Commit graph

14974 commits

Author SHA1 Message Date
Alexander Schwartz
9fb9780f02 Don't rely on DefaultModeLCriteria in equals/hashCode
Instead, map this to JPA query and then create the cache lookup key from there.

Closes #14938
2022-10-26 15:49:26 +02:00
Alexander Schwartz
e494649a4e First naïve per-session caching for JPA map store
Closes #14938
2022-10-26 15:49:26 +02:00
Peter Skopek
8f9c3cdeab SAML adapter is missing "crypto/default" module (#15146)
Closes #15146
2022-10-26 11:59:56 +02:00
Václav Muzikář
6dc2119e20 Exclude operator module by default 2022-10-25 15:55:11 +02:00
Master_Sky
164465861b
fix(sec): upgrade org.apache.tomcat:tomcat-catalina to 8.5.76 (#14950)
Co-authored-by: stianst <stianst@gmail.com>
2022-10-25 09:30:28 -03:00
Michal Hajas
883e83e625 Remove deprecated methods from data providers and models
Closes #14720
2022-10-25 09:01:33 +02:00
Martin Bartoš
d9c96b9432
Replace ::set-output with environment variables in GHA CI (#15078)
Closes #15077
2022-10-25 08:58:34 +02:00
Jon Koops
3d6c0690ef
Restore labels for supported applications under 'OTP Policy' tab (#15117) 2022-10-25 07:34:19 +02:00
Alexander Schwartz
3a30061c44 Avoid deadlock on CockroachDB when removing authentication sessions
Closes #14991
2022-10-24 20:42:31 +02:00
Alexander Schwartz
9b80bad391 Stabilize test testAccountManagementLinkIdentity by waiting for username to appear
Closes #15054
2022-10-24 19:19:27 +02:00
Bruno Oliveira da Silva
ec73533895 Upgrade to Quarkus 2.13.3
Resolves #15032
Resolves #14785
Resolves #14833
2022-10-24 12:40:24 -03:00
Stian Thorgersen
29b8294dd6
Filter list of supported OTP applications by current policy (#15113)
Closes #15112
2022-10-24 16:47:16 +02:00
Václav Muzikář
71d9b16717 Update Operator docs to reflect Keycloak CR changes 2022-10-24 16:05:00 +02:00
Stian Thorgersen
89da96cc63
Update bug issue form adding affected area, and making more field required (#15105) 2022-10-24 10:49:12 +02:00
Pedro Igor
712656765e Authz client not updated with the way of encoding the basic header
Closes #15086
2022-10-24 08:45:30 +02:00
mposolda
55c514ad56 More flexibility in keystore related tests, Make keycloak to notify which keystore types it supports, Support for BCFKS
Closes #14964
2022-10-24 08:36:37 +02:00
Václav Muzikář
5ebb6e9c10 Mark Operator as stable in the OLM bundle 2022-10-24 08:08:24 +02:00
Pedro Igor
1fe3ce79eb Change the title of the Keycloak Truststore guide to make the intent more clear
Closes #14960

Co-authored-by: Stian Thorgersen <stian@redhat.com>
2022-10-21 16:31:41 -03:00
Pedro Igor
dfb2bd144b Fixing commands in the database guide
Closes #14940
2022-10-21 16:08:37 -03:00
Václav Muzikář
a30b427a96 Update Quarkus Operator SDK to 4.0.4 2022-10-21 15:58:31 -03:00
vramik
791c457c32 Add possibility to limit field length in legacy event store
Closes #14888
2022-10-21 15:16:26 +02:00
Alexander Schwartz
440077de42 Reduce number of calls to the storage for clients and realms
Closes #15038
2022-10-21 15:08:39 +02:00
Andre Nascimento RH
d12aef0b43
Rename free-form field from 'serverConfiguration' to 'additionalOptions' in Keycloak CR. 2022-10-21 14:41:02 +02:00
Martin Bartoš
24acc4c7d1 Add hostname options to Keycloak CR
Closes #14395

Co-authored-by: Václav Muzikář <vmuzikar@redhat.com>
2022-10-21 11:00:42 +02:00
Stefan Guilhen
acaf1724dd Fix ComponentsTest failures with CockroachDB
- Component addition/edition/removal is now executed in a retriable transaction.

