keycloak

mirror of https://github.com/keycloak/keycloak.git synced 2026-05-28 04:13:22 -04:00

Author	SHA1	Message	Date
rmartinc	f89be1813d	Check next update time for CRL in certificate validation Closes #35983 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-01-22 14:58:35 +01:00
Stian Thorgersen	fc2b9018f1	Extend REST API for login and admin events to support sync scenarios (#36601 ) Closes #36600 Signed-off-by: stianst <stianst@gmail.com>	2025-01-20 14:32:55 +01:00
Alexander Schwartz	05e612bfb6	Moving the docs for password metrics to a new guide Closes #36442 Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Michal Hajas <mhajas@redhat.com>	2025-01-14 16:17:04 +00:00
Stian Thorgersen	bc2665fc2a	Re-order items in release notes for 26.1 (#36346 ) * Re-order items in release notes for 26.1 Signed-off-by: stianst <stianst@gmail.com> * Review (#161) Signed-off-by: Alexander Schwartz <aschwart@redhat.com> --------- Signed-off-by: stianst <stianst@gmail.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>	2025-01-14 09:21:04 +00:00
Stian Thorgersen	f14dde7358	Add 26.1.0 release to release notes (#36328 ) Signed-off-by: stianst <stianst@gmail.com>	2025-01-09 14:51:54 +01:00
Michal Hajas	3839f8e3b5	Add metric for password validations (#36049 ) Closes #36048 Signed-off-by: Michal Hajas <mhajas@redhat.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-01-07 10:05:47 +01:00
Marek Posolda	4ab34f4816	Updating release notes with core-clients contributions and features (#36066 ) closes #35953 Signed-off-by: mposolda <mposolda@gmail.com> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com> Signed-off-by: Marek Posolda <mposolda@gmail.com>	2024-12-20 10:15:55 +01:00
Marek Posolda	a3fd076960	Adding ConditionalClientScopeAuthenticator (#36020 ) closes #36081 Signed-off-by: mposolda <mposolda@gmail.com> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com> Signed-off-by: Marek Posolda <mposolda@gmail.com>	2024-12-20 09:53:51 +01:00
Jan Verhaeghe	56246096e0	Align on one realm-name placeholder Closes #36047 Signed-off-by: Jan Verhaeghe <jan@hwfaq.be>	2024-12-19 13:48:18 +00:00
Pedro Ruivo	3767642f93	[Operator] Network Policy Rules Closes #35598 Signed-off-by: Pedro Ruivo <pruivo@redhat.com>	2024-12-19 10:06:25 +01:00
Marek Posolda	47753b9624	Release note about node.js adapter and javascript adapter released in… (#35857 ) closes #35856 Signed-off-by: mposolda <mposolda@gmail.com> Co-authored-by: Jon Koops <jonkoops@gmail.com> Signed-off-by: Marek Posolda <mposolda@gmail.com> --------- Signed-off-by: mposolda <mposolda@gmail.com> Signed-off-by: Marek Posolda <mposolda@gmail.com> Co-authored-by: Jon Koops <jonkoops@gmail.com>	2024-12-13 09:38:55 +01:00
Martin Bartoš	41356dff24	Add Keycloak CR support for Tracing options (#35703 ) Closes #32092 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2024-12-12 12:59:27 +01:00
Ricardo Martin	bbca6116b0	Implement a conditional authenticator to check if a sub-flow was executed or not previously in the process (#35668 ) Closes #35231 Signed-off-by: rmartinc <rmartinc@redhat.com> Co-authored-by: Marek Posolda <mposolda@gmail.com> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>	2024-12-12 11:16:30 +01:00
Martin Bartoš	8f2c825835	Enable opentelemetry feature by default (#35756 ) Closes #35753 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2024-12-11 16:53:14 +00:00
Václav Muzikář	9993e17346	Ability to specify log category levels through separate options (#35138 ) Closes #34957 Co-authored-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>	2024-12-11 17:27:44 +01:00
Alexander Schwartz	7c4a5aed77	Restructuring the migration guide (#35724 ) Closes #35487 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-12-10 12:07:32 +01:00
Stian Thorgersen	5bc4ab1429	Delete OpenShift 3.x identity provider (#34331 ) Closes #34330 Signed-off-by: stianst <stianst@gmail.com>	2024-12-06 11:24:47 +01:00
Marek Posolda	d0cab170a3	Update release notes for Keycloak 26.1.0 with new community additions (#35590 ) closes #35588 Signed-off-by: mposolda <mposolda@gmail.com> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com> Signed-off-by: Marek Posolda <mposolda@gmail.com>	2024-12-04 18:51:15 +01:00
