Commit graph

14165 commits

Author SHA1 Message Date
Dominik Guhr
f247b07022 fixes admin console access using default https port without proxy
Closes #11083
2022-04-05 23:13:37 -03:00
Bruno Oliveira da Silva
36c58962d1 Update jackson-databind dependency to fix CVE-2020-36518
Resolves #11071
2022-04-05 09:31:28 -03:00
Pedro Igor
23c5199c0c
Allow overriding the host header using X-Forwarded-Host (#11021)
Closes #10997
2022-04-05 09:17:08 +02:00
Pedro Igor
2b5d68d645
Allow resoving theme resources from flat classpath (#10989)
Closes #10951
2022-04-05 09:16:20 +02:00
Jon Koops
e00c8d03ae
Use project version for keycloak-admin-ui (#11014) 2022-04-05 08:23:56 +02:00
thomasbeaujean
c522ce59da
typo on reverseproxy.adoc Keylcoak=>Keycloak (#11034) 2022-04-05 08:22:13 +02:00
Bruno Oliveira da Silva
adc5efcc90 CVE-2022-21724 vulnerability related to postgresql dependency
Resolves #10763
2022-04-04 13:47:51 -03:00
Michal Hajas
4c20388eb7 Remove SOAPException from SOAPBindingTest as RunOnServer cannot load it
Closes #11090
2022-04-04 15:53:55 +02:00
Michal Hajas
01e16a569d Remove usage of BiFunction from keycloak-core module
Closes #11091
2022-04-04 15:52:09 +02:00
Martin Kanis
395bd447f2 Hot Rod map storage: Login failure no-downtime store 2022-04-01 20:43:18 +02:00
Douglas Palmer
f57d0dd100
Automated tests for session limits authenticator (browser, direct grant, reset password) (#11046)
Closes #11003
2022-04-01 18:44:38 +02:00
Bruno Oliveira da Silva
cc947df828 Update Infinispan to 13.0.8 to fix vulnerabilities reported on XStream
Resolves #11063
2022-04-01 13:09:08 -03:00
Bruno Oliveira da Silva
f6aa2556c9 Update Kubernetes Client to 5.12.1
Resolves #11043
2022-04-01 11:39:18 -03:00
andreaTP
46fd33d689 Keycloak custom image with Operator 2022-04-01 10:41:07 -03:00
Harsha Reddy
0f93f77185
Add Wayfair to Adopters (#11042)
## Summary
Wayfair is the largest e-commerce home goods company in US and has adopted Keycloak for our Supplier login portal and our Internal Employee login.

## Changelog

### Added

* Wayfair to list of Adopters
2022-04-01 08:07:08 +02:00
Marek Posolda
c50f09da25
Webauthn tests logout fix (#11040)
Closes #11030
2022-04-01 08:06:39 +02:00
Andrea Peruffo
3a443118c5 Update docs/guides/src/main/operator/basic-deployment.adoc
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
2022-03-31 16:07:55 -03:00
Andrea Peruffo
d69abc23b6 Update docs/guides/src/main/operator/basic-deployment.adoc
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
2022-03-31 16:07:55 -03:00
Andrea Peruffo
cbd23afbfb Update docs/guides/src/main/operator/basic-deployment.adoc
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
2022-03-31 16:07:55 -03:00
andreaTP
e1bd96ea42 Basic Deployment using the Keycloak Operator
Co-authored-by: Václav Muzikář <vmuzikar@redhat.com>
2022-03-31 16:07:55 -03:00
Michal Hajas
44000caaf5 KEYCLOAK-19177 Disable ECP flow by default for all Saml clients; ecp flow creates only transient users sessions 2022-03-31 16:06:44 +02:00
Teubner, Malte
b5f70d8a32 Add scope parameter to admin-client TokenManager.
Closes #10759
2022-03-31 10:56:08 -03:00
Teubner, Malte
1b36251a23 Add scope parameter to admin-client TokenManager.
Closes #10759
2022-03-31 10:56:08 -03:00
andreaTP
53aab7fc28 Use temurin instead of zulu in CI 2022-03-31 10:23:42 -03:00
iingawal
6016b461db
Fix for "updatedAt" user attribute in "profile" client scope should use number instead of String (#11020)
Closes #10081


Co-authored-by: Indrajit Ingawale <iingawal@iingawal.pnq.csb>
2022-03-31 14:33:03 +02:00
Marek Posolda
aacae9b9ac
Support for frontchannel_logout_session_required OIDC client parameter (#11009)
* Support for frontchannel_logout_session_required OIDC client parameter
Closes #10137
2022-03-31 14:25:24 +02:00
Francis PEROT
7555063ed9 Support 0/1 values for XML boolean attributes
Closes #10802
2022-03-31 09:36:35 +02:00
Dominik Guhr
9e57f836f2 Make quarkus runtime properties also available as runtime properties in keycloak
Changes behaviour to:
- all raw quarkus config properties are handled as runtime config in keycloak, with the exception of raw properties we need for additional datasources, there we check for build- vs runtime
- unknown quarkus buildtime properties require a build first or the usual quarkus warning is shown
- wrapped quarkus properties still get ignored / overwritten by our configuration layer (no change in behaviour here)

