Alexander Schwartz
9e257d4a01
Added warning when storage contains multi-valued attributes and Keycloak model doesn't support them.
...
Closes #9714
2022-01-26 15:40:00 +01:00
Pedro Igor
781ceb24fd
Add a quarkus.properties for unsupported configuration options
...
Closes #9682
2022-01-26 11:26:50 -03:00
Michal Hajas
de161d02b9
Store updated flag in the entity, not in the delegate
...
Closes #9774
2022-01-26 15:24:42 +01:00
Daniel Gozalo
4136bf7700
[ fixes #9750 ] Make sure a Dynamic scope isn't assignable to a client as a default scope, and only show non-dynamic scopes in the available client scopes client menu
2022-01-26 13:32:04 +01:00
Daniel Gozalo
dad51773ea
[ fixes #9223 ] - Create an internal representation of RAR that also handles Static and Dynamic Client Scopes
...
Parse scopes to RAR representation and validate them against the requested scopes in the AuthorizationEndpointChecker
Parse scopes as RAR representation and add the created context on the different cache models in order to store the state and make it available for mappers in the ClientSessionContext
Create a new AuthorizationRequestSpi to provide different implementations for either dynamic scopes or RAR requests parsing
Move the AuthorizationRequest objects to server-spi
Add the AuthorizationRequestContext property to the MapAuthenticationSessionEntity and configure MapAuthenticationSessionAdapter to access it
Remove the AuthorizationRequestContext object from the cache adapters and entities and instead recalculate the RAR representations from scopes every time
Refactor the way we parse dynamic scopes and put everything behind the DYNAMIC_SCOPES feature flag
Added a login test and added a function to get the requested client scopes, including the dynamic one, behind a feature flag
Add a new filter to the Access Token dynamic scopes to avoid adding scopes that are not permitted for a user
Add tests around Dynamic Scopes: replaying existing tests while enabling the DYNAMIC_SCOPES feature and adding a few more
Test how the server genereates the AuthorizationDetails object
Fix formatting, move classes to better packages and fix parent test class by making it Abstract
Match Dynamic scopes to Optional scopes only and fix tests
Avoid running these tests on remote auth servers
2022-01-26 13:19:23 +01:00
Dominik Guhr
af9d840ec1
Add section about recommended path exposures in reverse proxy ( #9752 )
...
Closes #9751
2022-01-26 09:02:25 +01:00
Václav Muzikář
6b485b8603
Baseline for Keycloak deployment in operator
2022-01-25 11:06:26 -03:00
Pedro Igor
d28b54e5d5
Hide Hasicorp Vault from CLI ( #9700 )
...
Closes #9688
2022-01-25 14:24:35 +01:00
Stian Thorgersen
194c95de58
Upgrade to WildFly 26.0.1 ( #9768 )
...
Closes #9767
2022-01-25 09:37:28 +01:00
andreaTP
90d6432d16
Proper kustomize setup for the operator
2022-01-24 13:13:16 -03:00
Erik Jan de Wit
db63cdd61c
Removed waits from realm test ( #1906 )
2022-01-24 15:17:55 +01:00
Erik Jan de Wit
c4724b21c8
added permission search ( #1890 )
2022-01-24 15:17:32 +01:00
dependabot[bot]
92c73a7fcc
Bump i18next from 21.6.6 to 21.6.7
...
Bumps [i18next](https://github.com/i18next/i18next ) from 21.6.6 to 21.6.7.
- [Release notes](https://github.com/i18next/i18next/releases )
- [Changelog](https://github.com/i18next/i18next/blob/master/CHANGELOG.md )
- [Commits](https://github.com/i18next/i18next/compare/v21.6.6...v21.6.7 )
---
updated-dependencies:
- dependency-name: i18next
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-01-24 12:56:27 +01:00
dependabot[bot]
6cfe7af127
Bump @patternfly/react-core from 4.188.0 to 4.192.7
...
Bumps [@patternfly/react-core](https://github.com/patternfly/patternfly-react ) from 4.188.0 to 4.192.7.
