Commit graph

26220 commits

Author SHA1 Message Date
dependabot[bot]
8816675fc6
Bump vite-plugin-dts from 4.2.2 to 4.2.3 (#33421)
Bumps [vite-plugin-dts](https://github.com/qmhc/vite-plugin-dts) from 4.2.2 to 4.2.3.
- [Release notes](https://github.com/qmhc/vite-plugin-dts/releases)
- [Changelog](https://github.com/qmhc/vite-plugin-dts/blob/main/CHANGELOG.md)
- [Commits](https://github.com/qmhc/vite-plugin-dts/compare/v4.2.2...v4.2.3)

---
updated-dependencies:
- dependency-name: vite-plugin-dts
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-10-01 10:29:50 +02:00
Jon Koops
21704a70c1
Update documentation and release notes for Keycloak JS (#33409)
Closes #32843

Signed-off-by: Jon Koops <jonkoops@gmail.com>
2024-10-01 10:29:23 +02:00
Jon Koops
67b6b4c942
Require Keycloak JS configuration to be passed explicitly (#33399)
Closes #32823

Signed-off-by: Jon Koops <jonkoops@gmail.com>
2024-10-01 10:29:10 +02:00
mposolda
e582a17a7c Fix client-attributes condition configuration
closes #33390

Signed-off-by: mposolda <mposolda@gmail.com>
2024-10-01 10:12:28 +02:00
vramik
412f1f85a9 Update Organization documentation
Closes #33410

Signed-off-by: vramik <vramik@redhat.com>
2024-10-01 09:29:49 +02:00
Stian Thorgersen
4a2fbf5339
Refactor loading of theme resources (#33326)
Closes #33325

Signed-off-by: stianst <stianst@gmail.com>
2024-10-01 08:02:05 +02:00
Alexander Schwartz
8769fed585 Fixing bug in condition
Closes #33353

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-09-30 18:35:45 -03:00
Pedro Igor
4bd29e257b Fixing tests
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2024-09-30 18:35:45 -03:00
Pedro Igor
c558bbe118 Fixing tests
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2024-09-30 18:35:45 -03:00
Alexander Schwartz
fd1f3c52d3 Further optimizations
Closes #33353

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-09-30 18:35:45 -03:00
Alexander Schwartz
5c503a55e9 Optimize caching and use of DB connections when Organisations are enabled
Closes #33353

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-09-30 18:35:45 -03:00
Peter Zaoral
d5d6390b1c
Make Keycloak fail with an error when the persisted build options differs from those provided (#33241)
* PropertyException is now thrown instead of a warning
* Operator guides clarification around health and metrics options

Closes: #32717

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
2024-09-30 19:28:23 +02:00
rmartinc
8bbae59b60 Add LOGIN_WEBAUTHN as possible initial login page for locale bean
Closes #33336

Signed-off-by: rmartinc <rmartinc@redhat.com>
2024-09-30 18:59:39 +02:00
Douglas Palmer
b5e282648f
org.keycloak.testsuite.forms.BruteForceTest#testRaceAttackPermanentLockout (#32701)
* org.keycloak.testsuite.forms.BruteForceTest#testRaceAttackPermanentLockout
Closes #32256


Signed-off-by: Douglas Palmer <dpalmer@redhat.com>
Signed-off-by: Marek Posolda <mposolda@gmail.com>
Co-authored-by: Marek Posolda <mposolda@gmail.com>
2024-09-30 18:38:10 +02:00
Michal Hajas
c682536dae Avoid duplicates when storing organization ids
Signed-off-by: Michal Hajas <mhajas@redhat.com>
2024-09-30 13:25:46 -03:00
Michal Hajas
0becdaa2a9 Do not store RealmModel in CachedOrganizationIds
Closes #33331
Co-authored-by: Pedro Ruivo <pruivo@redhat.com>

Signed-off-by: Michal Hajas <mhajas@redhat.com>
2024-09-30 13:25:46 -03:00
Kyale
a35edeb488 Resolved errors during component import referencing groups
Whenever a component being imported contained a reference to a group also being imported, the group was not found because groups were being imported after components by DefaultImportExportManager

Closes #10730

Signed-off-by: Kyale <github@chalkyweb.com>
2024-09-30 11:46:19 -03:00
Steven Hawkins
8d314a69a0
fix: adding doc note about admin ingress (#33392)
* fix: adding doc note about admin ingress

closes: #33203

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update docs/guides/operator/basic-deployment.adoc

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2024-09-30 14:11:58 +00:00
Stan Silvert
b4a200d333
Fixes release notes section on new login theme, keycloak.v2 (#33359)
* Fixes #33351

Signed-off-by: Stan Silvert <ssilvert@redhat.com>

* Fixes #33351

Signed-off-by: Stan Silvert <ssilvert@redhat.com>

* Ignore saml.xml.org because of expired cert.

