keycloak

mirror of https://github.com/keycloak/keycloak.git synced 2026-05-28 04:13:22 -04:00

Author	SHA1	Message	Date
Martin Kanis	a493213ad4	Hide read-only email attribute in update profile context with update … …email enabled (#43024 ) * Hide read-only email attribute in update profile context with update email enabled Closes #42990 Signed-off-by: Martin Kanis <mkanis@redhat.com> * Simplifying conditions when checking read/write on email attribute and more tests Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> --------- Signed-off-by: Martin Kanis <mkanis@redhat.com> Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-10-07 12:52:55 +02:00
Steven Hawkins	7bfc33fd5f	fix: auto-defaulting log console color (#42669 ) closes: #42445 Signed-off-by: Steve Hawkins <shawkins@redhat.com> Co-authored-by: Martin Bartoš <mabartos@redhat.com>	2025-10-06 17:14:30 +00:00
Martin Bartoš	70a9a600de	ExternalLinksTest is broken due to missing path parameters Closes #43082 Signed-off-by: Martin Bartoš <mabartos@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-10-02 10:15:58 +02:00
Alexander Schwartz	6b615650ec	Moving section to the correct place Closes #43104 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-10-01 09:53:04 +02:00
Alexander Schwartz	37c808bd11	Reorder the release notes (#43026 ) * Reorder the release notes Closes #42994 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> * Update docs/documentation/release_notes/topics/26_4_0.adoc Co-authored-by: Stian Thorgersen <stian@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> * Update docs/documentation/release_notes/topics/26_4_0.adoc Co-authored-by: Stian Thorgersen <stian@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> * Review Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> * Review Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> * Review Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> * Review Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> * Review Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> * Review Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> --------- Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Stian Thorgersen <stian@redhat.com>	2025-09-30 06:47:55 +00:00
Pedro Igor	a3db07a8f5	Re-adding max age setting to the update email action (#43036 ) Closes #43035 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-09-30 05:31:23 +02:00
Pedro Ruivo	53007546ad	Deprecate AuthenticatedClientSessionModel timestamp Closes #42815 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-09-29 14:16:39 +00:00
Takashi Norimatsu	1649f8c847	Follow-up: FAPI 2.0 Message Signing final version support - updating the link to the final spec closes #42499 Signed-off-by: Takashi Norimatsu <takashi.norimatsu.ws@hitachi.com>	2025-09-29 08:52:27 +02:00
Stian Thorgersen	dbd516f8e6	Refactor SimpleHttp to make it injectable and usable outside server (#42936 ) Closes #42902 Signed-off-by: stianst <stianst@gmail.com>	2025-09-29 08:37:05 +02:00
Václav Muzikář	97ab82e483	Mark Azure SQL as supported (#42985 ) Closes #42743 Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>	2025-09-29 08:31:08 +02:00
Martin Bartoš	f53e5ebdac	[Docs] Additional datasources support (#42655 ) * [Docs] Additional datasources support Closes #40388 Closes #42263 Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Rename namedKey to wildcardKey in the code Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Clarify the defaults for DB kind Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Be more clear about the Named key reference in guide Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Vasek's review Signed-off-by: Martin Bartoš <mabartos@redhat.com> --------- Signed-off-by: Martin Bartoš <mabartos@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>	2025-09-27 08:45:12 +00:00
Václav Muzikář	b65a60e40d	Support for EDB 17 (#42341 ) Closes #42742 Closes #42293 Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>	2025-09-26 16:04:47 +02:00
Vinod Anandan	f001b9dde1	Trigger Build. Signed-off-by: Vinod Anandan <vinod@owasp.org>	2025-09-25 10:14:15 +02:00
mposolda	389314a65e	Typo in the latest documentation closes #42918 Signed-off-by: mposolda <mposolda@gmail.com>	2025-09-24 17:23:52 +02:00
rmartinc	1d28c0cd35	Expose system-info information in the serverinfo endpoint only for users in the admin realm Closes #42828 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-09-24 17:21:57 +02:00
Pedro Igor	73ee2cb3e2	Update upgrade guide about changes in how the parameter is propagated to OPs Closes #42139 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-09-24 09:03:04 -03:00
Alexander Schwartz	b95cb0c276	Adding explicit anchor for downstream docs Closes #42868 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-09-24 11:21:08 +02:00
Marek Posolda	e09ce9e18d	Documentation update for DPoP (#42865 ) closes #42728 Signed-off-by: mposolda <mposolda@gmail.com> Signed-off-by: Marek Posolda <mposolda@gmail.com> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>	2025-09-24 10:00:23 +02:00
Pedro Igor	54d2451b35	Make user read-only and a proper error message when the user federation provider is not available Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-09-24 04:03:13 -03:00
rmartinc	c05b84a0d2	Ignore external links to https://www.npmjs.com/package Closes #42856 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-09-23 12:36:46 +02:00
Alexander Schwartz	a9ed355bfc	Adding missing time column to index Closes #42792 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-09-23 07:33:08 -03:00
vramik	23043b40b4	Fix `reset-password` scope documentation and upgrading guide Closes #42790 Signed-off-by: vramik <vramik@redhat.com>	2025-09-23 07:31:35 -03:00
