Commit Graph

710 Commits

Author SHA1 Message Date
vramik
aafb140529 Add a note to release notes about admin roles mapping
Fixes #39956

Signed-off-by: vramik <vramik@redhat.com>
2025-06-09 09:34:45 -03:00
Ryan Emerson
0c62bd0878 Change discovery in Kubernetes to jdbc-ping
Closes #39544

Signed-off-by: Ryan Emerson <remerson@redhat.com>
2025-06-05 16:48:30 +02:00
mposolda
b03b9f9e3a Improve documentation of service-accounts and make it more clear. Delete the unused file service-accounts.adoc
closes #39748

Signed-off-by: mposolda <mposolda@gmail.com>
2025-06-05 08:45:12 +02:00
rmartinc
abd7f88526 Make the checkbox "Sign out from other devices" unchecked by default
Closes #39975

Signed-off-by: rmartinc <rmartinc@redhat.com>
2025-06-04 14:11:29 +02:00
Alexander Schwartz
2b2d7bbcbe Updated documentation to handle the conf folder on upgrades (#40175)
Closes #40046
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2025-06-03 16:14:11 +02:00
Pedro Igor
7cc055f8a6 Verify brokered user email based on the email_verified claim from the ID Token returned by the OP
Closes #39885

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2025-05-29 10:45:18 -03:00
Pedro Igor
e6e6fa60fa Adding OAuth2-based identity broker
Closes #35266

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2025-05-27 12:07:01 -03:00
Michal Hajas
88f660b235 Add experimental feature rolling-updates:v2 that allows rolling updat… (#39751)
...e for patch releases
Closes #38882
Signed-off-by: Michal Hajas <mhajas@redhat.com>
2025-05-27 11:17:42 -03:00
foliengriller
54b131e34e Update themes-react.adoc
Fixes link formatting

Signed-off-by: foliengriller <info@simpelwebservice.de>
2025-05-27 09:19:05 +02:00
Pedro Igor
b22b1f298c Adding parameter to control whether the count of subgroups of subgroups should be returned
Closes #39668

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2025-05-22 11:15:38 -03:00
rmartinc
3c511635ba Skip AIA for webauthn register if a crendential of teh correct type already exists
Closes #39191

Signed-off-by: rmartinc <rmartinc@redhat.com>
2025-05-20 18:09:12 +02:00
mposolda
fe2790a09d Fix documentation link to quickstarts to point to 'main' branch instead of 'latest' branch
closes #39798

Signed-off-by: mposolda <mposolda@gmail.com>
2025-05-19 10:32:06 +02:00
Kai J. Witt
c76bb0683c Make max auth age configurable for all required actions by default
Moved the current configuration implementation for the update password

Closes #39408

Signed-off-by: Kai Josef Witt <KWitt@vhv.de>
Signed-off-by: Marek Posolda <mposolda@gmail.com>
Co-authored-by: Kai Josef Witt <KWitt@vhv.de>
Co-authored-by: Marek Posolda <mposolda@gmail.com>
2025-05-15 08:44:38 +02:00
Douglas Palmer
64cb66f451 Inconsistency in User enabled status in Rest query results.
Closes #39549 #28713

Signed-off-by: Douglas Palmer <dpalmer@redhat.com>
2025-05-14 20:10:14 +02:00
Pedro Igor
34ad280665 Build user representations when searching based on the user profile settings
Closes #39595

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2025-05-14 10:42:25 +02:00
Pedro Igor
4171da9fbb Updating upgrading guide with the changes to theme templates
Closes #39562

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2025-05-14 09:38:41 +02:00
yorickdevries
d5b873d705 Change screenshot from permissions view to correct resources view
Cropped it in accordance with the other images

Closes #39697

Signed-off-by: Yorick <yorickdevries@live.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2025-05-14 07:00:37 +00:00
Awambeng
ea4ef74917 Fix doc(oid4vc): Correct realm-attributes example and update HTTP method in docs (#39409)
Closes #39264

Signed-off-by: Awambeng Rodrick <awambengrodrick@gmail.com>
2025-05-13 10:09:14 +02:00
andymunro
0fc18c3a0b Make links generic
Closes #39469

Signed-off-by: AndyMunro <amunro@redhat.com>
2025-05-09 16:18:15 +02:00
andymunro
afe6d4d4a0 Fix callouts
Closes #39590

Signed-off-by: AndyMunro <amunro@redhat.com>
2025-05-09 14:10:59 +00:00
Alexander Schwartz
a17f551eb2 Log out other sessions including offline sessions on password change
Closes #38850

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2025-05-06 14:04:13 +02:00
Daniel Höxtermann
46ed361278 Fix footer ftl snippet in documentation
Closes #39442

Signed-off-by: Daniel Höxtermann <daniel@hxtm.dev>
2025-05-05 06:46:15 +00:00
Alexander Schwartz
f79408788d Document how to configure Istio to allow for JGroups mTLS
Closes #39065

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: Pedro Ruivo <pruivo@users.noreply.github.com>
2025-05-02 12:08:02 +00:00
Steven Hawkins
24910d9e1c addresses slow import/export performance by limiting persistence context size (#37926)
* fix: addresses slow import/export performance with more batching

closes: #37991

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* removing flush/detach manipulation

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* refining the doc note about using multiple files for larger user counts

