keycloak

mirror of https://github.com/keycloak/keycloak.git synced 2026-01-10 15:32:05 -03:30

Author	SHA1	Message	Date
github-actions[bot]	96cdef8e08	Set version to 26.4.3	2025-11-06 09:56:20 +00:00
Alexander Schwartz	34b9ede377	Allow only normalized paths in requests (#43869 ) * Allow only normalized paths in requests Closes #43763 Signed-off-by: Martin Bartoš <mabartos@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Martin Bartoš <mabartos@redhat.com> * Remove the trailing slash for base url in the account and admin tests Closes #43863 Signed-off-by: rmartinc <rmartinc@redhat.com> # Conflicts: # js/apps/account-ui/test/account-security/linked-accounts.spec.ts --------- Signed-off-by: Martin Bartoš <mabartos@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Signed-off-by: rmartinc <rmartinc@redhat.com> Co-authored-by: Martin Bartoš <mabartos@redhat.com> Co-authored-by: Ricardo Martin <rmartinc@redhat.com>	2025-10-31 15:57:40 +01:00
Steven Hawkins	4357fc43c7	fix: simplify debug handling and remove the 0.0.0.0 default * fix: simplify debug handling and remove the 0.0.0.0 default closes: #43160 * Update quarkus/dist/src/main/content/bin/kc.sh * removing the ability to specify just the ip * Apply suggestions from code review --------- (cherry picked from commit 9e98f2bf961f68853cea6fbec58b512ed8be7ca9) Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Co-authored-by: Peter Zaoral <pepo48@gmail.com>	2025-10-30 21:20:29 +01:00
Alexander Schwartz	8b253f9e12	Cleaning up threadlocals to prevent (small) memory leak Closes #43759 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-10-28 13:10:37 -03:00
Steven Hawkins	bcc73bc98b	fix: allow for --optimized to receive signals (#43580 ) (#43610 ) * fix: allowing --optimized to terminate gracefully closes: #43561 * Update quarkus/dist/src/main/content/bin/kc.sh --------- (cherry picked from commit 3b7f364b4fa1b3265b89924f666886654cbd933d) Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Martin Bartoš <mabartos@redhat.com>	2025-10-20 13:47:15 -04:00
Steven Hawkins	329b22ad35	fix: refining https-protocols documentation (#43420 ) (#43462 ) closes: #43164 (cherry picked from commit 700b86fad85c17d90cc133013e5704e760f30686) Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-10-14 17:08:26 +00:00
Alexander Schwartz	c2b4a48ac7	Disable Secure Client-Initiated Renegotiation by default (#43129 ) The parameter -Djdk.tls.rejectClientInitiatedRenegotiation=true disables Secure Client-Initiated Renegotiation in Keycloak to resolve a potential DoS vulnerability. Note this is applicable only to TLS 1.2. Closes #43020 Signed-off-by: Erasure5959 <154384607+Erasure5959@users.noreply.github.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Erasure5959 <154384607+Erasure5959@users.noreply.github.com>	2025-10-02 18:07:29 +02:00
rmartinc	a44758d4ae	Upgrade bc-fips testing and documentation to 2.1.2 Closes #42958 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-09-29 09:04:43 +02:00
Martin Bartoš	f53e5ebdac	[Docs] Additional datasources support (#42655 ) * [Docs] Additional datasources support Closes #40388 Closes #42263 Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Rename namedKey to wildcardKey in the code Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Clarify the defaults for DB kind Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Be more clear about the Named key reference in guide Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Vasek's review Signed-off-by: Martin Bartoš <mabartos@redhat.com> --------- Signed-off-by: Martin Bartoš <mabartos@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>	2025-09-27 08:45:12 +00:00
Václav Muzikář	b65a60e40d	Support for EDB 17 (#42341 ) Closes #42742 Closes #42293 Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>	2025-09-26 16:04:47 +02:00
Pedro Ruivo	56c1823082	Document Caffeine cache metrics Closes #42705 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>	2025-09-25 12:55:31 +02:00
Steven Hawkins	87a6a3d445	perf: using resourceAsStream rather than zip (#42884 ) closes: #42882 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-09-24 09:22:37 -04:00
