mirror of https://github.com/keycloak/keycloak.git synced 2026-06-13 02:50:04 -04:00

Gestion d'identité et SSO

Find a file

Stefan Guilhen 2e29fe2ac1 Some checks are pending Warm JS Wireit cache / Warm Wireit cache on main (push) Waiting to run Details Review permission model to access the SCIM APIs - access to /ServiceProviderConfig, /ResourceTYpes and /Schemas now require only query-users or query-groups. Closes #47820 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>		2026-06-12 12:14:05 -03:00
.github	Update to actions/checkout v6.0.3 (#49896 )	2026-06-11 13:37:16 +02:00
.idea	Add Intellij project icon	2023-09-18 12:39:16 +02:00
.mvn	Update to Maven 3.9.16	2026-06-04 11:13:13 +02:00
.trivy	Trivy license ignore policy	2026-06-11 08:36:24 +02:00
adapters	Ensure that an encrypted assertion is signed if response is not signed (#355 ) (#46929 )	2026-03-09 10:25:27 +01:00
authz	Reject indefinite-length encoding in ASN1Decoder.readLength()	2026-06-03 14:39:21 -03:00
authzen	AuthZen Evaluations API	2026-05-07 15:27:59 -03:00
boms	Add Spotless plugin with removeUnusedImports check enabled	2025-10-13 13:32:01 +02:00
common	Identity brokering v2 supported	2026-06-11 09:47:56 +02:00
core	[OID4VC] Fix array shift in SD-JWT (#49906 )	2026-06-12 17:06:42 +02:00
crypto	Support Java 25 with FIPS enabled (#47581 )	2026-04-01 09:57:25 +02:00
dependencies	Add missing artifact descriptions to allow Maven Central Portal Publisher pass validation process. (#40822 )	2025-08-12 16:50:17 +02:00
distribution	Add profile to enable deployment of keycloak-api-docs-dist pom	2026-06-08 14:20:12 +02:00
docs	Review permission model to access the SCIM APIs	2026-06-12 12:14:05 -03:00
federation	Add per-mapper UUID attribute decoding toggle for Group LDAP mapper	2026-06-10 15:29:32 -03:00
integration	feat(admin-api-v2): generate docs from the openapi spec (#48001 )	2026-06-10 16:51:24 +02:00
js	Minor suggestions to the doc format	2026-06-12 09:50:52 -03:00
misc	Update tests in common to use JUnit 6	2026-04-09 21:52:47 +02:00
model	Propagate cluster events via a new database table for cacheless	2026-06-12 10:19:40 -03:00
operator	Fix typo "operatiorn" in KeycloakClientBaseController error message (#49798 )	2026-06-10 21:23:08 +00:00
quarkus	Propagate cluster events via a new database table for cacheless	2026-06-12 10:19:40 -03:00
rest	Allow protocol to be omitted (#48787 )	2026-06-12 11:17:09 +02:00
saml-core	Fix parsing SAML11 incorrect requests. (#609 ) (#49119 )	2026-05-19 16:44:10 +00:00
saml-core-api	Use MIME decoder instead of the default one to replace deprecated Base64 class	2026-01-09 16:38:09 +01:00
scim	Review permission model to access the SCIM APIs	2026-06-12 12:14:05 -03:00
server-spi	Add attribute to always consent in parameterized scopes	2026-06-11 15:02:35 +02:00
server-spi-private	Propagate cluster events via a new database table for cacheless	2026-06-12 10:19:40 -03:00
services	fix(client-registration): return 401 instead of 500 on invalid token (#49930 )	2026-06-12 14:37:00 +00:00
ssf	[CVE-2026-9791] Organization data exposed in tokens and account API when Organizations feature is disabled at realm level (#49541 )	2026-06-04 08:27:16 +02:00
test-framework	Move AuthorizationCodeTest to the new testsuite (#49772 )	2026-06-12 14:21:17 +02:00
tests	fix(client-registration): return 401 instead of 500 on invalid token (#49930 )	2026-06-12 14:37:00 +00:00
testsuite	Propagate cluster events via a new database table for cacheless	2026-06-12 10:19:40 -03:00
themes	Fix revoke credential labels and enhance issued credentials display	2026-06-12 14:39:24 +02:00
util	Update dependencies of embedded-ldap	2026-06-04 07:26:35 -03:00
.editorconfig	Proposed import order (#43432 )	2025-11-14 09:34:49 +01:00
.gitattributes	enforce LF line endings on *.tsx files (#45997 )	2026-02-18 10:28:55 +00:00
.gitignore	[OID4VCI] Credential Offer must be created by Issuer not Holder (#44255 )	2025-11-27 16:07:10 +01:00
.gitleaks.toml	Updated .gitleaks.toml to ignore false positive in RedirectUtilsTest (#33346 )	2024-09-27 14:32:36 +02:00
ADOPTERS.md	Add Xata to ADOPTERS.md (#40802 )	2025-06-30 19:32:32 +02:00
CONTRIBUTING.md	Update contributors guidelines (#46904 )	2026-03-09 09:03:31 +01:00
get-version.sh	Make shebang in bash scripts consistent (#37369 )	2026-02-17 11:32:28 +01:00
GOVERNANCE.md	Update governance model around changes in maintainership (#29292 )	2024-05-22 08:24:10 +02:00
LICENSE.txt	Added text version of ASL2 license	2019-11-08 12:43:10 +01:00
MAINTAINERS.md	New maintainer - Ricardo Martin (#48672 )	2026-05-07 09:08:01 +02:00
maven-settings.xml	[KEYCLOAK-11764] Upgrade to Wildfly 19	2020-04-24 08:19:43 -03:00
mvnw	Handle special characters in mvnw.cmd Windows paths	2026-04-07 18:24:21 +02:00
mvnw.cmd	Handle special characters in mvnw.cmd Windows paths	2026-04-07 18:24:21 +02:00
pom.xml	Update aws-advanced-jdbc-wrapper	2026-06-10 08:37:02 +02:00
PR-CHECKLIST.md	Introduce CODEOWNERS (#16637 )	2023-01-30 13:05:45 +01:00
README.md	Add client libraries repository to README	2026-05-28 10:59:02 +02:00
SECURITY-INSIGHTS.yml	Provide an OpenSSF security insights manifest file	2024-02-15 11:02:33 -03:00
set-version.sh	Make shebang in bash scripts consistent (#37369 )	2026-02-17 11:32:28 +01:00

