Commit graph

15232 commits

Author SHA1 Message Date
Stian Thorgersen
d9025231f9
HTML Injection in Keycloak Admin REST API (#16765)
Resolves #GHSA-m4fv-gm5m-4725

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2023-02-01 14:34:15 +01:00
Bruno Oliveira da Silva
e3ccba3903 CVE-2022-41854/CVE-2022-38752 Snakeyaml vulnerable to Stack overflow leading to denial of service
Resolves #16062
2023-02-01 13:45:50 +01:00
Stian Thorgersen
ae189c5a34
Fix pom.xml conditions for workflows (#16758) 2023-02-01 08:57:41 +01:00
Stian Thorgersen
d81794123b
Add pom.xml files to conditional workflows (#120) (#16757) 2023-02-01 07:59:47 +01:00
Martin Kanis
a912558d29 Add MapKeycloakTransaction.exists methods 2023-01-31 17:21:40 +01:00
Stian Thorgersen
88a249ea0d
Update conditional workflows (#16728)
* Update conditional workflows

* Second versions to make it more readable
2023-01-31 16:27:33 +01:00
Klaus Betz
20a7a5acdb fix: consider identity provider models from third-party packages 2023-01-31 06:05:02 -08:00
Stian Thorgersen
b2d94b22e7
Temporarily always run CI and Operator workflows until conditions are fixed (#16719) 2023-01-31 08:57:32 +01:00
Alexander Schwartz
c6aba2e3de Make LockAcquiringTimeoutException a RuntimeException
Closes #16690
2023-01-31 08:21:32 +01:00
Marek Posolda
33ff9ef17e
Fix remaining failing tests with BCFIPS approved mode (#16699)
* Fix remaining failing tests with BCFIPS approved mode
Closes #16698
2023-01-30 16:01:57 +01:00
Stian Thorgersen
c5c25345fb
Run workflows if workflow files have changed (#16696) 2023-01-30 13:00:54 +00:00
Stian Thorgersen
00d9fdc2b8
Introduce CODEOWNERS (#16637)
* Introduce CODEOWNERS

Closes #16636

* Add exceptions to GitHub Issues

* Update PR-CHECKLIST.md

Co-authored-by: Stan Silvert <ssilvert@redhat.com>

* Simplify CODEOWNERS by removing **, and add server/operator guides to cloud-native team

* Updates

* Added base-ui tests to ui-maintainers

---------

Co-authored-by: Stan Silvert <ssilvert@redhat.com>
2023-01-30 13:05:45 +01:00
Alexander Schwartz
7933f0489d Align startup of Quarkus with the regular startup to ensure boostrap locks are created.
Also fixing an issue where DBLockGlobalLockProviderFactory held on to an old session, which lead to a closed DB connection on Quarkus.

Closes #16642
2023-01-30 12:59:40 +01:00
Martin Bartoš
eebbeb26bc Remove invalid property from Operator properties
Closes #16373
2023-01-30 08:59:49 +01:00
mposolda
7f017f540e BCFIPS approved mode: Some tests failing due the short secret for client-secret-jwt client authentication
Closes #16678
2023-01-30 08:40:46 +01:00
Stian Thorgersen
d2ef774788
Conditional workflows (#16666)
* Conditional workflows

Closes #16665

* Added .editorconfig to make sure there's a newline in conditions file

* Fix

* Tweak

* Tweaks
2023-01-30 08:07:10 +01:00
Erik Jan de Wit
6736f31952
fixed fine grain permissions (#16668)
fixes: #3700
2023-01-28 10:13:53 -05:00
Erik Jan de Wit
5f8ee1c49d
add fine grain access to subgroups (#16672)
fixes: https://github.com/keycloak/keycloak-ui/issues/4195
2023-01-27 14:20:26 -05:00
Martin Kanis
c4255e7301 Wrong property for events in map-storage-hot-rod on Undertow 2023-01-27 14:24:34 +01:00
Khvatov-Alexey
a4c78a05d2
Descriptor file release (#16659)
Closes #16657

