keycloak

mirror of https://github.com/keycloak/keycloak.git synced 2026-05-28 04:13:22 -04:00

Author	SHA1	Message	Date
Pedro Ruivo	3ed15e740a	Add new option to schedule user session expiration Closes #44068 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Signed-off-by: Ryan Emerson <remerson@ibm.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Ryan Emerson <remerson@ibm.com>	2025-11-27 23:01:32 +01:00
Alexander Schwartz	2210b1ed50	Avoid un-escaped strings in the login templates for HTML entities Closes #44296 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-11-26 07:55:35 -03:00
Stian Thorgersen	2a78bc67d7	Refactoring around federated client authenticator to better handling lookup of IdPs and clients. Also, introducing updates to documentation. (#44325 ) Closes #44253 Closes #42987 Closes #44063 Signed-off-by: stianst <stianst@gmail.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>	2025-11-22 12:53:22 +01:00
Alexander Schwartz	bb971dc6fc	Efficient row-count on PostgreSQL Closes #44057 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-11-21 12:28:09 +01:00
Alexander Schwartz	15a9a36569	Align formatting of referenced RFCs Closes #44246 Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Stian Thorgersen <stian@redhat.com>	2025-11-17 21:30:13 +01:00
Chance Coleman	b2317dabdc	Add configurable HTTP retry mechanism for OCSP validation (#42535 ) Closes #42401 Signed-off-by: UnicornChance <chance@defenseunicorns.com> Signed-off-by: Chance Coleman <139784371+chance-coleman@users.noreply.github.com>	2025-11-13 13:21:13 +01:00
vramik	748b58bf64	Remove creation of default policy, resource and permission upon enabling authorization for a client Closes #43867 Signed-off-by: vramik <vramik@redhat.com>	2025-11-13 09:14:56 -03:00
Stian Thorgersen	b278dbbb3d	Allow identity provider configuration without defaults for user authentication (#43963 ) Closes #43552 Signed-off-by: stianst <stianst@gmail.com>	2025-11-05 10:13:40 -03:00
Tobi	479859a7a3	Add new indices on `offline_client_session` Closes #43566 Signed-off-by: twobiers <22715034+twobiers@users.noreply.github.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-10-31 17:49:47 +01:00
Pedro Ruivo	e40c5de050	Session cache affinity Closes #42776 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-10-30 21:01:09 +00:00
Alexander Schwartz	0f01444543	Allow only normalized paths in requests (#43765 ) Closes #43763 Signed-off-by: Martin Bartoš <mabartos@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Martin Bartoš <mabartos@redhat.com>	2025-10-30 14:37:50 +01:00
Pedro Ruivo	6317c02a27	Refactor AuthenticationSessionManager Closes #43825 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-10-30 12:26:07 +01:00
Marek Posolda	2fc5419676	Avoid using UserCredentialManager from user storage extensions (#43695 ) closes #43694 Signed-off-by: mposolda <mposolda@gmail.com>	2025-10-29 16:26:59 +01:00
Pedro Igor	2b785425fa	Allow managing realm admin roles if the the realm-admin role is granted Closes #43579 Closes #43578 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Co-authored-by: Vlasta Ramik <vramik@users.noreply.github.com>	2025-10-23 08:02:05 -03:00
Stian Thorgersen	84a161d4dd	Extract related methods from IdentityProvider to UserIdentityProvider (#43535 ) Closes #43534 Signed-off-by: stianst <stianst@gmail.com>	2025-10-21 14:27:07 +00:00
Alexander Schwartz	6080f21c64	Adding this as a breaking change plus deprecation Closes #43022 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-10-21 09:58:33 -03:00
Martin Bartoš	419afce847	Fix anchors in the documentation Closes #43084 Signed-off-by: Martin Bartoš <mabartos@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-10-21 12:33:32 +00:00
Pedro Igor	c5b560e2d8	Update user profile to allow returning a brief user representation Closes #42225 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-10-21 12:52:31 +02:00