rmartinc	2015e08e38	Move DPoP option to the capability section in the admin UI Closes #42746 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-09-22 17:27:48 +02:00
Pedro Ruivo	47f85631f3	Automatically create external caches for MULTI_SITE deployments Closes #32129 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>	2025-09-19 18:56:38 +02:00
stianst	fb83a8ba09	Documentation for federated client authentication Closes #42721 Signed-off-by: stianst <stianst@gmail.com>	2025-09-19 11:54:03 +01:00
Stian Thorgersen	3841fea16d	Promote CLIENT_AUTH_FEDERATED and SPIFFE features to preview (#42753 ) Closes #42722 Signed-off-by: stianst <stianst@gmail.com> Co-authored-by: Ryan Emerson <remerson@ibm.com>	2025-09-19 09:46:37 +00:00
Stan Silvert	f99c91291c	Remove duplicated themes documentation. (#42571 ) * Remove duplicated themes documentation. Signed-off-by: Stan Silvert <ssilvert@redhat.com> * Move Theme SPI documentation to Themes Guide Signed-off-by: Stan Silvert <ssilvert@redhat.com> * Fix link so test will pass. Fixes #42396 Signed-off-by: Stan Silvert <ssilvert@redhat.com> * Fix broken links. Closes #42396 Signed-off-by: Stan Silvert <ssilvert@redhat.com> * Fix broken link. Closes #42396 Signed-off-by: Stan Silvert <ssilvert@redhat.com> --------- Signed-off-by: Stan Silvert <ssilvert@redhat.com>	2025-09-18 10:31:52 +02:00
Ryan Emerson	aa8321b837	Update 26.4 release notes to refer to old multi-site architecture Closes #42702 Signed-off-by: Ryan Emerson <remerson@ibm.com>	2025-09-17 17:56:24 +02:00
Pedro Ruivo	f7ff7e55d8	Replace UUID with composite key for client session cache Closes #42547 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-09-17 10:25:51 +00:00
Ryan Emerson	0c5b6398a9	Document Operator ServiceMonitor generation in release notes Closes #42642 Signed-off-by: Ryan Emerson <remerson@ibm.com>	2025-09-16 18:04:58 +02:00
Marek Posolda	d9d19791a4	Clarifying OIDC logout documentation. Removing obsolete unused docs p… (#42636 ) closes #41792 Signed-off-by: mposolda <mposolda@gmail.com> Signed-off-by: Marek Posolda <mposolda@gmail.com> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>	2025-09-16 17:37:42 +02:00
Ricardo Martin	a2acdda535	Automatic download and cache of the SAML client public keys (#41947 ) Closes #17028 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-09-16 13:07:33 +02:00
Ryan Emerson	728118d62a	Validate wait_timeout parameter on MySQL and MariaDB Closes #42300 Signed-off-by: Ryan Emerson <remerson@ibm.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-09-16 09:38:52 +00:00
andymunro	bbe2beebbb	Keycloak 26.4 Upgrading Guide Closes #42564 Signed-off-by: AndyMunro <amunro@redhat.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-09-16 08:59:28 +02:00
Alexander Schwartz	78ab69b0e7	Edit Keycloak 26.4 release notes Closes #42532 Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>	2025-09-11 14:26:12 -03:00
andymunro	801e892be1	Edit Keycloak 26.4 release notes Closes #42532 Signed-off-by: AndyMunro <amunro@redhat.com>	2025-09-11 14:17:19 +02:00
Alexander Schwartz	5cfdaebcea	Add missing fields for client offline session timeout and lifespan Closes #42369 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-09-11 11:46:50 +02:00
Steven Hawkins	ae1e1d3cc3	fix: allows for schedulings to be defined for operator jobs (#42310 ) * fix: allows for schedulings to be defined for operator jobs closes: #42057 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * Update docs/guides/operator/advanced-configuration.adoc Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Signed-off-by: Steven Hawkins <shawkins@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>	2025-09-10 16:28:12 +00:00
Alexander Schwartz	473864a45d	Fixing the indentation of the sections Closes #42501 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-09-10 13:54:50 +02:00
Ricardo Martin	93791f67fb	Add User_agent header for documentation links checker Closes #42164 Signed-off-by: rmartinc <rmartinc@redhat.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-09-09 21:02:42 +00:00
Ryan Emerson	a3c95a2a34	Document tested and supported configurations for single-cluster deployments Closes #42304 Signed-off-by: Ryan Emerson <remerson@ibm.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-09-09 19:49:22 +00:00
mposolda	5a05d2123e	Unbounded login_hint parameter Can Corrupt KC_RESTART Cookie closes #40857 Signed-off-by: mposolda <mposolda@gmail.com>	2025-09-09 11:05:19 +02:00
Pedro Igor	40476b53d9	fixup! align /users/count with /users behavior around service-accounts	2025-09-08 11:30:45 -03:00
Alexander Schwartz	ad12b418b4	Review Closes #42369 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-09-05 10:28:32 -03:00
Alexander Schwartz	78dce37197	Update documentation after changes to RFC8414 handling Closes #42323 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-09-05 10:28:32 -03:00
Bagautdino	d225bce21f	feat(FGAPv2): introduce RESET_PASSWORD scope and evaluation - Add RESET_PASSWORD to AdminPermissionsSchema.USERS - Require RESET_PASSWORD in UserResource.resetPassword() - Expose canResetPassword()/requireResetPassword() - Implement FGAP v2 deny-overrides + secure-by-default + optional fallback - Include access.resetPassword for Admin Console Closes #41901 Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Bagautdino <336373@edu.itmo.ru>	2025-09-03 15:10:56 -03:00
Alexander Schwartz	665f4140da	Adding missing docs for 26.4 release notes Closes #42252 Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Vinod Anandan <vinod@owasp.org>	2025-09-02 17:47:12 -03:00
vramik	4aa604ad04	Updated the screenshot to correctly show "Apply to Resource Type" enabled, which is required for typed resource permissions. Closes #42159 Signed-off-by: vramik <vramik@redhat.com>	2025-09-02 12:27:36 -03:00
