Commit graph

24618 commits

Author SHA1 Message Date
Jon Koops
d8a8b3f1be
Do not nest components in NewClientPolicy (#28549)
Signed-off-by: Jon Koops <jonkoops@gmail.com>
2024-04-09 14:58:26 +01:00
Michal Hajas
1bb5e14134 Use ReentrantLock instead of synchronized to avoid thread pinning
+ since the runSerialized mechanism is currently on the best effort basis it is possible there are concurrent executions if T1 obtained a lock T2 removed the lock and T3 created a new lock before T1 called putIfAbsent therefore I added a debug log detecting this situation

Signed-off-by: Michal Hajas <mhajas@redhat.com>
2024-04-09 14:55:21 +02:00
Alexander Schwartz
355901dfd8 Add a back-off period when replacing cache entries fails
Closes #28388

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-04-09 14:55:21 +02:00
Alexander Schwartz
63e7523a6d Avoid unnecessary updates to the sessions during refreshes of tokens
Closes #28388

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-04-09 14:55:21 +02:00
Alexander Schwartz
dc18bd4efb Avoid conflicts when writing to session stores by checking for concurrent requests within the JVM
Closes #28388

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-04-09 14:55:21 +02:00
gregbaroni
8140c76147
Update flow diagram to support branching edges for conditionals (#28481)
- If there is a conditional subflow, instead of creating nodes
for the start and end of the subflow, there will now be branching edges
for the condition nodes, representing the false and true cases.
- Adds an optional label attribute to the edges to support having
true and false labels for condition node edges.
- Modifies auto layout to reduce the amount of overlap that
occurs with the branching condition edges and labels.
- Also removed the startSubFlow check in the createNode method
since the start and end subflow nodes are always created by the
renderSubFlowNodes method.

Closes #28453

Signed-off-by: Greg Baroni <greg.baroni@appfolio.com>
2024-04-09 14:37:10 +02:00
Martin Bartoš
b2c88e9876
docs: Support management port for health and metrics (#28213)
Relates to #19334

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Václav Muzikář <vmuzikar@redhat.com>
2024-04-09 14:33:30 +02:00
Konstantinos Georgilakis
a40a953644 SAML element EncryptionMethod can consist any element
closes #12585

Signed-off-by: cgeorgilakis-grnet <cgeorgilakis@admin.grnet.gr>
2024-04-09 14:15:56 +02:00
Stijn Last
e9498079e0 LDAP: Show error message when groups synchronization fails
closes: #28436
Signed-off-by: Stijn Last <stijn.last@barco.com>
2024-04-09 09:10:19 -03:00
Martin Bartoš
3a1bca6517
Fix flaky ManagementDistTest (#28522)
Fixes #28509

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
2024-04-09 13:46:25 +02:00
Jon Koops
debccef24b
Migrate ESLint to 'flat' configuration (#28532)
Signed-off-by: Jon Koops <jonkoops@gmail.com>
2024-04-09 13:35:51 +02:00
Alexander Schwartz
3ba9a905c9 Provide histograms for http server metrics
Closes #28178

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-04-09 12:52:42 +02:00
Jon Koops
92f79142f4
Remove messages for Account Console v2 (#28544)
Signed-off-by: Jon Koops <jonkoops@gmail.com>
2024-04-09 10:49:10 +00:00
Stian Thorgersen
a499512f35
Set SameSite for all cookies (#28467)
Closes #28465

Signed-off-by: stianst <stianst@gmail.com>
2024-04-09 12:29:19 +02:00
Steve Hawkins
9afe3a2560 fix: changing max threads default
closes: #17483

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-04-09 12:14:56 +02:00
Václav Muzikář
e4987f10f5
Hostname SPI v2 (#26345)
* Hostname SPI v2

Closes: #26084

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>

* Fix HostnameV2DistTest#testServerFailsToStartWithoutHostnameSpecified

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>

* Address review comment

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>

* Partially revert the previous fix

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>

* Do not polish values

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>

* Remove filtering of denied categories

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>

---------

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
2024-04-09 11:25:19 +02:00
Jon Koops
9651af4a1c
Allow false to be set for pkceMethod option (#28347)
Closes #28335

Signed-off-by: Jon Koops <jonkoops@gmail.com>
2024-04-09 07:33:12 +00:00
vibrown
3fffc5182e Added ClientType implementation from Marek's prototype
Signed-off-by: vibrown <vibrown@redhat.com>

