No description
Find a file
Alexander Schwartz 6cc8d653f3 Make SessionWrapper related fields immutable that are part of the equals method
The cache replace logic depends on it, as values returned by reference from a local cache must never be modified on those critical fields directly.

Closes #28906

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-05-13 09:59:50 +02:00
.github Fix GitHub Action Trivy Analysis warnings 2024-05-10 19:37:55 -03:00
.idea Add Intellij project icon 2023-09-18 12:39:16 +02:00
.mvn Update Maven dependency versions for docs 2024-02-01 13:42:25 +01:00
adapters Infinispan 15.0.3.Final 2024-05-08 17:18:39 +02:00
authz Guard against NPE when fetching users associated with user policies. 2024-05-10 16:52:25 -03:00
boms Can we remove undertow OIDC adapter? 2024-05-07 19:47:46 +02:00
common Fix user-facing typos in Javadoc (#28971) 2024-05-06 18:57:55 +00:00
core Add description field to OrganizationEntity 2024-05-07 10:35:51 -03:00
crypto Remove deprecated EnvironmentDependentProviderFactory.isSupported method 2024-04-19 16:36:49 +02:00
dependencies Map Store Removal: Rename legacy modules 2024-01-25 16:29:16 +01:00
distribution Can we remove undertow OIDC adapter? 2024-05-07 19:47:46 +02:00
docs doc: Quarkus launch rebuild optimization (#28320) 2024-05-10 12:28:38 +02:00
federation Fix user-facing typos in Javadoc (#28971) 2024-05-06 18:57:55 +00:00
integration Add ability to search organizations by attribute 2024-05-10 16:45:41 -03:00
js Change the default role mapping filter to clients (#29405) 2024-05-13 09:46:07 +02:00
misc Remove SpringBoot adapters 2024-04-26 09:30:35 +02:00
model Make SessionWrapper related fields immutable that are part of the equals method 2024-05-13 09:59:50 +02:00
operator Infinispan 15.0.3.Final 2024-05-08 17:18:39 +02:00
quarkus quarkus-next: Replace deprecated QUARKUS_PROFILE_PROP constant (#29439) 2024-05-13 08:47:38 +02:00
rest Rework the result for the session search to contain a single result per user sessions 2024-05-03 13:51:14 +02:00
saml-core Fix user-facing typos in Javadoc (#28971) 2024-05-06 18:57:55 +00:00
saml-core-api SAML element EncryptionMethod can consist any element 2024-04-09 14:15:56 +02:00
server-spi Make sure organization groups can not be managed but when managing an organization 2024-05-10 21:28:11 -03:00
server-spi-private Add ability to search organizations by attribute 2024-05-10 16:45:41 -03:00
services Make sure organization groups can not be managed but when managing an organization 2024-05-10 21:28:11 -03:00
testsuite Make SessionWrapper related fields immutable that are part of the equals method 2024-05-13 09:59:50 +02:00
themes Improvements to the organization authentication flow 2024-05-09 16:07:52 -03:00
util Artifact SLF4J LOG4J-12 has been relocated (#20113) 2023-05-05 13:57:45 +02:00
.gitattributes Use lf as line-ending for sh files 2022-07-19 08:57:57 +02:00
.gitignore Move all JavaScript projects into single PNPM workspace (#24537) 2024-04-02 16:14:58 +02:00
.gitleaks.toml Ignore a false positive in internal code scan (#27811) 2024-03-12 15:49:46 +01:00
ADOPTERS.md add Bundesagentur für Arbeit to ADOPTERS.md (#26784) 2024-02-05 14:32:49 +01:00
CONTRIBUTING.md Add DCO to CONTRIBUTING.md (#24384) 2023-10-31 08:44:43 +01:00
eslint.config.js Explicitly specify React version for ESLint (#28726) 2024-04-15 14:44:06 +02:00
get-version.sh
GOVERNANCE.md Removed links from relocated repositories (#19703) 2023-04-13 12:59:43 -04:00
LICENSE.txt Added text version of ASL2 license 2019-11-08 12:43:10 +01:00
MAINTAINERS.md Add Alexander Schwartz to the list of maintainers 2023-06-27 06:45:06 -03:00
maven-settings.xml [KEYCLOAK-11764] Upgrade to Wildfly 19 2020-04-24 08:19:43 -03:00
mvnw Update Maven Wrapper to 3.2.0 2023-09-12 08:56:15 +02:00
mvnw.cmd Update Maven Wrapper to 3.2.0 2023-09-12 08:56:15 +02:00
package.json Bump @types/node from 20.12.10 to 20.12.11 2024-05-09 10:52:38 +02:00
pnpm-lock.yaml Bump @types/react from 18.3.1 to 18.3.2 2024-05-13 09:28:52 +02:00
pnpm-workspace.yaml Move all JavaScript projects into single PNPM workspace (#24537) 2024-04-02 16:14:58 +02:00
pom.xml Infinispan 15.0.3.Final 2024-05-08 17:18:39 +02:00
PR-CHECKLIST.md Introduce CODEOWNERS (#16637) 2023-01-30 13:05:45 +01:00
README.md Add some badges to README.md (#27921) 2024-03-15 11:25:21 +01:00
SECURITY-INSIGHTS.yml Provide an OpenSSF security insights manifest file 2024-02-15 11:02:33 -03:00
set-version.sh changed name and added version number (#28157) 2024-04-19 14:10:34 -04:00
tsconfig.eslint.json changed name and added version number (#28157) 2024-04-19 14:10:34 -04:00
tsconfig.json Move ESLint configuration to project root (#28639) 2024-04-12 08:34:18 +00:00

Keycloak

GitHub Release OpenSSF Best Practices GitHub Repo stars GitHub commit activity

Open Source Identity and Access Management

Add authentication to applications and secure services with minimum effort. No need to deal with storing users or authenticating users.

Keycloak provides user federation, strong authentication, user management, fine-grained authorization, and more.

Help and Documentation

Reporting Security Vulnerabilities

If you have found a security vulnerability, please look at the instructions on how to properly report it.

Reporting an issue

If you believe you have discovered a defect in Keycloak, please open an issue. Please remember to provide a good summary, description as well as steps to reproduce the issue.

Getting started

To run Keycloak, download the distribution from our website. Unzip and run:

bin/kc.[sh|bat] start-dev

Alternatively, you can use the Docker image by running:

docker run quay.io/keycloak/keycloak start-dev

For more details refer to the Keycloak Documentation.

Building from Source

To build from source, refer to the building and working with the code base guide.

Testing

To run tests, refer to the running tests guide.

Writing Tests

To write tests, refer to the writing tests guide.

Contributing

Before contributing to Keycloak, please read our contributing guidelines. Participation in the Keycloak project is governed by the CNCF Code of Conduct.

Other Keycloak Projects

License