libre.sh/keycloak-scim
2
0
Fork 0
Code Issues 14 Pull requests Releases Packages Activity Actions 6
14292 commits 4 branches 5 tags 480 MiB
Commit graph

103 commits

Author SHA1 Message Date
Bruno Oliveira da Silva
58956aa0b4 Publish container images on Docker Hub 
Resolves #11986

Co-authored-by: andreaTP <andrea.peruffo1982@gmail.com>
 2022-05-18 08:01:28 -03:00
dependabot[bot]
3ff3aeba29
Update aquasecurity/trivy-action from 0.2.5 to 0.3.0 (#12016) 
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-05-16 19:27:23 -03:00
dependabot[bot]
1611629c5c
Update github/codeql-action from 2.1.9 to 2.1.10 (#12017) 
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-05-16 19:27:02 -03:00
Martin Bartoš
06b6e7ed7b Include WebAuthn tests to GH Actions 
Closes #9502
 2022-05-16 08:35:40 +02:00
Bruno Oliveira da Silva
83ef30c106
Update GitHub actions dependencies (#11952) 
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: andreaTP <andrea.peruffo1982@gmail.com>
 2022-05-12 09:53:59 -03:00
Michal Hajas
fc974fc019 Update composite roles on child role removal 
Closes #11769
 2022-05-05 15:18:18 +02:00
Bruno Oliveira da Silva
81078274fa Ignore vulnerabilities fixed on Keycloak 18.0.0 
Resolves #11672
 2022-04-28 15:24:55 -03:00
vramik
5248815091 Disable infinispan realm and user cache for map storage tests 
Closes #11213
 2022-04-25 09:38:49 +02:00
Stian Thorgersen
aaaec9f6f5
Add Maven Wrapper (#11031) 2022-04-22 15:24:39 +02:00
Andrea Peruffo
7986872ae0
Inject the operand version as env var (#11511) 2022-04-20 11:09:08 +02:00
andreaTP
8b1869482d fix Operator CI 2022-04-19 14:27:55 -03:00
andreaTP
fe9347c9ec Use the setup-java action cache option 2022-04-19 11:20:35 -03:00
andreaTP
a558d2f546 OLM tests using ttl.sh 2022-04-19 09:44:25 -03:00
dependabot[bot]
cb4cd279ab
Bump aquasecurity/trivy-action to 0.2.3 (#11274) 
Resolves #11308

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-04-14 05:55:56 -03:00
dependabot[bot]
df1c3b1a8d
Bump actions/setup-java from 2 to 3 (#11275) 
Resolves #11307

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-04-14 05:52:59 -03:00
dependabot[bot]
db229ee55e
Bump github/codeql-action from 2.1.7 to 2.1.8 (#11273) 
Resolves #11306

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-04-14 05:49:32 -03:00
Bruno Oliveira da Silva
1661a4ecc7 Suppress Snyk warnings about WildFly Elytron 
Resolves #11277
 2022-04-13 11:18:03 -03:00
Jon Koops
034748ed0a Add Dependabot config to keep Github Actions up-to-date 2022-04-13 08:07:49 -03:00
Bruno Oliveira da Silva
bde2744650 Ignore license compliance warnings 
Resolves #11225
 2022-04-11 19:12:17 -03:00
Václav Muzikář
20d037a4ad Revert Operator CI 2022-04-11 12:33:22 -03:00
Bruno Oliveira da Silva
0ff92df01f Suppress Snyk false positives 
Resolves #11203
 2022-04-09 09:17:30 -03:00
Andrea Peruffo
7816e69e38
Build the Olm bundle and test it in CI (#10949) 
* Building the OLM bundle

* kustomize the main CRD for the OLM bundle

* minor fixes
 2022-04-08 10:22:01 +02:00
Bruno Oliveira da Silva
eade942482 CodeQL analysis always fails 
Resolves #11123
 2022-04-07 07:36:42 -03:00
andreaTP
53aab7fc28 Use temurin instead of zulu in CI 2022-03-31 10:23:42 -03:00
andreaTP
f93a7d63f7 Switch to auto-build off in case of custom images 2022-03-30 12:46:32 -03:00
Bruno Oliveira da Silva
034775f311 Trigger Trivy workflow after the build of our nightly images 
Resolves #11011
 2022-03-30 12:41:37 -03:00
Bruno Oliveira da Silva
8cd2c97982 Fix the breaking changes introduced by setup-java 2022-03-30 11:53:00 -03:00
Bruno Oliveira da Silva
b09728762e Update to the latest version of the official actions used by Keycloak 
Resolves #10971
 2022-03-30 11:53:00 -03:00
Bruno Oliveira da Silva
7b10d02cbd Introduce an additional dependency scanner for Keycloak 
Resolves #10807

Co-authored-by: Jon Koops <jonkoops@gmail.com>
 2022-03-30 10:09:14 -03:00
Bruno Oliveira da Silva
19e55650a2
Automatic scan Keycloak docker image for vulnerabilities (#10777) 
* Automatic scan Keycloak docker image for vulnerabilities

The changes proposed here will run Trivy scanner twice a day to search
vulnerabilities into our main images.

