mirror of https://github.com/keycloak/keycloak.git synced 2026-01-08 14:32:05 -03:30

Go to file

Rathan Naik 2af7c843af Fix organization invitation redirect to respect account client base URL

When an organization's redirect URL is left empty, Keycloak currently defaults
to the account console URL, ignoring the account client's configured Home URL
(base URL). This fix checks the account client's base URL before falling back
to the default account console URL.

Changes:
- Added resolveAccountClientBaseUrl() helper method in OrganizationInvitationResource
- Added setBaseUrl() method to ClientAttributeUpdater test utility
- Added integration tests for the new behavior

Closes #45052

Signed-off-by: Rathan Naik <30756840+Rathan-Naik@users.noreply.github.com>

2026-01-05 08:58:27 -03:00

.github

feat: add Windows service support (#44496 )

2025-12-19 16:55:42 +00:00

.idea

Add Intellij project icon

2023-09-18 12:39:16 +02:00

.mvn

Update custom Maven build cache configuration for js directory

2024-12-10 10:07:02 +00:00

adapters

Proposed import order (#43432 )

2025-11-14 09:34:49 +01:00

authz

Make sure group permissions on view scope are not processed when querying users

2025-12-08 14:39:40 +01:00

boms

Add Spotless plugin with removeUnusedImports check enabled

2025-10-13 13:32:01 +02:00

common

[OTel] Micrometer to OpenTelemetry bridge support for metrics (#41716 )

2025-12-17 17:03:56 +01:00

core

Suppress the step's priority in the returned workflow JSON/YAML

2025-12-29 10:26:21 -03:00

crypto

Removing SdJwtFacade

2025-11-27 14:19:27 +01:00

dependencies

Add missing artifact descriptions to allow Maven Central Portal Publisher pass validation process. (#40822 )

2025-08-12 16:50:17 +02:00

distribution

Apply Spotless to docs, distribution, and operator (#44826 )

2025-12-11 08:50:54 +01:00

docs

Remove usage of kcSanitize() to avoid printing HTML (#44755 )

2026-01-05 10:45:32 +01:00

federation

Only allow LDAP URL references when following referrals (#44993 )

2025-12-18 14:27:10 +01:00

integration

Add API method to allow activating a workflow for all eligible resources

2025-12-08 09:45:45 -03:00

Translations update from Hosted Weblate (#45089 )

2026-01-02 21:36:51 +01:00

misc

Avoid un-escaped strings in the login templates for HTML entities

2025-11-26 07:55:35 -03:00

model

Disable state transfer for session caches when persistent sessions are enabled

2026-01-05 08:53:59 +00:00

operator

fix: updating test crdtest expectation

2025-12-19 08:15:12 +01:00

quarkus

feat: add Windows service support (#44496 )

2025-12-19 16:55:42 +00:00

rest

[admin-api-v2] Incorrect DTO/DAO mapping (#44587 )

2025-12-03 09:41:18 +01:00

saml-core

Handle RuntimeException thrown in SAMLParser.parse()

2025-12-10 13:04:04 +01:00

saml-core-api

Proposed import order (#43432 )

2025-11-14 09:34:49 +01:00

server-spi

2025-12-10 11:20:19 +01:00

server-spi-private

fix typo in authentication flows descriptions

2025-12-23 13:40:33 +00:00

services

Fix organization invitation redirect to respect account client base URL

2026-01-05 08:58:27 -03:00

test-framework

Migrate parts of model package to new test framework (#45024 )

2025-12-19 14:52:23 +01:00

tests

Validate client session timeout and lifetime settings on realm settings edit

2026-01-05 08:50:56 +00:00

testsuite

Fix organization invitation redirect to respect account client base URL

2026-01-05 08:58:27 -03:00

themes

Remove usage of kcSanitize() to avoid printing HTML (#44755 )

2026-01-05 10:45:32 +01:00

util

Remove log4j 1.x from util/embedded-ldap (#44806 )

