keycloak

mirror of https://github.com/keycloak/keycloak.git synced 2026-04-13 21:16:30 -04:00

Author	SHA1	Message	Date
rmartinc	c9686cc040	Documentation for JWT Authorization Grant Closes #44136 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-12-09 12:13:21 +01:00
vramik	5dbc91e028	Deprecate Fine-Grained Admin Permissions v1 Closes #44121 Signed-off-by: vramik <vramik@redhat.com>	2025-12-08 10:26:27 -03:00
Alexander Schwartz	2f81a2fb76	Updating and ordering the release notes Closes #44706 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-12-08 10:55:33 +01:00
Pascal Knüppel	46e5979b17	[OID4VCI] Handle key_attestation_required in metadata endpoint (#44471 ) fixes #43801 Signed-off-by: Pascal Knüppel <pascal.knueppel@governikus.de> Signed-off-by: Pascal Knüppel <captain.p.goldfish@gmx.de> Signed-off-by: Captain-P-Goldfish <captain.p.goldfish@gmx.de> Co-authored-by: Ingrid Kamga <xingridkamga@gmail.com>	2025-12-05 16:00:32 +01:00
forkimenjeckayang	4dd68c0316	[OID4VCI] Conformance Test Fixes (#44439 ) closes #44659 Signed-off-by: forkimenjeckayang <forkimenjeckayang@gmail.com>	2025-12-04 09:03:38 +01:00
Sebastian Łaskawiec	aa789dd023	Logout confirmation Signed-off-by: Sebastian Łaskawiec <sebastian.laskawiec@gmail.com>	2025-11-28 14:24:32 +01:00
Alexis Rico	b0b38176f0	Manage Organization Invites Closes #38809 Signed-off-by: Alexis Rico <sferadev@gmail.com> Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-11-27 10:28:52 +01:00
Awambeng	8406cf34fb	[OID4VCI]: Realm-Configurable Time-Claim Normalization (Randomize/Round) to Mitigate Correlation (#43834 ) Closes #43399 Signed-off-by: Awambeng <awambengrodrick@gmail.com>	2025-11-24 11:07:07 +01:00
Sebastian Łaskawiec	081d8e5a01	Move Kubernetes IdP to preview Some checks failed Weblate Sync / Trigger Weblate to pull the latest changes (push) Has been cancelled Details Closes #42947 Signed-off-by: Sebastian Łaskawiec <sebastian.laskawiec@defenseunicorns.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-11-22 12:56:09 +01:00
Stian Thorgersen	2a78bc67d7	Refactoring around federated client authenticator to better handling lookup of IdPs and clients. Also, introducing updates to documentation. (#44325 ) Closes #44253 Closes #42987 Closes #44063 Signed-off-by: stianst <stianst@gmail.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>	2025-11-22 12:53:22 +01:00
Pedro Ruivo	13ef89664c	More accurate user session expiration logic Closes #44204 Signed-off-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com> Co-authored-by: Pedro Ruivo <1492066+pruivo@users.noreply.github.com>	2025-11-19 21:06:17 +01:00
Alexander Schwartz	15a9a36569	Align formatting of referenced RFCs Closes #44246 Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Stian Thorgersen <stian@redhat.com>	2025-11-17 21:30:13 +01:00
Alexander Schwartz	167249dd6c	Updating the specifics around kubernetes service accounts Closes #44064 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-11-17 11:23:39 +01:00
Ricardo Martin	20f9bb1570	Fix recaptcha links to the new docs.cloud.google.com site Closes #44187 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-11-14 09:37:54 +01:00
Chance Coleman	b2317dabdc	Add configurable HTTP retry mechanism for OCSP validation (#42535 ) Closes #42401 Signed-off-by: UnicornChance <chance@defenseunicorns.com> Signed-off-by: Chance Coleman <139784371+chance-coleman@users.noreply.github.com>	2025-11-13 13:21:13 +01:00
Sebastian Łaskawiec	3288f83dc9	Adding an integration test with Minikube for Kubernetes Service Account Federated Authenticator Closes #42983 Signed-off-by: Sebastian Łaskawiec <sebastian.laskawiec@defenseunicorns.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-11-13 08:52:46 +01:00
Ricardo Martin	de49500393	Client policy to enforce only downscoping in Token Exchange (#44030 ) Closes #43931 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-11-12 08:48:42 +01:00
KONSTANTINOS GEORGILAKIS	1c0d4616a5	hide scopes from scopes_supported in discovery endpoint Some checks are pending Weblate Sync / Trigger Weblate to pull the latest changes (push) Waiting to run Details Closes #10388 Signed-off-by: cgeorgilakis-grnet <cgeorgilakis@admin.grnet.gr> Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-11-03 16:26:12 +00:00
蔡秀吉	e84a1d6363	Fix typos and formatting in OIDC auth flows documentation Closes #43818 Signed-off-by: thc1006 <84045975+thc1006@users.noreply.github.com>	2025-11-01 19:14:41 +00:00
Alexander Schwartz	aadffb94fb	Fix typo in LDAP edit mode in the docs Closes #43720 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-10-27 08:42:44 -03:00
