keycloak

mirror of https://github.com/keycloak/keycloak.git synced 2026-05-28 04:13:22 -04:00

Author	SHA1	Message	Date
Pedro Ruivo	bae3963d25	Refactor SessionsResource for better memory usage and performance Closes #45727 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2026-01-29 11:38:54 +01:00
Tero Saarni	47b91b995d	Add revert button to client credentials form Some checks failed Weblate Sync / Trigger Weblate to pull the latest changes (push) Has been cancelled Details Signed-off-by: Tero Saarni <tero.saarni@est.tech>	2026-01-28 18:36:36 +01:00
Tero Saarni	cb4c533464	Add support for looking up client secrets via Vault SPI (#39650 ) Fixes #13102 Signed-off-by: Tero Saarni <tero.saarni@est.tech>	2026-01-28 16:45:30 +01:00
Giuseppe Graziano	0bc95be9cc	Remove ignored-links after 26.5.0 Closes #44810 Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>	2026-01-28 15:08:08 +00:00
Pedro Igor	b9243a7270	Only enable JS policies if the scripts feature is enabled Closes #44132 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2026-01-28 12:28:32 +01:00
Steven Hawkins	38b5466093	fix: aligns our dev http-host default behavior with that of quarkus (#45691 ) closes: #42876 Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com>	2026-01-27 16:51:47 +01:00
Martin Bartoš	eac504cce5	OTEL: Ability to specify headers for exporters Closes #45220 Co-authored-by: Ryan Emerson <remerson@ibm.com> Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2026-01-27 10:36:18 +00:00
Steven Hawkins	77704a91b6	fix: adding support for xforwarded prefix (#45699 ) closes: #35298 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2026-01-26 18:14:54 +01:00
Tomáš Kyjovský	b247ef12cd	Fix indentation in sample Keycloak CR YAML in Operator rolling updates doc Closes #45755 Signed-off-by: Tomas Kyjovsky <tkyjovsk@ibm.com>	2026-01-26 16:52:27 +01:00
Pedro Ruivo	2f4f36eabc	Add realm id column to offline_client_session table Closes #44424 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>	2026-01-23 16:28:34 +01:00
Alexander Schwartz	e278a2f6fd	Changing default clock skew for not-issued-before to 10 seconds Closes #45620 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2026-01-22 19:11:10 +01:00
Martin Bartoš	57f0b15c80	OTEL: Add Telemetry options to Keycloak CR (#45397 ) * OTEL: Add Telemetry options to Keycloak CR Closes #45348 Signed-off-by: Martin Bartoš <mabartos@redhat.com> Co-authored-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> * Add validation to resource attributes Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Avoid unnecessary warning logs during the operator tests execution Closes #45623 Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Update docs/documentation/upgrading/topics/changes/changes-26_6_0.adoc Signed-off-by: Václav Muzikář <vaclav@muzikari.cz> --------- Signed-off-by: Martin Bartoš <mabartos@redhat.com> Signed-off-by: Václav Muzikář <vaclav@muzikari.cz> Co-authored-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>	2026-01-22 16:02:06 +00:00
rmartinc	50366f03a6	Documentation for Authorization Chaining Across Domains Closes #45466 Signed-off-by: rmartinc <rmartinc@redhat.com>	2026-01-22 16:33:27 +01:00
Nate Drake	139de283cc	Add missing space to fix markdown code rendering (#45621 ) Signed-off-by: Nate Drake <ndrake@gmail.com>	2026-01-22 15:59:24 +01:00
Alexander Schwartz	2cfef40ee3	Fix broken link for link in upgrading guide Closes #45643 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2026-01-22 11:50:06 +01:00
Vlasta Ramik	2f0689576b	Possible mismatch of charset/collation between columns on mysql/mariadb (#45632 ) * Possible mismatch of charset/collation between columns on mysql/mariadb Closes #45597 Signed-off-by: vramik <vramik@redhat.com>	2026-01-22 07:17:04 -03:00