Signed-off-by: Stan Silvert <ssilvert@redhat.com>

---------

Signed-off-by: Stan Silvert <ssilvert@redhat.com>
2024-09-30 15:38:29 +02:00
Agnieszka Gancarczyk
b624b6701b
Removed duplicate key (#33391)
Signed-off-by: Agnieszka Gancarczyk <agagancarczyk@gmail.com>
2024-09-30 13:11:28 +00:00
Steven Hawkins
5d99d91818
fix: allows for the detection of a master realm with --import-realms (#32914)
also moving initial bootstrapping after import

closes: #32689

Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2024-09-30 14:40:16 +02:00
Steven Hawkins
53102521d2
fix: correcting the recovery upgrade note (#33356)
closes: #33307

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-09-30 08:22:29 -04:00
Jon Koops
d60dee7622
Remove the UMD distribution of Keycloak JS (#33080)
Closes #32826

Signed-off-by: Jon Koops <jonkoops@gmail.com>
2024-09-30 14:05:18 +02:00
Erik Jan de Wit
2c83ddc9d0
reuse social providers (#33107)
fixes: #33054

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2024-09-30 07:51:41 -04:00
Agnieszka Gancarczyk
ca91ed0029
fixed banner wrap (#33388)
Signed-off-by: Agnieszka Gancarczyk <agagancarczyk@gmail.com>
2024-09-30 11:13:14 +00:00
rmartinc
aaf8136c89 Move deleteCookies to before for RecoveryAuthnCodesAuthenticatorTest
Closes #26176

Signed-off-by: rmartinc <rmartinc@redhat.com>
2024-09-30 12:05:16 +02:00
Weblate (bot)
068d383d44
Update translation files (#33361)
Updated by "Cleanup translation files" hook in Weblate.

Signed-off-by: Hosted Weblate <hosted@weblate.org>
2024-09-30 10:46:02 +02:00
Steven Hawkins
f1a7a4804e
fix: adds additional info / warnings to hostname v2 (#33261)
* fix: adds additional info / warnings to hostname v2

closes: #24815

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* refining the proxy-headers language from #33209

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* adding hostname-strict-https

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* moving removed property check to the quarkus side

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update quarkus/runtime/src/main/java/org/keycloak/quarkus/runtime/configuration/mappers/HostnameV2PropertyMappers.java

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

* Update docs/guides/server/hostname.adoc

Signed-off-by: Steven Hawkins <shawkins@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2024-09-28 08:48:09 +00:00
Steven Hawkins
cf2ecf87f6
fix: add the proxy-protocol option (#33276)
* fix: add the proxy-protocol-enabled option

closes: #10492

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update docs/guides/server/reverseproxy.adoc

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2024-09-27 23:44:59 +02:00
Václav Muzikář
fc76bad1fd Undeprecate https-trust-store-* options and enhance mTLS docs
Closes #33172

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
2024-09-27 18:07:57 +02:00
Steven Hawkins
d981f7f55d
fix: allow the cli to accept negative values (#33084)
also adding a unit testable picocli

closes: #33068

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-09-27 17:36:05 +02:00
Stefan Guilhen
b717810061
Update organizations documentation in the server admin guide
Closes #33199

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
2024-09-27 16:27:54 +02:00
Steven Hawkins
9064d5159a
fix: validate that a full hostname url is expected (#33348)
closes: #33347

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-09-27 13:57:14 +00:00
Stian Thorgersen
b9d0977628
Updated .gitleaks.toml to ignore false positive in RedirectUtilsTest (#33346) 2024-09-27 14:32:36 +02:00
Stian Thorgersen
9657a3ac8b
Updated bug triage document to highlight importance of using backport labels, and not add release labels manually (#33343) 2024-09-27 13:58:04 +02:00
Steven Hawkins
c92dc98b90
fix: removing assertStopped (#33312)
closes: #26454

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-09-27 13:40:54 +02:00
Václav Muzikář
65464a4244
Upgrade to Quarkus 3.15.1 (#33323)
Closes #31932

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
2024-09-27 11:32:11 +00:00
Agnieszka Gancarczyk
805a92adbf
Duplicating groups (#32454)
* Duplicating groups - wip

