Commit graph

782 commits

Author SHA1 Message Date
Alexander Schwartz
0b2802fa18 Fixing compile time warnings
Avoiding calling deprecated methods, and adding compile time dependencies for annotations.

Closes #17499
2023-03-09 15:42:55 +01:00
Andre F de Miranda
97969e141c
Bump webauthn4j to version 0.21.0-RELEASE (#17516)
Fixes #16730
2023-03-09 11:05:29 +01:00
Douglas Palmer
181e1b914f Update to UA Parser 1.5.4 and use CachingParser
closes #16729
2023-03-08 11:46:39 +01:00
Jon Koops
6d2e57f93a
Move Keycloak JS into the NPM workspace (#17401) 2023-03-03 13:56:53 +01:00
Jon Koops
972ebb9650
Use a valid SemVer format for the SNAPSHOT version (#17334)
* Use a valid SemVer format for the SNAPSHOT version

* Update pom.xml

* Update pom.xml

---------

Co-authored-by: Stian Thorgersen <stianst@gmail.com>
Co-authored-by: Stian Thorgersen <stian@redhat.com>
2023-03-03 11:11:44 +01:00
Stian Thorgersen
48dd0893ce
Add js module to Keycloak parent (#17360) 2023-03-01 09:39:22 +01:00
Jon Koops
9144207755
Add Maven build for JavaScript admin client (#17306)
Co-authored-by: Stian Thorgersen <stian@redhat.com>
2023-02-28 11:16:43 +00:00
Carsten Hoffmann
bd36b21969 Upgrade WildFly Elytron to 1.20.3 to fix multiple CVEs
Closes #16652
Closes #16779
Closes #17094
Closes #17095
2023-02-23 13:14:46 -03:00
Alexander Schwartz
d4604984d0
Compatibility with Maven4 and parallel builds (#16312)
Closes #16308
2023-02-14 11:44:53 +01:00
Hynek Mlnařík
f71ab092de
File store basis
Fixes: #16676

---

* Enhance DefaultModelCriteria
* Fix collection
* Fix delete in CHMKeycloakTransaction
* Add HasRealmId interface
* Fix EntityFieldDelegate
* Support for realm-less entities in providers
* Support for realm-less entities in providers (events)
* File store basis
* Add support for writing
* Support running KeycloakServer with file store
* Add support for file store in model testsuite

---------

Co-authored-by: vramik <vramik@redhat.com>
2023-02-07 14:59:23 +01:00
Bruno Oliveira da Silva
963b7fbc9d CVE-2022-45047 - Deserialization of Untrusted Data vulnerability in org.apache.sshd:sshd-common
Resolves #16779
2023-02-06 16:07:37 -03:00
Bruno Oliveira da Silva
12cefb9950 Update to Quarkus 2.13.7.Final
Resolves #16755

Co-authored-by: Robert Nemeti <r.nemeti@syseleven.de>
2023-02-03 15:03:11 -03:00
rmartinc
f8f112d8d2
Upgrade twitter4j (#16828)
Closes https://github.com/keycloak/keycloak/issues/16731
2023-02-03 15:28:37 +01:00
Bruno Oliveira da Silva
c585051164 Remove duplicate references on the main pom.xml for SnakeYAML
Resolves #16784
2023-02-02 08:20:33 +01:00
Bruno Oliveira da Silva
e3ccba3903 CVE-2022-41854/CVE-2022-38752 Snakeyaml vulnerable to Stack overflow leading to denial of service
Resolves #16062
2023-02-01 13:45:50 +01:00
Stian Thorgersen
8d05895adb
Move Admin REST extension to main repository (#16530)
Closes #16529
2023-01-19 13:06:21 +01:00
Stian Thorgersen
794e7414f3
Set OkHttp 4.10.0 in parent pom (#16383) 2023-01-12 11:41:42 +01:00
stianst
09ff572ef6 Update to XStream 1.4.20
Closes #16276
2023-01-12 09:28:05 +01:00
Stian Thorgersen
0319e0f8c2
Set Snakeyaml to 1.33 in parent pom (#16382)
Closes #15339
2023-01-12 06:52:16 +01:00
Miquel Simon
7bd78f604a
Added MariaDB to Legacy Store IT. (#16157) 2023-01-10 17:37:27 +01:00
Stian Thorgersen
9a7b8e8e2f
Update Fabric8 docker plugin (#16362) 2023-01-10 13:55:37 +01:00
Miquel Simon
c2682157fb
Added MS SQL Server to Legacy Store IT. (#16121)
* Added MS SQL Server to Legacy Store IT.

