Commit graph

24680 commits

Author SHA1 Message Date
Stefan Guilhen
2ca59d4141 Align isEnabled in MSAD mappers to how other properties are processed in UserAttributeLDAPStorageMapper
- user model is updated by onImport with the enabled/disabled status of the LDAP user
- a config option always.read.enabled.value.from.ldap was introduced, in synch to what we have in UserAttributeLDAPStorageMapper
- isEnabled checks the flag to decide if it should always retrieve the value from LDAP, or return the local value.
- setEnabled first updates the LDAP tx, and then calls the delegate to avoid issue #24201

Closes #26695
Closed #24201

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
2024-04-01 08:20:35 -03:00
Steven Hawkins
e9ad9d0564
fix: replace aesh with picocli (#27458)
* fix: replace aesh with picocli

closes: #27388

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update integration/client-cli/admin-cli/src/main/java/org/keycloak/client/admin/cli/commands/AbstractRequestCmd.java

Co-authored-by: Martin Bartoš <mabartos@redhat.com>

* splitting the error handling for password input

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* adding a change note about kcadm

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update docs/documentation/upgrading/topics/changes/changes-25_0_0.adoc

Co-authored-by: Martin Bartoš <mabartos@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2024-03-28 14:34:06 +01:00
dependabot[bot]
a74d833f22 Bump aquasecurity/trivy-action from 0.18.0 to 0.19.0
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.18.0 to 0.19.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](062f259268...d710430a67)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-03-28 09:05:39 -03:00
dependabot[bot]
440f05e593
Bump vite-plugin-dts from 3.7.3 to 3.8.1 in /js (#28267)
Bumps [vite-plugin-dts](https://github.com/qmhc/vite-plugin-dts) from 3.7.3 to 3.8.1.
- [Release notes](https://github.com/qmhc/vite-plugin-dts/releases)
- [Changelog](https://github.com/qmhc/vite-plugin-dts/blob/main/CHANGELOG.md)
- [Commits](https://github.com/qmhc/vite-plugin-dts/compare/v3.7.3...v3.8.1)

---
updated-dependencies:
- dependency-name: vite-plugin-dts
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-28 11:20:24 +00:00
dependabot[bot]
05382e8881
Bump react-hook-form from 7.51.1 to 7.51.2 in /js (#28229)
Bumps [react-hook-form](https://github.com/react-hook-form/react-hook-form) from 7.51.1 to 7.51.2.
- [Release notes](https://github.com/react-hook-form/react-hook-form/releases)
- [Changelog](https://github.com/react-hook-form/react-hook-form/blob/master/CHANGELOG.md)
- [Commits](https://github.com/react-hook-form/react-hook-form/compare/v7.51.1...v7.51.2)

---
updated-dependencies:
- dependency-name: react-hook-form
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-28 11:59:42 +01:00
dependabot[bot]
baceae1227
Bump rollup (#28259)
Bumps [rollup](https://github.com/rollup/rollup) from 4.13.0 to 4.13.1.
- [Release notes](https://github.com/rollup/rollup/releases)
- [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md)
- [Commits](https://github.com/rollup/rollup/compare/v4.13.0...v4.13.1)

---
updated-dependencies:
- dependency-name: rollup
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-28 11:19:40 +01:00
dependabot[bot]
87fe74214c
Bump rollup from 4.13.0 to 4.13.1 in /js (#28260)
Bumps [rollup](https://github.com/rollup/rollup) from 4.13.0 to 4.13.1.
- [Release notes](https://github.com/rollup/rollup/releases)
- [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md)
- [Commits](https://github.com/rollup/rollup/compare/v4.13.0...v4.13.1)

---
updated-dependencies:
- dependency-name: rollup
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-28 11:16:12 +01:00
dependabot[bot]
1bca11c9ba
Bump mocha from 10.3.0 to 10.4.0 in /js (#28228)
Bumps [mocha](https://github.com/mochajs/mocha) from 10.3.0 to 10.4.0.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v10.3.0...v10.4.0)

---
updated-dependencies:
- dependency-name: mocha
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-28 11:14:46 +01:00
Alexander Schwartz
c580c88c93
Persist online sessions to the database (#27977)
Adding two feature toggles for new code paths to store online sessions in the existing offline sessions table. Separate the code which is due to be changed in the next iteration in new classes/providers which used instead of the old one.

