mirror of https://github.com/keycloak/keycloak.git synced 2026-05-25 02:35:30 -04:00

Gestion d'identité et SSO

Find a file

Dominik Schlosser a1bd1ab855 Introduce mechanism for different trust material sources (#48869 ) closes #48269 Signed-off-by: Dominik Schlosser <dominik.schlosser@gmail.com> Signed-off-by: mposolda <mposolda@gmail.com> Co-authored-by: mposolda <mposolda@gmail.com>		2026-05-25 08:12:28 +02:00
.github	fix: extract 12 unsafe expression(s) to env vars	2026-05-21 15:32:43 +02:00
.idea	Add Intellij project icon	2023-09-18 12:39:16 +02:00
.mvn	Handle special characters in mvnw.cmd Windows paths	2026-04-07 18:24:21 +02:00
adapters	Ensure that an encrypted assertion is signed if response is not signed (#355 ) (#46929 )	2026-03-09 10:25:27 +01:00
authz	Also deploy keycloak-authz-client-tests when deploy-testsuite profile is active	2026-04-08 17:17:13 +02:00
authzen	AuthZen Evaluations API	2026-05-07 15:27:59 -03:00
boms	Add Spotless plugin with removeUnusedImports check enabled	2025-10-13 13:32:01 +02:00
common	Revert "chore(quarkus): only show OTel Metrics in community build (#49002 )" (#49072 )	2026-05-19 14:33:13 +02:00
core	Support for user attributes and updating them (#49066 )	2026-05-21 08:42:11 +02:00
crypto	Support Java 25 with FIPS enabled (#47581 )	2026-04-01 09:57:25 +02:00
dependencies	Add missing artifact descriptions to allow Maven Central Portal Publisher pass validation process. (#40822 )	2025-08-12 16:50:17 +02:00
distribution	Upgrade to WildFly 39.0.1.Final, allow for usage of Galleon family	2026-05-12 12:00:03 +02:00
docs	Fix Themes cross-reference	2026-05-22 15:00:06 +02:00
federation	Add dbus-java as a common dependency	2026-05-12 10:17:21 -03:00
integration	Support for user attributes and updating them (#49066 )	2026-05-21 08:42:11 +02:00
js	Upgrade playwright to avoid hangs on CI	2026-05-23 19:54:51 +02:00
misc	Update tests in common to use JUnit 6	2026-04-09 21:52:47 +02:00
model	[OID4VCI] Simplify JpaUserProvider.updateVerifiableCredential . Make sure OID4VCExportImportTest asserts equality of imported credentials	2026-05-21 10:52:42 +02:00
operator	fix: prevent service account name from being set in multi-namespace mode (#49036 )	2026-05-22 19:40:31 +02:00
quarkus	fix: allowing the general use of synthetic wildcards (#48223 )	2026-05-22 17:22:38 +00:00
rest	task: using a beanparam for client listing options (#49074 )	2026-05-22 19:54:20 +02:00
saml-core	Fix parsing SAML11 incorrect requests. (#609 ) (#49119 )	2026-05-19 16:44:10 +00:00
saml-core-api	Use MIME decoder instead of the default one to replace deprecated Base64 class	2026-01-09 16:38:09 +01:00
scim	Align the format of the annotation kc.scim.schema.attribute to how SCIM defines custom schema attributes	2026-05-07 13:32:00 +00:00
server-spi	Introduce mechanism for different trust material sources (#48869 )	2026-05-25 08:12:28 +02:00
server-spi-private	Introduce mechanism for different trust material sources (#48869 )	2026-05-25 08:12:28 +02:00
services	Introduce mechanism for different trust material sources (#48869 )	2026-05-25 08:12:28 +02:00
ssf	Add Shared Signals Framework Transmitter capability (#48901 )	2026-05-12 13:00:19 -03:00
test-framework	Refactor legacy test suite's ExportImportResource (#48967 )	2026-05-21 09:15:19 +00:00
tests	Introduce mechanism for different trust material sources (#48869 )	2026-05-25 08:12:28 +02:00
testsuite	Tighten UNSAFE_PATH_PATTERN against encoded path-traversal terminators (#49000 )	2026-05-21 17:23:27 +02:00
themes	show/update credential attributes in admin/account ui (#49218 )	2026-05-22 15:48:56 +02:00
util	Implement forced password change for LDAP federated user (password policy control) (#15253 )	2026-02-20 09:15:51 -03:00
.editorconfig	Proposed import order (#43432 )	2025-11-14 09:34:49 +01:00
.gitattributes	enforce LF line endings on *.tsx files (#45997 )	2026-02-18 10:28:55 +00:00
.gitignore	[OID4VCI] Credential Offer must be created by Issuer not Holder (#44255 )	2025-11-27 16:07:10 +01:00
.gitleaks.toml	Updated .gitleaks.toml to ignore false positive in RedirectUtilsTest (#33346 )	2024-09-27 14:32:36 +02:00
ADOPTERS.md	Add Xata to ADOPTERS.md (#40802 )	2025-06-30 19:32:32 +02:00
CONTRIBUTING.md	Update contributors guidelines (#46904 )	2026-03-09 09:03:31 +01:00
get-version.sh	Make shebang in bash scripts consistent (#37369 )	2026-02-17 11:32:28 +01:00
GOVERNANCE.md	Update governance model around changes in maintainership (#29292 )	2024-05-22 08:24:10 +02:00
LICENSE.txt	Added text version of ASL2 license	2019-11-08 12:43:10 +01:00
MAINTAINERS.md	New maintainer - Ricardo Martin (#48672 )	2026-05-07 09:08:01 +02:00
maven-settings.xml	[KEYCLOAK-11764] Upgrade to Wildfly 19	2020-04-24 08:19:43 -03:00
mvnw	Handle special characters in mvnw.cmd Windows paths	2026-04-07 18:24:21 +02:00
mvnw.cmd	Handle special characters in mvnw.cmd Windows paths	2026-04-07 18:24:21 +02:00
pom.xml	chore(mvn): drop unknown parameter 'createChecksum' (#49079 )	2026-05-19 08:10:11 +02:00
PR-CHECKLIST.md	Introduce CODEOWNERS (#16637 )	2023-01-30 13:05:45 +01:00
README.md	Add CoC to README (#47964 )	2026-04-10 23:34:47 +02:00
SECURITY-INSIGHTS.yml	Provide an OpenSSF security insights manifest file	2024-02-15 11:02:33 -03:00
set-version.sh	Make shebang in bash scripts consistent (#37369 )	2026-02-17 11:32:28 +01:00