Pedro Ruivo	935caa97ea	Disable peristent user session batching Closes #41662 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-09-01 14:33:21 +00:00
Tobias Genannt	ca93863d60	fix: Update to new dash standard Closes #42270 Signed-off-by: Tobias Genannt <tobias.genannt@gmail.com>	2025-09-01 12:49:02 +00:00
am97	0c91d106a2	Add build documentation for REST API and Javadoc Closes #42176 Signed-off-by: Andrés Maldonado <maldonado@codelutin.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>	2025-09-01 11:37:26 +00:00
Steven Hawkins	565e195f48	enhance: allow for control over what port health checks are exposed on (#41759 ) closes: #39506 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-08-28 10:18:22 +02:00
Alexis Rico	224ccbb79d	Make organization `domains` optional Closes #31285 Signed-off-by: Alexis Rico <sferadev@gmail.com>	2025-08-27 18:11:15 -03:00
Niko Köbler	236d2f9f62	Add configuration option to automatically add recovery codes action after otp configuration closes #41836 Signed-off-by: Niko Köbler <niko@n-k.de> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-08-27 17:56:59 +02:00
laureat-natzka	edbe28147e	Pass IDP config values to themes (#40373 ) Signed-off-by: Laureat Grepi <laureat@Laureat-MacBook-Pro.local> Co-authored-by: Laureat Grepi <laureat@Laureat-MacBook-Pro.local>	2025-08-25 17:50:06 +00:00
Sebastian Łaskawiec	4c0f071d45	Upgrade Prep doc polishing Closes #41898 Signed-off-by: Sebastian Łaskawiec <sebastian.laskawiec@defenseunicorns.com>	2025-08-21 13:19:59 +02:00
Ricardo Martin	46e990b7a7	Check for non-ascii local part on emails depending on SMTP configuration Closes #41994 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-08-21 08:16:47 +00:00
Steven Hawkins	b6f039a4cc	fix: adding a default for ldap connection timeout (#41726 ) closes: #39299 Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com>	2025-08-19 16:43:42 +00:00
Sebastian Łaskawiec	988bf9cb0b	WelcomeResource do not create temporary admins (#41416 ) Signed-off-by: Sebastian Łaskawiec <sebastian.laskawiec@defenseunicorns.com>	2025-08-18 17:31:26 +02:00
Ryan Emerson	168d9cc090	Simplify Cache Configuration file by removing built-in cache configurations Closes #41559 Signed-off-by: Ryan Emerson <remerson@ibm.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-08-15 16:16:56 +00:00
Ricardo Martin	949ef35a3b	Allow and control sending UTF-8 emails in the default email sender impl Closes #41023 Signed-off-by: rmartinc <rmartinc@redhat.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-08-15 10:43:38 +00:00
Moshie Samuel	6958f57f0a	add configurable cooldown for email resend in VerifyEmail Closes #41331 Signed-off-by: Moshie Samuel <moshie.samuel@gmail.com> Signed-off-by: moshiem <moshiem@hardcorebiometric.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: moshiem <moshiem@hardcorebiometric.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-08-15 07:31:00 +02:00
Alexander Schwartz	7629b7dc53	Show required fields when configuring protocol mappers Closes #40619 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-08-15 07:28:45 +02:00
Pedro Igor	3bf46e5421	"linked-accounts" endpoint displays all Identity providers Closes #19732 Signed-off-by: Réda Housni Alaoui <reda-alaoui@hey.com> Co-authored-by: Réda Housni Alaoui <reda-alaoui@hey.com>	2025-08-14 15:21:03 +02:00
Dmytro Filipenko	bd5818c4c8	Add HTML5 attributes to prevent password manager interference with OTP * Closes #41831 Signed-off-by: dmfilipenko <wind.fd@gmail.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-08-14 07:45:53 +00:00
dependabot[bot]	1a262cc899	Bump commons-io:commons-io from 2.7 to 2.14.0 in /docs/documentation/tests (#41463 ) Bumps commons-io:commons-io from 2.7 to 2.14.0. --- updated-dependencies: - dependency-name: commons-io:commons-io dependency-version: 2.14.0 dependency-type: direct:development ... Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-08-14 06:08:39 +00:00
Ricardo Martin	ef312b570c	Final changes for passkeys documentation (#41646 ) Closes #41557 Signed-off-by: rmartinc <rmartinc@redhat.com> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com> Co-authored-by: Marek Posolda <mposolda@gmail.com>	2025-08-13 09:01:15 +02:00
Peter Skopek	651d651c30	Add missing artifact descriptions to allow Maven Central Portal Publisher pass validation process. (#40822 ) Signed-off-by: Peter Skopek <pskopek@redhat.com>	2025-08-12 16:50:17 +02:00
Alexander Schwartz	c2515bbb88	Fixing typo and formatting Closes #41620 Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>	2025-08-11 08:26:10 +02:00
Ryan Emerson	a2fe32617c	Default to stretched clusters on Kubernetes when possible Closes #41666 Signed-off-by: Ryan Emerson <remerson@ibm.com>	2025-08-08 08:09:04 +02:00
Pedro Igor	84fc9bb3e5	Allow forwarding parameters set as a client note in the authentication session Closes #41670 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-08-06 14:57:47 -03:00
huyenvu2101	5436f9781c	Allow setting default value for userprofile attribute Closes #36160 Signed-off-by: huyenvu2101 <vhuyen2101@gmail.com>	2025-08-06 13:59:54 -03:00
Steven Hawkins	f5f93ef6e1	fix: adding the ability to set the ingress tlsSecret (#41426 ) * fix: adding the ability to set the ingress tlsSecret closes: #34777 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * Apply suggestions from code review Co-authored-by: Martin Bartoš <mabartos@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Martin Bartoš <mabartos@redhat.com>	2025-08-04 09:28:46 -03:00
mposolda	3cc8808465	Wrap deprecated passkeys authenticator behind the feature closes #40696 Signed-off-by: mposolda <mposolda@gmail.com>	2025-08-01 16:48:57 +02:00
