Bruno Oliveira da Silva
963b7fbc9d
CVE-2022-45047 - Deserialization of Untrusted Data vulnerability in org.apache.sshd:sshd-common
...
Resolves #16779
2023-02-06 16:07:37 -03:00
Bruno Oliveira da Silva
12cefb9950
Update to Quarkus 2.13.7.Final
...
Resolves #16755
Co-authored-by: Robert Nemeti <r.nemeti@syseleven.de>
2023-02-03 15:03:11 -03:00
rmartinc
f8f112d8d2
Upgrade twitter4j ( #16828 )
...
Closes https://github.com/keycloak/keycloak/issues/16731
2023-02-03 15:28:37 +01:00
Bruno Oliveira da Silva
c585051164
Remove duplicate references on the main pom.xml for SnakeYAML
...
Resolves #16784
2023-02-02 08:20:33 +01:00
Bruno Oliveira da Silva
e3ccba3903
CVE-2022-41854/CVE-2022-38752 Snakeyaml vulnerable to Stack overflow leading to denial of service
...
Resolves #16062
2023-02-01 13:45:50 +01:00
Stian Thorgersen
8d05895adb
Move Admin REST extension to main repository ( #16530 )
...
Closes #16529
2023-01-19 13:06:21 +01:00
Stian Thorgersen
794e7414f3
Set OkHttp 4.10.0 in parent pom ( #16383 )
2023-01-12 11:41:42 +01:00
stianst
09ff572ef6
Update to XStream 1.4.20
...
Closes #16276
2023-01-12 09:28:05 +01:00
Stian Thorgersen
0319e0f8c2
Set Snakeyaml to 1.33 in parent pom ( #16382 )
...
Closes #15339
2023-01-12 06:52:16 +01:00
Miquel Simon
7bd78f604a
Added MariaDB to Legacy Store IT. ( #16157 )
2023-01-10 17:37:27 +01:00
Stian Thorgersen
9a7b8e8e2f
Update Fabric8 docker plugin ( #16362 )
2023-01-10 13:55:37 +01:00
Miquel Simon
c2682157fb
Added MS SQL Server to Legacy Store IT. ( #16121 )
...
* Added MS SQL Server to Legacy Store IT.
* Update testsuite/integration-arquillian/pom.xml
Co-authored-by: Stian Thorgersen <stianst@gmail.com>
Co-authored-by: Stian Thorgersen <stian@redhat.com>
2023-01-06 08:55:09 +01:00
Martin Kanis
5aae3842c4
Upgrade to Infinispan 14.0.4.Final
2022-12-22 10:09:05 +01:00
Martin Kanis
c0e103dc95
Replace old HotRod index annotation with new one
2022-12-21 12:50:08 +01:00
Alexander Schwartz
0fee33bb95
Normalize JVM heap usage in tests and handle OOM situations
...
Closes #16089
2022-12-20 13:26:07 +01:00
Bruno Oliveira da Silva
95360dc5bf
Update to Quarkus 2.13.6.Final
...
Resolves #16084
2022-12-20 04:08:01 -08:00
Stian Thorgersen
ad7a36f537
Update to JBoss Parent 39 ( #16009 )
...
Closes #16008
2022-12-15 09:06:00 +01:00
Stefan Guilhen
d6a4acceda
Exclude commons-text from liquibase-core dependency
...
Closes #15915
2022-12-12 10:38:54 -03:00
Peter Zaoral
1073a342cf
Cleanup dependencies and align with Quarkus
...
* aligned parent POM dependency versions with the Quarkus BOM
Closes #15325
Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
2022-12-09 09:10:30 -03:00
Pedro Igor
26901dce19
Downgrade to Quarkus 2.13.5.Final
...
Closes #15764
2022-11-30 20:21:06 -03:00
Stefan Guilhen
55b2162421
Create map-file module with empty implementations
...
Closes #15706
2022-11-29 12:58:55 +01:00
Miquel Simon
88bc5e2307
Use different Postgres image in Testcontainers. Upgraded Testcontainers dependency to 1.17.5.
