libre.sh/keycloak-scim
2
0
Fork 0
Code Issues 14 Pull requests Releases Packages Activity Actions 6
15263 commits 4 branches 5 tags 480 MiB
Commit graph

15263 commits

This branch
This branch
All branches
Author SHA1 Message Date
Hynek Mlnarik
bb0eb899a7 Add ability to run arq testsuite with file store 
Fixes: #17032
 2023-02-15 10:17:23 +01:00
Stian Thorgersen
6cbe424916
Move some areas to core team in teams.yml (#17087) 2023-02-14 17:24:49 +01:00
Hynek Mlnarik
2665fb01a6 File storage: Fix path traversal 
Fixes: #17029
 2023-02-14 14:30:14 +01:00
Stian Thorgersen
2711606a70
Rename teams (#17082) 2023-02-14 14:12:09 +01:00
Stian Thorgersen
e518c0d657
Added mapping between team and area labels (#17079) 
* Added mapping between team and area labels

* Moved area/admin/cli to cloud native team
 2023-02-14 13:56:36 +01:00
Pedro Igor
9e46b9e43f Handling events after transaction completion using a separate session 
Closes #15656
 2023-02-14 13:10:57 +01:00
Alexander Schwartz
d4604984d0
Compatibility with Maven4 and parallel builds (#16312) 
Closes #16308
 2023-02-14 11:44:53 +01:00
Alex Szczuczko
6319b462c7 Upgrade to ubi9 parent image 
This PR switches the Quarkus Dockerfile to use `ubi9` parent images instead of `ubi8` ones.

ubi-null.sh has some minor changes to handle differences in RHEL 9. It's also been renamed.

Closes #17057
 2023-02-14 09:46:58 +01:00
Václav Muzikář
a266cdcba9 Fix bug, add tests 2023-02-13 17:09:36 -03:00
Václav Muzikář
a57821ed80 Fix JDK 17 InaccessibleObjectException with infinispan 2023-02-13 17:09:36 -03:00
dependabot[bot]
8155774518
Bump eslint from 8.33.0 to 8.34.0 in /js (#17048) 
Bumps [eslint](https://github.com/eslint/eslint) from 8.33.0 to 8.34.0.
- [Release notes](https://github.com/eslint/eslint/releases)
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md)
- [Commits](https://github.com/eslint/eslint/compare/v8.33.0...v8.34.0)

---
updated-dependencies:
- dependency-name: eslint
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-02-13 18:18:38 +01:00
dependabot[bot]
d9772e941c
Bump @types/node from 18.11.19 to 18.13.0 in /js (#17047) 
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 18.11.19 to 18.13.0.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

---
updated-dependencies:
- dependency-name: "@types/node"
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-02-13 18:18:09 +01:00
dependabot[bot]
203e89bb82
Bump wireit from 0.9.4 to 0.9.5 in /js (#17046) 
Bumps [wireit](https://github.com/google/wireit) from 0.9.4 to 0.9.5.
- [Release notes](https://github.com/google/wireit/releases)
- [Changelog](https://github.com/google/wireit/blob/main/CHANGELOG.md)
- [Commits](https://github.com/google/wireit/compare/v0.9.4...v0.9.5)

---
updated-dependencies:
- dependency-name: wireit
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-02-13 18:00:26 +01:00
dependabot[bot]
e784e06dbd
Bump camelize-ts from 2.2.0 to 2.3.0 in /js (#17049) 
Bumps [camelize-ts](https://github.com/kbrabrand/camelize-ts) from 2.2.0 to 2.3.0.
- [Release notes](https://github.com/kbrabrand/camelize-ts/releases)
- [Commits](https://github.com/kbrabrand/camelize-ts/compare/v2.2.0...v2.3.0)

---
updated-dependencies:
- dependency-name: camelize-ts
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-02-13 17:59:42 +01:00
dependabot[bot]
cf203669d3
Bump @typescript-eslint/parser from 5.50.0 to 5.51.0 in /js (#17051) 
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) from 5.50.0 to 5.51.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.51.0/packages/parser)

