Commit graph

758 commits

Author SHA1 Message Date
Alexander Schwartz
badf3f461d Making metrics with labels for embedded Infinispan the default
Closes #25935

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-01-08 21:29:03 +01:00
Steven Hawkins
7bde7c30cc
fix: do not split on space for option errors (#25876)
closes #25783

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-01-05 13:01:17 +01:00
Jon Koops
07f9ead128 Upgrade Welcome theme to PatternFly 5
Closes #21343

Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>
Signed-off-by: Jon Koops <jonkoops@gmail.com>
2024-01-03 14:46:01 -03:00
Steven Hawkins
667ce4be9e
enhance: supporting versioned features (#24811)
also adding a common PropertyMapper validation method

closes #24668

Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2024-01-03 17:56:31 +01:00
Steven Hawkins
f633041db3
fix: adds --verbose to all commands (#25590)
closes #13250

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2023-12-20 13:13:04 +01:00
Steven Hawkins
e148021a67
fix: adding filtering to ignore anything runtime during a build (#25434)
fix: adding filtering to ignore anything runtime during a build

closes: #25166

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2023-12-18 12:50:47 +00:00
Václav Muzikář
e4c348e99e
Add new --proxy-headers option (#25178)
* Add new `--proxy-headers` option

Closes #23431

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>

* Address review comments vol. 03

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>

* Address review comments vol. 04

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>

---------

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2023-12-13 10:48:12 -03:00
Alexander Schwartz
c4ada85233
Showing the original exception plus any swallowed exceptions. (#25428)
Closes #25424

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2023-12-13 11:56:08 +01:00
Martin Bartoš
0a95159e07
Ignore Health and Metrics artifacts (#22438)
Closes #22437

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
2023-12-08 16:57:12 +00:00
Michal Hajas
d387f13525
Add tests for lb-check endpoint
Added documentation why the check retries and updated outdated docs

Closes #25113

Signed-off-by: Michal Hajas <mhajas@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2023-12-04 08:53:37 +01:00
Martin Bartoš
8cfeadc816
Ignore JDBC Drivers artifacts (#25012)
* Ignore JDBC Drivers artifacts (#22443)

Closes #22442

Signed-off-by: Martin Bartoš <mabartos@redhat.com>

* Fix obtaining removed artifacts from the configuration

Signed-off-by: Martin Bartoš <mabartos@redhat.com>

---------

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
2023-12-01 17:21:57 +00:00
Michal Hajas
ec061e77ed
Remove GlobalLockProviderSpi (#25206)
Closes #24103

Signed-off-by: Michal Hajas <mhajas@redhat.com>
2023-12-01 16:40:56 +00:00
Garth
ba790f1bca
added PATCH and PUT methods to get FormBodyHandler (#25093)
Signed-off-by: Garth <244253+xgp@users.noreply.github.com>
2023-12-01 13:00:44 +00:00
Martin Bartoš
b8467d80f1
Initialize Infinispan earlier in the build chain (#21171)
Closes #24860

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
2023-12-01 13:58:36 +01:00
Peter Zaoral
386e4ea8d4
NoSuchFileException with ${kc.home.dir} on Windows (#24080)
* NoSuchFileException with ${kc.home.dir} on Windows

* added a path validation for https cert and key files in HttpPropertyMappers

Closes #23217

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>

* NoSuchFileException with ${kc.home.dir} on Windows

* added a path validation for https cert and key files in HttpPropertyMappers

Closes #23217

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>

* NoSuchFileException with ${kc.home.dir} on Windows

* added a path validation for https cert and key files in HttpPropertyMappers

Closes #23217

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>

---------

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
2023-11-30 18:47:41 +00:00
vramik
587cef7de4 Delete Profile.Feature.MAP_STORAGE
Signed-off-by: vramik <vramik@redhat.com>

Closes #24102
2023-11-30 13:04:39 +01:00
Steven Hawkins
8c3df19722
feature: add option for creating a global truststore (#24473)
closes #24148

Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2023-11-30 08:57:17 +01:00
Steven Hawkins
7e0cbcafae
fix: corrects the db property handling and null mapped values (#25088)
closes #25010

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2023-11-29 19:54:10 +01:00
Michal Hajas
2b2207af93
Publish information about Infinispan availability in lb-check if MULTI_SITE is enabled
Closes #25077

Signed-off-by: Michal Hajas <mhajas@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Pedro Ruivo <pruivo@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2023-11-29 11:06:41 +00:00
Václav Muzikář
33dd830914
Revert "Ignore JDBC Drivers artifacts (#22443)" (#24938)
This reverts commit d0bfbde7ad.

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
2023-11-22 19:11:06 +00:00
Martin Bartoš
d0bfbde7ad
Ignore JDBC Drivers artifacts (#22443)
Closes #22442

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
2023-11-22 15:13:31 +01:00
Bruno Oliveira da Silva
ecfc007699
Removal of LGPL-2.1 licensed org.jboss.metadata.jboss-metadata-web dependency for CNCF compliance (#24715)
Signed-off-by: Bruno Oliveira da Silva <bruno@abstractj.com>

Closes #24714
2023-11-22 08:37:24 +00:00
Steven Hawkins
59823a301a
fix: skip rebuild if using the tools command (#24858)
closes #24551

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2023-11-21 16:19:00 +01:00
Václav Muzikář
15a83985b1 Implement load shedding
Closes #23340

Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
2023-11-21 13:43:09 +01:00
Pedro Igor
4c8724e7b1 Do not run value transformation if a option is being requested by its name and there is no dependency on other options
Closes #24757

