom.xml - Modified
---
Quarkus3 branch sync no. 5 (10.2.2023)
Resolved conflicts:
keycloak/pom.xml - Modified
2023-04-27 13:36:54 +02:00
Jon Koops
01d13e8ef7
Filter out community translations for the Admin Console (#19806)
Closes CIAM-5018
2023-04-19 15:03:02 +00:00
Peter Skopek
5cc385d460
Add a Galleon feature pack to allow Galleon provisioning of the SAML adapter to WildFly (#19710)
* Add a Galleon feature pack to allow Galleon provisioning of the SAML adapter to WildFly

Closes #12363

Signed-off-by: Peter Skopek <pskopek@redhat.com>

* Transition SAML adapter modules to Jakarta #12363

Signed-off-by: Peter Skopek <pskopek@redhat.com>

* Wildfly Galleon Pack version and configuration updated #12363

Signed-off-by: Peter Skopek <pskopek@redhat.com>

---------

Signed-off-by: Peter Skopek <pskopek@redhat.com>
Co-authored-by: Farah Juma <fjuma@redhat.com>
2023-04-18 08:47:24 +02:00
Jon Koops
a2eb619e0e
Include Account Console version 3 as a theme (#19641) 2023-04-13 09:41:40 -04:00
Pedro Igor
83676bf927 Extract JUnit5 support in the distributoin testsuite to a separate module
Closes #19552
2023-04-11 10:48:56 +02:00
Jon Koops
51a1dd61d2
Remove unused minify-maven-plugin dependency (#19583) 2023-04-07 07:38:49 -04:00
mposolda
c6f13363b9 Add nashorn javascript engine to Keycloak server
closes #17671
2023-04-04 14:56:46 +02:00
Niklas Simons
17022ad13c Bump infinispan to 14.0.7.Final 2023-04-03 08:20:13 +02:00
Pedro Igor
a30b6842a6 Decouple the policy enforcer from adapters and provide a separate library
Closes keycloak#17353
2023-03-17 11:40:51 +01:00
Jon Koops
96aa4b3394
Add Maven build for the Admin UI (#17552) 2023-03-13 18:16:12 +00:00
Alexander Schwartz
0b2802fa18 Fixing compile time warnings
Avoiding calling deprecated methods, and adding compile time dependencies for annotations.

Closes #17499
2023-03-09 15:42:55 +01:00
Andre F de Miranda
97969e141c
Bump webauthn4j to version 0.21.0-RELEASE (#17516)
Fixes #16730
2023-03-09 11:05:29 +01:00
Douglas Palmer
181e1b914f Update to UA Parser 1.5.4 and use CachingParser
closes #16729
2023-03-08 11:46:39 +01:00
Jon Koops
6d2e57f93a
Move Keycloak JS into the NPM workspace (#17401) 2023-03-03 13:56:53 +01:00
Jon Koops
972ebb9650
Use a valid SemVer format for the SNAPSHOT version (#17334)
* Use a valid SemVer format for the SNAPSHOT version

* Update pom.xml

* Update pom.xml

---------

Co-authored-by: Stian Thorgersen <stianst@gmail.com>
Co-authored-by: Stian Thorgersen <stian@redhat.com>
2023-03-03 11:11:44 +01:00
Stian Thorgersen
48dd0893ce
Add js module to Keycloak parent (#17360) 2023-03-01 09:39:22 +01:00
Jon Koops
9144207755
Add Maven build for JavaScript admin client (#17306)
Co-authored-by: Stian Thorgersen <stian@redhat.com>
2023-02-28 11:16:43 +00:00
Carsten Hoffmann
bd36b21969 Upgrade WildFly Elytron to 1.20.3 to fix multiple CVEs
Closes #16652
Closes #16779
Closes #17094
Closes #17095
2023-02-23 13:14:46 -03:00
Alexander Schwartz
d4604984d0
Compatibility with Maven4 and parallel builds (#16312)
Closes #16308
2023-02-14 11:44:53 +01:00
Hynek Mlnařík
f71ab092de
File store basis
Fixes: #16676

---

* Enhance DefaultModelCriteria
* Fix collection
* Fix delete in CHMKeycloakTransaction
* Add HasRealmId interface
* Fix EntityFieldDelegate
* Support for realm-less entities in providers
* Support for realm-less entities in providers (events)
* File store basis
* Add support for writing
* Support running KeycloakServer with file store
* Add support for file store in model testsuite

---------

Co-authored-by: vramik <vramik@redhat.com>
2023-02-07 14:59:23 +01:00
Bruno Oliveira da Silva
963b7fbc9d CVE-2022-45047 - Deserialization of Untrusted Data vulnerability in org.apache.sshd:sshd-common
Resolves #16779
2023-02-06 16:07:37 -03:00
Bruno Oliveira da Silva
12cefb9950 Update to Quarkus 2.13.7.Final
Resolves #16755

Co-authored-by: Robert Nemeti <r.nemeti@syseleven.de>
2023-02-03 15:03:11 -03:00
rmartinc
f8f112d8d2
Upgrade twitter4j (#16828)
Closes https://github.com/keycloak/keycloak/issues/16731
2023-02-03 15:28:37 +01:00
Bruno Oliveira da Silva
c585051164 Remove duplicate references on the main pom.xml for SnakeYAML
Resolves #16784
2023-02-02 08:20:33 +01:00
Bruno Oliveira da Silva
e3ccba3903 CVE-2022-41854/CVE-2022-38752 Snakeyaml vulnerable to Stack overflow leading to denial of service
Resolves #16062
2023-02-01 13:45:50 +01:00
Stian Thorgersen
8d05895adb
Move Admin REST extension to main repository (#16530)
Closes #16529
2023-01-19 13:06:21 +01:00
Stian Thorgersen
794e7414f3
Set OkHttp 4.10.0 in parent pom (#16383) 2023-01-12 11:41:42 +01:00
stianst
09ff572ef6 Update to XStream 1.4.20
Closes #16276
2023-01-12 09:28:05 +01:00
Stian Thorgersen
0319e0f8c2
Set Snakeyaml to 1.33 in parent pom (#16382)
Closes #15339
2023-01-12 06:52:16 +01:00
Miquel Simon
7bd78f604a
Added MariaDB to Legacy Store IT. (#16157) 2023-01-10 17:37:27 +01:00
Stian Thorgersen
9a7b8e8e2f
Update Fabric8 docker plugin (#16362) 2023-01-10 13:55:37 +01:00
Miquel Simon
c2682157fb
Added MS SQL Server to Legacy Store IT. (#16121)
* Added MS SQL Server to Legacy Store IT.

* Update testsuite/integration-arquillian/pom.xml

Co-authored-by: Stian Thorgersen <stianst@gmail.com>
Co-authored-by: Stian Thorgersen <stian@redhat.com>
2023-01-06 08:55:09 +01:00
Martin Kanis
5aae3842c4 Upgrade to Infinispan 14.0.4.Final 2022-12-22 10:09:05 +01:00
Martin Kanis
c0e103dc95 Replace old HotRod index annotation with new one 2022-12-21 12:50:08 +01:00
Alexander Schwartz
0fee33bb95 Normalize JVM heap usage in tests and handle OOM situations
Closes #16089
2022-12-20 13:26:07 +01:00