Signed-off-by: Agnieszka Gancarczyk <agagancarczyk@gmail.com>

* Duplicating groups - wip

Signed-off-by: Agnieszka Gancarczyk <agagancarczyk@gmail.com>

* Duplicating groups - wip

Signed-off-by: Agnieszka Gancarczyk <agagancarczyk@gmail.com>

* Duplicating groups - wip

Signed-off-by: Agnieszka Gancarczyk <agagancarczyk@gmail.com>

* Duplicating groups - wip

Signed-off-by: Agnieszka Gancarczyk <agagancarczyk@gmail.com>

* Duplicating groups - wip

Signed-off-by: Agnieszka Gancarczyk <agagancarczyk@gmail.com>

* Duplicating groups - wip

Signed-off-by: Agnieszka Gancarczyk <agagancarczyk@gmail.com>

* Duplicating groups - enhancement

Signed-off-by: Agnieszka Gancarczyk <agagancarczyk@gmail.com>

* Duplicating groups - enhancement

Signed-off-by: Agnieszka Gancarczyk <agagancarczyk@gmail.com>

* Enhancements

Signed-off-by: Agnieszka Gancarczyk <agagancarczyk@gmail.com>

* Enhancements

Signed-off-by: Agnieszka Gancarczyk <agagancarczyk@gmail.com>

* Enhancements

Signed-off-by: Agnieszka Gancarczyk <agagancarczyk@gmail.com>

* Enhancements

Signed-off-by: Agnieszka Gancarczyk <agagancarczyk@gmail.com>

* improvements

Signed-off-by: Agnieszka Gancarczyk <agagancarczyk@gmail.com>

* improvements

Signed-off-by: Agnieszka Gancarczyk <agagancarczyk@gmail.com>

* improvements

Signed-off-by: Agnieszka Gancarczyk <agagancarczyk@gmail.com>

---------

Signed-off-by: Agnieszka Gancarczyk <agagancarczyk@gmail.com>
2024-09-27 13:25:09 +02:00
Erik Jan de Wit
022ab4d263
save error from async call (#32618)
* save error from async call

fixes: #32609
Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* fixed test

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

---------

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2024-09-27 13:21:43 +02:00
Peter Zaoral
97c032d220
[quarkus-next] Fix: wrong script location used in the preparation phase (#33191)
Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
2024-09-27 13:20:31 +02:00
Erik Jan de Wit
6855ef3d7c changed the way we detect that we are on the "create" screen
fixes: #33300
Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2024-09-27 11:10:16 +02:00
Weblate (bot)
76c1a669cc
Update translation files (#33253)
Updated by "Cleanup translation files" hook in Weblate.

Update translation files

Updated by "Remove blank strings" hook in Weblate.

Update translation files

Updated by "Cleanup translation files" hook in Weblate.

Updated translation for French

Language: fr

Updated translation for French

Language: fr

Updated translation for French

Language: fr

Updated translation for French

Language: fr

Updated translation for French

Language: fr

Signed-off-by: Dimitri <dimitridroeck@gmail.com>
Signed-off-by: Gilbert Fernandes <gilbert.fernandes@orange.fr>
Signed-off-by: Hosted Weblate <hosted@weblate.org>
Co-authored-by: Dimitri <dimitridroeck@gmail.com>
Co-authored-by: Gilbert Fernandes <gilbert.fernandes@orange.fr>
2024-09-27 09:55:43 +02:00
Manish Mehta
d57050656e Fix for Issue# 32622 (https://github.com/keycloak/keycloak/issues/32622)
The expected Destination Path needs to properly point to the client that is created for IDP-initiated SSO flow. This is especially an issue when Keycloak is behind a reverse proxy that terminates TLS.

Signed-off-by: Manish Mehta <ManishMehta@users.noreply.github.com>
2024-09-27 09:20:09 +02:00
rmartinc
1d23c3c720 Use note to detect the IDP verify email action is already done
Closes #31563

Signed-off-by: rmartinc <rmartinc@redhat.com>
2024-09-27 09:16:53 +02:00
Maksim Zvankovich
90dc7c168c Add organization admin crud events
Closes #31421

Signed-off-by: Maksim Zvankovich <m.zvankovich@rheagroup.com>
Co-authored-by: Stefan Guilhen <sguilhen@redhat.com>
2024-09-27 09:09:28 +02:00
Stefan Guilhen
e2810b788e
Fix duplicated screenshot in Authorization Services Guide
Closes #23028

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
2024-09-27 09:05:06 +02:00
Stefan Guilhen
d87f67b4e6
Fix duplicated screenshots in the Fine grain admin permissions section of the Server Admin Guide
Closes #31083

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
2024-09-27 09:04:01 +02:00
esagalara
42eec96f61 Add information to SAML parser exceptions
Include namespaces and location of expected/found elements

Closes #29698

Signed-off-by: esagalara <erik.sagalara@gmail.com>
2024-09-27 08:44:30 +02:00
Jon Koops
cdfd46f191
Strip remaining dependencies from Keycloak JS (#33295)
Closes #33277

Signed-off-by: Jon Koops <jonkoops@gmail.com>
2024-09-26 15:06:32 +02:00
dependabot[bot]
ccfdf9c251
Bump @types/node from 22.7.0 to 22.7.2 (#33287)
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 22.7.0 to 22.7.2.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

---
updated-dependencies:
- dependency-name: "@types/node"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-26 13:02:37 +02:00