Steven Hawkins
8c3df19722
feature: add option for creating a global truststore ( #24473 )
...
closes #24148
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2023-11-30 08:57:17 +01:00
rmartinc
16afecd6b4
Allow automatic download of SAML certificates in the identity provider
...
Closes https://github.com/keycloak/keycloak/issues/24424
Signed-off-by: rmartinc <rmartinc@redhat.com>
2023-11-29 18:03:31 +01:00
rmartinc
3bc028fe2d
Remove lowercase for the hostname as recommended/advised by OAuth spec
...
Closes https://github.com/keycloak/keycloak/issues/25001
Signed-off-by: rmartinc <rmartinc@redhat.com>
2023-11-29 10:26:00 -03:00
Takashi Norimatsu
29aec9c5b5
Documentation Inconsistency about Open Banking(Finance) Brasil FAPI security profile
...
closes #25108
Signed-off-by: Takashi Norimatsu <takashi.norimatsu.ws@hitachi.com>
2023-11-29 07:39:51 -03:00
Steven Hawkins
dacee3a36b
doc: adding a note that quoting all of the arguments no longer works ( #25083 )
...
closes #25018
Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2023-11-28 14:31:47 +01:00
Jon Koops
48fc29a5c6
Use exports
field for Keycloak JS ( #24974 )
...
Closes #24923
Signed-off-by: Jon Koops <jonkoops@gmail.com>
2023-11-24 10:50:02 +01:00
Stian Thorgersen
f41383a851
Release notes editorial for 23 ( #24972 )
...
Signed-off-by: stianst <stianst@gmail.com>
2023-11-23 13:34:45 +01:00
Alexander Schwartz
834ef79509
Adding a Keycloak High Availability section to Keycloak's docs
...
The content was moved over from the Keycloak Benchmark subproject.
Closes #24844
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Pedro Ruivo <pruivo@redhat.com>
Co-authored-by: Michal Hajas <mhajas@redhat.com>
Co-authored-by: Kamesh Akella <kakella@redhat.com>
Co-authored-by: Ryan Emerson <remerson@redhat.com>
Co-authored-by: Anna Manukyan <amanukya@redhat.com>
Co-authored-by: Thomas Darimont <thomas.darimont@googlemail.com>
Co-authored-by: Stian Thorgersen <stian@redhat.com>
Co-authored-by: Thomas Darimont <thomas.darimont@googlemail.com>
Co-authored-by: AndyMunro <amunro@redhat.com>
2023-11-23 12:27:47 +00:00
Martin Ledvinka
da260b386c
Fix incorrect preview feature reference (keycloak#24966).
...
Closes #24966 .
Signed-off-by: Martin Ledvinka <martin.ledvinka@fel.cvut.cz>
2023-11-23 12:48:00 +01:00
Jon Koops
e13d3264a2
Stop copying resources from Account v2 theme into 'common' ( #24929 )
...
Closes #24928
Signed-off-by: Jon Koops <jonkoops@gmail.com>
2023-11-22 17:03:52 +01:00
mposolda
87c45437a5
Release notes for max auth age password policy
...
Signed-off-by: mposolda <mposolda@gmail.com>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
2023-11-22 07:35:09 +01:00
Marek Posolda
765e4838e9
Remove OIDC and SAML adapters for Wildfly/EAP ZIP downloads. Update documentation. ( #24877 )
...
* Update EAP documentation for OIDC and SAML (#24734 )
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
(cherry picked from commit d7f2ad747d90dd0475a016fcfd528fea4ebed043)
Signed-off-by: Stian Thorgersen <stianst@gmail.com>
* Remove OIDC and SAML adapters for Wildfly/EAP ZIP downloads. Update documentation.
Closes #24713
Signed-off-by: mposolda <mposolda@gmail.com>
Co-authored-by: Stian Thorgersen <stian@redhat.com>
---------
Signed-off-by: Stian Thorgersen <stianst@gmail.com>
Co-authored-by: Stian Thorgersen <stianst@gmail.com>
Co-authored-by: Stian Thorgersen <stian@redhat.com>
2023-11-21 14:22:00 +00:00
Václav Muzikář
15a83985b1
Implement load shedding
...
