Commit graph

14595 commits

Author SHA1 Message Date
Michal Hajas
44000caaf5 KEYCLOAK-19177 Disable ECP flow by default for all Saml clients; ecp flow creates only transient users sessions 2022-03-31 16:06:44 +02:00
Teubner, Malte
b5f70d8a32 Add scope parameter to admin-client TokenManager.
Closes #10759
2022-03-31 10:56:08 -03:00
Teubner, Malte
1b36251a23 Add scope parameter to admin-client TokenManager.
Closes #10759
2022-03-31 10:56:08 -03:00
andreaTP
53aab7fc28 Use temurin instead of zulu in CI 2022-03-31 10:23:42 -03:00
iingawal
6016b461db
Fix for "updatedAt" user attribute in "profile" client scope should use number instead of String (#11020)
Closes #10081


Co-authored-by: Indrajit Ingawale <iingawal@iingawal.pnq.csb>
2022-03-31 14:33:03 +02:00
Marek Posolda
aacae9b9ac
Support for frontchannel_logout_session_required OIDC client parameter (#11009)
* Support for frontchannel_logout_session_required OIDC client parameter
Closes #10137
2022-03-31 14:25:24 +02:00
Francis PEROT
7555063ed9 Support 0/1 values for XML boolean attributes
Closes #10802
2022-03-31 09:36:35 +02:00
Dominik Guhr
9e57f836f2 Make quarkus runtime properties also available as runtime properties in keycloak
Changes behaviour to:
- all raw quarkus config properties are handled as runtime config in keycloak, with the exception of raw properties we need for additional datasources, there we check for build- vs runtime
- unknown quarkus buildtime properties require a build first or the usual quarkus warning is shown
- wrapped quarkus properties still get ignored / overwritten by our configuration layer (no change in behaviour here)

Closes #10968
2022-03-30 18:13:09 -03:00
Eetu Lepistö
66de8adefd
KEYCLOAK-19532 Added finnish locales (#8569)
Co-authored-by: Antti Leppä <antti.leppa@metatavu.fi>
2022-03-30 14:51:57 -04:00
Dominik Guhr
25f1c13e55 update proxy docs
Corresponding PR for the change in keycloak-documentation, recommendation is using a package manager

Closes #10915
2022-03-30 12:57:34 -03:00
andreaTP
fff992aa3b Operator docs structure 2022-03-30 12:54:45 -03:00
Andrea Peruffo
ae61d2785d Update operator/README.md
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
2022-03-30 12:46:32 -03:00
andreaTP
f93a7d63f7 Switch to auto-build off in case of custom images 2022-03-30 12:46:32 -03:00
andreaTP
298ce1888b Change base image and bump dependencies 2022-03-30 12:45:05 -03:00
Bruno Oliveira da Silva
034775f311 Trigger Trivy workflow after the build of our nightly images
Resolves #11011
2022-03-30 12:41:37 -03:00
Bruno Oliveira da Silva
8cd2c97982 Fix the breaking changes introduced by setup-java 2022-03-30 11:53:00 -03:00
Bruno Oliveira da Silva
b09728762e Update to the latest version of the official actions used by Keycloak
Resolves #10971
2022-03-30 11:53:00 -03:00
Bruno Oliveira da Silva
7b10d02cbd Introduce an additional dependency scanner for Keycloak
Resolves #10807

Co-authored-by: Jon Koops <jonkoops@gmail.com>
2022-03-30 10:09:14 -03:00
vramik
8ff768b33b JPA map storage: Authentication session no-downtime store
Closes #9665
2022-03-30 13:43:35 +02:00
Marek Posolda
22a16ee899
OIDC RP-Initiated logout endpoint (#10887)
* OIDC RP-Initiated logout endpoint
Closes #10885

Co-Authored-By: Marek Posolda <mposolda@gmail.com>

* Review feedback

Co-authored-by: Douglas Palmer <dpalmer@redhat.com>
2022-03-30 11:55:26 +02:00
Andrea Peruffo
da5db5a813
Fix NPEs during realm import (#10962)
Closes #10961
2022-03-29 21:48:37 +02:00
Marcelo Daniel Silva Sales
2b996b12a1
update javadoc for client secret rotation REST service (#10990)
Closes #10610
2022-03-29 21:46:54 +02:00
Martin Kanis
3356e8b098 Convert login failure entities into interface 2022-03-29 18:40:53 +02:00
Stefan Guilhen
d8bee26ec8 Implement AbstractClientEntity.isUpdated to account for changes in associated protocol mappers.
Closes #10927
2022-03-29 18:35:28 +02:00
Bruno Oliveira da Silva
19e55650a2
Automatic scan Keycloak docker image for vulnerabilities (#10777)
* Automatic scan Keycloak docker image for vulnerabilities

The changes proposed here will run Trivy scanner twice a day to search
vulnerabilities into our main images.