* Update testsuite/integration-arquillian/pom.xml

Co-authored-by: Stian Thorgersen <stianst@gmail.com>
Co-authored-by: Stian Thorgersen <stian@redhat.com>
2023-01-06 08:55:09 +01:00
Martin Kanis
5aae3842c4 Upgrade to Infinispan 14.0.4.Final 2022-12-22 10:09:05 +01:00
Martin Kanis
c0e103dc95 Replace old HotRod index annotation with new one 2022-12-21 12:50:08 +01:00
Alexander Schwartz
0fee33bb95 Normalize JVM heap usage in tests and handle OOM situations
Closes #16089
2022-12-20 13:26:07 +01:00
Bruno Oliveira da Silva
95360dc5bf Update to Quarkus 2.13.6.Final
Resolves #16084
2022-12-20 04:08:01 -08:00
Stian Thorgersen
ad7a36f537
Update to JBoss Parent 39 (#16009)
Closes #16008
2022-12-15 09:06:00 +01:00
Stefan Guilhen
d6a4acceda Exclude commons-text from liquibase-core dependency
Closes #15915
2022-12-12 10:38:54 -03:00
Peter Zaoral
1073a342cf Cleanup dependencies and align with Quarkus
* aligned parent POM dependency versions with the Quarkus BOM

Closes #15325

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
2022-12-09 09:10:30 -03:00
Pedro Igor
26901dce19 Downgrade to Quarkus 2.13.5.Final
Closes #15764
2022-11-30 20:21:06 -03:00
Stefan Guilhen
55b2162421 Create map-file module with empty implementations
Closes #15706
2022-11-29 12:58:55 +01:00
Miquel Simon
88bc5e2307 Use different Postgres image in Testcontainers. Upgraded Testcontainers dependency to 1.17.5. 2022-11-28 10:57:14 +01:00
Bruno Oliveira da Silva
c31ad8424c
Update to Quarkus 2.14.1.Final (#15601) 2022-11-23 16:00:52 +01:00
Alexander Schwartz
fb315b57c3 Use the same Oracle driver for the tests and Undertow like for Quarkus
Closes #15576
2022-11-23 09:26:18 +01:00
Martin Kanis
5e891951f5 Update Infinispan version to 14.0.2.Final 2022-11-16 14:56:45 +01:00
Stefan Guilhen
bc014d3e69 Upgrade Liquibase to version 4.16.1
* aligns with version used in quarkus

Closes #15089
2022-11-16 13:14:23 +01:00
Brendon Vicente
d859b03193
Upgrade Bouncycastle from 1.68 to 1.70 (#14198)
* Upgrade Bouncycastle to 1.70

* Update pom.xml

* Update pom.xml

Co-authored-by: Stian Thorgersen <stianst@gmail.com>
Co-authored-by: Stian Thorgersen <stian@redhat.com>
2022-11-03 09:17:15 +01:00
Václav Muzikář
6dc2119e20 Exclude operator module by default 2022-10-25 15:55:11 +02:00
Master_Sky
164465861b
fix(sec): upgrade org.apache.tomcat:tomcat-catalina to 8.5.76 (#14950)
Co-authored-by: stianst <stianst@gmail.com>
2022-10-25 09:30:28 -03:00
Bruno Oliveira da Silva
ec73533895 Upgrade to Quarkus 2.13.3
Resolves #15032
Resolves #14785
Resolves #14833
2022-10-24 12:40:24 -03:00
Kamesh Akella
b50fe06b2e
Add new packages for deep reflection within the surefire.system.args for test compatibility with JDK17 (#15036)
Closes #14997
2022-10-20 10:44:32 +02:00
Stian Thorgersen
97ae90de88
Remove Red Hat Single Sign-On product profile from upstream (#14697)
* Remove Red Hat Single Sign-On product profile from upstream