---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-02-13 17:59:13 +01:00
dependabot[bot]
aa66ddf248
Bump prettier from 2.8.3 to 2.8.4 in /js (#17050) 
Bumps [prettier](https://github.com/prettier/prettier) from 2.8.3 to 2.8.4.
- [Release notes](https://github.com/prettier/prettier/releases)
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md)
- [Commits](https://github.com/prettier/prettier/compare/2.8.3...2.8.4)

---
updated-dependencies:
- dependency-name: prettier
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-02-13 16:59:01 +00:00
dependabot[bot]
8f4f7fa575
Bump @typescript-eslint/eslint-plugin from 5.50.0 to 5.51.0 in /js (#17052) 
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) from 5.50.0 to 5.51.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.51.0/packages/eslint-plugin)

---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-02-13 17:55:53 +01:00
dependabot[bot]
97446d21fd
Bump lint-staged from 13.1.0 to 13.1.1 in /js (#17053) 
Bumps [lint-staged](https://github.com/okonet/lint-staged) from 13.1.0 to 13.1.1.
- [Release notes](https://github.com/okonet/lint-staged/releases)
- [Commits](https://github.com/okonet/lint-staged/compare/v13.1.0...v13.1.1)

---
updated-dependencies:
- dependency-name: lint-staged
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-02-13 17:55:31 +01:00
Marco Schmidlin
537be78455
Use redirectUri for the Cordova adapter (#17038) 2023-02-13 16:54:29 +01:00
Jon Koops
9d0bee9c59
Handle requests with a FormData payload (#17035) 2023-02-13 14:03:47 +01:00
Miquel Simon
48a22ff2f3
Added WebAuthn integration tests to CI workflow. (#16608) 2023-02-13 12:28:25 +00:00
Jon Koops
998b708c78
Implement client session statuses endpoint properly (#17033) 2023-02-13 13:12:08 +01:00
Christian Hörtnagl
ff71cbc4f3 * fix typos in javadoc 2023-02-13 08:53:47 +01:00
Alexander Schwartz
e03105e685
Align docs with AsciiDoc best practices for downstream processing (#16996) 
CIAM-5054
 2023-02-13 08:40:02 +01:00
Bruno Oliveira da Silva
686417ec29 Trivy Workflow failing with context deadline exceeded 
Closes #16974
 2023-02-13 04:26:44 -03:00
Martin Bartoš
e6f1e909d8
Recovery codes input error not displayed in the standardized way (#16922) 2023-02-12 01:09:16 +01:00
dependabot[bot]
3a99384bae
Bump github/codeql-action from 2.2.1 to 2.2.4 (#17006) 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.2.1 to 2.2.4.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v2.2.1...v2.2.4)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-02-11 20:26:44 +01:00
mposolda
3b44e989cb Doublecheck FIPS integration with container 
Closes #16891
 2023-02-10 16:01:35 -03:00
Pedro Igor
2059ffb219 Make sure the distribution is using FIPS providers 
Closes #12428
 2023-02-10 17:26:55 +01:00
Jon Koops
dc2c73bb30
Move NPM and Node.js setup into re-usable workflow (#16994) 2023-02-10 13:14:23 +00:00
laskasn
dc8b759c3d Use encryption keys rather than sig for crypto in SAML 
Closes #13606

Co-authored-by: mhajas <mhajas@redhat.com>
Co-authored-by: hmlnarik <hmlnarik@redhat.com>
 2023-02-10 12:06:49 +01:00
rmartinc
5b626231d9 Doublecheck if real FIPS host available in GH actions 
Closes https://github.com/keycloak/keycloak/issues/15069
 2023-02-10 11:56:35 +01:00
Pedro Igor
22e256149c Make it possible to run the embedded distribution in FIPS mode 
Closes keycloak#16962
 2023-02-09 16:14:01 -03:00
Stan Silvert
782a145e14
Add admin/client as an area selection when creating a new bug. (#16919) 
* Add admin/client as an area selection when creating a new bug.

