External-Mirrors/keycloak
2
0
Fork 0
mirror of https://github.com/keycloak/keycloak.git synced 2026-01-10 15:32:05 -03:30
Code Issues Packages Projects Releases Wiki Activity
29,364 Commits 26 Branches 288 Tags
Commit Graph

2765 Commits

Author SHA1 Message Date
github-actions[bot]
38c38721ad Set version to 26.4.7 2025-12-01 07:44:43 +00:00
Alexander Schwartz
a6d27705d2
When joining a group, don't rely on cached values if user has already been updated (#44491) 
Closes #44480

Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
 2025-11-26 13:00:14 +01:00
Pedro Ruivo
3442d9b087
Update protolock file list 
Closes #44300

Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
 2025-11-18 18:37:37 +00:00
Pedro Ruivo
51dbd6ff79
Find highest sequence number in jgroups_ping 
* Find the highest sequence number in jgroups_ping table to avoid duplicates

Fixes #44189

Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
 2025-11-17 21:21:37 +01:00
Lucas
083d79c560
Fix logger call to align arguments with format pattern (#44236) 
Signed-off-by: Lucas <lucas.bickel@adfinis.com>
 2025-11-14 16:13:31 +00:00
Pedro Ruivo
07ffcaa72b
Sessions not removed when user is deleted 
Fixes #43323

Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
 2025-11-13 14:14:13 +01:00
Stefan Guilhen
d58a1c1c9a Skip checksum validation for 2.5.0-unicode-oracle, that is preventing migrations when schema name changes 
Closes #43564

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
(cherry picked from commit ef3de183dfc21257f7ddc3ff777ddf0118fd92a7)
 2025-11-10 15:11:18 -03:00
Alexander Schwartz
bb9015a1f2
Avoid touching the database layer if no changes are necessary for a user 
Closes #43682

Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
 2025-11-05 14:42:40 +01:00
Tobi
0564876645 Add new indices on offline_client_session 
Closes #43566
Closes #43516

Signed-off-by: twobiers <22715034+twobiers@users.noreply.github.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>
 2025-11-03 16:07:05 -03:00
Pedro Igor
0b1a17b82d
Migration step to add the reset-password scope to user resource type resources 
Closes #43736

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-10-29 13:30:55 +00:00
Alexander Schwartz
b378499bee
Avoid holding on to the realm in cached configurations 
Closes #43744

Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
 2025-10-29 08:01:18 -03:00
Alexander Schwartz
8b253f9e12
Cleaning up threadlocals to prevent (small) memory leak 
Closes #43759

Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
 2025-10-28 13:10:37 -03:00
Pedro Igor
abd5cd292f
Do not lower-case username and email if users are not imported from LDAP 
Closes #43621

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-10-26 17:37:44 +01:00
Pedro Ruivo
bb91dbf7ee
Client session may be lost during session restart 
Fixes #43349

Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>
 2025-10-15 15:20:45 +02:00
Alexander Schwartz
4c1a1dee48
JDBC_PING publishes its physical address on startup 
Closes #43357

Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
 2025-10-14 09:59:57 +01:00
Alexander Schwartz
7ef8f5ec1d
Prevent using JTA transaction when initializing JDBC_PING 
Closes #43335

Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
 2025-10-10 09:42:46 +00:00
Pedro Igor
a8e295d326
Filter invalid resources and scopes when processing entries from the cache (#43223) 
Closes #42907

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-10-07 13:06:46 +02:00
Pedro Ruivo
f4af3e2d23
Restarting an user session broken for persistent sessions 
Fixes #43161

Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
 2025-10-03 19:27:12 +02:00
github-actions[bot]
1d986f682a Committing **/proto.lock changes 
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2025-09-30 07:33:18 +00:00
Stefan Guilhen
7f29c9bb88 Improve workflow logging messages 
- every execution gets its own id that can be used to track all activities related to that particular workflow execution

Closes #42952

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2025-09-29 23:10:21 -03:00
Pedro Igor
6e851ce80e Only filter default organization related scopes based on dynamic scope format 
Closes #42877

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-09-26 16:28:12 -03:00
Václav Muzikář
b65a60e40d
Support for EDB 17 (#42341) 
Closes #42742
Closes #42293

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
 2025-09-26 16:04:47 +02:00
Stefan Guilhen
7e28d13e76 Add workflow condition that uses boolean expressions to combine and negate conditions 
Closes #42583

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2025-09-26 07:52:12 -03:00
Alexander Schwartz
a84d243d47
Avoid invalidating the realm when managing client initial access 
Closes #42922

Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>
 2025-09-24 21:31:32 +02:00
Martin Bartoš
5acec7d5fc
[PERF] InitClusterStartupTime debug messages (#42908) 
Closes #42880

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
 2025-09-24 16:04:03 +02:00
Alexander Schwartz
4389bc2990
Fix duplicate label when using password history 
Closes #42736

Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>
 2025-09-24 11:21:59 +02:00
Pedro Igor
fe8fce859d Improve the Workflow JSON schema 
Closes #42697

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-09-24 04:04:44 -03:00
Pedro Igor
54d2451b35 Make user read-only and a proper error message when the user federation provider is not available 
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-09-24 04:03:13 -03:00
Pedro Igor
d65c17ebc7 Do not fail when querying user federation providers and log messages to indicate the problem 
Closes #42276

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-09-24 04:03:13 -03:00
Alexander Schwartz
a9ed355bfc
Adding missing time column to index 
Closes #42792

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2025-09-23 07:33:08 -03:00
Pedro Ruivo
47f85631f3
Automatically create external caches for MULTI_SITE deployments 
Closes #32129

Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
 2025-09-19 18:56:38 +02:00
Pedro Ruivo
4ccf7407ed
Lazy load client sessions 
Closes #42628

Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
 2025-09-19 10:45:11 +00:00
Pedro Igor
c1fdbb0be4
Better names for workflow events 
Closes #42389

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-09-18 14:50:45 +02:00
Stian Thorgersen
f9ee040ef0
Add federated subject configuration option to federated-jwt authenticator (#42610) 
Closes #42608

Signed-off-by: stianst <stianst@gmail.com>
 2025-09-17 13:39:50 +02:00
Pedro Ruivo
f7ff7e55d8
Replace UUID with composite key for client session cache 
Closes #42547

Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2025-09-17 10:25:51 +00:00
Pedro Ruivo
f1bd42116e
NullPointerException when persisting a client session 
Fixes #42652

Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
 2025-09-16 17:49:36 +02:00
vramik
d0e83cc05e Rename RLM to Workflows 
Closes #42512

Signed-off-by: vramik <vramik@redhat.com>
 2025-09-16 08:52:50 -03:00
Ricardo Martin
a2acdda535
Automatic download and cache of the SAML client public keys (#41947) 
Closes #17028

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2025-09-16 13:07:33 +02:00
Pedro Ruivo
714d71b4f5
Concurrent update embedded caches and database 
Closes #42374

Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2025-09-15 18:38:03 +00:00
Stefan Guilhen
20f5a15278 Adjust scheduled action time so that it is always based on the previous action 
Closes #42385

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2025-09-12 15:50:38 -03:00
Martin Kanis
5a02bc1adb Admin UI hides local users when LDAP provider fails 
Closes #42276

Signed-off-by: Martin Kanis <mkanis@redhat.com>
 2025-09-12 10:43:08 -03:00
Ryan Emerson
73a4020baa
Remove default cache configurations from cache-local.xml 
Closes #42351

Signed-off-by: Ryan Emerson <remerson@ibm.com>
 2025-09-11 21:11:56 +02:00
Alexander Schwartz
6ea3c8aedf
Session IDs and auth codes should have 128 bits of entropy 
Closes #42274

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2025-09-11 17:05:40 +02:00
Alexander Schwartz
6a202146b4
Handle already existing user session in the store 
Closes #40374

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2025-09-11 14:58:53 +02:00
Stian Thorgersen
51465f52a3
Get client by client attribute 
Closes #42543

Signed-off-by: stianst <stianst@gmail.com>
 2025-09-11 12:07:13 +00:00
Pedro Ruivo
8567eec526
ClientSession timestamp not updated in the database 
Closes #42012

Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
 2025-09-10 20:34:22 +02:00
Pedro Igor
0d5dfc3eae
Add support for ad-hoc policies (#42508) 
Closes #42126

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-09-10 15:40:17 +00:00
Vlasta Ramik
b32b612f75
Compilation error in RolePolicyConditionProvider (#42497) 
Closes #42496

Signed-off-by: vramik <vramik@redhat.com>
 2025-09-10 09:04:49 +00:00
Pedro Igor
1b17a3c9a6
Add a policy condition based on user roles (#42487) 
Closes #42117

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-09-10 03:23:56 +02:00
Vlasta Ramik
4382072d89
[RLM] Disable policy when the origin or selection criteria is removed 
Closes keycloak#42123 
Signed-off-by: vramik <vramik@redhat.com>
 2025-09-09 16:46:43 -03:00