mirror of https://github.com/keycloak/keycloak.git synced 2026-05-28 04:13:22 -04:00

Gestion d'identité et SSO

Find a file

dependabot[bot] e79ce1804d Bump actions/checkout from 4.2.2 to 6.0.2 Bumps [actions/checkout](https://github.com/actions/checkout) from 4.2.2 to 6.0.2. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v4.2.2...de0fac2e4500dabe0009e67214ff5f5447ce83dd) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: 6.0.2 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>		2026-04-20 11:21:18 +02:00
.github	Bump actions/checkout from 4.2.2 to 6.0.2	2026-04-20 11:21:18 +02:00
.idea	Add Intellij project icon	2023-09-18 12:39:16 +02:00
.mvn	Handle special characters in mvnw.cmd Windows paths	2026-04-07 18:24:21 +02:00
adapters	Ensure that an encrypted assertion is signed if response is not signed (#355 ) (#46929 )	2026-03-09 10:25:27 +01:00
authz	Also deploy keycloak-authz-client-tests when deploy-testsuite profile is active	2026-04-08 17:17:13 +02:00
authzen	Revert KeycloakProcessor changes and add empty beans.xml	2026-04-17 10:41:45 -03:00
boms	Add Spotless plugin with removeUnusedImports check enabled	2025-10-13 13:32:01 +02:00
common	AuthZen Evaluation API	2026-04-17 10:41:45 -03:00
core	[OID4VCI-HAIP] Pass oid4vci-1_0-issuer-metadata_test	2026-04-10 13:54:43 +02:00
crypto	Support Java 25 with FIPS enabled (#47581 )	2026-04-01 09:57:25 +02:00
dependencies	Add missing artifact descriptions to allow Maven Central Portal Publisher pass validation process. (#40822 )	2025-08-12 16:50:17 +02:00
distribution	fix: creating a cleaner module for use by java clients (#47874 )	2026-04-16 15:18:41 +02:00
docs	Update password after email verification during registration of users (#47538 )	2026-04-17 15:15:48 +02:00
federation	Fix NPE when synchronizing LDAP user attributes	2026-04-06 10:58:27 -03:00
integration	fix: creating a cleaner module for use by java clients (#47874 )	2026-04-16 15:18:41 +02:00
js	Fix duplicated resource on current and next page in Auth Resources (#47446 )	2026-04-17 18:59:59 +02:00
misc	Update tests in common to use JUnit 6	2026-04-09 21:52:47 +02:00
model	Adding staleness concept to JDBC_PING	2026-04-17 11:19:11 -03:00
operator	fix: creating a cleaner module for use by java clients (#47874 )	2026-04-16 15:18:41 +02:00
quarkus	Revert KeycloakProcessor changes and add empty beans.xml	2026-04-17 10:41:45 -03:00
rest	fix: creating a cleaner module for use by java clients (#47874 )	2026-04-16 15:18:41 +02:00
saml-core	Ensure that an encrypted assertion is signed if response is not signed (#355 ) (#46929 )	2026-03-09 10:25:27 +01:00
saml-core-api	Use MIME decoder instead of the default one to replace deprecated Base64 class	2026-01-09 16:38:09 +01:00
scim	Support for managing members via group resource type	2026-04-02 20:06:12 +02:00
server-spi	More robust handling of the algorithm:none in TokenManager. Tests for tokens using 'alg: none' would fail client authentication	2026-04-17 13:59:29 +02:00
server-spi-private	Update password after email verification during registration of users (#47538 )	2026-04-17 15:15:48 +02:00
services	[OID4VCI] credential_offer_uri can only be consumed once	2026-04-17 17:35:39 +02:00
test-framework	Update password after email verification during registration of users (#47538 )	2026-04-17 15:15:48 +02:00
tests	[OID4VCI] credential_offer_uri can only be consumed once	2026-04-17 17:35:39 +02:00
testsuite	Update password after email verification during registration of users (#47538 )	2026-04-17 15:15:48 +02:00
themes	Pass and use rememberMe option in passkeys authenticators	2026-04-15 10:28:56 -03:00
util	Implement forced password change for LDAP federated user (password policy control) (#15253 )	2026-02-20 09:15:51 -03:00
.editorconfig	Proposed import order (#43432 )	2025-11-14 09:34:49 +01:00
.gitattributes	enforce LF line endings on *.tsx files (#45997 )	2026-02-18 10:28:55 +00:00
.gitignore	[OID4VCI] Credential Offer must be created by Issuer not Holder (#44255 )	2025-11-27 16:07:10 +01:00
.gitleaks.toml	Updated .gitleaks.toml to ignore false positive in RedirectUtilsTest (#33346 )	2024-09-27 14:32:36 +02:00
ADOPTERS.md	Add Xata to ADOPTERS.md (#40802 )	2025-06-30 19:32:32 +02:00
CONTRIBUTING.md	Update contributors guidelines (#46904 )	2026-03-09 09:03:31 +01:00
get-version.sh	Make shebang in bash scripts consistent (#37369 )	2026-02-17 11:32:28 +01:00
GOVERNANCE.md	Update governance model around changes in maintainership (#29292 )	2024-05-22 08:24:10 +02:00
LICENSE.txt	Added text version of ASL2 license	2019-11-08 12:43:10 +01:00
MAINTAINERS.md	Add Steven Hawkins as a maintainer (#45144 )	2026-01-05 16:32:14 +01:00
maven-settings.xml	[KEYCLOAK-11764] Upgrade to Wildfly 19	2020-04-24 08:19:43 -03:00
mvnw	Handle special characters in mvnw.cmd Windows paths	2026-04-07 18:24:21 +02:00
mvnw.cmd	Handle special characters in mvnw.cmd Windows paths	2026-04-07 18:24:21 +02:00
pom.xml	AuthZen Evaluation API	2026-04-17 10:41:45 -03:00
PR-CHECKLIST.md	Introduce CODEOWNERS (#16637 )	2023-01-30 13:05:45 +01:00
README.md	Add CoC to README (#47964 )	2026-04-10 23:34:47 +02:00
SECURITY-INSIGHTS.yml	Provide an OpenSSF security insights manifest file	2024-02-15 11:02:33 -03:00
set-version.sh	Make shebang in bash scripts consistent (#37369 )	2026-02-17 11:32:28 +01:00

