Commit graph

30221 commits

Author SHA1 Message Date
Ryan Emerson
ee9f364b8d
Migrations in db-compatibility-verifier-maven-plugin
Closes #46389

Signed-off-by: Ryan Emerson <remerson@ibm.com>
2026-02-18 20:57:47 +01:00
Michal Vavřík
ec1ddc73d4
Added typescript based module for the client admin v2 (#46440)
* Added typescript based module for the client admin v2

Based on the new openapi client admin api this module can be generated
based on the defenition.

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* now uses openapitools to generate and moved it into the existing module for better adoption

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* changed back to use kiota as it offers a nicer fluent api

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* fixed build

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* better api

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* removed base representation filter

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* added flag to explicited enable v2

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* re-run generation

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* enable client-admin-api:v2 in PR CI tests

Signed-off-by: Michal Vavřík <michal.vavrik@aol.com>

* fix JS OpenAPI generation on Windows

Signed-off-by: Michal Vavřík <michal.vavrik@aol.com>

* remove unnecessary statement from generate.ts

Signed-off-by: Michal Vavřík <michal.vavrik@aol.com>

* Fix Windows line endings in JS OpenAPI post-processing

Signed-off-by: Michal Vavřík <michal.vavrik@aol.com>

---------

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
Signed-off-by: Michal Vavřík <michal.vavrik@aol.com>
Co-authored-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2026-02-18 19:34:00 +01:00
Erik Jan de Wit
4115785dba
added better validation and more validation tests (#46277)
* added better validation and more validation tests

fixes: #46271
Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* Use getClientsApiUrl() in tests

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* refactored removed duplication

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

* added test for update

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>

---------

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
Signed-off-by: Martin Bartoš <mabartos@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2026-02-18 19:23:49 +01:00
Pedro Ruivo
5096806b52
Revisit Infinispan session idle and lifetime settings
Some checks are pending
Weblate Sync / Trigger Weblate to pull the latest changes (push) Waiting to run
Closes #46421

Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
2026-02-18 14:38:23 +01:00
Weblate (bot)
974eff0a92
Updated translation for German (#46432)
Language: de

Updated translation for German

Language: de

Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Signed-off-by: Hosted Weblate <hosted@weblate.org>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
2026-02-18 11:29:35 +01:00
Caleb
b2408ad804
enforce LF line endings on *.tsx files (#45997)
add eol=lf for *.tsx files declaration in .gitattributes

Closes #45996

Signed-off-by: Caleb Anderson <2682726+calebd-anderson@users.noreply.github.com>
2026-02-18 10:28:55 +00:00
Thomas Darimont
ddc79039ed
Improve SimpleHttp API (#46171)
* Improve SimpleHttp API

- Expose configured HTTP method from SimpleHttpRequest
- Use same ObjectMapper configuration as in JsonSerialization used by the deprecated SimpleHTTP
- Allow to configure the ObjectMapper to use by SimpleHttp
- Expose ObjectMapper factory methods in JsonSerialization

Fixes #43701

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>

* Revise ObjectMapper creation methods in JsonSerialization

Replace usage of deprecated method
```
mapper.setSerializationInclusion(JsonInclude.Include.NON_NULL);
```
with supported variant.

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>

* Use JsonSerialization.mapper directly in SimpleHttp

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>

---------

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2026-02-18 06:56:11 +01:00
dependabot[bot]
1ca4912ce4
Bump the actions-dependencies group across 1 directory with 4 updates (#46343)
Bumps the actions-dependencies group with 4 updates in the / directory: [docker/login-action](https://github.com/docker/login-action), [github/codeql-action](https://github.com/github/codeql-action), [manusa/actions-setup-minikube](https://github.com/manusa/actions-setup-minikube) and [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action).