Martin Kanis	20770d8aaa	Fix upgrading guide about deprecation of getAll() methods in the organization APIs Closes #34975 Signed-off-by: Martin Kanis <mkanis@redhat.com>	2024-11-25 10:10:02 +01:00
Václav Muzikář	cf622e8d51	Update docs with security warning around client certificate lookup (#35222 ) Closes #35217 Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>	2024-11-22 10:12:21 +01:00
Martin Kanis	05116f7951	getAll() organization and organization members only returns the first 10 items Closes #34975 Signed-off-by: Martin Kanis <mkanis@redhat.com>	2024-11-21 17:29:37 -03:00
Marek Posolda	a56378e989	Remove upgrading client libraries from the server documentation (#35101 ) closes #34949 Signed-off-by: mposolda <mposolda@gmail.com> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com> Signed-off-by: Marek Posolda <mposolda@gmail.com>	2024-11-20 16:14:42 +01:00
Pedro Ruivo	d7e5319f70	Document network ports for Keycloak clustering Also switch the default to jdbc-ping as this should be a drop-in replacement looking at the networking behavior of udp. Closes #34658 Signed-off-by: Pedro Ruivo <pruivo@redhat.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2024-11-11 13:28:15 +01:00
Erik Jan de Wit	19ef0a608b	Add switch to toggle dark mode (#33822 ) Closes #33821 Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> Signed-off-by: Jon Koops <jonkoops@gmail.com> Co-authored-by: Jon Koops <jonkoops@gmail.com>	2024-10-31 10:19:03 +00:00
Pedro Igor	4ad462fbd3	Do not rely on the pwdLastSet attribute when updating AD entries Closes #34467 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-10-30 17:43:07 +01:00
Jon Koops	05e8b932c3	Add dark mode support to welcome theme and unify approach (#32495 ) Closes #26178 Signed-off-by: Jon Koops <jonkoops@gmail.com> Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com> Co-authored-by: Erik Jan de Wit <erikjan.dewit@gmail.com>	2024-10-04 08:27:37 -04:00
Alexander Schwartz	d8c8c6a0be	Fixing broken links after KC26 docs changes (#33577 ) Closes #33576 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-10-04 13:59:47 +02:00
Stian Thorgersen	64e096d89c	Update 26_0_0.adoc Signed-off-by: Stian Thorgersen <stianst@gmail.com>	2024-10-04 10:54:19 +02:00
Stian Thorgersen	81f1974f7a	Re-order items in release notes for 26 (#33551 ) Signed-off-by: stianst <stianst@gmail.com>	2024-10-04 06:47:08 +02:00
mposolda	41c72d46d2	Document users hashed passwords with argon2 does not work in FIPS environment closes #33296 Signed-off-by: mposolda <mposolda@gmail.com> Co-authored-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com> Signed-off-by: Marek Posolda <mposolda@gmail.com>	2024-10-03 08:47:45 +02:00
Alexander Schwartz	cb12f03003	Rework AWS Lambda doc to show it is required (#33462 ) Closes #33461 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-10-02 12:42:11 +02:00
Jon Koops	21704a70c1	Update documentation and release notes for Keycloak JS (#33409 ) Closes #32843 Signed-off-by: Jon Koops <jonkoops@gmail.com>	2024-10-01 10:29:23 +02:00
Stan Silvert	b4a200d333	Fixes release notes section on new login theme, keycloak.v2 (#33359 ) * Fixes #33351 Signed-off-by: Stan Silvert <ssilvert@redhat.com> * Fixes #33351 Signed-off-by: Stan Silvert <ssilvert@redhat.com> * Ignore saml.xml.org because of expired cert. Signed-off-by: Stan Silvert <ssilvert@redhat.com> --------- Signed-off-by: Stan Silvert <ssilvert@redhat.com>	2024-09-30 15:38:29 +02:00
Steven Hawkins	cf2ecf87f6	fix: add the proxy-protocol option (#33276 ) * fix: add the proxy-protocol-enabled option closes: #10492 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * Update docs/guides/server/reverseproxy.adoc Co-authored-by: Martin Bartoš <mabartos@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Martin Bartoš <mabartos@redhat.com>	2024-09-27 23:44:59 +02:00
Václav Muzikář	fc76bad1fd	Undeprecate `https-trust-store-*` options and enhance mTLS docs Closes #33172 Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>	2024-09-27 18:07:57 +02:00
Marek Posolda	061e74267f	Release notes update with the core-clients contributions (#33279 ) closes #32990 Signed-off-by: mposolda <mposolda@gmail.com> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com> Signed-off-by: Marek Posolda <mposolda@gmail.com>	2024-09-26 06:53:33 +02:00