Closes #27976

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Signed-off-by: Michal Hajas <mhajas@redhat.com>
Co-authored-by: Michal Hajas <mhajas@redhat.com>
2024-03-28 09:17:07 +01:00
Gilvan Filho
757c524cc5 Password policy for not having username in the password
closes #27643

Signed-off-by: Gilvan Filho <gfilho@redhat.com>
2024-03-28 08:29:03 +01:00
Pedro Igor
b9a7152a29 Avoid commiting the transaction prematurely when creating users through the User API
Closes #28217

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2024-03-27 19:16:09 -03:00
john-gom
fe538cbb72
Use a native select for the language list
Closes #27997

Signed-off-by: John Gomersall <thegoms@gmail.com>
2024-03-27 18:55:06 +01:00
Steven Hawkins
26dc81a92f
fix: ensuring test state is clean between tests (#27904)
closes: #27080

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-03-27 15:23:26 +01:00
Steven Hawkins
8407ae3bc5
fix: remove the env values from echos (#28184)
closes: #28090

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-03-27 09:33:16 -04:00
Lex Cao
a53cacc0a7 Fire logout event when logout other sessions (#26658)
Closes #26658

Signed-off-by: Lex Cao <lexcao@foxmail.com>
2024-03-27 11:13:48 +01:00
Jon Koops
3382e16954
Remove Account Console version 2 (#27510)
Closes #19664

Signed-off-by: Jon Koops <jonkoops@gmail.com>
2024-03-27 10:53:28 +01:00
Tomas Ondrusko
3160116a56
Remove Twitter workaround (#28232)
Relates to #23252

Signed-off-by: Tomas Ondrusko <tondrusk@redhat.com>
2024-03-27 10:34:26 +01:00
Steven Hawkins
be32f8b1bf
fix: limit the use of Resteasy to the KeycloakSession (#28150)
* fix: limit the use of Resteasy to the KeycloakSession

contextualizes other state to the KeycloakSession

close: #28152
2024-03-26 13:43:41 -04:00
vramik
fa1571f231 Map organization metadata when issuing tokens for OIDC clients acting on behalf of an organization member
Closes #27993

Signed-off-by: vramik <vramik@redhat.com>
2024-03-26 14:02:09 -03:00
vramik
e7bc796553 When the realm has registrationEmailAsUsername set to false (default) it's not possible to add a member to an org
Closes #28216

Signed-off-by: vramik <vramik@redhat.com>
2024-03-26 14:02:09 -03:00
Maximilian Klute
c1d7360980
add 2 translations to messages_de.properties for federatedIdentity
add translation for federatedIdentityUnavailableMessage
and federatedIdentityUnmatchedEssentialClaimMessag in messages_de.properties

Closes #28035

Signed-off-by: TuxMK <maximilian.mk97@gmail.com>
2024-03-26 16:41:20 +00:00
Anh Pham
0286e7ad5d
To support the Istio choose protocol, add the port name to the discovery service. (#27940)
Signed-off-by: Anh Pham <anhpn.uit@gmail.com>
Co-authored-by: Anh Pham <anh.pham4@hitachids.com>
2024-03-26 17:36:53 +01:00
Alexander Schwartz
305dd5812e Make use of attributes consistent between old docs and new guides
Closes #28215

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-03-26 17:07:54 +01:00
Pedro Igor
a470711dfb Resolve the user federation link as null when decorating the user profile metadata in the LDAP provider
Closes #28100

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2024-03-26 10:14:49 -03:00
kouki-miura
6af512e6ee
Fix the message for "goups" and add "groupsHelp" (#27964)
Closes #27962

Closes #27965

Signed-off-by: kouki-miura2 <koki_m@i.softbank.jp>
2024-03-26 08:20:49 -04:00
Jon Koops
ed7815401f
Do not nest components in UserCredentials (#27775)
Signed-off-by: Jon Koops <jonkoops@gmail.com>
2024-03-26 08:15:00 -04:00
Hynek Mlnarik
2f0a9ba547 Ensure referrer link is shown while navigating
Fixes: #27622
Signed-off-by: Hynek Mlnarik <hmlnarik@redhat.com>
2024-03-26 09:40:27 +01:00
Erik Jan de Wit
9038353629
only use the value on the server (#28169)
fixes: #26364

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2024-03-25 09:05:34 -04:00
Stan Silvert
7dfc263052
Add Token setting Lifetime of Request URI for PAR (#28155)
* Add Token setting Lifetime of Request URI for PAR

Signed-off-by: Stan Silvert <ssilvert@redhat.com>

* Fix test.

Signed-off-by: Stan Silvert <ssilvert@redhat.com>

---------

Signed-off-by: Stan Silvert <ssilvert@redhat.com>
2024-03-25 08:33:39 -04:00
dependabot[bot]
270be86397 Bump vite-plugin-lib-inject-css from 2.0.0 to 2.0.1 in /js
Bumps [vite-plugin-lib-inject-css](https://github.com/emosheeep/vite-plugin-lib-inject-css) from 2.0.0 to 2.0.1.
- [Release notes](https://github.com/emosheeep/vite-plugin-lib-inject-css/releases)
- [Changelog](https://github.com/emosheeep/vite-plugin-lib-inject-css/blob/master/CHANGELOG.md)
- [Commits](https://github.com/emosheeep/vite-plugin-lib-inject-css/compare/vite-plugin-lib-inject-css@2.0.0...vite-plugin-lib-inject-css@2.0.1)

