Commit graph

22918 commits

Author SHA1 Message Date
Erik Jan de Wit
3862f82c2d
added fine-grained auth on EffectiveRoleMappingResource (#20417) 2023-05-31 10:09:18 -04:00
Pedro Igor
53dfb44a8f
Migration guide for JAX-RS changes (#20659)
Closes #keycloak/keycloak#15454
2023-05-31 13:50:34 +00:00
mposolda
bf9c5821cb Fix for certificate revalidation
closes https://security.snyk.io/vuln/SNYK-JAVA-ORGKEYCLOAK-5291542
2023-05-31 15:42:37 +02:00
Andre Nascimento
30c7808d9d Clarify the use of '--db-url-properties' option in its description and in the guide.
Closes #12720
2023-05-31 09:41:04 -03:00
Alexander Schwartz
512e30b210 Add escaping for fields with wildcard search
Closes #20510
2023-05-31 14:38:04 +02:00
Takashi Norimatsu
a29c30ccd5 FAPI 2.0 security profile - not allow an authorization request whose parameters were not included in PAR request
closes #20623
2023-05-31 14:02:44 +02:00
vramik
a175efcb72 Split UserQueryProvider into UserQueryMethods and UserCountMethods and make LdapStorageProvider implement only UserQueryMethods
Co-authored-by: mhajas <mhajas@redhat.com>

Closed #20156
2023-05-31 11:47:54 +02:00
Erik Jan de Wit
d76c295c09
Only show default role effective roles (#20285)
fixes: #19982
2023-05-30 14:17:10 -04:00
Jay Linski
403632438a
Improve a11y by providing the current language (#20213) 2023-05-30 13:46:14 -04:00
Pedro Igor
8aeee928e8
Allow configuring the referrer policy (#19917)
* Allow configuring the referrer policy

Closes #17288

* fixed indentation

---------

Co-authored-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2023-05-30 12:27:12 -04:00
Takashi Norimatsu
6b42c2b4d0 FAPI 2.0 security profile - Reject Implicit Grant executor does not return an appropriate error
Closes #20622
2023-05-30 18:24:50 +02:00
stianst
0832992e59 Removing OpenShift integration and moving to separate extension
closes #20496

Co-authored-by: mposolda <mposolda@gmail.com>
2023-05-30 17:39:32 +02:00
Pedro Igor
9ad295a3bc Add back examples for Kubernetes and Openshift to the quickstarts
Closes #20635
2023-05-30 15:32:08 +02:00
mposolda
47a304bea2 OutOfMemoryError at elytron adapter
closes #20540
2023-05-30 14:26:47 +02:00
Erik Jan de Wit
c187c17945
navigate back to list when deleted (#20591)
fixes: #20370
2023-05-30 14:21:37 +02:00
Erik Jan de Wit
1124681603
added should dirty (#20647)
fixes: #20506
2023-05-30 08:08:37 -04:00
Erik Jan de Wit
34e56ccd81
use the first value from options as default (#20589)
fixes: #20379
2023-05-30 08:02:47 -04:00
Erik Jan de Wit
df5a823738
use display header when set (#20553) 2023-05-30 13:47:41 +02:00
Stefan Guilhen
27e79fb025 Fix LDAP user synchronization documentation
Closes #16833
2023-05-30 13:36:34 +02:00
Erik Jan de Wit
55e3e26f2e
removed need to query all groups (#20552)
* removed need to query all groups

fixes: #20489

* code review
2023-05-30 13:35:28 +02:00
Stan Silvert
88bb5977cd
Fix User Event Types not visible when 'Save events disabled` (#20581)
Fixes #20503
2023-05-30 06:36:46 -04:00
Tomas Slusny
1b06c4cf6c
Use cached policy store in Infinispan PolicyAdapter (#20566) 2023-05-29 10:39:24 -03:00
Pedro Igor
b41904bf04 Update release notes on adapter deprecation 2023-05-29 09:47:33 -03:00
Pedro Igor
c22972af9c Avoid using user property mapper when resolving root user attributes
Closes #20613
2023-05-29 14:30:05 +02:00
Pedro Igor
17c3804402 Tests for user property mapper
Closes #20534
2023-05-29 14:21:03 +02:00
Yoshiyuki Tabata
bd37875a66 allow specifying format of "permission" parameter in the UMA grant token
endpoint (#15947)
2023-05-29 08:56:39 -03:00
Pedro Igor
e9accaf387
Show warning message when overriding build options during starts (#20585)
Closes #20582
2023-05-29 13:21:57 +02:00
damien-malescot
1007d6a6d8 Fix AD/LDS password expiration
Closes #13084
2023-05-29 09:20:25 +02:00
Pedro Ruivo
cffb8141e2
Allow custom annotation in Ingress (#20577)
Closes #20576
2023-05-26 15:24:59 +00:00
Martin Bartoš
b438776b94
Introduced additional dependencies in the testsuite (#20600)
Fixes #20599