Closes #10968
2022-03-30 18:13:09 -03:00
Eetu Lepistö
66de8adefd
KEYCLOAK-19532 Added finnish locales (#8569)
Co-authored-by: Antti Leppä <antti.leppa@metatavu.fi>
2022-03-30 14:51:57 -04:00
Dominik Guhr
25f1c13e55 update proxy docs
Corresponding PR for the change in keycloak-documentation, recommendation is using a package manager

Closes #10915
2022-03-30 12:57:34 -03:00
andreaTP
fff992aa3b Operator docs structure 2022-03-30 12:54:45 -03:00
Andrea Peruffo
ae61d2785d Update operator/README.md
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
2022-03-30 12:46:32 -03:00
andreaTP
f93a7d63f7 Switch to auto-build off in case of custom images 2022-03-30 12:46:32 -03:00
andreaTP
298ce1888b Change base image and bump dependencies 2022-03-30 12:45:05 -03:00
Bruno Oliveira da Silva
034775f311 Trigger Trivy workflow after the build of our nightly images
Resolves #11011
2022-03-30 12:41:37 -03:00
Bruno Oliveira da Silva
8cd2c97982 Fix the breaking changes introduced by setup-java 2022-03-30 11:53:00 -03:00
Bruno Oliveira da Silva
b09728762e Update to the latest version of the official actions used by Keycloak
Resolves #10971
2022-03-30 11:53:00 -03:00
Bruno Oliveira da Silva
7b10d02cbd Introduce an additional dependency scanner for Keycloak
Resolves #10807

Co-authored-by: Jon Koops <jonkoops@gmail.com>
2022-03-30 10:09:14 -03:00
vramik
8ff768b33b JPA map storage: Authentication session no-downtime store
Closes #9665
2022-03-30 13:43:35 +02:00
Marek Posolda
22a16ee899
OIDC RP-Initiated logout endpoint (#10887)
* OIDC RP-Initiated logout endpoint
Closes #10885

Co-Authored-By: Marek Posolda <mposolda@gmail.com>

* Review feedback

Co-authored-by: Douglas Palmer <dpalmer@redhat.com>
2022-03-30 11:55:26 +02:00
Andrea Peruffo
da5db5a813
Fix NPEs during realm import (#10962)
Closes #10961
2022-03-29 21:48:37 +02:00
Marcelo Daniel Silva Sales
2b996b12a1
update javadoc for client secret rotation REST service (#10990)
Closes #10610
2022-03-29 21:46:54 +02:00
Martin Kanis
3356e8b098 Convert login failure entities into interface 2022-03-29 18:40:53 +02:00
Stefan Guilhen
d8bee26ec8 Implement AbstractClientEntity.isUpdated to account for changes in associated protocol mappers.
Closes #10927
2022-03-29 18:35:28 +02:00
Bruno Oliveira da Silva
19e55650a2
Automatic scan Keycloak docker image for vulnerabilities (#10777)
* Automatic scan Keycloak docker image for vulnerabilities

The changes proposed here will run Trivy scanner twice a day to search
vulnerabilities into our main images.

Resolves #10764

Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>

* Update .github/workflows/trivy-analysis.yml

Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Co-authored-by: Stian Thorgersen <stian@redhat.com>
2022-03-29 16:17:20 +02:00
Stian Thorgersen
e58e8ef252
Add issue template for tasks (#10912) 2022-03-29 15:47:35 +02:00
Dominik Guhr
a5c3d035b9 Fixes showing sensitive values like passwords and irritating error msg when key used is unknown
Only first unknown option is shown for now. May be iterated in the future.

Closes #10050

Closes #10051
2022-03-29 10:37:07 -03:00
Dominik Guhr
0941a4709e Fixes windows configuration test
also fixes using ~ as database default for e.g. IDELauncher (does not work on all windows versions)

also fixes the HelpCommandTest, as approvalTests are now generated based on the OS the tests run

Closes #10246

Co-authored-by: Victor-Philipp Negoescu <victor-philipp.negoescu@iteratec.com>
2022-03-29 10:34:34 -03:00
Andrea Peruffo
e3935f669d
Run CI on main only on schedule (#10942) 2022-03-29 15:10:20 +02:00
rmartinc
755080d745 [#10894] SAML Adapters tests start failing in recent versions of EAP/wildfly 2022-03-29 12:31:09 +02:00