* Add admin/client/node and admin/client/java
 2023-02-09 13:46:32 +01:00
Marek Posolda
9cfc1fdfa9
Reduce the redundant tests in fips-suite (#16970) 
Closes #16969
 2023-02-09 12:21:33 +01:00
Stefan Guilhen
1da6244ec0 Add retry logic to LoginActionsService#authenticate 
In addition to that, avoid adding cookies on each retry.

Closes #15849

Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2023-02-09 11:56:15 +01:00
Alex Szczuczko
610e3044ad Minimize the RPM content of the Quarkus container 
Even though we use `ubi8-minimal` as the parent of our container, it
still has many RPMs installed that aren't necessary to run the Keycloak
server. Also, since the JDK RPM (that we install on top of
`ubi8-minimal`) is designed for general use, it pulls in more dependency
RPMs than it strictly needs to, like cups and avahi. Keycloak will never
need to access a printer itself!

Trimming down these excess RPMs will improve our CVE statistics with
automated scanners, and therefore let us perform fewer CVE rebuilds.

`ubi8-null.sh` uses the low-level `rpm` command to identify and forcibly
remove dependencies and operating system files that are not required to
boot our Quarkus-based server. This includes `microdnf` and `rpm`
itself! I have preserved bash however, so it's still possible to debug
the container from a shell.

I've created an initial set of allow/disallow lists, that seems to pass
a smoke test (server boots, admin console works). This leaves 37
packages installed, with 96 removed relative to `ubi8-minimal`. We could
go more minimal than this, or less minimal if required. Trial and error
is required.

Closes #16902
 2023-02-09 11:20:09 +01:00
Stian Thorgersen
6e1a58adc6
Move getting started and migration guides to main repo (#16675) 
* Move getting started and migration guides to main repo

Closes #16575

* Fix copy images

* Remove images for Vue getting started that remains on website for now
 2023-02-09 10:29:41 +01:00
Pedro Igor
017ddc670b Removing references to old admin console test artifacts 2023-02-08 17:22:45 -03:00
Michael Edgar
9896efd288 Operator: use TLS Edge termination when back-end protocol is HTTP 
Fixes #16807

Signed-off-by: Michael Edgar <michael@xlate.io>
Co-authored-by: Václav Muzikář <vmuzikar@redhat.com>
 2023-02-08 16:07:43 +01:00
Pedro Igor
423fc6daba
Flaky test KcOidcBrokerTokenExchangeTest (#16914) 
Closes #16896
 2023-02-08 14:49:49 +00:00
Alexander Schwartz
9ecd589690
Update docs to enable downstream processing (#16595) 
Relates to: #16475
 2023-02-08 15:33:43 +01:00
Dmitry Telegin
5f39aeb590 Pre-authorization hook for client policies 
Closes #9017
 2023-02-08 15:06:32 +01:00
vramik
fc9e9e6fda Add support for file store configuration into Quarkus 
Closes #16821
 2023-02-08 14:49:53 +01:00
Stian Thorgersen
ce80c2b4f4
Remove common resources no longer needed after old admin console is removed (#16908) 
Closes #16863
 2023-02-08 11:56:55 +01:00
Stian Thorgersen
17083d1c0a
Remove translations for old admin console (#16905) 
Closes #15247
 2023-02-08 10:58:34 +01:00
Michal Hajas
6fa62e47db Leverage HotRod client provided transaction 
Closes #13280
 2023-02-08 10:26:30 +01:00
Stian Thorgersen
d3ba2ecbed
Remove old admin console theme (#16864) 
Closes #16862
 2023-02-08 09:22:39 +01:00
Pedro Igor
75824920aa Update proxy guide with information about session stickness 
Closes #16892
 2023-02-07 16:42:38 -03:00
Đặng Minh Dũng
d91eeac612 feat: support multi hd in GoogleIdentityProvider 
Signed-off-by: Đặng Minh Dũng <dungdm93@live.com>
 2023-02-07 11:32:35 -03:00