Alexander Schwartz
c3c728230d
Fix problem with "Unable to create message factory for SOAP: Unable to create SAAJ meta-factory: Provider com.sun.xml.messaging.saaj.soap.SAAJMetaFactoryImpl not found" when running SAML.
2023-04-27 13:36:54 +02:00
Alexander Schwartz
adb47ac874
Create workaround for "UnsupportedOperationException: compare() not implemented for EntityType"
...
Related to: #19321
2023-04-27 13:36:54 +02:00
Martin Bartoš
fb855538fa
Additional settings for JTA TX and Quarkus
2023-04-27 13:36:54 +02:00
Martin Bartoš
5b7e9a2603
Remove WF dependencies, add Jakarta SOAP, fix tests
...
---
Quarkus3 branch sync no. 13 (11.4.2023)
Resolved conflicts:
IdeaProjects/keycloak/quarkus/pom.xml - Modified
IdeaProjects/keycloak/quarkus/runtime/pom.xml - Modified
2023-04-27 13:36:54 +02:00
Martin Bartoš
9796e69d8d
Change default transaction type to JTA
2023-04-27 13:36:54 +02:00
Martin Bartoš
8584174099
Change default DB dialects
2023-04-27 13:36:54 +02:00
Martin Bartoš
bc43e4f435
Integrate Jakarta Mail API 2.1.0
2023-04-27 13:36:54 +02:00
vramik
acebf4616e
Remove JsonbPostgreSQL95Dialect
from quarkus.
...
Closes #16549
2023-04-27 13:36:54 +02:00
Peter Zaoral
0b4f40f89b
Quarkus3 branch sync no. 8
...
3.3.2023:
* renamed imports from javax to jakarta as a part of the migration from JavaEE to JakartaEE
Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
2023-04-27 13:36:54 +02:00
Martin Bartoš
a895cc1a60
Fix Quarkus IT tests for Quarkus 3
2023-04-27 13:36:54 +02:00
Martin Bartoš
64738ea708
Fix issues with JakartaEE Mail dependencies
...
This reverts commit da4644844ed88818c05d777460624403326ab01c
---
Quarkus3 branch sync no. 12 (31.3.2023)
Resolved conflicts:
keycloak/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/sessionlimits/UserSessionLimitsTest.java - Modified
2023-04-27 13:36:54 +02:00
Martin Bartoš
b1da7bd613
Revert Mail API
...
---
Quarkus3 branch sync no. 13 (11.4.2023)
Resolved conflicts:
keycloak/quarkus/pom.xml - Modified
---
Quarkus3 branch sync no. 12 (31.3.2023)
Resolved conflicts:
keycloak/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/sessionlimits/UserSessionLimitsTest.java - Modified
2023-04-27 13:36:54 +02:00
Peter Zaoral
4ff2de7f46
Quarkus3 branch sync
...
18.1.2023:
* applied Quarkus 3 OpenRewrite recipe
* fixed the parts that were missed by the script
Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
2023-04-27 13:36:54 +02:00
Martin Bartoš
40c38e0133
Fix dependencies in testsuite, adapters and Quarkus module
...
---
Quarkus3 branch sync no. 11 (24.3.2023)
Resolved conflicts:
keycloak/adapters/oidc/spring-security/pom.xml - Modified
2023-04-27 13:36:54 +02:00
Martin Bartoš
cecd059af2
WiP - Resolve failure with JakartaEE Tx and Infinispan/HotRod
...
---
Quarkus3 branch sync #1 (18.1.2023)
Resolved conflicts:
keycloak/quarkus/runtime/pom.xml - Modified
keycloak/quarkus/pom.xml - Modified
keycloak/quarkus/deployment/pom.xml - Modified
2023-04-27 13:36:54 +02:00
Martin Bartoš
6118e5cfb7
Use JakartaEE dependencies
...
---
Quarkus3 branch sync no. 14 (24.4.2023)
Resolved conflicts:
keycloak/pom.xml - Modified
---
Quarkus3 branch sync no. 5 (10.2.2023)
Resolved conflicts:
keycloak/pom.xml - Modified
2023-04-27 13:36:54 +02:00
Martin Bartoš
7cff857238
Migrate packages from javax.* to jakarta.*
...