Closes #23340
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
2023-11-21 13:43:09 +01:00
Tomas Ondrusko
8ac6120274
Social Identity Providers documentation adjustments ( #24840 )
...
Closes #24601
Signed-off-by: Tomas Ondrusko <tondrusk@redhat.com>
2023-11-20 22:26:11 +01:00
Thomas Darimont
d30d692335
Introduce MaxAuthAge Password policy ( #12943 )
...
This policy allows to specify the maximum age of an authentication
with which a password may be changed without re-authentication.
Defaults to 300 seconds (default taken from Constants.KC_ACTION_MAX_AGE) to remain backwards compatible.
A value of 0 will always require reauthentication to update the password.
Add documentation for MaxAuthAgePasswordPolicy to server_admin
Fixes #12943
Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
2023-11-20 14:48:17 +01:00
Erik Jan de Wit
44a95c72f1
added namespace migration documentation ( #24497 )
...
fixes : #23061
Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2023-11-20 14:11:38 +01:00
rmartinc
5fad76070a
Use LinkedIn instead of LinkedIn OpenID Connect for better UI experience
...
Closes https://github.com/keycloak/keycloak/issues/24659
Signed-off-by: rmartinc <rmartinc@redhat.com>
2023-11-16 18:22:16 +01:00
Tomas Ondrusko
fe48afc1dc
Update Social Identity Providers documentation ( #24601 )
...
Signed-off-by: Tomas Ondrusko <tondrusk@redhat.com>
2023-11-16 17:58:53 +01:00
andymunro
d4cee15c3a
Correct Securing Apps Guide ( #24730 )
...
* Correcting Securing Apps guide
Closes #24729
Signed-off-by: AndyMunro <amunro@redhat.com>
* Update docs/documentation/securing_apps/topics/saml/java/general-config/sp_role_mappings_provider_element.adoc
Co-authored-by: Stian Thorgersen <stian@redhat.com>
---------
Signed-off-by: AndyMunro <amunro@redhat.com>
Co-authored-by: Stian Thorgersen <stian@redhat.com>
2023-11-14 11:04:55 +01:00
AndyMunro
20f5edc708
Addressing Server Admin review comments
...
Closes #24643
Signed-off-by: AndyMunro <amunro@redhat.com>
2023-11-13 15:48:02 +01:00
Alexander Schwartz
1b12fe132b
Update documentation for removal of the map store
...
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Closes #24092
2023-11-13 15:38:05 +01:00
vramik
71b6757c2f
Remove quarkus options related to map store
...
Signed-off-by: vramik <vramik@redhat.com>
Closes #24098
2023-11-13 12:34:52 +01:00
Alexander Schwartz
8acb6c1845
Fix broken link to node.js and internal anchor
...
Closes #24699
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2023-11-13 12:20:54 +01:00
andymunro
bf17fcc0be
Fix broken links ( #24476 )
2023-11-13 09:17:34 +01:00
Stian Thorgersen
565bc7d664
Add attributes.adoc for guides to share common attributes ( #24519 )
2023-11-08 15:09:04 +01:00
mposolda
4ec85707f4
Upgrading notes for user profile
...
closes #24491
Signed-off-by: mposolda <mposolda@gmail.com>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
2023-11-06 02:19:26 -08:00
vramik
593c14cd26
Data too long for column 'DETAILS_JSON'
...
Closes #17258
2023-11-02 20:29:35 +01:00
AndyMunro
9ef9c944d0
Minor changes to documentation
...
Closes #24456
2023-11-01 22:14:11 +01:00
mposolda
70e820469a
Updating release notes for Keycloak 23 with some 'core features' improvements
...
closes #23971
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
2023-11-01 17:39:02 +01:00
rokkiter
e1735138cb
clean util * ( #24174 )
...
Signed-off-by: rokkiter <yongen.pan@daocloud.io>
2023-11-01 17:14:11 +01:00
Ivan Atanasov
7b0683879d
Updated documentations to mention Resteasy reactive migration
...
Closes #23444
2023-10-31 20:59:12 +01:00
Justin Tay
3ff0476cc3
Allow customization of aud claim with JWT Authentication
...