2022-11-28 10:57:14 +01:00
Bruno Oliveira da Silva
c31ad8424c
Update to Quarkus 2.14.1.Final ( #15601 )
2022-11-23 16:00:52 +01:00
Alexander Schwartz
fb315b57c3
Use the same Oracle driver for the tests and Undertow like for Quarkus
...
Closes #15576
2022-11-23 09:26:18 +01:00
Martin Kanis
5e891951f5
Update Infinispan version to 14.0.2.Final
2022-11-16 14:56:45 +01:00
Stefan Guilhen
bc014d3e69
Upgrade Liquibase to version 4.16.1
...
* aligns with version used in quarkus
Closes #15089
2022-11-16 13:14:23 +01:00
Brendon Vicente
d859b03193
Upgrade Bouncycastle from 1.68 to 1.70 ( #14198 )
...
* Upgrade Bouncycastle to 1.70
* Update pom.xml
* Update pom.xml
Co-authored-by: Stian Thorgersen <stianst@gmail.com>
Co-authored-by: Stian Thorgersen <stian@redhat.com>
2022-11-03 09:17:15 +01:00
Václav Muzikář
6dc2119e20
Exclude operator
module by default
2022-10-25 15:55:11 +02:00
Master_Sky
164465861b
fix(sec): upgrade org.apache.tomcat:tomcat-catalina to 8.5.76 ( #14950 )
...
Co-authored-by: stianst <stianst@gmail.com>
2022-10-25 09:30:28 -03:00
Bruno Oliveira da Silva
ec73533895
Upgrade to Quarkus 2.13.3
...
Resolves #15032
Resolves #14785
Resolves #14833
2022-10-24 12:40:24 -03:00
Kamesh Akella
b50fe06b2e
Add new packages for deep reflection within the surefire.system.args for test compatibility with JDK17 ( #15036 )
...
Closes #14997
2022-10-20 10:44:32 +02:00
Stian Thorgersen
97ae90de88
Remove Red Hat Single Sign-On product profile from upstream ( #14697 )
...
* Remove Red Hat Single Sign-On product profile from upstream
Closes #14916
* review suggestions: Remove Red Hat Single Sign-On product profile from upstream
Closes #14916
Co-authored-by: Peter Skopek <pskopek@redhat.com>
2022-10-18 14:43:04 +02:00
Bruno Oliveira da Silva
90369f7540
Upgrade to latest Quarkus 2.13.2 ( #14834 )
...
Upgrade to latest Quarkus 2.13.2
Resolves #14817
2022-10-17 12:05:35 +02:00
Alexander Schwartz
97c4495c4f
Updating H2 database to 2.x
...
Closes #12607
Co-authored-by: Stian Thorgersen <stian@redhat.com>
2022-10-14 11:52:34 +02:00
Bruno Oliveira da Silva
64256e9ae4
Update OpenShift REST client to fix a critical vulnerability on the transitive dependency com.squareup.okhttp3:okhttp
...
Resolves #14641
2022-10-06 14:40:54 -03:00
dependabot[bot]
2ca23526ad
Bump undertow-core from 2.2.14.Final to 2.2.19.Final ( #14635 )
...
Bumps [undertow-core](https://github.com/undertow-io/undertow ) from 2.2.14.Final to 2.2.19.Final.
- [Release notes](https://github.com/undertow-io/undertow/releases )
- [Commits](https://github.com/undertow-io/undertow/compare/2.2.14.Final...2.2.19.Final )
---
updated-dependencies:
- dependency-name: io.undertow:undertow-core
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-05 22:16:22 +02:00
Stian Thorgersen
390c7485c7
Remove WildFly dist modules ( #14675 )
...
Closes #14307
2022-09-30 14:26:55 +02:00
David Anderson
a8db79a68c
Introduce crypto module using Wildfly Elytron ( #14415 )
...
Closes #12702
2022-09-27 08:53:46 +02:00
Pedro Igor
54c1f1b85a
Upgrade Quarkus 2.12.2
...
Closes #14408
2022-09-14 15:36:50 -03:00
Pedro Igor
127569ed2f
Upgrade to Quarkus 2.12.0.Final ( #14006 )
...
