Ricardo Martin
4f90ef67f6
Limit the inflating size for the SAML redirect binding
...
Closes #46372
Signed-off-by: rmartinc <rmartinc@redhat.com>
2026-02-17 18:40:11 +00:00
Michal Vavřík
8e816f749c
feat: Update container images to use OpenJDK 25 ( #46386 )
...
This PR is mostly based on 303446b465https://github.com/keycloak/keycloak/issues/45830
Signed-off-by: Michal Vavřík <michal.vavrik@aol.com>
2026-02-17 15:35:46 +01:00
Pedro Ruivo
d04d833ec5
Update external Infinispan metrics documentation
...
Closes #46390
Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>
2026-02-17 10:34:17 +00:00
Akbar Husain
3f62bb4d2b
Make shebang in bash scripts consistent ( #37369 )
...
Closes #34983
Signed-off-by: akbarhusainpatel <apatel@intermiles.com>
2026-02-17 11:32:28 +01:00
Alexander Schwartz
ac83dfda42
Notify language maintainers on PR merge
...
Close #46344
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: Robin Meese <39960884+robson90@users.noreply.github.com>
2026-02-17 11:19:32 +01:00
Ruchika Jha
f92c27e26d
Make rolling updates for patch releases fully supported and Updated docs, release notes and upgrading guide for zero-downtime patch releases
...
Closes #45381
Closes #45756
Signed-off-by: Ruchika <ruchika.jha1@ibm.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>
2026-02-16 15:11:16 +00:00
Ruchika Jha
4e0085954f
Improved documentation for running the keycloak test mail server locally
...
Closes #45837
Signed-off-by: Ruchika <ruchika.jha1@ibm.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>
2026-02-16 13:30:36 +01:00
Stefan Guilhen
aeda5c4f01
Increase workflow executor timeout to 5 seconds by default
...
Weblate Sync / Trigger Weblate to pull the latest changes (push) Has been cancelled
Closes #46332
Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
2026-02-13 14:33:31 -03:00
Pedro Igor
5c67b60920
Fixing authorization service docs to remove references to the default settings
...
Closes #46159
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2026-02-13 17:18:15 +01:00
Stefan Guilhen
c17d9d0d0c
Add section about handling failures to the workflows documentation
...
Closes #45175
Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
2026-02-13 12:01:00 -03:00
Ruchika Jha
e82e107b85
Enable graceful HTTP shutdown and document default behavior
...
Closes #43589
Signed-off-by: Ruchika <ruchika.jha1@ibm.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>
2026-02-13 14:28:49 +00:00
Pedro Igor
8df79202a0
Fixing organization members docs to mention they can join multiple organizations
...
Closes #46040
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2026-02-13 14:54:10 +01:00
Ricardo Martin
bef8f7f0fd
Move upgrading note for the serverinfo to 26.5.4
...
Closes #46267
Signed-off-by: rmartinc <rmartinc@redhat.com>
2026-02-12 14:50:45 +01:00
Steven Hawkins
3aa5ab0072
fix: updating the fix for docker ulimits ( #46254 )
...
it will now be applied by default
closes : #44232
Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2026-02-12 10:28:53 +01:00
Steven Hawkins
783ea304af
fix: document passthrough backchannel limitation ( #45915 )
...
closes : #45606
Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2026-02-11 10:44:19 -05:00
NAMAN JAIN
5967093142
Move HTTP access logs to data/log directory ( #45991 )
...
* Move HTTP access logs to data/log directory
The HTTP access log file is now written to the /data/log directory, alongside server logs.
Directory is created at runtime initialization if it does not exist.
Closes #45629
Signed-off-by: NAMAN JAIN <naman.049259@tmu.ac.in>
* Update help command expectations for HTTP access log directory change
Signed-off-by: NAMAN JAIN <naman.049259@tmu.ac.in>
* Apply suggestions from code review
Signed-off-by: Martin Bartoš <mabartos@redhat.com>
* Fix build
Signed-off-by: Martin Bartoš <mabartos@redhat.com>
---------
Signed-off-by: NAMAN JAIN <naman.049259@tmu.ac.in>
Signed-off-by: Martin Bartoš <mabartos@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2026-02-11 11:50:22 +01:00
Václav Muzikář
d45dfeb44a
Java 25 support ( #45872 )
...