Takashi Norimatsu	cb4e06b6f8	FAPI 2.0 Security Profile Final - Documentation closes #41121 Signed-off-by: Takashi Norimatsu <takashi.norimatsu.ws@hitachi.com>	2025-08-01 09:24:30 +02:00
forkimenjeckayang	43610cfa67	[OID4VCI] Update SD-JWT VCs Format Identifier to dc+sd-jwt (#41233 ) Closes #39293 Signed-off-by: forkimenjeckayang <forkimenjeckayang@gmail.com>	2025-08-01 09:13:35 +02:00
Alexander Schwartz	e1b3afb686	Refresh token for an OAuth2 based IDP when retrieving the IDP token Closes #14644 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-07-31 11:11:34 +02:00
rmartinc	1f608fae6e	Create a new condition for credential type and add it to default flows Closes #41354 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-07-31 10:14:15 +02:00
Oliver	27cd19e68e	add index for user_id and type on event_entity Closes #26995 Signed-off-by: Oliver Cremerius <antikalk@users.noreply.github.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-07-30 20:52:48 +00:00
Martin Bartoš	57cb321ce0	ExternalLinks are broken in documentation Closes #41491 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-07-30 11:21:11 +02:00
Martin Bartoš	3243e95c5a	Synchronize Maven surefire plugin with Quarkus Closes #41488 Co-authored-by: Peter Zaoral <pepo48@gmail.com> Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-07-30 11:21:11 +02:00
Martin Bartoš	3d5a1038a1	Provide simple HTTP access logs (#41389 ) Closes #41352 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-07-29 10:55:18 +02:00
秉虎	d2e9b09ebc	Migrate to zh-Hant / zh-Hans for Chinese language Closes: #41239 Signed-off-by: 秉虎 <s96016641@gmail.com> Signed-off-by: Allen <s96016641@gmail.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-07-28 11:47:55 +02:00
Alexander Schwartz	7fd3380b19	OpenTelemetry Tracing: Visualize JGroups communication (#39659 ) Closes #39658 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-07-22 11:51:58 +02:00
rmartinc	e0bba39da0	Allow configure encryption details for SAML clients Closes #40933 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-07-18 20:13:40 +02:00
Martin Kanis	85b494ec51	Review and update the documentation regarding the UPDATE EMAIL feature Closes #40226 Signed-off-by: Martin Kanis <mkanis@redhat.com>	2025-07-17 15:27:09 +00:00
Björn Eickvonder	d62d5030fe	Adds log context information for MDC for realm, users, etc. Closes #39812 Signed-off-by: Björn Eickvonder <b.eicki@gmx.net> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Signed-off-by: Bjoern Eickvonder <bjoern.eickvonder@inform-software.com> Co-authored-by: Pedro Ruivo <pruivo@users.noreply.github.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-07-16 17:46:46 +02:00
Alexander Schwartz	180745b65f	Fix em-dash in SPI options in the docs Closes #41152 Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Steven Hawkins <shawkins@redhat.com>	2025-07-16 12:18:09 -03:00
Pedro Igor	87f30a6285	Adding a config to the UPDATE_EMAIL action to force users to verify email Closes #32569 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-07-16 16:21:08 +02:00
Steven Hawkins	b6b1731181	fix: adding a release note for http-management-scheme and operator (#41144 ) handling closes: #40945 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-07-15 19:21:40 +02:00
mposolda	274afa88fa	Add option 'Requires short state parameter' to OIDC IDP closes #40237 Signed-off-by: mposolda <mposolda@gmail.com>	2025-07-11 16:17:03 +02:00
Pascal Knüppel	f39a37d8d1	[OID4VCI] Move realm attributes to clientScope and protocol-mappers (#39768 ) fixes #39527 Signed-off-by: Pascal Knüppel <pascal.knueppel@governikus.de> Signed-off-by: Captain-P-Goldfish <captain.p.goldfish@gmx.de>	2025-07-10 14:46:36 +02:00
Pedro Ruivo	9322d71d61	UserSession Offline removed from DB if not in cache Fixes #40754 Signed-off-by: Pedro Ruivo <pruivo@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>	2025-07-07 20:52:06 +02:00
Alexis Rico	c834e7473c	Fix typo in consent scope) * Deprecate `displayTest` Closes #40786 Signed-off-by: Alexis Rico <sferadev@gmail.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-07-07 16:38:47 +00:00
Steven Hawkins	eba4934950	fix: correcting spi-theme options closes: #40930 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-07-07 13:18:24 +00:00
Ryan Emerson	eb7ce6ae15	Provide CLI Parameters for jgroups.* options Closes #40481 Signed-off-by: Ryan Emerson <remerson@redhat.com>	2025-07-07 13:07:45 +02:00
Alexander Schwartz	05d0c34681	Automatically connect to a writer instance of PostgreSQL (#40384 ) Closes #40383 Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Co-authored-by: Martin Bartoš <mabartos@redhat.com>	2025-07-04 16:46:49 +02:00
Michael-AT-Corporation	ff9e7c2371	Added new searchByAttributes function to UsersResource with the exact parameter Closes #39609 Signed-off-by: Michael-AT-Corporation <michael-hu@ooutlook.de>	2025-07-03 13:51:46 -03:00
Martin Bartoš	b8ce83772b	Mark options for additional datasources as preview (#40839 ) * Mark options for additional datasources as preview Closes #40838 Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Update docs/documentation/upgrading/topics/changes/changes-26_3_1.adoc Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Signed-off-by: Martin Bartoš <mabartos@redhat.com> --------- Signed-off-by: Martin Bartoš <mabartos@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>	2025-07-02 10:46:45 +00:00
Pedro Igor	2a9f4336c3	Updating upgrading guide about changes in user-profile-commons.ftl template Closes #39562 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-07-01 13:11:23 +02:00