Updates `docker/login-action` from 3.6.0 to 3.7.0
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](5e57cd1181...c94ce9fb46)

Updates `github/codeql-action` from 4.31.9 to 4.32.3
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](5d4e8d1aca...9e907b5e64)

Updates `manusa/actions-setup-minikube` from 2.14.0 to 2.15.0
- [Release notes](https://github.com/manusa/actions-setup-minikube/releases)
- [Commits](b589f2d61b...8234275e03)

Updates `aquasecurity/trivy-action` from 0.33.1 to 0.34.0
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](b6643a29fe...c1824fd6ed)

---
updated-dependencies:
- dependency-name: docker/login-action
  dependency-version: 3.7.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions-dependencies
- dependency-name: github/codeql-action
  dependency-version: 4.32.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions-dependencies
- dependency-name: manusa/actions-setup-minikube
  dependency-version: 2.15.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions-dependencies
- dependency-name: aquasecurity/trivy-action
  dependency-version: 0.34.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-02-18 06:32:59 +01:00
Alexander Schwartz
0c0f9096d4
Fixing the permissions to comment on PRs
Closes #46427

Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
2026-02-18 06:00:50 +01:00
Weblate (bot)
7df8199476
Translations update from Hosted Weblate (#46353)
Some checks are pending
Weblate Sync / Trigger Weblate to pull the latest changes (push) Waiting to run
* Updated translation for German

Language: de

Updated translation for German

Language: de

Updated translation for German

Language: de

Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: Hosted Weblate <hosted@weblate.org>
Co-authored-by: Robin <39960884+robson90@users.noreply.github.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Signed-off-by: Hosted Weblate <hosted@weblate.org>
Signed-off-by: Robin <39960884+robson90@users.noreply.github.com>

* Translated using Weblate (Russian)

Translation: Keycloak/Admin backend
Translate-URL: https://hosted.weblate.org/projects/keycloak/theme-baseadmin/ru/

Updated translation for Russian

Language: ru

Updated translation for Russian

Language: ru

Updated translation for Russian

Language: ru

Co-authored-by: Eugene Pasternak <pasternake@gmail.com>
Co-authored-by: Hosted Weblate <hosted@weblate.org>
Signed-off-by: Eugene Pasternak <pasternake@gmail.com>
Signed-off-by: Hosted Weblate <hosted@weblate.org>

* Updated translation for Indonesian

Language: id

Updated translation for Indonesian

Language: id

Updated translation for Indonesian

Language: id

Co-authored-by: Andika Triwidada <andika@gmail.com>
Co-authored-by: Hosted Weblate <hosted@weblate.org>
Co-authored-by: Syahmin Sukhairi <syahmin@gmail.com>
Signed-off-by: Andika Triwidada <andika@gmail.com>
Signed-off-by: Hosted Weblate <hosted@weblate.org>
Signed-off-by: Syahmin Sukhairi <syahmin@gmail.com>

* Updated translation for Dutch

Language: nl

Co-authored-by: Hosted Weblate <hosted@weblate.org>
Co-authored-by: Jan Herrygers <jherrygers@vaa.com>
Signed-off-by: Hosted Weblate <hosted@weblate.org>
Signed-off-by: Jan Herrygers <jherrygers@vaa.com>

* Updated translation for French

Language: fr

Co-authored-by: Sylvain Pichon <service@spichon.fr>
Signed-off-by: Hosted Weblate <hosted@weblate.org>
Signed-off-by: Sylvain Pichon <service@spichon.fr>

---------

Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Signed-off-by: Hosted Weblate <hosted@weblate.org>
Signed-off-by: Robin <39960884+robson90@users.noreply.github.com>
Signed-off-by: Eugene Pasternak <pasternake@gmail.com>
Signed-off-by: Andika Triwidada <andika@gmail.com>
Signed-off-by: Syahmin Sukhairi <syahmin@gmail.com>
Signed-off-by: Jan Herrygers <jherrygers@vaa.com>
Signed-off-by: Sylvain Pichon <service@spichon.fr>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: Robin <39960884+robson90@users.noreply.github.com>
Co-authored-by: Eugene Pasternak <pasternake@gmail.com>
Co-authored-by: Andika Triwidada <andika@gmail.com>
Co-authored-by: Syahmin Sukhairi <syahmin@gmail.com>
Co-authored-by: Jan Herrygers <jherrygers@vaa.com>
Co-authored-by: Sylvain Pichon <service@spichon.fr>
2026-02-17 20:15:01 +01:00
Ricardo Martin
4f90ef67f6
Limit the inflating size for the SAML redirect binding
Closes #46372