Closes #14916

* review suggestions: Remove Red Hat Single Sign-On product profile from upstream

Closes #14916

Co-authored-by: Peter Skopek <pskopek@redhat.com>
2022-10-18 14:43:04 +02:00
Bruno Oliveira da Silva
90369f7540
Upgrade to latest Quarkus 2.13.2 (#14834)
Upgrade to latest Quarkus 2.13.2

Resolves #14817
2022-10-17 12:05:35 +02:00
Alexander Schwartz
97c4495c4f Updating H2 database to 2.x
Closes #12607

Co-authored-by: Stian Thorgersen <stian@redhat.com>
2022-10-14 11:52:34 +02:00
Bruno Oliveira da Silva
64256e9ae4 Update OpenShift REST client to fix a critical vulnerability on the transitive dependency com.squareup.okhttp3:okhttp
Resolves #14641
2022-10-06 14:40:54 -03:00
dependabot[bot]
2ca23526ad
Bump undertow-core from 2.2.14.Final to 2.2.19.Final (#14635)
Bumps [undertow-core](https://github.com/undertow-io/undertow) from 2.2.14.Final to 2.2.19.Final.
- [Release notes](https://github.com/undertow-io/undertow/releases)
- [Commits](https://github.com/undertow-io/undertow/compare/2.2.14.Final...2.2.19.Final)

---
updated-dependencies:
- dependency-name: io.undertow:undertow-core
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-05 22:16:22 +02:00
Stian Thorgersen
390c7485c7
Remove WildFly dist modules (#14675)
Closes #14307
2022-09-30 14:26:55 +02:00
David Anderson
a8db79a68c
Introduce crypto module using Wildfly Elytron (#14415)
Closes #12702
2022-09-27 08:53:46 +02:00
Pedro Igor
54c1f1b85a Upgrade Quarkus 2.12.2
Closes #14408
2022-09-14 15:36:50 -03:00
Pedro Igor
127569ed2f
Upgrade to Quarkus 2.12.0.Final (#14006)
Closes #14003
2022-08-30 16:48:20 +02:00
Stian Thorgersen
cbfe9b9a3d
Introduce profile (enabled with -DincludeWildFly) to not include WildFly distribution in default builds (#13878)
* Introduce profile (enabled with -DincludeWildFly) to not include WildFly distribution in default builds

* Fix
2022-08-27 00:33:45 +02:00
Michal Hajas
05b9e6d59e
Upgrade Infinispan to 13.0.10.Final (#13910)
Closes #12306
2022-08-25 13:09:34 +02:00
Erich Bremer
c98a760beb
remove javax.json and replace with FasterXML (#11554)
remove javax.json and replace with FasterXML to be consistent with the rest of the project.

Closes #11544
2022-08-25 08:49:22 +02:00
Jon Koops
89795cfd7d Update Node.js to latest LTS version 2022-08-09 13:29:44 -03:00
Michal Hajas
ec808d28bb Remove possibility to start embedded HotRod server in hotrod-map module
Closes #13247
2022-08-05 21:08:38 +02:00
nehachopra27
c7be78fade
Add admin-ui dependencies to integration-arquillian testsuite
Co-authored-by: nchopra <nchopra@redhat.com>

Fixes: #13465
2022-08-01 20:49:11 +02:00
Pedro Igor
5b48d72730 Upgrade Resteasy v4
Closes #10916

Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2022-07-11 12:17:51 -03:00
dependabot[bot]
8238467c49 Bump mysql-connector-java from 8.0.23 to 8.0.28
Bumps [mysql-connector-java](https://github.com/mysql/mysql-connector-j) from 8.0.23 to 8.0.28.
- [Release notes](https://github.com/mysql/mysql-connector-j/releases)
- [Changelog](https://github.com/mysql/mysql-connector-j/blob/release/8.0/CHANGES)
- [Commits](https://github.com/mysql/mysql-connector-j/compare/8.0.23...8.0.28)