Co-authored-by: Steven Hawkins <shawkins@redhat.com>
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2023-11-21 09:00:54 -03:00
Steven Hawkins
73d5a2c553
fix: adds a better error message if an spi argument lacks a value (#24826)
closes: #22260

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2023-11-20 11:03:45 +01:00
Bruno Oliveira da Silva
2d45601bf3
Removal EPL-licensed org.eclipse.sisu.inject dependency for CNCF compliance (#24686)
Closes #24685

Signed-off-by: Bruno Oliveira da Silva <bruno@abstractj.com>
2023-11-16 17:15:44 +01:00
Steven Hawkins
07a3def4a2
fix: all mappings should use getValidProxyModeValue (#24756)
closes #24630

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2023-11-15 14:31:44 +01:00
vramik
71b6757c2f Remove quarkus options related to map store
Signed-off-by: vramik <vramik@redhat.com>

Closes #24098
2023-11-13 12:34:52 +01:00
vramik
6d7a99dc6f Rework build steps in KeycloakProcessor
Signed-off-by: vramik <vramik@redhat.com>

Closes #24099
2023-11-13 12:34:52 +01:00
vramik
926be135e8 Remove map related modules
Signed-off-by: vramik <vramik@redhat.com>

Closes #24100
2023-11-13 12:34:52 +01:00
Alexander Schwartz
26e2fde115
Avoid reseting cachemanger to null to avoid a re-initialization (#24086)
Also follow best practices of using volatile variables for double-locking, and not using shutdown caches.

Closes #24085
2023-11-08 11:33:44 -05:00
vramik
6fa26d7ff4 Delete map dependencies from dependency management
Closes #24101
2023-11-08 13:53:17 +01:00
Peter Skopek
e5eded0eab
Add possibility to override fileName and base directory of Keycloak Quarkus distribution ZIP archive (#24284)
Closes #24283

Signed-off-by: Peter Skopek <pskopek@redhat.com>
2023-11-07 10:31:58 +01:00
Hynek Mlnarik
aa75fef6e6 Downgrade transient users to experimental
Closes: #24343
Signed-off-by: Hynek Mlnarik <hmlnarik@redhat.com>
2023-11-01 08:37:46 +01:00
Hynek Mlnarik
c036980c37 Add TRANSIENT_USERS feature flag 2023-10-25 12:02:35 +02:00
Thomas Darimont
e567210ed1
Add dedicated feature flag for oauth device grant flow (#23892)
Closes #23891
2023-10-24 10:09:26 +02:00
Steven Hawkins
f4d1dd9b7f
improvement: validates the expected values of non-cli properties (#23797)
also adds better messages for unknown options

closes #13608
2023-10-20 17:21:03 +00:00
Joshua Sorah
1837b4401c
Improve quoting and variable parsing for batch start script. (#20212)
Quote some specific variables used in the batch script to address blank
space issues when Keycloak is in a directory structure containing
spaces.

Address some variable parsing issues by using delayed expansion instead
of default behavior.

Remove superfluous SetLocal EnableDelayedExpansion

Closes keycloak/keycloak#20115
2023-10-20 16:11:47 +00:00
Peter Zaoral
f2dc57bfe1
kcadm.bat, kcreg.bat do not respect environment variables JAVA, JAVA_… (#23630)
* kcadm.bat, kcreg.bat do not respect environment variables JAVA, JAVA_HOME to select JVM

* edited kcadm.bat and kcreg.bat scripts

Closes #23214

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>

* kcadm.bat, kcreg.bat do not respect environment variables JAVA, JAVA_HOME to select JVM

* incorporated suggestions

Closes #23214

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>

* kcadm.bat, kcreg.bat do not respect environment variables JAVA, JAVA_HOME to select JVM

* incorporated suggestions

Closes #23214

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>

---------

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
2023-10-20 15:51:54 +02:00
Steven Hawkins
1f77476281
fix: allows --version to work (#24161)
closes #23783
2023-10-20 11:17:38 +02:00
Alexander Schwartz
8499d2cba3 Separating CLI arguments into separate strings to avoid concatenation
Closes #23965
2023-10-13 21:29:47 +02:00
Steven Hawkins
478ceb0b34
modification of kc.sh to remove param eval (#22585)
* test

* modification of kc.sh to remove eval of env/args

Closes #22337

---------

Co-authored-by: rmartinc <rmartinc@redhat.com>
2023-10-12 17:10:53 +02:00
Martin Bartoš
96204fe349
Ignore UnknownHostException for Quarkus IT (#22035) 2023-10-11 13:59:55 +02:00
Alexander Schwartz
6a78e36d25 Making the readiness probe non-blocking, and backport non-blocking liveness and readiness probes
Closes #22109

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2023-10-10 08:54:14 +02:00
Martin Bartoš
3e3fb62770
Improve test coverage for Admin hostname properties (#23535)
Closes #23534
2023-10-04 12:50:18 +02:00
Steven Hawkins
b07391b538 Update quarkus/runtime/src/main/java/org/keycloak/quarkus/runtime/hostname/DefaultHostnameProvider.java
Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>
2023-09-28 19:33:12 -03:00
Steve Hawkins
fb69936f14 Aligns the logic in the welcome resources
as a result the quarkus one can be removed

closes keycloak#23243
2023-09-28 19:33:12 -03:00
Martin Bartoš
c9d93019c2
Remove deprecated auto-build CLI option (#23361)
Closes #23360
2023-09-27 18:56:38 +02:00
vramik
eb105a01c7 Set JVM FlightRecorderOptions to capture full stacks depth
Closes #23508
2023-09-25 19:01:23 +02:00
Jon Koops
47d9ae71c4
Revert the new welcome screen experience (#23446)
This reverts commit bcab75a7ef.
2023-09-21 16:03:00 +00:00
Martin Bartoš
ed443a962e Remove old RESTEasy Classic configuration property
Closes #23358
2023-09-19 13:33:54 -03:00
Martin Bartoš
c2fc2c2b03
Keystore location does not work for Windows (#23209)
* Keystore location does not work for Windows

