keycloak

mirror of https://github.com/keycloak/keycloak.git synced 2026-01-10 15:32:05 -03:30

Author	SHA1	Message	Date
Martin Bartoš	c25dd1dba8	Change naming for disabling additional datasource (#41815 ) Closes #40761 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-08-14 17:42:16 +02:00
Alexander Schwartz	96d2e041fc	Add information about sessions to the MDC Closes #41208 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-08-13 09:06:29 -03:00
Peter Skopek	651d651c30	Add missing artifact descriptions to allow Maven Central Portal Publisher pass validation process. (#40822 ) Signed-off-by: Peter Skopek <pskopek@redhat.com>	2025-08-12 16:50:17 +02:00
Martin Bartoš	7d8144f433	Wildcard mappers should be implicitly handled and value propagated (#41026 ) * Wildcard mappers should be implicitly handled and value propagated Closes #40977 Co-authored-by: Steven Hawkins <shawkins@redhat.com> Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Include additional mapping only when from() is used Signed-off-by: Martin Bartoš <mabartos@redhat.com> --------- Signed-off-by: Martin Bartoš <mabartos@redhat.com> Co-authored-by: Steven Hawkins <shawkins@redhat.com>	2025-08-07 13:30:51 +00:00
Martin Bartoš	73eb57a7d3	Cannot use dev-file for additional datasources (#41689 ) Closes #41641 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-08-06 12:01:30 +02:00
Martin Bartoš	534a37f356	Remove workaround for PostgreSQL and Liquibase Closes #40687 This reverts commit 3a7569662ee6286a9c9138963b0f70beba90a561. Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-08-05 16:35:25 -03:00
Steven Hawkins	11924e6473	enhance: adding the ability to get the root config from a Scope closes: #36268 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-08-05 18:51:33 +02:00
Martin Bartoš	75ade9acef	Require setting DB kind for additional datasources (#41087 ) * Require setting DB kind for additional datasources Closes #41161 Signed-off-by: Martin Bartoš <mabartos@redhat.com> * refining build time check for db kind to be tolerant of existing usage Signed-off-by: Steve Hawkins <shawkins@redhat.com> --------- Signed-off-by: Martin Bartoš <mabartos@redhat.com> Signed-off-by: Steve Hawkins <shawkins@redhat.com> Co-authored-by: Steve Hawkins <shawkins@redhat.com>	2025-07-29 14:48:28 +02:00
Martin Bartoš	3d5a1038a1	Provide simple HTTP access logs (#41389 ) Closes #41352 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-07-29 10:55:18 +02:00
Alexander Schwartz	7fd3380b19	OpenTelemetry Tracing: Visualize JGroups communication (#39659 ) Closes #39658 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-07-22 11:51:58 +02:00
Martin Bartoš	a7019c638f	Remove workaround for handling Syslog counting framing (#40989 ) Closes #40683 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-07-18 17:01:10 +02:00
Martin Bartoš	744e031019	Provide DB SQL options support for additional datasources (#41223 ) * Provide DB SQL options support for additional datasources Closes #41222 Co-authored-by: Steven Hawkins <shawkins@redhat.com> Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Rename resultNamedKey to namedKey Signed-off-by: Martin Bartoš <mabartos@redhat.com> --------- Signed-off-by: Martin Bartoš <mabartos@redhat.com> Co-authored-by: Steven Hawkins <shawkins@redhat.com>	2025-07-18 08:13:55 +00:00
Björn Eickvonder	d62d5030fe	Adds log context information for MDC for realm, users, etc. Closes #39812 Signed-off-by: Björn Eickvonder <b.eicki@gmx.net> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Signed-off-by: Bjoern Eickvonder <bjoern.eickvonder@inform-software.com> Co-authored-by: Pedro Ruivo <pruivo@users.noreply.github.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-07-16 17:46:46 +02:00
Steven Hawkins	2397ff9b8e	fix: providing a single property to declare management interface as http (#41089 ) closes: #40945 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-07-14 12:54:22 +02:00
Ryan Emerson	eb7ce6ae15	Provide CLI Parameters for jgroups.* options Closes #40481 Signed-off-by: Ryan Emerson <remerson@redhat.com>	2025-07-07 13:07:45 +02:00
Alexander Schwartz	05d0c34681	Automatically connect to a writer instance of PostgreSQL (#40384 ) Closes #40383 Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Co-authored-by: Martin Bartoš <mabartos@redhat.com>	2025-07-04 16:46:49 +02:00
Martin Bartoš	b8ce83772b	Mark options for additional datasources as preview (#40839 ) * Mark options for additional datasources as preview Closes #40838 Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Update docs/documentation/upgrading/topics/changes/changes-26_3_1.adoc Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Signed-off-by: Martin Bartoš <mabartos@redhat.com> --------- Signed-off-by: Martin Bartoš <mabartos@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>	2025-07-02 10:46:45 +00:00
