Commit graph

25349 commits

Author SHA1 Message Date
Stefan Guilhen
1aab371912 Fix errors when importing realms with the organization feature enabled
Closes #29630

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
2024-05-17 07:25:31 -03:00
Ricardo Martin
74a80997c7
Fix CRL verification failing due to client cert not being in chain (#29582)
closes #19853

Signed-off-by: Micah Algard <micahalgard@gmail.com>
Signed-off-by: rmartinc <rmartinc@redhat.com>


Co-authored-by: Micah Algard <micahalgard@gmail.com>
Co-authored-by: rmartinc <rmartinc@redhat.com>
2024-05-17 11:28:07 +02:00
Alex Szczuczko
34a61d72e5
Add chmod to ADD examples in docs (#29626)
Closes #29625

Signed-off-by: Alex Szczuczko <aszczucz@redhat.com>
2024-05-17 09:15:37 +02:00
Stefan Guilhen
bfa4660ecd Add OpenAPI documentation for the Organization API
Closes #29479

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
2024-05-16 14:59:30 -03:00
Steven Hawkins
8151c93bc7
fix: removes the warning of ignored buildtime options, unless changed (#29425)
closes: #28654

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-05-16 17:02:13 +00:00
Stefan Guilhen
553b1ce695 Ensure org domain removal from the IDP is properly propagated to the DB
Closes #29599

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
2024-05-16 10:43:50 -03:00
vramik
35df0140ee Add a note to the migration guide about index name length for Oracle database
Closes #29594

Signed-off-by: vramik <vramik@redhat.com>
2024-05-16 10:06:39 -03:00
Bruno Oliveira da Silva
65a96757bd Move Snyk reports from GitHub Security tab to GitHub issues
Closes #29494

Signed-off-by: Bruno Oliveira da Silva <bruno@abstractj.com>
2024-05-16 09:57:22 -03:00
Dimitri Papadopoulos Orfanos
64a145e960
Fix user-facing typos in error messages (#29326)
Update resource file and tests accordingly

Signed-off-by: Dimitri Papadopoulos <3234522+DimitriPapadopoulos@users.noreply.github.com>
2024-05-16 09:55:41 +02:00
Takashi Norimatsu
b4e7d9b1aa
Passkeys: Supporting WebAuthn Conditional UI (#24305)
closes #24264

Signed-off-by: Takashi Norimatsu <takashi.norimatsu.ws@hitachi.com>
Signed-off-by: mposolda <mposolda@gmail.com>


Co-authored-by: mposolda <mposolda@gmail.com>
2024-05-16 07:58:43 +02:00
rmartinc
89d7108558 Restrict access to whoami endpoint for the admin console and users with realm access
Closes #25219

Signed-off-by: rmartinc <rmartinc@redhat.com>
2024-05-15 19:06:57 +02:00
NorwayFun
519421606c
Georgian translation (#29559)
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Signed-off-by: norwayfun <temuri.doghonadze@gmail.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2024-05-15 16:57:17 +00:00
Hynek Mlnarik
ef4a246aa9 Keep correct format of config fields
Fixes: #29314

Signed-off-by: Hynek Mlnarik <hmlnarik@redhat.com>
2024-05-15 17:17:07 +02:00
Hynek Mlnarik
3ecc564575 Remove the video file only if it exists
Fixes: #29554

Signed-off-by: Hynek Mlnarik <hmlnarik@redhat.com>
2024-05-15 15:07:22 +02:00
Pedro Hos
2180d50b18
Validate empty regex password policy with white-space characters (#22807)
Closes #20411

Signed-off-by: Pedro Hos <pedro-hos@outlook.com>
2024-05-15 08:56:02 -03:00
dependabot[bot]
6b6f3fcf05 Bump aquasecurity/trivy-action from 0.19.0 to 0.20.0
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.19.0 to 0.20.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](d710430a67...b2933f565d)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-05-15 08:38:15 -03:00
Alexander Schwartz
8deca303e2
Update instruction on how to enable persistent sessions (#29490)
Closes #29489

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-05-15 13:26:51 +02:00
Robin Meese
87086ddb63
Add translation.md for Weblate.org
Closes #29548

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Signed-off-by: Jon Koops <jonkoops@gmail.com>
Signed-off-by: Robin Meese <39960884+robson90@users.noreply.github.com>
Co-authored-by: Robin Meese <39960884+robson90@users.noreply.github.com>
Co-authored-by: Jon Koops <jonkoops@gmail.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2024-05-15 11:37:38 +02:00
Alexander Nikolaev
41c86040a4
Fix docker image building. (#28809)
Signed-off-by: Alexander Nikolaev <zvava@ya.ru>
2024-05-15 10:18:42 +02:00
Alexander Schwartz
fee7503107 Clean generated files for the admin Java client
Closes #29525