Fixes #22185

* Enable Quarkus UT for Windows

Closes #23208
2023-09-18 17:28:25 +02:00
Pedro Igor
217a09ce46 Switch to Resteasy Reactive
Closes #10713
2023-09-18 09:19:03 -03:00
Pedro Igor
2f4144a8c7
CLI args not recognized when running Quarkus dev mode (#23254)
Closes #23253
2023-09-14 19:48:30 +00:00
Martin Bartoš
2946139dfa
Race condition inside Keycloak build chain execution (#23260)
Fixes #23258
2023-09-14 16:29:52 +00:00
Jon Koops
bcab75a7ef
Add new version of Welcome theme based on PatternFly 5 (#23008) 2023-09-14 08:24:17 -04:00
rmartinc
3d3c00b0e8 Add caret to regex expressions in federation-sssd-setup.sh to avoid comments
Closes https://github.com/keycloak/keycloak/issues/23128
2023-09-13 10:00:31 +02:00
vramik
dc9970f578 Introduce a workaround for liquibase bug to allow use database schema with a dash in its name
Closes #20870
2023-09-12 17:21:43 +02:00
Martin Bartoš
ebc9faea79
Handle ignored artifacts separately (#21440)
Closes #22430
2023-09-12 14:21:38 +02:00
Martin Bartoš
a6ae1b9db7
Quarkus IT that use Oracle DB don't work with -Dproduct (#23084)
Fixes #23058
2023-09-08 17:51:22 +02:00
rmartinc
7da52a43bd Add old LinkedIn provider to the deprecated profile
Closes https://github.com/keycloak/keycloak/issues/23067
2023-09-08 10:05:17 +02:00
Alexander Schwartz
2eb37dbe4f Remove MS SQL JDBC driver from the Keycloak product
Closes #22983
2023-09-07 15:30:34 +02:00
Alexander Schwartz
f086e008dc
Update dependencies to enable Maven also-make working for Quarkus (#23020)
Closes #23019
2023-09-07 13:15:20 +02:00
Martin Bartoš
6ca78b7554 Return Oracle JDBC driver to the upstream
Closes #22999
2023-09-06 19:11:29 +02:00
Martin Bartoš
b05c79d591
Error message when JDBC driver is missing is not helpful (#22833)
Closes #22795
2023-09-04 14:38:17 +02:00
Alexander Schwartz
8c5818a46e Avoid direct access to executor to record worker pool metrics
Closes #22742
2023-09-01 13:13:23 +02:00
Martin Bartoš
3c00286e6c
Remove log-level property for ClassTransformingBuildStep in Quarkus (#22794)
Closes #22793
2023-08-30 15:20:08 +02:00
Martin Bartoš
7c013e8d48
Add a Maven profile to remove GELF support (#22615)
Closes #22515

Co-authored-by: Václav Muzikář <vmuzikar@redhat.com>
2023-08-29 17:03:08 +00:00
Václav Muzikář
1811c39632
Fix cache option defaults in help (#22708)
Closes #22707

Co-authored-by: Stian Thorgersen <stianst@gmail.com>
2023-08-28 12:07:48 +02:00
Martin Bartoš
c6da903ac1
Do not initialize barrier build items (#22616) 2023-08-28 09:02:17 +02:00
Martin Bartoš
fcf65389ea
Remove Oracle Database JDBC driver from the Keycloak distribution (#22577)
* Remove Oracle Database JDBC driver from the Keycloak distribution

Closes #22452

* Remove profile for proprietary Oracle JDBC driver

---------

Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2023-08-21 15:13:49 +00:00
Martin Bartoš
60ac69d8ac
Fix IDELauncher after removing Vert.x Dev UI dependency (#22494) 2023-08-17 14:58:42 +00:00
Peter Zaoral
568590fcdd
Remove Brotli dependencies from the distribution and operator (#22484)
* excluded the dependencies from the keycloak-quarkus-server and operator poms

Closes #22482

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
2023-08-17 08:53:35 +02:00
Steven Hawkins
b216895baf
removing vertx-uri-template as a dependency (#22470)
there's no usage of UriTemplate (smallrye or vertx in keycloak /
fabric8), so it can be removed from server and the operator

Closes #22468
2023-08-16 16:55:04 +02:00
Martin Bartoš
ecd9044a62
Remove JUnit dependencies from the distribution (#22457)
Closes #22445
2023-08-15 15:19:46 +02:00
Martin Bartoš
9d3b2e7ae7
Remove Vert.x Dev UI dependency (#22456)
Closes #22446
2023-08-15 12:00:33 +00:00
Thomas Darimont
78262b2b53
Fix deprecated API usage in quarkus module (#22163) (#22165)
- KeycloakConfigSourceProvider implement ConfigBuilder in order to be usable as StaticInitConfigBuilderBuildItem
- KeycloakProcessor
  prefer StaticInitConfigBuilderBuildItem instead of StaticInitConfigSourceProviderBuildItem
  prefer ...deployment.spi.AdditionalJpaModelBuildItem over ...deployment.AdditionalJpaModelBuildItem
- LiquibaseProcessor -> use recommended method declaredAnnotation(..)
- VertxClientCertificateLookup use recommended getSubjectX500Principal() over getSubjectDN()
- DatabaseContainer -> prefer container.getHost() over container.getContainerIpAddress()
- DockerKeycloakDistribution -> replace ResourceReaper with direct DockerClient usage

Fixes #22163
2023-08-02 09:17:51 +02:00
Jakub Jirutka
d50fa65247
Refactor kc.sh, kcadm.sh and kcreg.sh scripts, make kc.sh POSIX shell compatible (#21124)
Closes #22041
2023-07-27 17:54:18 +02:00
Anhanguera
5bd4d8202f
Replace Windows separator with Unix separator (#20472)
* Replace Windows separator with Unix separator

Replace Windows separator with Unix separator to avoid building failure on Windows.

