Commit graph

909 commits

Author SHA1 Message Date
mposolda
41c72d46d2 Document users hashed passwords with argon2 does not work in FIPS environment
closes #33296

Signed-off-by: mposolda <mposolda@gmail.com>

Co-authored-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
Signed-off-by: Marek Posolda <mposolda@gmail.com>
2024-10-03 08:47:45 +02:00
Pedro Aguiar
f60be4bf8e
update: fix typo "a email" (#33482)
- "a email" becomes "an email".

Signed-off-by: Pedro Aguiar <contact@codespearhead.com>
2024-10-02 19:34:33 +02:00
Pedro Aguiar
002560ef3e update/fix-typo-confFileValue-should-be-keystoreValue
- "confFileValue" appears twice consecutively in the same paragraph; the second occurrence should be "keystoreValue".

Thanks to Justin P for pointing that out in [1].

[1] https://github.com/keycloak/keycloak/discussions/33292

Signed-off-by: Pedro Aguiar <contact@codespearhead.com>
2024-10-02 19:33:48 +02:00
Alexander Schwartz
8e4c67bd3f
Document supported configurations and limitations for multi-site
Closes #33384

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-10-02 14:57:07 +02:00
Alexander Schwartz
cb12f03003
Rework AWS Lambda doc to show it is required (#33462)
Closes #33461
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-10-02 12:42:11 +02:00
vramik
c1653448f3 [Organizations] Allow orgs to define the redirect URL after user registers or accepts invitation link
Closes #33201

Signed-off-by: vramik <vramik@redhat.com>
2024-10-02 07:37:48 -03:00
Kamesh Akella
d07d5ebf1a
Add Health Checks for Multi-Site deployment to HA Docs
Closes #33143

Signed-off-by: Kamesh Akella <kamesh.asp@gmail.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Signed-off-by: Kamesh Akella <kakella@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
2024-10-02 08:43:25 +00:00
mposolda
5218af1e79 Minor tweaks in SAML documentation
closes #33426

Signed-off-by: mposolda <mposolda@gmail.com>
2024-10-01 12:48:45 +02:00
Jon Koops
21704a70c1
Update documentation and release notes for Keycloak JS (#33409)
Closes #32843

Signed-off-by: Jon Koops <jonkoops@gmail.com>
2024-10-01 10:29:23 +02:00
vramik
412f1f85a9 Update Organization documentation
Closes #33410

Signed-off-by: vramik <vramik@redhat.com>
2024-10-01 09:29:49 +02:00
Peter Zaoral
d5d6390b1c
Make Keycloak fail with an error when the persisted build options differs from those provided (#33241)
* PropertyException is now thrown instead of a warning
* Operator guides clarification around health and metrics options

Closes: #32717

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
2024-09-30 19:28:23 +02:00
Steven Hawkins
8d314a69a0
fix: adding doc note about admin ingress (#33392)
* fix: adding doc note about admin ingress

closes: #33203

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update docs/guides/operator/basic-deployment.adoc

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2024-09-30 14:11:58 +00:00
Stan Silvert
b4a200d333
Fixes release notes section on new login theme, keycloak.v2 (#33359)
* Fixes #33351

Signed-off-by: Stan Silvert <ssilvert@redhat.com>

* Fixes #33351

Signed-off-by: Stan Silvert <ssilvert@redhat.com>

* Ignore saml.xml.org because of expired cert.