rmartinc	7e20b87136	Add abstract property for themes and do not display base for selection Closes #41924 Signed-off-by: rmartinc <rmartinc@redhat.com>	2026-01-21 15:42:52 +01:00
Ruchika Jha	dbd8d47036	Upgrade command rolling updates for patch releases / step 3: Infinispan/JGroups Closes #38884 Signed-off-by: Ruchika <ruchika.jha1@ibm.com>	2026-01-21 15:16:18 +01:00
Alexander Schwartz	cc8947a060	Keycloak should not allow matrix parameters in URLs as we don't use them Closes #45533 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2026-01-20 19:45:02 -03:00
Martin Bartoš	1138952ba7	Provide HTTP access logs written to file with rotation (#45437 ) Closes #41353 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2026-01-20 15:16:33 +01:00
Luca Tronchin	a351784c33	Remove empty labels from keycloak_user_events_total metric (#45583 ) Closes #45582 Signed-off-by: Luca Tronchin <ltronky@gmail.com>	2026-01-20 13:18:27 +01:00
Alexander Schwartz	dd0214bc78	Do not use whitelist/blacklist in the UI Closes #45539 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2026-01-20 11:12:23 +01:00
Alexander Schwartz	5724ae1534	Updating specifications list to show DPoP as supported Closes #45584 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2026-01-20 09:35:26 +01:00
Martin Bartoš	137a35c110	Mask certain HTTP headers and cookies in the HTTP access log (#45400 ) * Mask certain HTTP headers and cookies in the HTTP access log Closes #43811 Signed-off-by: Martin Bartoš <mabartos@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> * Improve tests, Improve docs Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Fix test Signed-off-by: Martin Bartoš <mabartos@redhat.com> --------- Signed-off-by: Martin Bartoš <mabartos@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>	2026-01-19 19:01:45 +01:00
Pedro Igor	c8a41dea99	Reverting format changes, updating docs, and only exposing the method to fetch first-factor credentials Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2026-01-19 08:30:47 -03:00
rmartinc	07b9b9656b	Allow client_id as an audience in the JWT Authorization Grant and Client Assertions Closes #45178 Signed-off-by: rmartinc <rmartinc@redhat.com>	2026-01-16 15:48:28 +01:00
Ruchika Jha	e2e11a3b8e	Hide Remember Me session settings when Remember Me is disabled in realm settings edit page in UI Closes #44973 Signed-off-by: Ruchika <ruchika.jha1@ibm.com> Signed-off-by: Ruchika Jha <Ruchika.Jha1@ibm.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2026-01-15 16:46:50 +00:00
Pedro Igor	ab351170b4	Support aggregated policies during partial evaluation Closes #45324 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2026-01-15 15:20:52 +01:00
Pedro Igor	37ff64446b	Allow hide organization brokers when the user does not map to any organization during login Closes #45422 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2026-01-15 15:19:43 +01:00
Alexander Schwartz	391593cfa7	Implement asynchronous logging when called from nonblocking threads Closes #45015 Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Signed-off-by: Martin Bartoš <mabartos@redhat.com> Co-authored-by: Martin Bartoš <mabartos@redhat.com>	2026-01-15 09:20:34 -03:00
Martin Bartoš	ab25c8e059	Fix link to OpenTelemetry guide in logging Closes keycloak/keycloak-web#692 Co-authored-by: Ryan Emerson <remerson@ibm.com> Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2026-01-15 11:05:21 +01:00