Steven Hawkins	2b44c5676f	fix: adding logic to isolate realm migration processing (#39377 ) * fix: adding logic to isolate realm migration processing also adding an info log for each realm migrated closes: #33978 #38649 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * switching to an export strategy tolerant to read committed also preventing creating cached users during export Signed-off-by: Steve Hawkins <shawkins@redhat.com> * updating the docs to still recommend shutting the server down for export Signed-off-by: Steve Hawkins <shawkins@redhat.com> * accounting for null managed users Signed-off-by: Steve Hawkins <shawkins@redhat.com> * refinements based upon review comments Signed-off-by: Steve Hawkins <shawkins@redhat.com> * Scaling back the docs Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> * Remove rogue release note Signed-off-by: Václav Muzikář <vmuzikar@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Signed-off-by: Václav Muzikář <vmuzikar@redhat.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Václav Muzikář <vmuzikar@redhat.com>	2025-06-30 08:31:57 -04:00
Ricardo Martin	8624101701	Documentation changes for Passkeys (#40728 ) Closes #40705 Signed-off-by: rmartinc <rmartinc@redhat.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net> Signed-off-by: Ricardo Martin <rmartinc@redhat.com>	2025-06-27 14:59:46 +02:00
Alexander Schwartz	7e2a38ae4c	Move section in the upgrading guide Closes #39063 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-06-27 13:25:25 +02:00
Michal Hajas	d944823277	Make rolling-updates-v2 preview feature (#40732 ) Closes #38883 Signed-off-by: Michal Hajas <mhajas@redhat.com>	2025-06-26 19:28:35 +02:00
Martin Bartoš	d475c5aecc	Missing Quarkus flag for Syslog counting framing (#40621 ) * Missing Quarkus flag for Syslog counting framing Closes #39893 Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Remove handling of mapFrom Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Add notable change Signed-off-by: Martin Bartoš <mabartos@redhat.com> --------- Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-06-25 17:36:41 +02:00
Steven Hawkins	a50d15be05	fix: refining breaking behavior (#40697 ) closes: #39063 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-06-25 17:28:00 +02:00
rmartinc	86f0a7864f	Disable email verification when email manually changed by idp review Closes #40446 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-06-25 08:56:03 +02:00
Ricardo Martin	dd4c21700f	Deprecate the original Passkeys Conditional UI Authenticator (#40674 ) Closes #40033 Signed-off-by: rmartinc <rmartinc@redhat.com> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com> Signed-off-by: Ricardo Martin <rmartinc@redhat.com>	2025-06-24 20:32:39 +02:00
Pedro Ruivo	f4d5fa68c1	Update documentation about volatile sessions Closes #40639 Signed-off-by: Pedro Ruivo <pruivo@redhat.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-06-20 16:45:22 +00:00
andymunro	e7b4f745ad	Clarify OpenShift instructions (#40488 ) Closes #40487 Signed-off-by: AndyMunro <amunro@redhat.com>	2025-06-20 17:07:48 +02:00
Alexander Schwartz	c4eafcf2ae	Rework AsciiDoc warnings Closes #40445 Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>	2025-06-18 14:57:39 +02:00
Alexander Schwartz	872a56f237	Reworking the release notes for the upcoming release Closes #40547 Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Pedro Ruivo <pruivo@users.noreply.github.com>	2025-06-18 10:45:31 +02:00
Alexander Schwartz	61586ff328	Disabling persistent sessions affects also offline session cache Closes #40483 Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-06-17 08:02:28 +00:00
Henrik S.	c952cb66ad	Update authentication flows documentation to match new GUI Closes #40514 Signed-off-by: Henrik S. <henrik.strath@volvocars.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-06-16 08:24:43 +00:00
Ryan Emerson	78f575b53b	Default to num_owners=2 when the persistent-user-sessions feature is disabled Closes #39429 Closes #40472 Signed-off-by: Ryan Emerson <remerson@redhat.com>	2025-06-16 09:43:39 +02:00
Steven Hawkins	76bc9fadcb	fix: adding a -- separator for spi options (#40005 ) * fix: adding a -- separator for spi options closes: #39063 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * adding a warning for ambiguous spi options also adding a note about the change Signed-off-by: Steve Hawkins <shawkins@redhat.com> # Conflicts: # docs/documentation/upgrading/topics/changes/changes-26_3_0.adoc * updating docs to the new format Signed-off-by: Steve Hawkins <shawkins@redhat.com> # Conflicts: # docs/guides/high-availability/examples/generated/keycloak-ispn.yaml # docs/guides/high-availability/examples/generated/keycloak.yaml * internally using the new spi options also adding a deprecation notice Signed-off-by: Steve Hawkins <shawkins@redhat.com> * Apply suggestions from code review Co-authored-by: Martin Bartoš <mabartos@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> * correcting options output adding + + inlining where needed Signed-off-by: Steve Hawkins <shawkins@redhat.com> * adding test showing the env mapping with __ Signed-off-by: Steve Hawkins <shawkins@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Martin Bartoš <mabartos@redhat.com>	2025-06-13 16:13:53 +02:00
Martin Bartoš	21bd46cb18	Add templates for release notes and migration guide Closes #40441 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-06-12 11:38:06 +02:00
Alexander Schwartz	0b3950529e	Re-sort the release notes and upgrading guide (#40424 ) Closes #40422 Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Michal Hajas <mhajas@redhat.com>	2025-06-12 10:25:42 +02:00
Ricardo Martin	b89f8a0225	Documentation changes for the 2FA additions Closes #40001 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-06-12 09:30:27 +02:00
Alexander Schwartz	4af3d7cc9d	Redirect requests from outdated theme version to the current theme version Closes #39723 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-06-11 11:13:55 +02:00
