keycloak

mirror of https://github.com/keycloak/keycloak.git synced 2026-01-09 23:12:06 -03:30

Author	SHA1	Message	Date
github-actions[bot]	812d849c78	Set version to 26.0.7 26.0.7	2024-12-03 06:57:23 +00:00
Pedro Igor	fc2a45a7d2	Make sure event details are not stored if they are null (#35502 ) Closes #35288 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-12-02 15:15:34 +01:00
Jon Koops	c5426ed0bb	Port required changes for reCAPTCHA to the new login theme (#35474 ) (#35492 ) Closes #35232 Signed-off-by: Christian Janker <christian.janker@gmx.at> (cherry picked from commit 1d7f07fc53c78a7cf7699ac0169ca42b31722413) Co-authored-by: Christian Ja <christian.janker@gmx.at>	2024-12-02 12:10:09 +00:00
Venkatesh Kannan	1fae6be539	Persist admin event only when roles is non-empty Currently, an adminEvent is created regardless of if the roles passed to the role-mapping API is empty. The event should only be created when the list `roles` is non-empty. Closes #33195 Signed-off-by: Venkatesh Kannan <venkatesprasad512@gmail.com>	2024-11-29 15:59:58 +01:00
Rishabh Singh	babd6563a0	setting the user in ExecuteActionsActionTokenHandler.handleToken to manage user null case in FreeMarkerLoginFormsProvider.createResponse Closes #17233 Signed-off-by: Rishabh Singh <rishabhsvats@gmail.com> (cherry picked from commit 8cad78b1dfff5b9154d0068702544e6ef62cbc29)	2024-11-29 13:11:17 +01:00
Douglas Palmer	f89ce01392	Flaky test: org.keycloak.testsuite.forms.BrowserButtonsTest#appInitiatedRegistrationWithBackButton Closes #32676 Signed-off-by: Douglas Palmer <dpalmer@redhat.com>	2024-11-29 08:34:42 +01:00
Pedro Ruivo	b9f4c92470	Flaky test: AuthenticationSessionTest Enable transactions to handle conflicts. Unrelated changes: * Disable IP multicast (not available in MacOS by default) * Bind JGroups to 127.0.0.1 * Remove FD_SOCK2 (single JVM tests do not require failure detection) Closes #35087 Closes #35015 Signed-off-by: Pedro Ruivo <pruivo@redhat.com>	2024-11-28 18:21:55 +01:00
Pedro Igor	640f4190e0	Use regular CREATE TABLE instead of CREATE TEMPORARY Closes #30631 Some hosted/managed environments like google CloudSQL, might not support this type of statement (i.e. when using replication and GTID) Since we are dropping the table anyway it seems a regular CREATE statement should work fine here. Signed-off-by: mike-pt <mike-pt@users.noreply.github.com> Co-authored-by: Miguel C <mike-pt@users.noreply.github.com>	2024-11-28 17:03:40 +01:00
Jon Koops	7acb30269b	Improve session polling to prevent accidental redirects Closes #33071 Signed-off-by: Jon Koops <jonkoops@gmail.com> (cherry picked from commit 687223f3b17f1804ddea1b74cacdc6b3564b73e6)	2024-11-28 13:42:55 +01:00
rmartinc	73ed0613ee	Do not count current sessions in UserSessionLimitsAuthenticator Closes #35276 Signed-off-by: rmartinc <rmartinc@redhat.com> (cherry picked from commit 8a4651c6643aae60abc9e6773e04ae084c4a2b09)	2024-11-28 13:02:39 +01:00
Pedro Ruivo	c055f9c4ff	Make PermissionTicket events marshallable Fixes #35328 Signed-off-by: Pedro Ruivo <pruivo@redhat.com>	2024-11-28 10:16:11 +01:00
Agnieszka Gancarczyk	f0243a8c0b	Backport to expose membership type Signed-off-by: Agnieszka Gancarczyk <agagancarczyk@gmail.com>	2024-11-27 11:15:25 -03:00
Alexander Schwartz	3400602ee6	Fix unordered list in caching guide (#35283 ) Closes #35006 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-11-26 09:16:15 +01:00
Alexander Schwartz	bbe89d4f58	fix(doc): v24 changelog grammar typo "longer" -> "no longer" (#35285 ) Closes #35163 The missing "no" makes this really confusing to read Signed-off-by: Cornelius Roemer <cornelius.roemer@gmail.com> Co-authored-by: Cornelius Roemer <cornelius.roemer@gmail.com>	2024-11-26 09:15:57 +01:00
Erik Jan de Wit	36c942adb8	no longer disable when resource is pre selected (#34702 ) (#35134 ) as you can add more resources fixes: #34678 Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> (cherry picked from commit 90d8c4df207a811bffd03bd85f053cb28f576f12)	2024-11-25 13:53:27 -05:00