Ryan Emerson	349c722ed9	Update multi-cluster documentation for zero-downtime upgrades Closes #45338 Parts of the Infinispan docs for the in-place update of patch releases rely on ISPN16 behavior. Signed-off-by: Ryan Emerson <remerson@ibm.com>	2026-01-14 12:35:03 +01:00
Stian Thorgersen	198730cd0d	Allow absolute path for cache-config-file (#45416 ) Closes #19374 Signed-off-by: stianst <stianst@gmail.com>	2026-01-14 11:05:50 +00:00
Pedro Igor	cca5ef44fa	Updating the documentation Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2026-01-13 16:42:07 -03:00
Ryan Emerson	c8635f9bf2	ISPN16: Upgrade to Infinispan 16.0.5 Closes #45341 - Remove query modules - Remove unused config file - Update config file versions - Update jgroups attributes - Remove ISPN-16595 workaround - Call HotRodServer#postStart in HotRodServerRule to start caches as well as the server - Simplify cluster-ha.xml - Utilise org.infinispan.commons.util.TimeQuantity in CacheConfiguration - Cleanup when InfinispanContainer startup fails - RemoteUserSessionProvider remote query calls must not use negative values for offsets and maxResults - Remove use of deprecated org.infinispan.server.test.core.InfinispanContainer class - Use testcontainers-infinispan dependency - Explicitly utilise "legacy" metrics - Remove explicit `name-as-tags` configuration as Infinispan 16 defaults to true - Remove test configuration not required since #31807 Signed-off-by: Ryan Emerson <remerson@ibm.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2026-01-13 17:26:43 +01:00
Giuseppe Graziano	23aad2a942	DPoP Guide (#45274 ) Closes #42747 Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>	2026-01-13 11:01:28 +01:00
Ryan Emerson	141bcee4dd	Document that the the HA architectures are tested with Openshift 4.18 Closes #45360 Signed-off-by: Ryan Emerson <remerson@ibm.com>	2026-01-13 09:10:28 +01:00
Pedro Igor	c33d94da65	Allow admins with any admin role to map roles if the constraints apply Closes #44371 Closes #45182 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2026-01-12 12:56:30 -03:00
Stan Silvert	eb77c055f5	Clarify documentation. Signed-off-by: Stan Silvert <ssilvert@redhat.com>	2026-01-12 10:36:10 -03:00
Ryan Emerson	172aa86c6d	Increase the regularly tested load documented in HA guides Closes #45233 Signed-off-by: Ryan Emerson <remerson@ibm.com>	2026-01-12 14:02:51 +01:00
mposolda	1273c8db0e	DCR endpoint ignores client's requested token_endpoint_auth_method in case it is client_secret_post closes #44403 Signed-off-by: mposolda <mposolda@gmail.com>	2026-01-12 09:54:04 +01:00
Ryan Emerson	f8b114bdd8	Add indexes to BROKER_LINK table Closes #45009 Signed-off-by: Ryan Emerson <remerson@ibm.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2026-01-09 16:09:40 +00:00
Alexander Schwartz	234526761e	Fix section level in 26.5 migration guide Closes #45184 Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>	2026-01-07 07:54:06 -03:00
Ryan Emerson	4a2ed7c4e6	Use correct anchor for mdc logging in 26.5.0 release notes Closes #45185 Signed-off-by: Ryan Emerson <remerson@ibm.com>	2026-01-06 17:21:48 +01:00
olympus5	ffed84194e	Realign source code examples in auth-spi doc closes #43757 Signed-off-by: olympus5 <erwan.iquel@gmail.com>	2026-01-06 12:18:42 +01:00
Pedro Igor	0d5766f3a8	Allow running scheduled workflows Closes #44865 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2026-01-05 13:03:47 -03:00
Alexander Schwartz	e43cf55028	Finalizing 26.5 release notes Closes #45131 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Stian Thorgersen <stian@redhat.com>	2026-01-05 14:10:32 +01:00
Pedro Igor	3c0b308bb7	Document limitations when updating workflows Closes #45134 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2026-01-05 14:10:03 +01:00