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-05-15 09:34:46 +02:00
dependabot[bot]
838242cb8d Bump @types/node from 20.12.11 to 20.12.12
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 20.12.11 to 20.12.12.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

---
updated-dependencies:
- dependency-name: "@types/node"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-05-15 08:52:01 +02:00
Stan Silvert
6b2ba37e9c
Add CRUD for orgainizations to admin client. (#29540)
Signed-off-by: Stan Silvert <ssilvert@redhat.com>
2024-05-15 08:03:41 +02:00
Stefan Guilhen
c4760b8188 Ensure that IDP's linked domains are remove when org is deleted or when the domain is removed from the org.
Closes #29481

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
2024-05-14 15:39:18 -03:00
Kamesh Akella
1d613d9037
Argon2 release notes and sizing guide update
Closes #29033

Signed-off-by: Kamesh Akella <kamesh.asp@gmail.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2024-05-14 17:40:51 +02:00
jhchong92
5cacf8637c
Add FormSubmitButton to handle form submission consistently (#28701)
Closes #28256

Signed-off-by: jchong <jhchong92@gmail.com>
2024-05-14 16:34:30 +02:00
Erik Jan de Wit
4b6d0fb651
fix smtp authenticate issue (#29508)
Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2024-05-14 16:05:58 +02:00
Martin Kanis
3985157f9f Make sure operations on a organization are based on realm they belong to
Closes #28841

Signed-off-by: Martin Kanis <mkanis@redhat.com>
2024-05-14 10:47:39 -03:00
Stan Silvert
f14f4805d6
Fix access for IDP links tab. (#29428)
* Fix access for IDP links tab.

Signed-off-by: Stan Silvert <ssilvert@redhat.com>

* Fix tests.

Signed-off-by: Stan Silvert <ssilvert@redhat.com>

---------

Signed-off-by: Stan Silvert <ssilvert@redhat.com>
2024-05-14 14:49:47 +02:00
Pedro Igor
b4d231fd40 Fixing realm removal when removing groups and brokers associated with an organization
Closes #29495

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2024-05-14 14:29:27 +02:00
Pedro Igor
b5a854b68e
Minor improvements to invitation email templates (#29498)
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2024-05-14 13:19:02 +02:00
Erik Jan de Wit
51522248a3
don't do multi select when type isn't multi (#29297)
* remove invalid attributes from switch

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* don't do multi select when variant is not multi

fixes: #29237
Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

---------

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2024-05-14 06:54:10 -04:00
Alexander Schwartz
701e49e4a5
Defer initialization of JGroups after logging is set up by Quarkus (#29131)
Closes #29129

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-05-14 12:38:37 +02:00
Nicola Beghin
3d1c20b4a5
Add new ProviderConfigProperty type for URLs in Admin Console (#27743)
Closes #27673

Signed-off-by: Nicola Beghin <nicolabeghin@gmail.com>
2024-05-14 09:34:49 +00:00
Pedro Igor
1b583a1bab Email validation for managed members should only fail if it does not match the domain set to a broker
Closes #29460

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2024-05-14 10:46:22 +02:00
dependabot[bot]
8178f744bf Bump vite-plugin-lib-inject-css from 2.1.0 to 2.1.1
Bumps [vite-plugin-lib-inject-css](https://github.com/emosheeep/vite-plugin-lib-inject-css) from 2.1.0 to 2.1.1.
- [Release notes](https://github.com/emosheeep/vite-plugin-lib-inject-css/releases)
- [Changelog](https://github.com/emosheeep/vite-plugin-lib-inject-css/blob/master/CHANGELOG.md)
- [Commits](https://github.com/emosheeep/vite-plugin-lib-inject-css/compare/vite-plugin-lib-inject-css@2.1.0...vite-plugin-lib-inject-css@2.1.1)

---
updated-dependencies:
- dependency-name: vite-plugin-lib-inject-css
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-05-14 08:17:07 +02:00
dependabot[bot]
c4fc0d86cf Bump typescript-eslint from 7.8.0 to 7.9.0
Bumps [typescript-eslint](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint) from 7.8.0 to 7.9.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/typescript-eslint/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v7.9.0/packages/typescript-eslint)

---
updated-dependencies:
- dependency-name: typescript-eslint
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-05-14 08:15:24 +02:00
Hynek Mlnarik
7daa2a0471 Only store videos of failed Cypress tests
`cypressSplit` function overrides the `after:spec` trigger which
is used for removing videos of successful tests.