Closes #45905
Signed-off-by: Václav Muzikář <vmuzikar@ibm.com>
2026-02-10 23:35:35 +00:00
Giuseppe Graziano
d6f07f27ec
User validation in JWT Authorization Grant ( #46149 )
...
Closes #46144
Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
2026-02-10 13:09:05 +00:00
Giuseppe Graziano
6fd372cbe6
Doc for JWT auth grant with Google ( #45895 )
...
Closes #45654
Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
2026-02-10 13:07:37 +01:00
Marie Daly
7d6108d4b9
Redirect Wildcard changes and more https checks to secure-client-executor ( #46082 )
...
Closes #45587
Signed-off-by: Marie Daly <marie.daly1@ibm.com>
2026-02-10 13:00:06 +01:00
rmartinc
d701329f49
Move upgrading note for SAML to 26.5.4
...
Closes #46150
Signed-off-by: rmartinc <rmartinc@redhat.com>
2026-02-10 11:01:45 +01:00
Ricardo Martin
f0381f8482
Check SubjectConfirmationData element for bearer type
...
Closes #45646
Signed-off-by: rmartinc <rmartinc@redhat.com>
2026-02-10 08:20:17 +01:00
andymunro
88eb05d114
Update Operator instructions for Custom Access ( #46036 )
...
Closes #45992
Signed-off-by: AndyMunro <amunro@redhat.com>
2026-02-09 12:45:15 +01:00
Giuseppe Graziano
d95f456b4f
Inaccuracy in the client registration guide
...
Closes #45738
Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
2026-02-09 09:19:15 +01:00
Pedro Ruivo
02c6499d96
Deprecate unused methods in UserSessionProvider
...
Closes #45823
Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
2026-02-06 19:04:19 +01:00
Pedro Ruivo
1ee5709eab
Revisit retransmission metrics documentation
...
Closes #46059
Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
2026-02-06 11:31:10 +01:00
Hugo Hakim Damer
292a177b10
[OID4VCI] Add support for nested claims in OID4VCI user attribute mapper ( #45751 )
...
Closes #45748
Signed-off-by: Hugo Hakim Damer <HugoHakim.Damer@governikus.de>
2026-02-06 10:57:12 +01:00
rmartinc
69fabcf902
Documentation changes to deprecate Token Exchange V1
...
Closes #45792
Signed-off-by: rmartinc <rmartinc@redhat.com>
2026-02-05 17:32:04 +01:00
Aggelos Sachtouris
28bb0b2cd9
Create documentation for unlink user workflow step
...
Signed-off-by: Aggelos Sachtouris <aggelos_sachtouris@hotmail.com>
2026-02-05 12:22:37 -03:00
Stefan Guilhen
63d9a19982
Allow step-runner-task-timeout to be specified using ISO-8601 format
...
Closes #45987
Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
2026-02-03 14:53:19 -03:00
Stefan Guilhen
c379192bf8
Adjust event names in workflows documentation to match the new event provider names
...
Closes #45968
Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
2026-02-03 14:47:41 -03:00
Martin Bartoš
3e568fc81b
OTEL: Use suggested 'code.function.name' for span attributes
...
Closes #45944
Signed-off-by: Martin Bartoš <mabartos@redhat.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
2026-02-03 15:56:48 +01:00
Ryan Emerson
e3c4ec6112
Document the minimum required ServiceMonitor CRD version
...
Signed-off-by: Ryan Emerson <remerson@ibm.com>
2026-02-03 14:55:11 +00:00
rmartinc
c63f54ba3a
Client policy executor to allow extra audiences for JWT authorization grant
...
Closes #45180
Signed-off-by: rmartinc <rmartinc@redhat.com>
2026-02-03 13:39:31 +01:00
Ryan Emerson
47408e8620
Update Infinispan CRs in multi-cluster architecture to use InPlaceRolling upgrade strategy
...