---
Quarkus3 branch sync no. 14 (24.4.2023)
Resolved conflicts:
keycloak/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/federation/storage/ComponentExportImportTest.java - Modified
keycloak/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/admin/DeclarativeUserTest.java - Modified
keycloak/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/federation/storage/FederatedStorageExportImportTest.java - Modified
keycloak/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/admin/authentication/FlowTest.java - Modified
keycloak/services/src/main/java/org/keycloak/services/resources/admin/UserResource.java - Modified
---
Quarkus3 branch sync no. 13 (11.4.2023)
Resolved conflicts:
keycloak/testsuite/integration-arquillian/tests/base/src/main/java/org/keycloak/testsuite/pages/AccountTotpPage.java - Deleted
keycloak/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/federation/storage/BackwardsCompatibilityUserStorageTest.java - Modified
---
Quarkus3 branch sync no. 12 (31.3.2023)
Resolved conflicts:
keycloak/quarkus/runtime/src/main/java/org/keycloak/quarkus/runtime/services/resources/QuarkusWelcomeResource.java - Modified
keycloak/services/src/main/java/org/keycloak/protocol/saml/profile/util/Soap.java - Modified
keycloak/testsuite/integration-arquillian/tests/base/src/main/java/org/keycloak/testsuite/util/UserInfoClientUtil.java - Modified
keycloak/services/src/main/java/org/keycloak/protocol/oidc/endpoints/UserInfoEndpoint.java - Modified
keycloak/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/sessionlimits/UserSessionLimitsTest.java - Modified
---
Quarkus3 branch sync no. 10 (17.3.2023)
Resolved conflicts:
keycloak/services/src/main/java/org/keycloak/protocol/saml/SamlProtocolUtils.java - Modified
---
Quarkus3 branch sync no. 9 (10.3.2023)
Resolved conflicts:
keycloak/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/federation/kerberos/AbstractKerberosSingleRealmTest.java - Modified
keycloak/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/forms/LoginTest.java - Modified
---
Quarkus3 branch sync no. 8 (3.3.2023)
Resolved conflicts:
keycloak/testsuite/integration-arquillian/tests/base/src/main/java/org/keycloak/testsuite/util/SamlClient.java Modified - Modified
keycloak/services/src/main/java/org/keycloak/protocol/saml/SamlProtocol.java - Modified
keycloak/examples/providers/authenticator/src/main/java/org/keycloak/examples/authenticator/SecretQuestionAuthenticator.java - Modified
---
Quarkus3 branch sync no. 6 (17.2.2023)
Resolved conflicts:
keycloak/integration/admin-client/src/main/java/org/keycloak/admin/client/resource/ComponentsResource.java - Modified
keycloak/testsuite/utils/src/main/java/org/keycloak/testsuite/KeycloakServer.java - Modified
keycloak/services/src/main/java/org/keycloak/protocol/saml/installation/SamlSPDescriptorClientInstallation.java - Modified
---
Quarkus3 branch sync no. 5 (10.2.2023)
Resolved conflicts:
/keycloak/services/src/main/java/org/keycloak/social/google/GoogleIdentityProvider.java Modified - Modified
keycloak/services/src/main/java/org/keycloak/social/twitter/TwitterIdentityProvider.java - Modified
---
Quarkus3 branch sync no. 4 (3.2.2023)
Resolved conflicts:
keycloak/quarkus/runtime/src/main/java/org/keycloak/quarkus/runtime/integration/jaxrs/QuarkusKeycloakApplication.java - Modified
---
Quarkus3 branch sync no. 1 (18.1.2023)
Resolved conflicts:
keycloak/testsuite/client/ClientPoliciesTest.java - Deleted
keycloak/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/client/ClientRegistrationTest.java - Modified
keycloak/model/map-jpa/src/main/java/org/keycloak/models/map/storage/jpa/JpaModelCriteriaBuilder.java - Modified
2023-04-27 13:36:54 +02:00
Peter Zaoral
78958ae434
Fix Base Testsuite timeouts on Windows
2023-04-25 16:01:08 +02:00
Alexander Schwartz
4f8d67c9fc
All commands now auto-reaugment except show-config
...