Alexander Schwartz	a6bf194487	Remove usage of kcSanitize() to avoid printing HTML (#44755 ) Some checks are pending Weblate Sync / Trigger Weblate to pull the latest changes (push) Waiting to run Details Closes #44753 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2026-01-05 10:45:32 +01:00
Ryan Emerson	cafa1a86eb	Disable state transfer for session caches when persistent sessions are enabled Closes #44518 Signed-off-by: Ryan Emerson <remerson@ibm.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2026-01-05 08:53:59 +00:00
Ruchika Jha	60b369c622	Validate client session timeout and lifetime settings on realm settings edit Closes #44910 Signed-off-by: Ruchika <Ruchika.Jha1@ibm.com> Signed-off-by: Ryan Emerson <remerson@ibm.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Ryan Emerson <remerson@ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2026-01-05 08:50:56 +00:00
Jens Erat	adeb41e82b	Extend documentation on ServiceMonitor creation (#45071 ) The documentation so far only mentions how to disable the ServiceMonitor, leading to the assumption that it is enabled by default. Getting a service monitor created also requires enabling metrics in keycloak, though: `658faf210f/operator/src/main/java/org/keycloak/operator/controllers/KeycloakServiceMonitorDependentResource.java (L50)` While the missing setting creates a warning, the administrator should already have this information before applying the configuration. Closes #45070 Signed-off-by: Jens Erat <email@jenserat.de>	2026-01-05 09:10:18 +01:00
Stian Thorgersen	f2c527239d	Update JNDI reference in LDAP referrals documentation (#45129 ) Clarified the term 'JNDI' in the LDAP referrals section. Closes #45040	2026-01-05 09:01:40 +01:00
Robin Meese	0d0d468f27	Add ability to delete offline sessions via account console Closes #15502 Signed-off-by: Robin Meese <39960884+robson90@users.noreply.github.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>	2026-01-05 08:26:47 +01:00
Christian Ja	374e45b883	Use default locale from realm an intermediate fallback closes #40990 Signed-off-by: Christian Janker <christian.janker@gmx.at> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2026-01-01 14:23:33 +00:00
Robin Meese	35ee49b5d4	Add logout event to UserSessionLimitsAuthenticator Closes #44843 Signed-off-by: Robin Meese <39960884+robson90@users.noreply.github.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2026-01-01 13:22:54 +00:00
Stefan Guilhen	43634dd2ed	Update docs/documentation/server_admin/topics/workflows/understanding-workflow-definition.adoc Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2025-12-29 10:29:38 -03:00
Stefan Guilhen	9865791084	Fix wrong provider references in workflows documentation Closes #45077 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2025-12-29 10:29:38 -03:00
Robin Meese	0957572751	Add logout event to SessionResource Closes #44842 Signed-off-by: Robin Meese <39960884+robson90@users.noreply.github.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>	2025-12-29 12:25:45 +00:00
Stefan Guilhen	0d09f755f1	Fix wrong event names in workflows documentation (#45002 ) Closes #45001 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2025-12-19 13:01:20 -05:00
Peter Zaoral	7da8a8a2e3	feat: add Windows service support (#44496 ) Closes: #37704 Signed-off-by: Peter Zaoral <pepo48@gmail.com>	2025-12-19 16:55:42 +00:00
Steven Hawkins	6bb586e871	fix: updating the health check docs closes: #44634 Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Klemens Böswirth <23529132+kodebach@users.noreply.github.com>	2025-12-19 14:31:22 +01:00
