Pedro Igor
c5e4dc8cec
Associated permissions should only add resource type permissions if the resource is an instance ( #11220 )
...
Closes #11148
2022-04-19 09:10:14 +02:00
Douglas Palmer
638ecbce9c
[CIAM-2134] Documentation for session-limits-feature
2022-04-19 08:41:06 +02:00
Pedro Igor
52d205ca91
Allow exposing some initial provider config options via web site ( #10572 )
...
* Allow exposing some initial provider config options via web site
Co-authored-by: Stian Thorgersen <stian@redhat.com>
Closes #10571
* Include type to provider options, and hide build-icon column as it's not relevant
Co-authored-by: stianst <stianst@gmail.com>
2022-04-19 08:01:42 +02:00
andymunro
8e31596ed4
KEYCLOAK-16923-FIX Revising Authorization Services Guide for Red Hat Standards ( #1358 )
2022-04-18 11:10:57 -03:00
Bruno Oliveira da Silva
f9d4566723
Replace the cryptographic algorithm by SHA-2
...
The static code scanning analysis detected the usage of MD5 as part of [
MapDeploymentStateProviderFactory](a6dd9dc0f1/model/map/src/main/java/org/keycloak/models/map/deploymentState/MapDeploymentStateProviderFactory.java (L58-L58)
).
Even though we could not find any ways of exploiting the code, we should
avoid its usage considering that MD5 is not collision-resistant.
Resolves #11290
2022-04-18 07:10:04 -03:00
McLaynV
91c191024e
Fix a typo in a description String ( #11260 )
...
Resolves #11344
2022-04-18 07:09:24 -03:00
Martin Kanis
a2d7cd7a5c
Hot Rod map storage: User / client session no-downtime store
2022-04-14 15:34:22 +02:00
Makariy
3b4d87ddcd
Mistyping correction ( #11242 )
...
Resolves #11288
Co-authored-by: m.balashov <m.balashov@crpt.ru>
2022-04-14 09:58:54 -03:00
mfrances17
0dd9cacdd3
Adds tests for LDAP provider advanced and cache settings ( #2338 )
...
* adds ldap advanced and cache tests
* fixes issues from merges
* dont force close notification
* error msg differs
2022-04-14 13:07:28 +02:00
Pedro Igor
6bf9080d8d
Remove deployment module dependency from server module
...
Closes #11257
2022-04-14 07:25:00 -03:00
dependabot[bot]
cb4cd279ab
Bump aquasecurity/trivy-action to 0.2.3 ( #11274 )
...
Resolves #11308
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-14 05:55:56 -03:00
dependabot[bot]
df1c3b1a8d
Bump actions/setup-java from 2 to 3 ( #11275 )
...
Resolves #11307
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-14 05:52:59 -03:00
dependabot[bot]
db229ee55e
Bump github/codeql-action from 2.1.7 to 2.1.8 ( #11273 )
...
Resolves #11306
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-14 05:49:32 -03:00
agagancarczyk
8294b65872
fix attempt 1 ( #2448 )
...
Co-authored-by: Agnieszka Gancarczyk <agancarc@redhat.com>
2022-04-14 09:16:52 +01:00
msvechla
820ab52dce
Add support for filtering by enabled attribute on users count endpoint ( #9842 )
...
Resolves #10896
2022-04-13 13:57:22 -03:00
mposolda
4ba58a31e8
Minor update to release notes
2022-04-13 18:10:10 +02:00
Bruno Oliveira da Silva
1661a4ecc7
Suppress Snyk warnings about WildFly Elytron
...
Resolves #11277
2022-04-13 11:18:03 -03:00
Stan Silvert
ed79c2a861
Revert "Include Admin UI as a regular dependency ( #11156 )" ( #11280 )
...
This reverts commit 31c272d73f
.
2022-04-13 09:19:49 -04:00
Jon Koops
31c272d73f
Include Admin UI as a regular dependency ( #11156 )
2022-04-13 09:18:56 -04:00
Erik Jan de Wit
4fc64e6915
Removes the already added validators after closing the dialog ( #2435 )
2022-04-13 15:18:26 +02:00
AndyMunro
b8ccd87770
Updating template reference
...
Closes #CIAM-2517
2022-04-13 09:37:07 -03:00
agagancarczyk
45746e7660
wip: realm_test fix/improvement attempt ( #2446 )
...
* test fix attempt
* test fix attempt 2
* test fix attempt 3
* test fix attempt 4
* test fix attempt 4
* cleanup
* fix for client test
* fix attempt 5
Co-authored-by: Agnieszka Gancarczyk <agancarc@redhat.com>
2022-04-13 14:16:37 +02:00
Dominik Guhr
7811f3721a
Add db-url-port option
...
to set the port when not using a full db-url
closes #11251
2022-04-13 08:31:25 -03:00
Pedro Igor
7058a123b1
Avoid initializing the OWASP HTML Sanitizer at startup
...
Closes #11261
2022-04-13 08:21:53 -03:00
Dominik Guhr
52150cacfc
adjust rp docs to clarify exposing js path
...