Ryan Emerson	adb8d989f5	Allow Embedded Cache sizes to be configured via the CLI Closes #31514 Signed-off-by: Ryan Emerson <remerson@redhat.com>	2024-09-24 14:35:24 +02:00
mposolda	a79d95d1bc	Documentation note about Java 8 support for client libraries closes #33186 Signed-off-by: mposolda <mposolda@gmail.com>	2024-09-23 11:54:39 +02:00
Martin Bartoš	84564f080a	Redirect to relative-path from the root path (#32868 ) Closes #32863 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2024-09-18 16:37:28 +02:00
mposolda	f1ec0a9bb6	Release notes and upgrading guide for the client libraries closes #30815 Signed-off-by: mposolda <mposolda@gmail.com> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com> Signed-off-by: Marek Posolda <mposolda@gmail.com>	2024-09-18 14:52:11 +02:00
Vlasta Ramik	4ce40be1af	Make the ORGANIZATION a default feature (#32404 ) Closes #32395 Signed-off-by: vramik <vramik@redhat.com>	2024-09-18 12:19:28 +02:00
Martin Bartoš	45ef84a397	Possibility to separately specify log levels for log handlers - basic (#32779 ) * Possibility to separately specify log levels for log handlers Closes #32619 Signed-off-by: Martin Bartoš <mabartos@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> * Edit properties description Signed-off-by: Martin Bartoš <mabartos@redhat.com> --------- Signed-off-by: Martin Bartoš <mabartos@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>	2024-09-13 12:05:03 +02:00
Steven Hawkins	f0bf290c28	fix: add a reload period property (#32715 ) closes: #23771 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2024-09-13 09:47:21 +02:00
Giuseppe Graziano	a14548a7a2	Lightweight access tokens for Admin REST API (#32347 ) * Lightweight access tokens for Admin REST API Closes #31513 Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>	2024-09-04 18:04:23 +02:00
Theresa Henze	a1c23fef8c	introduce event types to update/remove credentials Closes #10114 Signed-off-by: Theresa Henze <theresa.henze@bare.id>	2024-09-03 18:27:27 +02:00
Michal Hajas	af53af1506	Document persistent sessions are enabled by default Closes #32387 Signed-off-by: Michal Hajas <mhajas@redhat.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Pedro Ruivo <pruivo@users.noreply.github.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2024-08-30 09:20:58 +00:00
Steve Hawkins	c9779cfa24	fix: adding a first-class option for trusted proxies closes: #32135 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2024-08-29 14:00:27 +02:00
Václav Muzikář	9bbfec5cdd	Remove GELF (#32230 ) Closes #27365 Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>	2024-08-28 21:25:05 +02:00
Steven Hawkins	29eb0171de	task: remove hostname v1 (#32352 ) closes: #27731 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2024-08-28 17:48:06 +02:00
Pedro Igor	eeae50fb43	Make sure federationLink always map to the storage provider associated with federated users Closes #31670 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-08-20 11:27:22 +02:00
Stian Thorgersen	310824cc2b	Remove legacy cookies Closes #16770 Signed-off-by: stianst <stianst@gmail.com> Signed-off-by: Jon Koops <jonkoops@gmail.com> Co-authored-by: Jon Koops <jonkoops@gmail.com>	2024-08-15 15:27:38 +02:00
Martin Bartoš	d17a48f8f8	Add docs for the OpenTelemetry tracing Closes #31908 Signed-off-by: Martin Bartoš <mabartos@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>	2024-08-13 08:46:48 +02:00
rmartinc	347f595913	Add ECDH-ES encyption algorithms to the java keystore key provider Closes #32023 Signed-off-by: rmartinc <rmartinc@redhat.com>	2024-08-09 15:57:51 +02:00
Pedro Igor	3ab2446074	Do not return identity providers when querying the realm representation Closes #21072 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-08-07 10:06:51 -03:00
Ryan Emerson	db14ab1365	Refactor HA guide to refer to generic multi-site deployments Old Active/Passive guides replaced with Active/Active architecture, but A/P vs A/A distinction hidden from users in favour of generic multi-site docs. Closes #31029 Signed-off-by: Ryan Emerson <remerson@redhat.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2024-08-07 08:22:59 +00:00
