tre2man
024a9026e6
Search realms by displayName
...
closes #45292
Signed-off-by: tre2man <kimtree3940@gmail.com>
2026-04-20 19:34:05 -03:00
Martin Kanis
493ed19799
Make IDP alias immutable in REST API
...
Closes #47733
Signed-off-by: Martin Kanis <mkanis@redhat.com>
2026-04-20 16:43:45 -03:00
Alexander Schwartz
57917d982c
Remove preview feature sections from Kubernetes docs
...
Closes #48259
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
2026-04-20 13:01:49 +02:00
Marek Posolda
72e0c26a35
Update password after email verification during registration of users ( #47538 )
...
closes #45568
Signed-off-by: mposolda <mposolda@gmail.com>
2026-04-17 15:15:48 +02:00
Ricardo Martin
08432969a4
Add info note to the X.509 Canonical DN representation enabled option
...
Closes #48123
Signed-off-by: rmartinc <rmartinc@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2026-04-17 14:33:29 +02:00
Oluwatobi Mustapha
cb0709694f
Allow organization IdPs for members linked to another broker
...
Closes #47431
2026-04-15 08:57:38 -03:00
Pedro Igor
2cc97442ad
Running browser flow organization migration on 26.6.1
...
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2026-04-14 14:58:38 -03:00
Ricardo Martin
d4dfca958b
Disable automatic redirect handling in the HTTP provider
...
Closes #47276
Signed-off-by: rmartinc <rmartinc@redhat.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>
2026-04-14 15:12:26 +02:00
Alexander Schwartz
16d72a5980
Fixing explicit docs anchor for organizations
...
Closes #48015
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
2026-04-14 09:19:29 -03:00
Alexander Schwartz
f4f452693f
Fixing product name convention in the docs
...
Closes #47993
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
2026-04-13 13:03:48 -04:00
fjf2002
125645b7ec
Update migrate_db.adoc ( #47894 )
...
Signed-off-by: fjf2002 <franz-josef.faerber@stmuk.bayern.de>
2026-04-13 09:01:15 -04:00
Asish Kumar
9130641970
Rename 'Pre-Authorized Code Lifespan' to 'Credential Offer Lifespan' ( #47563 )
...
Weblate Sync / Trigger Weblate to pull the latest changes (push) Has been cancelled
Closes #47274
Signed-off-by: Asish Kumar <officialasishkumar@gmail.com>
Signed-off-by: Marek Posolda <mposolda@gmail.com>
Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>
Co-authored-by: Marek Posolda <mposolda@gmail.com>
2026-04-10 17:10:14 +02:00
vramik
de81c0a421
Fix requesting tokens with multiple organization scopes
...
Fixes #45900
Signed-off-by: vramik <vramik@redhat.com>
2026-04-09 07:55:28 -03:00
Giuseppe Graziano
06f32bd7aa
Remove ignored-links after 26.6.0
...
Closes #45822
Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
2026-04-09 09:03:57 +00:00
Thomas Riccardi
3d2ab9cec7
fix typo extraneous $ template in doc ( #47861 )
...
Closes #47867
`${project_name}` is rendered `$Keycloak`, cf https://www.keycloak.org/docs/26.6.0/server_admin/#_identity_broker_kubernetes
Signed-off-by: Thomas Riccardi <thomas@deepomatic.com>
2026-04-08 20:05:10 +02:00
forkimenjeckayang
f9e1879d4b
[OID4VCI] Fix OID4VCI token typ defaults by credential format ( #47779 )
...
closes #45420
Signed-off-by: forkimenjeckayang <forkimenjeckayang@gmail.com>
2026-04-08 16:49:44 +02:00
Marek Posolda
f29249f3d7
Improve performance of scope processing in TokenManager. Limit for maximum length of OIDC parameters in Token endpoint ( #478 ) ( #47799 )
...
closes #47716
Closes CVE-2026-4634
(cherry picked from commit b455ee4f28
2026-04-07 11:17:17 +02:00
Rahul Ramkumar
799699a808
Add KCRAW_ prefix for environment variables to preserve literal values ( #47197 )
...
Closes #46657
Signed-off-by: Rahul Ramkumar <rahulram226@gmail.com>
2026-04-07 10:12:18 +02:00
Alexander Schwartz
dee672728a
Fixing link as it has changed and is redirecting ( #47793 )
...