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* adding doc note about useExistingSession method removal

and expanding javadocs

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2025-04-29 18:57:45 -04:00
Steven Hawkins
08b5183784 fix: relaxes the admin root redirect check (#39095)
* fix: relaxes the admin root redirect check

also deprecates the usage of local_admin

closes: #39085

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* moving deprecation to 26.3

also changing the adminroot test to seem like it's coming from a proxy

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2025-04-29 11:09:51 -04:00
rmartinc
4730dbdd8d Make recovery codes supported
Closes #38994

Signed-off-by: rmartinc <rmartinc@redhat.com>
2025-04-29 10:25:46 +02:00
mposolda
e9283ee71d Documentation for recovery codes (deprecation of password policy and required action config)
closes #39245

Signed-off-by: mposolda <mposolda@gmail.com>
2025-04-29 09:29:38 +02:00
Pedro Ruivo
eafe08a73a Create CacheEmbeddedConfigProvider
Closes #38497

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2025-04-28 13:00:53 +02:00
Steven Hawkins
837c2e25a2 fix: adding docs about h2 migration (#39159)
* fix: adding docs about h2 migration

closes: #39046

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update docs/documentation/upgrading/topics/changes/changes-26_2_0.adoc

Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

* Update docs/documentation/upgrading/topics/migrate_db.adoc

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

* Apply suggestions from code review

Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2025-04-24 17:37:03 +02:00
Emmanuel Lécharny
a48469896e Added a link to the ApacheDS doc for server side password hashing
Closes #39136

Signed-off-by: Emmanuel Lécharny <elecharny@gmail.com>
2025-04-24 09:25:03 +00:00
Alexander Schwartz
050d3ccba4 Fix broken link for XOAUTH2 configuration
Closes #39096

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2025-04-23 08:47:40 +02:00
Emmanuel Lécharny
1dc97d5d4d Update ldap.adoc with ApacheDS details
Added some precision about ApacheDS password management.

Closes #39136

Signed-off-by: Emmanuel Lécharny <elecharny@apache.org>
Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
2025-04-23 07:55:59 +02:00
Marek Posolda
f8a4a8da86 Unexpected AIA Cause Server Errors
closes #37526

Signed-off-by: mposolda <mposolda@gmail.com>
2025-04-17 14:15:07 +00:00
Marek Posolda
025b2ba442 Introducing IdpLinkAction as AIA to replace client-initiated account linking (#38952)
closes #37269
closes #35446

Signed-off-by: mposolda <mposolda@gmail.com>


Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
Signed-off-by: Marek Posolda <mposolda@gmail.com>
2025-04-17 13:20:05 +02:00
Alexander Schwartz
a312632468 Add new user event metrics to the release notes
Closes #39027

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2025-04-17 10:58:34 +02:00
Alexander Schwartz
2be2958b8e Update release notes docs for removed remote store
Closes #39028

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2025-04-17 10:56:29 +02:00
Pedro Igor
1ba8fe16ac Deprecate for removal Instagram Identity Broker (#38998)
Closes #37967
Closes #36562

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2025-04-17 09:07:06 +02:00
andymunro
17e3bad7b2 Clarify upgrading language
Closes #38956

Signed-off-by: AndyMunro <amunro@redhat.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
2025-04-16 20:32:03 +00:00
Martin Bartoš
60fb7a5fa7 Support asynchronous logging (#38094)
Closes #38578

Closes #28851

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
2025-04-16 15:08:15 +00:00
Michal Hajas
4dc4de7c12 Remove CACHE-EMBEDDED-REMOTE-STORE experimental feature
Closes #34160

Signed-off-by: Michal Hajas <mhajas@redhat.com>
2025-04-16 12:01:55 +00:00
Martin Bartoš
e7c7dce5c7 [Docs] Broken link in ExternalLinksTest for importmap (#38969)
Closes #38930

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
2025-04-15 09:02:57 +00:00
Pedro Igor
288b6dae12 More information to docs
Closes #38798

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2025-04-10 20:03:05 +02:00
Thomas Darimont
478e0b3264 Make sure that there is single audience allowed by default in JWT tokens sent to client authentication
closes #38819

Signed-off-by: mposolda <mposolda@gmail.com>

Co-authored-by: Thomas Darimont <thomas.darimont@googlemail.com>
Co-authored-by: mposolda <mposolda@gmail.com>
2025-04-10 18:08:10 +02:00
Pedro Igor
ae88d7921f Improvements to partial evaluation
Closes #38732

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2025-04-09 18:15:28 +02:00
Pedro Igor
87430fc181 Add impersonate-members scope to group resource type
Closes #38566

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
2025-04-07 14:56:27 +00:00
vramik
6488890585 [FGAP:V2] remove configure scope from Client resource type
Closes #38567

Signed-off-by: vramik <vramik@redhat.com>
2025-04-07 07:05:02 -03:00
Marek Posolda
f984644d07 Clarify in documentation that legacy token exchange requires FGAP:v1 (#38694)
closes #38693

Signed-off-by: mposolda <mposolda@gmail.com>


Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
Signed-off-by: Marek Posolda <mposolda@gmail.com>
2025-04-07 08:27:56 +02:00
Alexander Schwartz
d69a530d5b Check HTML head for redirects
Closes #38655

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2025-04-04 18:40:41 +02:00
Stefan Guilhen
c4c3e2eee6 Allow redirection to idp when user email matches any of the org domains
Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
Co-authored-by: Martin Panzer <martin.panzer@active-logistics.com>

Closes #33804
2025-04-04 11:28:04 -03:00
Vlasta Ramik
18c8308bb4 [FGAP] Remove redundant sentense from fine grained admin permissions docs
Closes #38677

Signed-off-by: vramik <vramik@redhat.com>
2025-04-04 09:41:17 +02:00