Ronaldo Paulino Jiconda	987ce19b45	Fix OIDC IDP broker basic auth encoding Some checks failed Weblate Sync / Trigger Weblate to pull the latest changes (push) Has been cancelled Details Ensures that the client_id and client_secret are URL-encoded before being Base64-encoded for the Basic Auth header, following RFC 6749. This fixes authentication failures when the client_id contains special characters. Closes #26374 Closes #43022 Signed-off-by: rpjicond <ronaldopaulino32@hotmail.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: rpjicond <ronaldopaulino32@hotmail.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: cgeorgilakis-grnet <cgeorgilakis@admin.grnet.gr>	2025-10-20 23:48:24 +02:00
Steven Hawkins	736d4920d7	fix: noting db support level changes (#43549 ) Some checks failed Weblate Sync / Trigger Weblate to pull the latest changes (push) Has been cancelled Details closes: #43191 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-10-17 14:01:10 +02:00
Giuseppe Graziano	bda0e2a67c	Invalidate sessions created with remember me when remember me is disabled for realm Closes #43328 Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>	2025-10-14 15:00:41 +00:00
Alexander Schwartz	934ac48a54	Rework formatting for release notes Closes #43320 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-10-10 07:42:53 -03:00
Steven Hawkins	7bfc33fd5f	fix: auto-defaulting log console color (#42669 ) closes: #42445 Signed-off-by: Steve Hawkins <shawkins@redhat.com> Co-authored-by: Martin Bartoš <mabartos@redhat.com>	2025-10-06 17:14:30 +00:00
Martin Bartoš	70a9a600de	ExternalLinksTest is broken due to missing path parameters Closes #43082 Signed-off-by: Martin Bartoš <mabartos@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-10-02 10:15:58 +02:00
Alexander Schwartz	37c808bd11	Reorder the release notes (#43026 ) * Reorder the release notes Closes #42994 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> * Update docs/documentation/release_notes/topics/26_4_0.adoc Co-authored-by: Stian Thorgersen <stian@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> * Update docs/documentation/release_notes/topics/26_4_0.adoc Co-authored-by: Stian Thorgersen <stian@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> * Review Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> * Review Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> * Review Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> * Review Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> * Review Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> * Review Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> --------- Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Stian Thorgersen <stian@redhat.com>	2025-09-30 06:47:55 +00:00
Pedro Ruivo	53007546ad	Deprecate AuthenticatedClientSessionModel timestamp Closes #42815 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-09-29 14:16:39 +00:00
Stian Thorgersen	dbd516f8e6	Refactor SimpleHttp to make it injectable and usable outside server (#42936 ) Closes #42902 Signed-off-by: stianst <stianst@gmail.com>	2025-09-29 08:37:05 +02:00
Martin Bartoš	f53e5ebdac	[Docs] Additional datasources support (#42655 ) * [Docs] Additional datasources support Closes #40388 Closes #42263 Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Rename namedKey to wildcardKey in the code Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Clarify the defaults for DB kind Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Be more clear about the Named key reference in guide Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Vasek's review Signed-off-by: Martin Bartoš <mabartos@redhat.com> --------- Signed-off-by: Martin Bartoš <mabartos@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>	2025-09-27 08:45:12 +00:00
Václav Muzikář	b65a60e40d	Support for EDB 17 (#42341 ) Closes #42742 Closes #42293 Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>	2025-09-26 16:04:47 +02:00
rmartinc	1d28c0cd35	Expose system-info information in the serverinfo endpoint only for users in the admin realm Closes #42828 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-09-24 17:21:57 +02:00
