keycloak

mirror of https://github.com/keycloak/keycloak.git synced 2026-01-10 15:32:05 -03:30

Author	SHA1	Message	Date
Pedro Igor	fe8fce859d	Improve the Workflow JSON schema Closes #42697 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-09-24 04:04:44 -03:00
Giuseppe Graziano	e4114e6c74	Promote DPoP feature to supported by default Closes #42032 Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>	2025-09-24 08:26:09 +02:00
Peter Skopek	14e4e1aed2	Enable branding without code changes (#34246 ) closes #34244 Signed-off-by: Peter Skopek <pskopek@redhat.com>	2025-09-24 07:25:40 +02:00
Stian Thorgersen	f72482bfd2	Experimental Kube service accounts identity provider Closes #37600 Signed-off-by: stianst <stianst@gmail.com> Signed-off-by: Ryan Emerson <remerson@ibm.com> Co-authored-by: Ryan Emerson <remerson@ibm.com>	2025-09-23 00:11:24 +02:00
Stian Thorgersen	3841fea16d	Promote CLIENT_AUTH_FEDERATED and SPIFFE features to preview (#42753 ) Closes #42722 Signed-off-by: stianst <stianst@gmail.com> Co-authored-by: Ryan Emerson <remerson@ibm.com>	2025-09-19 09:46:37 +00:00
vramik	d0e83cc05e	Rename RLM to Workflows Closes #42512 Signed-off-by: vramik <vramik@redhat.com>	2025-09-16 08:52:50 -03:00
Pedro Ruivo	971016f743	More efficient secure ID generator Closes #42283 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>	2025-09-12 13:52:26 +02:00
Alexander Schwartz	6ea3c8aedf	Session IDs and auth codes should have 128 bits of entropy Closes #42274 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-09-11 17:05:40 +02:00
Steven Hawkins	0897560513	fix: moves unsupported feature logging (#42380 ) closes: #42334 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-09-05 19:21:20 +02:00
Stian Thorgersen	320ea5a9a7	Experimental SPIFFE identity provider (#42314 ) Closes #42313 Signed-off-by: stianst <stianst@gmail.com>	2025-09-04 14:48:18 +02:00
stianst	57242d2497	Experimental federated client authentication Closes #42228 Signed-off-by: stianst <stianst@gmail.com>	2025-09-02 10:02:51 -03:00
trataka	9afe5fb8a9	Add wasm support for themes (#38898 ) Closes #38897 Signed-off-by: trataka <jonathan@trataka.net>	2025-09-02 14:22:09 +02:00
Alexander Schwartz	ca1e61047a	Adding TiDB dialect for Quarkus Closes #41897 Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Signed-off-by: Dennis Kniep <kniepdennis@gmail.com> Co-authored-by: Dennis Kniep <kniepdennis@gmail.com>	2025-08-26 17:44:45 -03:00
Steven Hawkins	fdca122469	fix: ensuring streams are closed closes: #40660 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-08-15 07:40:54 +02:00
Akbar Husain	06f80416fb	Replace keySet with entrySet Closes #40064 Signed-off-by: akbarhusainpatel <apatel@intermiles.com> Co-authored-by: akbarhusainpatel <apatel@intermiles.com>	2025-08-14 17:31:15 +02:00
rmartinc	acf39b34c3	Make passkeys feature supported Closes #41556 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-08-12 11:18:57 +02:00
vramik	a8225655cf	Initial commit for the RLM feature Closes #40340 Closes #40341 Co-authored-by: Stefan Guilhen <sguilhen@redhat.com> Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: vramik <vramik@redhat.com>	2025-08-11 17:34:41 -03:00
Steven Hawkins	a79e603272	fix: cutting down on the memory footprint for import (#41196 ) closes: #40875 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-08-04 11:02:39 -04:00
mposolda	3cc8808465	Wrap deprecated passkeys authenticator behind the feature closes #40696 Signed-off-by: mposolda <mposolda@gmail.com>	2025-08-01 16:48:57 +02:00
Björn Eickvonder	c7cc162f6b	Support for RSA Key Size of 3072 Closes #41551 Signed-off-by: Bjoern Eickvonder <bjoern.eickvonder@inform-software.com>	2025-07-31 13:30:33 +02:00
Björn Eickvonder	d62d5030fe	Adds log context information for MDC for realm, users, etc. Closes #39812 Signed-off-by: Björn Eickvonder <b.eicki@gmx.net> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Signed-off-by: Bjoern Eickvonder <bjoern.eickvonder@inform-software.com> Co-authored-by: Pedro Ruivo <pruivo@users.noreply.github.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-07-16 17:46:46 +02:00
Ryan Emerson	0a745d6aeb	Allow Features to declare that they support Rolling upgrades Closes #41022 Signed-off-by: Ryan Emerson <remerson@redhat.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-07-16 12:10:29 +02:00
Martin Kanis	5a42390341	Make UPDATE_EMAIL a supported feature Closes #40227 Signed-off-by: Martin Kanis <mkanis@redhat.com>	2025-07-09 10:15:48 -03:00
rmartinc	70f0731b21	Make passkeys feature dependent on web_authn Closes #40975 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-07-08 13:59:43 +02:00
Michal Hajas	d944823277	Make rolling-updates-v2 preview feature (#40732 ) Closes #38883 Signed-off-by: Michal Hajas <mhajas@redhat.com>	2025-06-26 19:28:35 +02:00
Douglas Palmer	a981f6b6d5	Access Token IDs have less than 128 bits of entropy Closes #38663 Signed-off-by: Douglas Palmer <dpalmer@redhat.com>	2025-06-26 16:48:03 +02:00