vramik	aafb140529	Add a note to release notes about admin roles mapping Fixes #39956 Signed-off-by: vramik <vramik@redhat.com>	2025-06-09 09:34:45 -03:00
Ryan Emerson	0c62bd0878	Change discovery in Kubernetes to jdbc-ping Closes #39544 Signed-off-by: Ryan Emerson <remerson@redhat.com>	2025-06-05 16:48:30 +02:00
mposolda	b03b9f9e3a	Improve documentation of service-accounts and make it more clear. Delete the unused file service-accounts.adoc closes #39748 Signed-off-by: mposolda <mposolda@gmail.com>	2025-06-05 08:45:12 +02:00
rmartinc	abd7f88526	Make the checkbox "Sign out from other devices" unchecked by default Closes #39975 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-06-04 14:11:29 +02:00
Alexander Schwartz	2b2d7bbcbe	Updated documentation to handle the conf folder on upgrades (#40175 ) Closes #40046 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-06-03 16:14:11 +02:00
Pedro Igor	7cc055f8a6	Verify brokered user email based on the email_verified claim from the ID Token returned by the OP Closes #39885 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-05-29 10:45:18 -03:00
Pedro Igor	e6e6fa60fa	Adding OAuth2-based identity broker Closes #35266 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-05-27 12:07:01 -03:00
Michal Hajas	88f660b235	Add experimental feature rolling-updates:v2 that allows rolling updat… (#39751 ) ...e for patch releases Closes #38882 Signed-off-by: Michal Hajas <mhajas@redhat.com>	2025-05-27 11:17:42 -03:00
foliengriller	54b131e34e	Update themes-react.adoc Fixes link formatting Signed-off-by: foliengriller <info@simpelwebservice.de>	2025-05-27 09:19:05 +02:00
Pedro Igor	b22b1f298c	Adding parameter to control whether the count of subgroups of subgroups should be returned Closes #39668 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-05-22 11:15:38 -03:00
rmartinc	3c511635ba	Skip AIA for webauthn register if a crendential of teh correct type already exists Closes #39191 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-05-20 18:09:12 +02:00
mposolda	fe2790a09d	Fix documentation link to quickstarts to point to 'main' branch instead of 'latest' branch closes #39798 Signed-off-by: mposolda <mposolda@gmail.com>	2025-05-19 10:32:06 +02:00
Kai J. Witt	c76bb0683c	Make max auth age configurable for all required actions by default Moved the current configuration implementation for the update password Closes #39408 Signed-off-by: Kai Josef Witt <KWitt@vhv.de> Signed-off-by: Marek Posolda <mposolda@gmail.com> Co-authored-by: Kai Josef Witt <KWitt@vhv.de> Co-authored-by: Marek Posolda <mposolda@gmail.com>	2025-05-15 08:44:38 +02:00
Douglas Palmer	64cb66f451	Inconsistency in User enabled status in Rest query results. Closes #39549 #28713 Signed-off-by: Douglas Palmer <dpalmer@redhat.com>	2025-05-14 20:10:14 +02:00
Pedro Igor	34ad280665	Build user representations when searching based on the user profile settings Closes #39595 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-05-14 10:42:25 +02:00
Pedro Igor	4171da9fbb	Updating upgrading guide with the changes to theme templates Closes #39562 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-05-14 09:38:41 +02:00
yorickdevries	d5b873d705	Change screenshot from permissions view to correct resources view Cropped it in accordance with the other images Closes #39697 Signed-off-by: Yorick <yorickdevries@live.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-05-14 07:00:37 +00:00
Awambeng	ea4ef74917	Fix doc(oid4vc): Correct realm-attributes example and update HTTP method in docs (#39409 ) Closes #39264 Signed-off-by: Awambeng Rodrick <awambengrodrick@gmail.com>	2025-05-13 10:09:14 +02:00
andymunro	0fc18c3a0b	Make links generic Closes #39469 Signed-off-by: AndyMunro <amunro@redhat.com>	2025-05-09 16:18:15 +02:00
andymunro	afe6d4d4a0	Fix callouts Closes #39590 Signed-off-by: AndyMunro <amunro@redhat.com>	2025-05-09 14:10:59 +00:00
Alexander Schwartz	a17f551eb2	Log out other sessions including offline sessions on password change Closes #38850 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-05-06 14:04:13 +02:00
Daniel Höxtermann	46ed361278	Fix footer ftl snippet in documentation Closes #39442 Signed-off-by: Daniel Höxtermann <daniel@hxtm.dev>	2025-05-05 06:46:15 +00:00
Alexander Schwartz	f79408788d	Document how to configure Istio to allow for JGroups mTLS Closes #39065 Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Pedro Ruivo <pruivo@users.noreply.github.com>	2025-05-02 12:08:02 +00:00
Steven Hawkins	24910d9e1c	addresses slow import/export performance by limiting persistence context size (#37926 ) * fix: addresses slow import/export performance with more batching closes: #37991 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * removing flush/detach manipulation Signed-off-by: Steve Hawkins <shawkins@redhat.com> * refining the doc note about using multiple files for larger user counts Signed-off-by: Steve Hawkins <shawkins@redhat.com> * adding doc note about useExistingSession method removal and expanding javadocs Signed-off-by: Steve Hawkins <shawkins@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-04-29 18:57:45 -04:00
Steven Hawkins	08b5183784	fix: relaxes the admin root redirect check (#39095 ) * fix: relaxes the admin root redirect check also deprecates the usage of local_admin closes: #39085 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * moving deprecation to 26.3 also changing the adminroot test to seem like it's coming from a proxy Signed-off-by: Steve Hawkins <shawkins@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-04-29 11:09:51 -04:00
rmartinc	4730dbdd8d	Make recovery codes supported Closes #38994 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-04-29 10:25:46 +02:00
