External-Mirrors/keycloak
2
0
Fork 0
mirror of https://github.com/keycloak/keycloak.git synced 2026-01-10 15:32:05 -03:30
Code Issues Packages Projects Releases Wiki Activity
29,887 Commits 26 Branches 288 Tags
Commit Graph

360 Commits

Author SHA1 Message Date
Ricardo Martin
1aa1621eaa
Use MIME decoder instead of the default one to replace deprecated Base64 class 
Closes #45226

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2026-01-09 16:38:09 +01:00
Stian Thorgersen
91a6fc880a
Add default surefire args for tests using new testframework 
Closes #44098, Closes #44099

Signed-off-by: stianst <stianst@gmail.com>
 2026-01-09 08:33:54 +01:00
Pedro Ruivo
99828b4cc4
Fix Cluster Compatibility Tests 
Closes #45221

Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
 2026-01-07 15:26:19 +00:00
Alexander Schwartz
3b01bbb551
Adding x-robots HTTP header to all Keycloak resources (#44864) 
Closes #44863

Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
 2026-01-07 15:11:54 +01:00
ksushant881
5939864b76 Add action that removes a required action step in workflow 
Closes #44647

Signed-off-by: ksushant881 <ksushant881@gmail.com>
 2026-01-05 16:10:20 -03:00
Pedro Igor
0d5766f3a8 Allow running scheduled workflows 
Closes #44865

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2026-01-05 13:03:47 -03:00
Ruchika Jha
60b369c622
Validate client session timeout and lifetime settings on realm settings edit 
Closes #44910

Signed-off-by: Ruchika <Ruchika.Jha1@ibm.com>
Signed-off-by: Ryan Emerson <remerson@ibm.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Co-authored-by: Ryan Emerson <remerson@ibm.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>
 2026-01-05 08:50:56 +00:00
Stefan Guilhen
66f3868ccf Suppress the step's priority in the returned workflow JSON/YAML 
Closes #45075

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2025-12-29 10:26:21 -03:00
Stefan Guilhen
985ec6d306 Add name uniqueness validation to workflows 
Closes #43914

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>

# Conflicts:
#	tests/base/src/test/java/org/keycloak/tests/workflow/WorkflowManagementTest.java
 2025-12-29 10:24:56 -03:00
Stefan Guilhen
e6b2f0dc60
Review workflows test coverage (#45041) 
Closes #42694

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2025-12-19 13:06:30 -05:00
Stian Thorgersen
78274ccc5d
Migrate parts of model package to new test framework (#45024) 
Part of #44983

Signed-off-by: stianst <stianst@gmail.com>
 2025-12-19 14:52:23 +01:00
Stian Thorgersen
47c1afde5a
Migrate parts of model package to new test framework (#44988) 
Part of #44983

Signed-off-by: stianst <stianst@gmail.com>
 2025-12-18 16:48:58 +01:00
Pedro Igor
f36819e943
Adding join and leave group steps (#44841) 
Closes #44649

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-12-18 13:07:23 +01:00
Giuseppe Graziano
790fb557db
Limit access Token expiration for jwt authorization grant (#44775) 
Closes #43972


Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
 2025-12-18 09:21:29 +01:00
Lukas Hanusovsky
92849ef5d3
Move AdminClientTest to the new testsuite (#44705) 
* Moving files to the new test suite

Signed-off-by: Simon Vacek <simonvacky@email.cz>

* Move AdminClientTest to the new testsuite

Part of: #35040

Signed-off-by: Simon Vacek <simonvacky@email.cz>
Co-authored: Lukas Hanusovsky <lhanusov@redhat.com>

* Refactoring of ManagedCertificates

* Fix compatiblity issue with ManagedCertificates dependency

Signed-off-by: stianst <stianst@gmail.com>

* Fixing trustStrategy for SSLContext truststore.