Co-authored-by: Khvatov-Alexey <Khvatov-Alexey>
2023-01-27 10:29:42 +00:00
Zakaria Amine
f067c9aa26
Fix label for IdpReviewProfileAuthenticatorFactory (#15293)
Closes #16658
2023-01-27 10:58:59 +01:00
Bruno Oliveira da Silva
bbca0bb4e8
Snyk workflow failing when running the checks against the Operator (#16653)
Resolves #16622
2023-01-27 06:42:36 +00:00
Ikko Eltociear Ashimine
025d47c57a
Fix typo in UPConfigUtils.java (#16655)
erorr -> error
2023-01-27 07:41:03 +01:00
mposolda
5591b5198b Still test failures with BCFIPS approved mode due the hardcoded keys
Closes #16643
2023-01-26 15:50:29 +01:00
Pedro Igor
f6602e611b Allow managing the username idn homograph validator
Closes #13346
2023-01-26 04:55:43 -08:00
Michal Hajas
eb59fdb772 Add transaction tests to model tests
Closes: #15890
2023-01-26 12:55:22 +01:00
Stian Thorgersen
b7ba9f9af0
Remove GitHub Action bot (#16632)
As the workflows are a lot more stable we no longer need the ability to easily re-run tests.
2023-01-26 10:51:53 +00:00
mposolda
a804400c84 Added KERBEROS feature. Disable it when running tests on FIPS
closes #14966
2023-01-25 18:38:46 +01:00
Benjamin Weimer
9176308d79 15812 Make DeclarativeUserProfileProvider MetaData Map thread safe 2023-01-25 06:28:04 -08:00
Sebastian Schuster
54c34dc75b 15901 enabled Infinispan metrics 2023-01-25 04:26:35 -08:00
mposolda
16888eaeab Only available RSA key sizes should be shown in admin console
Closes #16437
2023-01-25 13:15:07 +01:00
mposolda
29888dbf1a Update realm keys in the testsuite to be generated where possible. Update other keys to be FIPS compliant
Closes #12420
2023-01-25 08:26:15 +01:00
Benjamin Weimer
69c114288d Return 404 when trying to retrieve non-existing external IDP token 2023-01-24 13:56:02 -08:00
Miquel Simon
83147a67a0
Added New Account Console Tests to CI workflow. (#16547) 2023-01-24 16:01:03 +01:00
Hynek Mlnarik
977cc473bb Fix linebreaks in XML / SAML signatures
See https://bugs.openjdk.org/browse/JDK-8264194
See https://issues.apache.org/jira/browse/SANTUARIO-482

Fixes: #14529
2023-01-23 15:39:10 +01:00
dependabot[bot]
c4860ffe7c
Bump github/codeql-action from 2.1.38 to 2.1.39 (#16562)
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.38 to 2.1.39.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v2.1.38...v2.1.39)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-23 08:17:45 +01:00
ᎠᎡ. Ѕϵrgϵ Ѵictor
f3fb4ae869
Important corrections to Polish translation (#15498)
Grammar, vocabulary, style and comprehension corrections
2023-01-20 13:00:12 +01:00
m2minthemeadow
447364076a
Update containers.adoc (#15729)
You have to set also variable KC_DB after building image, otherwise Keycloak will default to H2 database
2023-01-20 09:14:32 +01:00
Alexander Schwartz
bd30023d62
Cache the maven wrapper JAR for Maven builds (#16092)
Closes #16091
2023-01-20 09:11:38 +01:00
yvesgab
234267556d
Update logging.adoc (#16179)
Incorrect reference to "log-format" configuration instead of "log-console-format"
2023-01-20 09:11:04 +01:00
Seenox
ac6b9ed421
docs: add missing backslash to realm startup command (#16381) 2023-01-20 09:10:31 +01:00
dependabot[bot]
42d74f3ad8
Bump github/codeql-action from 2.1.37 to 2.1.38 (#16459)
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.37 to 2.1.38.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v2.1.37...v2.1.38)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Stian Thorgersen <stianst@gmail.com>
2023-01-20 09:09:21 +01:00
Joshua Sorah
d388ae7ce7
Fix markdown link to database tests (#15457) 2023-01-20 08:08:31 +01:00
rmartinc
3b6dc5152e
ElytronSessionTokenStore#logoutHttpSessions() does not work as expected due to UNDERTOW-2159 (#16501)
Closes #16465
2023-01-19 19:52:29 +01:00
Martin Bartoš
7d6e22bedd
DateTimeParse failures in New Account Console tests (#16531)
Fixes #16514
2023-01-19 09:39:03 -05:00
Stian Thorgersen
8d05895adb
Move Admin REST extension to main repository (#16530)
Closes #16529
2023-01-19 13:06:21 +01:00
Alexander Schwartz
e9e6b73bd2 Avoid using Hibernate APIs to cache query results as the API changes in Hibernate 6
Closes #16332
2023-01-18 14:42:42 +01:00
Bastian
5ddb79cbe6
fix(account): do not leak into messages (#16212)
Closes #16211
2023-01-18 13:06:36 +01:00
Sebastian Schuster
e5ef0a417a
Updated list of Keycloak repositories in GOVERNANCE.md (#16447) 2023-01-18 13:03:03 +01:00
Konstantinos Georgilakis
c73859794e Short verification_uri for Device Authorization Request
Closes #16107
2023-01-18 08:34:52 +01:00