Peter Skopek	14e4e1aed2	Enable branding without code changes (#34246 ) closes #34244 Signed-off-by: Peter Skopek <pskopek@redhat.com>	2025-09-24 07:25:40 +02:00
Pedro Ruivo	47f85631f3	Automatically create external caches for MULTI_SITE deployments Closes #32129 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>	2025-09-19 18:56:38 +02:00
Guido Grazioli	2d34ebe33e	federation-sssd-setup add ifp section Closes #42726 Signed-off-by: Guido Grazioli <ggraziol@redhat.com>	2025-09-18 09:09:52 +00:00
Lukas Hanusovsky	d9b4bd047f	[Keycloak Test Framework] Infinispan cache + ClusterlessTestSuite configuration (#42172 ) * [Keycloak Test Framework] Infinispan server + ClusterlessTestSuite and MultisiteTestSuite configuration Signed-off-by: Lukas Hanusovsky <lhanusov@redhat.com> * Utilise ClientIntelligence.BASIC to ensure that internal docker IPs never used by Infinispan client Signed-off-by: Ryan Emerson <remerson@ibm.com> * Code refactoring + properties utility Signed-off-by: Lukas Hanusovsky <lhanusov@redhat.com> --------- Signed-off-by: Lukas Hanusovsky <lhanusov@redhat.com> Signed-off-by: Ryan Emerson <remerson@ibm.com> Co-authored-by: Ryan Emerson <remerson@ibm.com>	2025-09-17 07:13:11 +00:00
Ryan Emerson	728118d62a	Validate wait_timeout parameter on MySQL and MariaDB Closes #42300 Signed-off-by: Ryan Emerson <remerson@ibm.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-09-16 09:38:52 +00:00
Steven Hawkins	c7ae7185e6	fix: updating export option text (#42621 ) closes: #42011 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-09-15 15:25:54 +00:00
Steven Hawkins	bb7e5ab7b2	fix: cleaning up dockerfile build warnings (#42573 ) closes: #42572 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-09-15 17:07:27 +02:00
Ryan Emerson	73a4020baa	Remove default cache configurations from cache-local.xml Closes #42351 Signed-off-by: Ryan Emerson <remerson@ibm.com>	2025-09-11 21:11:56 +02:00
Steven Hawkins	3724409c5e	fix: further refining when profile info is logged (#42483 ) closes: #42334 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-09-11 18:17:01 +02:00
Stian Thorgersen	1e5d52975e	Refactor JWTValidator to allow use both for self-signed and federated client assertions (#42472 ) Closes: #42463 Signed-off-by: stianst <stianst@gmail.com>	2025-09-10 08:11:18 +02:00
Steven Hawkins	fcedd14e40	fix: moving multi-option validation to propertymappergrouping interface (#42125 ) * fix: moving multi-option validation to propertymappergrouping interface closes: #27025 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * refinements based upon review comments Signed-off-by: Steve Hawkins <shawkins@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-09-09 10:32:15 +02:00
Steven Hawkins	32a268c68d	fix: default to not performing migrations with nonserver commands (#42361 ) closes: #42321 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-09-08 16:51:36 +02:00
Steven Hawkins	beae28f1cc	fix: allowing resolution of log color at build time (#42393 ) closes: #42335 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-09-08 16:47:16 +02:00
Steven Hawkins	0897560513	fix: moves unsupported feature logging (#42380 ) closes: #42334 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-09-05 19:21:20 +02:00
Steven Hawkins	b743b3d3b1	fix: adding better management of closed entitymanagers closes: #42114 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-09-05 16:57:47 +02:00
Steve Hawkins	2a16655d84	fix: setting the built flag for embedded usage closes: #23972 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-09-05 01:56:41 -03:00
Steven Hawkins	fc467f48c8	fix: removing script logic for determining if a build is necessary (#41771 ) closes: #23972 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-09-04 08:23:04 -04:00
Alexander Schwartz	4d3589c776	Lock the database before doing migrations Closes #41801 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-09-03 15:22:04 -03:00
Steven Hawkins	f52421fe44	fix: improve handling when expressions are disabled (#42189 ) closes: #42158 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-08-29 15:21:38 +02:00