Pedro Igor	73ee2cb3e2	Update upgrade guide about changes in how the parameter is propagated to OPs Closes #42139 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-09-24 09:03:04 -03:00
Pedro Igor	54d2451b35	Make user read-only and a proper error message when the user federation provider is not available Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-09-24 04:03:13 -03:00
Alexander Schwartz	a9ed355bfc	Adding missing time column to index Closes #42792 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-09-23 07:33:08 -03:00
vramik	23043b40b4	Fix `reset-password` scope documentation and upgrading guide Closes #42790 Signed-off-by: vramik <vramik@redhat.com>	2025-09-23 07:31:35 -03:00
Stan Silvert	f99c91291c	Remove duplicated themes documentation. (#42571 ) * Remove duplicated themes documentation. Signed-off-by: Stan Silvert <ssilvert@redhat.com> * Move Theme SPI documentation to Themes Guide Signed-off-by: Stan Silvert <ssilvert@redhat.com> * Fix link so test will pass. Fixes #42396 Signed-off-by: Stan Silvert <ssilvert@redhat.com> * Fix broken links. Closes #42396 Signed-off-by: Stan Silvert <ssilvert@redhat.com> * Fix broken link. Closes #42396 Signed-off-by: Stan Silvert <ssilvert@redhat.com> --------- Signed-off-by: Stan Silvert <ssilvert@redhat.com>	2025-09-18 10:31:52 +02:00
Pedro Ruivo	f7ff7e55d8	Replace UUID with composite key for client session cache Closes #42547 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-09-17 10:25:51 +00:00
Ryan Emerson	728118d62a	Validate wait_timeout parameter on MySQL and MariaDB Closes #42300 Signed-off-by: Ryan Emerson <remerson@ibm.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-09-16 09:38:52 +00:00
andymunro	bbe2beebbb	Keycloak 26.4 Upgrading Guide Closes #42564 Signed-off-by: AndyMunro <amunro@redhat.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-09-16 08:59:28 +02:00
Steven Hawkins	ae1e1d3cc3	fix: allows for schedulings to be defined for operator jobs (#42310 ) * fix: allows for schedulings to be defined for operator jobs closes: #42057 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * Update docs/guides/operator/advanced-configuration.adoc Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Signed-off-by: Steven Hawkins <shawkins@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>	2025-09-10 16:28:12 +00:00
Alexander Schwartz	473864a45d	Fixing the indentation of the sections Closes #42501 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-09-10 13:54:50 +02:00
Ryan Emerson	a3c95a2a34	Document tested and supported configurations for single-cluster deployments Closes #42304 Signed-off-by: Ryan Emerson <remerson@ibm.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-09-09 19:49:22 +00:00
mposolda	5a05d2123e	Unbounded login_hint parameter Can Corrupt KC_RESTART Cookie closes #40857 Signed-off-by: mposolda <mposolda@gmail.com>	2025-09-09 11:05:19 +02:00
Pedro Igor	40476b53d9	fixup! align /users/count with /users behavior around service-accounts	2025-09-08 11:30:45 -03:00
Alexander Schwartz	ad12b418b4	Review Closes #42369 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-09-05 10:28:32 -03:00
Alexander Schwartz	78dce37197	Update documentation after changes to RFC8414 handling Closes #42323 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-09-05 10:28:32 -03:00
Bagautdino	d225bce21f	feat(FGAPv2): introduce RESET_PASSWORD scope and evaluation - Add RESET_PASSWORD to AdminPermissionsSchema.USERS - Require RESET_PASSWORD in UserResource.resetPassword() - Expose canResetPassword()/requireResetPassword() - Implement FGAP v2 deny-overrides + secure-by-default + optional fallback - Include access.resetPassword for Admin Console Closes #41901 Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Bagautdino <336373@edu.itmo.ru>	2025-09-03 15:10:56 -03:00
Pedro Ruivo	935caa97ea	Disable peristent user session batching Closes #41662 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-09-01 14:33:21 +00:00