Signed-off-by: Stan Silvert <ssilvert@redhat.com>

---------

Signed-off-by: Stan Silvert <ssilvert@redhat.com>
2024-09-30 15:38:29 +02:00
Steven Hawkins
5d99d91818
fix: allows for the detection of a master realm with --import-realms (#32914)
also moving initial bootstrapping after import

closes: #32689

Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2024-09-30 14:40:16 +02:00
Steven Hawkins
53102521d2
fix: correcting the recovery upgrade note (#33356)
closes: #33307

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-09-30 08:22:29 -04:00
Steven Hawkins
f1a7a4804e
fix: adds additional info / warnings to hostname v2 (#33261)
* fix: adds additional info / warnings to hostname v2

closes: #24815

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* refining the proxy-headers language from #33209

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* adding hostname-strict-https

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* moving removed property check to the quarkus side

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update quarkus/runtime/src/main/java/org/keycloak/quarkus/runtime/configuration/mappers/HostnameV2PropertyMappers.java

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

* Update docs/guides/server/hostname.adoc

Signed-off-by: Steven Hawkins <shawkins@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2024-09-28 08:48:09 +00:00
Steven Hawkins
cf2ecf87f6
fix: add the proxy-protocol option (#33276)
* fix: add the proxy-protocol-enabled option

closes: #10492

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update docs/guides/server/reverseproxy.adoc

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2024-09-27 23:44:59 +02:00
Václav Muzikář
fc76bad1fd Undeprecate https-trust-store-* options and enhance mTLS docs
Closes #33172

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
2024-09-27 18:07:57 +02:00
Stefan Guilhen
b717810061
Update organizations documentation in the server admin guide
Closes #33199

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
2024-09-27 16:27:54 +02:00
Stian Thorgersen
9657a3ac8b
Updated bug triage document to highlight importance of using backport labels, and not add release labels manually (#33343) 2024-09-27 13:58:04 +02:00
Stefan Guilhen
e2810b788e
Fix duplicated screenshot in Authorization Services Guide
Closes #23028

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
2024-09-27 09:05:06 +02:00
Stefan Guilhen
d87f67b4e6
Fix duplicated screenshots in the Fine grain admin permissions section of the Server Admin Guide
Closes #31083

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
2024-09-27 09:04:01 +02:00
Marek Posolda
061e74267f
Release notes update with the core-clients contributions (#33279)
closes #32990

Signed-off-by: mposolda <mposolda@gmail.com>


Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
Signed-off-by: Marek Posolda <mposolda@gmail.com>
2024-09-26 06:53:33 +02:00
mposolda
8f038f19dd Upgrade BCFIPS to 2.0
closes #30415

Signed-off-by: mposolda <mposolda@gmail.com>
2024-09-26 06:52:21 +02:00
Jon Koops
021a2af2fd
Compute SHA-256 digest for PKCE using the Web Crypto API (#33251)
Closes #33250

Signed-off-by: Jon Koops <jonkoops@gmail.com>
2024-09-25 16:19:16 +02:00
Robin Meese
c054a086cf
Add French to docs/translation-md (#33268)
Signed-off-by: Robin Meese <39960884+robson90@users.noreply.github.com>
2024-09-25 13:36:17 +02:00
Ryan Emerson
adb8d989f5 Allow Embedded Cache sizes to be configured via the CLI
Closes #31514

Signed-off-by: Ryan Emerson <remerson@redhat.com>
2024-09-24 14:35:24 +02:00
Pedro Ruivo
2d6140cb34
Revisit Multi Site Guide
Closes #32745

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2024-09-24 12:08:15 +00:00
Steven Hawkins
3793d60104
fix: expanding more on proxy-headers and hostname concerns (#33211)
closes: #33209

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-09-24 09:42:52 +02:00
mposolda
a79d95d1bc Documentation note about Java 8 support for client libraries
closes #33186

Signed-off-by: mposolda <mposolda@gmail.com>
2024-09-23 11:54:39 +02:00
Martin Bartoš
84564f080a
Redirect to relative-path from the root path (#32868)
Closes #32863

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
2024-09-18 16:37:28 +02:00
mposolda
f1ec0a9bb6 Release notes and upgrading guide for the client libraries
closes #30815

Signed-off-by: mposolda <mposolda@gmail.com>

Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
Signed-off-by: Marek Posolda <mposolda@gmail.com>
2024-09-18 14:52:11 +02:00
Vlasta Ramik
4ce40be1af
Make the ORGANIZATION a default feature (#32404)
Closes #32395

