Gestion d'identité et SSO
Find a file
Tomáš Kyjovský f9171ff67e
Some checks are pending
Warm JS Wireit cache / Warm Wireit cache on main (push) Waiting to run
Weblate Sync / Trigger Weblate to pull the latest changes (push) Waiting to run
Add a JFR section to the Observability guide (#50507)
Closes #49874

Signed-off-by: Tomas Kyjovsky <tkyjovsk@ibm.com>
Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Signed-off-by: Tomáš Kyjovský <1867605+tkyjovsk@users.noreply.github.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>
Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com>
2026-07-10 15:31:46 +02:00
.github Review existing tests in tests/base for database matrix - Core IAM (#50591) 2026-07-10 06:42:22 +00:00
.idea Add Intellij project icon 2023-09-18 12:39:16 +02:00
.mvn Update to Maven 3.9.16 2026-06-04 11:13:13 +02:00
.trivy Trivy license ignore policy 2026-06-11 08:36:24 +02:00
adapters Ensure that an encrypted assertion is signed if response is not signed (#355) (#46929) 2026-03-09 10:25:27 +01:00
authz Reject indefinite-length encoding in ASN1Decoder.readLength() 2026-06-03 14:39:21 -03:00
authzen AuthZen Evaluations API 2026-05-07 15:27:59 -03:00
boms Add Spotless plugin with removeUnusedImports check enabled 2025-10-13 13:32:01 +02:00
common [OID4VP] Initial verifier implementation (#50430) 2026-07-10 12:51:41 +02:00
core [OID4VP] Initial verifier implementation (#50430) 2026-07-10 12:51:41 +02:00
crypto Fix SAML client creation failing for client IDs containing special characters (#50198) 2026-06-25 14:12:35 +02:00
dependencies Add missing artifact descriptions to allow Maven Central Portal Publisher pass validation process. (#40822) 2025-08-12 16:50:17 +02:00
distribution Add profile to enable deployment of keycloak-api-docs-dist pom 2026-06-08 14:20:12 +02:00
docs Add a JFR section to the Observability guide (#50507) 2026-07-10 15:31:46 +02:00
federation Defer the joinGroup, grantRole and addRequiredAction calls to the LDAP entry creation callback 2026-07-09 09:23:12 +02:00
integration Javadoc of keycloak-admin-client for Keycloak server 26.7 release (#50692) 2026-07-08 15:00:15 +02:00
js [OID4VP] Initial verifier implementation (#50430) 2026-07-10 12:51:41 +02:00
misc Fixes #50128 - ensure DL_DIR exists (#50130) 2026-07-08 14:47:02 +00:00
model Tolerate a null username and stop broker mappers from blanking it (#50425) 2026-07-10 12:55:28 +02:00
operator fix: excluding synced-common dependency, and adding enforcement (#50584) 2026-07-07 14:48:59 +02:00
quarkus fix: adding more context to deprecated yet default features (#50636) 2026-07-07 17:12:26 +02:00
rest decouple ListOptions from Client fields (#50693) 2026-07-09 16:58:45 -04:00
saml-core Fix parsing SAML11 incorrect requests. (#609) (#49119) 2026-05-19 16:44:10 +00:00
saml-core-api Use MIME decoder instead of the default one to replace deprecated Base64 class 2026-01-09 16:38:09 +01:00
scim Prevent DoS via complex filter conditions in SCIM and Workflows 2026-07-01 22:36:13 -03:00
server-spi [OID4VP] Initial verifier implementation (#50430) 2026-07-10 12:51:41 +02:00
server-spi-private [OID4VP] Initial verifier implementation (#50430) 2026-07-10 12:51:41 +02:00
services Tolerate a null username and stop broker mappers from blanking it (#50425) 2026-07-10 12:55:28 +02:00
ssf SSF: Tighten disabled-receiver Javadoc, diagnostics, and test fixture 2026-07-03 10:09:31 -03:00
test-framework Rename and make cacheless feature Preview 2026-07-06 19:30:26 +02:00
tests [OID4VP] Initial verifier implementation (#50430) 2026-07-10 12:51:41 +02:00
testsuite Tolerate a null username and stop broker mappers from blanking it (#50425) 2026-07-10 12:55:28 +02:00
themes [OID4VP] Initial verifier implementation (#50430) 2026-07-10 12:51:41 +02:00
util Update dependencies of embedded-ldap 2026-06-04 07:26:35 -03:00
.editorconfig Proposed import order (#43432) 2025-11-14 09:34:49 +01:00
.gitattributes enforce LF line endings on *.tsx files (#45997) 2026-02-18 10:28:55 +00:00
.gitignore [OID4VCI] Credential Offer must be created by Issuer not Holder (#44255) 2025-11-27 16:07:10 +01:00
.gitleaks.toml Updated .gitleaks.toml to ignore false positive in RedirectUtilsTest (#33346) 2024-09-27 14:32:36 +02:00
ADOPTERS.md Add Xata to ADOPTERS.md (#40802) 2025-06-30 19:32:32 +02:00
CONTRIBUTING.md Minor changed in the contributing.md file (#50214) 2026-06-22 14:13:39 +02:00
get-version.sh Make shebang in bash scripts consistent (#37369) 2026-02-17 11:32:28 +01:00
GOVERNANCE.md Update governance model around changes in maintainership (#29292) 2024-05-22 08:24:10 +02:00
LICENSE.txt Added text version of ASL2 license 2019-11-08 12:43:10 +01:00
MAINTAINERS.md New maintainer - Ricardo Martin (#48672) 2026-05-07 09:08:01 +02:00
maven-settings.xml [KEYCLOAK-11764] Upgrade to Wildfly 19 2020-04-24 08:19:43 -03:00
mvnw Handle special characters in mvnw.cmd Windows paths 2026-04-07 18:24:21 +02:00
mvnw.cmd Handle special characters in mvnw.cmd Windows paths 2026-04-07 18:24:21 +02:00
pom.xml Add javadoc and source jars to release (#50715) 2026-07-09 12:34:33 +02:00
PR-CHECKLIST.md Introduce CODEOWNERS (#16637) 2023-01-30 13:05:45 +01:00
README.md Add client libraries repository to README 2026-05-28 10:59:02 +02:00
SECURITY-INSIGHTS.yml Provide an OpenSSF security insights manifest file 2024-02-15 11:02:33 -03:00
SECURITY.md Update SECURITY.md to align with keycloak.org security policy 2026-07-02 21:11:31 +02:00
set-version.sh Make shebang in bash scripts consistent (#37369) 2026-02-17 11:32:28 +01:00

