libre.sh/keycloak-scim
2
0
Fork 0
Code Issues 14 Pull requests Releases Packages Activity Actions 6
24639 commits 4 branches 5 tags 483 MiB
Commit graph

660 commits

Author SHA1 Message Date
Giuseppe Graziano
c76cbc94d8 Add sub via protocol mapper to access token 
Closes #21185

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
 2024-04-10 10:40:42 +02:00
Martin Bartoš
b2c88e9876
docs: Support management port for health and metrics (#28213) 
Relates to #19334

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Václav Muzikář <vmuzikar@redhat.com>
 2024-04-09 14:33:30 +02:00
Alexander Schwartz
3ba9a905c9 Provide histograms for http server metrics 
Closes #28178

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-04-09 12:52:42 +02:00
Stian Thorgersen
a499512f35
Set SameSite for all cookies (#28467) 
Closes #28465

Signed-off-by: stianst <stianst@gmail.com>
 2024-04-09 12:29:19 +02:00
Steve Hawkins
9afe3a2560 fix: changing max threads default 
closes: #17483

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2024-04-09 12:14:56 +02:00
Václav Muzikář
e4987f10f5
Hostname SPI v2 (#26345) 
* Hostname SPI v2

Closes: #26084

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>

* Fix HostnameV2DistTest#testServerFailsToStartWithoutHostnameSpecified

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>

* Address review comment

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>

* Partially revert the previous fix

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>

* Do not polish values

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>

* Remove filtering of denied categories

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>

---------

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
 2024-04-09 11:25:19 +02:00
Martin Bartoš
9c1790af68
Enable Syslog log handler (#28462) 
* Enable syslog log handler

Closes #27544

Signed-off-by: Martin Bartoš <mabartos@redhat.com>

* Suggest an alternative to GELF

Signed-off-by: Martin Bartoš <mabartos@redhat.com>

---------

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
 2024-04-08 17:38:20 +02:00
Pedro Igor
52ba9b4b7f Make sure attribute metadata from user storage providers are added only for the provider associated with a federated user 
Closes #28248

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-04-08 09:05:16 -03:00
Giuseppe Graziano
b4f791b632 Remove session_state from tokens 
Closes #27624

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
 2024-04-08 08:12:51 +02:00
Stian Thorgersen
b9feaec38e
Ignore all links to GitHub when checking external links in docs due to rate limiting issues (#28472) 
Closes #28330

Signed-off-by: stianst <stianst@gmail.com>
 2024-04-05 15:36:38 +02:00
Pedro Igor
8fb6d43e07 Do not export ids when exporting authorization settings 
Closes #25975

Co-authored-by: 박시준 <sjpark@logblack.com>
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-04-04 19:26:03 +02:00
Ryan Emerson
71eacdc1c5 Update HA Guide now that non-XA mode is the default. Fixes #28142 
Signed-off-by: Ryan Emerson <remerson@redhat.com>
 2024-04-04 13:15:42 +02:00
Ryan Emerson
9bf131b5fb HA guide erroneously refers to AWS Global Accelerator. Fixes #28174 
Signed-off-by: Ryan Emerson <remerson@redhat.com>
 2024-04-04 13:15:42 +02:00
Alexander Schwartz
c1a471755d Fix lists to be rendered as expected 
Closes #28377

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-04-04 11:16:57 +02:00
Alexander Schwartz
1d204e77a4
Fix source highlighting for log output (#28375) 
Closes #28374

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-04-03 08:32:48 +02:00
Clemens Zagler
b44252fde9 authz/client: Fix getPermissions returning wrong type 
Due to an issue with runtime type erasure, getPermissions returned a
List<LinkedHashSet> instead of List<Permission>.
Fixed and added test to catch this

Closes #16520

Signed-off-by: Clemens Zagler <c.zagler@noi.bz.it>
 2024-04-02 11:09:43 -03:00
Giuseppe Graziano
fe06df67c2 New default client scope for 'basic' claims with 'auth_time' protocol mapper 
Closes #27623

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
 2024-04-02 08:44:28 +02:00
Steven Hawkins
e9ad9d0564
fix: replace aesh with picocli (#27458) 
* fix: replace aesh with picocli

closes: #27388

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update integration/client-cli/admin-cli/src/main/java/org/keycloak/client/admin/cli/commands/AbstractRequestCmd.java

Co-authored-by: Martin Bartoš <mabartos@redhat.com>

* splitting the error handling for password input

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* adding a change note about kcadm

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update docs/documentation/upgrading/topics/changes/changes-25_0_0.adoc

Co-authored-by: Martin Bartoš <mabartos@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
 2024-03-28 14:34:06 +01:00
Gilvan Filho
757c524cc5 Password policy for not having username in the password 
closes #27643

Signed-off-by: Gilvan Filho <gfilho@redhat.com>
 2024-03-28 08:29:03 +01:00
Alexander Schwartz
305dd5812e Make use of attributes consistent between old docs and new guides 
Closes #28215

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-03-26 17:07:54 +01:00
Stian Thorgersen
c3a98ae387
Use Argon2 as default password hashing algorithm (#28162) 
Closes #28161

Signed-off-by: stianst <stianst@gmail.com>
 2024-03-22 13:04:14 +00:00
rmartinc
d4da0c816c Upgrading note to warn truststore changes affect webauthn registration 
Closes #28113