More updates

Signed-off-by: vibrown <vibrown@redhat.com>

Added client type logic from Marek's prototype

Signed-off-by: vibrown <vibrown@redhat.com>

updates

Signed-off-by: vibrown <vibrown@redhat.com>

updates

Signed-off-by: vibrown <vibrown@redhat.com>

updates

Signed-off-by: vibrown <vibrown@redhat.com>

Testing to see if skipRestart was cause of test failures in MR
2024-04-08 20:20:37 +02:00
Martin Bartoš
9c1790af68
Enable Syslog log handler (#28462)
* Enable syslog log handler

Closes #27544

Signed-off-by: Martin Bartoš <mabartos@redhat.com>

* Suggest an alternative to GELF

Signed-off-by: Martin Bartoš <mabartos@redhat.com>

---------

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
2024-04-08 17:38:20 +02:00
Erik Jan de Wit
1d8744e6c1
use subGroupCount to render subGroups (#28173)
* use subGroupCount to render subGroups

fixes: #28080
Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* PR review changes

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

---------

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2024-04-08 14:29:52 +02:00
Erik Jan de Wit
582da41f4f
added unique message for key provider name (#28504)
fixes: #28486

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2024-04-08 14:22:42 +02:00
Pedro Igor
52ba9b4b7f Make sure attribute metadata from user storage providers are added only for the provider associated with a federated user
Closes #28248

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2024-04-08 09:05:16 -03:00
dependabot[bot]
c4982a0e21
Bump @types/react from 18.2.65 to 18.2.74 (#28367)
Bumps [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react) from 18.2.65 to 18.2.74.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react)

---
updated-dependencies:
- dependency-name: "@types/react"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-08 09:42:48 +00:00
dependabot[bot]
b889fc3931 Bump @types/node from 20.12.4 to 20.12.5
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 20.12.4 to 20.12.5.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

---
updated-dependencies:
- dependency-name: "@types/node"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-04-08 10:33:10 +02:00
Erik Jan de Wit
9190114c60
use label function to fetch the translation (#28473)
* use label function to fetch the translation

fixes: #28443
Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* removed export from unWrap

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

---------

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2024-04-08 10:28:17 +02:00
dependabot[bot]
8455fbdeaf
Bump rollup from 4.14.0 to 4.14.1 (#28497)
Bumps [rollup](https://github.com/rollup/rollup) from 4.14.0 to 4.14.1.
- [Release notes](https://github.com/rollup/rollup/releases)
- [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md)
- [Commits](https://github.com/rollup/rollup/compare/v4.14.0...v4.14.1)

---
updated-dependencies:
- dependency-name: rollup
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-08 10:10:27 +02:00
Justin Tay
e765932df3 Skip unsupported keys in JWKS
Closes #16064

Signed-off-by: Justin Tay <49700559+justin-tay@users.noreply.github.com>
2024-04-08 08:42:31 +02:00
rmartinc
2b769e5129 Better management of the CSP header
Closes https://github.com/keycloak/keycloak/issues/24568

Signed-off-by: rmartinc <rmartinc@redhat.com>
2024-04-08 08:19:57 +02:00
Giuseppe Graziano
b4f791b632 Remove session_state from tokens
Closes #27624

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
2024-04-08 08:12:51 +02:00
MNaaz
811c70d136 Support for searching users based on search filter, enabled attribute, first, max Closes #27241
Signed-off-by: MNaaz <feminity2001@yahoo.com>
2024-04-05 12:10:15 -03:00
Jon Koops
d3c2475041
Upgrade admin and account console to PatternFly 5 (#28196)
Closes #21345
Closes #21344

Signed-off-by: Jon Koops <jonkoops@gmail.com>
Co-authored-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
Co-authored-by: Mark Franceschelli <mfrances@redhat.com>
Co-authored-by: Hynek Mlnařík <hmlnarik@redhat.com>
Co-authored-by: Agnieszka Gancarczyk <agancarc@redhat.com>
2024-04-05 16:37:05 +02:00
Gilvan Filho
96db7e3154 fix NotContainsUsernamePasswordPolicyProvider: reversed check
closes #28389

Signed-off-by: Gilvan Filho <gfilho@redhat.com>
2024-04-05 10:39:07 -03:00
Stian Thorgersen
b9feaec38e
Ignore all links to GitHub when checking external links in docs due to rate limiting issues (#28472)
Closes #28330