Closes #21445
2023-10-31 11:33:47 -07:00
rmartinc
7deb4ca545
Group count and PartialExport permission fixes
...
Closes https://github.com/keycloak/keycloak/issues/12171
2023-10-31 01:40:21 -07:00
Jon Koops
5464205ab2
Cache Node.js installation and PNPM store
...
Closes #23695
2023-10-30 07:50:06 -04:00
Axel Bocciarelli
427f7230f3
Fix typo in available-endpoints.adoc ( #24378 )
2023-10-30 09:53:33 +00:00
rmartinc
ea398c21da
Add a property to the User Profile Email Validator for max length of the local part
...
Closes https://github.com/keycloak/keycloak/issues/24273
2023-10-27 15:09:42 +02:00
Hynek Mlnařík
3f55cd72d7
Docs: Fix account name
...
Closes : #24341
2023-10-27 09:32:27 +02:00
Alice
69497382d8
Group scalability upgrades ( #22700 )
...
closes #22372
Co-authored-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>
Co-authored-by: Michal Hajas <mhajas@redhat.com>
2023-10-26 16:50:45 +02:00
Thomas Darimont
d56baa80b3
Add support for passing acr_values in auth requests in keycloak.js ( #9383 ) ( #24259 )
...
Fixes #9383
2023-10-25 15:33:39 +02:00
Marek Posolda
1bd6aca629
Remove RegistrationProfile class and handle migration ( #24215 )
...
closes #24182
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
2023-10-24 20:19:33 +02:00
Takashi Norimatsu
1c8cddf145
passkeys: documentation
...
closes #23660
2023-10-24 14:48:13 +02:00
Joshua Sorah
e889d0f12c
[docs] Update Docker Registry links to new locations. ( #24193 )
...
Closes keycloak/keycloak#24179
2023-10-23 08:27:36 +02:00
Alexander Schwartz
a3c29b8880
Tidy up documentation around Windows/Linux usage ( #23859 )
...
Closes #23856
2023-10-17 10:41:44 +02:00
Jon Koops
d32aac9dee
Remove unused GitHub workflow files from docs ( #24011 )
2023-10-16 13:15:43 +02:00
andymunro
6074cbf311
Limit Admin CLI windows support to upstream
...
Closes #23946
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2023-10-13 12:08:11 +02:00
Steven Hawkins
478ceb0b34
modification of kc.sh to remove param eval ( #22585 )
...
* test
* modification of kc.sh to remove eval of env/args
Closes #22337
---------
Co-authored-by: rmartinc <rmartinc@redhat.com>
2023-10-12 17:10:53 +02:00
Yoshikazu Nojima
058d00fea8
Rewrite mention to add-user-keycloak since it was already removed
2023-10-05 16:56:31 -03:00
andymunro
1332e53a97
Code certain features as upstream only ( #23603 )
...
Closes #23581
2023-10-03 14:50:23 -04:00
Martin Bartoš
c9d93019c2
Remove deprecated auto-build CLI option ( #23361 )
...
Closes #23360
2023-09-27 18:56:38 +02:00
Marek Posolda
69466777c0
Clarify transient sessions documentation ( #23328 )
...
Closes #23044
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
2023-09-27 15:14:52 +02:00
Joshua Sorah
778abf8597
Add references to OAuth 2.0 Security Best Practices for Implicit and
...
ROPC flow, reformat Device Auth section.
Apply suggestions from code review
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
Closes keycloak/keycloak#23480
2023-09-27 11:43:57 +02:00
Steven Hawkins
7d1e9a783f
adds a default domain on openshift if one is not specified ( #23324 )
...
Closes #21741
2023-09-21 14:43:29 +02:00
Alexander Schwartz
5070f41007
Ignoring link for stackapps registration ( #23347 )
...
It now requires authentication.
Closes #23345
2023-09-21 12:44:45 +02:00
Alexander Schwartz
227b841c4a
Show images in the documentation in the IDE's preview ( #23055 )
...
Closes #23054
2023-09-19 11:28:48 +02:00
Alexander Schwartz
41fd12d20a
Prevent exception in the log ( #22201 )
...