Closes #14003
2022-08-30 16:48:20 +02:00
Stian Thorgersen
cbfe9b9a3d
Introduce profile (enabled with -DincludeWildFly) to not include WildFly distribution in default builds ( #13878 )
...
* Introduce profile (enabled with -DincludeWildFly) to not include WildFly distribution in default builds
* Fix
2022-08-27 00:33:45 +02:00
Michal Hajas
05b9e6d59e
Upgrade Infinispan to 13.0.10.Final ( #13910 )
...
Closes #12306
2022-08-25 13:09:34 +02:00
Erich Bremer
c98a760beb
remove javax.json and replace with FasterXML ( #11554 )
...
remove javax.json and replace with FasterXML to be consistent with the rest of the project.
Closes #11544
2022-08-25 08:49:22 +02:00
Jon Koops
89795cfd7d
Update Node.js to latest LTS version
2022-08-09 13:29:44 -03:00
Michal Hajas
ec808d28bb
Remove possibility to start embedded HotRod server in hotrod-map module
...
Closes #13247
2022-08-05 21:08:38 +02:00
nehachopra27
c7be78fade
Add admin-ui dependencies to integration-arquillian testsuite
...
Co-authored-by: nchopra <nchopra@redhat.com>
Fixes : #13465
2022-08-01 20:49:11 +02:00
Pedro Igor
5b48d72730
Upgrade Resteasy v4
...
Closes #10916
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2022-07-11 12:17:51 -03:00
dependabot[bot]
8238467c49
Bump mysql-connector-java from 8.0.23 to 8.0.28
...
Bumps [mysql-connector-java](https://github.com/mysql/mysql-connector-j ) from 8.0.23 to 8.0.28.
- [Release notes](https://github.com/mysql/mysql-connector-j/releases )
- [Changelog](https://github.com/mysql/mysql-connector-j/blob/release/8.0/CHANGES )
- [Commits](https://github.com/mysql/mysql-connector-j/compare/8.0.23...8.0.28 )
---
updated-dependencies:
- dependency-name: mysql:mysql-connector-java
dependency-type: direct:development
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-07-11 09:55:42 -03:00
Marek Posolda
be1e31dc68
Introduce crypto/default module. Refactoring BouncyIntegration ( #12692 )
...
Closes #12625
2022-06-29 07:17:09 +02:00
andreaTP
006aea300d
A better structure for config-api
2022-06-28 11:33:44 -03:00
Alexander Schwartz
a5615ab438
Automatic profile activated when using JDK 9+ that sets the compiler's release flag that is not understood by JDK 8
...
Closes #12631
2022-06-22 08:50:10 +02:00
Václav Muzikář
2c1fc739f0
Explicitly set failIfNoSpecifiedTests
to false
2022-06-21 12:26:17 -03:00
Marek Posolda
3f5741e988
Possibility to switch between FIPS and non-FIPS during keycloak+quarkus seerver build ( #12513 )
...
* Possibility to switch between FIPS and non-FIPS during keycloak+quarkus server build
Closes #12522
2022-06-21 11:17:45 +02:00
Hynek Mlnarik
247ff52187
Introduce legacy datastore module and update dependencies
2022-06-21 08:53:06 +02:00
Alexander Schwartz
850af55edc
Ensure that only JDK 8 APIs are used where JDK 8 is still required.
...
Closes #10842
2022-06-20 14:44:33 -03:00
vramik
df41f233d5
Introduce unique index for enums stored by storages
...
Closes #12277
2022-06-15 09:12:10 +02:00
Václav Muzikář
60702cfb44
KerberosLdapTest
is failing on Undertow
2022-06-14 20:20:44 +02:00
Václav Muzikář
105d3b955b
Refactor Operator test packages
2022-06-13 10:01:43 -03:00
Dominik Guhr
b5c8f92fe7
Update Quarkus to 2.7.6.Final ( #12371 )
...
Resolves #12370
2022-06-10 09:14:59 -03:00
Bruno Oliveira da Silva
6ca6588391
Update undertow dependency to fix CVE-2021-3597
...