Signed-off-by: vramik <vramik@redhat.com>
2024-09-18 12:19:28 +02:00
Jon Koops
8bb3598129
Remove deprecated setOrCreateChild() method from Admin Client (#33022)
Closes #33021

Signed-off-by: Jon Koops <jonkoops@gmail.com>
2024-09-18 09:33:54 +02:00
Jon Koops
cf90247441
Ignore documentation links with broken certificate (#33026)
Closes #33023

Signed-off-by: Jon Koops <jonkoops@gmail.com>
2024-09-17 13:17:32 +02:00
Václav Muzikář
83c00731c3
Upgrade to Quarkus 3.14.2 (#32519)
Closes #32517

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
2024-09-13 20:18:48 +02:00
Martin Bartoš
45ef84a397
Possibility to separately specify log levels for log handlers - basic (#32779)
* Possibility to separately specify log levels for log handlers

Closes #32619

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>

* Edit properties description

Signed-off-by: Martin Bartoš <mabartos@redhat.com>

---------

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
2024-09-13 12:05:03 +02:00
Steven Hawkins
f0bf290c28
fix: add a reload period property (#32715)
closes: #23771

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-09-13 09:47:21 +02:00
Jon Koops
188893222f Remove references of statically served Keycloak JS from documentation
Closes #32821

Signed-off-by: Jon Koops <jonkoops@gmail.com>
2024-09-12 09:38:00 +02:00
Pedro Ruivo
24fce87a8e
Deprecate old remote store (feedback)
Closes #32577

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2024-09-11 14:08:53 +00:00
Michal Hajas
d85ce41377
Update STONITH lambda with the latest changes from KCB
Closes #32803

Signed-off-by: Michal Hajas <mhajas@redhat.com>
Signed-off-by: Ryan Emerson <remerson@redhat.com>
Co-authored-by: Ryan Emerson <remerson@redhat.com>
2024-09-11 13:48:26 +02:00
Alexander Schwartz
b88ecc0237
Removing the extra two-minute Window for persistent user sessions (#32660)
Closes #28418

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Signed-off-by: Michal Hajas <mhajas@redhat.com>
Co-authored-by: Michal Hajas <mhajas@redhat.com>
2024-09-09 09:28:48 +02:00
Martin Bartoš
f6d880ea3f
Syslog: add necessary options to cover the major usability (#32316)
Closes #32314

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
2024-09-06 16:20:52 +02:00
Giuseppe Graziano
a14548a7a2
Lightweight access tokens for Admin REST API (#32347)
* Lightweight access tokens for Admin REST API

Closes #31513


Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
2024-09-04 18:04:23 +02:00
Pedro Ruivo
3274591fe1
Deprecate old remote store
Closes #32577

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2024-09-04 10:25:51 +00:00
rmartinc
cce9ae94c7 Move documentation to keycloak-client
Closes #31870

Signed-off-by: rmartinc <rmartinc@redhat.com>
2024-09-04 10:55:46 +02:00
Theresa Henze
a1c23fef8c introduce event types to update/remove credentials
Closes #10114

Signed-off-by: Theresa Henze <theresa.henze@bare.id>
2024-09-03 18:27:27 +02:00
Thomas Darimont
88a5c96fff
Add kc_action to redirect URI after a required action is cancelled (#31925)
Closes #31894

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
2024-09-03 14:26:23 +00:00
nxadm
3c16e2ac77
Document Syslog app-name option (#32524)
Closes #32525

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
Co-authored-by: Claudio Ramirez <pub.claudio@gmail.com>
2024-09-02 12:10:15 +02:00
Jon Koops
2d17024b14
Remove redirect_uri support from OIDC logout endpoint
Closes #10983

Signed-off-by: Jon Koops <jonkoops@gmail.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
2024-08-30 12:52:49 +00:00