Fixes: #29471

Signed-off-by: Hynek Mlnarik <hmlnarik@redhat.com>
2024-05-13 16:57:32 +02:00
mposolda
d8a7773947 Adding dummyHash to DirectGrant request in case user does not exists. Fix dummyHash for normal login requests
closes #12298

Signed-off-by: mposolda <mposolda@gmail.com>
2024-05-13 16:33:29 +02:00
Alexander Schwartz
2d053312a0
Retrieve UUID from LDAP in same context (#29470)
This should avoid out-of-sync problems in distributed LDAP environments.

Closes #29206

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-05-13 16:18:30 +02:00
Alexander Schwartz
673e122443 Avoid sorting items returned from the database which are already stable
Closes #29319

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-05-13 16:15:38 +02:00
agagancarczyk
b01e47feec
Added localization for User Profile attribute groups (#29374)
* resolved conflicts

Signed-off-by: Agnieszka Gancarczyk <agancarc@redhat.com>

* added localization feature to up attributes groups

Signed-off-by: Agnieszka Gancarczyk <agancarc@redhat.com>

* refactor

Signed-off-by: Agnieszka Gancarczyk <agancarc@redhat.com>

* fix linting

Signed-off-by: Jon Koops <jonkoops@gmail.com>

* fixed attribute groups test

Signed-off-by: Agnieszka Gancarczyk <agancarc@redhat.com>

* fixed another failing test

Signed-off-by: Agnieszka Gancarczyk <agancarc@redhat.com>

* reverted the test change

Signed-off-by: Agnieszka Gancarczyk <agancarc@redhat.com>

---------

Signed-off-by: Agnieszka Gancarczyk <agancarc@redhat.com>
Signed-off-by: Jon Koops <jonkoops@gmail.com>
Co-authored-by: Agnieszka Gancarczyk <agancarc@redhat.com>
Co-authored-by: Jon Koops <jonkoops@gmail.com>
2024-05-13 09:50:00 -04:00
christian2
e200ccfa53 Fix URL endpoint for Docker registry v2 authentication
Closes #29132

Signed-off-by: Christian Hörtnagl <christian2@univie.ac.at>
2024-05-13 13:51:06 +02:00
kaustubh-rh
8a82b6b587
Added a check in ClientInitialAccessResource (#29353)
closes #29311

Signed-off-by: Kaustubh Bawankar <kbawanka@redhat.com>
2024-05-13 13:00:36 +02:00
vramik
fbdaf03972 Ensure master realm can't be removed
Fixes #28896

Signed-off-by: vramik <vramik@redhat.com>
2024-05-13 07:47:48 -03:00
Alexander Schwartz
6fbe207d64
Create documentation for persistent user sessions
Closes #29218

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Signed-off-by: Michal Hajas <mhajas@redhat.com>
Co-authored-by: Michal Hajas <mhajas@redhat.com>
2024-05-13 11:02:45 +02:00
rmartinc
2cc051346d Allow empty CSP header in headers provider
Closes #29458

Signed-off-by: rmartinc <rmartinc@redhat.com>
2024-05-13 10:51:31 +02:00
Alexander Schwartz
6cc8d653f3 Make SessionWrapper related fields immutable that are part of the equals method
The cache replace logic depends on it, as values returned by reference from a local cache must never be modified on those critical fields directly.

Closes #28906

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-05-13 09:59:50 +02:00
James Hewitt
ee93561706
Change the default role mapping filter to clients (#29405)
Client roles are more common that realm roles, so we should start the
user off looking at a more useful set of options.

Signed-off-by: James Hewitt <james.hewitt@uk.ibm.com>
2024-05-13 09:46:07 +02:00
dependabot[bot]
2c8f890251 Bump @types/react from 18.3.1 to 18.3.2
Bumps [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react) from 18.3.1 to 18.3.2.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react)

---
updated-dependencies:
- dependency-name: "@types/react"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-05-13 09:28:52 +02:00
dependabot[bot]
ff83cbd496 Bump react-router-dom from 6.23.0 to 6.23.1
Bumps [react-router-dom](https://github.com/remix-run/react-router/tree/HEAD/packages/react-router-dom) from 6.23.0 to 6.23.1.
- [Release notes](https://github.com/remix-run/react-router/releases)
- [Changelog](https://github.com/remix-run/react-router/blob/main/packages/react-router-dom/CHANGELOG.md)
- [Commits](https://github.com/remix-run/react-router/commits/react-router-dom@6.23.1/packages/react-router-dom)

---
updated-dependencies:
- dependency-name: react-router-dom
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-05-13 09:08:41 +02:00