Resolves #12390
2022-06-08 10:05:16 -03:00
Stian Thorgersen
73c3517436
Upgrade to WildFly 26.1.1 ( #12368 )
...
Closes #12178
2022-06-07 16:40:40 +02:00
Bruno Oliveira da Silva
a102e28dbb
Update webauthn4j to 0.20.0
...
A new version which contains a couple of
bug fixes plus CVE updates for its dependencies:
Breaking changes
- Add EdDSA support #662
- Correct AuthenticationAlgorithm(0x0011) value #657
Dependency Upgrades
- Bump spring-boot-dependencies from 2.6.7 to 2.7.0 #661
- Bump jacksonVersion from 2.13.2 to 2.13.3 #660
- Bump kerby-asn1 from 2.0.1 to 2.0.2 #659
Bump checker-qual from 3.21.4 to 3.22.0 #654
Resolves #12311
2022-06-06 13:45:17 +02:00
Marek Posolda
eed944292b
Make script providers working on JDK 17 ( #11322 )
...
Closes #9945
2022-05-27 12:28:50 +02:00
andreaTP
d66710205c
Refactor dist config to a common module
2022-05-26 12:07:03 -03:00
Yoshikazu Nojima
9fc6114ccd
Update webauth4j dependency version to 0.19.3.RELEASE ( #11927 )
...
Resolves #9506
2022-05-18 06:54:34 -03:00
Stian Thorgersen
075e284455
Remove legacy (non-Elytron) WildFly adapter ( #11789 )
...
Closes #11683
2022-05-18 10:34:47 +02:00
Stian Thorgersen
491b3262de
Remove Jetty 9.2 and 9.3 adapters ( #11792 )
...
Closes #11791
2022-05-04 15:24:46 +02:00
Stian Thorgersen
52ca546cfa
Remove Fuse adapters ( #11740 )
...
Closes #11677
2022-05-02 09:55:52 +02:00
Stian Thorgersen
b65d76edab
Remove EAP6 and AS7 adapters ( #11605 )
...
Closes #11604
2022-04-28 11:20:44 +02:00
Stian Thorgersen
302e152f86
Remove Spring Boot 1 adapter ( #11691 )
...
Closes #11690
2022-04-28 10:59:31 +02:00
Stian Thorgersen
435a78364f
Add BOM wrapper for new admin console to limit Sonatype snapshot to only admin-ui ( #11574 )
2022-04-21 16:33:55 +02:00
Stian Thorgersen
b79f01c72d
Upgrade to WildFly 26.1.0.Final ( #11094 )
...
Closes #10999
2022-04-20 08:38:10 +02:00
Bruno Oliveira da Silva
fc1eb02ed5
Update WildFly Elytron on the legacy distribution (CVE-2021-3642)
...
This change is a follow up of #11196
Resolves #11249
2022-04-12 17:02:08 -03:00
Bruno Oliveira da Silva
82fbe6c0d5
Update jackson-databind dependency in the main POM file to fix CVE-2020-36518
...
Resolves #11188
2022-04-12 11:23:30 -03:00
Jon Koops
e00c8d03ae
Use project version for keycloak-admin-ui ( #11014 )
2022-04-05 08:23:56 +02:00
Bruno Oliveira da Silva
adc5efcc90
CVE-2022-21724 vulnerability related to postgresql dependency
...
Resolves #10763
2022-04-04 13:47:51 -03:00
Alexander Schwartz
6a657e6472
Upgrading Hibernate in line with WildFly 26.0.1.Final to support building Keycloak with OpenJDK 17
...
Closes #9993
2022-03-25 20:11:14 +01:00
keycloak-bot
c71aa8b711
Set version to 999-SNAPSHOT ( #10784 )
2022-03-22 09:22:48 +01:00
Dominik Guhr
441ba8d2c8
Update Quarkus to 2.7.5
...
No dependencies changed for us. No startup degradation (instead it got a bit better afaict)
Closes #10819
2022-03-18 16:21:46 -03:00
Stian Thorgersen
494948cb92
Fix GPG sign ( #10782 )
2022-03-17 08:55:40 +01:00
Bruno Oliveira da Silva
8aa394ca6b
Update to Liquibase 4.8.0
...