2025-12-10 16:02:55 +01:00

.editorconfig

Proposed import order (#43432 )

2025-11-14 09:34:49 +01:00

.gitattributes

Use lf as line-ending for sh files

2022-07-19 08:57:57 +02:00

.gitignore

[OID4VCI] Credential Offer must be created by Issuer not Holder (#44255 )

2025-11-27 16:07:10 +01:00

.gitleaks.toml

Updated .gitleaks.toml to ignore false positive in RedirectUtilsTest (#33346 )

2024-09-27 14:32:36 +02:00

ADOPTERS.md

Add Xata to ADOPTERS.md (#40802 )

2025-06-30 19:32:32 +02:00

CONTRIBUTING.md

Add Spotless plugin with removeUnusedImports check enabled

2025-10-13 13:32:01 +02:00

get-version.sh

Use Maven wrapper instead of platform dependent Maven version (#29988 )

2024-06-03 15:45:39 +02:00

GOVERNANCE.md

Update governance model around changes in maintainership (#29292 )

2024-05-22 08:24:10 +02:00

LICENSE.txt

Added text version of ASL2 license

2019-11-08 12:43:10 +01:00

MAINTAINERS.md

Update maintainers (#43917 )

2025-11-05 13:20:40 +01:00

maven-settings.xml

[KEYCLOAK-11764] Upgrade to Wildfly 19

2020-04-24 08:19:43 -03:00

mvnw

Upgrade Maven and wrapper to latest version

2024-06-19 10:42:33 +02:00

mvnw.cmd

Upgrade Maven and wrapper to latest version

2024-06-19 10:42:33 +02:00

pom.xml

fix: updating owasp.html.sanitizer.version to addresss CVE-2025-66021

2026-01-05 08:53:00 +01:00

PR-CHECKLIST.md

Introduce CODEOWNERS (#16637 )

2023-01-30 13:05:45 +01:00

README.md

Add CLOMonitor Badge to the README

2025-02-20 12:31:58 -03:00

SECURITY-INSIGHTS.yml

Provide an OpenSSF security insights manifest file

2024-02-15 11:02:33 -03:00

set-version.sh

Remove Keycloak JS from repository (#37057 )

2025-02-12 16:31:21 +00:00

README.md

Open Source Identity and Access Management

Add authentication to applications and secure services with minimum effort. No need to deal with storing users or authenticating users.

Keycloak provides user federation, strong authentication, user management, fine-grained authorization, and more.

Help and Documentation

Documentation
User Mailing List - Mailing list for help and general questions about Keycloak
Join #keycloak for general questions, or #keycloak-dev on Slack for design and development discussions, by creating an account at https://slack.cncf.io/.

Reporting Security Vulnerabilities

If you have found a security vulnerability, please look at the instructions on how to properly report it.

Reporting an issue

If you believe you have discovered a defect in Keycloak, please open an issue. Please remember to provide a good summary, description as well as steps to reproduce the issue.

Getting started

To run Keycloak, download the distribution from our website. Unzip and run:

bin/kc.[sh|bat] start-dev

Alternatively, you can use the Docker image by running:

docker run quay.io/keycloak/keycloak start-dev

For more details refer to the Keycloak Documentation.

Building from Source

To build from source, refer to the building and working with the code base guide.

Testing

To run tests, refer to the running tests guide.

Writing Tests

To write tests, refer to the writing tests guide.

Contributing

Before contributing to Keycloak, please read our contributing guidelines. Participation in the Keycloak project is governed by the CNCF Code of Conduct.

Joining a community meeting is a great way to get involved and help shape the future of Keycloak.

Other Keycloak Projects

Keycloak - Keycloak Server and Java adapters
Keycloak QuickStarts - QuickStarts for getting started with Keycloak
Keycloak Node.js Connect - Node.js adapter for Keycloak

License

Apache License, Version 2.0

Languages

Java 91.4%

TypeScript 7.4%

Fluent 0.5%

FreeMarker 0.2%

JavaScript 0.1%

Other 0.1%