Commit graph

657 commits

Author SHA1 Message Date
Stian Thorgersen
a499512f35
Set SameSite for all cookies (#28467)
Closes #28465

Signed-off-by: stianst <stianst@gmail.com>
2024-04-09 12:29:19 +02:00
Steve Hawkins
9afe3a2560 fix: changing max threads default
closes: #17483

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-04-09 12:14:56 +02:00
Václav Muzikář
e4987f10f5
Hostname SPI v2 (#26345)
* Hostname SPI v2

Closes: #26084

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>

* Fix HostnameV2DistTest#testServerFailsToStartWithoutHostnameSpecified

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>

* Address review comment

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>

* Partially revert the previous fix

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>

* Do not polish values

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>

* Remove filtering of denied categories

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>

---------

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
2024-04-09 11:25:19 +02:00
Martin Bartoš
9c1790af68
Enable Syslog log handler (#28462)
* Enable syslog log handler

Closes #27544

Signed-off-by: Martin Bartoš <mabartos@redhat.com>

* Suggest an alternative to GELF

Signed-off-by: Martin Bartoš <mabartos@redhat.com>

---------

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
2024-04-08 17:38:20 +02:00
Pedro Igor
52ba9b4b7f Make sure attribute metadata from user storage providers are added only for the provider associated with a federated user
Closes #28248

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2024-04-08 09:05:16 -03:00
Giuseppe Graziano
b4f791b632 Remove session_state from tokens
Closes #27624

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
2024-04-08 08:12:51 +02:00
Stian Thorgersen
b9feaec38e
Ignore all links to GitHub when checking external links in docs due to rate limiting issues (#28472)
Closes #28330

Signed-off-by: stianst <stianst@gmail.com>
2024-04-05 15:36:38 +02:00
Pedro Igor
8fb6d43e07 Do not export ids when exporting authorization settings
Closes #25975

Co-authored-by: 박시준 <sjpark@logblack.com>
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2024-04-04 19:26:03 +02:00
Ryan Emerson
71eacdc1c5 Update HA Guide now that non-XA mode is the default. Fixes #28142
Signed-off-by: Ryan Emerson <remerson@redhat.com>
2024-04-04 13:15:42 +02:00
Ryan Emerson
9bf131b5fb HA guide erroneously refers to AWS Global Accelerator. Fixes #28174
Signed-off-by: Ryan Emerson <remerson@redhat.com>
2024-04-04 13:15:42 +02:00
Alexander Schwartz
c1a471755d Fix lists to be rendered as expected
Closes #28377

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-04-04 11:16:57 +02:00
Alexander Schwartz
1d204e77a4
Fix source highlighting for log output (#28375)
Closes #28374

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-04-03 08:32:48 +02:00
Clemens Zagler
b44252fde9 authz/client: Fix getPermissions returning wrong type
Due to an issue with runtime type erasure, getPermissions returned a
List<LinkedHashSet> instead of List<Permission>.
Fixed and added test to catch this

Closes #16520

Signed-off-by: Clemens Zagler <c.zagler@noi.bz.it>
2024-04-02 11:09:43 -03:00
Giuseppe Graziano
fe06df67c2 New default client scope for 'basic' claims with 'auth_time' protocol mapper
Closes #27623

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
2024-04-02 08:44:28 +02:00
Steven Hawkins
e9ad9d0564
fix: replace aesh with picocli (#27458)
* fix: replace aesh with picocli

closes: #27388

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update integration/client-cli/admin-cli/src/main/java/org/keycloak/client/admin/cli/commands/AbstractRequestCmd.java

Co-authored-by: Martin Bartoš <mabartos@redhat.com>

* splitting the error handling for password input

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* adding a change note about kcadm

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update docs/documentation/upgrading/topics/changes/changes-25_0_0.adoc

Co-authored-by: Martin Bartoš <mabartos@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2024-03-28 14:34:06 +01:00
Gilvan Filho
757c524cc5 Password policy for not having username in the password
closes #27643

Signed-off-by: Gilvan Filho <gfilho@redhat.com>
2024-03-28 08:29:03 +01:00
Alexander Schwartz
305dd5812e Make use of attributes consistent between old docs and new guides
Closes #28215

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-03-26 17:07:54 +01:00
Stian Thorgersen
c3a98ae387
Use Argon2 as default password hashing algorithm (#28162)
Closes #28161

Signed-off-by: stianst <stianst@gmail.com>
2024-03-22 13:04:14 +00:00
rmartinc
d4da0c816c Upgrading note to warn truststore changes affect webauthn registration
Closes #28113

Signed-off-by: rmartinc <rmartinc@redhat.com>
2024-03-22 10:58:48 +01:00
Steven Hawkins
619775b8db
fix: simplifies the parsing routine, which accounts for leading 0's (#28102)
closes: #27839

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-03-22 09:19:52 +01:00
Steven Hawkins
6cc66109d5
doc: add keycloak cr truststores (#28015)
closes: #27892

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-03-22 08:27:15 +01:00
Stian Thorgersen
3f9cebca39
Ability to set the default provider for an SPI (#28135)
Closes #28134