Closes #15782
Closes #15898
Closes #17498
2023-04-21 15:06:51 +02:00
Andre Nascimento
a7153af7b0
Port of the custom extension 'Hostname Debug Tool' to Keycloak.
...
Co-authored-by: stianst <stian@redhat.com>
Closes #15910
2023-04-21 13:53:33 +02:00
Alex Szczuczko
edaa84b1e5
Build the operator container via Dockerfile ( #19642 )
...
Closes #16967
2023-04-21 08:32:29 +02:00
Pedro Igor
13f97a799e
Switch to quarkus-extension-maven-plugin
...
Closes #19560
2023-04-17 15:47:12 +02:00
Jon Koops
a2eb619e0e
Include Account Console version 3 as a theme ( #19641 )
2023-04-13 09:41:40 -04:00
mposolda
863d28e232
Promote FIPS 140-2 to supported in Keycloak 22
...
closes #17234
2023-04-12 15:29:54 +02:00
Pedro Igor
83676bf927
Extract JUnit5 support in the distributoin testsuite to a separate module
...
Closes #19552
2023-04-11 10:48:56 +02:00
Sebastian Schuster
615dc89e13
14613 increase max URI and header length to Wildfly defaults ( #19551 )
2023-04-05 18:21:53 +00:00
Václav Muzikář
d540f449f0
Upgrade agroal ( #17642 )
...
Closes #17161
2023-04-04 20:21:42 +02:00
Sebastian Schuster
1c9992fdae
Removed lots of unnecessary quotes and allowed passing quoted argument values
...
Closes #16189
Closes #16319
2023-04-04 11:53:47 -03:00
mposolda
c6f13363b9
Add nashorn javascript engine to Keycloak server
...
closes #17671
2023-04-04 14:56:46 +02:00
Pedro Igor
d857ea8ec2
Removing custom classloader and allow loading drivers at runtime
...
Closes #13205
Co-authored-by: Brett Lounsbury <brett.lounsbury@nasdaq.com>
2023-03-31 18:05:55 +02:00
sbrajchuk
5202ba0245
Set default object store directory for quarkus transaction-manager via application.properties
2023-03-30 17:24:04 +02:00
Pedro Igor
cda0c9dce0
Avoid initing the profile multiple times during re-augmentation
...
Closes keycloak#19324
2023-03-27 14:39:48 -03:00
Pedro Hos
aa9744246c
NPE on welcome page when 'spi-theme-default' doesn't exists #15476
...
closes #15476
2023-03-27 09:23:08 +02:00
Alexander Schwartz
251f6151e8
Rework the Import SPI to be configurable via the Config API
...
Also rework the export/import CLI for Quarkus, so that runtime options are available.
Closes #17663
2023-03-24 15:28:55 -03:00
Václav Muzikář
c366901224
Fix dist build race condition
...
Closes #19251
2023-03-22 18:44:54 -03:00
Alexander Schwartz
513bb809f3
Add a map storage global locking implementation for JPA
...
Closes #14734
2023-03-21 08:21:11 +01:00
rmartinc
bef0a4a6f1
Check frontendUrl in the hostname providers
...
Closes https://github.com/keycloak/keycloak/issues/17686
2023-03-20 18:54:58 -03:00
Thomas Darimont
ce1e0a65e7
Add keycloak-rest-admin-ui-ext to quarkus app ( #17650 )
...
Fixes #17649
2023-03-14 14:35:08 +00:00
Jon Koops
96aa4b3394
Add Maven build for the Admin UI ( #17552 )
2023-03-13 18:16:12 +00:00
Simon Bäurle
4c4b266cb4
#16226 explicitly set UTF-8 as stdin and stdout encoding
2023-03-13 14:01:40 +01:00
Pedro Igor
af475ffe23
Fixing classloading issue due to the curated application being eagerly closed
2023-03-13 09:34:49 +01:00
vramik
31e4c5cb7e
Add storage-jpa-db
property into Quarkus. Distinguish postgres and crdb for jpa map store.