Sebastian Łaskawiec	4c0f071d45	Upgrade Prep doc polishing Closes #41898 Signed-off-by: Sebastian Łaskawiec <sebastian.laskawiec@defenseunicorns.com>	2025-08-21 13:19:59 +02:00
Ricardo Martin	46e990b7a7	Check for non-ascii local part on emails depending on SMTP configuration Closes #41994 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-08-21 08:16:47 +00:00
Steven Hawkins	b6f039a4cc	fix: adding a default for ldap connection timeout (#41726 ) closes: #39299 Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com>	2025-08-19 16:43:42 +00:00
Sebastian Łaskawiec	988bf9cb0b	WelcomeResource do not create temporary admins (#41416 ) Signed-off-by: Sebastian Łaskawiec <sebastian.laskawiec@defenseunicorns.com>	2025-08-18 17:31:26 +02:00
Ryan Emerson	168d9cc090	Simplify Cache Configuration file by removing built-in cache configurations Closes #41559 Signed-off-by: Ryan Emerson <remerson@ibm.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-08-15 16:16:56 +00:00
Ricardo Martin	949ef35a3b	Allow and control sending UTF-8 emails in the default email sender impl Closes #41023 Signed-off-by: rmartinc <rmartinc@redhat.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-08-15 10:43:38 +00:00
Moshie Samuel	6958f57f0a	add configurable cooldown for email resend in VerifyEmail Closes #41331 Signed-off-by: Moshie Samuel <moshie.samuel@gmail.com> Signed-off-by: moshiem <moshiem@hardcorebiometric.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: moshiem <moshiem@hardcorebiometric.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-08-15 07:31:00 +02:00
Alexander Schwartz	7629b7dc53	Show required fields when configuring protocol mappers Closes #40619 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-08-15 07:28:45 +02:00
Dmytro Filipenko	bd5818c4c8	Add HTML5 attributes to prevent password manager interference with OTP * Closes #41831 Signed-off-by: dmfilipenko <wind.fd@gmail.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-08-14 07:45:53 +00:00
Peter Skopek	651d651c30	Add missing artifact descriptions to allow Maven Central Portal Publisher pass validation process. (#40822 ) Signed-off-by: Peter Skopek <pskopek@redhat.com>	2025-08-12 16:50:17 +02:00
Ryan Emerson	a2fe32617c	Default to stretched clusters on Kubernetes when possible Closes #41666 Signed-off-by: Ryan Emerson <remerson@ibm.com>	2025-08-08 08:09:04 +02:00
mposolda	3cc8808465	Wrap deprecated passkeys authenticator behind the feature closes #40696 Signed-off-by: mposolda <mposolda@gmail.com>	2025-08-01 16:48:57 +02:00
Alexander Schwartz	e1b3afb686	Refresh token for an OAuth2 based IDP when retrieving the IDP token Closes #14644 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-07-31 11:11:34 +02:00
Oliver	27cd19e68e	add index for user_id and type on event_entity Closes #26995 Signed-off-by: Oliver Cremerius <antikalk@users.noreply.github.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-07-30 20:52:48 +00:00
Martin Bartoš	57cb321ce0	ExternalLinks are broken in documentation Closes #41491 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-07-30 11:21:11 +02:00
秉虎	d2e9b09ebc	Migrate to zh-Hant / zh-Hans for Chinese language Closes: #41239 Signed-off-by: 秉虎 <s96016641@gmail.com> Signed-off-by: Allen <s96016641@gmail.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-07-28 11:47:55 +02:00
Alexander Schwartz	7fd3380b19	OpenTelemetry Tracing: Visualize JGroups communication (#39659 ) Closes #39658 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-07-22 11:51:58 +02:00
rmartinc	e0bba39da0	Allow configure encryption details for SAML clients Closes #40933 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-07-18 20:13:40 +02:00
Martin Kanis	85b494ec51	Review and update the documentation regarding the UPDATE EMAIL feature Closes #40226 Signed-off-by: Martin Kanis <mkanis@redhat.com>	2025-07-17 15:27:09 +00:00
Alexander Schwartz	180745b65f	Fix em-dash in SPI options in the docs Closes #41152 Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Steven Hawkins <shawkins@redhat.com>	2025-07-16 12:18:09 -03:00