Resolves #10764

Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>

* Update .github/workflows/trivy-analysis.yml

Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Co-authored-by: Stian Thorgersen <stian@redhat.com>
 2022-03-29 16:17:20 +02:00
Stian Thorgersen
e58e8ef252
Add issue template for tasks (#10912) 2022-03-29 15:47:35 +02:00
Andrea Peruffo
e3935f669d
Run CI on main only on schedule (#10942) 2022-03-29 15:10:20 +02:00
andreaTP
6621fb3988 Publish operator image to Quay 2022-03-16 10:17:45 -03:00
andreaTP
c3348c8931 Deploy a default ingress along with the Deployment 2022-03-16 09:54:48 -03:00
Bruno Oliveira da Silva
6ebad26904
Failure to upload the SARIF file on pull requests (#10725) 
The changes proposed here will resolve the issues we have with
pull-request after the merge of #10606. It creates 3 different
workflows to conditionally execute the job based on changes submitted.

A detailed explanation about the issue can be found on #10717.

Resolves #10717
 2022-03-15 08:59:59 +01:00
Stian Thorgersen
4eb1720259
GitHub Action to release Keycloak container (#10683) 
Closes #10682
 2022-03-15 08:58:44 +01:00
Bruno Oliveira da Silva
f06ba05405
The CodeQL analysis is broken due to the large content of the SARIF file (#10606) 
The issue was originally caused by high number of flows paths per alert
generated by the LDAP federation module. That was identified taking the
SARIF file generated and running:

```
jq '.runs[0].results | map({query_id: .rule.id, numPaths: .codeFlows |
length})' java.sarif

```

Together we reduced the number of flows paths, adding optimizations to
skip some paths and avoid false alerts.

Co-authored-by: Bruno Oliveira da Silva <bruno@abstractj.com>

Closes #10203

Co-authored-by: Joshua Mulliken <joshua@mulliken.net>
 2022-03-11 13:55:17 +01:00
Jonathan Vila
c4b978b6c8 Operator Clustering support 
Co-authored-by: Jonathan Vila <jvilalop@redhat.com>
Co-authored-by: Andrea Peruffo <andrea.peruffo1982@gmail.com>
 2022-03-03 16:22:01 -03:00
andreaTP
8e6489459d Fix operator CI 2022-02-28 13:06:41 +01:00
andreaTP
6bce8b80b9 Add extensions as init container 2022-02-24 15:17:38 -03:00
Stian Thorgersen
1df842eb4b Update codeql-analysis.yml 2022-02-21 13:33:35 -03:00
Andrea Peruffo
c826bab01d
Run the operator locally to verify dev env in GH actions (#10150) 2022-02-16 12:26:04 +01:00
Stian Thorgersen
fa87d46210
Remove additional repositories where they are not needed. Set updatePolicy for GA. (#10047) 
Closes: #10133
 2022-02-16 08:59:05 +01:00
andreaTP
541043c862 Run the operator tests using a fresh build of Keycloak 2022-02-15 10:01:53 -03:00
Bruno Oliveira da Silva
38d817b7b9 Configure CodeQL to perform the analysis of the main branch 
The CodeQL configuration file still has some references to the old
branch `master`, that means that most of the information provided by the
tool must be outdated.  Change it is necessary to perform the correct
analysis of the codebase.

Closes #10103
 2022-02-10 09:57:53 -03:00
Jonathan Vila
3fd725a3f5
Test Baseline (#9625) 
Closes #9174

Signed-off-by: jonathan <jvilalop@redhat.com>
 2022-02-03 09:38:45 +01:00
Dominik Guhr
829e2a9a3e
Change test order (#9911) 
Closes #9910
 2022-02-01 14:08:44 +01:00
Bruno Oliveira da Silva
f2430c0994 Exclude some folders from our SAST analysis 
Currently, the CodeQL scanner has been analyzing the whole
codebase,including folders like testsuite, or examples. Those folders
are not relevant from the security standpoint, considering that they do
not expose our users and customers to any risks. They are only relevant
in the context of our pipelines, but never used in production.

Closes #9631
 2022-01-20 18:42:39 -03:00
Andrea Peruffo
8c5e158db4
Baseline for the new Keycloak operator (#9381) 
* Baseline for the new Keycloak operator

* v2alpha1 and better kustomization setup
 2022-01-12 09:06:10 +01:00
Pedro Igor
981cda5bfd Database configuration tests 
Closes #9293
 2022-01-05 09:26:46 -08:00