Closes #10678
Co-authored-by: Stefan Guilhen <sguilhen@redhat.com>
Co-authored-by: Martin Kanis <mkanis@redhat.com>
2022-03-16 13:46:31 -03:00
Stian Thorgersen
842218a7ed
Prevent GPG from using pinentry programs ( #10771 )
2022-03-16 16:28:13 +01:00
Stian Thorgersen
1b214aaed6
Publish directly to Sonatype OSSRH ( #10712 )
...
Closes #10711
2022-03-15 08:59:11 +01:00
Dominik Guhr
fb41c52675
Update to Quarkus 2.7.4 ( #10687 )
...
includes ispn 13.0.6
Closes #10685
2022-03-11 09:25:34 +01:00
Dominik Guhr
1710b38cf8
Update to quarkus 2.7.3
...
Full changelog on quarkus side: https://github.com/quarkusio/quarkus/releases/tag/2.7.3.Final | startup performance: no degradation | manual smoke tests: passed
Closes #10641
2022-03-08 13:45:25 -03:00
Alexander Schwartz
3c3f003a38
LDAP Map storage support to support read/write for roles
...
Closes #9929
2022-03-08 12:03:10 +01:00
stianst
5ef8265b75
Remove Tomcat 7 adapter
...
Closes #9428
2022-02-28 07:50:36 +01:00
Dominik Guhr
c49c4f80a2
update to quarkus 2.7.2
...
postgres update to 42.3.3. Did a hands-on startup performance test between 2.7.1 and 2.7.2, no change (between 3.2xx and 3.4xx seconds for start-dev with initialized db, mostly in the 3.3xx or lower 3.4xx timeframe). Also did a few smoketests
Closes #10437
Closes #10282
2022-02-24 17:19:05 -03:00
Dominik Guhr
86dcec8e3a
Update to Quarkus 2.7.1
...
Postgresql driver patch to 42.3.2
Closes #10111
2022-02-23 11:26:55 -03:00
Martin Bartoš
18581ca4f7
Test more recent versions of Spring Boot
...
Closes #9934
2022-02-17 16:08:57 +01:00
Stian Thorgersen
fa87d46210
Remove additional repositories where they are not needed. Set updatePolicy for GA. ( #10047 )
...
Closes : #10133
2022-02-16 08:59:05 +01:00
keycloak-bot
d9f1a9b207
Set version to 18.0.0-SNAPSHOT ( #10165 )
2022-02-11 21:28:06 +01:00
Douglas Palmer
340d8da197
LDAP Integration tests fail on JDK-17 #9899 ( #9980 )
2022-02-11 09:03:16 +01:00
Stefan Guilhen
7c1d6eae43
Upgrade to Liquibase 4.6.2
...
* Upgrade to Liquibase 4.6.2
* Add valid checksums to changesets to allow migration to newest liquibase
* Update liquibase licenses
Co-authored-by: Martin Kanis <mkanis@redhat.com>
2022-02-09 12:56:46 +01:00
Jon Koops
90fe97133c
Unify package files for JS adapter ( #9789 )
2022-02-08 13:52:46 -05:00
Stian Thorgersen
2e5cb103ee
Update to UA Parser 1.5.2 ( #10030 )
2022-02-08 11:28:59 +01:00
Jonathan Vila
3fd725a3f5
Test Baseline ( #9625 )
...
Closes #9174
Signed-off-by: jonathan <jvilalop@redhat.com>
2022-02-03 09:38:45 +01:00
Stian Thorgersen
cc88fb2daa
Update default distribution to Quarkus ( #9839 )
...
Closes #9837
2022-02-01 09:42:09 +01:00
Dominik Guhr
5a1f4b8889
Quarkus update to 2.7.0.Final
...
Minor and micro dependency updates, some relocations (e.g. vault, ZipUtils), so some changes were needed to make this work.
Closes #9872
2022-01-31 09:55:02 -03:00
Stian Thorgersen
194c95de58
Upgrade to WildFly 26.0.1 ( #9768 )
...
Closes #9767
2022-01-25 09:37:28 +01:00