Pedro Ruivo	9322d71d61	UserSession Offline removed from DB if not in cache Fixes #40754 Signed-off-by: Pedro Ruivo <pruivo@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>	2025-07-07 20:52:06 +02:00
Alexis Rico	c834e7473c	Fix typo in consent scope) * Deprecate `displayTest` Closes #40786 Signed-off-by: Alexis Rico <sferadev@gmail.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-07-07 16:38:47 +00:00
Ryan Emerson	eb7ce6ae15	Provide CLI Parameters for jgroups.* options Closes #40481 Signed-off-by: Ryan Emerson <remerson@redhat.com>	2025-07-07 13:07:45 +02:00
Alexander Schwartz	05d0c34681	Automatically connect to a writer instance of PostgreSQL (#40384 ) Closes #40383 Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Co-authored-by: Martin Bartoš <mabartos@redhat.com>	2025-07-04 16:46:49 +02:00
Michael-AT-Corporation	ff9e7c2371	Added new searchByAttributes function to UsersResource with the exact parameter Closes #39609 Signed-off-by: Michael-AT-Corporation <michael-hu@ooutlook.de>	2025-07-03 13:51:46 -03:00
Martin Bartoš	b8ce83772b	Mark options for additional datasources as preview (#40839 ) * Mark options for additional datasources as preview Closes #40838 Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Update docs/documentation/upgrading/topics/changes/changes-26_3_1.adoc Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Signed-off-by: Martin Bartoš <mabartos@redhat.com> --------- Signed-off-by: Martin Bartoš <mabartos@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>	2025-07-02 10:46:45 +00:00
Pedro Igor	2a9f4336c3	Updating upgrading guide about changes in user-profile-commons.ftl template Closes #39562 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-07-01 13:11:23 +02:00
Ricardo Martin	8624101701	Documentation changes for Passkeys (#40728 ) Closes #40705 Signed-off-by: rmartinc <rmartinc@redhat.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net> Signed-off-by: Ricardo Martin <rmartinc@redhat.com>	2025-06-27 14:59:46 +02:00
Alexander Schwartz	7e2a38ae4c	Move section in the upgrading guide Closes #39063 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-06-27 13:25:25 +02:00
Martin Bartoš	d475c5aecc	Missing Quarkus flag for Syslog counting framing (#40621 ) * Missing Quarkus flag for Syslog counting framing Closes #39893 Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Remove handling of mapFrom Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Add notable change Signed-off-by: Martin Bartoš <mabartos@redhat.com> --------- Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-06-25 17:36:41 +02:00
Steven Hawkins	a50d15be05	fix: refining breaking behavior (#40697 ) closes: #39063 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-06-25 17:28:00 +02:00
rmartinc	86f0a7864f	Disable email verification when email manually changed by idp review Closes #40446 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-06-25 08:56:03 +02:00
Pedro Ruivo	f4d5fa68c1	Update documentation about volatile sessions Closes #40639 Signed-off-by: Pedro Ruivo <pruivo@redhat.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-06-20 16:45:22 +00:00
Alexander Schwartz	c4eafcf2ae	Rework AsciiDoc warnings Closes #40445 Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>	2025-06-18 14:57:39 +02:00
Alexander Schwartz	872a56f237	Reworking the release notes for the upcoming release Closes #40547 Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Pedro Ruivo <pruivo@users.noreply.github.com>	2025-06-18 10:45:31 +02:00
Alexander Schwartz	61586ff328	Disabling persistent sessions affects also offline session cache Closes #40483 Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-06-17 08:02:28 +00:00
Ryan Emerson	78f575b53b	Default to num_owners=2 when the persistent-user-sessions feature is disabled Closes #39429 Closes #40472 Signed-off-by: Ryan Emerson <remerson@redhat.com>	2025-06-16 09:43:39 +02:00