Stephan Seifermann	aefecade5c	Client cert lookup provider compliant to RFC 9440 (#36161 ) * Client cert lookup provider compliant to RFC 9440 (#20761) Signed-off-by: Stephan Seifermann <seiferma@users.noreply.github.com> * Release notes Signed-off-by: Václav Muzikář <vmuzikar@redhat.com> --------- Signed-off-by: Stephan Seifermann <seiferma@users.noreply.github.com> Signed-off-by: Václav Muzikář <vmuzikar@redhat.com> Co-authored-by: Stephan Seifermann <seiferma@users.noreply.github.com> Co-authored-by: Václav Muzikář <vmuzikar@redhat.com>	2025-12-19 12:38:54 +01:00
Ricardo Martin	efc75f09b0	Fix link to https://azure.microsoft.com/en-us (#45036 ) Closes #45023 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-12-19 12:27:05 +01:00
Pedro Igor	6a437521a9	Only allow LDAP URL references when following referrals (#44993 ) Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Signed-off-by: Stian Thorgersen <stian@redhat.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Stian Thorgersen <stianst@gmail.com>	2025-12-18 14:27:10 +01:00
Pedro Igor	7512a0412b	wip - workflows doc (#44685 ) Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Co-authored-by: Stan Silvert <ssilvert@redhat.com>	2025-12-18 07:52:41 -05:00
Takashi Norimatsu	ce67ec0d22	MCP Documentation for 26.5 (#44572 ) closes #44571 Signed-off-by: Takashi Norimatsu <takashi.norimatsu.ws@hitachi.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-12-18 13:49:16 +01:00
Marek Posolda	4b68f6998b	Release notes update for Keycloak 26.5 with core-clients related contributions (#44986 ) closes #44192 Signed-off-by: mposolda <mposolda@gmail.com>	2025-12-18 10:48:27 +01:00
Giuseppe Graziano	790fb557db	Limit access Token expiration for jwt authorization grant (#44775 ) Closes #43972 Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>	2025-12-18 09:21:29 +01:00
Martin Bartoš	548a89c823	[OTel] Micrometer to OpenTelemetry bridge support for metrics (#41716 ) * [OTel] Micrometer to OpenTelemetry bridge support for metrics Closes #41006 Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Review: Docs rewording Signed-off-by: Ryan Emerson <remerson@ibm.com> * Review: Make TELEMETRY Option descriptions consistently use OpenTelemetry to reflect pattern established by telemetry-enabled, telemetry-endpoint etc Signed-off-by: Ryan Emerson <remerson@ibm.com> --------- Signed-off-by: Martin Bartoš <mabartos@redhat.com> Signed-off-by: Ryan Emerson <remerson@ibm.com> Co-authored-by: Ryan Emerson <remerson@ibm.com>	2025-12-17 17:03:56 +01:00
Sebastian Łaskawiec	9597537bf3	Additional fields for the Welcome Resource (#44758 ) * Additional fields added to the Welcome Page Signed-off-by: Sebastian Łaskawiec <sebastian.laskawiec@gmail.com> * Updated the order of fields Signed-off-by: Sebastian Łaskawiec <sebastian.laskawiec@gmail.com> --------- Signed-off-by: Sebastian Łaskawiec <sebastian.laskawiec@gmail.com>	2025-12-17 13:11:44 +01:00
Martin Kanis	012cefb654	The existence of an organization attribute called id is not validated Closes #44522 Signed-off-by: Martin Kanis <mkanis@redhat.com>	2025-12-17 08:05:32 -03:00
Steven Hawkins	148d14816c	fix: allowing settable connection request timeout (#44592 ) Some checks are pending Weblate Sync / Trigger Weblate to pull the latest changes (push) Waiting to run Details also defaulting to 5000 closes: #44500 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-12-16 16:35:01 +00:00
Palpable	94ee6d81fb	[OID4VCI] Realign naming of attribute configuring algorithms for credential (#44765 ) Closes #44621 Signed-off-by: Vitalisn4 <ngamvitalisyuh@gmail.com> Signed-off-by: mposolda <mposolda@gmail.com> Signed-off-by: Ingrid Kamga <Ingrid.Kamga@adorsys.com> Co-authored-by: Marek Posolda <mposolda@gmail.com> Co-authored-by: Ingrid Kamga <Ingrid.Kamga@adorsys.com>	2025-12-16 14:46:17 +01:00