Erik Jan de Wit	15ee6bb868	trying to make general test switch less flaky (#34993 ) (#35100 ) Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> #34751 (cherry picked from commit 49462c939d91eaca10b82d010f0d495e2c563d28)	2024-11-25 13:52:38 -05:00
Erik Jan de Wit	c110149f32	wait for login to finish (#35044 ) (#35083 ) fixes: #34864 Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> (cherry picked from commit ced8e643c9c80ccd549439d0db9d03088748b464)	2024-11-25 13:51:40 -05:00
Ryan Emerson	91b7f8136e	Upgrade to ISPN 15.0.11.Final Closes #34931 Signed-off-by: Ryan Emerson <remerson@redhat.com>	2024-11-25 19:41:57 +01:00
Miquel Simon	afb352da08	Remove new test PoC from workflow Closes #35282 Signed-off-by: Miquel Simon <msimonma@redhat.com>	2024-11-25 17:44:56 +01:00
Martin Kanis	ea131762ba	getAll() organization and organization members only returns the first 10 items Closes #34975 Signed-off-by: Martin Kanis <mkanis@redhat.com> (cherry picked from commit 7e3e46d348aa18c3c30f148925d3882dba95dd52)	2024-11-25 10:11:17 +01:00
Steven Hawkins	69001b3402	fix: using stable ordering for deprecated metadata closes: #34858 Signed-off-by: Steve Hawkins <shawkins@redhat.com> (cherry picked from commit 245498c0cbb7a9d543c94c5e01f5b5e757eed683)	2024-11-25 08:38:28 +01:00
Pedro Igor	3a9cc8e3bd	Make sure unmanaged attributes are populated before updating username when in update email context Closes #34930 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-11-22 12:18:17 +01:00
Pedro Igor	9768b9ce74	Allow updating the username when registration as email is enabled during LDAP updates Closes #34560 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-11-22 12:17:15 +01:00
Agnieszka Gancarczyk	f789e87aa9	Removed obsololete a11y tests Closes #34391 Signed-off-by: Agnieszka Gancarczyk <agagancarczyk@gmail.com>	2024-11-22 12:16:03 +01:00
Agnieszka Gancarczyk	fea68ac818	Backport to fix a11y issue in FormattedLink (#35126 ) Closes #34821 Signed-off-by: Agnieszka Gancarczyk <agagancarczyk@gmail.com>	2024-11-22 12:15:01 +01:00
Agnieszka Gancarczyk	1aefd6e7e0	Fixed the wrapping issue Closes #34572 Signed-off-by: Agnieszka Gancarczyk <agagancarczyk@gmail.com>	2024-11-22 12:13:29 +01:00
Ricardo Martin	154e14122f	Check the authentication config exists before returning its reference Closes #34888 (cherry picked from commit 8d559d542c1b4f3f030caa1b11c7d8bc9717618b) Signed-off-by: rmartinc <rmartinc@redhat.com>	2024-11-22 12:11:42 +01:00
Jon Koops	4c2ebfbde6	Use short UUID for ldap components Closes #32143 (cherry picked from commit ca1c10f7ba923349e7bb1643fb6f78115543c908) Signed-off-by: rmartinc <rmartinc@redhat.com> Co-authored-by: Ricardo Martin <rmartinc@redhat.com>	2024-11-22 12:09:52 +01:00
Erik Jan de Wit	4e858b8b3d	more stable way to assert the text fixes: #33810 Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> (cherry picked from commit 98a6ddead0d7121470f5d17be635e1f4dbf3058e)	2024-11-22 12:09:24 +01:00
Alexander Schwartz	1ba097a024	Update upgrade guide docs 25.0.0 cache options Closes #34987 Signed-off-by: michielpeeters <michielpeeters@users.noreply.github.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: michielpeeters <michielpeeters@users.noreply.github.com>	2024-11-22 12:09:00 +01:00
Jon Koops	cd8a801a85	Ignore Accept-Language header for email themes Closes #10233 (cherry picked from commit 84f60bc121bc815711b615723833e19fd29838ac) Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com> Co-authored-by: Giuseppe Graziano <g.graziano94@gmail.com>	2024-11-22 12:08:45 +01:00
Giuseppe Graziano	63180be938	Check "Always use lightweight access token" is enabled on the client for Admin REST APIs Closes #34944 Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com> (cherry picked from commit 5d600be6f2b34c5bcb4093af37005903db26cef0)	2024-11-22 12:07:31 +01:00
Vlasta Ramik	54eca9541f	Upgrade 24 to 25 fails because db jpa changes drop nonexisting indexes. Closes #34899 (cherry picked from commit ebd411b93d03f3f77faff0b923689d8307acc2db) Signed-off-by: vramik <vramik@redhat.com>	2024-11-22 12:05:47 +01:00
