External-Mirrors/keycloak
2
0
Fork 0
mirror of https://github.com/keycloak/keycloak.git synced 2026-01-09 23:12:06 -03:30
Code Issues Packages Projects Releases Wiki Activity
29,170 Commits 26 Branches 288 Tags
Commit Graph

956 Commits

Author SHA1 Message Date
Martin Kanis
7ae9ebb467 [RLM] Allow adding and removing actions to existing policies 
Closes #42384

Signed-off-by: Martin Kanis <mkanis@redhat.com>
 2025-09-18 12:13:13 -03:00
vramik
d0e83cc05e Rename RLM to Workflows 
Closes #42512

Signed-off-by: vramik <vramik@redhat.com>
 2025-09-16 08:52:50 -03:00
Pedro Igor
0d5dfc3eae
Add support for ad-hoc policies (#42508) 
Closes #42126

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-09-10 15:40:17 +00:00
Steven Hawkins
05c7c625d3
fix: don't show the local access screen if a service account exists (#42218) 
closes: #42201

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2025-09-05 18:22:31 +02:00
mposolda
624d236ced DPoP verification support for admin/account REST API endpoints. Java admin-client DPoP support 
closes #33942

Signed-off-by: mposolda <mposolda@gmail.com>
 2025-09-02 14:29:30 +02:00
Pedro Igor
a64c5c0d70 Adding RLM Admin API and basic endpoints 
Closes #40346

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-08-28 14:49:21 -03:00
Steven Hawkins
2ce3474ed5
fix: addressing possible npes (#41944) 
close: #40659

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2025-08-18 23:51:17 +02:00
Steven Hawkins
fdca122469
fix: ensuring streams are closed 
closes: #40660

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2025-08-15 07:40:54 +02:00
Akbar Husain
06f80416fb
Replace keySet with entrySet 
Closes #40064

Signed-off-by: akbarhusainpatel <apatel@intermiles.com>
Co-authored-by: akbarhusainpatel <apatel@intermiles.com>
 2025-08-14 17:31:15 +02:00
Peter Skopek
651d651c30 Add missing artifact descriptions to allow Maven Central Portal Publisher pass validation process. (#40822) 
Signed-off-by: Peter Skopek <pskopek@redhat.com>
 2025-08-12 16:50:17 +02:00
Barathwaja S
81a7f38a76 Added emailVerified filtering for users endpoint; updated user count endpoint with logic to support enabled, emailVerified, idpAlias, idpUserId, and exact field query parameters 
Closes #38556
Closes #29295

Signed-off-by: Barathwaja S <sbarathwaj4@gmail.com>
 2025-07-03 17:05:36 -03:00
Michael-AT-Corporation
ff9e7c2371 Added new searchByAttributes function to UsersResource with the exact parameter 
Closes #39609

Signed-off-by: Michael-AT-Corporation <michael-hu@ooutlook.de>
 2025-07-03 13:51:46 -03:00
mposolda
daba8ad53f Improve javadoc for admin-client methods with injecting own resteasyClient 
closes #40231

Signed-off-by: mposolda <mposolda@gmail.com>
 2025-07-01 14:53:28 +02:00
Douglas Palmer
a981f6b6d5 Access Token IDs have less than 128 bits of entropy 
Closes #38663

Signed-off-by: Douglas Palmer <dpalmer@redhat.com>
 2025-06-26 16:48:03 +02:00
mposolda
f8ed0f9a5d Update javadoc of java admin-client for Keycloak 26.3 
closes #40709

Signed-off-by: mposolda <mposolda@gmail.com>
 2025-06-25 13:16:49 +02:00
Douglas Palmer
1183157d86 Key generation for client authentication is always RSA 2048 with a 10-year validity, regardless of the selected algorithm 
Closes #38620

Signed-off-by: Douglas Palmer <dpalmer@redhat.com>
 2025-06-25 08:15:43 +02:00
Alexis Rico
d4eec2ad32
Add briefRepresentation to get organizations from user 
Allow asking for the full representation in `GET /admin/realms/{realm}/organizations/members/{member-id}/organizations`

Closes #40438

Signed-off-by: Alexis Rico <sferadev@gmail.com>
 2025-06-16 18:05:35 +00:00
Pedro Igor
b22b1f298c Adding parameter to control whether the count of subgroups of subgroups should be returned 
Closes #39668

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-05-22 11:15:38 -03:00
Giuseppe Graziano
5505f26cf8 Persistent user session for client scopes evaluate function 
Closes #37202

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
 2025-05-16 12:50:37 +02:00
Peter Tóth
c6e1878087
Add organizations count endpoint 
Closes #38262

Signed-off-by: Péter Tóth <tothp@sztaki.hu>
 2025-04-14 19:44:44 +00:00
mposolda
bb4837d007 Update javadoc of java admin-client for Keycloak 26.2 
closes #38398

Signed-off-by: mposolda <mposolda@gmail.com>
 2025-03-25 10:55:43 +01:00
Ricardo Martin
9cc847b5ad
Logout session when closing the keycloak client 
Closes #22215

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2025-03-18 08:42:18 +01:00
Steven Hawkins
f69261daad
fix: turning off default picocli behavior we don't want (#38070) 
closes: #38065

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2025-03-14 10:20:26 +01:00
Stefan Guilhen
5babc6c1a3 Ensure the group being joined is not an organization group in GroupLDAPStorageMapper 
Closes #37393

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2025-02-17 14:41:53 -03:00
Olivier Boudet
3777a0d976 fix javadoc 
Signed-off-by: Olivier Boudet <o.boudet@gmail.com>
 2025-02-04 08:52:35 -03:00
rmartinc
6cf92d9dc7 Add crl cache to certificate validation 
Closes #26473

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2025-01-22 14:58:35 +01:00
Stian Thorgersen
fc2b9018f1
Extend REST API for login and admin events to support sync scenarios (#36601) 
Closes #36600

Signed-off-by: stianst <stianst@gmail.com>
 2025-01-20 14:32:55 +01:00
mposolda
fd1e82f05d Polishing of CreatedResponseUtil.getCreatedId 
closes #36557

Signed-off-by: mposolda <mposolda@gmail.com>
 2025-01-17 13:23:24 +01:00
Thomas Darimont
d94e388047 CreatedResponseUtil.getCreatedId should expose server error message (#34343) 
We now expose the actual error message found in the response if present.

