keycloak

mirror of https://github.com/keycloak/keycloak.git synced 2026-01-10 15:32:05 -03:30

Author	SHA1	Message	Date
Giuseppe Graziano	4b443f04ee	JWT Authorization grant idp config (#43841 ) Closes #43568 Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>	2025-11-04 14:46:14 +01:00
Martin Bartoš	d5763b9c0b	Migrate the OTelProvider test to the new framework Closes #43858 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-11-04 12:53:47 +01:00
Thomas Diesler	131e2357a9	Cannot issue vc of type oid4vc_natural_person Signed-off-by: Thomas Diesler <tdiesler@ibm.com>	2025-11-04 10:46:44 +01:00
KONSTANTINOS GEORGILAKIS	1c0d4616a5	hide scopes from scopes_supported in discovery endpoint Closes #10388 Signed-off-by: cgeorgilakis-grnet <cgeorgilakis@admin.grnet.gr> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-11-03 16:26:12 +00:00
Pedro Igor	2216ada20b	Allow GET and PUT methods using application/yaml media type Closes #42687 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-11-03 13:09:17 -03:00
vramik	4d912a9c21	Support for YAML payloads for Admin client for creation of workflows Closes #43666 Signed-off-by: vramik <vramik@redhat.com>	2025-11-03 13:09:17 -03:00
sander boer	d805a28ea4	Adds group description during import Adds the group description during group import from a representation. This ensures that the description is properly populated when groups are created from external sources. Closes #42851 Signed-off-by: Sander <mail@sanderboer.nl>	2025-11-03 16:08:49 +00:00
Lukas Hanusovsky	5aa05d08eb	Test Framework - new Forms test suite. (#43894 ) Signed-off-by: Lukas Hanusovsky <lhanusov@redhat.com>	2025-11-03 15:15:10 +00:00
Lukas Hanusovsky	0dbcfeb9d0	Test Framework - new Login V1 test suite. (#43895 ) Signed-off-by: Lukas Hanusovsky <lhanusov@redhat.com>	2025-11-03 15:08:12 +00:00
Robin Meese	27a47b2537	Add Czech translators (#43910 ) Closes: #43909 Signed-off-by: Robin Meese <39960884+robson90@users.noreply.github.com>	2025-11-03 15:52:59 +01:00
Martin Bartoš	75fcf11a1b	Separate HOW_TO_RUN.md file for the new testsuite (#43860 ) Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-11-03 15:41:01 +01:00
Lukas Hanusovsky	2ddde05afb	Moving UserFederationLdapConnectionTest to federation/ldap package (#43852 ) Signed-off-by: Lukas Hanusovsky <lhanusov@redhat.com>	2025-11-03 15:39:40 +01:00
Bernat Moix	733dfdbc1c	fix: use providerId instead of alias for social provider icons Identity provider icons were only displayed when the alias exactly matched predefined values. This fixes the issue by checking the providerId (provider type) instead of the alias, allowing custom aliases while maintaining correct icon display. Closes #43515 Signed-off-by: Bernat Moix <bmoix@bmoix.io>	2025-11-03 15:28:05 +01:00
Václav Muzikář	9c86eae7ed	Initial Client API v2 impl (#43395 ) Closes #43224 Signed-off-by: Václav Muzikář <vmuzikar@redhat.com> Co-authored-by: Martin Bartoš <mabartos@redhat.com> Co-authored-by: Peter Zaoral <pzaoral@redhat.com> Co-authored-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Robin Meese <39960884+robson90@users.noreply.github.com>	2025-11-03 14:31:54 +01:00
Steven Hawkins	f7735b573c	fix: removing the fast start optimization (#43686 ) * fix: removing the fast start optimization closes: #38790 #42960 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * updating the docs based upon a review comment Signed-off-by: Steve Hawkins <shawkins@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-11-03 12:37:13 +01:00
vramik	ece96e397e	Make set creadential label use `reset-password` scope Closes #43460 Signed-off-by: vramik <vramik@redhat.com>	2025-11-03 07:57:58 -03:00
Thomas Diesler	fead1b1ab6	Git ignore local keycloak state dir Closes #43816 Signed-off-by: Thomas Diesler <tdiesler@ibm.com>	2025-11-03 09:09:22 +00:00