README.md

Open Source Identity and Access Management

Add authentication to applications and secure services with minimum effort. No need to deal with storing users or authenticating users.

Keycloak provides user federation, strong authentication, user management, fine-grained authorization, and more.

Help and Documentation

Documentation
User Mailing List - Mailing list for help and general questions about Keycloak
Join #keycloak for general questions, or #keycloak-dev on Slack for design and development discussions, by creating an account at https://slack.cncf.io/.

Reporting Security Vulnerabilities

If you have found a security vulnerability, please look at the instructions on how to properly report it.

Reporting an issue

If you believe you have discovered a defect in Keycloak, please open an issue. Please remember to provide a good summary, description as well as steps to reproduce the issue.

Getting started

To run Keycloak, download the distribution from our website. Unzip and run:

bin/kc.[sh|bat] start-dev

Alternatively, you can use the Docker image by running:

docker run quay.io/keycloak/keycloak start-dev

For more details refer to the Keycloak Documentation.

Building from Source

To build from source, refer to the building and working with the code base guide.

Testing

To run tests, refer to the running tests guide.

Writing Tests

To write tests, refer to the writing tests guide.

Contributing

Before contributing to Keycloak, please read our contributing guidelines. Participation in the Keycloak project is governed by the CNCF Code of Conduct.

Joining a community meeting is a great way to get involved and help shape the future of Keycloak.

Code of Conduct

We are committed to providing a safe, welcoming, and constructive environment for all Keycloak contributors and users. To protect this space, we actively enforce our Code of Conduct. If you wish to report an incident or appeal a moderation decision, please email keycloak-coc@googlegroups.com.

Other Keycloak Projects

Keycloak - Keycloak Server and Java adapters
Keycloak QuickStarts - QuickStarts for getting started with Keycloak
Keycloak Node.js Connect - Node.js adapter for Keycloak

License

Apache License, Version 2.0