mirrors/keycloak
1
0
Fork 0
mirror of https://github.com/keycloak/keycloak.git synced 2026-01-25 16:42:34 +00:00
Code Issues Packages Projects Releases Wiki Activity
NaN Commits 24 Branches 291 Tags
25d596e2163dd8faadbc3962b0987dbb148a2bf1
Commit Graph

196 Commits

Author SHA1 Message Date
github-actions[bot]
25d596e216 Set version to 26.0.17 2025-11-03 15:30:01 +00:00
Martin Bartoš
d531377dd8 ExternalLinks are broken in documentation 
Closes #41491

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
 2025-09-11 15:19:30 +02:00
mposolda
f63a870c76 Add option 'Requires short state parameter' to OIDC IDP 
closes #40237

Signed-off-by: mposolda <mposolda@gmail.com>
(cherry picked from commit 274afa88fa)
 2025-07-14 08:43:44 +02:00
rmartinc
154206c5f3 Define a max expiration window for Signed JWT client authentication 
Closes #38576

Signed-off-by: rmartinc <rmartinc@redhat.com>
(cherry picked from commit a10c8119d4)
 2025-04-03 13:24:12 +02:00
Jon Koops
8ae5205ae3 Fix broken external link in Gitlab IdP docs (#37435) (#37438) 
Closes #37434

Signed-off-by: Jon Koops <jonkoops@gmail.com>
(cherry picked from commit 3ccc88628f)
 2025-02-18 11:32:48 +00:00
Ricardo Martin
707a556828 Force login in reset-credentials to federated users 
Closes #37207

Signed-off-by: rmartinc <rmartinc@redhat.com>
(cherry picked from commit 6850f41060)
 2025-02-13 08:31:06 +00:00
Alexander Schwartz
da2fceb699 Outdated documentation reCAPTCHA (#36982) 
Closes #36887

Signed-off-by: Stepan Papazyan <papastepano@gmail.com>
(cherry picked from commit 0c46ad299c)

Co-authored-by: papastepano <papastepano@gmail.com>
 2025-02-03 11:21:52 +01:00
Ricardo Martin
66a6248d51 Provide an option to force login after reset credentials (#36856) 
Closes #36844

Signed-off-by: rmartinc <rmartinc@redhat.com>


Co-authored-by: Ricardo Martin <rmartinc@redhat.com>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
Co-authored-by: Marek Posolda <mposolda@gmail.com>
Signed-off-by: Marek Posolda <mposolda@gmail.com>
 2025-01-29 10:05:00 +01:00
rmartinc
f3b86833fd Check next update time for CRL in certificate validation 
Closes #35983

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2025-01-23 10:30:44 +01:00
Pedro Igor
3e604cf27d Allow enforce that users are members of organizations when authenticating 
Closes #34275

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2025-01-22 21:49:30 +01:00
Ricardo Martin
e0b3b739f3 Add some common headers for the links check in docs 
Closes #36675

Signed-off-by: rmartinc <rmartinc@redhat.com>
(cherry picked from commit 17d2dd58ca)
 2025-01-22 13:42:05 +00:00
Ricardo Martin
37307937c0 Improve the note about group synchronization in sssd (#35812) 
Closes #35643

Signed-off-by: rmartinc <rmartinc@redhat.com>
(cherry picked from commit 769bd6c9d0)
 2025-01-13 17:43:31 +01:00
Alexander Schwartz
d339711346 Changing mis-formatted definition list of hashing algorithms to a table 
Closes #35416

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-12-06 10:53:10 -03:00
Jon Koops
4c2ebfbde6 Use short UUID for ldap components 
Closes #32143

(cherry picked from commit ca1c10f7ba)

Signed-off-by: rmartinc <rmartinc@redhat.com>
Co-authored-by: Ricardo Martin <rmartinc@redhat.com>
 2024-11-22 12:09:52 +01:00
AndyMunro
17863d1d4f Address QE comments on Server Admin Guide 
Closes #34916