Stian Thorgersen	d0a7225b3d	Allow CORS Access-Control-Allow-Headers customization (#43767 ) Closes #12682 Signed-off-by: stianst <stianst@gmail.com>	2025-11-03 06:39:44 +00:00
Alexander Schwartz	52ba359cc3	Make client and IDP required when using federated client authentication (#43890 ) Closes #43889 Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>	2025-11-03 07:21:55 +01:00
蔡秀吉	e84a1d6363	Fix typos and formatting in OIDC auth flows documentation Closes #43818 Signed-off-by: thc1006 <84045975+thc1006@users.noreply.github.com>	2025-11-01 19:14:41 +00:00
Tobi	479859a7a3	Add new indices on `offline_client_session` Closes #43566 Signed-off-by: twobiers <22715034+twobiers@users.noreply.github.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-10-31 17:49:47 +01:00
AvivGuiser	41d5aae6f6	add labels to realm import jobs (#42967 ) Signed-off-by: AvivGuiser <avivguiser@gmail.com>	2025-10-31 17:20:22 +01:00
Martin Bartoš	8502cc3ae1	Including OTLP headers for tracing (#43122 ) * Including OTLP headers for tracing Closes #41007 Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Polishing, add test for the util class, address review Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Remove the WildcardOptionsUtil#isKcWildcardOption Signed-off-by: Martin Bartoš <mabartos@redhat.com> --------- Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-10-31 15:46:05 +01:00
Stian Thorgersen	a34b14796f	Run unit tests with JDK matrix (#43240 ) Closes #16039 Signed-off-by: stianst <stianst@gmail.com>	2025-10-31 13:21:44 +01:00
Stian Thorgersen	1048c8d9c9	Filter out non-user authentication IdPs from account and login (#43798 ) Closes #43553 Signed-off-by: stianst <stianst@gmail.com>	2025-10-31 12:40:04 +01:00
rmartinc	f92adda310	Improve JWT Assertion Validation using client validators Closes #43642 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-10-31 11:58:08 +01:00
forkimenjeckayang	f27982aeb7	[OID4VCI] Ensure authorization_details from PAR requests are properly returned in token responses (#43215 ) Closes #43214 Signed-off-by: forkimenjeckayang <forkimenjeckayang@gmail.com> Signed-off-by: Awambeng Rodrick <awambengrodrick@gmail.com> Co-authored-by: Awambeng Rodrick <awambengrodrick@gmail.com>	2025-10-31 11:39:38 +01:00
Ingrid Kamga	ea06651da5	[OID4VCI] Ensure `openid_credential` is one of `authorization_details_types_supported` on the Authorization Server metadata (#43599 ) Closes #43398 Signed-off-by: Ingrid Kamga <Ingrid.Kamga@adorsys.com>	2025-10-31 11:32:24 +01:00
Melek KNANI	8374be674e	fix(admin-ui): correct default value for backchannel logout session required Signed-off-by: Melek KNANI <melek.knani@etu.ec-lyon.fr>	2025-10-31 11:00:50 +01:00
rmartinc	3b3adcf1e4	Ensure the logout endpoint removes the authentication session Closes #43853 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-10-31 10:59:25 +01:00
Martin Bartoš	12d9ec048b	[quarkus-next] Removed exception escaped OTel attribute (#43848 ) Closes #43845 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-10-31 08:52:07 +01:00
Stian Thorgersen	71160384ca	Add ppc64le to Operator CSV metadata (#43831 ) Closes #43830 Signed-off-by: stianst <stianst@gmail.com>	2025-10-31 06:30:14 +01:00
Pedro Ruivo	24f67d0c04	Always validate cookie signature Closes #43851 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>	2025-10-30 22:18:13 +00:00
Pedro Ruivo	e40c5de050	Session cache affinity Closes #42776 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-10-30 21:01:09 +00:00
Andreas Blättlinger	bd2a1c7c00	Use password visibility icon from theme.properties Closes #43843 Signed-off-by: Andreas Blaettlinger <bln1imb@bosch.com>	2025-10-30 21:18:51 +01:00
Ricardo Martin	475d2c0f02	Remove the trailing slash for base url in the account and admin tests Closes #43863 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-10-30 20:48:01 +01:00
Steven Hawkins	74e5da49c7	fix: moving h2 logic out of Database so that it can be resolved (#43750 ) closes: #43687 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-10-30 11:08:10 -04:00