Closes #20471

* Use '/' directly instead of File.separate to then replace back to '/'

---------

Co-authored-by: Stian Thorgersen <stian@redhat.com>
2023-07-27 06:03:49 +00:00
Alexander Schwartz
a1e1fd8d5d
Provide an HTTP 503 response when the thread pool rejected the request (#21963)
This allows for limiting the queue of the thread pool to avoid overloading Keycloak.

Closes #21962
2023-07-26 14:47:31 +00:00
Václav Muzikář
ecdf8e897f
Upgrade to Quarkus 3.2.2.Final (#21912)
Closes #21907
2023-07-26 16:20:23 +02:00
Takashi Norimatsu
0ddef5dda8
DPoP support 1st phase (#21202)
closes #21200


Co-authored-by: Dmitry Telegin <dmitryt@backbase.com>
Co-authored-by: mposolda <mposolda@gmail.com>
2023-07-24 16:44:24 +02:00
Alexander Schwartz
08838f77ca Adding Maven Build Cache Extension as opt-in feature
Closes #20882
2023-07-24 13:07:15 +02:00
Martin Bartoš
6766fd6ccc
Warnings about TLS properties on startup (#21869)
Fixes #21801
2023-07-21 12:02:46 +00:00
Alexander Schwartz
7c9593f88a
Upgrade Infinispan to 14.0.13.Final (#21565)
Closes #21564
2023-07-20 16:59:19 +00:00
Václav Muzikář
776bcbcbd4
Update bcpkix and bcprov dependencies (#21543)
Closes #21360
2023-07-20 11:57:18 +02:00
Pedro Igor
bf19c4b07e Re-augmentation failing on windows
Closes #21625
2023-07-12 12:02:15 -07:00
Alexander Schwartz
a25df4afea
Align database versions in Quarkus integration tests with the root pom (#21512)
Now it is using the same version that is used in the integration test and which is stated in the docs as the tested version.

Closes: #15411
2023-07-10 16:59:26 +02:00
Alexander Schwartz
8bdfb8e1b6 Updating performance information on export/import
Closes: #20703
2023-07-07 09:43:59 -03:00
A. Tammy
497d08af1c
make cli usable on OpenBSD (#16462)
Signed-off-by: Aisha Tammy <aisha@bsd.ac>
Co-authored-by: Aisha Tammy <aisha@bsd.ac>
2023-07-07 08:58:41 +02:00
Václav Muzikář
3f4d9713e8 Remove elytron and devservices
Closes #9075
2023-07-06 12:45:48 -03:00
Peter Zaoral
2b1c29a6f2 Use Quarkus Platform BOM
Closes #20570
Closes #15870

Co-authored-by: Peter Zaoral <pzaoral@redhat.com>
2023-07-06 12:45:48 -03:00
Alexander Schwartz
ce13a91ceb Fix property name changed in Quarkus 3.2
Closes #21456
2023-07-06 11:44:49 -03:00
Pedro Igor
bde57ca839 Ignoring artifacts when running re-aug to isolate the current and new stores
Closes #20974
2023-07-05 07:56:49 -03:00
Pedro Ruivo
10ff4a0ab3 Allow any JGroups stack with --cache-stack
Closes #21064
2023-07-03 21:25:32 -03:00
mposolda
0ea2891eee Remove support for OpenJDK 11 on the server side
closes #15014
2023-07-03 13:12:22 -03:00
Martin Bartoš
ee205c8fbc
Enable IPv6 dualstack support by default (#21340)
Closes #15003
2023-07-03 13:35:33 +00:00
Pedro Igor
0dd7c4a515 Fixing auth-server-quarkus-embedded 2023-06-21 17:18:26 +02:00
Jon Koops
651a7f29fc
Promote Account Console v3 to preview (#20969) 2023-06-15 12:24:01 -04:00
Alexander Schwartz
2b16fda3a1
Setting ParallelGC as the default garbage collector (#20606)
Closing #20568
2023-06-05 17:48:28 +02:00
Pedro Igor
4a85b21eb3
Removing unnecessary message from main command help text (#20692)
Closes #20689
2023-06-01 09:12:39 +02:00
Andre Nascimento
30c7808d9d Clarify the use of '--db-url-properties' option in its description and in the guide.
Closes #12720
2023-05-31 09:41:04 -03:00
stianst
0832992e59 Removing OpenShift integration and moving to separate extension
closes #20496

Co-authored-by: mposolda <mposolda@gmail.com>
2023-05-30 17:39:32 +02:00
Pedro Igor
e9accaf387
Show warning message when overriding build options during starts (#20585)
Closes #20582
2023-05-29 13:21:57 +02:00
Peter Zaoral
34e5884415
SmallRye Keystore (#20375)
* added integration with SmallRye Keystore (keycloak#19281)

Closes #11089

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
2023-05-25 17:36:20 +02:00
Peter Zaoral
72b238fb48
Keystore vault (#19644)
* KeystoreVault SPI

* added KeystoreVault - a Vault SPI implementation (#19281)