Signed-off-by: Lukas Hanusovsky <lhanusov@redhat.com>

* Fix FIPS

Signed-off-by: stianst <stianst@gmail.com>

---------

Signed-off-by: Simon Vacek <simonvacky@email.cz>
Signed-off-by: stianst <stianst@gmail.com>
Signed-off-by: Lukas Hanusovsky <lhanusov@redhat.com>
Co-authored-by: Simon Vacek <simonvacky@email.cz>
Co-authored-by: stianst <stianst@gmail.com>
 2025-12-17 14:31:22 +00:00
Sebastian Łaskawiec
9597537bf3
Additional fields for the Welcome Resource (#44758) 
* Additional fields added to the Welcome Page

Signed-off-by: Sebastian Łaskawiec <sebastian.laskawiec@gmail.com>

* Updated the order of fields

Signed-off-by: Sebastian Łaskawiec <sebastian.laskawiec@gmail.com>

---------

Signed-off-by: Sebastian Łaskawiec <sebastian.laskawiec@gmail.com>
 2025-12-17 13:11:44 +01:00
Lukas Hanusovsky
e8c6a7b98d
[Test Framework] Migrate initial WebAuthn setup + WebAuthnRegisterAndLoginTest. (#44016) 
Signed-off-by: Lukas Hanusovsky <lhanusov@redhat.com>
 2025-12-15 15:01:42 +01:00
Stefan Guilhen
22c144dd30 Rename workflow events 
- USER_ADDED -> USER_CREATED
- USER_ROLE_ADDED -> USER_ROLE_GRANTED
- USER_ROLE_REMOVED -> USER_ROLE_REVOKED

Closes #44879

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2025-12-12 14:15:24 -03:00
Stefan Guilhen
7858e6ff6b Change workflow condition grammar to accept the token 'not' as the negation operator instead of '!' 
Closes #44880

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2025-12-12 13:31:55 -03:00
Stefan Guilhen
0fc9650acc Set Workflows as tech preview 
Closes #44881

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2025-12-12 13:05:59 -03:00
stianst
a07500045f Move workflow tests out of admin package 
Closes #44847

Signed-off-by: stianst <stianst@gmail.com>
 2025-12-12 11:54:58 -03:00
Pedro Igor
84a0324d60 Adding grant and revoke role steps 
Closes #44648

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-12-12 09:38:39 -03:00
Pedro Igor
138d1e0588 Allow restarting the step chain at a specific position 
Closes #44789

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-12-12 09:38:01 -03:00
Ruchika Jha
26fe8dc7d8
Added validation for client session timeout post comparing the realm session timeouts 
Closes #41019

Signed-off-by: ruchikajha95 <Ruchika.Jha1@ibm.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
 2025-12-11 13:58:04 +01:00
Stian Thorgersen
d25a731ae5
Fix Chrome and Firefox in new test framework on GitHub Actions (#44804) 
Closes #44776

Signed-off-by: stianst <stianst@gmail.com>
 2025-12-10 12:22:47 -03:00
Martin Kanis
ef011ea4d2
Fix compilation error in AbstractUserTest after merging #43620 (#44777) 
Signed-off-by: Martin Kanis <mkanis@redhat.com>
 2025-12-09 13:57:46 +01:00
Martin Kanis
5ee4cb5157
Fix for missing object representation in admin event log when deleting user, group, client (#43620) 
* Fix for missing object representation in admin event log when deleting user, group, client

Closes #33009

Signed-off-by: jwozniakowski <wozniakowski@netguardians.ch>

* Fix issues and add role representation when deleting a role

Closes #33009

Signed-off-by: Martin Kanis <mkanis@redhat.com>

---------

Signed-off-by: jwozniakowski <wozniakowski@netguardians.ch>
Signed-off-by: Martin Kanis <mkanis@redhat.com>
Co-authored-by: jwozniakowski <wozniakowski@netguardians.ch>
 2025-12-09 12:32:18 +01:00
Stefan Guilhen
21eeb95fbc Rename workflow event USER_LOGGED_IN to USER_AUTHENTICATED 
Closes #44717

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2025-12-08 19:00:25 -03:00
Pedro Igor
89a8cddfd6
Make sure group permissions on view scope are not processed when querying users 
Closes #44329

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
Co-authored-by: vramik <vramik@redhat.com>
 2025-12-08 14:39:40 +01:00
Stefan Guilhen
fe3507b251 Promote workflows to supported state 
Closes #43492

