No description
Find a file
Thomas Darimont d30d692335 Introduce MaxAuthAge Password policy (#12943)
This policy allows to specify the maximum age of an authentication
with which a password may be changed without re-authentication.

Defaults to 300 seconds (default taken from Constants.KC_ACTION_MAX_AGE) to remain backwards compatible.
A value of 0 will always require reauthentication to update the password.
Add documentation for MaxAuthAgePasswordPolicy to server_admin

Fixes #12943

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
2023-11-20 14:48:17 +01:00
.github Bump aquasecurity/trivy-action from 0.13.1 to 0.14.0 2023-11-16 10:02:18 -03:00
.idea Add Intellij project icon 2023-09-18 12:39:16 +02:00
.mvn Update Maven Wrapper to 3.2.0 2023-09-12 08:56:15 +02:00
adapters SAML ECP does not work on the latest WF/EAP8 2023-11-16 21:17:19 +01:00
authz Group scalability upgrades (#22700) 2023-10-26 16:50:45 +02:00
boms Upgrade nexus staging maven plugin version (#21428) 2023-07-04 11:00:04 +00:00
common Downgrade transient users to experimental 2023-11-01 08:37:46 +01:00
core 24672 remove linebreaks from basicauth base64 encoding to comply to standard 2023-11-20 14:44:55 +01:00
crypto Fix various bugs and issues in crypto/elytron (#23102) 2023-10-03 09:42:57 +02:00
dependencies Delete map dependencies from dependency management 2023-11-08 13:53:17 +01:00
distribution SAML ECP does not work on the latest WF/EAP8 2023-11-16 21:17:19 +01:00
docs Introduce MaxAuthAge Password policy (#12943) 2023-11-20 14:48:17 +01:00
examples Bump semver in /examples/cordova-native (#23351) 2023-09-19 14:33:26 -04:00
federation Keep same name on update for LDAP attributes 2023-11-09 23:54:45 +01:00
integration fix cli output token can not return token 2023-11-10 05:47:39 -08:00
js Introduce MaxAuthAge Password policy (#12943) 2023-11-20 14:48:17 +01:00
misc Add Operator to the dependency report script (#22469) 2023-08-16 16:34:30 +02:00
model KeycloakErrorHandler NullPointerException String.toLowerCase() because message is null 2023-11-16 18:06:33 +01:00
operator Update to Quarkus 3.2.9 (#24842) 2023-11-20 14:27:13 +01:00
quarkus fix: adds a better error message if an spi argument lacks a value (#24826) 2023-11-20 11:03:45 +01:00
rest Cannot display 'Authentication Flows' screen when a realm contains more than ~4000 clients (#21058) 2023-11-13 19:13:01 +01:00
saml-core Ensure that the EncryptedKey is passed to the DecryptionKeyLocator for SAML 2023-09-20 15:09:18 +02:00
saml-core-api Adds com.sun.xml.ws.rt dependency to saml-core-api 2023-04-27 13:36:54 +02:00
server-spi Introduce MaxAuthAge Password policy (#12943) 2023-11-20 14:48:17 +01:00
server-spi-private Introduce MaxAuthAge Password policy (#12943) 2023-11-20 14:48:17 +01:00
services Introduce MaxAuthAge Password policy (#12943) 2023-11-20 14:48:17 +01:00
testsuite Introduce MaxAuthAge Password policy (#12943) 2023-11-20 14:48:17 +01:00
themes Use common TSConfig base for Account Console v2 (#24777) 2023-11-16 08:00:41 +01:00
util Artifact SLF4J LOG4J-12 has been relocated (#20113) 2023-05-05 13:57:45 +02:00
.gitattributes Use lf as line-ending for sh files 2022-07-19 08:57:57 +02:00
.gitignore SAML ECP does not work on the latest WF/EAP8 2023-11-16 21:17:19 +01:00
.gitleaks.toml Removing testsuite/performance from main Keycloak repository (#15950) 2022-12-15 14:43:24 +01:00
ADOPTERS.md Update ADOPTERS.md (#23049) 2023-09-07 12:59:55 +00:00
CONTRIBUTING.md Add DCO to CONTRIBUTING.md (#24384) 2023-10-31 08:44:43 +01:00
get-version.sh
GOVERNANCE.md Removed links from relocated repositories (#19703) 2023-04-13 12:59:43 -04:00
LICENSE.txt
MAINTAINERS.md Add Alexander Schwartz to the list of maintainers 2023-06-27 06:45:06 -03:00
maven-settings.xml
mvnw Update Maven Wrapper to 3.2.0 2023-09-12 08:56:15 +02:00
mvnw.cmd Update Maven Wrapper to 3.2.0 2023-09-12 08:56:15 +02:00
pom.xml Update to Quarkus 3.2.9 (#24842) 2023-11-20 14:27:13 +01:00
PR-CHECKLIST.md Introduce CODEOWNERS (#16637) 2023-01-30 13:05:45 +01:00
README.md Minor spelling adjustments (#23106) 2023-09-11 06:55:38 +00:00
set-version.sh Fix set-version.sh's handling of NPM versions (#23638) 2023-10-04 08:00:53 +02:00

Keycloak

Keycloak is an Open Source Identity and Access Management solution for modern Applications and Services.

This repository contains the source code for the Keycloak Server, Java adapters and the JavaScript adapter.

Help and Documentation

Reporting Security Vulnerabilities

If you have found a security vulnerability, please look at the instructions on how to properly report it.

Reporting an issue

If you believe you have discovered a defect in Keycloak, please open an issue. Please remember to provide a good summary, description as well as steps to reproduce the issue.

Getting started

To run Keycloak, download the distribution from our website. Unzip and run:

bin/kc.[sh|bat] start-dev

Alternatively, you can use the Docker image by running:

docker run quay.io/keycloak/keycloak start-dev

For more details refer to the Keycloak Documentation.

Building from Source

To build from source, refer to the building and working with the code base guide.

Testing

To run tests, refer to the running tests guide.

Writing Tests

To write tests, refer to the writing tests guide.

Contributing

Before contributing to Keycloak, please read our contributing guidelines.

Other Keycloak Projects

License