Commit graph

15248 commits

Author SHA1 Message Date
Marcelo Daniel Silva Sales
22713bc144
Incorrect error message OIDC client authentication (#14656)
closes #12162


Co-authored-by: Pedro Hos <pedro-hos@outlook.com>
2022-09-30 09:40:05 +02:00
Mark Andreev
581def56d6
Fix null username in ldap (#8717)
Closes #14667
2022-09-30 09:34:02 +02:00
dependabot[bot]
52f58b5f28 Bump github/codeql-action from 2.1.21 to 2.1.25
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.21 to 2.1.25.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v2.1.21...v2.1.25)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-09-29 10:19:30 -03:00
dependabot[bot]
bedfb81c3c Bump aquasecurity/trivy-action from 0.6.2 to 0.7.1
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.6.2 to 0.7.1.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](cb606dfdb0...d63413b0a4)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-09-29 06:01:03 -03:00
Bruno Oliveira da Silva
db34e9e2ce False alert - Arbitrary Code Execution vulnerability in org.keycloak:keycloak-saml-core
Resolves #14639
2022-09-29 05:53:29 -03:00
Václav Muzikář
20fa75f677 Upgrade Operator SDK version 2022-09-29 10:28:47 +02:00
Martin Kanis
42ad95af4d Stabilize testPersistenceMultipleNodesClientSessionsAtRandomNode model test 2022-09-27 21:01:35 +02:00
David Anderson
a8db79a68c
Introduce crypto module using Wildfly Elytron (#14415)
Closes #12702
2022-09-27 08:53:46 +02:00
Alexander Schwartz
be2deb0517 Modify RealmsAdminResource.importRealm to work with InputStream
Closes #13609
2022-09-26 20:58:08 +02:00
Pedro Igor
cff5cfb6df Avoid including user managed entities into the default PU
Closes #12442
2022-09-23 18:01:43 +02:00
Jon Koops
c56b69bbc9
Add proper variable declaration for AuthZ JS (#14561) 2022-09-23 11:17:16 -04:00
Hisanobu Okuda
53635e3317 KEYCLOAK-19132 SAML adapter config replacement with environment variables
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2022-09-23 13:15:16 +02:00
Pedro Igor
00e4c3567a Make it possible to switch between BC and BC-FIPS libraries
Closes #12424
2022-09-23 07:50:02 -03:00
Ivan Atanasov
4016dd95d2
Use temporary file to reduce the chance of serving partial gzipped resource (#14511)
Closes #14510
2022-09-23 07:51:41 +02:00
Paweł Walczak
b739878916
Fixed typo in --proxy example (#14539) 2022-09-23 07:43:03 +02:00
Alice Wood
55a660f50b enhance group search to allow searching for groups via attribute keycloak/keycloak#12964
Co-authored-by: Abhijeet Gandhewar <agandhew@redhat.com>
Co-authored-by: Michal Hajas <mhajas@redhat.com>
2022-09-19 15:19:36 +02:00
Takashi Norimatsu
0a832fc744 Intent support before issuing tokens (UK OpenBanking)
Closes #12883
2022-09-19 12:15:00 +02:00
Stian Thorgersen
603a55796d
Remove unused workflows (#14388) 2022-09-17 08:23:49 +02:00
Martin Bartoš
d4130b0c6b
Admin Console tests failing (#14404)
Fixes #10997
2022-09-17 08:23:19 +02:00
rmartinc
cc9326fcad
Delay LDAPObject creation until mandatory attributes are set (#14341)
Closes #14286
2022-09-16 20:35:50 +02:00
Stian Thorgersen
2252c65ec7
Update MAINTAINERS.md (#14461) 2022-09-16 15:08:09 +02:00
Dmitry Telegin
cc2117bf7c UserInfo endpoint not fully standards compliant
Closes #14184
2022-09-16 10:15:08 +02:00
Alexander Schwartz
f86b293cbd
Update GitHub actionbot to latest version (#14439)
Closes #14436
2022-09-16 09:55:03 +02:00
Benjamin Weimer
a8a3092df4 algin resteasy versions
* update keycloak-admin-client resteasy version to 4 as well
2022-09-15 11:18:28 -03:00
vramik
4f4dbd622a Ensure entity version is indexed
Closes #14161
2022-09-15 08:39:29 -03:00
Jon Koops
3d910bc7b0
Update Github Actionbot to latest version (#14426) 2022-09-15 12:40:57 +02:00
Pedro Igor
54c1f1b85a Upgrade Quarkus 2.12.2
Closes #14408
2022-09-14 15:36:50 -03:00
mposolda
47340e9318 Initial GH actions unit tests for crypto modules
Closes #14241
2022-09-14 15:51:59 +02:00
danielFesenmeyer
3af1134975 Update IDP link username when sync mode is "force"
Closes #13049
2022-09-14 08:02:17 -03:00
Pedro Igor
aea6d7da27 Avoid updating offline session refresh time during creation
Closes #14384
2022-09-14 07:36:23 -03:00
Martin Bartoš
ed3d003d65
Remove Legacy migration tests from testsuite (#14310)
Closes #14300
2022-09-14 11:29:53 +02:00
Lex Cao
45765d2e19
Fix syntax error from services.js (#14328)
Closes #14328
2022-09-14 07:41:40 +02:00
Václav Muzikář
e999aeeab8 Fix DefaultHostnameTest on Undertow 2022-09-13 14:41:23 -03:00
Alexander Schwartz
621da7b803 Credential validation shouldn't invalidate the user in the cache
Instead create a new instance of LegacyUserCredentialManager to ensure all calls are routed via the CacheAdapter and its SubjectCredentialManagerCacheAdapter.