Signed-off-by: stianst <stianst@gmail.com>
2024-04-05 15:36:38 +02:00
Erik Jan de Wit
73e22b32c9
Truncate the clientId (#28406)
* Truncate the clientId

fixes: #28284

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* fxed tests

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

---------

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2024-04-05 13:56:30 +02:00
Jon Koops
3fda2c0444
Convert realms settings general tab to new form controls (#28464)
Signed-off-by: Jon Koops <jonkoops@gmail.com>
2024-04-05 10:55:25 +00:00
dependabot[bot]
a0cf09e899
Bump reactflow from 11.10.4 to 11.11.0 (#28456)
Bumps [reactflow](https://github.com/xyflow/xyflow/tree/HEAD/packages/reactflow) from 11.10.4 to 11.11.0.
- [Release notes](https://github.com/xyflow/xyflow/releases)
- [Changelog](https://github.com/xyflow/xyflow/blob/reactflow@11.11.0/packages/reactflow/CHANGELOG.md)
- [Commits](https://github.com/xyflow/xyflow/commits/reactflow@11.11.0/packages/reactflow)

---
updated-dependencies:
- dependency-name: reactflow
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-05 10:38:16 +02:00
dependabot[bot]
40b289294f
Bump @playwright/test from 1.42.1 to 1.43.0 (#28457)
Bumps [@playwright/test](https://github.com/microsoft/playwright) from 1.42.1 to 1.43.0.
- [Release notes](https://github.com/microsoft/playwright/releases)
- [Commits](https://github.com/microsoft/playwright/compare/v1.42.1...v1.43.0)

---
updated-dependencies:
- dependency-name: "@playwright/test"
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-05 10:37:57 +02:00
dependabot[bot]
0614d3ca40
Bump typescript from 5.4.3 to 5.4.4 (#28458)
Bumps [typescript](https://github.com/Microsoft/TypeScript) from 5.4.3 to 5.4.4.
- [Release notes](https://github.com/Microsoft/TypeScript/releases)
- [Changelog](https://github.com/microsoft/TypeScript/blob/main/azure-pipelines.release.yml)
- [Commits](https://github.com/Microsoft/TypeScript/compare/v5.4.3...v5.4.4)

---
updated-dependencies:
- dependency-name: typescript
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-05 10:37:47 +02:00
Alexander Schwartz
647bce49c8 Add error details to events to be able to track down root causes
Closes #28429

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-04-04 20:28:45 +02:00
Pedro Igor
8fb6d43e07 Do not export ids when exporting authorization settings
Closes #25975

Co-authored-by: 박시준 <sjpark@logblack.com>
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2024-04-04 19:26:03 +02:00
Peter Zaoral
ebeb001fe9 JAVA_OPTS are not set under Windows
* enabled the delayed expansion in order to propagate JAVA_OPTS outside the block

Closes #28207

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
2024-04-04 19:21:17 +02:00
David M. Lloyd
b5535ac970
Do not rely on boot module loader for finding module dependencies
The `Module.getBootModuleLoader()` API may be deprecated at some point, so use a safer alternative.

Closes #28448

Signed-off-by: David M. Lloyd <david.lloyd@redhat.com>
2024-04-04 19:20:43 +02:00
Steven Hawkins
54af571f1e
fix: removes default values from cache stack option (#28310)
* fix: removes default values from cache stack option

also adding a way to update expected files

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-04-04 17:08:48 +02:00
Jon Koops
7cbe609571
Filter dedicated client scopes when searching (#28433)
Closes #28431

Signed-off-by: Jon Koops <jonkoops@gmail.com>
2024-04-04 11:28:09 +00:00
Ryan Emerson
71eacdc1c5 Update HA Guide now that non-XA mode is the default. Fixes #28142
Signed-off-by: Ryan Emerson <remerson@redhat.com>
2024-04-04 13:15:42 +02:00
Ryan Emerson
9bf131b5fb HA guide erroneously refers to AWS Global Accelerator. Fixes #28174
Signed-off-by: Ryan Emerson <remerson@redhat.com>
2024-04-04 13:15:42 +02:00
Justin Tay
30cd40e097 Use realm default signature algorithm for id_token_signed_response_alg
Closes #9695

Signed-off-by: Justin Tay <49700559+justin-tay@users.noreply.github.com>
2024-04-04 11:37:28 +02:00
Alexander Schwartz
c1a471755d Fix lists to be rendered as expected
Closes #28377

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-04-04 11:16:57 +02:00
Justin Tay
89a5da1afd Allow empty key use in JWKS for client authentication
Closes #28004

Signed-off-by: Justin Tay <49700559+justin-tay@users.noreply.github.com>
2024-04-04 10:42:37 +02:00
Marek Posolda
335a10fead
Handle 'You are already logged in' for expired authentication sessions (#27793)
closes #24112

Signed-off-by: mposolda <mposolda@gmail.com>
2024-04-04 10:41:03 +02:00