keycloak

mirror of https://github.com/keycloak/keycloak.git synced 2026-02-20 00:13:39 -05:00

Author	SHA1	Message	Date
Alexander Schwartz	4d3589c776	Lock the database before doing migrations Closes #41801 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-09-03 15:22:04 -03:00
Pedro Igor	76e02388ff	Moving resetOnevent to base class Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-09-02 17:45:59 -03:00
Pedro Igor	a4f115b4cc	Moving deactivation events to base class Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-09-02 17:45:59 -03:00
Pedro Igor	b65356f3c8	Refactoring how policies are activated based on user-defined events and conditions Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-09-02 17:45:59 -03:00
Pedro Igor	cee9b6803b	Refactoring built-in policies to use conditions Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-09-02 17:45:59 -03:00
Pedro Igor	03cbc11e7e	Initial refactoring to make federated identities a condition Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-09-02 17:45:59 -03:00
Pedro Igor	17a053b2af	Add support for generic event-based policies and conditions Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-09-02 17:45:59 -03:00
Alexander Schwartz	e46c879cde	Retry duplicate exceptions to handle concurrent client sessions Closes #42278 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-09-02 10:43:03 -03:00
Pedro Ruivo	935caa97ea	Disable peristent user session batching Closes #41662 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-09-01 14:33:21 +00:00
Stefan Guilhen	af96183788	Allow resource policies to be deactivated for a resource based on events - Listen for federated identity add/remove events to activate and deactivate policies based on IDP association Closes #42107 Closes #42108 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2025-09-01 11:02:00 -03:00
Pedro Ruivo	f4ec4cff1a	Configure topology information in Infinispan Closes #41933 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>	2025-09-01 14:40:39 +02:00
Alexis Rico	224ccbb79d	Make organization `domains` optional Closes #31285 Signed-off-by: Alexis Rico <sferadev@gmail.com>	2025-08-27 18:11:15 -03:00
Pedro Ruivo	a01571c2cc	Import client sessions into Infinispan concurrently for persistent sessions Closes #41074 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>	2025-08-26 22:16:04 +02:00
Stefan Guilhen	8eb6ee619f	Rework getEligibleResourcesForInitialAction so it returns all resources that are eligible to be associated with a policy Closes #42106 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2025-08-26 11:52:46 -03:00
Alexander Schwartz	36cbbbc7b4	Avoid deleting old client sessions If this is done concurrently, this can load to errors with Hibernate and its optimistic locking Closes #41427 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-08-26 09:59:51 +02:00
Pedro Ruivo	6bcaa63124	Concurrently update the remote caches Closes #42096 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>	2025-08-25 16:39:17 +02:00
Pedro Ruivo	61e488bbf0	Skip configuring jdbc-ping stack in local mode Closes #42047 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>	2025-08-22 15:11:58 +02:00
Pedro Ruivo	2f131fa56c	Detect and handle KC split brain clusters Closes #41561 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Signed-off-by: Pedro Ruivo <pruivo@users.noreply.github.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-08-21 11:18:34 +02:00
Stefan Guilhen	70659ac183	Rework RLM core to schedule action based on events @sguilhen (#42010 ) * Rework RLM core to schedule action based on events Closes #41803 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Stefan Guilhen <sguilhen@redhat.com> Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-08-20 17:59:52 +00:00
Alexander Schwartz	09f863bf9d	Don't validate duplicate credential label on update if label is unchanged Closes #41945 Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>	2025-08-20 08:06:06 +02:00
Ryan Emerson	b0f4b4efee	Log applied cache configurations as part of debug logs Closes #41950 Signed-off-by: Ryan Emerson <remerson@ibm.com>	2025-08-19 17:01:19 +02:00
Steven Hawkins	2ce3474ed5	fix: addressing possible npes (#41944 ) close: #40659 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-08-18 23:51:17 +02:00
Ryan Emerson	168d9cc090	Simplify Cache Configuration file by removing built-in cache configurations Closes #41559 Signed-off-by: Ryan Emerson <remerson@ibm.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-08-15 16:16:56 +00:00
Akbar Husain	06f80416fb	Replace keySet with entrySet Closes #40064 Signed-off-by: akbarhusainpatel <apatel@intermiles.com> Co-authored-by: akbarhusainpatel <apatel@intermiles.com>	2025-08-14 17:31:15 +02:00
Pedro Igor	3bf46e5421	"linked-accounts" endpoint displays all Identity providers Closes #19732 Signed-off-by: Réda Housni Alaoui <reda-alaoui@hey.com> Co-authored-by: Réda Housni Alaoui <reda-alaoui@hey.com>	2025-08-14 15:21:03 +02:00
Dennis Kniep	d74a10d87a	Add TiDB as supported db Closes #41455 Signed-off-by: Dennis Kniep <kniepdennis@gmail.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-08-14 07:27:21 +00:00
