KeyCloak/keycloak
1
0
Fork 0
mirror of https://github.com/keycloak/keycloak.git synced 2026-05-26 13:50:48 +00:00
Code Issues Packages Projects Releases Wiki Activity
30,289 Commits 34 Branches 307 Tags
copilot/refactor-java-keystore-provider
Commit Graph

1613 Commits

Author SHA1 Message Date
Pedro Ruivo 9430a3f928 Add CLI option for tx and migration timeout 
Closes #19453

Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
 2026-02-27 16:11:18 +00:00
Michal Vavřík d2dc582b1c Increase allowed additions to legacy testsuite to 100 lines (#46635) (#46563) 
Signed-off-by: stianst <stianst@gmail.com>
Signed-off-by: Michal Vavřík <michal.vavrik@aol.com>
 2026-02-27 15:21:08 +01:00
Lukas Hanusovsky accf95cfd9 Keycloak Test Framework - 26.6.0 release notes (#46611) 
Signed-off-by: Lukas Hanusovsky <lhanusov@redhat.com>
 2026-02-26 14:08:57 +01:00
Marie Daly 193a423571 invalid_grant errors now return HTTP 400 (#46528) 
Closes #45812


Signed-off-by: Marie Daly <marie.daly1@ibm.com>
Signed-off-by: Marie Daly <mdaly@redhat.com>
Co-authored-by: Ricardo Martin <rmartinc@redhat.com>
 2026-02-25 18:03:36 +01:00
Giuseppe Graziano ebfc294c85 Executor for client uris pattern validation (#46300) 
Closes #45645

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
 2026-02-24 16:26:00 +01:00
Ricardo Martin 2bd386842a Step up authentication for saml - preview (#44185) 
Closes #10155


Signed-off-by: rmartinc <rmartinc@redhat.com>
 2026-02-23 19:57:00 +01:00
Pedro Igor 3e3a7befd1 Initial code for SCIM core and testsuite (#45978) 
Closes #45712

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2026-02-23 18:22:25 +01:00
Alexander Schwartz 27da1c6d0f Adding the Indonesian translation 
Closes #46430

Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
 2026-02-23 14:13:21 -03:00
Pedro Ruivo be175346cd Aggregate client-id field for improved Infinispan query 
Closes #46471

Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
 2026-02-23 16:43:23 +01:00
Steven Hawkins db7c0422ab fix: adding generic operator upgrade instructions (#46380) 
* fix: adding generic operator upgrade instructions

closes: #40902

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update docs/guides/operator/installation.adoc

Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
 2026-02-20 18:36:12 +01:00
Peter Skopek 248c635fda Rename Docker Registry to Distribution Registry 
Closes #45163

Signed-off-by: Peter Skopek <peter.skopek@ibm.com>
 2026-02-20 13:57:30 +01:00
Tero Saarni 128384ca15 Implement forced password change for LDAP federated user (password policy control) (#15253) 
* Add limited support for LDAP password policy control

Signed-off-by: Tero Saarni <tero.saarni@est.tech>
 2026-02-20 09:15:51 -03:00
Ricardo Martin 4f90ef67f6 Limit the inflating size for the SAML redirect binding 
Closes #46372

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2026-02-17 18:40:11 +00:00
Michal Vavřík 8e816f749c feat: Update container images to use OpenJDK 25 (#46386) 
This PR is mostly based on https://github.com/vmuzikar/keycloak/commit/303446b465f2896b269df42388a685ec69b22560.
Additionally, I made few tweaks to documentation and introduce a doc variable for the recommended Java version so limit required changing when migrating the recommended JDK version.

* Closes: https://github.com/keycloak/keycloak/issues/45830

Signed-off-by: Michal Vavřík <michal.vavrik@aol.com>
 2026-02-17 15:35:46 +01:00
Pedro Ruivo d04d833ec5 Update external Infinispan metrics documentation 
Closes #46390

Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>
 2026-02-17 10:34:17 +00:00
Akbar Husain 3f62bb4d2b Make shebang in bash scripts consistent (#37369) 
Closes #34983

Signed-off-by: akbarhusainpatel <apatel@intermiles.com>
 2026-02-17 11:32:28 +01:00
Alexander Schwartz ac83dfda42 Notify language maintainers on PR merge 
Close #46344

Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: Robin Meese <39960884+robson90@users.noreply.github.com>
 2026-02-17 11:19:32 +01:00
Ruchika Jha f92c27e26d Make rolling updates for patch releases fully supported and Updated docs, release notes and upgrading guide for zero-downtime patch releases 
Closes #45381
Closes #45756

Signed-off-by: Ruchika <ruchika.jha1@ibm.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>
 2026-02-16 15:11:16 +00:00
Ruchika Jha 4e0085954f Improved documentation for running the keycloak test mail server locally 
Closes #45837

Signed-off-by: Ruchika <ruchika.jha1@ibm.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>
 2026-02-16 13:30:36 +01:00
Stefan Guilhen aeda5c4f01 Increase workflow executor timeout to 5 seconds by default 
Closes #46332

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2026-02-13 14:33:31 -03:00
Pedro Igor 5c67b60920 Fixing authorization service docs to remove references to the default settings 
Closes #46159

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2026-02-13 17:18:15 +01:00
Stefan Guilhen c17d9d0d0c Add section about handling failures to the workflows documentation 
Closes #45175

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2026-02-13 12:01:00 -03:00
Ruchika Jha e82e107b85 Enable graceful HTTP shutdown and document default behavior 
Closes #43589

Signed-off-by: Ruchika <ruchika.jha1@ibm.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>
 2026-02-13 14:28:49 +00:00
Pedro Igor 8df79202a0 Fixing organization members docs to mention they can join multiple organizations 
Closes #46040