Resolves #10764

Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>

* Update .github/workflows/trivy-analysis.yml

Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Co-authored-by: Stian Thorgersen <stian@redhat.com>
2022-03-29 16:17:20 +02:00
Stian Thorgersen
e58e8ef252
Add issue template for tasks (#10912) 2022-03-29 15:47:35 +02:00
Dominik Guhr
a5c3d035b9 Fixes showing sensitive values like passwords and irritating error msg when key used is unknown
Only first unknown option is shown for now. May be iterated in the future.

Closes #10050

Closes #10051
2022-03-29 10:37:07 -03:00
Dominik Guhr
0941a4709e Fixes windows configuration test
also fixes using ~ as database default for e.g. IDELauncher (does not work on all windows versions)

also fixes the HelpCommandTest, as approvalTests are now generated based on the OS the tests run

Closes #10246

Co-authored-by: Victor-Philipp Negoescu <victor-philipp.negoescu@iteratec.com>
2022-03-29 10:34:34 -03:00
Andrea Peruffo
e3935f669d
Run CI on main only on schedule (#10942) 2022-03-29 15:10:20 +02:00
rmartinc
755080d745 [#10894] SAML Adapters tests start failing in recent versions of EAP/wildfly 2022-03-29 12:31:09 +02:00
Marcelo Daniel Silva Sales
091b1472ce
Introduce client secret rotation dynamic registration (#10952)
Closes #10609
2022-03-28 20:39:11 +02:00
Alexander Schwartz
6a657e6472 Upgrading Hibernate in line with WildFly 26.0.1.Final to support building Keycloak with OpenJDK 17
Closes #9993
2022-03-25 20:11:14 +01:00
Alexander Schwartz
19e19c9dda
Build JavaDoc that matches the source version specified in the project. (#10928)
Also fail on errors, so we'll notice the missing JavaDocs next time.

Closes #9841
2022-03-25 12:07:53 +01:00
Konstantinos Georgilakis
99fa6275c1 KEYCLOAK-19313 configure the name format in Attribute Importer IdP Mapper 2022-03-25 09:42:22 +01:00
Tamás Bordák
ecd80e6f58 KEYCLOAK-12483 Add missing Hungarian translations 2022-03-25 09:35:46 +01:00
Stian Thorgersen
a0f747b509
Update README.md 2022-03-24 20:44:12 +01:00
Pedro Igor
e177f90299
Allow importing realms during startup (#10754)
Closes #9261
2022-03-24 14:35:09 +01:00
Robin Windey
eaf7c515f2 Fix typo in exception message 2022-03-24 12:43:33 +01:00
Andrea Peruffo
bf135c86ba
Remove extensions support from the operator CRD (#10848) 2022-03-24 11:00:19 +01:00
Kohei Tamura
05eb4b376d Update DefaultPicketLinkLogger.java 2022-03-24 10:28:49 +01:00
Kohei Tamura
2c94370e8e KEYCLOAK-19105 Fix to log the root cause of exception
Please refer to: https://issues.redhat.com/browse/KEYCLOAK-19105
2022-03-24 10:28:49 +01:00
Oskars Pakers
4e9e0563d5 KEYCLOAK-15976 Latvian language adjustments 2022-03-24 10:27:33 +01:00
Alexander Schwartz
3ebfc91b75 Reduce logging of errors due to the bounded queue
Closes #10588
2022-03-23 15:42:06 +01:00
Václav Muzikář
7d6c6fff17
Improve naming in serverConfiguration in the Keycloak CRD (#10847) 2022-03-23 13:51:27 +01:00
Takashi Norimatsu
9c01d819cb Client Policies : An executor rejecting all requests
Closes #9097
2022-03-23 12:45:38 +01:00
iingawal
b773857a80
Display email address in login-verify-email.ftl (#10870)
Closes #8873
2022-03-23 12:44:21 +01:00
Alexander Schwartz
78549fe024 Avoid duplicating parsing logic in ModelVersion
This now allows handling of the 999-SNAPSHOT version.

Closes #10879
2022-03-23 10:34:43 +01:00
Marcelo Daniel Silva Sales
6efa45f93e
Update secret rotation when the policy is enabled using jwt (#10853)
Closes #10666
2022-03-23 08:25:58 +01:00
Martin Kanis
e493b08fa7 Add expiration field to root authentication session 2022-03-23 07:47:47 +01:00
Stian Thorgersen
f8ded02bef
Update release.sh 2022-03-23 07:21:54 +01:00