- [Release notes](https://github.com/patternfly/patternfly-react/releases )
- [Commits](https://github.com/patternfly/patternfly-react/compare/@patternfly/react-core@4.188.0...@patternfly/react-core@4.192.7 )
---
updated-dependencies:
- dependency-name: "@patternfly/react-core"
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-01-24 12:56:02 +01:00
dependabot[bot]
db9555327c
Bump @typescript-eslint/parser from 5.9.1 to 5.10.0
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.9.1 to 5.10.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.10.0/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-01-24 12:50:07 +01:00
dependabot[bot]
cbea7bd15f
Bump lint-staged from 12.1.7 to 12.3.1
...
Bumps [lint-staged](https://github.com/okonet/lint-staged ) from 12.1.7 to 12.3.1.
- [Release notes](https://github.com/okonet/lint-staged/releases )
- [Commits](https://github.com/okonet/lint-staged/compare/v12.1.7...v12.3.1 )
---
updated-dependencies:
- dependency-name: lint-staged
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-01-24 11:34:22 +01:00
dependabot[bot]
bca24361c2
Bump typescript from 4.5.4 to 4.5.5
...
Bumps [typescript](https://github.com/Microsoft/TypeScript ) from 4.5.4 to 4.5.5.
- [Release notes](https://github.com/Microsoft/TypeScript/releases )
- [Commits](https://github.com/Microsoft/TypeScript/compare/v4.5.4...v4.5.5 )
---
updated-dependencies:
- dependency-name: typescript
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-01-24 11:33:46 +01:00
dependabot[bot]
fc676fb997
Bump @keycloak/keycloak-admin-client from 17.0.0-dev.15 to 17.0.0-dev.17
...
Bumps [@keycloak/keycloak-admin-client](https://github.com/keycloak/keycloak-nodejs-admin-client ) from 17.0.0-dev.15 to 17.0.0-dev.17.
- [Release notes](https://github.com/keycloak/keycloak-nodejs-admin-client/releases )
- [Changelog](https://github.com/keycloak/keycloak-nodejs-admin-client/blob/main/tsconfig.release.json )
- [Commits](https://github.com/keycloak/keycloak-nodejs-admin-client/compare/v17.0.0-dev.15...v17.0.0-dev.17 )
---
updated-dependencies:
- dependency-name: "@keycloak/keycloak-admin-client"
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-01-24 11:32:08 +01:00
dependabot[bot]
d8e790ee3b
Bump @types/node from 17.0.8 to 17.0.10
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 17.0.8 to 17.0.10.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-01-24 11:31:53 +01:00
dependabot[bot]
567bb154c9
Bump @types/react-router-dom from 5.3.2 to 5.3.3
...
Bumps [@types/react-router-dom](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react-router-dom ) from 5.3.2 to 5.3.3.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react-router-dom )
---
updated-dependencies:
- dependency-name: "@types/react-router-dom"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-01-24 11:31:35 +01:00
dependabot[bot]
5df74abcf6
Bump @typescript-eslint/eslint-plugin from 5.9.1 to 5.10.0
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.9.1 to 5.10.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.10.0/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-01-24 11:28:57 +01:00
Hynek Mlnařík
ce9e9d4eb1
Include 16.1.0 in release notes ( #1375 )
...
Closes #1374
2022-01-24 07:47:26 +01:00
Jenny
dea54e674a
Clients: Authorization -> Evaluate tab ( #1861 )
2022-01-23 21:21:19 +01:00
Alexander Schwartz
e2ac7b38f4
Adding missing database constraints for clients in JPA map storage.
...
This should ensure consistency for the store even in the event of concurrent creation of clients by multiple callers.
Closes #9610
2022-01-23 20:34:28 +01:00
Pedro Igor
b53c5d5eee
Build command should not allow runtime options
...
Closes #9618
2022-01-23 16:30:48 -03:00
vramik
873a44459a
Convert MapClientScopeEntity to interface
...
Closes #9657
2022-01-23 16:56:25 +01:00
Christoph Leistert
e751626ac8
Closes #9418 : Admin UI: sort the realm localization texts alphabetically ( #9419 )
2022-01-21 10:49:22 -05:00
Erik Jan de Wit
109c255d90
Added the policy screens ( #1884 )
...
* initial policies tab
* added initial edit create screen
* removed switch in favour of mapping list
* added pickers
* added groups
* added regex
* added role select component
* added time
* added js type
* fixed create route
* fixed details
* added tests
* changed table header to required
* added user type
* added missing validation message
2022-01-21 15:10:36 +01:00
Thomas Darimont
438fc2865f
Fix embedded theme-resources lookup in Keycloak.X
...