Also speed up the external link check by avoiding checking each bug submission link in the rendered docs which only differs by its parameter.
Closes #22200
2023-09-19 11:04:01 +02:00
MorgeMoensch
95ecf446ca
Link to AdminGuide from REST-API Doc instead of just referencing it by text ( #23286 )
2023-09-15 14:43:29 +02:00
Martin Bartoš
3a3df50f74
Improve documentation about manual database migration ( #23247 )
...
Closes #23246
2023-09-15 10:41:33 +02:00
ImFlog
f4ec14c3fe
doc(js-providers): Add OIDC object mapper documentation
2023-09-14 11:42:06 -03:00
Andreas Blaettlinger
86c0e338d9
Toggle visibility of password input fields in login-ftl-based pages
...
Closes #22067
2023-09-14 08:04:35 -03:00
Stian Thorgersen
1194c2507d
Add 22.0.3 to release notes ( #23238 )
...
Closes #23235
2023-09-14 11:06:06 +02:00
Pedro Igor
5958c7948d
Ignore attributes when they are not prefixed with user.attributes prefix ( #23184 )
...
Co-authored-by: mposolda <mposolda@gmail.com>
Co-authored-by: stianst <stianst@gmail.com>
2023-09-14 10:35:47 +02:00
mposolda
b10da3d3b5
Move email validation change docs to migration guide of 22.0.4
...
closes #23177
2023-09-13 08:39:30 +02:00
Marek Posolda
56b94148a0
Remove bearer-only occurences in the documentation when possible. Mak… ( #23148 )
...
closes #23066
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
2023-09-12 09:38:19 +02:00
mposolda
36dd9cb937
Move email validation change docs to migration guide of 22.0.3
...
closes #23124
2023-09-11 21:03:34 +02:00
Jon Koops
82bf84eb6b
Fix broken redirect in con-advanced-settings.adoc
...
Closes #23134
2023-09-11 11:46:54 +02:00
kaustubh-rh
62927433dc
Fix for Keycloak 22.0.1 unable to create user with long email address ( #23109 )
...
Closes #22825
2023-09-11 08:56:13 +02:00
rmartinc
7da52a43bd
Add old LinkedIn provider to the deprecated profile
...
Closes https://github.com/keycloak/keycloak/issues/23067
2023-09-08 10:05:17 +02:00
Christoph Schulz
51d19c505b
Add indent mentioned beforehand in Preface ( #23036 )
2023-09-07 08:14:23 +02:00
Martin Bartoš
6ca78b7554
Return Oracle JDBC driver to the upstream
...
Closes #22999
2023-09-06 19:11:29 +02:00
rmartinc
8887be7887
Add a new identity provider for LinkedIn based on OIDC
...
Closes https://github.com/keycloak/keycloak/issues/22383
2023-09-06 16:13:31 +02:00
Pedro Igor
13e5a02b9f
Role mappers must return a single value when they are not multivalued
...
Closes #20218
2023-08-31 19:16:12 +02:00
andymunro
228da84385
Blank Java section in Securing Apps
...
Closes #22800
2023-08-30 13:48:12 +02:00
mposolda
57e51e9dd4
Use an original domain name of Kerberos Principal in UserModel attribute instead of configured value of Kerberos realm in User federation
...
closes #20045
2023-08-30 13:24:48 +02:00
Marek Posolda
6f989fc132
Fallback to next LDAP/Kerberos provider when not able to find authenticated Kerberos principal ( #22531 )
...
closes #22352 #9422
2023-08-29 11:21:01 +00:00
Martin Bartoš
fcf65389ea
Remove Oracle Database JDBC driver from the Keycloak distribution ( #22577 )
...
* Remove Oracle Database JDBC driver from the Keycloak distribution
Closes #22452
* Remove profile for proprietary Oracle JDBC driver
---------
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2023-08-21 15:13:49 +00:00
Marek Posolda
4900165691
Update docs/documentation/server_admin/topics/clients/oidc/con-advanced-settings.adoc
...
