Commit graph

24537 commits

Author SHA1 Message Date
Jon Koops
ab1d1ae3d5
Move all JavaScript projects into single PNPM workspace (#24537)
Closes #24571

Signed-off-by: Jon Koops <jonkoops@gmail.com>
2024-04-02 16:14:58 +02:00
Clemens Zagler
b44252fde9 authz/client: Fix getPermissions returning wrong type
Due to an issue with runtime type erasure, getPermissions returned a
List<LinkedHashSet> instead of List<Permission>.
Fixed and added test to catch this

Closes #16520

Signed-off-by: Clemens Zagler <c.zagler@noi.bz.it>
2024-04-02 11:09:43 -03:00
Erik Jan de Wit
c86620963d
fixed change calculation (#28342)
fixes: #28187

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2024-04-02 14:03:47 +02:00
rmartinc
c5bf161cfb Display the webauthn sig-alg in computer language in the template
Closes #27824

Signed-off-by: rmartinc <rmartinc@redhat.com>
2024-04-02 13:46:36 +02:00
Nicola Beghin
a7e5c861cc fixes SAMLIdentityProvider not honoring SamlAuthenticationPreprocessor (keycloak/keycloak#27875)
Signed-off-by: Nicola Beghin <nicolabeghin@gmail.com>
2024-04-02 10:58:15 +02:00
Giuseppe Graziano
fe06df67c2 New default client scope for 'basic' claims with 'auth_time' protocol mapper
Closes #27623

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
2024-04-02 08:44:28 +02:00
Steve Hawkins
96672a2a6d fix: providing a direct reference to close
closes: #27681

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-04-01 15:32:36 -03:00
Stefan Guilhen
2ca59d4141 Align isEnabled in MSAD mappers to how other properties are processed in UserAttributeLDAPStorageMapper
- user model is updated by onImport with the enabled/disabled status of the LDAP user
- a config option always.read.enabled.value.from.ldap was introduced, in synch to what we have in UserAttributeLDAPStorageMapper
- isEnabled checks the flag to decide if it should always retrieve the value from LDAP, or return the local value.
- setEnabled first updates the LDAP tx, and then calls the delegate to avoid issue #24201

Closes #26695
Closed #24201

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
2024-04-01 08:20:35 -03:00
Steven Hawkins
e9ad9d0564
fix: replace aesh with picocli (#27458)
* fix: replace aesh with picocli

closes: #27388

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update integration/client-cli/admin-cli/src/main/java/org/keycloak/client/admin/cli/commands/AbstractRequestCmd.java

Co-authored-by: Martin Bartoš <mabartos@redhat.com>

* splitting the error handling for password input

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* adding a change note about kcadm

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update docs/documentation/upgrading/topics/changes/changes-25_0_0.adoc

Co-authored-by: Martin Bartoš <mabartos@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2024-03-28 14:34:06 +01:00
dependabot[bot]
a74d833f22 Bump aquasecurity/trivy-action from 0.18.0 to 0.19.0
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.18.0 to 0.19.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](062f259268...d710430a67)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-03-28 09:05:39 -03:00
dependabot[bot]
440f05e593
Bump vite-plugin-dts from 3.7.3 to 3.8.1 in /js (#28267)
Bumps [vite-plugin-dts](https://github.com/qmhc/vite-plugin-dts) from 3.7.3 to 3.8.1.
- [Release notes](https://github.com/qmhc/vite-plugin-dts/releases)
- [Changelog](https://github.com/qmhc/vite-plugin-dts/blob/main/CHANGELOG.md)
- [Commits](https://github.com/qmhc/vite-plugin-dts/compare/v3.7.3...v3.8.1)

---
updated-dependencies:
- dependency-name: vite-plugin-dts
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-28 11:20:24 +00:00
dependabot[bot]
05382e8881
Bump react-hook-form from 7.51.1 to 7.51.2 in /js (#28229)
Bumps [react-hook-form](https://github.com/react-hook-form/react-hook-form) from 7.51.1 to 7.51.2.
- [Release notes](https://github.com/react-hook-form/react-hook-form/releases)
- [Changelog](https://github.com/react-hook-form/react-hook-form/blob/master/CHANGELOG.md)
- [Commits](https://github.com/react-hook-form/react-hook-form/compare/v7.51.1...v7.51.2)

---
updated-dependencies:
- dependency-name: react-hook-form
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-28 11:59:42 +01:00
dependabot[bot]
baceae1227
Bump rollup (#28259)
Bumps [rollup](https://github.com/rollup/rollup) from 4.13.0 to 4.13.1.
- [Release notes](https://github.com/rollup/rollup/releases)
- [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md)
- [Commits](https://github.com/rollup/rollup/compare/v4.13.0...v4.13.1)