...
Closes #17305
2023-03-09 11:09:56 +01:00
mposolda
bc0e2d04b7
Make Keycloak container working on FIPS environment - adding sqlite-libs package back to the dist
...
closes #17253
2023-03-09 10:38:26 +01:00
Alexander Schwartz
4cf5c11020
Fix start-dev mode on Windows by avoiding backslashes escaping expressions
...
Closes #17413
2023-03-07 10:38:43 -03:00
Alexander Schwartz
f6f179eaca
Rework the export to use CLI options and property mappers
...
Also, adding the wiring to support Model tests for the export.
Closes #13613
2023-03-07 08:22:12 +01:00
Jon Koops
6d2e57f93a
Move Keycloak JS into the NPM workspace ( #17401 )
2023-03-03 13:56:53 +01:00
Jon Koops
972ebb9650
Use a valid SemVer format for the SNAPSHOT version ( #17334 )
...
* Use a valid SemVer format for the SNAPSHOT version
* Update pom.xml
* Update pom.xml
---------
Co-authored-by: Stian Thorgersen <stianst@gmail.com>
Co-authored-by: Stian Thorgersen <stian@redhat.com>
2023-03-03 11:11:44 +01:00
hanouard
4a96afb374
Removing nonexistent path '../lib/bootstrap/*' from the classpath ( #15914 )
...
Closes #15911
2023-03-01 16:14:19 -03:00
Alexander Schwartz
42f66f2c6f
Avoid recording metrics for http server endpoints while they contain resource IDs
...
Closes #17281
2023-03-01 09:58:30 +01:00
Pedro Igor
9874da150e
Avoid resolving expressions twice but rely on MP config expression support
...
Closes #16573
2023-03-01 09:22:27 +01:00
Joerg Matysiak
8a2d645dd4
Avoid internal server error when root path and non-appliation root path are both set and the wrong metrics/health endpoint is called.
...
Fixes #17166
Avoid internal server error when root path and non-appliation root path are both set and the wrong metrics/health endpoint is called.
Fixes #17166
2023-02-27 11:14:10 -03:00
Pedro Igor
2b98fcdecb
Support for standard Forwarded header
...
Closes #11580
2023-02-22 19:28:04 +01:00
rmartinc
f91ac2970d
Polish fips-mode switch for preview ( #17228 )
...
* Polish fips-mode switch for preview
Closes #17208 #17210
Co-authored-by: mposolda <mposolda@gmail.com>
2023-02-22 12:12:52 +01:00
mposolda
4f068fcdcc
Make https-trust-store-type set to bcfks by default in strict-mode
...
Closes #17119
2023-02-16 08:00:21 -03:00
Alexander Schwartz
e76418e3de
Removing unused code, as JPA Map storage always uses JTA nowadays
...
Closes #13222
2023-02-16 11:08:37 +01:00
Alexander Schwartz
febe134d5b
Make the event listeners specific to the persistence unit
...
Closes #13219
2023-02-16 11:08:15 +01:00
Pedro Igor
3be2775f9e
Do not enable storage chm by default if db option is set
2023-02-16 08:30:45 +01:00
rmartinc
fbc9177f27
Doublecheck if we need to override properties in java.security
...
Closes https://github.com/keycloak/keycloak/issues/16702
2023-02-15 12:33:48 +01:00
Michal Hajas
1f929c78af
Make lockTimeout more friendly for JPA map storage
...
Closes #16616
2023-02-15 10:38:18 +01:00
Alex Szczuczko
6319b462c7
Upgrade to ubi9 parent image
...
This PR switches the Quarkus Dockerfile to use `ubi9` parent images instead of `ubi8` ones.
ubi-null.sh has some minor changes to handle differences in RHEL 9. It's also been renamed.
Closes #17057
2023-02-14 09:46:58 +01:00
Václav Muzikář
a266cdcba9
Fix bug, add tests
2023-02-13 17:09:36 -03:00
Václav Muzikář
a57821ed80
Fix JDK 17 InaccessibleObjectException with infinispan
2023-02-13 17:09:36 -03:00
Pedro Igor
2059ffb219
Make sure the distribution is using FIPS providers
...