Signed-off-by: rmartinc <rmartinc@redhat.com>
2026-02-17 18:40:11 +00:00
Pedro Ruivo
4253a79eb2
Client or role parsing caching should be realm specific
Closes #46403

Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
2026-02-17 16:57:38 +01:00
Michal Vavřík
8e816f749c
feat: Update container images to use OpenJDK 25 (#46386)
This PR is mostly based on 303446b465.
Additionally, I made few tweaks to documentation and introduce a doc variable for the recommended Java version so limit required changing when migrating the recommended JDK version.

* Closes: https://github.com/keycloak/keycloak/issues/45830

Signed-off-by: Michal Vavřík <michal.vavrik@aol.com>
2026-02-17 15:35:46 +01:00
Pedro Ruivo
7e00961ee1
Cache evaluation of client roles with dots for role mapper
Closes #43726

Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
2026-02-17 12:45:37 +01:00
Pedro Ruivo
d04d833ec5
Update external Infinispan metrics documentation
Closes #46390

Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>
2026-02-17 10:34:17 +00:00
Alexander Schwartz
3f8b1c8e70
Optimize user joining group or role
Closes #45689

Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
2026-02-17 11:32:57 +01:00
Akbar Husain
3f62bb4d2b
Make shebang in bash scripts consistent (#37369)
Closes #34983

Signed-off-by: akbarhusainpatel <apatel@intermiles.com>
2026-02-17 11:32:28 +01:00
Alexander Schwartz
ac83dfda42
Notify language maintainers on PR merge
Close #46344

Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: Robin Meese <39960884+robson90@users.noreply.github.com>
2026-02-17 11:19:32 +01:00
Giuseppe Graziano
f791337eec
Fix max expiration id in jwt authorization grant idp config
Closes #46303

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
2026-02-17 10:52:51 +01:00
Zorian Motso
8258fceb33
Fix duplicate client-uuid path parameter in OpenAPI spec
Some checks are pending
Weblate Sync / Trigger Weblate to pull the latest changes (push) Waiting to run
Rename {client-uuid} to {targetClientUuid} in RoleContainerResource to
avoid duplicate parameter names when the resource is mounted under
ClientResource. {clientUuid} is not sufficient because code generators
normalise {client-uuid} from the parent path to clientUuid as well.

Closes #46015

Signed-off-by: Zorian Motso <zorianmotso@gmail.com>
2026-02-16 16:28:15 +00:00
Geremia Taglialatela
418700b4f8
Fix duplicate header in VERIFY_EMAIL flow
Fix #46105

Signed-off-by: Geremia Taglialatela <tagliala.dev@gmail.com>
Co-authored-by: tagliala <556268+tagliala@users.noreply.github.com>
2026-02-16 16:26:22 +01:00
Ruchika Jha
f92c27e26d
Make rolling updates for patch releases fully supported and Updated docs, release notes and upgrading guide for zero-downtime patch releases
Closes #45381
Closes #45756

Signed-off-by: Ruchika <ruchika.jha1@ibm.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>
2026-02-16 15:11:16 +00:00
Ruchika Jha
4e0085954f
Improved documentation for running the keycloak test mail server locally
Closes #45837

Signed-off-by: Ruchika <ruchika.jha1@ibm.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>
2026-02-16 13:30:36 +01:00
Stian Thorgersen
ddaec23a29
Fix NPE with GitHubActionReport if running test on actions without git checkout
Closes #46322