Steven Hawkins	76bc9fadcb	fix: adding a -- separator for spi options (#40005 ) * fix: adding a -- separator for spi options closes: #39063 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * adding a warning for ambiguous spi options also adding a note about the change Signed-off-by: Steve Hawkins <shawkins@redhat.com> # Conflicts: # docs/documentation/upgrading/topics/changes/changes-26_3_0.adoc * updating docs to the new format Signed-off-by: Steve Hawkins <shawkins@redhat.com> # Conflicts: # docs/guides/high-availability/examples/generated/keycloak-ispn.yaml # docs/guides/high-availability/examples/generated/keycloak.yaml * internally using the new spi options also adding a deprecation notice Signed-off-by: Steve Hawkins <shawkins@redhat.com> * Apply suggestions from code review Co-authored-by: Martin Bartoš <mabartos@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> * correcting options output adding + + inlining where needed Signed-off-by: Steve Hawkins <shawkins@redhat.com> * adding test showing the env mapping with __ Signed-off-by: Steve Hawkins <shawkins@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Martin Bartoš <mabartos@redhat.com>	2025-06-13 16:13:53 +02:00
Martin Bartoš	21bd46cb18	Add templates for release notes and migration guide Closes #40441 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-06-12 11:38:06 +02:00
Alexander Schwartz	0b3950529e	Re-sort the release notes and upgrading guide (#40424 ) Closes #40422 Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Michal Hajas <mhajas@redhat.com>	2025-06-12 10:25:42 +02:00
Ricardo Martin	b89f8a0225	Documentation changes for the 2FA additions Closes #40001 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-06-12 09:30:27 +02:00
Ryan Emerson	0c62bd0878	Change discovery in Kubernetes to jdbc-ping Closes #39544 Signed-off-by: Ryan Emerson <remerson@redhat.com>	2025-06-05 16:48:30 +02:00
rmartinc	abd7f88526	Make the checkbox "Sign out from other devices" unchecked by default Closes #39975 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-06-04 14:11:29 +02:00
Alexander Schwartz	2b2d7bbcbe	Updated documentation to handle the conf folder on upgrades (#40175 ) Closes #40046 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-06-03 16:14:11 +02:00
Pedro Igor	7cc055f8a6	Verify brokered user email based on the email_verified claim from the ID Token returned by the OP Closes #39885 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-05-29 10:45:18 -03:00
Pedro Igor	b22b1f298c	Adding parameter to control whether the count of subgroups of subgroups should be returned Closes #39668 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-05-22 11:15:38 -03:00
Kai J. Witt	c76bb0683c	Make max auth age configurable for all required actions by default Moved the current configuration implementation for the update password Closes #39408 Signed-off-by: Kai Josef Witt <KWitt@vhv.de> Signed-off-by: Marek Posolda <mposolda@gmail.com> Co-authored-by: Kai Josef Witt <KWitt@vhv.de> Co-authored-by: Marek Posolda <mposolda@gmail.com>	2025-05-15 08:44:38 +02:00
Douglas Palmer	64cb66f451	Inconsistency in User enabled status in Rest query results. Closes #39549 #28713 Signed-off-by: Douglas Palmer <dpalmer@redhat.com>	2025-05-14 20:10:14 +02:00
Pedro Igor	34ad280665	Build user representations when searching based on the user profile settings Closes #39595 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-05-14 10:42:25 +02:00
Pedro Igor	4171da9fbb	Updating upgrading guide with the changes to theme templates Closes #39562 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-05-14 09:38:41 +02:00
andymunro	0fc18c3a0b	Make links generic Closes #39469 Signed-off-by: AndyMunro <amunro@redhat.com>	2025-05-09 16:18:15 +02:00
Alexander Schwartz	a17f551eb2	Log out other sessions including offline sessions on password change Closes #38850 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-05-06 14:04:13 +02:00
Alexander Schwartz	f79408788d	Document how to configure Istio to allow for JGroups mTLS Closes #39065 Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Pedro Ruivo <pruivo@users.noreply.github.com>	2025-05-02 12:08:02 +00:00

1 2 3 4 5 ...

426 commits