Closes #17252

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
2023-05-24 16:20:30 +00:00
Pedro Ruivo
abd75a786f Enable simple-cache for local-cache
Closes #20486
2023-05-24 09:47:20 +02:00
Václav Muzikář
1aa3e2d7e3
Fix processing of env variable references (#20462)
Closes #20032
2023-05-22 14:48:59 +02:00
Alexander Schwartz
34a68d9354
Avoid using JBoss dependency which contains some old Log4j classes (#20423)
This assumes all dependencies already use different logging frameworks

Closes #15844
2023-05-19 09:01:36 +02:00
Alex Szczuczko
1578506475
Seperate version properties for hibernate-enhance and quarkus-maven (#20264)
This will allow them to be defined seperately from aligned dependency
versions suitable for product

Closes #20261
2023-05-18 14:37:55 +00:00
Alexander Schwartz
6851a06fc0
Use non-blocking random generator on Linux, and native Microsoft CryptoAPI on Windows (#20403)
Closes #20361
2023-05-17 11:00:37 +02:00
Alexander Schwartz
508e6f5e50
Exit JVM on out-of-memory exceptions (#20363)
Closes #20362
2023-05-16 17:24:18 +02:00
rmartinc
fdd5e51dbc SSSD documentation updated for quarkus distribution
Closes https://github.com/keycloak/keycloak/issues/20263
2023-05-16 14:26:04 +02:00
Alexander Schwartz
8cfe8b1411
Update the docs on passthrough proxy (#20072)
Closes #20070
2023-05-15 15:44:47 +00:00
Martin Bartoš
960e3503ec
Artifact SLF4J LOG4J-12 has been relocated (#20113) 2023-05-05 13:57:45 +02:00
Pedro Igor
c17fcd49c8
Support for non-XA databases (#20141) 2023-05-04 19:08:10 +02:00
Alexander Schwartz
c2c5012cfb Upgrade to latest Infinispan version 14.0.8
Closes #20067
2023-05-02 13:45:05 +02:00
Bruno Oliveira da Silva
373b5c1d9f
Update to Quarkus 3.0.1.Final (#20011)
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>

Closes #20010
Closes #19080
Closes #17476
Closes #19286
Closes #17557
Closes #17556
Closes #17555
Closes #17475
Closes #15879
Closes #15878
2023-05-02 10:13:23 +02:00
Martin Bartoš
5a96efad11 Do not display error log for initial admin creation
Closes #15789

Co-authored-by: Steve Weixel <steve.weixel@quantum.com>
2023-04-28 14:36:05 +02:00
Martin Bartoš
ba07f1ced3 Ignore HibernateOrmProcessor logs related to persistence.xml
Closes #19995

Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>
2023-04-28 08:11:13 -03:00
Martin Kanis
f7988a6ae3 Cleanup Infinispan dependencies in Quarkus dist
Closes #17368
2023-04-27 16:28:50 +02:00
Peter Zaoral
bc165686ba Quarkus3 branch sync no. 14
24.4.2023:
* renamed imports from javax to jakarta as a part of the migration from JavaEE to JakartaEE

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
2023-04-27 13:36:54 +02:00
Martin Bartoš
e3e1df2dd6 Fix Quarkus IT (zip) tests 2023-04-27 13:36:54 +02:00
Martin Bartoš
30ea43f06f Remove workaround related to the SmallRye configuration
Upgrade to Quarkus 3.0.0.Final

Closes #19084
2023-04-27 13:36:54 +02:00
Alexander Schwartz
143a3bc7ac Revert "Create workaround for "UnsupportedOperationException: compare() not implemented for EntityType""
With the update Hibernate 6.2.0.Final this is no longer needed.

Closes #19321

This reverts commit 71bcb409c4f6a1251ce18f32cfd68e4ae528abb3.
2023-04-27 13:36:54 +02:00
Alexander Schwartz
c3c728230d Fix problem with "Unable to create message factory for SOAP: Unable to create SAAJ meta-factory: Provider com.sun.xml.messaging.saaj.soap.SAAJMetaFactoryImpl not found" when running SAML. 2023-04-27 13:36:54 +02:00
Alexander Schwartz
adb47ac874 Create workaround for "UnsupportedOperationException: compare() not implemented for EntityType"
Related to: #19321
2023-04-27 13:36:54 +02:00
Martin Bartoš
fb855538fa Additional settings for JTA TX and Quarkus 2023-04-27 13:36:54 +02:00
Martin Bartoš
5b7e9a2603 Remove WF dependencies, add Jakarta SOAP, fix tests
---
Quarkus3 branch sync no. 13 (11.4.2023)
Resolved conflicts:
IdeaProjects/keycloak/quarkus/pom.xml - Modified
IdeaProjects/keycloak/quarkus/runtime/pom.xml - Modified
2023-04-27 13:36:54 +02:00
Martin Bartoš
9796e69d8d Change default transaction type to JTA 2023-04-27 13:36:54 +02:00
Martin Bartoš
8584174099 Change default DB dialects 2023-04-27 13:36:54 +02:00
Martin Bartoš
bc43e4f435 Integrate Jakarta Mail API 2.1.0 2023-04-27 13:36:54 +02:00
vramik
acebf4616e Remove JsonbPostgreSQL95Dialect from quarkus.
Closes #16549
2023-04-27 13:36:54 +02:00
Peter Zaoral
0b4f40f89b Quarkus3 branch sync no. 8
3.3.2023:
* renamed imports from javax to jakarta as a part of the migration from JavaEE to JakartaEE

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
2023-04-27 13:36:54 +02:00
Martin Bartoš
a895cc1a60 Fix Quarkus IT tests for Quarkus 3 2023-04-27 13:36:54 +02:00
Martin Bartoš
64738ea708 Fix issues with JakartaEE Mail dependencies
This reverts commit da4644844ed88818c05d777460624403326ab01c