Peter Skopek	651d651c30	Add missing artifact descriptions to allow Maven Central Portal Publisher pass validation process. (#40822 ) Signed-off-by: Peter Skopek <pskopek@redhat.com>	2025-08-12 16:50:17 +02:00
vramik	a8225655cf	Initial commit for the RLM feature Closes #40340 Closes #40341 Co-authored-by: Stefan Guilhen <sguilhen@redhat.com> Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: vramik <vramik@redhat.com>	2025-08-11 17:34:41 -03:00
Pedro Ruivo	ee5607727c	Allow setting the number of owners Closes #10875 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>	2025-08-07 08:13:15 -03:00
Martin Bartoš	534a37f356	Remove workaround for PostgreSQL and Liquibase Closes #40687 This reverts commit `3a7569662e`. Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-08-05 16:35:25 -03:00
Steven Hawkins	11924e6473	enhance: adding the ability to get the root config from a Scope closes: #36268 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-08-05 18:51:33 +02:00
Pedro Ruivo	75afda4104	Ensure cache configuration has correct number of owners Closes #41558 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>	2025-08-05 15:19:03 +01:00
Steven Hawkins	a79e603272	fix: cutting down on the memory footprint for import (#41196 ) closes: #40875 Signed-off-by: Steve Hawkins <shawkins@redhat.com>	2025-08-04 11:02:39 -04:00
Alexander Böhm	9cdbd1cc35	added a non-null check to check whether the to be exported realm exists (#40655 ) * added non-null check for the exported realm like already used in SingleFileExportProvider to have a proper error message in case the realm does not exist Closes #39122 Signed-off-by: Alexander Böhm <boehm.alexanderb@gmail.com> * added tests based upon review conversation Closes #39122 Signed-off-by: Alexander Böhm <boehm.alexanderb@gmail.com> * updating tests for non existent realm name Signed-off-by: Steve Hawkins <shawkins@redhat.com> --------- Signed-off-by: Alexander Böhm <boehm.alexanderb@gmail.com> Signed-off-by: Steve Hawkins <shawkins@redhat.com> Co-authored-by: Steve Hawkins <shawkins@redhat.com>	2025-08-04 08:42:55 -04:00
Oliver	27cd19e68e	add index for user_id and type on event_entity Closes #26995 Signed-off-by: Oliver Cremerius <antikalk@users.noreply.github.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-07-30 20:52:48 +00:00
Alexander Schwartz	c9943af4f3	Reduce likelihood of multiple coordinators on concurrent startup Closes #41290 Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Pedro Ruivo <pruivo@users.noreply.github.com>	2025-07-30 15:39:44 +02:00
Pedro Ruivo	cf21fa10fd	Update docs how to verify that a cluster has formed Closes #40296 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-07-28 10:01:00 +00:00
Alexander Schwartz	8d8ed924c4	Setting 'write_data_on_find' to true to ensure merging of views Closes #41390 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-07-24 16:25:08 +02:00
Martin Bartoš	4a23e43e02	Avoid additional execution of Liquibase changelog lock table statement Closes #41295 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-07-24 12:18:25 +02:00
Martin Bartoš	74cfa87f3c	Remove obsolete code for the Liquibase LogHistoryService Closes #41229 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-07-22 13:50:30 +02:00
Alexander Schwartz	7fd3380b19	OpenTelemetry Tracing: Visualize JGroups communication (#39659 ) Closes #39658 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-07-22 11:51:58 +02:00
Steven Hawkins	98612bbb67	fix: adding group import handling similar to users closes: #41235 Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-07-22 09:29:32 +00:00
Martin Bartoš	b27213aef5	Remove obsolete Liquibase FK snapshot generator Closes #41293 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-07-22 10:15:33 +02:00
rmartinc	e0bba39da0	Allow configure encryption details for SAML clients Closes #40933 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-07-18 20:13:40 +02:00
Ryan Emerson	52a83509dc	Default jdbc-ping cluster setup for distributed caches fails in Oracle * Add DatabaseConfig to TestDatabase so the underlying DB can be configured per test * Allow DB initScripts to be configured by tests Closes #40784 Closes #41105 Signed-off-by: Ryan Emerson <remerson@redhat.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-07-17 15:57:25 +00:00
Ryan Emerson	7ea7c2dcc4	Document spi-user-sessions--infinispan--use-batches Closes #41219 Signed-off-by: Ryan Emerson <remerson@redhat.com>	2025-07-17 12:41:53 +00:00
Ryan Emerson	4bb02305c3	Implement CompatibilityMetadataProvider for Cache CLI args Closes #41138 Signed-off-by: Ryan Emerson <remerson@redhat.com>	2025-07-16 19:52:51 +02:00
Martin Bartoš	23c301f2ed	Upgrade to the Quarkus 3.24.2 version (#40867 ) Closes #40592 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-07-15 16:15:03 +02:00
Ricardo Martin	164274ac51	Check if PK for DATABASECHANGELOG already exists Closes #41082 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-07-11 16:06:08 +02:00
Pedro Ruivo	5219a331b9	Skip computing lifespan for read-only sessions Fixes #40980 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>	2025-07-10 20:40:28 +02:00

1 2 3 4 5 ...

2711 commits