Commit graph

496 commits

Author SHA1 Message Date
Ryan Emerson
ba51140a25 Asynchronously create EmbeddedCacheManager when JDBC_PING2 not required
Closes #34313

Signed-off-by: Ryan Emerson <remerson@redhat.com>
2024-10-31 12:55:15 +01:00
Ryan Emerson
a79b67cac8 Deprecate other transport stacks (ec2, azure, google)
Closes #34253

Signed-off-by: Ryan Emerson <remerson@redhat.com>
2024-10-31 11:47:13 +01:00
Pedro Ruivo
0d9d2908f1
Username and password should be optional for multi-site deployment (#34511)
Fixes #34508

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
2024-10-31 10:47:41 +01:00
Ryan Emerson
6eb870fcfc
Add JDBC_PING2 stacks for both TCP and UDP
Closes #34265

Signed-off-by: Ryan Emerson <remerson@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2024-10-25 00:17:44 +02:00
Steven Hawkins
f06d76a5aa
fix: adding more information about http-enabled (#33795)
closes: #33605

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-10-23 17:34:34 +02:00
Steven Hawkins
b2ccde29bb
fix: persist build time spi options (#34157)
closes: #33902

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-10-23 16:51:11 +02:00
Steven Hawkins
358d234538
fix: corrects cli arg stringification (#34156)
closes: #34155

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-10-23 14:27:36 +02:00
Ryan Emerson
902abfdae4
JDBC_PING as default discovery protocol
Closes #29399

- Add ProviderFactory#dependsOn to allow dependencies between
  ProviderFactories to be explicitly defined
- Disable Infinispan default shutdownhook disabled to ensure lifecycle
  is managed exclusively by Keycloak
- Remove Infinispan shutdown hook in KeycloakRecorder and manage
  EmbeddedCacheManager lifecycle only in DefaultInfinispanConnectionProviderFactory#close

Signed-off-by: Ryan Emerson <remerson@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2024-10-22 20:19:19 +00:00
Steven Hawkins
af1a5ea2a8
fix: refining https file type detection (#33703)
also making common trustore logic align

closes: #33649

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-10-22 13:05:56 -04:00
Steven Hawkins
307041c021
fix: encapsulating where static import/export state is set/used (#33690)
closes: #33596

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-10-22 16:03:39 +02:00
Steven Hawkins
1d38fa88cd
fix: remove erroneous spi warnings (#33648)
closes: #34057

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-10-21 18:15:33 +02:00
Pedro Ruivo
fffa9aa72e
Enable virtual threads in Infinispan and JGroups by default
Closes #33939

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2024-10-21 16:02:28 +00:00
Martin Bartoš
637ca2e138
[PERF] OpenTelemetry is initialized even when disabled (#34031)
Change host reference in logging guide

Fixes #33948

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
2024-10-17 15:08:50 +02:00
Steven Hawkins
795b90a8eb
fix: removing erroneous warnings (#33977)
closes: #33638

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-10-16 15:47:51 +02:00
Pedro Ruivo
464fc90519
Fail to start if work cache is not replicated
Keycloak will now fail to start if the work cache is replicated.
Listeners require the data to be local.

Closes #33702

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2024-10-09 19:40:24 +00:00
Pedro Ruivo
0e3554934e
Read cache-ispn.xml from conf/ by default
Fixed #31492

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2024-10-09 16:40:17 +00:00
Steve Hawkins
14e44f7d8c task: refinements to propertymapping
closes: #32724

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-10-09 08:52:30 -03:00
mposolda
07cf71e818 Better logging when error happens during transaction commit
closes #33275

Signed-off-by: mposolda <mposolda@gmail.com>
2024-10-08 11:14:10 +02:00
Stian Thorgersen
4a2fbf5339
Refactor loading of theme resources (#33326)
Closes #33325

Signed-off-by: stianst <stianst@gmail.com>
2024-10-01 08:02:05 +02:00
Peter Zaoral
d5d6390b1c
Make Keycloak fail with an error when the persisted build options differs from those provided (#33241)
* PropertyException is now thrown instead of a warning
* Operator guides clarification around health and metrics options

Closes: #32717

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
2024-09-30 19:28:23 +02:00
Steven Hawkins
5d99d91818
fix: allows for the detection of a master realm with --import-realms (#32914)
also moving initial bootstrapping after import

closes: #32689

Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2024-09-30 14:40:16 +02:00
Steven Hawkins
f1a7a4804e
fix: adds additional info / warnings to hostname v2 (#33261)
* fix: adds additional info / warnings to hostname v2

closes: #24815

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* refining the proxy-headers language from #33209

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* adding hostname-strict-https

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* moving removed property check to the quarkus side

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update quarkus/runtime/src/main/java/org/keycloak/quarkus/runtime/configuration/mappers/HostnameV2PropertyMappers.java

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

* Update docs/guides/server/hostname.adoc

Signed-off-by: Steven Hawkins <shawkins@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2024-09-28 08:48:09 +00:00
Steven Hawkins
cf2ecf87f6
fix: add the proxy-protocol option (#33276)
* fix: add the proxy-protocol-enabled option

closes: #10492

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update docs/guides/server/reverseproxy.adoc