---
Quarkus3 branch sync no. 12 (31.3.2023)
Resolved conflicts:
keycloak/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/sessionlimits/UserSessionLimitsTest.java - Modified
2023-04-27 13:36:54 +02:00
Martin Bartoš
b1da7bd613 Revert Mail API
---
Quarkus3 branch sync no. 13 (11.4.2023)
Resolved conflicts:
keycloak/quarkus/pom.xml - Modified
---
Quarkus3 branch sync no. 12 (31.3.2023)
Resolved conflicts:
keycloak/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/sessionlimits/UserSessionLimitsTest.java - Modified
2023-04-27 13:36:54 +02:00
Peter Zaoral
4ff2de7f46 Quarkus3 branch sync
18.1.2023:
* applied Quarkus 3 OpenRewrite recipe
* fixed the parts that were missed by the script

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
2023-04-27 13:36:54 +02:00
Martin Bartoš
40c38e0133 Fix dependencies in testsuite, adapters and Quarkus module
---
Quarkus3 branch sync no. 11 (24.3.2023)
Resolved conflicts:
keycloak/adapters/oidc/spring-security/pom.xml - Modified
2023-04-27 13:36:54 +02:00
Martin Bartoš
cecd059af2 WiP - Resolve failure with JakartaEE Tx and Infinispan/HotRod
---
Quarkus3 branch sync #1 (18.1.2023)
Resolved conflicts:
keycloak/quarkus/runtime/pom.xml - Modified
keycloak/quarkus/pom.xml - Modified
keycloak/quarkus/deployment/pom.xml - Modified
2023-04-27 13:36:54 +02:00
Martin Bartoš
6118e5cfb7 Use JakartaEE dependencies
---
Quarkus3 branch sync no. 14 (24.4.2023)
Resolved conflicts:
keycloak/pom.xml - Modified
---
Quarkus3 branch sync no. 5 (10.2.2023)
Resolved conflicts:
keycloak/pom.xml - Modified
2023-04-27 13:36:54 +02:00
Martin Bartoš
7cff857238 Migrate packages from javax.* to jakarta.*
---
Quarkus3 branch sync no. 14 (24.4.2023)
Resolved conflicts:
keycloak/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/federation/storage/ComponentExportImportTest.java - Modified
keycloak/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/admin/DeclarativeUserTest.java - Modified
keycloak/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/federation/storage/FederatedStorageExportImportTest.java - Modified
keycloak/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/admin/authentication/FlowTest.java - Modified
keycloak/services/src/main/java/org/keycloak/services/resources/admin/UserResource.java	- Modified
---
Quarkus3 branch sync no. 13 (11.4.2023)
Resolved conflicts:
keycloak/testsuite/integration-arquillian/tests/base/src/main/java/org/keycloak/testsuite/pages/AccountTotpPage.java - Deleted
keycloak/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/federation/storage/BackwardsCompatibilityUserStorageTest.java - Modified
---
Quarkus3 branch sync no. 12 (31.3.2023)
Resolved conflicts:
keycloak/quarkus/runtime/src/main/java/org/keycloak/quarkus/runtime/services/resources/QuarkusWelcomeResource.java - Modified
keycloak/services/src/main/java/org/keycloak/protocol/saml/profile/util/Soap.java - Modified
keycloak/testsuite/integration-arquillian/tests/base/src/main/java/org/keycloak/testsuite/util/UserInfoClientUtil.java - Modified
keycloak/services/src/main/java/org/keycloak/protocol/oidc/endpoints/UserInfoEndpoint.java - Modified
keycloak/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/sessionlimits/UserSessionLimitsTest.java - Modified
---
Quarkus3 branch sync no. 10 (17.3.2023)
Resolved conflicts:
keycloak/services/src/main/java/org/keycloak/protocol/saml/SamlProtocolUtils.java -	Modified
---
Quarkus3 branch sync no. 9 (10.3.2023)
Resolved conflicts:
keycloak/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/federation/kerberos/AbstractKerberosSingleRealmTest.java - Modified
keycloak/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/forms/LoginTest.java - Modified
---
Quarkus3 branch sync no. 8 (3.3.2023)
Resolved conflicts:
keycloak/testsuite/integration-arquillian/tests/base/src/main/java/org/keycloak/testsuite/util/SamlClient.java	Modified - Modified
keycloak/services/src/main/java/org/keycloak/protocol/saml/SamlProtocol.java - Modified
keycloak/examples/providers/authenticator/src/main/java/org/keycloak/examples/authenticator/SecretQuestionAuthenticator.java - Modified
---
Quarkus3 branch sync no. 6 (17.2.2023)
Resolved conflicts:
keycloak/integration/admin-client/src/main/java/org/keycloak/admin/client/resource/ComponentsResource.java - Modified
keycloak/testsuite/utils/src/main/java/org/keycloak/testsuite/KeycloakServer.java - Modified
keycloak/services/src/main/java/org/keycloak/protocol/saml/installation/SamlSPDescriptorClientInstallation.java - Modified
---
Quarkus3 branch sync no. 5 (10.2.2023)
Resolved conflicts:
/keycloak/services/src/main/java/org/keycloak/social/google/GoogleIdentityProvider.java	Modified - Modified
keycloak/services/src/main/java/org/keycloak/social/twitter/TwitterIdentityProvider.java - Modified
---
Quarkus3 branch sync no. 4 (3.2.2023)
Resolved conflicts:
keycloak/quarkus/runtime/src/main/java/org/keycloak/quarkus/runtime/integration/jaxrs/QuarkusKeycloakApplication.java - Modified
---
Quarkus3 branch sync no. 1 (18.1.2023)
Resolved conflicts:
keycloak/testsuite/client/ClientPoliciesTest.java - Deleted
keycloak/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/client/ClientRegistrationTest.java - Modified
keycloak/model/map-jpa/src/main/java/org/keycloak/models/map/storage/jpa/JpaModelCriteriaBuilder.java - Modified
2023-04-27 13:36:54 +02:00
Peter Zaoral
78958ae434
Fix Base Testsuite timeouts on Windows 2023-04-25 16:01:08 +02:00
Alexander Schwartz
4f8d67c9fc All commands now auto-reaugment except show-config
Closes #15782
Closes #15898
Closes #17498
2023-04-21 15:06:51 +02:00
Andre Nascimento
a7153af7b0 Port of the custom extension 'Hostname Debug Tool' to Keycloak.
Co-authored-by: stianst <stian@redhat.com>