Pedro Igor	6527b139dc	Do not lower-case username and email if users are not imported from LDAP Closes #43621 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-10-23 13:02:33 +02:00
Pedro Igor	2b785425fa	Allow managing realm admin roles if the the realm-admin role is granted Closes #43579 Closes #43578 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Co-authored-by: Vlasta Ramik <vramik@users.noreply.github.com>	2025-10-23 08:02:05 -03:00
Stian Thorgersen	f6ac64907d	SPIFFE should support OIDC JWK endpoint (#43651 ) Closes #43650 Signed-off-by: stianst <stianst@gmail.com>	2025-10-22 15:19:56 +02:00
Alexander Schwartz	7b8626ead5	Make intra-document links work in downstream Closes #43544 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-10-17 10:52:58 +02:00
Martin Kanis	3f70da04f6	Final review and update for UPDATE_EMAIL documentation Closes #42991 Signed-off-by: Martin Kanis <mkanis@redhat.com>	2025-10-16 09:57:23 -03:00
Giuseppe Graziano	bda0e2a67c	Invalidate sessions created with remember me when remember me is disabled for realm Closes #43328 Signed-off-by: Giuseppe Graziano <g.graziano94@gmail.com>	2025-10-14 15:00:41 +00:00
mposolda	c2e49c8c59	'Service accounts roles' should be 'Service account roles' closes #43087 Signed-off-by: mposolda <mposolda@gmail.com>	2025-10-10 11:25:37 +02:00
Martin Kanis	a493213ad4	Hide read-only email attribute in update profile context with update … …email enabled (#43024 ) * Hide read-only email attribute in update profile context with update email enabled Closes #42990 Signed-off-by: Martin Kanis <mkanis@redhat.com> * Simplifying conditions when checking read/write on email attribute and more tests Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> --------- Signed-off-by: Martin Kanis <mkanis@redhat.com> Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com> Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-10-07 12:52:55 +02:00
Pedro Igor	a3db07a8f5	Re-adding max age setting to the update email action (#43036 ) Closes #43035 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-09-30 05:31:23 +02:00
Vinod Anandan	f001b9dde1	Trigger Build. Signed-off-by: Vinod Anandan <vinod@owasp.org>	2025-09-25 10:14:15 +02:00
mposolda	389314a65e	Typo in the latest documentation closes #42918 Signed-off-by: mposolda <mposolda@gmail.com>	2025-09-24 17:23:52 +02:00
Alexander Schwartz	b95cb0c276	Adding explicit anchor for downstream docs Closes #42868 Signed-off-by: Alexander Schwartz <alexander.schwartz@ibm.com>	2025-09-24 11:21:08 +02:00
Marek Posolda	e09ce9e18d	Documentation update for DPoP (#42865 ) closes #42728 Signed-off-by: mposolda <mposolda@gmail.com> Signed-off-by: Marek Posolda <mposolda@gmail.com> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>	2025-09-24 10:00:23 +02:00
vramik	23043b40b4	Fix `reset-password` scope documentation and upgrading guide Closes #42790 Signed-off-by: vramik <vramik@redhat.com>	2025-09-23 07:31:35 -03:00
rmartinc	2015e08e38	Move DPoP option to the capability section in the admin UI Closes #42746 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-09-22 17:27:48 +02:00
stianst	fb83a8ba09	Documentation for federated client authentication Closes #42721 Signed-off-by: stianst <stianst@gmail.com>	2025-09-19 11:54:03 +01:00
Stan Silvert	f99c91291c	Remove duplicated themes documentation. (#42571 ) * Remove duplicated themes documentation. Signed-off-by: Stan Silvert <ssilvert@redhat.com> * Move Theme SPI documentation to Themes Guide Signed-off-by: Stan Silvert <ssilvert@redhat.com> * Fix link so test will pass. Fixes #42396 Signed-off-by: Stan Silvert <ssilvert@redhat.com> * Fix broken links. Closes #42396 Signed-off-by: Stan Silvert <ssilvert@redhat.com> * Fix broken link. Closes #42396 Signed-off-by: Stan Silvert <ssilvert@redhat.com> --------- Signed-off-by: Stan Silvert <ssilvert@redhat.com>	2025-09-18 10:31:52 +02:00
Marek Posolda	d9d19791a4	Clarifying OIDC logout documentation. Removing obsolete unused docs p… (#42636 ) closes #41792 Signed-off-by: mposolda <mposolda@gmail.com> Signed-off-by: Marek Posolda <mposolda@gmail.com> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>	2025-09-16 17:37:42 +02:00
Ricardo Martin	a2acdda535	Automatic download and cache of the SAML client public keys (#41947 ) Closes #17028 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-09-16 13:07:33 +02:00
Alexander Schwartz	5cfdaebcea	Add missing fields for client offline session timeout and lifespan Closes #42369 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-09-11 11:46:50 +02:00