README.md

Open Source Identity and Access Management

Add authentication to applications and secure services with minimum effort. No need to deal with storing users or authenticating users.

Keycloak provides user federation, strong authentication, user management, fine-grained authorization, and more.

Help and Documentation

Documentation
User Mailing List - Mailing list for help and general questions about Keycloak
Join #keycloak for general questions, or #keycloak-dev on Slack for design and development discussions, by creating an account at https://slack.cncf.io/.

Reporting Security Vulnerabilities

If you have found a security vulnerability, please look at the instructions on how to properly report it.

Reporting an issue

If you believe you have discovered a defect in Keycloak, please open an issue. Please remember to provide a good summary, description as well as steps to reproduce the issue.

Getting started

To run Keycloak, download the distribution from our website. Unzip and run:

bin/kc.[sh|bat] start-dev

Alternatively, you can use the Docker image by running:

docker run quay.io/keycloak/keycloak start-dev

For more details refer to the Keycloak Documentation.

Building from Source

To build from source, refer to the building and working with the code base guide.

Testing

To run tests, refer to the running tests guide.

Writing Tests

To write tests, refer to the writing tests guide.

Contributing

Before contributing to Keycloak, please read our contributing guidelines. Participation in the Keycloak project is governed by the CNCF Code of Conduct.

Joining a community meeting is a great way to get involved and help shape the future of Keycloak.

Code of Conduct

We are committed to providing a safe, welcoming, and constructive environment for all Keycloak contributors and users. To protect this space, we actively enforce our Code of Conduct. If you wish to report an incident or appeal a moderation decision, please email keycloak-coc@googlegroups.com.

Other Keycloak Projects

Keycloak - Keycloak Server and Java adapters
Keycloak QuickStarts - QuickStarts for getting started with Keycloak
Keycloak Node.js Connect - Node.js adapter for Keycloak

License

Apache License, Version 2.0