Closes #15910
2023-04-21 13:53:33 +02:00
Alex Szczuczko
edaa84b1e5
Build the operator container via Dockerfile (#19642)
Closes #16967
2023-04-21 08:32:29 +02:00
Pedro Igor
13f97a799e Switch to quarkus-extension-maven-plugin
Closes #19560
2023-04-17 15:47:12 +02:00
Jon Koops
a2eb619e0e
Include Account Console version 3 as a theme (#19641) 2023-04-13 09:41:40 -04:00
mposolda
863d28e232 Promote FIPS 140-2 to supported in Keycloak 22
closes #17234
2023-04-12 15:29:54 +02:00
Pedro Igor
83676bf927 Extract JUnit5 support in the distributoin testsuite to a separate module
Closes #19552
2023-04-11 10:48:56 +02:00
Sebastian Schuster
615dc89e13
14613 increase max URI and header length to Wildfly defaults (#19551) 2023-04-05 18:21:53 +00:00
Václav Muzikář
d540f449f0 Upgrade agroal (#17642)
Closes #17161
2023-04-04 20:21:42 +02:00
Sebastian Schuster
1c9992fdae
Removed lots of unnecessary quotes and allowed passing quoted argument values
Closes #16189
Closes #16319
2023-04-04 11:53:47 -03:00
mposolda
c6f13363b9 Add nashorn javascript engine to Keycloak server
closes #17671
2023-04-04 14:56:46 +02:00
Pedro Igor
d857ea8ec2 Removing custom classloader and allow loading drivers at runtime
Closes #13205

Co-authored-by: Brett Lounsbury <brett.lounsbury@nasdaq.com>
2023-03-31 18:05:55 +02:00
sbrajchuk
5202ba0245 Set default object store directory for quarkus transaction-manager via application.properties 2023-03-30 17:24:04 +02:00
Pedro Igor
cda0c9dce0 Avoid initing the profile multiple times during re-augmentation
Closes keycloak#19324
2023-03-27 14:39:48 -03:00
Pedro Hos
aa9744246c NPE on welcome page when 'spi-theme-default' doesn't exists #15476
closes #15476
2023-03-27 09:23:08 +02:00
Alexander Schwartz
251f6151e8 Rework the Import SPI to be configurable via the Config API
Also rework the export/import CLI for Quarkus, so that runtime options are available.

Closes #17663
2023-03-24 15:28:55 -03:00
Václav Muzikář
c366901224 Fix dist build race condition
Closes #19251
2023-03-22 18:44:54 -03:00
Alexander Schwartz
513bb809f3 Add a map storage global locking implementation for JPA
Closes #14734
2023-03-21 08:21:11 +01:00
rmartinc
bef0a4a6f1 Check frontendUrl in the hostname providers
Closes https://github.com/keycloak/keycloak/issues/17686
2023-03-20 18:54:58 -03:00
Thomas Darimont
ce1e0a65e7
Add keycloak-rest-admin-ui-ext to quarkus app (#17650)
Fixes #17649
2023-03-14 14:35:08 +00:00
Jon Koops
96aa4b3394
Add Maven build for the Admin UI (#17552) 2023-03-13 18:16:12 +00:00
Simon Bäurle
4c4b266cb4 #16226 explicitly set UTF-8 as stdin and stdout encoding 2023-03-13 14:01:40 +01:00
Pedro Igor
af475ffe23 Fixing classloading issue due to the curated application being eagerly closed 2023-03-13 09:34:49 +01:00
vramik
31e4c5cb7e Add storage-jpa-db property into Quarkus. Distinguish postgres and crdb for jpa map store.
Closes #17305
2023-03-09 11:09:56 +01:00
mposolda
bc0e2d04b7 Make Keycloak container working on FIPS environment - adding sqlite-libs package back to the dist
closes #17253
2023-03-09 10:38:26 +01:00
Alexander Schwartz
4cf5c11020 Fix start-dev mode on Windows by avoiding backslashes escaping expressions
Closes #17413
2023-03-07 10:38:43 -03:00
Alexander Schwartz
f6f179eaca Rework the export to use CLI options and property mappers
Also, adding the wiring to support Model tests for the export.