Closes #47792
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
2026-04-07 09:52:45 +02:00
Alexander Schwartz
97fce120ac
Finalizing release notes and migration guide for 26.6 ( #47791 )
...
Closes #47790
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
2026-04-07 09:44:13 +02:00
Steven Hawkins
51b6f9b291
fix: promotes keycloak and realm import to v2beta1 ( #45840 )
...
closes : #45795
Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2026-04-04 16:46:28 +02:00
Václav Muzikář
3560286f0d
Update docs to better reflect FIPS support with Java 25. ( #47699 )
...
Signed-off-by: Václav Muzikář <vmuzikar@ibm.com>
2026-04-02 15:04:15 +02:00
Stefan Guilhen
7e8eb64a52
Add troubleshooting section to workflows documentation
...
- also add workflows as supported in release notes
Closes #47692
Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
2026-04-02 00:05:04 +02:00
Václav Muzikář
d7238a77ba
Clarify Java 25 support scope in docs ( #47539 )
...
Closes #47537
Signed-off-by: Václav Muzikář <vmuzikar@ibm.com>
2026-04-01 15:20:37 +02:00
Stefan Guilhen
031b6604a2
Ensure all workflow steps are described in the documentation.
...
- also change name of add/remove required action providers to better align with other step providers.
Closes #47655
Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
2026-04-01 09:10:59 -03:00
Takashi Norimatsu
a504df1a1c
Update release-notes for CIMD
...
closes #47667
Signed-off-by: Takashi Norimatsu <takashi.norimatsu.ws@hitachi.com>
2026-04-01 12:42:53 +02:00
Giuseppe Graziano
46d1c4fa5a
Sender constrained tokens for token exchange
...
Closes #46092
Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
2026-04-01 10:23:51 +02:00
Martin Bartoš
c0458c0801
Provide documentation for customizable log service properties
...
Closes #47586
Co-authored-by: Daniele Mams <mammarella.daniele@gmail.com>
Signed-off-by: Martin Bartoš <mabartos@redhat.com>
2026-03-31 11:16:29 +02:00
Stefan Guilhen
d24d2697aa
Add SPI option to setup the start time of the workflows step runner task
...
Closes #47540
Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
2026-03-27 16:30:15 -03:00
mposolda
5b82688883
Moving identity-broker-api to 'security and standards' section of release notes for 26.6.0
...
Weblate Sync / Trigger Weblate to pull the latest changes (push) Waiting to run
closes #45839
Signed-off-by: mposolda <mposolda@gmail.com>
2026-03-26 17:46:32 +01:00
Alexander Schwartz
ec07458cd5
Disable async startup when health probe is not enabled
...
Closes #47416
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
2026-03-26 10:11:07 -03:00
rmartinc
b6fe6c2db8
Documentation for brokering API V2 and make it preview
...
Closes #46590
Closes #47259
Signed-off-by: rmartinc <rmartinc@redhat.com>
2026-03-26 11:13:58 +01:00
mposolda
02be20e9fa
Inaccuracies in client federation documentation and tooltips
...
closes #47444
Signed-off-by: mposolda <mposolda@gmail.com>
2026-03-26 10:01:29 +01:00
Arman Taheri
9dbdde84d6
fix typo in documents ( #47420 )
...
Closes #47412
2026-03-25 08:01:25 +00:00
Stian Thorgersen
763bade3bf
Fix link to Facebook docs ( #47422 )
...
Signed-off-by: stianst <stianst@gmail.com>
2026-03-25 08:57:44 +01:00
mposolda
3f1567c7af
Update authentication section in the Server Admin Guide Features section
...
Weblate Sync / Trigger Weblate to pull the latest changes (push) Waiting to run
closes #47393
Signed-off-by: mposolda <mposolda@gmail.com>
2026-03-24 19:26:50 +01:00
Gilvan Filho
ed66ac6b0c
add labels and annotations to service monitor (serviceMonitorSpec) ( #47298 )
...