Keycloak

GitHub Release OpenSSF Best Practices CLOMonitor OpenSSF Scorecard Artifact Hub GitHub Repo stars GitHub commit activity Translation status

Open Source Identity and Access Management

Add authentication to applications and secure services with minimum effort. No need to deal with storing users or authenticating users.

Keycloak provides user federation, strong authentication, user management, fine-grained authorization, and more.

Help and Documentation

Reporting Security Vulnerabilities

If you have found a security vulnerability, please look at the instructions on how to properly report it.

Reporting an issue

If you believe you have discovered a defect in Keycloak, please open an issue. Please remember to provide a good summary, description as well as steps to reproduce the issue.

Getting started

To run Keycloak, download the distribution from our website. Unzip and run:

bin/kc.[sh|bat] start-dev

Alternatively, you can use the Docker image by running:

docker run quay.io/keycloak/keycloak start-dev

For more details refer to the Keycloak Documentation.

Building from Source

To build from source, refer to the building and working with the code base guide.

Testing

To run tests, refer to the running tests guide.

Writing Tests

To write tests, refer to the writing tests guide.

Contributing

Before contributing to Keycloak, please read our contributing guidelines. Participation in the Keycloak project is governed by the CNCF Code of Conduct.

Joining a community meeting is a great way to get involved and help shape the future of Keycloak.

Code of Conduct

We are committed to providing a safe, welcoming, and constructive environment for all Keycloak contributors and users. To protect this space, we actively enforce our Code of Conduct. If you wish to report an incident or appeal a moderation decision, please email keycloak-coc@googlegroups.com.

Other Keycloak Projects

License