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
2023-08-08 09:47:28 +02:00
mposolda
710f28ce9e
DPoP release notes and documentation polishing
...
closes #21922
2023-08-08 09:47:28 +02:00
Takashi Norimatsu
e46de8afeb
DPoP documentation
...
closes #21917
2023-08-04 09:24:21 +02:00
Marek Posolda
d954dfec5e
Release notes and documentation for FAPI 2 ( #22228 )
...
Closes #21945
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
2023-08-04 08:21:27 +02:00
Peter Zaoral
c5d9e222db
Update OCP4 Social IdP example setup in the latest docs
...
* improved openshift.adoc
Closes #22159
Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
2023-08-03 18:57:08 +02:00
rmartinc
05bac4ff0e
Remove option Nerver Expires for tokens in Advanced OIDC client configuration
...
Closes https://github.com/keycloak/keycloak/issues/21927
2023-08-03 12:16:08 +02:00
Alexander Schwartz
5c6df3d26e
Ignore new NodeJS redirect ( #22187 )
...
Closes #22186
2023-08-03 11:01:33 +02:00
Alexander Schwartz
748c53df7f
Use Java mechanisms to read language files and default to UTF-8 ( #21755 )
...
Closes #21753
2023-08-01 11:27:10 +02:00
aghArdeshir
e64269de70
Remove duplicated description of Scope in JavaScriptAdapter docs ( #22084 )
...
The first one had more information than the second one, so I removed the second one altogether
2023-07-31 08:23:41 +00:00
Alexander Schwartz
08dfdffbfb
Fixed updated links for freeipa ( #22040 )
...
Closes #22039
2023-07-28 07:31:03 +02:00
Vlasta Ramik
29b67fc8df
Inconsistent Wildcard handling for JPA ( #21671 )
...
* Inconsistent Wildcard handling for JPA
Closes #20610
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2023-07-27 17:03:22 +02:00
Takashi Norimatsu
2efd79f982
FAPI 2.0 security profile - supporting RFC 9207 OAuth 2.0 Authorization Server Issuer Identification
...
Closes #20584
2023-07-24 09:11:30 +02:00
David Bister
9420670f14
Update regex password policy to state the specific type of regex to be used.
...
Closes #21652
2023-07-14 16:32:37 +02:00
Stian Thorgersen
304897b226
Fix links to quickstarts ( #21639 )
...
Closes #21637
2023-07-12 14:03:49 +02:00
stianst
a2100d18d4
Enable 22 migration docs
...
Closes #21629
2023-07-12 13:27:40 +02:00
Pedro Igor
702495fe22
Remove adapters from product documentation ( #21177 )
...
Closes #21176
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
Co-authored-by: Stian Thorgersen <stianst@gmail.com>
2023-07-11 13:32:52 +02:00
Stian Thorgersen
1e7fbd1312
Fix links in docs ( #21585 )
2023-07-11 11:04:46 +00:00
Stian Thorgersen
3d33878c33
Update release notes for 22 ( #21583 )
...
* Updates to release notes
* Fix
2023-07-11 11:02:45 +02:00
Alexander Schwartz
8bdfb8e1b6
Updating performance information on export/import
...
Closes : #20703
2023-07-07 09:43:59 -03:00
Justin Stephenson
4ece83dd3d
Update freeipa container image to quay.io ( #19729 )
2023-07-06 14:04:05 +02:00
Ronald Petty
9e68f80377
Update keys.adoc as Field is in prior section ( #21012 )
2023-07-06 12:50:10 +02:00
Thomas Darimont
637fa741b0
Align naming of OTP policy window setting with actual semantics ( #20469 ) ( #21316 )
...
Closes #20469
2023-07-04 12:41:21 +02:00
rmartinc
09e30b3c99
Support for JWE IDToken and UserInfo tokens in OIDC brokers
...
Closes https://github.com/keycloak/keycloak/issues/21254
2023-07-03 21:25:46 -03:00
Kibubu
51b3906f9d
Fix docs to create IAT
...
The docs mention an outdated path to create initial access tokens.
Fixed by guiding users to the right page
2023-07-03 20:47:41 -03:00
mposolda
0ea2891eee
Remove support for OpenJDK 11 on the server side
...
closes #15014
2023-07-03 13:12:22 -03:00