* add labels and annotations to service monitor (serviceMonitorSpec)
closes #42626
Signed-off-by: Gilvan Filho <gilvan.sfilho@gmail.com>
* add labels and annotations to service monitor (serviceMonitorSpec)
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Signed-off-by: Gilvan Filho <gilvan.sfilho@gmail.com>
---------
Signed-off-by: Gilvan Filho <gilvan.sfilho@gmail.com>
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
2026-03-23 17:35:44 +00:00
Alexander Schwartz
86a44bd378
Review release notes about missing items ( #47359 )
...
* Review release notes about missing items
Closes #47358
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
* Apply suggestion from @stianst
Signed-off-by: Stian Thorgersen <stianst@gmail.com>
* Apply suggestion from @stianst
Signed-off-by: Stian Thorgersen <stianst@gmail.com>
---------
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Signed-off-by: Stian Thorgersen <stianst@gmail.com>
Co-authored-by: Stian Thorgersen <stianst@gmail.com>
2026-03-23 07:58:34 +01:00
Martin Bartoš
6db7608697
Missing release notes entry for OpenTelemetry span attributes location change ( #47333 )
...
Closes #47332
Signed-off-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>
2026-03-21 20:44:03 +01:00
Tero Saarni
50517cf933
Reload password blacklist file on change without restart
...
Fixes #47163
Signed-off-by: Tero Saarni <tero.saarni@est.tech>
2026-03-21 20:07:00 +01:00
Ricardo Martin
b93695eb90
Add versioning to identity brokering api feature ( #47281 )
...
Closes #47254
Signed-off-by: rmartinc <rmartinc@redhat.com>
2026-03-20 16:55:56 +01:00
Steven Hawkins
29d00b07f3
fix: use to values ahead of keycloak defaults ( #46871 )
...
* fix: use `to` values ahead of keycloak defaults
closes : #46728
Signed-off-by: Steve Hawkins <shawkins@redhat.com>
* Update docs/documentation/upgrading/topics/changes/changes-26_6_0.adoc
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
* Apply suggestion from @shawkins
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
---------
Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
2026-03-20 14:42:49 +01:00
Pedro Ruivo
c93b6a7e6c
Asynchronous server initialization
...
Closes #47187
Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Signed-off-by: Pedro Ruivo <pruivo@users.noreply.github.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Co-authored-by: Steven Hawkins <shawkins@redhat.com>
2026-03-19 21:23:46 +01:00
Ruchika Jha
37c9fd4de0
Added implementation for CLI option for database connection timeout and provide it into quarkus.datasource.jdbc.login-timeout
...
Closes #47140
Signed-off-by: Ruchika <ruchika.jha1@ibm.com>
2026-03-19 21:04:35 +01:00
Alexander Schwartz
b9cd14f931
Regroup the release notes by category
...
Closes #47239
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
2026-03-18 14:29:17 +01:00
Peter Skopek
d11136f671
Separate password and OTP brute force protection to prevent OTP bypass attacks by default
...
Closes #46164
Signed-off-by: Peter Skopek <peter.skopek@ibm.com>
Update model/infinispan/src/main/java/org/keycloak/models/sessions/infinispan/changes/remote/updater/loginfailures/LoginFailuresUpdater.java
Co-authored-by: Pedro Ruivo <pruivo@users.noreply.github.com>
Signed-off-by: Peter Skopek <peter.skopek@ibm.com>
Add recovery codes to the list of brute force checked authenticators.
Closes #46164
Signed-off-by: Peter Skopek <peter.skopek@ibm.com>
2026-03-17 18:57:37 +01:00
Ricardo Martin
3c7582f318
Broker token API for saml ( #47087 )
...
Closes #46589
Signed-off-by: rmartinc <rmartinc@redhat.com>
2026-03-17 18:29:48 +01:00
Alexander Schwartz
ac89a8c5e5
Move migration changes to already published release
...
Closes #47217
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
2026-03-17 15:01:13 +01:00
Stian Thorgersen
607096fd4e
Promote federated client authentication, including OIDC and Kube to fully supported
...
Closes #42634 , closes #42635 , closes #42826 , closes #44412
Signed-off-by: stianst <stianst@gmail.com>
2026-03-17 05:15:13 +01:00
Ricardo Martin
a712d01234
Change links from issues.redhat.com to redhat.atlassian.net ( #47181 )
...
Closes #47179
Signed-off-by: rmartinc <rmartinc@redhat.com>
2026-03-16 14:58:08 +01:00