Signed-off-by: stianst <stianst@gmail.com>
2026-02-16 13:01:40 +01:00
etn
4619c440b4
Added parentId to GroupRepresentation
Closes #46366

Signed-off-by: etn <1438257+etn406@users.noreply.github.com>
2026-02-16 10:28:23 +00:00
Weblate (bot)
18b8ef16d0
Translations update from Hosted Weblate (#46101)
Some checks failed
Weblate Sync / Trigger Weblate to pull the latest changes (push) Has been cancelled
* Updated translation for Turkish

Language: tr

Updated translation for Turkish

Language: tr

Update translation files

Updated by "Cleanup translation files" hook in Weblate.

Co-authored-by: Hosted Weblate <hosted@weblate.org>
Co-authored-by: spctr <spctr@users.noreply.github.com>
Signed-off-by: Hosted Weblate <hosted@weblate.org>
Signed-off-by: spctr <spctr@users.noreply.github.com>

* Updated translation for German

Language: de

Updated translation for German

Language: de

Translated using Weblate (German)

Translation: Keycloak/Admin backend
Translate-URL: https://hosted.weblate.org/projects/keycloak/theme-baseadmin/de/

Updated translation for German

Language: de

Co-authored-by: Hosted Weblate <hosted@weblate.org>
Co-authored-by: Robin <39960884+robson90@users.noreply.github.com>
Signed-off-by: Hosted Weblate <hosted@weblate.org>
Signed-off-by: Robin <39960884+robson90@users.noreply.github.com>

* Update translation files

Updated by "Cleanup translation files" hook in Weblate.

Co-authored-by: Hosted Weblate <hosted@weblate.org>
Signed-off-by: Hosted Weblate <hosted@weblate.org>

* Update translation files

Updated by "Cleanup translation files" hook in Weblate.

Co-authored-by: Hosted Weblate <hosted@weblate.org>
Signed-off-by: Hosted Weblate <hosted@weblate.org>

* Updated translation for Czech

Language: cs

Updated translation for Czech

Language: cs

Updated translation for Czech

Language: cs

Co-authored-by: Hosted Weblate <hosted@weblate.org>
Co-authored-by: Martin Kylián <martin.kylian@gmail.com>
Signed-off-by: Hosted Weblate <hosted@weblate.org>
Signed-off-by: Martin Kylián <martin.kylian@gmail.com>

* Updated translation for Italian

Language: it

Co-authored-by: Hosted Weblate <hosted@weblate.org>
Co-authored-by: Nicholas Amadori <nico282@gmail.com>
Signed-off-by: Hosted Weblate <hosted@weblate.org>
Signed-off-by: Nicholas Amadori <nico282@gmail.com>

* Added translation for Indonesian

Language: id

Added translation for Indonesian

Language: id

Added translation for Indonesian

Language: id

Added translation for Indonesian

Language: id

Added translation for Indonesian

Language: id

Added translation for Indonesian

Language: id

Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: Hosted Weblate <hosted@weblate.org>
Signed-off-by: Hosted Weblate <hosted@weblate.org>

* Update translation files

Updated by "Cleanup translation files" hook in Weblate.

Co-authored-by: Hosted Weblate <hosted@weblate.org>
Signed-off-by: Hosted Weblate <hosted@weblate.org>

* Updated translation for French

Language: fr

Updated translation for French

Language: fr

Updated translation for French

Language: fr

Updated translation for French

Language: fr

Updated translation for French

Language: fr

Updated translation for French

Language: fr

Updated translation for French

Language: fr

Update translation files

Updated by "Cleanup translation files" hook in Weblate.