Steven Hawkins	565e195f48	enhance: allow for control over what port health checks are exposed on (#41759 ) closes: #39506 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-08-28 10:18:22 +02:00
Alexander Schwartz	ca1e61047a	Adding TiDB dialect for Quarkus Closes #41897 Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Signed-off-by: Dennis Kniep <kniepdennis@gmail.com> Co-authored-by: Dennis Kniep <kniepdennis@gmail.com>	2025-08-26 17:44:45 -03:00
Pedro Ruivo	61e488bbf0	Skip configuring jdbc-ping stack in local mode Closes #42047 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>	2025-08-22 15:11:58 +02:00
Pedro Ruivo	2f131fa56c	Detect and handle KC split brain clusters Closes #41561 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Signed-off-by: Pedro Ruivo <pruivo@users.noreply.github.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-08-21 11:18:34 +02:00
Steven Hawkins	c2a7914c73	fix: removing test os restriction (#41952 ) closes: #13501 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-08-20 17:45:28 -04:00
Steven Hawkins	03b5753c84	enhance: add KC_ env variables for verbose and .sh options (#41847 ) * enhance: add KC_ env variables for verbose and .sh options closes: #19213 Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Peter Zaoral <pepo48@gmail.com> Co-authored-by: Peter Zaoral <pepo48@gmail.com>	2025-08-20 14:46:06 -03:00
Ryan Emerson	b0f4b4efee	Log applied cache configurations as part of debug logs Closes #41950 Signed-off-by: Ryan Emerson <remerson@ibm.com>	2025-08-19 17:01:19 +02:00
Steven Hawkins	b7aaf80433	fix: simplifying/docing places where the config is initted (#41949 ) closes: #25668 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-08-19 09:58:32 +02:00
Sebastian Łaskawiec	988bf9cb0b	WelcomeResource do not create temporary admins (#41416 ) Signed-off-by: Sebastian Łaskawiec <sebastian.laskawiec@defenseunicorns.com>	2025-08-18 17:31:26 +02:00
Steven Hawkins	02cd3ddfb7	fix: warn instead of an error if optimized provider timestamps change (#41798 ) closes: #41268 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-08-18 09:29:08 +02:00
Ryan Emerson	168d9cc090	Simplify Cache Configuration file by removing built-in cache configurations Closes #41559 Signed-off-by: Ryan Emerson <remerson@ibm.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-08-15 16:16:56 +00:00
Martin Bartoš	4526d2d445	Upgrade to Quarkus 3.26.0.CR1 Closes #41880 Signed-off-by: Martin Bartoš <mabartos@redhat.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-08-15 15:29:19 +02:00
Martin Bartoš	c25dd1dba8	Change naming for disabling additional datasource (#41815 ) Closes #40761 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-08-14 17:42:16 +02:00
Steven Hawkins	ff1a70a9f2	fix: using the non-deprecated console color option (#41857 ) closes: #38328 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-08-14 08:28:23 +00:00
Dennis Kniep	d74a10d87a	Add TiDB as supported db Closes #41455 Signed-off-by: Dennis Kniep <kniepdennis@gmail.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-08-14 07:27:21 +00:00
Alexander Schwartz	96d2e041fc	Add information about sessions to the MDC Closes #41208 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-08-13 09:06:29 -03:00
Peter Skopek	651d651c30	Add missing artifact descriptions to allow Maven Central Portal Publisher pass validation process. (#40822 ) Signed-off-by: Peter Skopek <pskopek@redhat.com>	2025-08-12 16:50:17 +02:00
rmartinc	acf39b34c3	Make passkeys feature supported Closes #41556 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-08-12 11:18:57 +02:00
Martin Bartoš	7d8144f433	Wildcard mappers should be implicitly handled and value propagated (#41026 ) * Wildcard mappers should be implicitly handled and value propagated Closes #40977 Co-authored-by: Steven Hawkins <shawkins@redhat.com> Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Include additional mapping only when from() is used Signed-off-by: Martin Bartoš <mabartos@redhat.com> --------- Signed-off-by: Martin Bartoš <mabartos@redhat.com> Co-authored-by: Steven Hawkins <shawkins@redhat.com>	2025-08-07 13:30:51 +00:00

1 2 3 4 5 ...

1074 Commits