README.md

Open Source Identity and Access Management

Add authentication to applications and secure services with minimum effort. No need to deal with storing users or authenticating users.

Keycloak provides user federation, strong authentication, user management, fine-grained authorization, and more.

Help and Documentation

Documentation
User Mailing List - Mailing list for help and general questions about Keycloak
Join #keycloak for general questions, or #keycloak-dev on Slack for design and development discussions, by creating an account at https://slack.cncf.io/.

Reporting Security Vulnerabilities

If you have found a security vulnerability, please look at the instructions on how to properly report it.

Reporting an issue

If you believe you have discovered a defect in Keycloak, please open an issue. Please remember to provide a good summary, description as well as steps to reproduce the issue.

Getting started

To run Keycloak, download the distribution from our website. Unzip and run:

bin/kc.[sh|bat] start-dev

Alternatively, you can use the Docker image by running:

docker run quay.io/keycloak/keycloak start-dev

For more details refer to the Keycloak Documentation.

Building from Source

To build from source, refer to the building and working with the code base guide.

Testing

To run tests, refer to the running tests guide.

Writing Tests

To write tests, refer to the writing tests guide.

Contributing

Before contributing to Keycloak, please read our contributing guidelines. Participation in the Keycloak project is governed by the CNCF Code of Conduct.

Joining a community meeting is a great way to get involved and help shape the future of Keycloak.

Code of Conduct

We are committed to providing a safe, welcoming, and constructive environment for all Keycloak contributors and users. To protect this space, we actively enforce our Code of Conduct. If you wish to report an incident or appeal a moderation decision, please email keycloak-coc@googlegroups.com.

Other Keycloak Projects

Keycloak - Keycloak Server and Java adapters
Keycloak Client - Keycloak client libraries
Keycloak QuickStarts - QuickStarts for getting started with Keycloak
Keycloak Node.js Connect - Node.js adapter for Keycloak

License

Apache License, Version 2.0