Signed-off-by: AndyMunro <amunro@redhat.com>
(cherry picked from commit 205898baf3)
 2024-11-22 11:46:26 +01:00
Peter Zaoral
7bdc16f029 fix: prevent inclusion of characters that could lead to FileVault path traversal (#212) 
Closes: #211

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
Co-authored-by: Václav Muzikář <vmuzikar@redhat.com>
 2024-11-18 09:27:50 +01:00
Gilvan Filho
c5d9edf7b7 add linear strategy to brute force 
closes #25917

Signed-off-by: Gilvan Filho <gilvan.sfilho@gmail.com>
 2024-10-28 10:47:02 -03:00
andymunro
993381cb31 Make organizations chapter available in downstream (#34384) 
Closes #34382

Signed-off-by: AndyMunro <amunro@redhat.com>
(cherry picked from commit 81805fcf70)
 2024-10-28 11:40:15 +01:00
Jake
2ac528916e Small grammatical error in documentation 
Closes #34009

Signed-off-by: Jake <156826184+jlanning-gl@users.noreply.github.com>
 2024-10-17 18:21:47 -03:00
vramik
b7eaa9b0cb Wildcard search not working for custom user attributes 
Closes #32451

Signed-off-by: vramik <vramik@redhat.com>
 2024-10-03 08:48:36 -03:00
Maksim Zvankovich
35eba8be8c Add option to include the organization id in the organization claims 
Closes #32746

Signed-off-by: Maksim Zvankovich <m.zvankovich@nexovagroup.eu>
Co-authored-by: Stefan Guilhen <sguilhen@redhat.com>
 2024-10-03 08:11:36 -03:00
vramik
c1653448f3 [Organizations] Allow orgs to define the redirect URL after user registers or accepts invitation link 
Closes #33201

Signed-off-by: vramik <vramik@redhat.com>
 2024-10-02 07:37:48 -03:00
Jon Koops
21704a70c1 Update documentation and release notes for Keycloak JS (#33409) 
Closes #32843

Signed-off-by: Jon Koops <jonkoops@gmail.com>
 2024-10-01 10:29:23 +02:00
vramik
412f1f85a9 Update Organization documentation 
Closes #33410

Signed-off-by: vramik <vramik@redhat.com>
 2024-10-01 09:29:49 +02:00
Stefan Guilhen
b717810061 Update organizations documentation in the server admin guide 
Closes #33199

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2024-09-27 16:27:54 +02:00
Stefan Guilhen
d87f67b4e6 Fix duplicated screenshots in the Fine grain admin permissions section of the Server Admin Guide 
Closes #31083

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2024-09-27 09:04:01 +02:00
Jon Koops
021a2af2fd Compute SHA-256 digest for PKCE using the Web Crypto API (#33251) 
Closes #33250

Signed-off-by: Jon Koops <jonkoops@gmail.com>
 2024-09-25 16:19:16 +02:00
Jon Koops
188893222f Remove references of statically served Keycloak JS from documentation 
Closes #32821

Signed-off-by: Jon Koops <jonkoops@gmail.com>
 2024-09-12 09:38:00 +02:00
Alexander Schwartz
b88ecc0237 Removing the extra two-minute Window for persistent user sessions (#32660) 
Closes #28418

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Signed-off-by: Michal Hajas <mhajas@redhat.com>
Co-authored-by: Michal Hajas <mhajas@redhat.com>
 2024-09-09 09:28:48 +02:00
Theresa Henze
a1c23fef8c introduce event types to update/remove credentials 
Closes #10114

Signed-off-by: Theresa Henze <theresa.henze@bare.id>
 2024-09-03 18:27:27 +02:00
Thomas Darimont
88a5c96fff Add kc_action to redirect URI after a required action is cancelled (#31925) 
Closes #31894

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
 2024-09-03 14:26:23 +00:00
Michal Hajas
af53af1506 Document persistent sessions are enabled by default 
Closes #32387