Updated translation for French

Language: fr

Updated translation for French

Language: fr

Updated translation for French

Language: fr

Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: Hosted Weblate <hosted@weblate.org>
Co-authored-by: Sylvain Pichon <service@spichon.fr>
Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Signed-off-by: Hosted Weblate <hosted@weblate.org>
Signed-off-by: Sylvain Pichon <service@spichon.fr>

* Updated translation for Georgian

Language: ka

Co-authored-by: Hosted Weblate <hosted@weblate.org>
Co-authored-by: Temuri Doghonadze <temuri.doghonadze@gmail.com>
Signed-off-by: Hosted Weblate <hosted@weblate.org>
Signed-off-by: Temuri Doghonadze <temuri.doghonadze@gmail.com>

* Update translation files

Updated by "Cleanup translation files" hook in Weblate.

Updated translation for Chinese (Traditional Han script)

Language: zh_Hant

Updated translation for Chinese (Traditional Han script)

Language: zh_Hant

Updated translation for Chinese (Traditional Han script)

Language: zh_Hant

Updated translation for Chinese (Traditional Han script)

Language: zh_Hant

Co-authored-by: Hosted Weblate <hosted@weblate.org>
Co-authored-by: 秉虎 <s96016641@gmail.com>
Signed-off-by: Hosted Weblate <hosted@weblate.org>
Signed-off-by: 秉虎 <s96016641@gmail.com>

* Update translation files

Updated by "Cleanup translation files" hook in Weblate.

Co-authored-by: Hosted Weblate <hosted@weblate.org>
Signed-off-by: Hosted Weblate <hosted@weblate.org>

---------

Signed-off-by: Hosted Weblate <hosted@weblate.org>
Signed-off-by: spctr <spctr@users.noreply.github.com>
Signed-off-by: Robin <39960884+robson90@users.noreply.github.com>
Signed-off-by: Martin Kylián <martin.kylian@gmail.com>
Signed-off-by: Nicholas Amadori <nico282@gmail.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Signed-off-by: Sylvain Pichon <service@spichon.fr>
Signed-off-by: Temuri Doghonadze <temuri.doghonadze@gmail.com>
Signed-off-by: 秉虎 <s96016641@gmail.com>
Co-authored-by: spctr <spctr@users.noreply.github.com>
Co-authored-by: Robin <39960884+robson90@users.noreply.github.com>
Co-authored-by: Martin Kylián <martin.kylian@gmail.com>
Co-authored-by: Nicholas Amadori <nico282@gmail.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: Sylvain Pichon <service@spichon.fr>
Co-authored-by: Temuri Doghonadze <temuri.doghonadze@gmail.com>
Co-authored-by: 秉虎 <s96016641@gmail.com>
2026-02-15 14:42:38 +01:00
Stefan Guilhen
aeda5c4f01 Increase workflow executor timeout to 5 seconds by default
Some checks failed
Weblate Sync / Trigger Weblate to pull the latest changes (push) Has been cancelled
Closes #46332

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
2026-02-13 14:33:31 -03:00
Steven Hawkins
c28cac9db3
fix: ensuring proper error handling for duplicate protocol mappers
closes: #26946

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2026-02-13 16:33:01 +00:00
Michal Vavřík
404ba76526
test(quarkus): run with dist placed in a dir with special chars (#46301)
Adds tests for https://github.com/keycloak/keycloak/issues/45971 (fixed by https://github.com/keycloak/keycloak/pull/45972).

Closes: https://github.com/keycloak/keycloak/issues/46135

Signed-off-by: Michal Vavřík <michal.vavrik@aol.com>
2026-02-13 16:20:04 +00:00
Pedro Igor
5c67b60920
Fixing authorization service docs to remove references to the default settings
Closes #46159

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2026-02-13 17:18:15 +01:00
Steven Hawkins
83159fc162
fix: removing client crds from prod operator (#46286)
remote testing now requires a build option

closes: #45794

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2026-02-13 15:56:32 +00:00
Martin Bartoš
5a4e90dfc0
Show login page for quick theme and change basic attributes (#45483)
Closes #45524

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
2026-02-13 16:34:42 +01:00
Stefan Guilhen
c17d9d0d0c Add section about handling failures to the workflows documentation
Closes #45175

