keycloak

mirror of https://github.com/keycloak/keycloak.git synced 2026-02-03 20:39:33 -05:00

Author	SHA1	Message	Date
Stefan Guilhen	2111dcf913	Check only for the existence of the attribute if only the key is specified Closes #45983 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2026-02-03 14:52:34 -03:00
Stefan Guilhen	021d544000	Ensure required action is enabled at the realm level before adding it to the user via workflow step Closes #45976 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2026-02-03 14:51:28 -03:00
Martin Bartoš	3e568fc81b	OTEL: Use suggested 'code.function.name' for span attributes Closes #45944 Signed-off-by: Martin Bartoš <mabartos@redhat.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>	2026-02-03 15:56:48 +01:00
rmartinc	c63f54ba3a	Client policy executor to allow extra audiences for JWT authorization grant Closes #45180 Signed-off-by: rmartinc <rmartinc@redhat.com>	2026-02-03 13:39:31 +01:00
Stefan Guilhen	6e408dd7bc	Introduce WorkflowEventSpi - supports custom event handling beyond the built-in workflow capabilities. Closes #43916 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2026-02-02 11:18:27 -03:00
rmartinc	d4e9b16ea9	Include version in system-info for manage-realm and restrict view-system mapping Closes #45776 Signed-off-by: rmartinc <rmartinc@redhat.com>	2026-02-02 12:40:57 +01:00
Pedro Igor	13cf35ded3	Only realm admins can manage workflows Some checks failed Weblate Sync / Trigger Weblate to pull the latest changes (push) Has been cancelled Details Closes #45875 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2026-01-30 21:18:06 +01:00
Pedro Ruivo	02066f4985	Bugfix Refactor SessionsResource Closes #45727 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>	2026-01-29 14:51:50 +01:00
Pedro Ruivo	bae3963d25	Refactor SessionsResource for better memory usage and performance Closes #45727 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2026-01-29 11:38:54 +01:00
Tero Saarni	cb4c533464	Add support for looking up client secrets via Vault SPI (#39650 ) Fixes #13102 Signed-off-by: Tero Saarni <tero.saarni@est.tech>	2026-01-28 16:45:30 +01:00
Pedro Igor	b9243a7270	Only enable JS policies if the scripts feature is enabled Closes #44132 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2026-01-28 12:28:32 +01:00
Alexander Schwartz	0ddb355d3d	Optimize deletion of composite roles Closes #45065 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2026-01-28 08:05:16 -03:00
forkimenjeckayang	f2f185b367	[OID4VCI] Add OID4VCI request/response support to OAuthClient utility (#45784 ) closes: #44671 Signed-off-by: forkimenjeckayang <forkimenjeckayang@gmail.com>	2026-01-28 11:54:42 +01:00
Stefan Guilhen	c13a1772f8	Adds ability to migrate scheduled workflow resources from one step to another step in the same or different workflow Closes #45174 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2026-01-27 13:46:18 -03:00
Steven Hawkins	38b5466093	fix: aligns our dev http-host default behavior with that of quarkus (#45691 ) closes: #42876 Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com>	2026-01-27 16:51:47 +01:00
Peter Zaoral	d2be206a9f	Run new test framework db tests on Azure (#45735 ) * Run new test framework db tests on Azure Closes: #45658 Signed-off-by: Peter Zaoral <pepo48@gmail.com> * Run new test framework db tests on Azure Closes: #45658 Signed-off-by: Peter Zaoral <pepo48@gmail.com> --------- Signed-off-by: Peter Zaoral <pepo48@gmail.com>	2026-01-27 08:11:37 +00:00
mposolda	e414050524	Remove AuthorizationDetailsResponse and make AuthorizationDetailsJSONRepresentation as base of RAR processors closes #45706 Signed-off-by: mposolda <mposolda@gmail.com>	2026-01-26 17:21:45 +01:00