Signed-off-by: Michal Hajas <mhajas@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Pedro Ruivo <pruivo@users.noreply.github.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-08-30 09:20:58 +00:00
Yuvi Panda
5210b7e546 Use Google as example, not Google+ 
Google+ no longer exists

Signed-off-by: Yuvi Panda <yuvipanda@gmail.com>
 2024-08-26 10:18:52 +02:00
Pedro Igor
c1f6d5ca64 Support for selecting an organization when requesting the organization scope 
Closes #31438

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-08-21 13:04:58 +02:00
Yoshiyuki Tabata
cb6eb187ac Client Policy - Condition : Client - Client Attribute 
Closes https://github.com/keycloak/keycloak/issues/31766

Signed-off-by: Yoshiyuki Tabata <yoshiyuki.tabata.jy@hitachi.com>
 2024-08-14 09:56:56 +02:00
Alexander Schwartz
d4991ce56f Fix server guide cross-references for downstream docs 
Closes #31947

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
 2024-08-13 14:51:01 -03:00
Tero Saarni
62fd969fe1 Allow requests from local IPv6 addresses 
If administrator selects EXTERNAL for Require SSL setting, allow clear-text
HTTP requests when client is coming from IPv6 link-local or unique local
address (ULA).

Previously only private IPv4 addresses were allowed and private IPv6 addresses
were rejected.

Closes #30678

Signed-off-by: Tero Saarni <tero.saarni@est.tech>
 2024-08-05 16:38:55 +02:00
rmartinc
942d5d0aa3 Convert chapter planning for securing applications and services to guides 
Final removal of the securing_apps documentation
Final checks for links, order and other minor things
Closes #31328

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-08-01 16:45:56 +02:00
rmartinc
b07b120f2a Convert chapter client registration CLI from securing apps into guides 
Closes #31333

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-30 18:30:46 +02:00
Marek Posolda
5b52117351 Documentation for Delete Credential action and related changes (#31719) 
closes #31718


Signed-off-by: mposolda <mposolda@gmail.com>
Signed-off-by: Marek Posolda <mposolda@gmail.com>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2024-07-30 10:05:14 +02:00
Giuseppe Graziano
c3019fb2d3 Move oidc documentation to guides (#31627) 
Closes #31329

Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>
 2024-07-30 09:46:14 +02:00
Pedro Igor
f4b1a5ca88 Updating docs 
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-07-24 15:12:16 -03:00
Maciej Mierzwa
97e89e2071 feature: password age in days policy 
Closes #30210

Signed-off-by: Maciej Mierzwa <dev.maciej.mierzwa@gmail.com>
 2024-07-24 15:12:16 -03:00
rmartinc
9f2eddead8 Re-add notes about not supporting DPoP and holder-of-key in the remaining adapters 
Closes #30874

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-24 11:55:47 +02:00
rmartinc
764ef4831a Release notes and some notes for JavaKeystoreProvider changes 
Closes #31226

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-17 10:44:45 +02:00
Thomas Darimont
e79d10e71e Add missing user event translations to admin-ui 
Fixes #27677

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-07-12 10:04:57 +02:00
Steven Hawkins
4970a9b729 fix: deprecate KEYCLOAK_ADMIN and KEYCLOAK_ADMIN_PASSWORD 
closes: #30658

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Jon Koops <jonkoops@gmail.com>
 2024-07-11 18:07:57 +02:00
rmartinc
e80c3fee9b Change link to https://github.com/eclipse/microprofile/wiki/JWT_Auth 
Closes #31219

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-11 18:03:57 +02:00
rmartinc
096e335a92 Support for vault and AES and HMAC algorithms to JavaKeystoreKeyProvider 
Closes #30880
Closes #29755

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-11 12:40:45 +02:00
Lucy Linder
0f7c2364f0 Update links in ReCAPTCHA doc 
Google links changed and are now causing redirect issues reports.

Closes: #31187

Signed-off-by: Lucy Linder <lucy.derlin@gmail.com>
 2024-07-11 00:27:09 +02:00