mposolda	ab7edb0d01	Introduce ExternalToInternalTokenExchangeProvider. Make it working with Google IDP using token-info endpoint instead of user-info endpoint closes #40146 closes #40133 Signed-off-by: mposolda <mposolda@gmail.com>	2025-06-04 10:03:52 +02:00
Michal Hajas	88f660b235	Add experimental feature rolling-updates:v2 that allows rolling updat… (#39751 ) ...e for patch releases Closes #38882 Signed-off-by: Michal Hajas <mhajas@redhat.com>	2025-05-27 11:17:42 -03:00
rmartinc	5c28ee4d4c	Create client passwords calculating the entropy size for JWT with client secret Closes #38621 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-05-27 10:23:58 +02:00
Alexander Schwartz	a17f551eb2	Log out other sessions including offline sessions on password change Closes #38850 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-05-06 14:04:13 +02:00
rmartinc	4730dbdd8d	Make recovery codes supported Closes #38994 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-04-29 10:25:46 +02:00
Pedro Igor	1ba8fe16ac	Deprecate for removal Instagram Identity Broker (#38998 ) Closes #37967 Closes #36562 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-04-17 09:07:06 +02:00
Michal Hajas	4dc4de7c12	Remove CACHE-EMBEDDED-REMOTE-STORE experimental feature Closes #34160 Signed-off-by: Michal Hajas <mhajas@redhat.com>	2025-04-16 12:01:55 +00:00
vramik	602258d935	[FGAP] Switch the feature from Experimental to Supported Closes #38651 Signed-off-by: vramik <vramik@redhat.com>	2025-04-08 13:00:47 -03:00
lrozenblyum	a0852eaa2e	Prevent NPE in CryptoIntegration.setProvider Closes #38596 Signed-off-by: Leonid Rozenblyum <lrozenblyum@gmail.com>	2025-04-03 08:06:00 +00:00
Steven Hawkins	06e0885f46	fix: adds back reporting of non-ip client addresses (#37797 ) closes: #36843 Signed-off-by: Steve Hawkins <shawkins@redhat.com> # Conflicts: # services/src/main/java/org/keycloak/protocol/oidc/tokenexchange/AbstractTokenExchangeProvider.java # services/src/main/java/org/keycloak/protocol/oidc/tokenexchange/StandardTokenExchangeProvider.java	2025-03-27 19:33:20 +00:00
Tero Saarni	c7f0fc7ac3	Support EC in PEM utils This change adds - Support for decoding EC private keys. - Support for decoding certificate bundles. Closes #38490 Signed-off-by: Tero Saarni <tero.saarni@est.tech>	2025-03-27 15:44:05 +01:00
Alexander Schwartz	c9b88c6bf6	Finalizing release notes and documentation for initial rolling update Closes #38168 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-03-19 21:34:09 +01:00
rmartinc	b0654c455f	Remove hierarchicalUri in KeycloakUriBuilder and parse each URI part separately Closes #38006 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-03-13 18:27:35 +01:00
mposolda	1fc015195f	Promote standard token-exchange V2 to supported by default closes #37368 Signed-off-by: mposolda <mposolda@gmail.com>	2025-03-13 18:26:55 +01:00
Sebastian Schuster	45fb21164b	Improved uri template regex Closes #37834 Signed-off-by: Sebastian Schuster <sebastian.schuster@bosch.io>	2025-03-05 12:15:31 +01:00
mposolda	73cfd9cc80	Polishing of token-exchange features. Remove TOKEN_EXCHANGE_FEDERATED_V2 and TOKEN_EXCHANGE_SUBJECT_IMPERSONATION_V2 closes #37367 Signed-off-by: mposolda <mposolda@gmail.com>	2025-03-03 17:32:17 +01:00
Michal Hajas	8cd97ddb21	Make event metrics supported (#37391 ) * Make event metrics supported Closes #37389 Signed-off-by: Michal Hajas <mhajas@redhat.com> * Address comments from reviews Signed-off-by: Michal Hajas <mhajas@redhat.com> --------- Signed-off-by: Michal Hajas <mhajas@redhat.com>	2025-02-19 12:20:15 +01:00
Giuseppe Graziano	f2d931ba44	Remove FGAP from standard token exchange v2 Closes #37108 Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>	2025-02-12 12:47:23 -03:00
Martin Bartoš	491b7861ed	[PERF] Determine whether OS is Windows Closes #33953 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-02-10 17:31:26 +01:00
Pedro Ruivo	0f91e67b90	Feature flag: rolling-updates Closes #36840 Signed-off-by: Pedro Ruivo <pruivo@redhat.com>	2025-02-06 17:03:50 +01:00
Marek Posolda	ec5a8d161a	Token exchange - added experimental token exchange V2 divided into mulitple features (#36407 ) closes #35504 Signed-off-by: mposolda <mposolda@gmail.com>	2025-01-17 09:12:38 +01:00
Stian Thorgersen	c1c147cb17	Restrict access to environment variables when at the server runtime (#36472 ) Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-01-15 09:36:19 +01:00
Pedro Igor	db986c496e	Allow tracing packets sent to and from LDAP for troubleshooting purposes Closes #36087 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-01-07 12:42:23 +01:00
Thomas Darimont	7b62c0d266	Fix content-type for content.json (#35971 ) We now send the content-type `application/json` when JSON resources are requested via the resources endpoint. Previously, those resources were using content-type `application/octet-stream`. Also removed the duplicate entry for `text/javascript` content type mapping. Fixes #35971 Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>	2024-12-17 19:45:24 -03:00

1 2 3 4 5 ...

418 Commits