---
updated-dependencies:
- dependency-name: mysql:mysql-connector-java
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-07-11 09:55:42 -03:00
Marek Posolda
be1e31dc68
Introduce crypto/default module. Refactoring BouncyIntegration (#12692)
Closes #12625
2022-06-29 07:17:09 +02:00
andreaTP
006aea300d A better structure for config-api 2022-06-28 11:33:44 -03:00
Alexander Schwartz
a5615ab438 Automatic profile activated when using JDK 9+ that sets the compiler's release flag that is not understood by JDK 8
Closes #12631
2022-06-22 08:50:10 +02:00
Václav Muzikář
2c1fc739f0 Explicitly set failIfNoSpecifiedTests to false 2022-06-21 12:26:17 -03:00
Marek Posolda
3f5741e988
Possibility to switch between FIPS and non-FIPS during keycloak+quarkus seerver build (#12513)
* Possibility to switch between FIPS and non-FIPS during keycloak+quarkus server build

Closes #12522
2022-06-21 11:17:45 +02:00
Hynek Mlnarik
247ff52187 Introduce legacy datastore module and update dependencies 2022-06-21 08:53:06 +02:00
Alexander Schwartz
850af55edc Ensure that only JDK 8 APIs are used where JDK 8 is still required.
Closes #10842
2022-06-20 14:44:33 -03:00
vramik
df41f233d5 Introduce unique index for enums stored by storages
Closes #12277
2022-06-15 09:12:10 +02:00
Václav Muzikář
60702cfb44 KerberosLdapTest is failing on Undertow 2022-06-14 20:20:44 +02:00
Václav Muzikář
105d3b955b Refactor Operator test packages 2022-06-13 10:01:43 -03:00
Dominik Guhr
b5c8f92fe7
Update Quarkus to 2.7.6.Final (#12371)
Resolves #12370
2022-06-10 09:14:59 -03:00
Bruno Oliveira da Silva
6ca6588391 Update undertow dependency to fix CVE-2021-3597
Resolves #12390
2022-06-08 10:05:16 -03:00
Stian Thorgersen
73c3517436
Upgrade to WildFly 26.1.1 (#12368)
Closes #12178
2022-06-07 16:40:40 +02:00
Bruno Oliveira da Silva
a102e28dbb Update webauthn4j to 0.20.0
A new version which contains a couple of
bug fixes plus CVE updates for its dependencies:

Breaking changes
    - Add EdDSA support #662
    - Correct AuthenticationAlgorithm(0x0011) value #657

Dependency Upgrades
    - Bump spring-boot-dependencies from 2.6.7 to 2.7.0 #661
    - Bump jacksonVersion from 2.13.2 to 2.13.3 #660
    - Bump kerby-asn1 from 2.0.1 to 2.0.2 #659
Bump checker-qual from 3.21.4 to 3.22.0 #654

Resolves #12311
2022-06-06 13:45:17 +02:00
Marek Posolda
eed944292b
Make script providers working on JDK 17 (#11322)
Closes #9945
2022-05-27 12:28:50 +02:00
andreaTP
d66710205c Refactor dist config to a common module 2022-05-26 12:07:03 -03:00
Yoshikazu Nojima
9fc6114ccd
Update webauth4j dependency version to 0.19.3.RELEASE (#11927)
Resolves #9506
2022-05-18 06:54:34 -03:00
Stian Thorgersen
075e284455
Remove legacy (non-Elytron) WildFly adapter (#11789)
Closes #11683
2022-05-18 10:34:47 +02:00
Stian Thorgersen
491b3262de
Remove Jetty 9.2 and 9.3 adapters (#11792)
Closes #11791
2022-05-04 15:24:46 +02:00
Stian Thorgersen
52ca546cfa
Remove Fuse adapters (#11740)
Closes #11677
2022-05-02 09:55:52 +02:00
Stian Thorgersen
b65d76edab
Remove EAP6 and AS7 adapters (#11605)
Closes #11604
2022-04-28 11:20:44 +02:00
Stian Thorgersen
302e152f86
Remove Spring Boot 1 adapter (#11691)
Closes #11690
2022-04-28 10:59:31 +02:00
Stian Thorgersen
435a78364f
Add BOM wrapper for new admin console to limit Sonatype snapshot to only admin-ui (#11574) 2022-04-21 16:33:55 +02:00
Stian Thorgersen
b79f01c72d
Upgrade to WildFly 26.1.0.Final (#11094)
Closes #10999
2022-04-20 08:38:10 +02:00
Bruno Oliveira da Silva
fc1eb02ed5 Update WildFly Elytron on the legacy distribution (CVE-2021-3642)
This change is a follow up of #11196