rmartinc	942d5d0aa3	Convert chapter planning for securing applications and services to guides Final removal of the securing_apps documentation Final checks for links, order and other minor things Closes #31328 Signed-off-by: rmartinc <rmartinc@redhat.com>	2024-08-01 16:45:56 +02:00
Peter Zaoral	07cfdac862	Document admin bootstrapping and recovery Closes: #30011 Signed-off-by: Peter Zaoral <pzaoral@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>	2024-07-30 15:45:56 +02:00
Giuseppe Graziano	c3019fb2d3	Move oidc documentation to guides (#31627 ) Closes #31329 Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>	2024-07-30 09:46:14 +02:00
Steven Hawkins	22f8e5cdf0	Added field to the RealmImport spec to replace environment variables within the realm import (#31232 ) * Added field to the RealmImport spec to replace environment variables within the realm import Closes #26470 Signed-off-by: stustison <scott.tustison@gmail.com> * Added field to the RealmImport spec to replace environment variables within the realm import Closes #26470 Signed-off-by: stustison <scott.tustison@gmail.com> * testing refinement for placeholder handling closes: #26470 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * changing from placeholdersecret to placeholder Signed-off-by: Steve Hawkins <shawkins@redhat.com> * Update docs/guides/operator/realm-import.adoc Co-authored-by: Martin Bartoš <mabartos@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> * Update docs/documentation/release_notes/topics/26_0_0.adoc Co-authored-by: Martin Bartoš <mabartos@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> --------- Signed-off-by: stustison <scott.tustison@gmail.com> Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: stustison <scott.tustison@gmail.com> Co-authored-by: Martin Bartoš <mabartos@redhat.com>	2024-07-29 11:16:09 +02:00
Alexander Schwartz	227c71f7f0	Persisting revoked access tokens Closes #31296 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-07-26 11:46:14 +02:00
rmartinc	ccab30d5f2	Move saml documentation to guides Closes #31330 Signed-off-by: rmartinc <rmartinc@redhat.com>	2024-07-24 11:50:24 +02:00
Thomas Darimont	dbd4079f92	Allow users to customize the footer of a login theme (#31391 ) Closes #31390 Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>	2024-07-23 09:29:38 +02:00
Hynek Mlnarik	a7374f92be	Update login theme to login v2 Fixes: #29009 Signed-off-by: Hynek Mlnarik <hmlnarik@redhat.com>	2024-07-18 14:33:22 +02:00
rmartinc	764ef4831a	Release notes and some notes for JavaKeystoreProvider changes Closes #31226 Signed-off-by: rmartinc <rmartinc@redhat.com>	2024-07-17 10:44:45 +02:00
Pedro Igor	1a8075d62a	Update migration and upgrade guides about GroupRemovedEvent no longer fired when removing a realm Closes #30919 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-07-05 10:14:30 +02:00
Pedro Igor	b745ac8259	Documenting LDAP connection pooling Closes #30995 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-07-04 13:21:47 +02:00
Steven Hawkins	a7ae90cbb6	fix: adds affinity and other scheduling to the operator (#29977 ) closes: #29258 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2024-07-03 20:07:03 +02:00
Douglas Palmer	5af3001122	Check if OSGI metadata can be removed entirely Closes #29104 Signed-off-by: Douglas Palmer <dpalmer@redhat.com>	2024-06-25 14:12:33 +02:00
Pedro Ruivo	18a6c79011	Infinispan Protostream Marshaller (#29474 ) Closes #29394 Signed-off-by: Pedro Ruivo <pruivo@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2024-06-13 18:02:46 +02:00
daviddelannoy	d4fc5249c4	fix label error for persistent-user-sessions feature flag in documentation Closes #30368 Signed-off-by: daviddelannoy <16318239+daviddelannoy@users.noreply.github.com>	2024-06-12 09:32:10 +00:00
Pedro Igor	e6df8a2866	Allow multiple instances of the same social broker in a realm Closes #30088 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-06-11 12:44:10 -03:00
Pedro Igor	22da43c619	Fixing broken link (#30299 ) Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-06-10 15:22:48 +02:00
Pedro Igor	c35bf11b1b	Adding organization section (#29796 ) Closes #28731 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>	2024-06-10 09:08:50 +02:00
Giuseppe Graziano	d5e82356f9	Encrypted KC_RESTART cookie and removed sensitive notes Closes #keycloak/keycloak-private#162 Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>	2024-06-05 10:33:44 +02:00