mposolda	416a6017c2	Make authorizationDetails processing more generic and not tightly coupled to OID4VCI. Fixes closes #44961 Signed-off-by: mposolda <mposolda@gmail.com>	2026-01-26 08:45:41 +01:00
Šimon Vacek	8f0cbcb244	Run new framework db testsuite on Aurora Some checks are pending Weblate Sync / Trigger Weblate to pull the latest changes (push) Waiting to run Details Closes #41940 Signed-off-by: Simon Vacek <simonvacky@email.cz>	2026-01-22 20:14:54 +01:00
vramik	111ba36504	Organization Groups Core Backend & API Closes #45562 Signed-off-by: vramik <vramik@redhat.com>	2026-01-22 09:39:24 -03:00
Alexander Schwartz	fd9c513c9c	When creating or updating a Kubernetes IDP, check if issuer URL is unique Closes #45449 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2026-01-21 17:52:11 +01:00
Lukas Hanusovsky	59396057c1	Removing cross module dependency between tests/base and tests/clustering. (#45353 ) Signed-off-by: Lukas Hanusovsky <lhanusov@redhat.com>	2026-01-21 17:42:39 +01:00
Giuseppe Graziano	b74be6ed41	JWT Authorization Grant for Google idp (#45543 ) Closes #45179 Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>	2026-01-21 16:17:52 +01:00
rmartinc	b7a23e88d2	Test for authorization chaining across domains Closes #45468 Signed-off-by: rmartinc <rmartinc@redhat.com>	2026-01-21 15:52:59 +01:00
rmartinc	7e20b87136	Add abstract property for themes and do not display base for selection Closes #41924 Signed-off-by: rmartinc <rmartinc@redhat.com>	2026-01-21 15:42:52 +01:00
Hathoute	ea2083ed2c	Support for clients in workflows Signed-off-by: Hathoute <whitesmith.thedj@gmail.com> Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2026-01-21 11:20:30 -03:00
Giuseppe Graziano	3c3915556c	OIDC identity provider issuer config Closes #45590 Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>	2026-01-20 13:19:16 +01:00
Stian Thorgersen	0223b6823b	Updates testframework to JUnit 6 and Test Containers 2.x. Removed transitive dependencies from keycloak-junit5 Some checks failed Weblate Sync / Trigger Weblate to pull the latest changes (push) Has been cancelled Details CLoses #44350, Closes #45383, Closes #44490 Signed-off-by: stianst <stianst@gmail.com>	2026-01-20 11:42:28 +01:00
forkimenjeckayang	fa28ddddb2	[OID4VCI] Disable OID4VCI functionality when Verified Credentials switch is off (#44995 ) closes #44622 Signed-off-by: forkimenjeckayang <forkimenjeckayang@gmail.com> Signed-off-by: mposolda <mposolda@gmail.com> Co-authored-by: mposolda <mposolda@gmail.com>	2026-01-19 14:09:42 +01:00
rmartinc	07b9b9656b	Allow client_id as an audience in the JWT Authorization Grant and Client Assertions Closes #45178 Signed-off-by: rmartinc <rmartinc@redhat.com>	2026-01-16 15:48:28 +01:00
stianst	8aaf3e4606	Allow re-using server when running tests with the new framework Closes #44101 Signed-off-by: stianst <stianst@gmail.com>	2026-01-16 09:11:43 -03:00
Martin Kanis	4f91b5246e	User REST Admin API - count and search returns different amount of users Closes #45219 Signed-off-by: Martin Kanis <mkanis@redhat.com>	2026-01-16 07:29:42 -03:00
Stefan Guilhen	5ed7894502	Add step implementation to remove user attributes Closes #44650 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2026-01-15 14:28:35 -03:00
Stefan Guilhen	744dfd0468	Allow ISO-8601 time formats for the workflows step-runner-task-interval config Closes #45172 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2026-01-15 14:27:20 -03:00
Sebastian Schuster	9d0f679ece	45417 fixed unmanaged attributes to not allow writing when only admin can view policy is enabled Signed-off-by: Sebastian Schuster <sebastian.schuster@bosch.com>	2026-01-15 14:06:54 -03:00