Martin Bartoš	d475c5aecc	Missing Quarkus flag for Syslog counting framing (#40621 ) * Missing Quarkus flag for Syslog counting framing Closes #39893 Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Remove handling of mapFrom Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Add notable change Signed-off-by: Martin Bartoš <mabartos@redhat.com> --------- Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-06-25 17:36:41 +02:00
Martin Bartoš	3a7569662e	Use updated PostgresDatabase from Liquibase 4.32.0 (#40530 ) Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-06-24 18:26:30 +02:00
Ryan Emerson	0c62bd0878	Change discovery in Kubernetes to jdbc-ping Closes #39544 Signed-off-by: Ryan Emerson <remerson@redhat.com>	2025-06-05 16:48:30 +02:00
Alexander Schwartz	ad10cde87e	Add options to configure JPQL comments and slow SQL threshold (#39589 ) Closes #39587 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-06-02 14:55:43 +02:00
Martin Bartoš	7f82639998	Add supported config options for additional datasources Closes #29116 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-05-16 14:42:29 +00:00
Alexander Schwartz	9b324b9228	The transport stack defined in the cache XML should take precedence over internal jdbc-ping default Closes #39614 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-05-13 13:11:41 +02:00
Steven Hawkins	faa1c194f3	fix: remove ANY mode modification of truststores (#39366 ) also note that ANY should not be used in production closes: CVE-2025-3501 #39350 #38392 Add a test for the error (#1) Update docs/guides/server/keycloak-truststore.adoc Signed-off-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Marek Posolda <mposolda@gmail.com>	2025-04-30 15:00:12 +00:00
Pedro Ruivo	eafe08a73a	Create CacheEmbeddedConfigProvider Closes #38497 Signed-off-by: Pedro Ruivo <pruivo@redhat.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-04-28 13:00:53 +02:00
Martin Bartoš	54a39bcfab	Oracle driver problems in Keycloak 26.2.1 (#39189 ) Closes #39182 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-04-24 15:37:14 +00:00
Martin Bartoš	60fb7a5fa7	Support asynchronous logging (#38094 ) Closes #38578 Closes #28851 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-04-16 15:08:15 +00:00
Falko Modler	770a575f95	Allow zero tracing-sampler-ratio Closes #38764 Signed-off-by: Falko Modler <famod@users.noreply.github.com>	2025-04-09 11:57:03 +00:00
Steven Hawkins	cfe4ed1cf3	fix: refinements to minimize the config logic (#38237 ) * fix: small refinements to minimize the config logic closes: #38236 Signed-off-by: Steve Hawkins <shawkins@redhat.com> # Conflicts: # quarkus/runtime/src/main/java/org/keycloak/quarkus/runtime/configuration/KeycloakPropertiesConfigSource.java # Conflicts: # quarkus/runtime/src/main/resources/META-INF/keycloak.conf * fully removing profiled property considerations also removing classpath based config sources Signed-off-by: Steve Hawkins <shawkins@redhat.com> * switching run-time property check to INFO, instead of WARNING Signed-off-by: Steve Hawkins <shawkins@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-03-26 15:19:25 +01:00
Steven Hawkins	6bb33f20d0	allowing wildcards only at the end of keys to allow for other characters (#38231 ) * shows wildcard handling only at the end of keys closes: #37772 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * fix: allow for additional wildcard key characters also refine the wildcard logic to be based upon just prefix and suffix matching closes: #37772 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * Update quarkus/runtime/src/main/java/org/keycloak/quarkus/runtime/configuration/mappers/WildcardPropertyMapper.java Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Signed-off-by: Steven Hawkins <shawkins@redhat.com> * review refinements, mainly to use Optional Signed-off-by: Steve Hawkins <shawkins@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>	2025-03-19 10:24:57 -04:00
Steven Hawkins	2dd783c9c6	refinement of propertymapperinterceptor names (#37504 ) * fix: generalizing the reporting of names by property mapping closes: #37503 #37781 #37780 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * Update quarkus/runtime/src/main/java/org/keycloak/quarkus/runtime/configuration/NestedPropertyMappingInterceptor.java Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Signed-off-by: Steven Hawkins <shawkins@redhat.com> * adding more explanation of going from a parent to wildcard values Signed-off-by: Steve Hawkins <shawkins@redhat.com> * refining the nested logic and comments Signed-off-by: Steve Hawkins <shawkins@redhat.com> * preventing nested expressions from always resolving the mapped value Signed-off-by: Steve Hawkins <shawkins@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>	2025-03-17 12:48:51 +01:00
Steven Hawkins	d9c3511fa5	fix: adding a check if the proxy is trusted prior to using a cert header (#37465 ) closes: #35861 Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com>	2025-03-12 11:21:33 +01:00
Alexander Schwartz	bc7ec1208e	Enable the TLS based JGroups encryption by default and update the docs Closes #37696 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-03-03 10:50:51 -03:00