Marek Posolda	193439788e	Release notes for support application/jwt response in token introspec… (#30105 ) closes #30104 Signed-off-by: mposolda <mposolda@gmail.com> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>	2024-06-04 06:49:13 +02:00
Martin Bartoš	262fc09edc	OpenJDK 21 support (#28518 ) * OpenJDK 21 support Closes #28517 Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Signed-off-by: Martin Bartoš <mabartos@redhat.com> * x509 SAN UPN other name is not handled in JDK 21 (#904) closes #29968 Signed-off-by: mposolda <mposolda@gmail.com> --------- Signed-off-by: Martin Bartoš <mabartos@redhat.com> Signed-off-by: mposolda <mposolda@gmail.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Co-authored-by: Marek Posolda <mposolda@gmail.com>	2024-06-03 14:17:28 +02:00
Miquel Simon	2c521bd64d	Upgrade supported PostgreSQL to version 16 Closes #29875 Signed-off-by: Miquel Simon <msimonma@redhat.com>	2024-05-29 16:31:40 +02:00
Marek Posolda	336b2c875f	Update release notes for Keycloak 25 (#29894 ) closes #29576 Signed-off-by: mposolda <mposolda@gmail.com> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>	2024-05-29 14:19:17 +02:00
Ryan Emerson	5788263413	Document Failover Lambda for Active/Passive deployments Closes #29787 Signed-off-by: Ryan Emerson <remerson@redhat.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>	2024-05-29 12:33:13 +02:00
Jon Koops	a3b2dd0735	Remove deprecated `ServerCookie` class (#29916 ) Signed-off-by: Jon Koops <jonkoops@gmail.com>	2024-05-28 14:14:05 +00:00
Alexander Schwartz	80de3a0a71	Allow migration of non-persistent sessions to persistent sessions Closes #29375 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-05-22 10:30:46 +02:00
mposolda	bbd4b60163	Update documentation after adapters removal closes #28792 Signed-off-by: mposolda <mposolda@gmail.com>	2024-05-21 09:34:48 +02:00
Alexander Schwartz	8deca303e2	Update instruction on how to enable persistent sessions (#29490 ) Closes #29489 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-05-15 13:26:51 +02:00
Kamesh Akella	1d613d9037	Argon2 release notes and sizing guide update Closes #29033 Signed-off-by: Kamesh Akella <kamesh.asp@gmail.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2024-05-14 17:40:51 +02:00
Alexander Schwartz	6fbe207d64	Create documentation for persistent user sessions Closes #29218 Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Signed-off-by: Michal Hajas <mhajas@redhat.com> Co-authored-by: Michal Hajas <mhajas@redhat.com>	2024-05-13 11:02:45 +02:00
Pedro Igor	d2c5fc86a9	Additional note on release and upgrade guides about partial update on user attributes Closes #28220 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-05-07 09:59:38 -03:00
Dimitri Papadopoulos Orfanos	9db1443367	Fix typos found by codespell in docs (#28890 ) Run `chmod -x` on files that need not be executable. Signed-off-by: Dimitri Papadopoulos <3234522+DimitriPapadopoulos@users.noreply.github.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2024-05-03 12:41:16 +00:00
Douglas Palmer	98faf6e6a0	Remove Tomcat SAML adapter Signed-off-by: Douglas Palmer <dpalmer@redhat.com> Closes #28783	2024-04-26 09:30:35 +02:00
Mark Banierink	ad32896725	replaced and removed deprecated token methods (#27715 ) closes #19671 Signed-off-by: Mark Banierink <mark.banierink@nedap.com> Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-04-23 09:23:37 +02:00
Pedro Ruivo	3e0a185070	Remove deprecated EnvironmentDependentProviderFactory.isSupported method Closes #26280 Signed-off-by: Pedro Ruivo <pruivo@redhat.com>	2024-04-19 16:36:49 +02:00
Martin Bartoš	7f74286106	Emphasize the need for setting container limit Closes #28729 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2024-04-18 15:44:27 +02:00
Martin Bartoš	1fb83bb165	Release notes and Migration guide for Hostname v2 (#28621 ) Closes #27730 Signed-off-by: Martin Bartoš <mabartos@redhat.com> Co-authored-by: Václav Muzikář <vmuzikar@redhat.com> Co-authored-by: Peter Zaoral <pzaoral@redhat.com>	2024-04-17 09:29:59 +02:00
Alexander Schwartz	5b4a69a6e9	Limit the concurrency of password hashing to the number of CPU cores available Closes #28477 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-04-15 15:05:09 +02:00