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
2026-02-13 12:01:00 -03:00
Stefan Guilhen
0b93d23201 Record every step in the workflow step table so immediate steps can recover from failure
Closes #45175

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
2026-02-13 12:01:00 -03:00
Stefan Guilhen
1384d3b72a Make RunWorkflowTask aware of executor cancellation due to timeout
Closes #45175

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
2026-02-13 12:01:00 -03:00
Stefan Guilhen
04d8886678 Execute each workflow step in its own transaction
Closes #45175

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
2026-02-13 12:01:00 -03:00
Pedro Ruivo
463ec1ee56
Incorrect code used return value
Fixes #46290

Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>
2026-02-13 15:59:44 +01:00
Martin Bartoš
92881fb42b
Missing anti-ID phishing check for getting client (#46056)
* Missing anti-ID phishing check for getting client

Closes #46010

Signed-off-by: Martin Bartoš <mabartos@redhat.com>

* Avoid any other phishing based on error message, for PATCH + improve service exceptions

Signed-off-by: Martin Bartoš <mabartos@redhat.com>

* Ensure no ID phishing for DELETE

Signed-off-by: Martin Bartoš <mabartos@redhat.com>

---------

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
2026-02-13 14:53:14 +00:00
Steven Hawkins
19118a097c
fix: adding admin role invalidation when a new realm is found (#46019)
* fix: adding admin role invalidation when a new realm is found

closes: #45966

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update model/infinispan/src/main/java/org/keycloak/models/cache/infinispan/RealmCacheSession.java

Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

* adding a comment and a permission tweak for imported realms

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* checking getShouldUseLightweightToken

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
2026-02-13 15:52:52 +01:00
Martin Bartoš
74988b5c0a
Extend client policies tests to check exact events (#46093)
Closes #46114

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
2026-02-13 15:47:38 +01:00
Thomas Diesler
d2150a19d5 [OID4VCI] Make natural_person configuration available in all formats
Signed-off-by: Thomas Diesler <tdiesler@ibm.com>
2026-02-13 15:30:55 +01:00
Thomas Diesler
80839bfc44 -- make ctors package protected
Signed-off-by: Thomas Diesler <tdiesler@ibm.com>
2026-02-13 15:29:04 +01:00
Thomas Diesler
4341b8a314 [OID4VCI] Revisit and fix OAuthClient.preAuthorizedCodeGrantRequest()
Signed-off-by: Thomas Diesler <tdiesler@ibm.com>
2026-02-13 15:29:04 +01:00
Ruchika Jha
e82e107b85
Enable graceful HTTP shutdown and document default behavior
Closes #43589

Signed-off-by: Ruchika <ruchika.jha1@ibm.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>
2026-02-13 14:28:49 +00:00
Erik Jan de Wit
4be89ef2a3
token could be undefined when using other grant type (#46185)
fixes: #46178

Signed-off-by: Erik Jan de Wit <erikjan.dewit@gmail.com>
2026-02-13 15:16:35 +01:00
Pedro Igor
8df79202a0
Fixing organization members docs to mention they can join multiple organizations
Closes #46040

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2026-02-13 14:54:10 +01:00
Ricardo Martin
1f49f67991
Upgrade docker-maven-plugin to last version (#46313)
Closes #46312

Signed-off-by: rmartinc <rmartinc@redhat.com>
2026-02-13 12:15:20 +01:00
Giuseppe Graziano
a8418b251d Unique issuer for identity providers
Closes #45747

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
2026-02-13 08:44:07 +01:00
Martin Bartoš
51b764b577
Missing translations for role descriptions
Closes #22569

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
2026-02-12 18:37:25 +01:00
Thomas Diesler
44e7cf2da9 [OID4VCI] Simplify OID4VCAuthorizationDetail handling
Signed-off-by: Thomas Diesler <tdiesler@ibm.com>
2026-02-12 17:09:07 +01:00