Jon Koops	091245ba52	Use a hidden form to do `POST` based logout Closes #32648 Signed-off-by: Jon Koops <jonkoops@gmail.com> (cherry picked from commit b2930a4799ad66e65a50384b6a505463bcf1c80b)	2024-11-22 12:03:50 +01:00
AndyMunro	d3b192c737	Apply QE authorization services guide comments Closes #34882 Signed-off-by: AndyMunro <amunro@redhat.com> (cherry picked from commit 1e1a1f14dac88d09789e2cb47f9ab48392a9691f)	2024-11-22 12:02:56 +01:00
Stefan Guilhen	739afecb05	Send exact param in user attr search only when its enabled Closes #34233 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com> (cherry picked from commit afc6a9cb30ff7166c2565cab3da79d790442d010)	2024-11-22 12:02:02 +01:00
Pedro Igor	cc64375c88	Allow returning attributes when querying organizations Closes #34590 Signed-off-by: Himanshi Gupta <higupta@redhat.com> Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Co-authored-by: Himanshi Gupta <higupta@redhat.com>	2024-11-22 11:50:28 +01:00
AndyMunro	17863d1d4f	Address QE comments on Server Admin Guide Closes #34916 Signed-off-by: AndyMunro <amunro@redhat.com> (cherry picked from commit 205898baf35fd3f81e39e28b935b2f0eed02a91b)	2024-11-22 11:46:26 +01:00
Steven Hawkins	13833fd221	fix: ensures that properties are runtime properties are filtered (#209 ) closes: #CVE-2024-10451 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2024-11-18 11:32:48 +01:00
Peter Zaoral	7bdc16f029	fix: prevent inclusion of characters that could lead to FileVault path traversal (#212 ) Closes: #211 Signed-off-by: Peter Zaoral <pzaoral@redhat.com> Co-authored-by: Václav Muzikář <vmuzikar@redhat.com>	2024-11-18 09:27:50 +01:00
Steven Hawkins	6a10c0e345	fix: returning addresses instead of hosts on the ClientConnection (#208 ) also consolidates checks of whether a host or address is local closes: #CVE-2024-9666 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2024-11-18 09:25:44 +01:00
Douglas Palmer	b956819187	EMBARGOED CVE-2024-10270 org.keycloak/keycloak-services: Keycloak Denial of Service (#214 ) Closes #CVE-2024-10270 Signed-off-by: Douglas Palmer <dpalmer@redhat.com>	2024-11-14 09:47:04 +01:00
Václav Muzikář	ba9d0c364c	Update docs with security warning around client certificate lookup (#213 ) Closes #203 Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>	2024-11-13 16:18:20 +01:00
Agnieszka Gancarczyk	c15bc7c47b	Backport to make improvements for translations (#34878 ) Signed-off-by: Agnieszka Gancarczyk <agagancarczyk@gmail.com>	2024-11-13 12:36:31 +01:00
andymunro	90bd3661b6	Update installation locations (#34871 ) Closes #34855 Signed-off-by: AndyMunro <amunro@redhat.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com> (cherry picked from commit 3ca3a4ad349b4d457f6829eaf2ae05f1e01408be)	2024-11-13 12:34:54 +01:00
andymunro	495ddb8673	Update Leveraging Jakarta EE (#34901 ) Closes #34873 Signed-off-by: AndyMunro <amunro@redhat.com> (cherry picked from commit e63cdd0539fc01964b9aecc16fef1547e5eda64f)	2024-11-13 12:34:32 +01:00
andymunro	c27a55d797	Address QE comments on HA guide (#34902 ) Closes #34887 Signed-off-by: AndyMunro <amunro@redhat.com> (cherry picked from commit 2201241949f899ef5f963bae60f4d0a23f0c6709)	2024-11-13 12:33:39 +01:00
Lukas Hanusovsky	a4993bb87c	Surefire artifacts - updating names for Quarkus IT and UT. (#34908 ) Signed-off-by: Lukas Hanusovsky <lhanusov@redhat.com>	2024-11-13 12:31:19 +01:00
Erik Jan de Wit	12890936cb	add brute force enabled so we can render switch (#34282 ) (#34476 ) fixes: #34065 Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> (cherry picked from commit 4d25128018305f9b7fadc692d6e370b663402a68)	2024-11-12 10:51:19 +01:00
Erik Jan de Wit	9b0fad6581	changed to use TextArea (#34539 ) (#34688 ) fixes: #34201 Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> (cherry picked from commit e4101b1b6167fa77070e5375e077ade7be64b40f)	2024-11-12 10:49:09 +01:00

1 2 3 4 5 ...

26426 Commits