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2025-12-08 10:06:40 -03:00
Stefan Guilhen
484980dbbe Add API method to allow activating a workflow for all eligible resources 
Closes #44643

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2025-12-08 09:45:45 -03:00
Pedro Igor
985777ebcc
Improvements to the notify step 
Closes #44708

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-12-05 18:58:03 +01:00
Stefan Guilhen
b14d00e08f Improve workflow concurrency settings 
- allow restarting based on events
 - allow cancelling based on events

Closes #44645

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2025-12-05 11:28:18 -03:00
Stefan Guilhen
65ab7f541d Add API method that fetches the scheduled workflow steps for a resource 
Closes #43660

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2025-12-03 11:09:55 -03:00
Giuseppe Graziano
50179d165c Fix compilation failure in JWTAuthorizationGrantJWTClaimsClientPoliciesTest 
Closes #44626

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
 2025-12-03 08:16:35 -03:00
Ricardo Martin
f91363d12d
Improve Public Key Management for JWTAuthorizationGrant identity provider 
Closes #44243

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2025-12-03 11:45:34 +01:00
rmartinc
ae7e7ba084 New Identity Provider condition for client policies 
Closes #44442

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2025-12-03 08:50:31 +01:00
Stefan Guilhen
a2562caa11 Cache expression EvaluatorContext in the workflow component model's notes 
Closes #42961

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2025-12-01 14:29:08 -03:00
Stefan Guilhen
cd350082f7 Ensure workflow is only restarted on events that match the activation condition 
Closes #44399

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2025-12-01 10:53:59 -03:00
Stefan Guilhen
6653b72f88 Ensure delete step is triggering UserRemovedEvent 
Closes #44398

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2025-12-01 10:52:40 -03:00
Stefan Guilhen
be714d935d Ensure GroupMemberLeaveEvent has a reference to the user leaving the group 
Closes #44400

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2025-12-01 10:46:43 -03:00
Giuseppe Graziano
2b4855ff97
Executor for checking claims in JWT assertions (#44537) 
Closes #4443


Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
 2025-12-01 11:07:42 +01:00
stianst
f6676ccd76 Migrate i18n package to new testsuite 
Closes #44520

Signed-off-by: stianst <stianst@gmail.com>
 2025-11-28 08:56:11 -03:00
Marek Posolda
38768819e1
Make sure that signature validation possible to configure for OIDC id… (#44516) 
closes #44473


Signed-off-by: mposolda <mposolda@gmail.com>
Signed-off-by: Marek Posolda <mposolda@gmail.com>
Co-authored-by: Ricardo Martin <rmartinc@redhat.com>
 2025-11-28 08:51:20 +01:00
Pedro Ruivo
3ed15e740a
Add new option to schedule user session expiration 
Closes #44068

Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Signed-off-by: Ryan Emerson <remerson@ibm.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Co-authored-by: Ryan Emerson <remerson@ibm.com>
 2025-11-27 23:01:32 +01:00
Thomas Diesler
54bf9206b2
[OID4VCI] Credential Offer must be created by Issuer not Holder (#44255) 
closes #44116


Signed-off-by: Thomas Diesler <tdiesler@ibm.com>
 2025-11-27 16:07:10 +01:00
Stian Thorgersen
33b6065c2a
Introduces a ManagedWebDriver to provide a single entry point for utilities around WebDriver 
This will make it easier to discover various utilities without having to find static methods in various classes; and will also provides us with a wrapper around Selenium where we can add any tweaks needed. It is also now possible to construct a page instance without injection using `page().createPage(MyPage.class)`

Closes #44464

Signed-off-by: stianst <stianst@gmail.com>
 2025-11-26 15:20:23 +01:00
rmartinc
d0e4d1f620 Better events for jwt-bearer and check all details in the tests 
CLoses #44137

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2025-11-26 12:09:51 +01:00
Stian Thorgersen
a8d4336da6
Migrate transactions package to new testsuite 
Closes #44460

Signed-off-by: stianst <stianst@gmail.com>
 2025-11-26 10:57:19 +01:00
Giuseppe Graziano
b323fea8bc Always allow to setup JWKS URL in oidc idp 
Closes #44217

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
 2025-11-25 17:09:13 +01:00