Signed-off-by: stianst <stianst@gmail.com>
2024-03-22 07:45:08 +01:00
Stian Thorgersen
cae92cbe8c
Argon2 password hashing provider (#28031)
Closes #28030

Signed-off-by: stianst <stianst@gmail.com>
2024-03-22 07:08:09 +01:00
andymunro
8602b4f9cf
Edits to Operator Guide
Closes #28009

Signed-off-by: AndyMunro <amunro@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2024-03-21 17:44:44 +00:00
Steven Hawkins
cbe185fbab
doc: add a note about lack of other JAX-RS support (#28048)
closes: #27057

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-03-21 16:59:22 +01:00
Steven Hawkins
7eab019748
task: deprecate WILDCARD and STRICT options (#26833)
closes: #24893

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-03-21 16:22:41 +01:00
Alexander Schwartz
c4fdf1cee7
Enable HTTP metrics for Keycloak by default (#28088)
Closes #27924

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-03-21 16:18:03 +01:00
Steve Hawkins
91c89c28e7 fix: changes xa transaction related defaults
xa is not enabled by default
recovery is enabled by default

closes #27308

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-03-21 16:01:19 +01:00
Sebastian Schuster
0542554984 12671 querying by user attribute no longer forces case insensitivity for keys
Signed-off-by: Sebastian Schuster <sebastian.schuster@bosch.io>
2024-03-21 08:35:29 -03:00
Pedro Ruivo
2387549308 Upgrade Infinispan to 14.0.27.Final
Closes #28033

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
2024-03-19 11:18:42 +01:00
Alexander Schwartz
fbdb2ed9f7 Updated performance impact due to changed hashing
Fixes #27900

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-03-19 09:30:49 +01:00
AndyMunro
d61b1ddb09 Edit use of Keycloak in Server Admin Guide
Closes #27955

Signed-off-by: AndyMunro <amunro@redhat.com>
2024-03-18 09:51:55 +01:00
AndyMunro
0e5d685cd3 Revise use of Keycloak term
Closes #27953

Signed-off-by: AndyMunro <amunro@redhat.com>
2024-03-18 09:50:26 +01:00
Alexander Schwartz
4bbe4705d4
Remove http metrics from the docs as they are not available in the current release (#27926)
Fixes #27925

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-03-15 17:57:56 +01:00
Alexander Schwartz
62d24216e3 Remove offline session preloading
Closes #27602

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-03-15 15:19:27 +01:00
Stian Thorgersen
2bddfe7380
Remove log4j from documentation tests (#27929)
Signed-off-by: stianst <stianst@gmail.com>
2024-03-15 15:06:24 +01:00
AndyMunro
e40227fa50 Address comments on Securing Apps
Closes #27867

Signed-off-by: AndyMunro <amunro@redhat.com>
2024-03-15 13:04:05 +01:00
Stian Thorgersen
81f3f211f3
Delete all deprecated and unmaintained examples (#27855)
Signed-off-by: stianst <stianst@gmail.com>
2024-03-15 07:24:20 +01:00
Steven Hawkins
1cc1911ec3
doc: adding a note about repairing a corrupted classloading index (#27906)
relates to: #26396

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-03-14 16:47:07 +01:00
larsw
42244d2a67
doc/token-exchange.adoc: issuer claim -> iss claim (#27018)
Fixed a typo in the text.
2024-03-14 13:37:40 +01:00
Pedro Ruivo
a5634b201c
Use new remote-store options in HA guides
Fixes #27508

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2024-03-14 12:47:35 +01:00
andymunro
be29be6741
Edit Keycloak 23 part of Upgrading Guide
Closes #27484

Signed-off-by: AndyMunro <amunro@redhat.com>
2024-03-14 11:03:58 +01:00
mposolda
1f80f561db Update version of bctls-fips in the docs
closes #27882

Signed-off-by: mposolda <mposolda@gmail.com>
2024-03-14 08:58:34 +01:00
Stefan Guilhen
be6f0bc520
Add a section on the admin console partial import/export capability
Closes #25490

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Signed-off-by: andymunro <48995441+andymunro@users.noreply.github.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
2024-03-14 08:50:54 +01:00
Alexander Schwartz
1788cf2b09 Enable Infinispan metrics automatically if overall metrics are enabled
Closes #27724

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-03-13 18:55:45 +01:00
Ryan Emerson
a32808e8eb
Upgrade to Infinispan 14.0.26.Final
Closes #27871

Signed-off-by: Ryan Emerson <remerson@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2024-03-13 17:24:20 +00:00
Alexander Schwartz
6de5325d1c Limit the received content when handling the content as a String
Closes #27293

Co-authored-by: rmartinc <rmartinc@redhat.com>
Signed-off-by: rmartinc <rmartinc@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-03-13 16:43:03 +01:00
Steven Hawkins
e22148043b
doc: mention that the split package warning may not happen (#27789)
closes: #26396

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-03-13 14:57:20 +01:00
Stian Thorgersen
1f772d2957
Move authenticator example to quickstarts (#27850)
Signed-off-by: stianst <stianst@gmail.com>
2024-03-13 11:52:29 +00:00
stianst
15717cc152 Remove deprecated cookie code
Closes #26813

Signed-off-by: stianst <stianst@gmail.com>
2024-03-12 17:24:14 +01:00