Resolves #11249
2022-04-12 17:02:08 -03:00
Bruno Oliveira da Silva
82fbe6c0d5 Update jackson-databind dependency in the main POM file to fix CVE-2020-36518
Resolves #11188
2022-04-12 11:23:30 -03:00
Jon Koops
e00c8d03ae
Use project version for keycloak-admin-ui (#11014) 2022-04-05 08:23:56 +02:00
Bruno Oliveira da Silva
adc5efcc90 CVE-2022-21724 vulnerability related to postgresql dependency
Resolves #10763
2022-04-04 13:47:51 -03:00
Alexander Schwartz
6a657e6472 Upgrading Hibernate in line with WildFly 26.0.1.Final to support building Keycloak with OpenJDK 17
Closes #9993
2022-03-25 20:11:14 +01:00
keycloak-bot
c71aa8b711
Set version to 999-SNAPSHOT (#10784) 2022-03-22 09:22:48 +01:00
Dominik Guhr
441ba8d2c8 Update Quarkus to 2.7.5
No dependencies changed for us. No startup degradation (instead it got a bit better afaict)

Closes #10819
2022-03-18 16:21:46 -03:00
Stian Thorgersen
494948cb92
Fix GPG sign (#10782) 2022-03-17 08:55:40 +01:00
Bruno Oliveira da Silva
8aa394ca6b Update to Liquibase 4.8.0
Closes #10678

Co-authored-by: Stefan Guilhen <sguilhen@redhat.com>
Co-authored-by: Martin Kanis <mkanis@redhat.com>
2022-03-16 13:46:31 -03:00
Stian Thorgersen
842218a7ed
Prevent GPG from using pinentry programs (#10771) 2022-03-16 16:28:13 +01:00
Stian Thorgersen
1b214aaed6
Publish directly to Sonatype OSSRH (#10712)
Closes #10711
2022-03-15 08:59:11 +01:00
Dominik Guhr
fb41c52675
Update to Quarkus 2.7.4 (#10687)
includes ispn 13.0.6

Closes #10685
2022-03-11 09:25:34 +01:00
Dominik Guhr
1710b38cf8 Update to quarkus 2.7.3
Full changelog on quarkus side: https://github.com/quarkusio/quarkus/releases/tag/2.7.3.Final | startup performance: no degradation | manual smoke tests: passed

Closes #10641
2022-03-08 13:45:25 -03:00
Alexander Schwartz
3c3f003a38 LDAP Map storage support to support read/write for roles
Closes #9929
2022-03-08 12:03:10 +01:00
stianst
5ef8265b75 Remove Tomcat 7 adapter
Closes #9428
2022-02-28 07:50:36 +01:00
Dominik Guhr
c49c4f80a2 update to quarkus 2.7.2
postgres update to 42.3.3. Did a hands-on startup performance test between 2.7.1 and 2.7.2, no change (between 3.2xx and 3.4xx seconds for start-dev with initialized db, mostly in the 3.3xx or lower 3.4xx timeframe). Also did a few smoketests

Closes #10437

Closes #10282
2022-02-24 17:19:05 -03:00
Dominik Guhr
86dcec8e3a Update to Quarkus 2.7.1
Postgresql driver patch to 42.3.2

Closes #10111
2022-02-23 11:26:55 -03:00
Martin Bartoš
18581ca4f7 Test more recent versions of Spring Boot
Closes #9934
2022-02-17 16:08:57 +01:00