---
updated-dependencies:
- dependency-name: rollup
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-28 11:19:40 +01:00
dependabot[bot]
87fe74214c
Bump rollup from 4.13.0 to 4.13.1 in /js (#28260)
Bumps [rollup](https://github.com/rollup/rollup) from 4.13.0 to 4.13.1.
- [Release notes](https://github.com/rollup/rollup/releases)
- [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md)
- [Commits](https://github.com/rollup/rollup/compare/v4.13.0...v4.13.1)

---
updated-dependencies:
- dependency-name: rollup
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-28 11:16:12 +01:00
dependabot[bot]
1bca11c9ba
Bump mocha from 10.3.0 to 10.4.0 in /js (#28228)
Bumps [mocha](https://github.com/mochajs/mocha) from 10.3.0 to 10.4.0.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v10.3.0...v10.4.0)

---
updated-dependencies:
- dependency-name: mocha
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-28 11:14:46 +01:00
Alexander Schwartz
c580c88c93
Persist online sessions to the database (#27977)
Adding two feature toggles for new code paths to store online sessions in the existing offline sessions table. Separate the code which is due to be changed in the next iteration in new classes/providers which used instead of the old one.

Closes #27976

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Signed-off-by: Michal Hajas <mhajas@redhat.com>
Co-authored-by: Michal Hajas <mhajas@redhat.com>
2024-03-28 09:17:07 +01:00
Gilvan Filho
757c524cc5 Password policy for not having username in the password
closes #27643

Signed-off-by: Gilvan Filho <gfilho@redhat.com>
2024-03-28 08:29:03 +01:00
Pedro Igor
b9a7152a29 Avoid commiting the transaction prematurely when creating users through the User API
Closes #28217

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2024-03-27 19:16:09 -03:00
john-gom
fe538cbb72
Use a native select for the language list
Closes #27997

Signed-off-by: John Gomersall <thegoms@gmail.com>
2024-03-27 18:55:06 +01:00
Steven Hawkins
26dc81a92f
fix: ensuring test state is clean between tests (#27904)
closes: #27080

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-03-27 15:23:26 +01:00
Steven Hawkins
8407ae3bc5
fix: remove the env values from echos (#28184)
closes: #28090

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-03-27 09:33:16 -04:00
Lex Cao
a53cacc0a7 Fire logout event when logout other sessions (#26658)
Closes #26658

Signed-off-by: Lex Cao <lexcao@foxmail.com>
2024-03-27 11:13:48 +01:00
Jon Koops
3382e16954
Remove Account Console version 2 (#27510)
Closes #19664

Signed-off-by: Jon Koops <jonkoops@gmail.com>
2024-03-27 10:53:28 +01:00
Tomas Ondrusko
3160116a56
Remove Twitter workaround (#28232)
Relates to #23252

Signed-off-by: Tomas Ondrusko <tondrusk@redhat.com>
2024-03-27 10:34:26 +01:00
Steven Hawkins
be32f8b1bf
fix: limit the use of Resteasy to the KeycloakSession (#28150)
* fix: limit the use of Resteasy to the KeycloakSession

contextualizes other state to the KeycloakSession

close: #28152
2024-03-26 13:43:41 -04:00
vramik
fa1571f231 Map organization metadata when issuing tokens for OIDC clients acting on behalf of an organization member
Closes #27993

Signed-off-by: vramik <vramik@redhat.com>
2024-03-26 14:02:09 -03:00
vramik
e7bc796553 When the realm has registrationEmailAsUsername set to false (default) it's not possible to add a member to an org
Closes #28216

Signed-off-by: vramik <vramik@redhat.com>
2024-03-26 14:02:09 -03:00
Maximilian Klute
c1d7360980
add 2 translations to messages_de.properties for federatedIdentity
add translation for federatedIdentityUnavailableMessage
and federatedIdentityUnmatchedEssentialClaimMessag in messages_de.properties

Closes #28035

Signed-off-by: TuxMK <maximilian.mk97@gmail.com>
2024-03-26 16:41:20 +00:00
Anh Pham
0286e7ad5d
To support the Istio choose protocol, add the port name to the discovery service. (#27940)
Signed-off-by: Anh Pham <anhpn.uit@gmail.com>
Co-authored-by: Anh Pham <anh.pham4@hitachids.com>
2024-03-26 17:36:53 +01:00
Alexander Schwartz
305dd5812e Make use of attributes consistent between old docs and new guides
Closes #28215

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-03-26 17:07:54 +01:00
Pedro Igor
a470711dfb Resolve the user federation link as null when decorating the user profile metadata in the LDAP provider
Closes #28100

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2024-03-26 10:14:49 -03:00
kouki-miura
6af512e6ee
Fix the message for "goups" and add "groupsHelp" (#27964)
Closes #27962