Closes #45424
ISPN16 related
Signed-off-by: Ryan Emerson <remerson@ibm.com>
2026-02-03 12:38:57 +01:00
Stefan Guilhen
43b5b3484b
Fix: use valid format for condition used in the documentation
...
Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
2026-02-02 10:15:18 -03:00
rmartinc
d4e9b16ea9
Include version in system-info for manage-realm and restrict view-system mapping
...
Closes #45776
Signed-off-by: rmartinc <rmartinc@redhat.com>
2026-02-02 12:40:57 +01:00
Pedro Igor
13cf35ded3
Only realm admins can manage workflows
...
Weblate Sync / Trigger Weblate to pull the latest changes (push) Has been cancelled
Closes #45875
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2026-01-30 21:18:06 +01:00
Pedro Ruivo
bae3963d25
Refactor SessionsResource for better memory usage and performance
...
Closes #45727
Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>
2026-01-29 11:38:54 +01:00
Tero Saarni
47b91b995d
Add revert button to client credentials form
...
Weblate Sync / Trigger Weblate to pull the latest changes (push) Has been cancelled
Signed-off-by: Tero Saarni <tero.saarni@est.tech>
2026-01-28 18:36:36 +01:00
Tero Saarni
cb4c533464
Add support for looking up client secrets via Vault SPI ( #39650 )
...
Fixes #13102
Signed-off-by: Tero Saarni <tero.saarni@est.tech>
2026-01-28 16:45:30 +01:00
Giuseppe Graziano
0bc95be9cc
Remove ignored-links after 26.5.0
...
Closes #44810
Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
2026-01-28 15:08:08 +00:00
Pedro Igor
b9243a7270
Only enable JS policies if the scripts feature is enabled
...
Closes #44132
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2026-01-28 12:28:32 +01:00
Steven Hawkins
38b5466093
fix: aligns our dev http-host default behavior with that of quarkus ( #45691 )
...
closes : #42876
Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
2026-01-27 16:51:47 +01:00
Martin Bartoš
eac504cce5
OTEL: Ability to specify headers for exporters
...
Closes #45220
Co-authored-by: Ryan Emerson <remerson@ibm.com>
Signed-off-by: Martin Bartoš <mabartos@redhat.com>
2026-01-27 10:36:18 +00:00
Steven Hawkins
77704a91b6
fix: adding support for xforwarded prefix ( #45699 )
...
closes : #35298
Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2026-01-26 18:14:54 +01:00
Tomáš Kyjovský
b247ef12cd
Fix indentation in sample Keycloak CR YAML in Operator rolling updates doc
...
Closes #45755
Signed-off-by: Tomas Kyjovsky <tkyjovsk@ibm.com>
2026-01-26 16:52:27 +01:00
Pedro Ruivo
2f4f36eabc
Add realm id column to offline_client_session table
...
Closes #44424
Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
2026-01-23 16:28:34 +01:00
Alexander Schwartz
e278a2f6fd
Changing default clock skew for not-issued-before to 10 seconds
...
Closes #45620
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
2026-01-22 19:11:10 +01:00
Martin Bartoš
57f0b15c80
OTEL: Add Telemetry options to Keycloak CR ( #45397 )
...
* OTEL: Add Telemetry options to Keycloak CR
Closes #45348
Signed-off-by: Martin Bartoš <mabartos@redhat.com>
Co-authored-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
* Add validation to resource attributes
Signed-off-by: Martin Bartoš <mabartos@redhat.com>
* Avoid unnecessary warning logs during the operator tests execution
Closes #45623
Signed-off-by: Martin Bartoš <mabartos@redhat.com>
* Update docs/documentation/upgrading/topics/changes/changes-26_6_0.adoc
Signed-off-by: Václav Muzikář <vaclav@muzikari.cz>
---------
Signed-off-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Václav Muzikář <vaclav@muzikari.cz>
Co-authored-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
2026-01-22 16:02:06 +00:00
