Commit graph

15331 commits

Author SHA1 Message Date
Bruno Oliveira da Silva
034775f311 Trigger Trivy workflow after the build of our nightly images
Resolves #11011
2022-03-30 12:41:37 -03:00
Bruno Oliveira da Silva
8cd2c97982 Fix the breaking changes introduced by setup-java 2022-03-30 11:53:00 -03:00
Bruno Oliveira da Silva
b09728762e Update to the latest version of the official actions used by Keycloak
Resolves #10971
2022-03-30 11:53:00 -03:00
Bruno Oliveira da Silva
7b10d02cbd Introduce an additional dependency scanner for Keycloak
Resolves #10807

Co-authored-by: Jon Koops <jonkoops@gmail.com>
2022-03-30 10:09:14 -03:00
vramik
8ff768b33b JPA map storage: Authentication session no-downtime store
Closes #9665
2022-03-30 13:43:35 +02:00
Marek Posolda
22a16ee899
OIDC RP-Initiated logout endpoint (#10887)
* OIDC RP-Initiated logout endpoint
Closes #10885

Co-Authored-By: Marek Posolda <mposolda@gmail.com>

* Review feedback

Co-authored-by: Douglas Palmer <dpalmer@redhat.com>
2022-03-30 11:55:26 +02:00
Andrea Peruffo
da5db5a813
Fix NPEs during realm import (#10962)
Closes #10961
2022-03-29 21:48:37 +02:00
Marcelo Daniel Silva Sales
2b996b12a1
update javadoc for client secret rotation REST service (#10990)
Closes #10610
2022-03-29 21:46:54 +02:00
Martin Kanis
3356e8b098 Convert login failure entities into interface 2022-03-29 18:40:53 +02:00
Stefan Guilhen
d8bee26ec8 Implement AbstractClientEntity.isUpdated to account for changes in associated protocol mappers.
Closes #10927
2022-03-29 18:35:28 +02:00
Bruno Oliveira da Silva
19e55650a2
Automatic scan Keycloak docker image for vulnerabilities (#10777)
* Automatic scan Keycloak docker image for vulnerabilities

The changes proposed here will run Trivy scanner twice a day to search
vulnerabilities into our main images.

Resolves #10764

Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>

* Update .github/workflows/trivy-analysis.yml

Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Co-authored-by: Stian Thorgersen <stian@redhat.com>
2022-03-29 16:17:20 +02:00
Stian Thorgersen
e58e8ef252
Add issue template for tasks (#10912) 2022-03-29 15:47:35 +02:00
Dominik Guhr
a5c3d035b9 Fixes showing sensitive values like passwords and irritating error msg when key used is unknown
Only first unknown option is shown for now. May be iterated in the future.

Closes #10050

Closes #10051
2022-03-29 10:37:07 -03:00
Dominik Guhr
0941a4709e Fixes windows configuration test
also fixes using ~ as database default for e.g. IDELauncher (does not work on all windows versions)

also fixes the HelpCommandTest, as approvalTests are now generated based on the OS the tests run

Closes #10246

Co-authored-by: Victor-Philipp Negoescu <victor-philipp.negoescu@iteratec.com>
2022-03-29 10:34:34 -03:00
Andrea Peruffo
e3935f669d
Run CI on main only on schedule (#10942) 2022-03-29 15:10:20 +02:00
rmartinc
755080d745 [#10894] SAML Adapters tests start failing in recent versions of EAP/wildfly 2022-03-29 12:31:09 +02:00
Marcelo Daniel Silva Sales
091b1472ce
Introduce client secret rotation dynamic registration (#10952)
Closes #10609
2022-03-28 20:39:11 +02:00
Alexander Schwartz
6a657e6472 Upgrading Hibernate in line with WildFly 26.0.1.Final to support building Keycloak with OpenJDK 17
Closes #9993
2022-03-25 20:11:14 +01:00
Alexander Schwartz
19e19c9dda
Build JavaDoc that matches the source version specified in the project. (#10928)
Also fail on errors, so we'll notice the missing JavaDocs next time.