Fixes #34343

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
 2025-01-16 14:33:50 +01:00
vramik
0a632fdefa [FGAP] Add adminPermissionClientCheck to authorization services REST endpoints 
Closes #35945

Signed-off-by: vramik <vramik@redhat.com>
 2025-01-10 08:56:48 -03:00
Marek Posolda
0d8a23b684
Incompatible method of admin-client in Keycloak 26.1 and missing javadoc (#36091) 
closes #36090

Signed-off-by: mposolda <mposolda@gmail.com>
 2024-12-20 16:35:51 +01:00
Pedro Igor
93c1740538 Support for initial CRUD operations when managing admin permissions 
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>

Closes #35987
 2024-12-18 07:43:13 -03:00
Martin Kanis
05116f7951 getAll() organization and organization members only returns the first 10 items 
Closes #34975

Signed-off-by: Martin Kanis <mkanis@redhat.com>
 2024-11-21 17:29:37 -03:00
Jan-Hendrik Dolling
80bbb0be10 fix: PEM files distributed as part of SAML adapter configs for mod_auth_mellon export 
Changing return type of ClientResource from String to Response to support different response types. Should not be breaking as this is just a class used internally by Keycloak integration tests.

Closes #34276

Co-authored-by: ccudennec-otto
Co-authored-by: radwa-otto
Co-authored-by: IngoStrauch2020

Signed-off-by: Jan-Hendrik Dolling <jan-hendrik.dolling@otto.de>
 2024-11-15 16:15:51 +01:00
Pedro Igor
cf4b356799 Adding tests and minor change to the new parameter description 
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-11-13 16:25:17 -03:00
Pedro Igor
d04f7900f5 added membershipType to members list and membership type filter 
Signed-off-by: Agnieszka Gancarczyk <agagancarczyk@gmail.com>
 Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>
 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-11-12 09:13:18 -03:00
Marek Posolda
2e4a3f6f5f
Keycloak-admin-client should work with the future versions of Keycloak server (#34285) 
closes #34284

Signed-off-by: mposolda <mposolda@gmail.com>
 2024-10-24 12:43:04 +02:00
Igor Petrov
8e872818c5 feat: eliminate client secret requirement 
This commit eliminates neccessity for providing client secret when
constructing client via Admin Client API. The requirement for client
secret became obsolete when Keycloak onboarded a X509 certificate
authorizer.

closes #33755

Signed-off-by: Igor Petrov <igor.petrov-ext@camunda.com>
 2024-10-18 16:35:15 +02:00
vramik
b7eaa9b0cb Wildcard search not working for custom user attributes 
Closes #32451

Signed-off-by: vramik <vramik@redhat.com>
 2024-10-03 08:48:36 -03:00
mposolda
8f038f19dd Upgrade BCFIPS to 2.0 
closes #30415

Signed-off-by: mposolda <mposolda@gmail.com>
 2024-09-26 06:52:21 +02:00
keshavprashantdeshpande
4e23b450be
Add status option to kcadm for validity (#32883) 
Closes #23179

Signed-off-by: Keshav Deshpande <keshavprashantdeshpande@gmail.com>
 2024-09-24 13:18:54 +02:00
rmartinc
c532751ff4 Downgrade Java for client libraries to 8 
Closes #33051

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-09-20 17:01:01 +02:00
mposolda
c4c3144752 Javadoc for the admin-client methods for the endpoints and parameters introduced since Keycloak 24 
closes #32976

Signed-off-by: mposolda <mposolda@gmail.com>
 2024-09-17 11:40:38 +02:00
stianst
e140e71a52 Remove @NoCache annotation in admin client interfaces 
Closes #32731

Signed-off-by: stianst <stianst@gmail.com>
 2024-09-11 09:44:41 +02:00
Stefan Guilhen
585d179fe0 Ensure identity providers returned to the org IDP selection are IDPs not associated with any orgs. 
Closes #32238

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2024-08-21 07:49:01 -03:00
Pedro Igor
4d621e5dfd Fixing compilation errors due to usages of javax.ws.rs imports 
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-08-20 11:11:14 -03:00
Pedro Igor
4376a3c757 Add an endpoint to the organizations endpoint to return the organizations for a given user 
Closes #32158

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-08-20 11:11:14 -03:00
rmartinc
3a77ac6403 Remove keycloak-admin-client-jee 
Closes #32181

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-08-20 10:53:09 +02:00
Martin Kanis
708a6898db Add a count method to the OrganizationMembersResource 
Closes #31388

Signed-off-by: Martin Kanis <mkanis@redhat.com>
 2024-08-15 09:12:57 -03:00
mposolda
e7d9a717c9 Not possible to import realm with newest Java admin-client against Keycloak 24 
closes #32035

Signed-off-by: mposolda <mposolda@gmail.com>
 2024-08-12 09:44:00 +02:00