Closes #12428
2023-02-10 17:26:55 +01:00
Pedro Igor
22e256149c
Make it possible to run the embedded distribution in FIPS mode
...
Closes keycloak#16962
2023-02-09 16:14:01 -03:00
Alex Szczuczko
610e3044ad
Minimize the RPM content of the Quarkus container
...
Even though we use `ubi8-minimal` as the parent of our container, it
still has many RPMs installed that aren't necessary to run the Keycloak
server. Also, since the JDK RPM (that we install on top of
`ubi8-minimal`) is designed for general use, it pulls in more dependency
RPMs than it strictly needs to, like cups and avahi. Keycloak will never
need to access a printer itself!
Trimming down these excess RPMs will improve our CVE statistics with
automated scanners, and therefore let us perform fewer CVE rebuilds.
`ubi8-null.sh` uses the low-level `rpm` command to identify and forcibly
remove dependencies and operating system files that are not required to
boot our Quarkus-based server. This includes `microdnf` and `rpm`
itself! I have preserved bash however, so it's still possible to debug
the container from a shell.
I've created an initial set of allow/disallow lists, that seems to pass
a smoke test (server boots, admin console works). This leaves 37
packages installed, with 96 removed relative to `ubi8-minimal`. We could
go more minimal than this, or less minimal if required. Trial and error
is required.
Closes #16902
2023-02-09 11:20:09 +01:00
vramik
fc9e9e6fda
Add support for file store configuration into Quarkus
...
Closes #16821
2023-02-08 14:49:53 +01:00
Stian Thorgersen
4782a85166
Remove old admin console feature ( #16861 )
...
* Remove old admin console feature
Closes #16860
* Update help txt files for Quarkus tests
2023-02-07 12:59:35 +01:00
Pedro Igor
263e86e434
Support paths without a beginning slash when setting the root path
...
Closes #16002
2023-02-02 17:41:22 +01:00
Pedro Igor
b5fb528508
Do not enable caching metrics by default and provide a guide
...
Closes #16751
2023-02-01 18:55:43 +01:00
Alexander Schwartz
c6aba2e3de
Make LockAcquiringTimeoutException a RuntimeException
...
Closes #16690
2023-01-31 08:21:32 +01:00
Alexander Schwartz
7933f0489d
Align startup of Quarkus with the regular startup to ensure boostrap locks are created.
...
Also fixing an issue where DBLockGlobalLockProviderFactory held on to an old session, which lead to a closed DB connection on Quarkus.
Closes #16642
2023-01-30 12:59:40 +01:00
mposolda
a804400c84
Added KERBEROS feature. Disable it when running tests on FIPS
...
closes #14966
2023-01-25 18:38:46 +01:00
Sebastian Schuster
54c34dc75b
15901 enabled Infinispan metrics
2023-01-25 04:26:35 -08:00
Stian Thorgersen
8d05895adb
Move Admin REST extension to main repository ( #16530 )
...
Closes #16529
2023-01-19 13:06:21 +01:00
Pedro Igor
33cb1ad7cd
Support runnning tests using an embedded distribution
...
Closes #16420
2023-01-13 12:03:36 -08:00
Pedro Igor
4d2f86202d
Remove Hashicorp Support
...
Closes #9144
2023-01-13 15:52:19 +01:00
Pedro Igor
6ac65f62d7
tests
2023-01-12 12:19:40 -08:00
Dominik Guhr
7398d7e1ed
initial impl of running export/import without serving
2023-01-12 12:19:40 -08:00
Pedro Igor
522bf1c0b0
Keep consistency when importing realms at startup when they are exported via the export command
...
Closes #16281
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2023-01-06 18:53:01 +01:00
Michal Hajas
6566b58be1
Introduce Infinispan GlobalLock implementation
...
Closes #14721
2023-01-05 16:58:44 +01:00
Hynek Mlnarik
071fc03f41
Move transaction processing into session close
...