Martin Bartoš	a3669a6562	Make general cache options runtime (#28542 ) Closes #27549 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2024-04-12 11:56:11 +02:00
Marek Posolda	74faddec8e	Release notes for lightweight access tokens and group together relate… (#28622 ) closes #28460 Signed-off-by: mposolda <mposolda@gmail.com> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>	2024-04-11 20:02:33 +02:00
Jon Koops	9b94b6f47e	Add release notes for changes to Account and Admin consoles (#28545 ) Signed-off-by: Jon Koops <jonkoops@gmail.com>	2024-04-11 08:42:08 +02:00
Marek Posolda	13daaa55ba	Documentation for changes related to 'You are already logged in' scen… (#28595 ) closes #27879 Signed-off-by: mposolda <mposolda@gmail.com> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>	2024-04-11 08:18:41 +02:00
Martin Bartoš	b2c88e9876	docs: Support management port for health and metrics (#28213 ) Relates to #19334 Signed-off-by: Martin Bartoš <mabartos@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Václav Muzikář <vmuzikar@redhat.com>	2024-04-09 14:33:30 +02:00
Stian Thorgersen	a499512f35	Set SameSite for all cookies (#28467 ) Closes #28465 Signed-off-by: stianst <stianst@gmail.com>	2024-04-09 12:29:19 +02:00
Martin Bartoš	9c1790af68	Enable Syslog log handler (#28462 ) * Enable syslog log handler Closes #27544 Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Suggest an alternative to GELF Signed-off-by: Martin Bartoš <mabartos@redhat.com> --------- Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2024-04-08 17:38:20 +02:00
Pedro Igor	8fb6d43e07	Do not export ids when exporting authorization settings Closes #25975 Co-authored-by: 박시준 <sjpark@logblack.com> Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-04-04 19:26:03 +02:00
Clemens Zagler	b44252fde9	authz/client: Fix getPermissions returning wrong type Due to an issue with runtime type erasure, getPermissions returned a List<LinkedHashSet> instead of List<Permission>. Fixed and added test to catch this Closes #16520 Signed-off-by: Clemens Zagler <c.zagler@noi.bz.it>	2024-04-02 11:09:43 -03:00
Gilvan Filho	757c524cc5	Password policy for not having username in the password closes #27643 Signed-off-by: Gilvan Filho <gfilho@redhat.com>	2024-03-28 08:29:03 +01:00
Stian Thorgersen	c3a98ae387	Use Argon2 as default password hashing algorithm (#28162 ) Closes #28161 Signed-off-by: stianst <stianst@gmail.com>	2024-03-22 13:04:14 +00:00
Stian Thorgersen	cae92cbe8c	Argon2 password hashing provider (#28031 ) Closes #28030 Signed-off-by: stianst <stianst@gmail.com>	2024-03-22 07:08:09 +01:00
Sebastian Schuster	0542554984	12671 querying by user attribute no longer forces case insensitivity for keys Signed-off-by: Sebastian Schuster <sebastian.schuster@bosch.io>	2024-03-21 08:35:29 -03:00
Alexander Schwartz	62d24216e3	Remove offline session preloading Closes #27602 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-03-15 15:19:27 +01:00
stianst	15717cc152	Remove deprecated cookie code Closes #26813 Signed-off-by: stianst <stianst@gmail.com>	2024-03-12 17:24:14 +01:00
Alexander Schwartz	2199d37879	Add multi-site active-passive support to the release notes (#27575 ) Closes #27573 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-03-06 12:59:22 +01:00
Stian Thorgersen	d48ef8b507	Added release notes for 24.0.1 (#27524 ) Signed-off-by: stianst <stianst@gmail.com>	2024-03-05 08:46:10 +01:00
Stian Thorgersen	d875a8f2b7	Delete broken images from release notes (#27492 ) Signed-off-by: stianst <stianst@gmail.com>	2024-03-04 12:47:03 +01:00
Marek Posolda	f1e7c572da	Release notes 24: default password hashing updates (#27475 ) Signed-off-by: mposolda <mposolda@gmail.com>	2024-03-04 09:55:03 +01:00
AndyMunro	14a12d106a	Edit Keycloak 23.x release notes Closes #27440 Signed-off-by: AndyMunro <amunro@redhat.com>	2024-03-02 21:20:58 +01:00
Václav Muzikář	3e3cb2222d	Deprecate GELF (#27367 ) Closes #27364 Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>	2024-02-29 12:07:28 +01:00
Takashi Norimatsu	3db04d8d8d	Replace Security Key with Passkey in WebAuthn UIs and their documents closes #27147 Signed-off-by: Takashi Norimatsu <takashi.norimatsu.ws@hitachi.com>	2024-02-29 10:31:05 +01:00