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2024-09-27 23:44:59 +02:00
Steven Hawkins
d981f7f55d
fix: allow the cli to accept negative values (#33084)
also adding a unit testable picocli

closes: #33068

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-09-27 17:36:05 +02:00
mposolda
8f038f19dd Upgrade BCFIPS to 2.0
closes #30415

Signed-off-by: mposolda <mposolda@gmail.com>
2024-09-26 06:52:21 +02:00
Ryan Emerson
adb8d989f5 Allow Embedded Cache sizes to be configured via the CLI
Closes #31514

Signed-off-by: Ryan Emerson <remerson@redhat.com>
2024-09-24 14:35:24 +02:00
vramik
87fbe23270 Make QuarkusLiquibaseConnectionProvider extending DefaultLiquibaseConnectionProvider to allow indexCreationThreshold working
Closes #32860

Signed-off-by: vramik <vramik@redhat.com>
2024-09-20 15:24:05 +02:00
Martin Bartoš
84564f080a
Redirect to relative-path from the root path (#32868)
Closes #32863

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
2024-09-18 16:37:28 +02:00
Václav Muzikář
83c00731c3
Upgrade to Quarkus 3.14.2 (#32519)
Closes #32517

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
2024-09-13 20:18:48 +02:00
Pedro Ruivo
f67bec0417 Rename remote-cache Feature
Renamed to "clusterless"

Closes #32596

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
2024-09-13 13:03:13 +02:00
Martin Bartoš
45ef84a397
Possibility to separately specify log levels for log handlers - basic (#32779)
* Possibility to separately specify log levels for log handlers

Closes #32619

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>

* Edit properties description

Signed-off-by: Martin Bartoš <mabartos@redhat.com>

---------

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
2024-09-13 12:05:03 +02:00
Steven Hawkins
f0bf290c28
fix: add a reload period property (#32715)
closes: #23771

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-09-13 09:47:21 +02:00
Stian Thorgersen
40049f31fa
Remove ProxyClassLoader and PlatformProvider returning script classloader (#32806)
Closes #32804

Signed-off-by: stianst <stianst@gmail.com>
2024-09-11 17:11:26 +02:00
Pedro Ruivo
24fce87a8e
Deprecate old remote store (feedback)
Closes #32577

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2024-09-11 14:08:53 +00:00
Martin Bartoš
f6d880ea3f
Syslog: add necessary options to cover the major usability (#32316)
Closes #32314

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
2024-09-06 16:20:52 +02:00
Pedro Ruivo
3274591fe1
Deprecate old remote store
Closes #32577

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2024-09-04 10:25:51 +00:00
Steven Hawkins
081a3852c2
fix: simplify / refine validation methods (#32487)
closes: #32455

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-09-04 09:21:26 +00:00
Pedro Ruivo
29c8060bda Trigger mass re-index of the sessions caches when the entity changes
Closes #32594

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
2024-09-03 15:48:14 +02:00
Martin Bartoš
afcbf79582 OTEL: Profile Feature
Closes #32231

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
2024-08-30 13:19:09 +02:00
Michal Hajas
af53af1506
Document persistent sessions are enabled by default
Closes #32387

Signed-off-by: Michal Hajas <mhajas@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Pedro Ruivo <pruivo@users.noreply.github.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2024-08-30 09:20:58 +00:00
Steve Hawkins
c9779cfa24 fix: adding a first-class option for trusted proxies
closes: #32135

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-08-29 14:00:27 +02:00
Václav Muzikář
9bbfec5cdd
Remove GELF (#32230)
Closes #27365

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
2024-08-28 21:25:05 +02:00
Steven Hawkins
29eb0171de
task: remove hostname v1 (#32352)
closes: #27731

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-08-28 17:48:06 +02:00
Pedro Ruivo
378db25016
Skip creating sessions cache when Persistent Sessions is enabled
Re-order the configuration steps to avoid redundant warnings

Closes #32416

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2024-08-27 16:21:08 +00:00
Steven Hawkins
c18a79bfe7
fix: ensure the legacy admin username env can still be used (#32341)
closes: #32333

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-08-22 13:10:26 +00:00
Steven Hawkins
4fba6b391e
fix: generalizing when enabled like behavior as a validator (#32325)
closes: #32318

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-08-22 10:51:22 +02:00
Steven Hawkins
d9a92f5de3
fix: expose bootstrap-admin-* options (#32241)
* fix: expose bootstrap-admin-* options

closes: #32176

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update quarkus/config-api/src/main/java/org/keycloak/config/BootstrapAdminOptions.java

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2024-08-21 15:52:38 +02:00
Václav Muzikář
aee9390812
Resolve disabled options even at fast startup (#32245)
Closes #30380

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
2024-08-20 12:15:32 +02:00
Martin Bartoš
bf5cf47351
Management Interface is turned on even though nothing is exposed on it (#31938)
* Management Interface is turned on even though nothing is exposed on it

Fixes #31818

Signed-off-by: Martin Bartoš <mabartos@redhat.com>

* Remove conditional enablement, add relevancy description

Signed-off-by: Martin Bartoš <mabartos@redhat.com>

---------

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
2024-08-19 15:52:59 +02:00
Václav Muzikář
799201f406 Fix duplicate options in show-config
Closes #32182

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
2024-08-18 09:29:31 +02:00