External-Mirrors/keycloak
2
0
Fork 0
mirror of https://github.com/keycloak/keycloak.git synced 2026-01-10 15:32:05 -03:30
Code Issues Packages Projects Releases Wiki Activity
14,963 Commits 26 Branches 288 Tags
Commit Graph

14963 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Pedro Igor
235158399a Resolving dns names used from tests from local host file 
Closes #15904
 2023-02-03 16:40:57 -03:00
Marek Posolda
30d0e9d22d
Fixes for OOB endpoint and KeycloakSanitizer (#16774) 
(cherry picked from commit 91ac2fb9dd50808ff5c76d639594ba14a8d0d016)
 2023-02-02 08:34:30 +01:00
Stian Thorgersen
fc3c61235f
HTML Injection in Keycloak Admin REST API (#16764) 
Resolves #GHSA-m4fv-gm5m-4725

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
 2023-02-01 14:34:17 +01:00
Pedro Igor
4d0629dcf4
Allow managing the username idn homograph validator (#16645) 
Closes #13346
 2023-01-31 16:01:50 +00:00
Hynek Mlnarik
8438281813 Fix linebreaks in XML / SAML signatures 
See https://bugs.openjdk.org/browse/JDK-8264194
See https://issues.apache.org/jira/browse/SANTUARIO-482

Fixes: #14529
 2023-01-24 09:16:03 +01:00
Hynek Mlnarik
22e4e61ca3 Prevent endless loop in case of split-brain 
Fixes: #16427
 2023-01-16 12:01:00 +01:00
Stian Thorgersen
02d113ab71
Set OkHttp 4.10.0 in parent pom (#16383) (#16414) 2023-01-12 16:42:36 +01:00
Stian Thorgersen
23207f81cf
Wrong auth session id being used when validating auth session id cookies (#16253) (#16415) 
Closes #16252
Closes #16132

Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>
 2023-01-12 14:09:51 +01:00
Stian Thorgersen
6572a64a8b
Update to XStream 1.4.20 (#16411) 
Closes #16276
 2023-01-12 14:06:55 +01:00
Stian Thorgersen
8313baa50e Set Snakeyaml to 1.33 in parent pom (#16382) 
Closes #15339
 2023-01-12 09:30:26 +01:00
Václav Muzikář
7ccfd008d2 Update SDK to 4.0.6 2023-01-11 12:01:11 -08:00
Pedro Igor
803ae18153
Verify if token is revoked when validating bearer tokens (#16389) 2023-01-11 14:42:31 +01:00
Hynek Mlnarik
6c0e66a160 Fix putAll issues 
Closes: #16287
 2023-01-11 08:40:37 +01:00
Pedro Igor
e7fa1cabbc Disabling strict https if hostname is diasabled 
Closes #15287
 2023-01-10 17:21:08 +01:00
Pedro Igor
eb54328c85 Resolving dns names used from tests from local host file 
Closes #15904
 2023-01-10 17:21:08 +01:00
Pedro Igor
c2d0225248 Improving quarkus testsuite execution time 
Closes #13544
 2023-01-10 17:21:08 +01:00
mposolda
03a04e6233 The redirect URI cannot be verified during logout in the case when client was removed 
closes #15866

(cherry picked from commit def7142c50a2d4671550f76796d8f853253895b3)
 2023-01-10 08:30:17 +01:00
Bruno Oliveira da Silva
7e767af26a Update to Quarkus 2.13.6.Final 
Resolves #16084
 2022-12-22 03:04:50 -08:00
Peter Zaoral
7e206a4be0 Cleanup dependencies and align with Quarkus 
* aligned parent POM dependency versions with the Quarkus BOM

Closes #15325

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>

Conflicts:
	pom.xml
	testsuite/integration-arquillian/pom.xml
	testsuite/utils/pom.xml
 2022-12-22 03:04:50 -08:00
Alexander Schwartz
6197d05a0d Disabling unstable test until further analysis is complete 
Relates to #15487
 2022-12-15 08:46:14 +01:00
Alexander Schwartz
daf0dee168 Disabling unstable test until further analysis is complete 
Relates to #15487
 2022-12-15 08:46:14 +01:00
Václav Muzikář
e01e25f823 Update to Quarkus 2.13.5 2022-12-14 07:53:45 -03:00
Michal Hajas
7ad4074f7f Ignore test until the intermittent failure from #14917 is resolved 2022-12-13 16:15:20 +01:00
Stian Thorgersen
da8d616163
Sync commits (#15981) 
* Avoid path traversal vis double-url encoding of redirect URI (#8)

(cherry picked from commit a2128fb9e940d96c2f9a64edcd4fbcc768eedb4f)

* Do not resolve user session if corresponding auth session does not exist (#7)

* Stabilizing the ConcurrentLoginTest when running with JPA map storage by locking user sessions (#9)