Fixes : #15223
2023-01-05 16:12:32 +01:00
Martin Kanis
c0e103dc95
Replace old HotRod index annotation with new one
2022-12-21 12:50:08 +01:00
mposolda
36bd76957d
Make Keycloak FIPS working with OpenJDK 17 on FIPS enabled RHEL
...
Closes #15721
2022-12-20 21:03:55 +01:00
Alexander Schwartz
0fee33bb95
Normalize JVM heap usage in tests and handle OOM situations
...
Closes #16089
2022-12-20 13:26:07 +01:00
Alexander Schwartz
1d758fac2b
Adding CRDB into GHA for the new store ( #16021 )
...
The CockroachDB database is slower than PostgreSQL, therefore it will only run branches and nightly builds.
Closes #16020
2022-12-17 08:50:21 +01:00
Pedro Igor
4d00da2df7
Use git checkout to rever changes
...
Closes #15644
2022-12-15 13:46:48 -08:00
Pedro Igor
f32e012c11
Make it possible to set a custom user and cache providers when using legacy store
...
Closes #15008
2022-12-15 16:56:20 +01:00
Martin Bartoš
445e953501
Java 17 support not given
...
Fixes #15916
2022-12-14 11:59:50 -08:00
Stian Thorgersen
a5670af745
Keycloak CI workflow refactoring ( #15968 )
...
* Keycloak CI workflow refactoring
Closes #15861
* Update testsuite/integration-arquillian/tests/base/testsuites/base-suite.sh
Co-authored-by: Hynek Mlnařík <hmlnarik@users.noreply.github.com>
* Update testsuite/integration-arquillian/tests/base/testsuites/suite.sh
Co-authored-by: Hynek Mlnařík <hmlnarik@users.noreply.github.com>
* Update testsuite/integration-arquillian/tests/base/testsuites/suite.sh
Co-authored-by: Hynek Mlnařík <hmlnarik@users.noreply.github.com>
* Update CodeQL actions
Co-authored-by: Hynek Mlnařík <hmlnarik@users.noreply.github.com>
2022-12-14 16:12:23 +01:00
Pedro Igor
d27a5d5b42
Do not execute test methods before HTTPS listener is not ready ( #15984 )
...
Closes #15904
2022-12-14 07:47:43 +01:00
Pedro Igor
0c4ac62a5f
Disabling strict https if hostname is diasabled
...
Closes #15287
2022-12-12 09:10:39 -08:00
Pedro Igor
a861d633e2
Resolving dns names used from tests from local host file
...
Closes #15904
2022-12-12 02:35:59 -08:00
Alexander Schwartz
e4804de9e3
Changing Quarkus transaction handling for JPA map storage to JTA
...
This has been recommended as the supported way of transaction handling by the Quarkus team.
Adding handling of exceptions thrown when committing JTA.
Re-adding handling of exceptions when interacting with the entity manager, plus wrapping access to queries to map exceptions during auto-flushing.
Closes #13222
2022-12-09 10:07:05 -03:00
Peter Zaoral
1073a342cf
Cleanup dependencies and align with Quarkus
...
* aligned parent POM dependency versions with the Quarkus BOM
Closes #15325
Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
2022-12-09 09:10:30 -03:00
Pedro Igor
1673906a54
Improving quarkus testsuite execution time
...
Closes #13544
2022-12-05 15:06:36 +01:00
Sebastian Schuster
3c6e2c3c1e
15234 switch to micrometer metrics
2022-12-05 08:11:35 -03:00
Pedro Igor
168734b817
Removing references to request and response from Resteasy
...
Closes #15374
2022-12-01 08:38:24 -03:00
Stefan Guilhen
55b2162421
Create map-file module with empty implementations
...
Closes #15706
2022-11-29 12:58:55 +01:00
Pedro Igor
17bf092da6
Keycloak wrongly assumes that the default datasource is the first one
...
Closes #15608
2022-11-25 16:32:47 +01:00
Bruno Oliveira da Silva
c31ad8424c
Update to Quarkus 2.14.1.Final ( #15601 )
2022-11-23 16:00:52 +01:00