mposolda	e9283ee71d	Documentation for recovery codes (deprecation of password policy and required action config) closes #39245 Signed-off-by: mposolda <mposolda@gmail.com>	2025-04-29 09:29:38 +02:00
Pedro Ruivo	eafe08a73a	Create CacheEmbeddedConfigProvider Closes #38497 Signed-off-by: Pedro Ruivo <pruivo@redhat.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-04-28 13:00:53 +02:00
Steven Hawkins	837c2e25a2	fix: adding docs about h2 migration (#39159 ) * fix: adding docs about h2 migration closes: #39046 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * Update docs/documentation/upgrading/topics/changes/changes-26_2_0.adoc Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Signed-off-by: Steven Hawkins <shawkins@redhat.com> * Update docs/documentation/upgrading/topics/migrate_db.adoc Co-authored-by: Martin Bartoš <mabartos@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> * Apply suggestions from code review Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Signed-off-by: Steven Hawkins <shawkins@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Co-authored-by: Martin Bartoš <mabartos@redhat.com>	2025-04-24 17:37:03 +02:00
Emmanuel Lécharny	a48469896e	Added a link to the ApacheDS doc for server side password hashing Closes #39136 Signed-off-by: Emmanuel Lécharny <elecharny@gmail.com>	2025-04-24 09:25:03 +00:00
Alexander Schwartz	050d3ccba4	Fix broken link for XOAUTH2 configuration Closes #39096 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-04-23 08:47:40 +02:00
Emmanuel Lécharny	1dc97d5d4d	Update ldap.adoc with ApacheDS details Added some precision about ApacheDS password management. Closes #39136 Signed-off-by: Emmanuel Lécharny <elecharny@apache.org> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>	2025-04-23 07:55:59 +02:00
Marek Posolda	f8a4a8da86	Unexpected AIA Cause Server Errors closes #37526 Signed-off-by: mposolda <mposolda@gmail.com>	2025-04-17 14:15:07 +00:00
Marek Posolda	025b2ba442	Introducing IdpLinkAction as AIA to replace client-initiated account linking (#38952 ) closes #37269 closes #35446 Signed-off-by: mposolda <mposolda@gmail.com> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com> Signed-off-by: Marek Posolda <mposolda@gmail.com>	2025-04-17 13:20:05 +02:00
Alexander Schwartz	a312632468	Add new user event metrics to the release notes Closes #39027 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-04-17 10:58:34 +02:00
Alexander Schwartz	2be2958b8e	Update release notes docs for removed remote store Closes #39028 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-04-17 10:56:29 +02:00
Pedro Igor	1ba8fe16ac	Deprecate for removal Instagram Identity Broker (#38998 ) Closes #37967 Closes #36562 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-04-17 09:07:06 +02:00
andymunro	17e3bad7b2	Clarify upgrading language Closes #38956 Signed-off-by: AndyMunro <amunro@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>	2025-04-16 20:32:03 +00:00
Martin Bartoš	60fb7a5fa7	Support asynchronous logging (#38094 ) Closes #38578 Closes #28851 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-04-16 15:08:15 +00:00
Michal Hajas	4dc4de7c12	Remove CACHE-EMBEDDED-REMOTE-STORE experimental feature Closes #34160 Signed-off-by: Michal Hajas <mhajas@redhat.com>	2025-04-16 12:01:55 +00:00
Martin Bartoš	e7c7dce5c7	[Docs] Broken link in ExternalLinksTest for importmap (#38969 ) Closes #38930 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-04-15 09:02:57 +00:00
Pedro Igor	288b6dae12	More information to docs Closes #38798 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-04-10 20:03:05 +02:00
Thomas Darimont	478e0b3264	Make sure that there is single audience allowed by default in JWT tokens sent to client authentication closes #38819 Signed-off-by: mposolda <mposolda@gmail.com> Co-authored-by: Thomas Darimont <thomas.darimont@googlemail.com> Co-authored-by: mposolda <mposolda@gmail.com>	2025-04-10 18:08:10 +02:00
Pedro Igor	ae88d7921f	Improvements to partial evaluation Closes #38732 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-04-09 18:15:28 +02:00
Pedro Igor	87430fc181	Add impersonate-members scope to group resource type Closes #38566 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-04-07 14:56:27 +00:00
vramik	6488890585	[FGAP:V2] remove configure scope from Client resource type Closes #38567 Signed-off-by: vramik <vramik@redhat.com>	2025-04-07 07:05:02 -03:00
Marek Posolda	f984644d07	Clarify in documentation that legacy token exchange requires FGAP:v1 (#38694 ) closes #38693 Signed-off-by: mposolda <mposolda@gmail.com> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net> Signed-off-by: Marek Posolda <mposolda@gmail.com>	2025-04-07 08:27:56 +02:00
Alexander Schwartz	d69a530d5b	Check HTML head for redirects Closes #38655 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-04-04 18:40:41 +02:00
Stefan Guilhen	c4c3e2eee6	Allow redirection to idp when user email matches any of the org domains Signed-off-by: Stefan Guilhen <sguilhen@redhat.com> Co-authored-by: Martin Panzer <martin.panzer@active-logistics.com> Closes #33804	2025-04-04 11:28:04 -03:00
Vlasta Ramik	18c8308bb4	[FGAP] Remove redundant sentense from fine grained admin permissions docs Closes #38677 Signed-off-by: vramik <vramik@redhat.com>	2025-04-04 09:41:17 +02:00
vramik	f076b99407	FGAP documentation Closes #37245 Signed-off-by: vramik <vramik@redhat.com>	2025-04-03 09:44:32 -03:00
Marek Posolda	6654e56a7c	Polish documentation for audience and client scopes (#38484 ) closes #19127 Signed-off-by: mposolda <mposolda@gmail.com> Co-authored-by: Bruno Oliveira da Silva <bruno@abstractj.com> Signed-off-by: Marek Posolda <mposolda@gmail.com>	2025-04-03 08:43:06 +02:00
rmartinc	a10c8119d4	Define a max expiration window for Signed JWT client authentication Closes #38576 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-04-02 18:32:54 +02:00