Marek Posolda	8dd0eb451d	Additional release notes for Keycloak 24 (#27339 ) closes #27142 Signed-off-by: mposolda <mposolda@gmail.com> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>	2024-02-29 08:43:22 +01:00
AndyMunro	ca0526f54d	Edit Keycloak 24 release notes Closes #27326 Signed-off-by: AndyMunro <amunro@redhat.com>	2024-02-28 10:43:17 +01:00
Gilvan Filho	83af01c4c0	Add failedLoginNotBefore to AttackDetectionResource Closes #17574 Signed-off-by: Gilvan Filho <gfilho@redhat.com>	2024-02-26 09:35:51 +01:00
Douglas Palmer	b0ef746f39	Permanently lock users out after X temporary lockouts during a brute force attack Closes #26172 Signed-off-by: Douglas Palmer <dpalmer@redhat.com>	2024-02-22 09:34:51 +01:00
Jon Koops	89af9e3ffd	Write announcement and documentation for Account Console v3 (#26318 ) Closes #26122 Signed-off-by: Jon Koops <jonkoops@gmail.com>	2024-02-21 13:42:33 -05:00
Václav Muzikář	de60c9b469	Tweak the default memory request and limit in the Operator (#27170 ) Closes #27169 Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>	2024-02-21 10:03:17 +01:00
Marek Posolda	d8ab12eab7	Release notes for Keycloak 24 with OIDC contributions (#27047 ) closes #25729 Signed-off-by: mposolda <mposolda@gmail.com> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>	2024-02-16 08:34:20 +01:00
Vlasta Ramik	76453550a5	User attribute value length extension Closes #9758 Signed-off-by: vramik <vramik@redhat.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Signed-off-by: Michal Hajas <mhajas@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Michal Hajas <mhajas@redhat.com>	2024-02-16 08:09:34 +01:00
Martin Bartoš	59007844d9	Supported option to specify resource management for pods in Keycloak CR (#26661 ) Closes #26456 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2024-02-15 13:38:41 +01:00
Marek Posolda	16fca0118e	User profile - release notes and more migration instructions (#27003 ) closes #26917 closes #26932 Signed-off-by: mposolda <mposolda@gmail.com> Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>	2024-02-15 08:14:16 +01:00
Thomas Darimont	93fc6a6c54	Shorter lifespan for offline session cache entries in memory Closes #26810 Co-authored-by: Thomas Darimont <thomas.darimont@googlemail.com> Co-authored-by: Martin Kanis <mkanis@redhat.com> Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com> Signed-off-by: Martin Kanis <mkanis@redhat.com>	2024-02-09 19:44:04 +01:00
Michal Hajas	de598577b1	Fix confusing SAML NameId mapper format tooltip Closes #26051 Signed-off-by: Michal Hajas <mhajas@redhat.com> Co-authored-by: Hynek Mlnařík <hmlnarik@users.noreply.github.com>	2024-02-08 11:21:11 +01:00
Tero Saarni	ac1780a54f	Added event for temporary lockout for brute force protector (#26630 ) This change adds event for brute force protector when user account is temporarily disabled. It also lowers the priority of free-text log for failed login attempts. Signed-off-by: Tero Saarni <tero.saarni@est.tech> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2024-02-07 14:13:33 +00:00
Steven Hawkins	f55e903092	Convert watching to polling and adding infinispan config file support (#26510 ) Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2024-01-31 12:57:34 +00:00
Stian Thorgersen	bc3c27909e	Cookie Provider (#26499 ) Closes #26500 Signed-off-by: stianst <stianst@gmail.com>	2024-01-26 10:45:00 +01:00
Stian Thorgersen	fea49765f0	Remove Jetty 9.4 adapters (#26261 ) Only removing the distribution of the Jetty adapter for now, and leaving the rest for now. This is due to the complexity of removing all Jetty adapter code due to Spring, OSGI, Fuse, testsuite, etc. and it will be better to leave the rest of the clean-up to after 24 when we are removing most adapters Closes #26255 Signed-off-by: stianst <stianst@gmail.com>	2024-01-24 11:17:29 +01:00
Jon Koops	5bf2d4b6ec	Enable PKCE by default for Keycloak JS (#26412 ) Closes #26411 Signed-off-by: Jon Koops <jonkoops@gmail.com>	2024-01-23 14:04:13 +01:00
Alexander Schwartz	b9498b91cb	Deprecating the offline session preloading (#26160 ) Closes #25300 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-01-16 09:29:01 +01:00