Martin Bartoš	917fb86438	[docs] Remove paragraph about Quarkus OTel logging guide reference (#44911 ) Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-12-15 19:43:08 +01:00
Martin Bartoš	29fdcedbc8	[OTel] Introduce preview support for OpenTelemetry Logs (#41265 ) Closes #41264 Co-authored-by: Ryan Emerson <remerson@redhat.com Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-12-15 10:50:30 +01:00
Václav Muzikář	da6c4df5ec	Support EDB 18 (#44856 ) * Support EDB 18 Closes #44494 Signed-off-by: Václav Muzikář <vmuzikar@redhat.com> * Update test-framework/db-edb/container/README.md Co-authored-by: Steven Hawkins <shawkins@redhat.com> Signed-off-by: Václav Muzikář <vaclav@muzikari.cz> --------- Signed-off-by: Václav Muzikář <vmuzikar@redhat.com> Signed-off-by: Václav Muzikář <vaclav@muzikari.cz> Co-authored-by: Steven Hawkins <shawkins@redhat.com>	2025-12-15 07:36:26 +01:00
Ruchika Jha	26fe8dc7d8	Added validation for client session timeout post comparing the realm session timeouts Closes #41019 Signed-off-by: ruchikajha95 <Ruchika.Jha1@ibm.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-12-11 13:58:04 +01:00
Giuseppe Graziano	c0c4067bdd	JWT Authorization Grant feature to preview Closes #44492 Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>	2025-12-11 10:37:30 +01:00
Martin Bartoš	8def691053	[OTel] Provide general options for telemetry settings (#41705 ) * [OTel] Provide general options for telemetry settings Closes #41263 Co-authored-by: Ryan Emerson <remerson@redhat.com> Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Update docs/guides/observability/telemetry.adoc Co-authored-by: Václav Muzikář <vaclav@muzikari.cz> Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Provide release notes and deprecation note Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Ignore link to the telemetry guide for now Signed-off-by: Martin Bartoš <mabartos@redhat.com> --------- Signed-off-by: Martin Bartoš <mabartos@redhat.com> Co-authored-by: Ryan Emerson <remerson@redhat.com> Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>	2025-12-10 12:03:46 +00:00
Christian Glasmachers	921b10ee80	Login failure cache: Evict entries after the configured failure reset time Closes #44801 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Signed-off-by: Pedro Ruivo <pruivo@redhat.com> Co-authored-by: Christian Glasmachers <Christian.Glasmachers-extern@deutschebahn.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Pedro Ruivo <pruivo@users.noreply.github.com>	2025-12-10 11:20:19 +01:00
rmartinc	c9686cc040	Documentation for JWT Authorization Grant Closes #44136 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-12-09 12:13:21 +01:00
vramik	5dbc91e028	Deprecate Fine-Grained Admin Permissions v1 Closes #44121 Signed-off-by: vramik <vramik@redhat.com>	2025-12-08 10:26:27 -03:00
Alexander Schwartz	2f81a2fb76	Updating and ordering the release notes Closes #44706 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-12-08 10:55:33 +01:00
alyneldc	56b08c02ed	Add documentation warning about 0.0.0.0 binding in dev mode (#43522 ) Inform users that Keycloak binds to all network addresses (0.0.0.0) by default in development mode. Add warning in Getting Started guide and configuration documentation, and enhance HttpOptions description. Closes #43522 Signed-off-by: Lopes De Carvalho Alyne <alynelopes298@gmail.com>	2025-12-07 14:45:34 +00:00