Closes #9841
2022-03-25 12:07:53 +01:00
Konstantinos Georgilakis
99fa6275c1 KEYCLOAK-19313 configure the name format in Attribute Importer IdP Mapper 2022-03-25 09:42:22 +01:00
Tamás Bordák
ecd80e6f58 KEYCLOAK-12483 Add missing Hungarian translations 2022-03-25 09:35:46 +01:00
Stian Thorgersen
a0f747b509
Update README.md 2022-03-24 20:44:12 +01:00
Pedro Igor
e177f90299
Allow importing realms during startup (#10754)
Closes #9261
2022-03-24 14:35:09 +01:00
Robin Windey
eaf7c515f2 Fix typo in exception message 2022-03-24 12:43:33 +01:00
Andrea Peruffo
bf135c86ba
Remove extensions support from the operator CRD (#10848) 2022-03-24 11:00:19 +01:00
Kohei Tamura
05eb4b376d Update DefaultPicketLinkLogger.java 2022-03-24 10:28:49 +01:00
Kohei Tamura
2c94370e8e KEYCLOAK-19105 Fix to log the root cause of exception
Please refer to: https://issues.redhat.com/browse/KEYCLOAK-19105
2022-03-24 10:28:49 +01:00
Oskars Pakers
4e9e0563d5 KEYCLOAK-15976 Latvian language adjustments 2022-03-24 10:27:33 +01:00
Alexander Schwartz
3ebfc91b75 Reduce logging of errors due to the bounded queue
Closes #10588
2022-03-23 15:42:06 +01:00
Václav Muzikář
7d6c6fff17
Improve naming in serverConfiguration in the Keycloak CRD (#10847) 2022-03-23 13:51:27 +01:00
Takashi Norimatsu
9c01d819cb Client Policies : An executor rejecting all requests
Closes #9097
2022-03-23 12:45:38 +01:00
iingawal
b773857a80
Display email address in login-verify-email.ftl (#10870)
Closes #8873
2022-03-23 12:44:21 +01:00
Alexander Schwartz
78549fe024 Avoid duplicating parsing logic in ModelVersion
This now allows handling of the 999-SNAPSHOT version.

Closes #10879
2022-03-23 10:34:43 +01:00
Marcelo Daniel Silva Sales
6efa45f93e
Update secret rotation when the policy is enabled using jwt (#10853)
Closes #10666
2022-03-23 08:25:58 +01:00
Martin Kanis
e493b08fa7 Add expiration field to root authentication session 2022-03-23 07:47:47 +01:00
Stian Thorgersen
f8ded02bef
Update release.sh 2022-03-23 07:21:54 +01:00
Michal Hajas
99c06d1102
Authorization services refactoring
Closes: #10447 

* Prepare logical layer to distinguish between ResourceServer id and client.id
* Reorder Authz methods: For entities outside of Authz we use RealmModel as first parameter for each method, to be consistent with this we move ResourceServer to the first place for each method in authz
* Prepare Logical (Models/Adapters) layer for returning other models instead of ids
* Replace resourceServerId with resourceServer model in PermissionTicketStore
* Replace resourceServerId with resourceServer model in PolicyStore
* Replace resourceServerId with resourceServer model in ScopeStore
* Replace resourceServerId with resourceServer model in ResourceStore
* Fix PermissionTicketStore bug
* Fix NPEs in caching layer
* Replace primitive int with Integer for pagination parameters
2022-03-22 20:49:40 +01:00
Václav Muzikář
c0255cbeea
Secret references in Keycloak CRD (#10716) 2022-03-22 11:16:54 +01:00
Alexander Schwartz
fb92b95c33 Revert from getParameterCount() to getParameterTypes().length to be Java 1.7 compatible.
This reverts commit bc27c7c464.

Closes #10840
2022-03-22 10:23:25 +01:00
keycloak-bot
c71aa8b711
Set version to 999-SNAPSHOT (#10784) 2022-03-22 09:22:48 +01:00
Martin Kanis
0faf3987f6 Hot Rod map storage: Authentication session no-downtime store 2022-03-22 09:05:52 +01:00
jcz1
1604fb59e6
Update db.adoc (#10753)
redundant text
2022-03-22 08:46:47 +01:00
Pedro Igor
ffa6df5547
Fixes to hostname (#10820)
Closes #10627
Closes #10331
2022-03-22 08:11:50 +01:00
Martin Kanis
2394855f48 Add merge tasks optimization to ConcurrentHashMapKeycloakTransaction.delete 2022-03-21 16:45:48 +01:00
Joaquim Fellmann
92c4e6d585
KEYCLOAK-16134 Allow webauthn idless login flow (#7860)
Closes #10832
2022-03-21 11:37:33 +01:00
Pedro Igor
183ad30755 Capacity to change hibernate dialect
Closes #10749
2022-03-21 07:18:01 -03:00
Dominik Guhr
441ba8d2c8 Update Quarkus to 2.7.5
No dependencies changed for us. No startup degradation (instead it got a bit better afaict)

Closes #10819
2022-03-18 16:21:46 -03:00
JPA2015
a5a384b4d5 #10443 start-dev: parsing command lines parameters
kc.bat called "shift" twice after parsing "start-dev". But "start-dev" is only one parameter so that "shift" should be called only once or else further command line parameters won't be parsed correctly.

Closes #10443
2022-03-18 16:19:10 -03:00
Clara Fang
bc27c7c464 Replace occurrences of getParameterTypes().length and getParameters().length with getParameterCount()
Closes #10333
2022-03-18 11:20:52 +01:00
Andrea Peruffo
b66115c1df
Create missing data folder in docker image (#10783)
Resolves #10806
2022-03-17 14:50:38 -03:00