Closes #13209
2022-10-21 10:48:08 +02:00
Alexander Schwartz
1059b3a837
Log errors when welcome page can't be shown on Quarkus (#14995)
Closes #14994
2022-10-21 07:38:33 +02:00
Pedro Igor
2d55e1dab7 Add DB options to Keycloak CR
Closes #14374

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2022-10-20 21:21:00 +02:00
Bruno Oliveira da Silva
e712cd6a0e Suppress Snyk alerts related with Netty
Resolves #15066
2022-10-20 12:44:37 -03:00
Yann Odeyer
696ce9d364
Fix encoding of errasingData (#15025) 2022-10-20 11:38:00 +02:00
Stian Thorgersen
4a266d0708
Update Foresight test-kit action (#14958) 2022-10-20 11:28:53 +02:00
Kamesh Akella
b50fe06b2e
Add new packages for deep reflection within the surefire.system.args for test compatibility with JDK17 (#15036)
Closes #14997
2022-10-20 10:44:32 +02:00
dependabot[bot]
fc7c57ee12 Bump github/codeql-action from 2.1.26 to 2.1.28
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.26 to 2.1.28.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v2.1.26...v2.1.28)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-10-19 15:54:06 -03:00
Bruno Oliveira da Silva
6055e561a1 Prevent false alerts related to CVE-2021-3914
Resolves #14993
2022-10-18 18:53:27 -03:00
Peter Zaoral
4dfbb42680 Refine Ingress settings in Keycloak CR
Closes Keycloak#14407

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
2022-10-18 17:44:50 +02:00
Klaus Betz
76d9125c3f
feat: add DisplayIconClasses to IdentityProviderModel for third-party IDPs https://github.com/klausbetz/apple-identity-provider-keycloak/issues/10 (#14826)
Closes #14974
2022-10-18 15:54:06 +02:00
Stian Thorgersen
97ae90de88
Remove Red Hat Single Sign-On product profile from upstream (#14697)
* Remove Red Hat Single Sign-On product profile from upstream

Closes #14916

* review suggestions: Remove Red Hat Single Sign-On product profile from upstream

Closes #14916

Co-authored-by: Peter Skopek <pskopek@redhat.com>
2022-10-18 14:43:04 +02:00
Stian Thorgersen
31aefd1489
OTP Application SPI (#14800)
Closes #14800
2022-10-18 14:42:35 +02:00
Pedro Igor
01a6319815 Removing unwanted files from repo 2022-10-18 07:41:00 +02:00
Marek Posolda
0756ef9a75
Initial integration tests with BCFIPS distribution (#14895)
Closes #14886
2022-10-17 23:33:22 +02:00
Václav Muzikář
19ee00ff54 Add HTTP options to Keycloak CR 2022-10-17 15:57:05 -03:00
Stian Thorgersen
f7490b7f7c
Fix issue where admin2 was not enabled by default if account2 was disabled (#14914)
Refactoring ThemeSelector and DefaultThemeManager to re-use the same logic for selecting default theme as there used to be two places where one had a broken implementation

Closes #14889
2022-10-17 15:17:54 +02:00
Bruno Oliveira da Silva
90369f7540
Upgrade to latest Quarkus 2.13.2 (#14834)
Upgrade to latest Quarkus 2.13.2

Resolves #14817
2022-10-17 12:05:35 +02:00
vramik
fa947a41ea Revisit unique constraints in jpa user store
Closes #14797
2022-10-17 08:56:45 +02:00
Václav Muzikář
0afc4a8af7
Refactor KeycloakDeploymentConfig (#14880)
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2022-10-14 10:42:09 -03:00
Alexander Schwartz
97c4495c4f Updating H2 database to 2.x
Closes #12607

Co-authored-by: Stian Thorgersen <stian@redhat.com>
2022-10-14 11:52:34 +02:00
vramik
f49582cf63 MapUserProvider in KC20 needs to store username compatible with KC19 to be no-downtime-upgradable
Closes #14678
2022-10-14 09:32:38 +02:00
danielFesenmeyer
f80a8fbed0 Avoid login failures in case of non-existing group or role references and update references in case of renaming or moving
- no longer throw an exception, when a role or group cannot be found, log a warning instead
- update mapper references in case of the following events:
   - moving a group
   - renaming a group
   - renaming a role
   - renaming a client's Client ID (may affect role qualifiers)
- in case a role or group is removed, the reference still will not be changed
- extend and refactor integration tests in order to check the new behavior

Closes #11236
2022-10-13 13:23:29 +02:00
Martin Kanis
761929d174
Merge ActionTokenStoreProvider and SingleUseObjectProvider (#13677)
Closes #13334
2022-10-13 09:26:44 +02:00
Martin Bartoš
90c1624668 Add transaction options to Keycloak CR
Closes #14375
2022-10-13 08:41:47 +02:00
Stian Thorgersen
ded52c6228
Move session iframe pages (#14769)
Closes #14767
2022-10-13 08:16:20 +02:00