Fixes #20384
2023-05-26 15:41:45 +02:00
Hynek Mlnarik
54c9403cc0 Fix CacheExpirationTest
Sometimes the initialization of keycloak session factory
took longer than the expiration was set on the elements,
so they were not found in the cache where they were awaited.
This is fixed by adding an assumption on the time, and if the
time is over the expiration, the remainder of the test is skipped.
The timeout is set in order to run fully most of the time in GHA.

Closes: #20269
2023-05-26 15:07:51 +02:00
Erik Jan de Wit
00df57df3b
moved filter to it's own component (#20286)
fixes: #19999
2023-05-26 12:06:45 +00:00
Jon Koops
a58a9a89d6
Add href to brand of Masthead (#20597) 2023-05-26 10:57:25 +00:00
Erik Jan de Wit
9dabbe951e
added error on password confirm on password change (#20236)
* added error on password confirm on password change

fixes: #16577

* Update js/apps/admin-ui/src/user/user-credentials/ResetPasswordDialog.tsx

Co-authored-by: Jon Koops <jonkoops@gmail.com>

* linting

---------

Co-authored-by: Jon Koops <jonkoops@gmail.com>
2023-05-26 11:57:57 +02:00
Jon Koops
b6f2f958c0
Add correct Node.js version range for Admin Client (#20593) 2023-05-26 09:50:00 +00:00
Jon Koops
98e5e9799b Improve third-party storage access detection and cookie fallback 2023-05-25 22:16:59 -03:00
Erik Jan de Wit
b958d8b205
added PostBrokerLoginFlow to idp used by query (#20208)
fixes: #19942
2023-05-25 14:23:26 -04:00
Peter Zaoral
34e5884415
SmallRye Keystore (#20375)
* added integration with SmallRye Keystore (keycloak#19281)

Closes #11089

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
2023-05-25 17:36:20 +02:00
Fonata
4d7e930a29 Fix grammar mistake in messages_en.properties 2023-05-25 12:07:18 -03:00
Bruno Oliveira da Silva
38994de056
Update Keycloak to Quarkus 3.0.4.Final (#20561)
Closes #20560
2023-05-25 15:42:43 +02:00
Erik Jan de Wit
8a6790be1d
be sure to only select one if type is not multi (#20410)
fixes: #20304
2023-05-25 13:01:30 +02:00
Douglas Palmer
1b8901f5a2 Changing the email address has no impact at username regardless "Email as username" toggle
closes #20459
2023-05-25 07:54:03 -03:00
Jon Koops
df9cf53d2b
Use sandbox attibute for iframes created by Keycloak JS (#20544) 2023-05-25 11:47:23 +02:00
Erik Jan de Wit
c86254972b
remove fields when standard flow disabled (#20271)
fixes: #20194
2023-05-25 09:18:00 +00:00
Alexander Schwartz
5cd0d51fa6 Don't remove an element from the cache that was queued to be created during the current request
This avoids a remove Infinispan call in multi-node and cross-DC setups.

Closes #20404
2023-05-25 10:33:23 +02:00
Hynek Mlnarik
fc0e47caa4 Fix KcCustomOidcBrokerTest
Fixes: #20541
2023-05-25 10:20:36 +02:00
Miquel Simon
0f2ff9c235
Enable Firefox for WebAuthn and Account Console tests (#20546) 2023-05-25 10:02:05 +02:00
Doctor-love
6598bb043b
Update example custom cache configuration for v>21 (#17289)
Co-authored-by: Bruno Oliveira da Silva <bruno@abstractj.com>

Closes #20550
2023-05-24 20:26:25 -03:00
Peter Zaoral
72b238fb48
Keystore vault (#19644)
* KeystoreVault SPI

* added KeystoreVault - a Vault SPI implementation (#19281)

Closes #17252

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
2023-05-24 16:20:30 +00:00
Jon Koops
b8b56ece65
Update dependencies to latest version (#20545) 2023-05-24 15:19:19 +00:00