Closes #11041
2022-04-13 08:08:48 -03:00
Jon Koops
034748ed0a
Add Dependabot config to keep Github Actions up-to-date
2022-04-13 08:07:49 -03:00
Jon Koops
4d0a1e5c2e
Trigger Cypress on 'push' event only ( #2445 )
2022-04-13 13:07:28 +02:00
Jon Koops
6bdb78f01e
Remove Java setup from testing job ( #2444 )
2022-04-13 13:07:08 +02:00
Jon Koops
5f47c3952b
Skip uploading Cypress assets ( #2442 )
2022-04-13 13:06:50 +02:00
bamanuel
7652bbfcd1
Fix unmatched braces in error log formatter
...
Closes #11252
2022-04-13 08:03:29 -03:00
AndyMunro
7db227b241
Reinstate missing step
...
Closes #RHSSO-1866
(cherry picked from commit 9bb0ec4f81ba454c3141800fc5586d34363c9679)
2022-04-13 10:22:05 +02:00
Bruno Oliveira da Silva
fc1eb02ed5
Update WildFly Elytron on the legacy distribution (CVE-2021-3642)
...
This change is a follow up of #11196
Resolves #11249
2022-04-12 17:02:08 -03:00
Bruno Oliveira da Silva
82fbe6c0d5
Update jackson-databind dependency in the main POM file to fix CVE-2020-36518
...
Resolves #11188
2022-04-12 11:23:30 -03:00
Jon Koops
f7186f8aeb
Enable tests retries for Cypress ( #2443 )
2022-04-12 09:11:16 -04:00
Václav Muzikář
66b1c2b167
Change the CRD API group in the operator
2022-04-12 09:38:40 -03:00
R0Wi
cb4a513e24
Fail authenticate if credentialInput is not of type UserCredentialModel
...
Code fix inside LDAPStorageProvider.java:
return failed result if credential input object is not of expected type
Closes #11191
2022-04-12 14:38:17 +02:00
Alexander Schwartz
5c1a8d401d
Store time as seconds as a long in map store
...
This avoids overflowing the value in 2038.
Closes #10960
2022-04-12 14:22:44 +02:00
Andrea Peruffo
4def2d83e0
Bump Jackson and Kubernetes-client ( #11241 )
...
Resolves : #11245
2022-04-12 09:15:42 -03:00
Giacomo Altiero
3b7243cd47
Support for UserInfo response encrypted ( #10519 )
...
Close #10517
2022-04-12 14:01:14 +02:00
Alexander Schwartz
a6dd9dc0f1
Avoiding AvlPartitionFactory and using JdbmPartitionFactory for the embedded LDAP to work around unstable tests.
...
Fix for #11171 didn't turn out to cover the root cause. Also improved transaction handling in LDAP Map storage.
Closes #11211
2022-04-12 09:12:21 +02:00
Bruno Oliveira da Silva
bde2744650
Ignore license compliance warnings
...
Resolves #11225
2022-04-11 19:12:17 -03:00
Jon Koops
85f457c7d2
Check in record key to pass tests ( #2440 )
2022-04-11 13:22:48 -04:00
Jon Koops
3e503a7bb5
Use pull_request_target to allow access to secrets ( #2438 )
2022-04-11 12:48:28 -04:00
Václav Muzikář
20d037a4ad
Revert Operator CI
2022-04-11 12:33:22 -03:00
Jon Koops
03927cda3b
Run Cypress tests in parallel to optimize performance ( #2433 )
2022-04-11 16:18:24 +02:00
agagancarczyk
7418bca8f4
Realm-settings -> User Profile -> Create/Edit Attribute tests ( #2410 )
...
* added tests for creating new attribute
* added more tests
* removed temporary skips
* added more tests
* added more tests
* fixed typo
* fixed focus bug
Co-authored-by: Agnieszka Gancarczyk <agancarc@redhat.com>
2022-04-11 15:00:08 +01:00
Michal Hajas
6e181a51d5
Add test-jar dependency only if maven.test.skip property is false
...
Closes #11192
2022-04-11 10:37:18 -03:00
Bruno Oliveira da Silva
bb025f1378
Update wildfly-elytron dependency in the main Quarkus distribution (CVE-2021-3642)
...
Resolves #11196
2022-04-11 09:47:39 -03:00
dependabot[bot]
b027702ffa
Bump @types/react-dom from 17.0.14 to 18.0.0
...
Bumps [@types/react-dom](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react-dom ) from 17.0.14 to 18.0.0.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react-dom )
---
updated-dependencies:
- dependency-name: "@types/react-dom"
dependency-type: direct:development
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-04-11 13:29:36 +02:00
dependabot[bot]
5b245fce82
Bump fork-ts-checker-webpack-plugin from 7.2.3 to 7.2.4
...
Bumps [fork-ts-checker-webpack-plugin](https://github.com/TypeStrong/fork-ts-checker-webpack-plugin ) from 7.2.3 to 7.2.4.
- [Release notes](https://github.com/TypeStrong/fork-ts-checker-webpack-plugin/releases )
- [Changelog](https://github.com/TypeStrong/fork-ts-checker-webpack-plugin/blob/main/CHANGELOG.md )
- [Commits](https://github.com/TypeStrong/fork-ts-checker-webpack-plugin/compare/v7.2.3...v7.2.4 )
---
updated-dependencies:
- dependency-name: fork-ts-checker-webpack-plugin
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-04-11 13:26:06 +02:00