Alexander Schwartz	e7474646ee	Explicit target for cross-reference 2FA in server admin guide (#38573 ) Closes #38572 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-04-01 13:29:30 +02:00
mposolda	cd4e5bc784	Release notes for oid4vci docs closes #38485 Signed-off-by: mposolda <mposolda@gmail.com>	2025-03-29 19:25:24 +01:00
Steven Hawkins	06e0885f46	fix: adds back reporting of non-ip client addresses (#37797 ) closes: #36843 Signed-off-by: Steve Hawkins <shawkins@redhat.com> # Conflicts: # services/src/main/java/org/keycloak/protocol/oidc/tokenexchange/AbstractTokenExchangeProvider.java # services/src/main/java/org/keycloak/protocol/oidc/tokenexchange/StandardTokenExchangeProvider.java	2025-03-27 19:33:20 +00:00
Stefan Guilhen	89d659ee36	Add section about support for federated members in the organization documentation Signed-off-by: Stefan Guilhen <sguilhen@redhat.com> Closes #38471	2025-03-27 08:03:35 -03:00
Ricardo Martin	a7e63837db	Recovery codes documentation (#38407 ) Closes #30702 Signed-off-by: rmartinc <rmartinc@redhat.com> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>	2025-03-27 09:59:14 +01:00
Awambeng	27a7a301e7	Add documentation for configuring Keycloak as a VC issuer closes #38256 Signed-off-by: Awambeng Rodrick <awambengrodrick@gmail.com>	2025-03-26 20:50:43 +01:00
Marek Posolda	db23d8e665	Clarify that XOAUTH2 configuration with Microsoft Office365 is community contributed Closes #38376 Signed-off-by: mposolda <mposolda@gmail.com> Signed-off-by: Marek Posolda <mposolda@gmail.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>	2025-03-26 15:54:38 +01:00
mposolda	11cb332964	Release notes updates for the community contributions related to core-clients areas closes #38374 Signed-off-by: mposolda <mposolda@gmail.com>	2025-03-24 12:49:52 +01:00
Laurids Møller Jepsen	8f7c1871a7	Add client OIDC configuration for setting the header type in access tokens. If this setting is On, the access token header type will be "at+jwt" in compliance with RFC 9068, see https://datatracker.ietf.org/doc/html/rfc9068#section-2.1. If the setting is Off, the access token header type will be "JWT". The setting is Off per default. Closes #36696 Signed-off-by: Laurids Møller Jepsen <laurids.jepsen@cryptomathic.com>	2025-03-24 10:35:41 +01:00
Sebastian Rose	4fb1c41155	Sending Mails via SMTP and XOAUTH2 authentication mechanism Closes #17432 Signed-off-by: Sebastian Rose <sebastian.rose@gmail.com>	2025-03-21 10:12:18 +01:00
Stian Thorgersen	a18948f731	Reorder items in release notes for 26.2 (#38290 ) Signed-off-by: stianst <stianst@gmail.com>	2025-03-20 11:52:53 +01:00
Alexander Schwartz	c9b88c6bf6	Finalizing release notes and documentation for initial rolling update Closes #38168 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-03-19 21:34:09 +01:00
Alexander Schwartz	b5d8c46202	Fix links that have been moved Closes #38190 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-03-18 13:36:41 +01:00
Takashi Norimatsu	eb2153379a	DPoP: Refresh token created with DPoP can be refreshed without proof closes #36475 Signed-off-by: Takashi Norimatsu <takashi.norimatsu.ws@hitachi.com>	2025-03-17 12:53:19 +01:00
andymunro	1f6f1571fd	update screens for new realm selector Closes #37083 Signed-off-by: AndyMunro <amunro@redhat.com>	2025-03-15 10:54:00 +01:00
Marek Posolda	290905c9cf	Documentation for supported token-exchange (#38008 ) closes #37126 Signed-off-by: Marek Posolda <mposolda@gmail.com> Co-authored-by: Bruno Oliveira da Silva <bruno@abstractj.com> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>	2025-03-14 09:55:44 +01:00
Steven Hawkins	d9c3511fa5	fix: adding a check if the proxy is trusted prior to using a cert header (#37465 ) closes: #35861 Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com>	2025-03-12 11:21:33 +01:00
Mihir Vadalia	11a20a2eb3	Documentation for Optional Email Events Closes #37998 Signed-off-by: Mihir Vadalia <mihir@defensepoint.com> Co-authored-by: Mihir Vadalia <mihir@defensepoint.com>	2025-03-11 21:21:45 +01:00
Uche Nwachukwu	df9efdf590	Update themes-react.adoc (#37977 ) Spelling adjustment. Signed-off-by: Uche Nwachukwu <nwachukwuuche@gmail.com>	2025-03-10 22:33:04 +00:00
Stefan Guilhen	86b2a6a95c	Fix docs to also mention roles Signed-off-by: Stefan Guilhen <sguilhen@redhat.com> Closes #28569 Signed-off-by: Jakob Overrein <jakob.overrein@basefarm-orange.com>	2025-03-10 16:13:36 -03:00
Stefan Guilhen	d44ebfd4d1	Document the addition of the Relative User Creation DN Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2025-03-10 16:13:36 -03:00
Alexander Schwartz	151e019935	Make NetworkPolicy supported and enabled by default Closes #36036 Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Pedro Ruivo <pruivo@users.noreply.github.com>	2025-03-10 11:12:38 +01:00
Alexander Schwartz	b1785ce179	Quote a link that shouldn't be rendered as a link This should not be clickable. Closes #37765 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-03-06 16:50:04 -03:00
Alexander Schwartz	bc7ec1208e	Enable the TLS based JGroups encryption by default and update the docs Closes #37696 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-03-03 10:50:51 -03:00
Giuseppe Graziano	690b5ecb25	Grant Type condition for client policies (#37665 ) Closes #37124 Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>	2025-02-27 11:51:06 +01:00
Jon Koops	873e4ffb1f	Replace i18next backend with `i18next-fetch-backend` (#37633 ) Signed-off-by: Jon Koops <jonkoops@gmail.com>	2025-02-26 08:36:12 -05:00
Martin Bartoš	6f0ed46404	Upgrade to Quarkus 3.19.0.CR1 (#37492 ) Closes #37436 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-02-24 19:52:01 +01:00

... 2 3 4 5 6 ...

980 commits