Closes #13613
2023-03-07 08:22:12 +01:00
Jon Koops
6d2e57f93a
Move Keycloak JS into the NPM workspace (#17401) 2023-03-03 13:56:53 +01:00
Jon Koops
972ebb9650
Use a valid SemVer format for the SNAPSHOT version (#17334)
* Use a valid SemVer format for the SNAPSHOT version

* Update pom.xml

* Update pom.xml

---------

Co-authored-by: Stian Thorgersen <stianst@gmail.com>
Co-authored-by: Stian Thorgersen <stian@redhat.com>
2023-03-03 11:11:44 +01:00
hanouard
4a96afb374
Removing nonexistent path '../lib/bootstrap/*' from the classpath (#15914)
Closes #15911
2023-03-01 16:14:19 -03:00
Alexander Schwartz
42f66f2c6f Avoid recording metrics for http server endpoints while they contain resource IDs
Closes #17281
2023-03-01 09:58:30 +01:00
Pedro Igor
9874da150e Avoid resolving expressions twice but rely on MP config expression support
Closes #16573
2023-03-01 09:22:27 +01:00
Joerg Matysiak
8a2d645dd4 Avoid internal server error when root path and non-appliation root path are both set and the wrong metrics/health endpoint is called.
Fixes #17166

Avoid internal server error when root path and non-appliation root path are both set and the wrong metrics/health endpoint is called.

Fixes #17166
2023-02-27 11:14:10 -03:00
Pedro Igor
2b98fcdecb Support for standard Forwarded header
Closes #11580
2023-02-22 19:28:04 +01:00
rmartinc
f91ac2970d
Polish fips-mode switch for preview (#17228)
* Polish fips-mode switch for preview
Closes #17208 #17210 


Co-authored-by: mposolda <mposolda@gmail.com>
2023-02-22 12:12:52 +01:00
mposolda
4f068fcdcc Make https-trust-store-type set to bcfks by default in strict-mode
Closes #17119
2023-02-16 08:00:21 -03:00
Alexander Schwartz
e76418e3de Removing unused code, as JPA Map storage always uses JTA nowadays
Closes #13222
2023-02-16 11:08:37 +01:00
Alexander Schwartz
febe134d5b Make the event listeners specific to the persistence unit
Closes #13219
2023-02-16 11:08:15 +01:00
Pedro Igor
3be2775f9e Do not enable storage chm by default if db option is set 2023-02-16 08:30:45 +01:00
rmartinc
fbc9177f27 Doublecheck if we need to override properties in java.security
Closes https://github.com/keycloak/keycloak/issues/16702
2023-02-15 12:33:48 +01:00
Michal Hajas
1f929c78af Make lockTimeout more friendly for JPA map storage
Closes #16616
2023-02-15 10:38:18 +01:00
Alex Szczuczko
6319b462c7 Upgrade to ubi9 parent image
This PR switches the Quarkus Dockerfile to use `ubi9` parent images instead of `ubi8` ones.

ubi-null.sh has some minor changes to handle differences in RHEL 9. It's also been renamed.

Closes #17057
2023-02-14 09:46:58 +01:00
Václav Muzikář
a266cdcba9 Fix bug, add tests 2023-02-13 17:09:36 -03:00
Václav Muzikář
a57821ed80 Fix JDK 17 InaccessibleObjectException with infinispan 2023-02-13 17:09:36 -03:00
Pedro Igor
2059ffb219 Make sure the distribution is using FIPS providers
Closes #12428
2023-02-10 17:26:55 +01:00
Pedro Igor
22e256149c Make it possible to run the embedded distribution in FIPS mode
Closes keycloak#16962
2023-02-09 16:14:01 -03:00
Alex Szczuczko
610e3044ad Minimize the RPM content of the Quarkus container
Even though we use `ubi8-minimal` as the parent of our container, it
still has many RPMs installed that aren't necessary to run the Keycloak
server. Also, since the JDK RPM (that we install on top of
`ubi8-minimal`) is designed for general use, it pulls in more dependency
RPMs than it strictly needs to, like cups and avahi. Keycloak will never
need to access a printer itself!

Trimming down these excess RPMs will improve our CVE statistics with
automated scanners, and therefore let us perform fewer CVE rebuilds.

`ubi8-null.sh` uses the low-level `rpm` command to identify and forcibly
remove dependencies and operating system files that are not required to
boot our Quarkus-based server. This includes `microdnf` and `rpm`
itself! I have preserved bash however, so it's still possible to debug
the container from a shell.

I've created an initial set of allow/disallow lists, that seems to pass
a smoke test (server boots, admin console works). This leaves 37
packages installed, with 96 removed relative to `ubi8-minimal`. We could
go more minimal than this, or less minimal if required. Trial and error
is required.

Closes #16902
2023-02-09 11:20:09 +01:00
vramik
fc9e9e6fda Add support for file store configuration into Quarkus
Closes #16821
2023-02-08 14:49:53 +01:00
Stian Thorgersen
4782a85166
Remove old admin console feature (#16861)
* Remove old admin console feature

Closes #16860

* Update help txt files for Quarkus tests
2023-02-07 12:59:35 +01:00
Pedro Igor
263e86e434 Support paths without a beginning slash when setting the root path
Closes #16002
2023-02-02 17:41:22 +01:00
Pedro Igor
b5fb528508 Do not enable caching metrics by default and provide a guide
Closes #16751
2023-02-01 18:55:43 +01:00
Alexander Schwartz
c6aba2e3de Make LockAcquiringTimeoutException a RuntimeException
Closes #16690
2023-01-31 08:21:32 +01:00
Alexander Schwartz
7933f0489d Align startup of Quarkus with the regular startup to ensure boostrap locks are created.
Also fixing an issue where DBLockGlobalLockProviderFactory held on to an old session, which lead to a closed DB connection on Quarkus.

Closes #16642
2023-01-30 12:59:40 +01:00
mposolda
a804400c84 Added KERBEROS feature. Disable it when running tests on FIPS
closes #14966
2023-01-25 18:38:46 +01:00
Sebastian Schuster
54c34dc75b 15901 enabled Infinispan metrics 2023-01-25 04:26:35 -08:00
Stian Thorgersen
8d05895adb
Move Admin REST extension to main repository (#16530)
Closes #16529
2023-01-19 13:06:21 +01:00