No description
Find a file
Stefan Guilhen 02e2ebf258 Add check to prevent deserialization issues when the context token is not an AccessTokenResponse.
- also adds a test for the refresh token on first login scenario.

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
2024-04-30 12:02:10 -03:00
.github Upgrade artifact actions to latest version (#28483) 2024-04-15 17:14:00 +02:00
.idea
.mvn
adapters Remove jaxrs-oauth-client and OIDC servlet-filter adapters 2024-04-26 15:56:57 +02:00
authz fix: removing httpclient override (#28304) 2024-04-23 10:09:06 +02:00
boms Remove SpringBoot adapters 2024-04-26 09:30:35 +02:00
common Perform exact string match if redirect URI contains userinfo, encoded slashes or parent access (#131) (#28872) 2024-04-18 16:02:24 +02:00
core replaced and removed deprecated token methods (#27715) 2024-04-23 09:23:37 +02:00
crypto Remove deprecated EnvironmentDependentProviderFactory.isSupported method 2024-04-19 16:36:49 +02:00
dependencies
distribution Remove Tomcat OIDC adapter 2024-04-26 09:30:35 +02:00
docs Fix product name usage for downstream documentation 2024-04-29 18:05:00 +02:00
federation Convert database errors to 500 instead of 400. 2024-04-22 11:42:18 -03:00
integration Allow adding realm users as an organization member 2024-04-29 08:37:47 -03:00
js EventsSection icons with color props should be wrapped in Icon (#28826) 2024-04-30 08:05:55 -04:00
misc Remove SpringBoot adapters 2024-04-26 09:30:35 +02:00
model Batch writes originating from logins/logouts for persistent sessions 2024-04-30 14:07:35 +02:00
operator fix: add / clean labels on community images (#28760) 2024-04-25 11:48:13 +02:00
quarkus Use cache.compute() method to improve the replace retry loop 2024-04-29 12:24:33 +02:00
rest Remove deprecated EnvironmentDependentProviderFactory.isSupported method 2024-04-19 16:36:49 +02:00
saml-core SAML element EncryptionMethod can consist any element 2024-04-09 14:15:56 +02:00
saml-core-api SAML element EncryptionMethod can consist any element 2024-04-09 14:15:56 +02:00
server-spi Batch writes originating from logins/logouts for persistent sessions 2024-04-30 14:07:35 +02:00
server-spi-private Allow adding realm users as an organization member 2024-04-29 08:37:47 -03:00
services Add check to prevent deserialization issues when the context token is not an AccessTokenResponse. 2024-04-30 12:02:10 -03:00
testsuite Add check to prevent deserialization issues when the context token is not an AccessTokenResponse. 2024-04-30 12:02:10 -03:00
themes Update translation files 2024-04-30 11:36:06 +02:00
util
.gitattributes
.gitignore
.gitleaks.toml
ADOPTERS.md
CONTRIBUTING.md
eslint.config.js Explicitly specify React version for ESLint (#28726) 2024-04-15 14:44:06 +02:00
get-version.sh
GOVERNANCE.md
LICENSE.txt
MAINTAINERS.md
maven-settings.xml
mvnw
mvnw.cmd
package.json Upgrade dependencies to latest version (#29012) 2024-04-24 15:36:20 +01:00
pnpm-lock.yaml Upgrade dependencies to latest version (#29012) 2024-04-24 15:36:20 +01:00
pnpm-workspace.yaml
pom.xml Remove jaxrs-oauth-client and OIDC servlet-filter adapters 2024-04-26 15:56:57 +02:00
PR-CHECKLIST.md
README.md
SECURITY-INSIGHTS.yml
set-version.sh changed name and added version number (#28157) 2024-04-19 14:10:34 -04:00
tsconfig.eslint.json changed name and added version number (#28157) 2024-04-19 14:10:34 -04:00
tsconfig.json Move ESLint configuration to project root (#28639) 2024-04-12 08:34:18 +00:00

Keycloak

GitHub Release OpenSSF Best Practices GitHub Repo stars GitHub commit activity

Open Source Identity and Access Management

Add authentication to applications and secure services with minimum effort. No need to deal with storing users or authenticating users.

Keycloak provides user federation, strong authentication, user management, fine-grained authorization, and more.

Help and Documentation

Reporting Security Vulnerabilities

If you have found a security vulnerability, please look at the instructions on how to properly report it.

Reporting an issue

If you believe you have discovered a defect in Keycloak, please open an issue. Please remember to provide a good summary, description as well as steps to reproduce the issue.

Getting started

To run Keycloak, download the distribution from our website. Unzip and run:

bin/kc.[sh|bat] start-dev

Alternatively, you can use the Docker image by running:

docker run quay.io/keycloak/keycloak start-dev

For more details refer to the Keycloak Documentation.

Building from Source

To build from source, refer to the building and working with the code base guide.

Testing

To run tests, refer to the running tests guide.

Writing Tests

To write tests, refer to the writing tests guide.

Contributing

Before contributing to Keycloak, please read our contributing guidelines. Participation in the Keycloak project is governed by the CNCF Code of Conduct.

Other Keycloak Projects

License