Closes #27965

Signed-off-by: kouki-miura2 <koki_m@i.softbank.jp>
2024-03-26 08:20:49 -04:00
Jon Koops
ed7815401f
Do not nest components in UserCredentials (#27775)
Signed-off-by: Jon Koops <jonkoops@gmail.com>
2024-03-26 08:15:00 -04:00
Hynek Mlnarik
2f0a9ba547 Ensure referrer link is shown while navigating
Fixes: #27622
Signed-off-by: Hynek Mlnarik <hmlnarik@redhat.com>
2024-03-26 09:40:27 +01:00
Erik Jan de Wit
9038353629
only use the value on the server (#28169)
fixes: #26364

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2024-03-25 09:05:34 -04:00
Stan Silvert
7dfc263052
Add Token setting Lifetime of Request URI for PAR (#28155)
* Add Token setting Lifetime of Request URI for PAR

Signed-off-by: Stan Silvert <ssilvert@redhat.com>

* Fix test.

Signed-off-by: Stan Silvert <ssilvert@redhat.com>

---------

Signed-off-by: Stan Silvert <ssilvert@redhat.com>
2024-03-25 08:33:39 -04:00
dependabot[bot]
270be86397 Bump vite-plugin-lib-inject-css from 2.0.0 to 2.0.1 in /js
Bumps [vite-plugin-lib-inject-css](https://github.com/emosheeep/vite-plugin-lib-inject-css) from 2.0.0 to 2.0.1.
- [Release notes](https://github.com/emosheeep/vite-plugin-lib-inject-css/releases)
- [Changelog](https://github.com/emosheeep/vite-plugin-lib-inject-css/blob/master/CHANGELOG.md)
- [Commits](https://github.com/emosheeep/vite-plugin-lib-inject-css/compare/vite-plugin-lib-inject-css@2.0.0...vite-plugin-lib-inject-css@2.0.1)

---
updated-dependencies:
- dependency-name: vite-plugin-lib-inject-css
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-03-25 09:28:10 +01:00
dependabot[bot]
6d0cb0be07 Bump vite from 5.2.2 to 5.2.6 in /js
Bumps [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) from 5.2.2 to 5.2.6.
- [Release notes](https://github.com/vitejs/vite/releases)
- [Changelog](https://github.com/vitejs/vite/blob/main/packages/vite/CHANGELOG.md)
- [Commits](https://github.com/vitejs/vite/commits/v5.2.6/packages/vite)

---
updated-dependencies:
- dependency-name: vite
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-03-25 09:04:47 +01:00
Erik Jan de Wit
e9a1a6b982
use ui-shared (#27908)
Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2024-03-22 16:56:17 +01:00
Erik Jan de Wit
4fb2f73b2c
migrated to use ui-shared (#27849)
* migrated to use ui-shared

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* fixed tests

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* fixed tests

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

---------

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2024-03-22 14:07:25 +01:00
Stian Thorgersen
c3a98ae387
Use Argon2 as default password hashing algorithm (#28162)
Closes #28161

Signed-off-by: stianst <stianst@gmail.com>
2024-03-22 13:04:14 +00:00
Lukas Hanusovsky
31293d36e8
surefire reports new release 24
Closes #28167

Signed-off-by: Lukas Hanusovsky <lhanusov@redhat.com>
2024-03-22 12:25:31 +00:00
rmartinc
220564c7ba ORA-01450 error for index IDX_CLIENT_ATT_BY_NAME_VALUE in oracle when MAX_STRING_SIZE is EXTENDED
Closes #27967

Signed-off-by: rmartinc <rmartinc@redhat.com>
2024-03-22 08:48:01 -03:00
Stian Thorgersen
8cbd39083e
Default password hashing algorithm should be set to default password hash provider (#28128)
Closes #28120

Signed-off-by: stianst <stianst@gmail.com>
2024-03-22 12:44:11 +01:00
Hynek Mlnarik
b01cc231a0 Fix dev env
Fixes: #28143
Signed-off-by: Hynek Mlnarik <hmlnarik@redhat.com>
2024-03-22 12:41:28 +01:00
Erik Jan de Wit
b321c4b406
only start searching on enter and search button click (#28040)
fixes: #27917

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2024-03-22 12:06:43 +01:00
Erik Jan de Wit
3ad233b890
changed to use ui-shared (#27983)
Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2024-03-22 12:06:02 +01:00
Erik Jan de Wit
2d73c86306
changed to use ui-shared (#27996)
Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2024-03-22 11:47:06 +01:00
Erik Jan de Wit
53d52ecf15
changed to use ui-shared (#27933)
Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2024-03-22 11:27:09 +01:00
Erik Jan de Wit
5a99c558dc
changed to use ui-shared (#27919)
* changed to use ui-shared

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* doc: add keycloak cr truststores (#28015)

closes: #27892

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

---------

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Co-authored-by: Steven Hawkins <shawkins@redhat.com>
2024-03-22 11:26:47 +01:00