Pedro Igor	ab351170b4	Support aggregated policies during partial evaluation Closes #45324 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2026-01-15 15:20:52 +01:00
ksushant881	b2a1219937	Rename config Closes #44676 Signed-off-by: ksushant881 <ksushant881@gmail.com>	2026-01-13 16:42:07 -03:00
ksushant881	def4edd7d4	Make target configurable in workflow notify user step Closes #44676 Signed-off-by: ksushant881 <ksushant881@gmail.com>	2026-01-13 16:42:07 -03:00
Ryan Emerson	c8635f9bf2	ISPN16: Upgrade to Infinispan 16.0.5 Closes #45341 - Remove query modules - Remove unused config file - Update config file versions - Update jgroups attributes - Remove ISPN-16595 workaround - Call HotRodServer#postStart in HotRodServerRule to start caches as well as the server - Simplify cluster-ha.xml - Utilise org.infinispan.commons.util.TimeQuantity in CacheConfiguration - Cleanup when InfinispanContainer startup fails - RemoteUserSessionProvider remote query calls must not use negative values for offsets and maxResults - Remove use of deprecated org.infinispan.server.test.core.InfinispanContainer class - Use testcontainers-infinispan dependency - Explicitly utilise "legacy" metrics - Remove explicit `name-as-tags` configuration as Infinispan 16 defaults to true - Remove test configuration not required since #31807 Signed-off-by: Ryan Emerson <remerson@ibm.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2026-01-13 17:26:43 +01:00
Stefan Guilhen	75b0a8aa2a	When fetching scheduled workflows, return all steps with status completed/pending Closes #45212 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2026-01-13 14:34:13 +01:00
Pedro Igor	c33d94da65	Allow admins with any admin role to map roles if the constraints apply Closes #44371 Closes #45182 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2026-01-12 12:56:30 -03:00
Ricardo Martin	1aa1621eaa	Use MIME decoder instead of the default one to replace deprecated Base64 class Closes #45226 Signed-off-by: rmartinc <rmartinc@redhat.com>	2026-01-09 16:38:09 +01:00
Stian Thorgersen	91a6fc880a	Add default surefire args for tests using new testframework Closes #44098, Closes #44099 Signed-off-by: stianst <stianst@gmail.com>	2026-01-09 08:33:54 +01:00
Pedro Ruivo	99828b4cc4	Fix Cluster Compatibility Tests Closes #45221 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>	2026-01-07 15:26:19 +00:00
Alexander Schwartz	3b01bbb551	Adding x-robots HTTP header to all Keycloak resources (#44864 ) Closes #44863 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2026-01-07 15:11:54 +01:00
ksushant881	5939864b76	Add action that removes a required action step in workflow Closes #44647 Signed-off-by: ksushant881 <ksushant881@gmail.com>	2026-01-05 16:10:20 -03:00
Pedro Igor	0d5766f3a8	Allow running scheduled workflows Closes #44865 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2026-01-05 13:03:47 -03:00
Ruchika Jha	60b369c622	Validate client session timeout and lifetime settings on realm settings edit Closes #44910 Signed-off-by: Ruchika <Ruchika.Jha1@ibm.com> Signed-off-by: Ryan Emerson <remerson@ibm.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Ryan Emerson <remerson@ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2026-01-05 08:50:56 +00:00
Stefan Guilhen	66f3868ccf	Suppress the step's priority in the returned workflow JSON/YAML Closes #45075 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>	2025-12-29 10:26:21 -03:00
Stefan Guilhen	985ec6d306	Add name uniqueness validation to workflows Closes #43914 Signed-off-by: Stefan Guilhen <sguilhen@redhat.com> # Conflicts: # tests/base/src/test/java/org/keycloak/tests/workflow/WorkflowManagementTest.java	2025-12-29 10:24:56 -03:00

1 2 3 4 5 ...

401 commits