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-03-22 10:58:48 +01:00
Steven Hawkins
619775b8db
fix: simplifies the parsing routine, which accounts for leading 0's (#28102) 
closes: #27839

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2024-03-22 09:19:52 +01:00
Steven Hawkins
6cc66109d5
doc: add keycloak cr truststores (#28015) 
closes: #27892

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2024-03-22 08:27:15 +01:00
Stian Thorgersen
3f9cebca39
Ability to set the default provider for an SPI (#28135) 
Closes #28134

Signed-off-by: stianst <stianst@gmail.com>
 2024-03-22 07:45:08 +01:00
Stian Thorgersen
cae92cbe8c
Argon2 password hashing provider (#28031) 
Closes #28030

Signed-off-by: stianst <stianst@gmail.com>
 2024-03-22 07:08:09 +01:00
andymunro
8602b4f9cf
Edits to Operator Guide 
Closes #28009

Signed-off-by: AndyMunro <amunro@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-03-21 17:44:44 +00:00
Steven Hawkins
cbe185fbab
doc: add a note about lack of other JAX-RS support (#28048) 
closes: #27057

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2024-03-21 16:59:22 +01:00
Steven Hawkins
7eab019748
task: deprecate WILDCARD and STRICT options (#26833) 
closes: #24893

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2024-03-21 16:22:41 +01:00
Alexander Schwartz
c4fdf1cee7
Enable HTTP metrics for Keycloak by default (#28088) 
Closes #27924

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-03-21 16:18:03 +01:00
Steve Hawkins
91c89c28e7 fix: changes xa transaction related defaults 
xa is not enabled by default
recovery is enabled by default

closes #27308

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2024-03-21 16:01:19 +01:00
Sebastian Schuster
0542554984 12671 querying by user attribute no longer forces case insensitivity for keys 
Signed-off-by: Sebastian Schuster <sebastian.schuster@bosch.io>
 2024-03-21 08:35:29 -03:00
Pedro Ruivo
2387549308 Upgrade Infinispan to 14.0.27.Final 
Closes #28033

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
 2024-03-19 11:18:42 +01:00
Alexander Schwartz
fbdb2ed9f7 Updated performance impact due to changed hashing 
Fixes #27900

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-03-19 09:30:49 +01:00
AndyMunro
d61b1ddb09 Edit use of Keycloak in Server Admin Guide 
Closes #27955

Signed-off-by: AndyMunro <amunro@redhat.com>
 2024-03-18 09:51:55 +01:00
AndyMunro
0e5d685cd3 Revise use of Keycloak term 
Closes #27953

Signed-off-by: AndyMunro <amunro@redhat.com>
 2024-03-18 09:50:26 +01:00
Alexander Schwartz
4bbe4705d4
Remove http metrics from the docs as they are not available in the current release (#27926) 
Fixes #27925

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-03-15 17:57:56 +01:00
Alexander Schwartz
62d24216e3 Remove offline session preloading 
Closes #27602

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-03-15 15:19:27 +01:00
Stian Thorgersen
2bddfe7380
Remove log4j from documentation tests (#27929) 
Signed-off-by: stianst <stianst@gmail.com>
 2024-03-15 15:06:24 +01:00
AndyMunro
e40227fa50 Address comments on Securing Apps 
Closes #27867

Signed-off-by: AndyMunro <amunro@redhat.com>
 2024-03-15 13:04:05 +01:00
Stian Thorgersen
81f3f211f3
Delete all deprecated and unmaintained examples (#27855) 
Signed-off-by: stianst <stianst@gmail.com>
 2024-03-15 07:24:20 +01:00
Steven Hawkins
1cc1911ec3
doc: adding a note about repairing a corrupted classloading index (#27906) 
relates to: #26396

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2024-03-14 16:47:07 +01:00
larsw
42244d2a67
doc/token-exchange.adoc: issuer claim -> iss claim (#27018) 
Fixed a typo in the text.
 2024-03-14 13:37:40 +01:00
Pedro Ruivo
a5634b201c
Use new remote-store options in HA guides 
Fixes #27508

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-03-14 12:47:35 +01:00
andymunro
be29be6741
Edit Keycloak 23 part of Upgrading Guide 
Closes #27484

Signed-off-by: AndyMunro <amunro@redhat.com>
 2024-03-14 11:03:58 +01:00
mposolda
1f80f561db Update version of bctls-fips in the docs 
closes #27882

Signed-off-by: mposolda <mposolda@gmail.com>
 2024-03-14 08:58:34 +01:00
Stefan Guilhen
be6f0bc520
Add a section on the admin console partial import/export capability 
Closes #25490

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Signed-off-by: andymunro <48995441+andymunro@users.noreply.github.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2024-03-14 08:50:54 +01:00
Alexander Schwartz
1788cf2b09 Enable Infinispan metrics automatically if overall metrics are enabled 
Closes #27724

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-03-13 18:55:45 +01:00
Ryan Emerson
a32808e8eb
Upgrade to Infinispan 14.0.26.Final 
Closes #27871

Signed-off-by: Ryan Emerson <remerson@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-03-13 17:24:20 +00:00
Alexander Schwartz
6de5325d1c Limit the received content when handling the content as a String 
Closes #27293

Co-authored-by: rmartinc <rmartinc@redhat.com>
Signed-off-by: rmartinc <rmartinc@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-03-13 16:43:03 +01:00