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2026-02-13 14:54:10 +01:00
Ricardo Martin bef8f7f0fd Move upgrading note for the serverinfo to 26.5.4 
Closes #46267

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2026-02-12 14:50:45 +01:00
Steven Hawkins 3aa5ab0072 fix: updating the fix for docker ulimits (#46254) 
it will now be applied by default

closes: #44232

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2026-02-12 10:28:53 +01:00
Steven Hawkins 783ea304af fix: document passthrough backchannel limitation (#45915) 
closes: #45606

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2026-02-11 10:44:19 -05:00
NAMAN JAIN 5967093142 Move HTTP access logs to data/log directory (#45991) 
* Move HTTP access logs to data/log directory

The HTTP access log file is now written to the /data/log directory, alongside server logs.

Directory is created at runtime initialization if it does not exist.

Closes #45629

Signed-off-by: NAMAN JAIN <naman.049259@tmu.ac.in>

* Update help command expectations for HTTP access log directory change

Signed-off-by: NAMAN JAIN <naman.049259@tmu.ac.in>

* Apply suggestions from code review

Signed-off-by: Martin Bartoš <mabartos@redhat.com>

* Fix build

Signed-off-by: Martin Bartoš <mabartos@redhat.com>

---------

Signed-off-by: NAMAN JAIN <naman.049259@tmu.ac.in>
Signed-off-by: Martin Bartoš <mabartos@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
 2026-02-11 11:50:22 +01:00
Václav Muzikář d45dfeb44a Java 25 support (#45872) 
Closes #45905

Signed-off-by: Václav Muzikář <vmuzikar@ibm.com>
 2026-02-10 23:35:35 +00:00
Giuseppe Graziano d6f07f27ec User validation in JWT Authorization Grant (#46149) 
Closes #46144

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
 2026-02-10 13:09:05 +00:00
Giuseppe Graziano 6fd372cbe6 Doc for JWT auth grant with Google (#45895) 
Closes #45654


Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
 2026-02-10 13:07:37 +01:00
Marie Daly 7d6108d4b9 Redirect Wildcard changes and more https checks to secure-client-executor (#46082) 
Closes #45587


Signed-off-by: Marie Daly <marie.daly1@ibm.com>
 2026-02-10 13:00:06 +01:00
rmartinc d701329f49 Move upgrading note for SAML to 26.5.4 
Closes #46150

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2026-02-10 11:01:45 +01:00
Ricardo Martin f0381f8482 Check SubjectConfirmationData element for bearer type 
Closes #45646

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2026-02-10 08:20:17 +01:00
andymunro 88eb05d114 Update Operator instructions for Custom Access (#46036) 
Closes #45992

Signed-off-by: AndyMunro <amunro@redhat.com>
 2026-02-09 12:45:15 +01:00
Giuseppe Graziano d95f456b4f Inaccuracy in the client registration guide 
Closes #45738

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
 2026-02-09 09:19:15 +01:00
Pedro Ruivo 02c6499d96 Deprecate unused methods in UserSessionProvider 
Closes #45823

Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
 2026-02-06 19:04:19 +01:00
Pedro Ruivo 1ee5709eab Revisit retransmission metrics documentation 
Closes #46059

Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>
 2026-02-06 11:31:10 +01:00
Hugo Hakim Damer 292a177b10 [OID4VCI] Add support for nested claims in OID4VCI user attribute mapper (#45751) 
Closes #45748


Signed-off-by: Hugo Hakim Damer <HugoHakim.Damer@governikus.de>
 2026-02-06 10:57:12 +01:00
rmartinc 69fabcf902 Documentation changes to deprecate Token Exchange V1 
Closes #45792

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2026-02-05 17:32:04 +01:00
Aggelos Sachtouris 28bb0b2cd9 Create documentation for unlink user workflow step 
Signed-off-by: Aggelos Sachtouris <aggelos_sachtouris@hotmail.com>
 2026-02-05 12:22:37 -03:00
Stefan Guilhen 63d9a19982 Allow step-runner-task-timeout to be specified using ISO-8601 format 
Closes #45987

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2026-02-03 14:53:19 -03:00
Stefan Guilhen c379192bf8 Adjust event names in workflows documentation to match the new event provider names 
Closes #45968

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2026-02-03 14:47:41 -03:00
Martin Bartoš 3e568fc81b OTEL: Use suggested 'code.function.name' for span attributes 
Closes #45944

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
 2026-02-03 15:56:48 +01:00
Ryan Emerson e3c4ec6112 Document the minimum required ServiceMonitor CRD version 
Signed-off-by: Ryan Emerson <remerson@ibm.com>
 2026-02-03 14:55:11 +00:00
rmartinc c63f54ba3a Client policy executor to allow extra audiences for JWT authorization grant 
Closes #45180

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2026-02-03 13:39:31 +01:00
Ryan Emerson 47408e8620 Update Infinispan CRs in multi-cluster architecture to use InPlaceRolling upgrade strategy 
Closes #45424

ISPN16 related

Signed-off-by: Ryan Emerson <remerson@ibm.com>
 2026-02-03 12:38:57 +01:00
Stefan Guilhen 43b5b3484b Fix: use valid format for condition used in the documentation 
Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
 2026-02-02 10:15:18 -03:00
rmartinc d4e9b16ea9 Include version in system-info for manage-realm and restrict view-system mapping 
Closes #45776

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2026-02-02 12:40:57 +01:00
Pedro Igor 13cf35ded3 Only realm admins can manage workflows 
Closes #45875

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2026-01-30 21:18:06 +01:00