---
updated-dependencies:
- dependency-name: vite-plugin-lib-inject-css
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-03-25 09:28:10 +01:00
dependabot[bot]
6d0cb0be07 Bump vite from 5.2.2 to 5.2.6 in /js
Bumps [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) from 5.2.2 to 5.2.6.
- [Release notes](https://github.com/vitejs/vite/releases)
- [Changelog](https://github.com/vitejs/vite/blob/main/packages/vite/CHANGELOG.md)
- [Commits](https://github.com/vitejs/vite/commits/v5.2.6/packages/vite)

---
updated-dependencies:
- dependency-name: vite
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-03-25 09:04:47 +01:00
Erik Jan de Wit
e9a1a6b982
use ui-shared (#27908)
Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2024-03-22 16:56:17 +01:00
Erik Jan de Wit
4fb2f73b2c
migrated to use ui-shared (#27849)
* migrated to use ui-shared

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* fixed tests

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* fixed tests

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

---------

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2024-03-22 14:07:25 +01:00
Stian Thorgersen
c3a98ae387
Use Argon2 as default password hashing algorithm (#28162)
Closes #28161

Signed-off-by: stianst <stianst@gmail.com>
2024-03-22 13:04:14 +00:00
Lukas Hanusovsky
31293d36e8
surefire reports new release 24
Closes #28167

Signed-off-by: Lukas Hanusovsky <lhanusov@redhat.com>
2024-03-22 12:25:31 +00:00
rmartinc
220564c7ba ORA-01450 error for index IDX_CLIENT_ATT_BY_NAME_VALUE in oracle when MAX_STRING_SIZE is EXTENDED
Closes #27967

Signed-off-by: rmartinc <rmartinc@redhat.com>
2024-03-22 08:48:01 -03:00
Stian Thorgersen
8cbd39083e
Default password hashing algorithm should be set to default password hash provider (#28128)
Closes #28120

Signed-off-by: stianst <stianst@gmail.com>
2024-03-22 12:44:11 +01:00
Hynek Mlnarik
b01cc231a0 Fix dev env
Fixes: #28143
Signed-off-by: Hynek Mlnarik <hmlnarik@redhat.com>
2024-03-22 12:41:28 +01:00
Erik Jan de Wit
b321c4b406
only start searching on enter and search button click (#28040)
fixes: #27917

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2024-03-22 12:06:43 +01:00
Erik Jan de Wit
3ad233b890
changed to use ui-shared (#27983)
Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2024-03-22 12:06:02 +01:00
Erik Jan de Wit
2d73c86306
changed to use ui-shared (#27996)
Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2024-03-22 11:47:06 +01:00
Erik Jan de Wit
53d52ecf15
changed to use ui-shared (#27933)
Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2024-03-22 11:27:09 +01:00
Erik Jan de Wit
5a99c558dc
changed to use ui-shared (#27919)
* changed to use ui-shared

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* doc: add keycloak cr truststores (#28015)

closes: #27892

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

---------

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Co-authored-by: Steven Hawkins <shawkins@redhat.com>
2024-03-22 11:26:47 +01:00
rmartinc
d4da0c816c Upgrading note to warn truststore changes affect webauthn registration
Closes #28113

Signed-off-by: rmartinc <rmartinc@redhat.com>
2024-03-22 10:58:48 +01:00
Alexander Schwartz
498847988a
Align help-output across OS to simplify contributions (#28146)
Closes #28145

Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>
2024-03-22 10:30:18 +01:00
dependabot[bot]
ef7ffd0482 Bump cypress from 13.7.0 to 13.7.1 in /js
Bumps [cypress](https://github.com/cypress-io/cypress) from 13.7.0 to 13.7.1.
- [Release notes](https://github.com/cypress-io/cypress/releases)
- [Changelog](https://github.com/cypress-io/cypress/blob/develop/CHANGELOG.md)
- [Commits](https://github.com/cypress-io/cypress/compare/v13.7.0...v13.7.1)

---
updated-dependencies:
- dependency-name: cypress
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-03-22 10:15:58 +01:00
Steven Hawkins
619775b8db
fix: simplifies the parsing routine, which accounts for leading 0's (#28102)
closes: #27839

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-03-22 09:19:52 +01:00
Stian Thorgersen
2672b362c9
Update github action versions (#27692)
Signed-off-by: stianst <stianst@gmail.com>
2024-03-22 08:57:41 +01:00
Steven Hawkins
6cc66109d5
doc: add keycloak cr truststores (#28015)
closes: #27892

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-03-22 08:27:15 +01:00
Stian Thorgersen
3f9cebca39
Ability to set the default provider for an SPI (#28135)
Closes #28134

Signed-off-by: stianst <stianst@gmail.com>
2024-03-22 07:45:08 +01:00