keycloak

mirror of https://github.com/keycloak/keycloak.git synced 2026-04-07 18:25:46 -04:00

Author	SHA1	Message	Date
Giuseppe Graziano	ebfc294c85	Executor for client uris pattern validation (#46300 ) Some checks failed Weblate Sync / Trigger Weblate to pull the latest changes (push) Has been cancelled Details Closes #45645 Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>	2026-02-24 16:26:00 +01:00
Ricardo Martin	2bd386842a	Step up authentication for saml - preview (#44185 ) Closes #10155 Signed-off-by: rmartinc <rmartinc@redhat.com>	2026-02-23 19:57:00 +01:00
Peter Skopek	248c635fda	Rename Docker Registry to Distribution Registry Closes #45163 Signed-off-by: Peter Skopek <peter.skopek@ibm.com>	2026-02-20 13:57:30 +01:00
Tero Saarni	128384ca15	Implement forced password change for LDAP federated user (password policy control) (#15253 ) * Add limited support for LDAP password policy control Signed-off-by: Tero Saarni <tero.saarni@est.tech>	2026-02-20 09:15:51 -03:00
Michal Vavřík	8e816f749c	feat: Update container images to use OpenJDK 25 (#46386 ) This PR is mostly based on `303446b465`. Additionally, I made few tweaks to documentation and introduce a doc variable for the recommended Java version so limit required changing when migrating the recommended JDK version. * Closes: https://github.com/keycloak/keycloak/issues/45830 Signed-off-by: Michal Vavřík <michal.vavrik@aol.com>	2026-02-17 15:35:46 +01:00
Stefan Guilhen	aeda5c4f01	Increase workflow executor timeout to 5 seconds by default Some checks failed Weblate Sync / Trigger Weblate to pull the latest changes (push) Has been cancelled Details Closes #46332 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2026-02-13 14:33:31 -03:00
Stefan Guilhen	c17d9d0d0c	Add section about handling failures to the workflows documentation Closes #45175 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2026-02-13 12:01:00 -03:00
Pedro Igor	8df79202a0	Fixing organization members docs to mention they can join multiple organizations Closes #46040 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2026-02-13 14:54:10 +01:00
Hugo Hakim Damer	292a177b10	[OID4VCI] Add support for nested claims in OID4VCI user attribute mapper (#45751 ) Closes #45748 Signed-off-by: Hugo Hakim Damer <HugoHakim.Damer@governikus.de>	2026-02-06 10:57:12 +01:00
Aggelos Sachtouris	28bb0b2cd9	Create documentation for unlink user workflow step Signed-off-by: Aggelos Sachtouris <aggelos_sachtouris@hotmail.com>	2026-02-05 12:22:37 -03:00
Stefan Guilhen	63d9a19982	Allow step-runner-task-timeout to be specified using ISO-8601 format Closes #45987 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2026-02-03 14:53:19 -03:00
Stefan Guilhen	c379192bf8	Adjust event names in workflows documentation to match the new event provider names Closes #45968 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2026-02-03 14:47:41 -03:00
rmartinc	c63f54ba3a	Client policy executor to allow extra audiences for JWT authorization grant Closes #45180 Signed-off-by: rmartinc <rmartinc@redhat.com>	2026-02-03 13:39:31 +01:00
Stefan Guilhen	43b5b3484b	Fix: use valid format for condition used in the documentation Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2026-02-02 10:15:18 -03:00
Pedro Igor	13cf35ded3	Only realm admins can manage workflows Some checks failed Weblate Sync / Trigger Weblate to pull the latest changes (push) Has been cancelled Details Closes #45875 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2026-01-30 21:18:06 +01:00
Tero Saarni	47b91b995d	Add revert button to client credentials form Some checks failed Weblate Sync / Trigger Weblate to pull the latest changes (push) Has been cancelled Details Signed-off-by: Tero Saarni <tero.saarni@est.tech>	2026-01-28 18:36:36 +01:00
Tero Saarni	cb4c533464	Add support for looking up client secrets via Vault SPI (#39650 ) Fixes #13102 Signed-off-by: Tero Saarni <tero.saarni@est.tech>	2026-01-28 16:45:30 +01:00
Alexander Schwartz	dd0214bc78	Do not use whitelist/blacklist in the UI Closes #45539 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2026-01-20 11:12:23 +01:00
Pedro Igor	c8a41dea99	Reverting format changes, updating docs, and only exposing the method to fetch first-factor credentials Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2026-01-19 08:30:47 -03:00
rmartinc	07b9b9656b	Allow client_id as an audience in the JWT Authorization Grant and Client Assertions Closes #45178 Signed-off-by: rmartinc <rmartinc@redhat.com>	2026-01-16 15:48:28 +01:00
Ruchika Jha	e2e11a3b8e	Hide Remember Me session settings when Remember Me is disabled in realm settings edit page in UI Closes #44973 Signed-off-by: Ruchika <ruchika.jha1@ibm.com> Signed-off-by: Ruchika Jha <Ruchika.Jha1@ibm.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2026-01-15 16:46:50 +00:00
Pedro Igor	ab351170b4	Support aggregated policies during partial evaluation Closes #45324 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2026-01-15 15:20:52 +01:00
Pedro Igor	37ff64446b	Allow hide organization brokers when the user does not map to any organization during login Closes #45422 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2026-01-15 15:19:43 +01:00
Pedro Igor	cca5ef44fa	Updating the documentation Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2026-01-13 16:42:07 -03:00
Giuseppe Graziano	23aad2a942	DPoP Guide (#45274 ) Closes #42747 Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>	2026-01-13 11:01:28 +01:00