Pascal Knüppel	46e5979b17	[OID4VCI] Handle key_attestation_required in metadata endpoint (#44471 ) fixes #43801 Signed-off-by: Pascal Knüppel <pascal.knueppel@governikus.de> Signed-off-by: Pascal Knüppel <captain.p.goldfish@gmx.de> Signed-off-by: Captain-P-Goldfish <captain.p.goldfish@gmx.de> Co-authored-by: Ingrid Kamga <xingridkamga@gmail.com>	2025-12-05 16:00:32 +01:00
Sebastian Schuster	b5178a2bec	Added section on recommended isolation level to db guides Closes #44611 Signed-off-by: Sebastian Schuster <sebastian.schuster@bosch.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-12-05 14:48:31 +01:00
forkimenjeckayang	4dd68c0316	[OID4VCI] Conformance Test Fixes (#44439 ) closes #44659 Signed-off-by: forkimenjeckayang <forkimenjeckayang@gmail.com>	2025-12-04 09:03:38 +01:00
Robin Meese	a9c1bcc9bd	Add zh_Hans translators to docs/translation.md (#44610 ) Signed-off-by: Robin Meese <39960884+robson90@users.noreply.github.com> Closes #44609	2025-12-02 20:50:22 +01:00
Sebastian Łaskawiec	aa789dd023	Logout confirmation Signed-off-by: Sebastian Łaskawiec <sebastian.laskawiec@gmail.com>	2025-11-28 14:24:32 +01:00
Hisanobu Okuda	efa881d016	Add MariaDB to MySQL description and specify SQL to support UTF-8 Closes #44548 Signed-off-by: Hisanobu Okuda <hisanobu.okuda@gmail.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-11-28 11:03:11 +01:00
Pedro Ruivo	3ed15e740a	Add new option to schedule user session expiration Closes #44068 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Signed-off-by: Ryan Emerson <remerson@ibm.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Ryan Emerson <remerson@ibm.com>	2025-11-27 23:01:32 +01:00
Alexis Rico	b0b38176f0	Manage Organization Invites Closes #38809 Signed-off-by: Alexis Rico <sferadev@gmail.com> Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-11-27 10:28:52 +01:00
Alexander Schwartz	2210b1ed50	Avoid un-escaped strings in the login templates for HTML entities Closes #44296 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-11-26 07:55:35 -03:00
ruchikajha95	570ac40025	Promote MDC Logging Feature to Supported State Some checks are pending Weblate Sync / Trigger Weblate to pull the latest changes (push) Waiting to run Details Closes #41205 Signed-off-by: Ruchika Jha <ruchika@li-0551ffcc-341d-11b2-a85c-a28deda416be.ibm.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Ruchika Jha <ruchika@li-0551ffcc-341d-11b2-a85c-a28deda416be.ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-11-25 18:53:34 +00:00
Ryan Emerson	ebd4a6936a	Utilise community wording in downstream high-availability guides Closes #4428 Signed-off-by: Ryan Emerson <remerson@ibm.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>	2025-11-25 09:10:21 +00:00
Awambeng	8406cf34fb	[OID4VCI]: Realm-Configurable Time-Claim Normalization (Randomize/Round) to Mitigate Correlation (#43834 ) Closes #43399 Signed-off-by: Awambeng <awambengrodrick@gmail.com>	2025-11-24 11:07:07 +01:00
Sebastian Łaskawiec	081d8e5a01	Move Kubernetes IdP to preview Some checks failed Weblate Sync / Trigger Weblate to pull the latest changes (push) Has been cancelled Details Closes #42947 Signed-off-by: Sebastian Łaskawiec <sebastian.laskawiec@defenseunicorns.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-11-22 12:56:09 +01:00
Stian Thorgersen	2a78bc67d7	Refactoring around federated client authenticator to better handling lookup of IdPs and clients. Also, introducing updates to documentation. (#44325 ) Closes #44253 Closes #42987 Closes #44063 Signed-off-by: stianst <stianst@gmail.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>	2025-11-22 12:53:22 +01:00
Alexander Schwartz	bb971dc6fc	Efficient row-count on PostgreSQL Closes #44057 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-11-21 12:28:09 +01:00

1 2 3 4 5 ...

1613 commits