Co-authored-by: Marek Posolda <mposolda@gmail.com>
Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
 2022-12-13 14:34:50 +01:00
Stian Thorgersen
10813dbbff Fix OpenshiftClientStorageTest.testCodeGrantFlowWithServiceAccountUsingOAuthRedirectReference (#15741) 
Closes #15565
 2022-12-12 09:28:56 +01:00
douph1
ac29cbc65d Use org.keycloak.common.util.Base64Url to encode/decode clientID 
fix #15734
    related #10227 #10231
 2022-12-08 13:09:42 +01:00
Alexander Schwartz
57cbea6e14 Use LOB handling query to select clients on Oracle 
Closes #15639
 2022-12-06 09:06:20 +01:00
Alexander Schwartz
7b6ddce4c4 Make tests run on Oracle DB on the internal pipeline 
Closes #15643
 2022-11-24 14:20:51 +01:00
Alexander Schwartz
43a3fed8b7 Fix query to work on OracleDB CLOB 
Closes #15528
 2022-11-24 14:01:13 +01:00
Stian Thorgersen
3b06c097b6
Stop adding .v2 to default theme if set in server config (#15501) 
Closes #15392
 2022-11-18 07:56:50 +01:00
Jon Koops
f87a499c33
Backport fixes from profile refactor (#15495) 2022-11-15 09:29:26 +01:00
Václav Muzikář
37e72068da Fix race condition while updating Secrets labels in Operator 2022-11-08 08:47:41 +01:00
Stian Thorgersen
1ce61943a6
Upgrade Bouncycastle from 1.68 to 1.70 (#14198) (#15379) 
* Upgrade Bouncycastle to 1.70

* Update pom.xml

* Update pom.xml

Co-authored-by: Stian Thorgersen <stianst@gmail.com>
Co-authored-by: Stian Thorgersen <stian@redhat.com>

Co-authored-by: Brendon Vicente <48719973+Bredstone@users.noreply.github.com>
 2022-11-07 20:45:04 +01:00
Alexander Schwartz
5843c811bf
Use RESOURCE_LOCAL transactions for JPA map storage (#15315) 
Closes #15248
 2022-11-07 19:18:04 +01:00
Stian Thorgersen
6bab737e85
Fix classpath separator for windows startup script (#15300) (#15377) 
Closes #15281

Co-authored-by: Stian Thorgersen <stianst@gmail.com>

Co-authored-by: Fouad Almalki <me@fouad.io>
 2022-11-07 16:52:02 +01:00
Alexander Schwartz
717f65621e
Allow a partial import to overwrite the default role (#15316) 
Closes #9891
 2022-11-07 15:06:46 +01:00
Pedro Igor
f6985949b6
Close the session within resteasy boundaries (#15193) 
Closes #15192
 2022-11-01 11:06:34 +01:00
Stian Thorgersen
17117820cc
Remove AccountFormServiceTest (#15197) 
Closes #15196
 2022-10-28 12:26:59 +02:00
Lex Cao
43a3677cc7 Fix slow deletion on deleteClientSessionsByRealm and deleteClientSessionsByUser when using mysql and mariadb by converting sub-query to join 2022-10-27 10:37:15 +02:00
Alexander Schwartz
9fb9780f02 Don't rely on DefaultModeLCriteria in equals/hashCode 
Instead, map this to JPA query and then create the cache lookup key from there.

Closes #14938
 2022-10-26 15:49:26 +02:00
Alexander Schwartz
e494649a4e First naïve per-session caching for JPA map store 
Closes #14938
 2022-10-26 15:49:26 +02:00
Peter Skopek
8f9c3cdeab SAML adapter is missing "crypto/default" module (#15146) 
Closes #15146
 2022-10-26 11:59:56 +02:00
Václav Muzikář
6dc2119e20 Exclude operator module by default 2022-10-25 15:55:11 +02:00
Master_Sky
164465861b
fix(sec): upgrade org.apache.tomcat:tomcat-catalina to 8.5.76 (#14950) 
Co-authored-by: stianst <stianst@gmail.com>
 2022-10-25 09:30:28 -03:00
Michal Hajas
883e83e625 Remove deprecated methods from data providers and models 
Closes #14720
 2022-10-25 09:01:33 +02:00
Martin Bartoš
d9c96b9432
Replace ::set-output with environment variables in GHA CI (#15078) 
Closes #15077
 2022-10-25 08:58:34 +02:00
Jon Koops
3d6c0690ef
Restore labels for supported applications under 'OTP Policy' tab (#15117) 2022-10-25 07:34:19 +02:00
Alexander Schwartz
3a30061c44 Avoid deadlock on CockroachDB when removing authentication sessions 
Closes #14991
 2022-10-24 20:42:31 +02:00
Alexander Schwartz
9b80bad391 Stabilize test testAccountManagementLinkIdentity by waiting for username to appear 
Closes #15054
 2022-10-24 19:19:27 +02:00
Bruno Oliveira da Silva
ec73533895 Upgrade to Quarkus 2.13.3 
Resolves #15032
Resolves #14785
Resolves #14833
 2022-10-24 12:40:24 -03:00