Pedro Igor	c33d94da65	Allow admins with any admin role to map roles if the constraints apply Closes #44371 Closes #45182 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2026-01-12 12:56:30 -03:00
Stan Silvert	eb77c055f5	Clarify documentation. Signed-off-by: Stan Silvert <ssilvert@redhat.com>	2026-01-12 10:36:10 -03:00
mposolda	1273c8db0e	DCR endpoint ignores client's requested token_endpoint_auth_method in case it is client_secret_post closes #44403 Signed-off-by: mposolda <mposolda@gmail.com>	2026-01-12 09:54:04 +01:00
Pedro Igor	0d5766f3a8	Allow running scheduled workflows Closes #44865 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2026-01-05 13:03:47 -03:00
Pedro Igor	3c0b308bb7	Document limitations when updating workflows Closes #45134 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2026-01-05 14:10:03 +01:00
Stefan Guilhen	43634dd2ed	Update docs/documentation/server_admin/topics/workflows/understanding-workflow-definition.adoc Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2025-12-29 10:29:38 -03:00
Stefan Guilhen	9865791084	Fix wrong provider references in workflows documentation Closes #45077 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2025-12-29 10:29:38 -03:00
Stefan Guilhen	0d09f755f1	Fix wrong event names in workflows documentation (#45002 ) Closes #45001 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2025-12-19 13:01:20 -05:00
Ricardo Martin	efc75f09b0	Fix link to https://azure.microsoft.com/en-us (#45036 ) Closes #45023 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-12-19 12:27:05 +01:00
Pedro Igor	7512a0412b	wip - workflows doc (#44685 ) Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Co-authored-by: Stan Silvert <ssilvert@redhat.com>	2025-12-18 07:52:41 -05:00
Palpable	94ee6d81fb	[OID4VCI] Realign naming of attribute configuring algorithms for credential (#44765 ) Closes #44621 Signed-off-by: Vitalisn4 <ngamvitalisyuh@gmail.com> Signed-off-by: mposolda <mposolda@gmail.com> Signed-off-by: Ingrid Kamga <Ingrid.Kamga@adorsys.com> Co-authored-by: Marek Posolda <mposolda@gmail.com> Co-authored-by: Ingrid Kamga <Ingrid.Kamga@adorsys.com>	2025-12-16 14:46:17 +01:00
Christian Glasmachers	921b10ee80	Login failure cache: Evict entries after the configured failure reset time Closes #44801 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Signed-off-by: Pedro Ruivo <pruivo@redhat.com> Co-authored-by: Christian Glasmachers <Christian.Glasmachers-extern@deutschebahn.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Pedro Ruivo <pruivo@users.noreply.github.com>	2025-12-10 11:20:19 +01:00
rmartinc	c9686cc040	Documentation for JWT Authorization Grant Closes #44136 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-12-09 12:13:21 +01:00
vramik	5dbc91e028	Deprecate Fine-Grained Admin Permissions v1 Closes #44121 Signed-off-by: vramik <vramik@redhat.com>	2025-12-08 10:26:27 -03:00
Alexander Schwartz	2f81a2fb76	Updating and ordering the release notes Closes #44706 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-12-08 10:55:33 +01:00
Pascal Knüppel	46e5979b17	[OID4VCI] Handle key_attestation_required in metadata endpoint (#44471 ) fixes #43801 Signed-off-by: Pascal Knüppel <pascal.knueppel@governikus.de> Signed-off-by: Pascal Knüppel <captain.p.goldfish@gmx.de> Signed-off-by: Captain-P-Goldfish <captain.p.goldfish@gmx.de> Co-authored-by: Ingrid Kamga <xingridkamga@gmail.com>	2025-12-05 16:00:32 +01:00
forkimenjeckayang	4dd68c0316	[OID4VCI] Conformance Test Fixes (#44439 ) closes #44659 Signed-off-by: forkimenjeckayang <forkimenjeckayang@gmail.com>	2025-12-04 09:03:38 +01:00
Sebastian Łaskawiec	aa789dd023	Logout confirmation Signed-off-by: Sebastian Łaskawiec <sebastian.laskawiec@gmail.com>	2025-11-28 14:24:32 +01:00
Alexis Rico	b0b38176f0	Manage Organization Invites Closes #38809 Signed-off-by: Alexis Rico <sferadev@gmail.com> Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-11-27 10:28:52 +01:00
Awambeng	8406cf34fb	[OID4VCI]: Realm-Configurable Time-Claim Normalization (Randomize/Round) to Mitigate Correlation (#43834 ) Closes #43399 Signed-off-by: Awambeng <awambengrodrick@gmail.com>	2025-11-24 11:07:07 +01:00
Sebastian Łaskawiec	081d8e5a01	Move Kubernetes IdP to preview Some checks failed Weblate Sync / Trigger Weblate to pull the latest changes (push) Has been cancelled Details Closes #42947 Signed-off-by: Sebastian Łaskawiec <sebastian.laskawiec@defenseunicorns.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-11-22 12:56:09 +01:00
Stian Thorgersen	2a78bc67d7	Refactoring around federated client authenticator to better handling lookup of IdPs and clients. Also, introducing updates to documentation. (#44325 ) Closes #44253 Closes #42987 Closes #44063 Signed-off-by: stianst <stianst@gmail.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>	2025-11-22 12:53:22 +01:00
Pedro Ruivo	13ef89664c	More accurate user session expiration logic Closes #44204 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>	2025-11-19 21:06:17 +01:00
Alexander Schwartz	15a9a36569	Align formatting of referenced RFCs Closes #44246 Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Stian Thorgersen <stian@redhat.com>	2025-11-17 21:30:13 +01:00
Alexander Schwartz	167249dd6c	Updating the specifics around kubernetes service accounts Closes #44064 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-11-17 11:23:39 +01:00

1 2 3 4 5 ...

356 commits