Previously lookups for embedded theme-resources did not work for Keycloak.X because of a missing
`ClasspathThemeResourceProvider` registration.
This PR ensures that a `ClasspathThemeResourceProvider` is registered in Keycloak.X based deployments.
Added empty constructors to ClasspathThemeResourceProvider to enable dynamic instantiation by Quarkus.
Fixes #9653
2022-01-21 09:52:26 -03:00
Stian Thorgersen
510c482572
Use tools icon instead of lock for build options on all-config guide ( #9717 )
2022-01-21 13:31:14 +01:00
Pedro Igor
1b1e220236
Remove system property from help message ( #9694 )
...
Closes #9687
2022-01-21 13:22:21 +01:00
Bruno Oliveira da Silva
f2430c0994
Exclude some folders from our SAST analysis
...
Currently, the CodeQL scanner has been analyzing the whole
codebase,including folders like testsuite, or examples. Those folders
are not relevant from the security standpoint, considering that they do
not expose our users and customers to any risks. They are only relevant
in the context of our pipelines, but never used in production.
Closes #9631
2022-01-20 18:42:39 -03:00
Pedro Igor
7511725af4
GHA failing due to wrong scheme when downloading ISPN server
...
Closes #9696
2022-01-20 20:44:23 +01:00
Joaquim Fellmann
bdb7cf9b96
Quarkus relational database setup documentation error
...
Closes #9324
2022-01-20 14:57:55 -03:00
Martin Kanis
ddcabe61b2
KEYCLOAK-19571 Add indices to HotRodClientEntity fields
2022-01-20 17:46:47 +01:00
pravsjv
a6acc89bf3
Update LDAPOperationManager.java ( #9561 )
...
Update LDAPOperationManager.java
Closes #9560
2022-01-20 17:33:56 +01:00
Jenny
3f7a912c2a
Realm settings: Return user to Policies subtab ( #1823 )
...
* add function to go to policies subtab
* use routable tabs
* use new defaultLocation prop
* rebase, lint, and tests
* unskip
* fix cancel test
2022-01-20 10:34:58 -05:00
Stian Thorgersen
b8d3c12a08
Update layout for options in guides ( #9658 )
2022-01-20 14:21:23 +01:00
mposolda
3dd97f3f2f
Fix migration test
...
Closes #9550
2022-01-20 13:42:47 +01:00
Hynek Mlnařík
2877482e40
Limit time for running model tests
...
Workaround for #9648
2022-01-20 12:30:49 +01:00
vramik
7b89d151c1
KEYCLOAK-18565 JPA roles no-downtime store
2022-01-20 12:02:35 +01:00
Erik Jan de Wit
bd28a912dd
optimized realm loading and added current realm ( #1891 )
2022-01-20 11:20:35 +01:00
Guus der Kinderen
213b1f5042
Closes #9562 : Add DB index for UserEntity getRealmUserByServiceAccount
2022-01-20 09:52:54 +01:00
vramik
61fbb2fb2e
JPA-Map storage might loose writes due to missing locking mechanism
...
Closes #9411
2022-01-20 09:06:14 +01:00
Konstantinos Georgilakis
0c9ab32cf4
Fix scope bug in device authorization request
...
Closes #9617
2022-01-19 18:13:42 +01:00
vramik
22bcdcb630
MapRoleProvider could return also client roles when searching for realm roles
...
Closes #9587
2022-01-19 16:39:59 +01:00
Pedro Igor
0a9387ff4f
Unified configuration option format and renaming keycloak.properties to keycloak.conf
...
Closes #9606
2022-01-19 08:47:15 -03:00
Erik Jan de Wit
d5ecda9e74
added links to permission create ( #1885 )
2022-01-19 11:11:40 +01:00
Jon Koops
884102d83b
Make 'User Profile' tabs routable ( #1862 )
2022-01-19 10:41:52 +01:00
Jenny
b2b61c26ef
Fixes localization 500 error ( #1858 )
...
* fix localization crash
* add optional chain on themeTypes object
* add comment
2022-01-18 18:48:32 -05:00