Alexander Schwartz	01939bcf34	Remove concurrent loading of remote sessions as at startup time only one node is up anyway. (#25709 ) Closes #22082 Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Martin Kanis <martin-kanis@users.noreply.github.com>	2024-01-09 16:55:22 +01:00
Douglas Palmer	58d167fe59	Deleting a User or User Group might cause that all users suddenly get the permissions of the deleted user. Closes #24651 Signed-off-by: Douglas Palmer <dpalmer@redhat.com>	2024-01-08 19:32:01 -03:00
Alexander Schwartz	badf3f461d	Making metrics with labels for embedded Infinispan the default Closes #25935 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2024-01-08 21:29:03 +01:00
Jon Koops	ddcaa6dcbf	Add release announcement and migration for new welcome theme (#25895 ) Closes #25894 Signed-off-by: Jon Koops <jonkoops@gmail.com>	2024-01-08 13:10:51 +00:00
Pedro Igor	8ff9e71eae	Do not allow verifying email from a different account Closes #14776 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2024-01-05 12:45:07 +01:00
Steven Hawkins	667ce4be9e	enhance: supporting versioned features (#24811 ) also adding a common PropertyMapper validation method closes #24668 Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Co-authored-by: Martin Bartoš <mabartos@redhat.com>	2024-01-03 17:56:31 +01:00
Pedro Igor	ceb085e7b8	Update the UPDATE_EMAIL feature to rely on the user profile configuration when rendering templates and validating the email Closes #25704 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2023-12-20 15:15:06 -03:00
Pedro Igor	778847a3ce	Updating theme templates to render user attributes based on the user profile configuration Closes #25149 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2023-12-18 15:35:52 -03:00
Steven Hawkins	bee7595275	fix: adding the kube ca cert to the truststores closes #10794 Signed-off-by: Steve Hawkins <shawkins@redhat.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>	2023-12-18 15:56:43 +01:00
Steven Hawkins	08751001db	enhance: adds truststores to the keycloak cr (#25215 ) also generally correcting the misspelling trustore closes: #24798 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2023-12-14 11:15:06 -03:00
Václav Muzikář	e4c348e99e	Add new `--proxy-headers` option (#25178 ) * Add new `--proxy-headers` option Closes #23431 Signed-off-by: Václav Muzikář <vmuzikar@redhat.com> Co-authored-by: Martin Bartoš <mabartos@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com> * Address review comments vol. 03 Signed-off-by: Václav Muzikář <vmuzikar@redhat.com> * Address review comments vol. 04 Signed-off-by: Václav Muzikář <vmuzikar@redhat.com> --------- Signed-off-by: Václav Muzikář <vmuzikar@redhat.com> Co-authored-by: Martin Bartoš <mabartos@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2023-12-13 10:48:12 -03:00
Pedro Igor	fa79b686b6	Refactoring user profile interfaces and consolidating user representation for both admin and account context Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2023-12-13 08:27:55 +01:00
Steven Hawkins	4db4982e9d	enhance: adding a start optimized flag (#25216 ) closes: #25015 Update docs/guides/operator/customizing-keycloak.adoc Update docs/documentation/release_notes/topics/24_0_0.adoc Update operator/src/main/java/org/keycloak/operator/crds/v2alpha1/deployment/KeycloakSpec.java Signed-off-by: Václav Muzikář <vmuzikar@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>	2023-12-11 16:15:16 +00:00
Alexander Schwartz	a08f112f79	Add links to guides and GitHub discussions (#25271 ) This should increase the likelihood for feedback Closes #25270 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2023-12-05 08:57:52 +01:00
Michal Hajas	cafc238ff2	Add documentation for lb-check Closes #25077 Signed-off-by: Michal Hajas <mhajas@redhat.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2023-11-30 12:47:06 +00:00
Steven Hawkins	8c3df19722	feature: add option for creating a global truststore (#24473 ) closes #24148 Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Co-authored-by: Martin Bartoš <mabartos@redhat.com>	2023-11-30 08:57:17 +01:00
rmartinc	16afecd6b4	Allow automatic download of SAML certificates in the identity provider Closes https://github.com/keycloak/keycloak/issues/24424 Signed-off-by: rmartinc <rmartinc@redhat.com>	2023-11-29 18:03:31 +01:00

1 2 3 4 5 ...

304 commits