Closes #14309
2022-09-13 09:36:19 -03:00
Martin Bartoš
aa5a4e3d84
Remove remote WildFly server from the testsuite (#14321)
Closes #14319
2022-09-13 12:49:40 +02:00
fwojnar
cee69e1abc
Remove Server Config Migration tests from testsuite (#14334)
Closes #14303

Co-authored-by: wojnarfilip <fwojnar@redhat.com>
2022-09-13 12:47:35 +02:00
fwojnar
a58f0593a6
Remove Clean Start test from testsuite (#14345)
Closes #14305

Co-authored-by: wojnarfilip <fwojnar@redhat.com>
2022-09-13 12:46:55 +02:00
Christian Lutz
9e41053587 [fixes #9287] Fix *-Capability OSGI manifest to provide ClaimInformationPointProviderFactory via service loader 2022-09-13 07:22:45 -03:00
Václav Muzikář
490590625d Fix listApplicationsThirdParty 2022-09-13 08:33:31 +02:00
Jurjan-Paul Medema
eb0124e3e1
Mapper option 'Aggregate attribute values' is now applied to group hierarchy (#7871)
Closes #11255
2022-09-12 13:34:28 +02:00
Stian Thorgersen
68140dfb1f
Update ci.yml (#14352) 2022-09-12 13:32:09 +02:00
vramik
3120848ef0 Unify package name format in jpa map store
Closes #14276
2022-09-12 13:03:17 +02:00
Stian Thorgersen
8d5c11a4a5
Enable test reporting for Foresight (#14333)
* Enable test reporting for Foresight

* Temporarily allow running CI on main

This is to allow generating more data for Foresight
2022-09-12 11:19:23 +02:00
Lex Cao
320320f419
Make post_logout_redirect_uri configurable for legacy admin UI (#14324)
Closes #14246
2022-09-12 11:12:38 +02:00
Jan Adriaan Leegwater
1f9b6d9151
Update messages_nl.properties (#14330) 2022-09-12 11:12:26 +02:00
Sebastian Schuster
cc8567e9f4 14294 fixed admin event expiration sql error 2022-09-12 09:15:47 +02:00
Christoph Leistert
7e5b45f999 Issue #8749: Add an option to control the order of the event query and admin event query 2022-09-11 21:30:12 +02:00
Alexander Schwartz
1d2d3e5ca5 Move UserFederatedStorageProvider into legacy module
Closes #13627
2022-09-11 18:37:45 +02:00
Thomas Darimont
962a685b7b KEYCLOAK-15773 Control availability of admin api and admin-console via feature flags
Inline profile checks for enabled admin-console to avoid issues during
static initialization with quarkus.

Potentially Re-enable admin-api feature if admin-console is enabled
via the admin/admin2 feature flag.

Add legacy admin console as deprecated feature flag
Throw exception if admin-api feature is disabled but admin-console is enabled

Adapt ProfileTest

Consider adminConsoleEnabled flag in QuarkusWelcomeResource
Fix check for Admin-Console / Admin-API feature dependency.

Add new features to approved help output files

Co-authored-by: Stian Thorgersen <stian@redhat.com>
Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
2022-09-09 18:18:51 -03:00
Pedro Igor
3518362002 Validate auth time when max_age is sent to brokered OPs
Closes #14146
2022-09-09 10:30:51 -03:00