* add labels and annotations to service monitor (serviceMonitorSpec)
closes#42626
Signed-off-by: Gilvan Filho <gilvan.sfilho@gmail.com>
* add labels and annotations to service monitor (serviceMonitorSpec)
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Signed-off-by: Gilvan Filho <gilvan.sfilho@gmail.com>
---------
Signed-off-by: Gilvan Filho <gilvan.sfilho@gmail.com>
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Closes#47332
Signed-off-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Closes#47187
Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Signed-off-by: Pedro Ruivo <pruivo@users.noreply.github.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Co-authored-by: Steven Hawkins <shawkins@redhat.com>
Closes#46164
Signed-off-by: Peter Skopek <peter.skopek@ibm.com>
Update model/infinispan/src/main/java/org/keycloak/models/sessions/infinispan/changes/remote/updater/loginfailures/LoginFailuresUpdater.java
Co-authored-by: Pedro Ruivo <pruivo@users.noreply.github.com>
Signed-off-by: Peter Skopek <peter.skopek@ibm.com>
Add recovery codes to the list of brute force checked authenticators.
Closes#46164
Signed-off-by: Peter Skopek <peter.skopek@ibm.com>
Closes#47105
Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
* Downgrade server container image back to OpenJDK 21
Closes#46812
Signed-off-by: Václav Muzikář <vmuzikar@ibm.com>
* Remove JDK downgrade note, rename attribute
Signed-off-by: Václav Muzikář <vmuzikar@ibm.com>
---------
Signed-off-by: Václav Muzikář <vmuzikar@ibm.com>
Add the missing Users FGAP scope alias from manage-group-membership to Groups manage-membership so deny permissions on group members apply during user membership updates.
Add a regression test covering a protected group member, an unrelated user, and the no-mutation postcondition after a forbidden request.
Closes keycloak#46693
closes: #46633
* Add support for configurable Kubernetes Service port and name in Keycloak CRD
- Add serviceHttpPort and serviceHttpsPort fields to HttpSpec for configuring the service port independently of container port
- Add serviceName field to HttpSpec for customizing the service name
- Update KeycloakServiceDependentResource to use service ports with targetPort
- Update KeycloakClientBaseController to use service ports for admin URL
- Add unit tests and update test YAML
Co-authored-by: shawkins <2475669+shawkins@users.noreply.github.com>
* Remove HasMetadata getServiceName overload; add integration test for custom service name and port
Co-authored-by: shawkins <2475669+shawkins@users.noreply.github.com>
* refining the integration test
Signed-off-by: Steve Hawkins <shawkins@redhat.com>
* Add documentation for configurable Service name and port in operator guide and release notes
Co-authored-by: shawkins <2475669+shawkins@users.noreply.github.com>
* Apply review suggestions to documentation wording
Co-authored-by: shawkins <2475669+shawkins@users.noreply.github.com>
---------
Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com>
Co-authored-by: shawkins <2475669+shawkins@users.noreply.github.com>
Co-authored-by: Steve Hawkins <shawkins@redhat.com>
* Kubernetes Truststore moved to the server
Signed-off-by: Sebastian Łaskawiec <sebastian.laskawiec@gmail.com>
* Update quarkus/config-api/src/main/java/org/keycloak/config/TruststoreOptions.java
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
* addressing review comments and updating upgrade instructions
Signed-off-by: Steve Hawkins <shawkins@redhat.com>
* updating help command output
Signed-off-by: Steve Hawkins <shawkins@redhat.com>
* Update docs/guides/server/keycloak-truststore.adoc
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Signed-off-by: Sebastian Łaskawiec <sebastian.laskawiec@gmail.com>
* Comments addressed
Signed-off-by: Sebastian Łaskawiec <sebastian.laskawiec@gmail.com>
* lint errors fix
Signed-off-by: Sebastian Łaskawiec <sebastian.laskawiec@gmail.com>
* Update docs/documentation/upgrading/topics/changes/changes-26_6_0.adoc
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
---------
Signed-off-by: Sebastian Łaskawiec <sebastian.laskawiec@gmail.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Co-authored-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Closes#46671
Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Closes#46557
Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Closes#19453
Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Closes#45812
Signed-off-by: Marie Daly <marie.daly1@ibm.com>
Signed-off-by: Marie Daly <mdaly@redhat.com>
Co-authored-by: Ricardo Martin <rmartinc@redhat.com>
Closes#46471
Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