Pedro Ruivo	f7e21af82e	JGroups certificate rotation Closes #37316 Signed-off-by: Pedro Ruivo <pruivo@redhat.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-02-27 12:56:18 +01:00
Martin Bartoš	6f0ed46404	Upgrade to Quarkus 3.19.0.CR1 (#37492 ) Closes #37436 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-02-24 19:52:01 +01:00
Steven Hawkins	a819a213f9	fix: hardening to prevent usage of proxy-protocol with proxy-headers (#37463 ) * fix: hardening to prevent usage of proxy-protocol with proxy-headers closes: #37458 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * Update docs/guides/server/reverseproxy.adoc Co-authored-by: Martin Bartoš <mabartos@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Martin Bartoš <mabartos@redhat.com>	2025-02-24 14:48:06 +01:00
Michal Hajas	8cd97ddb21	Make event metrics supported (#37391 ) * Make event metrics supported Closes #37389 Signed-off-by: Michal Hajas <mhajas@redhat.com> * Address comments from reviews Signed-off-by: Michal Hajas <mhajas@redhat.com> --------- Signed-off-by: Michal Hajas <mhajas@redhat.com>	2025-02-19 12:20:15 +01:00
Martin Bartoš	98f74026c6	Certificate reloading does not work for the management interface (#37052 ) Fixes #37039 Signed-off-by: Martin Bartoš <mabartos@redhat.com> Co-authored-by: Steven Hawkins <shawkins@redhat.com>	2025-02-05 14:39:21 +01:00
Martin Bartoš	20203746fb	Support ECS for logs Closes #36854 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-02-04 17:59:30 +01:00
rmartinc	6cf92d9dc7	Add crl cache to certificate validation Closes #26473 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-01-22 14:58:35 +01:00
Martin Bartoš	d7d2a76676	Unable to set '--log-syslog-max-length' property (#36252 ) Fixes #35386 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-01-08 15:41:46 +01:00
Michal Hajas	3839f8e3b5	Add metric for password validations (#36049 ) Closes #36048 Signed-off-by: Michal Hajas <mhajas@redhat.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-01-07 10:05:47 +01:00
Alexander Schwartz	4a924f6c94	Tune the caching guide for the upcoming release Closes #36039 Co-authored-by: Pedro Ruivo <pruivo@users.noreply.github.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-12-19 16:43:02 +01:00
Steven Hawkins	cb1d28d043	fix: deprecating the default db value in production mode (#35674 ) closes: #23805 Fix typo in docs, some improvements adding a negative assertion Update docs/documentation/upgrading/topics/changes/changes-26_1_0.adoc Signed-off-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>	2024-12-13 11:59:55 +01:00
Martin Bartoš	8f2c825835	Enable opentelemetry feature by default (#35756 ) Closes #35753 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2024-12-11 16:53:14 +00:00
Václav Muzikář	9993e17346	Ability to specify log category levels through separate options (#35138 ) Closes #34957 Co-authored-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>	2024-12-11 17:27:44 +01:00
Alexander Schwartz	a429f94863	Adding the available event types to the CLI and the docs (#35593 ) Closes #35573 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-12-11 13:25:44 +01:00
Steven Hawkins	245498c0cb	fix: using stable ordering for deprecated metadata (#34999 ) closes: #34858 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2024-11-21 12:47:13 +01:00
kaustubh-rh	c8f43ec216	Fix for Log handler specific log levels support only lower-case levels (#34865 ) * fix for #34817 Signed-off-by: Kaustubh Bawankar <kbawanka@redhat.com> * Fixes #34817 Signed-off-by: Kaustubh Bawankar <kbawanka@redhat.com> * Added validator to LOG_CONSOLE_LEVEL and LOG_FILE_LEVEL Signed-off-by: Kaustubh Bawankar <kbawanka@redhat.com> * Added validateLogParameters Signed-off-by: Kaustubh Bawankar <kbawanka@redhat.com> * Added tests Signed-off-by: Kaustubh Bawankar <kbawanka@redhat.com> * Added tests Signed-off-by: Kaustubh Bawankar <kbawanka@redhat.com> * Fixed logging messaging Signed-off-by: Kaustubh Bawankar <kbawanka@redhat.com> * switching to a declarative case-insensitivity Signed-off-by: Steve Hawkins <shawkins@redhat.com> * Apply suggestions from code review Co-authored-by: Martin Bartoš <mabartos@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> * refining suggested message changes Signed-off-by: Steve Hawkins <shawkins@redhat.com> --------- Signed-off-by: Kaustubh Bawankar <kbawanka@redhat.com> Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Steve Hawkins <shawkins@redhat.com> Co-authored-by: Martin Bartoš <mabartos@redhat.com>	2024-11-19 09:39:03 +01:00
Pedro Ruivo	d7e5319f70	Document network ports for Keycloak clustering Also switch the default to jdbc-ping as this should be a drop-in replacement looking at the networking behavior of udp. Closes #34658 Signed-off-by: Pedro Ruivo <pruivo@redhat.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2024-11-11 13:28:15 +01:00

1 2 3 4

176 Commits