Steven Hawkins	9e98f2bf96	fix: simplify debug handling and remove the 0.0.0.0 default (#43574 ) * fix: simplify debug handling and remove the 0.0.0.0 default closes: #43160 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * Update quarkus/dist/src/main/content/bin/kc.sh Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Signed-off-by: Steven Hawkins <shawkins@redhat.com> * removing the ability to specify just the ip Signed-off-by: Steve Hawkins <shawkins@redhat.com> * Apply suggestions from code review Co-authored-by: Peter Zaoral <pepo48@gmail.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Co-authored-by: Peter Zaoral <pepo48@gmail.com>	2025-10-30 15:57:37 +01:00
Alexander Schwartz	0f01444543	Allow only normalized paths in requests (#43765 ) Closes #43763 Signed-off-by: Martin Bartoš <mabartos@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Martin Bartoš <mabartos@redhat.com>	2025-10-30 14:37:50 +01:00
Pedro Ruivo	6317c02a27	Refactor AuthenticationSessionManager Closes #43825 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-10-30 12:26:07 +01:00
Stian Thorgersen	be6a3814fb	Add CORS support to OIDC dynamic client registration endpoints (#43625 ) Closes #8863 Signed-off-by: stianst <stianst@gmail.com>	2025-10-30 12:12:08 +01:00
Patrick Weiner	b4e5c01929	Set `autofocus` on WebAuthn authenticate button in keycloak.v2 login theme. (#43803 ) Closes #43802 Signed-off-by: Patrick Weiner <patrick.weiner@prime-sign.com>	2025-10-30 11:02:00 +01:00
Tomáš Kyjovský	4c64b7189c	Deprecate `org.keycloak.common.util.Base64` Closes #43370 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Signed-off-by: 1867605+tkyjovsk@users.noreply.github.com Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-10-30 09:12:14 +01:00
Peter Zaoral	f65adbf628	win-fix: correct hostname normalization condition for loopback addresses (#43634 ) Closes: #42794 Signed-off-by: Peter Zaoral <pzaoral@redhat.com> Co-authored-by: Steven Hawkins <shawkins@redhat.com>	2025-10-30 08:49:45 +01:00
Weblate (bot)	8525792d92	Translations update from Hosted Weblate (#43739 ) * Updated translation for Turkish Language: tr Update translation files Updated by "Cleanup translation files" hook in Weblate. Updated translation for Turkish Language: tr Updated translation for Turkish Language: tr Updated translation for Turkish Language: tr Co-authored-by: Alpertunga <a_ertin@msn.com> Co-authored-by: Arif EROL <arif.erol16@gmail.com> Co-authored-by: Hosted Weblate <hosted@weblate.org> Signed-off-by: Alpertunga <a_ertin@msn.com> Signed-off-by: Arif EROL <arif.erol16@gmail.com> Signed-off-by: Hosted Weblate <hosted@weblate.org> * Update translation files Updated by "Cleanup translation files" hook in Weblate. Co-authored-by: Hosted Weblate <hosted@weblate.org> Signed-off-by: Hosted Weblate <hosted@weblate.org> * Update translation files Updated by "Cleanup translation files" hook in Weblate. Updated translation for German Language: de Co-authored-by: Hosted Weblate <hosted@weblate.org> Co-authored-by: Robin <39960884+robson90@users.noreply.github.com> Signed-off-by: Hosted Weblate <hosted@weblate.org> Signed-off-by: Robin <39960884+robson90@users.noreply.github.com> * Update translation files Updated by "Cleanup translation files" hook in Weblate. Updated translation for Russian Language: ru Co-authored-by: Anton Petrov <petrov9810@gmail.com> Co-authored-by: Hosted Weblate <hosted@weblate.org> Signed-off-by: Anton Petrov <petrov9810@gmail.com> Signed-off-by: Hosted Weblate <hosted@weblate.org> * Update translation files Updated by "Cleanup translation files" hook in Weblate. Co-authored-by: Hosted Weblate <hosted@weblate.org> Signed-off-by: Hosted Weblate <hosted@weblate.org> * Update translation files Updated by "Cleanup translation files" hook in Weblate. Co-authored-by: Hosted Weblate <hosted@weblate.org> Signed-off-by: Hosted Weblate <hosted@weblate.org> * Updated translation for French Language: fr Updated translation for French Language: fr Update translation files Updated by "Cleanup translation files" hook in Weblate. Updated translation for French Language: fr Translated using Weblate (French) Translation: Keycloak/Theme base/admin Translate-URL: https://hosted.weblate.org/projects/keycloak/theme-baseadmin/fr/ Updated translation for French Language: fr Updated translation for French Language: fr Updated translation for French Language: fr Updated translation for French Language: fr Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Dodouce <marin.pau22@gmail.com> Co-authored-by: Hosted Weblate <hosted@weblate.org> Co-authored-by: Sylvain Pichon <service@spichon.fr> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Signed-off-by: Dodouce <marin.pau22@gmail.com> Signed-off-by: Hosted Weblate <hosted@weblate.org> Signed-off-by: Sylvain Pichon <service@spichon.fr> * Update translation files Updated by "Cleanup translation files" hook in Weblate. Co-authored-by: Hosted Weblate <hosted@weblate.org> Signed-off-by: Hosted Weblate <hosted@weblate.org> * Update translation files Updated by "Cleanup translation files" hook in Weblate. Co-authored-by: Hosted Weblate <hosted@weblate.org> Signed-off-by: Hosted Weblate <hosted@weblate.org> --------- Signed-off-by: Alpertunga <a_ertin@msn.com> Signed-off-by: Arif EROL <arif.erol16@gmail.com> Signed-off-by: Hosted Weblate <hosted@weblate.org> Signed-off-by: Robin <39960884+robson90@users.noreply.github.com> Signed-off-by: Anton Petrov <petrov9810@gmail.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Signed-off-by: Dodouce <marin.pau22@gmail.com> Signed-off-by: Sylvain Pichon <service@spichon.fr> Co-authored-by: Alpertunga <a_ertin@msn.com> Co-authored-by: Arif EROL <arif.erol16@gmail.com> Co-authored-by: Robin <39960884+robson90@users.noreply.github.com> Co-authored-by: Anton Petrov <petrov9810@gmail.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Dodouce <marin.pau22@gmail.com> Co-authored-by: Sylvain Pichon <service@spichon.fr>	2025-10-29 19:51:04 +01:00
Steven Hawkins	ccc7568879	fix: updating build docs (#43607 ) * fix: updating build docs closes: #43606 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * Update docs/building.md Co-authored-by: Martin Bartoš <mabartos@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Martin Bartoš <mabartos@redhat.com>	2025-10-29 12:05:49 -04:00
Marek Posolda	2fc5419676	Avoid using UserCredentialManager from user storage extensions (#43695 ) closes #43694 Signed-off-by: mposolda <mposolda@gmail.com>	2025-10-29 16:26:59 +01:00
Stan Silvert	322cbcdd84	Only check required field when i18n dialog is open. Fixes #41271 Fixes #41270 Signed-off-by: Stan Silvert <ssilvert@redhat.com>	2025-10-29 11:16:45 -03:00
Bruno Oliveira da Silva	6bce46c842	Reduce Dependabot PR noise by grouping them and switching to weekly batch updates (#43704 ) This PR uses dependabot.yml groups key to controls version updates. It tells Dependabot to bundle regular package upgrades (e.g., npm or github-actions) into a single pull request based on your rules. Additional step: Enable in the repository settings grouped updates: This setting controls security updates. Enabling this tells Dependabot to bundle all available security patches (i.e., updates that fix vulnerabilities) into a single pull request, separate from our version updates. See: https://github.blog/changelog/2024-03-28-dependabot-grouped-security-updates-generally-available/ Signed-off-by: Bruno Oliveira da Silva <bruno@abstractj.com>	2025-10-29 13:30:24 +01:00
Pedro Igor	ce5dd51921	Migration step to add the reset-password scope to user resource type resources Closes #43736 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-10-29 08:49:51 -03:00

... 3 4 5 6 7 ...

29708 Commits