Bagautdino	d225bce21f	feat(FGAPv2): introduce RESET_PASSWORD scope and evaluation - Add RESET_PASSWORD to AdminPermissionsSchema.USERS - Require RESET_PASSWORD in UserResource.resetPassword() - Expose canResetPassword()/requireResetPassword() - Implement FGAP v2 deny-overrides + secure-by-default + optional fallback - Include access.resetPassword for Admin Console Closes #41901 Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com> Signed-off-by: Bagautdino <336373@edu.itmo.ru>	2025-09-03 15:10:56 -03:00
Alexander Schwartz	665f4140da	Adding missing docs for 26.4 release notes Closes #42252 Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Vinod Anandan <vinod@owasp.org>	2025-09-02 17:47:12 -03:00
Tobias Genannt	ca93863d60	fix: Update to new dash standard Closes #42270 Signed-off-by: Tobias Genannt <tobias.genannt@gmail.com>	2025-09-01 12:49:02 +00:00
Alexis Rico	224ccbb79d	Make organization `domains` optional Closes #31285 Signed-off-by: Alexis Rico <sferadev@gmail.com>	2025-08-27 18:11:15 -03:00
Niko Köbler	236d2f9f62	Add configuration option to automatically add recovery codes action after otp configuration closes #41836 Signed-off-by: Niko Köbler <niko@n-k.de> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-08-27 17:56:59 +02:00
Ricardo Martin	46e990b7a7	Check for non-ascii local part on emails depending on SMTP configuration Closes #41994 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-08-21 08:16:47 +00:00
Steven Hawkins	b6f039a4cc	fix: adding a default for ldap connection timeout (#41726 ) closes: #39299 Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com>	2025-08-19 16:43:42 +00:00
Sebastian Łaskawiec	988bf9cb0b	WelcomeResource do not create temporary admins (#41416 ) Signed-off-by: Sebastian Łaskawiec <sebastian.laskawiec@defenseunicorns.com>	2025-08-18 17:31:26 +02:00
Ricardo Martin	949ef35a3b	Allow and control sending UTF-8 emails in the default email sender impl Closes #41023 Signed-off-by: rmartinc <rmartinc@redhat.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-08-15 10:43:38 +00:00
Pedro Igor	3bf46e5421	"linked-accounts" endpoint displays all Identity providers Closes #19732 Signed-off-by: Réda Housni Alaoui <reda-alaoui@hey.com> Co-authored-by: Réda Housni Alaoui <reda-alaoui@hey.com>	2025-08-14 15:21:03 +02:00
Ricardo Martin	ef312b570c	Final changes for passkeys documentation (#41646 ) Closes #41557 Signed-off-by: rmartinc <rmartinc@redhat.com> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com> Co-authored-by: Marek Posolda <mposolda@gmail.com>	2025-08-13 09:01:15 +02:00
Peter Skopek	651d651c30	Add missing artifact descriptions to allow Maven Central Portal Publisher pass validation process. (#40822 ) Signed-off-by: Peter Skopek <pskopek@redhat.com>	2025-08-12 16:50:17 +02:00
Alexander Schwartz	c2515bbb88	Fixing typo and formatting Closes #41620 Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>	2025-08-11 08:26:10 +02:00
Pedro Igor	84fc9bb3e5	Allow forwarding parameters set as a client note in the authentication session Closes #41670 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-08-06 14:57:47 -03:00
huyenvu2101	5436f9781c	Allow setting default value for userprofile attribute Closes #36160 Signed-off-by: huyenvu2101 <vhuyen2101@gmail.com>	2025-08-06 13:59:54 -03:00
Takashi Norimatsu	cb4e06b6f8	FAPI 2.0 Security Profile Final - Documentation closes #41121 Signed-off-by: Takashi Norimatsu <takashi.norimatsu.ws@hitachi.com>	2025-08-01 09:24:30 +02:00
forkimenjeckayang	43610cfa67	[OID4VCI] Update SD-JWT VCs Format Identifier to dc+sd-jwt (#41233 ) Closes #39293 Signed-off-by: forkimenjeckayang <forkimenjeckayang@gmail.com>	2025-08-01 09:13:35 +02:00
Alexander Schwartz	e1b3afb686	Refresh token for an OAuth2 based IDP when retrieving the IDP token Closes #14644 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-07-31 11:11:34 +02:00
rmartinc	1f608fae6e	Create a new condition for credential type and add it to default flows Closes #41354 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-07-31 10:14:15 +02:00
Martin Bartoš	57cb321ce0	ExternalLinks are broken in documentation Closes #41491 Signed-off-by: Martin Bartoš <mabartos@redhat.com>	2025-07-30 11:21:11 +02:00
rmartinc	e0bba39da0	Allow configure encryption details for SAML clients Closes #40933 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-07-18 20:13:40 +02:00
Martin Kanis	85b494ec51	Review and update the documentation regarding the UPDATE EMAIL feature Closes #40226 Signed-off-by: Martin Kanis <mkanis@redhat.com>	2025-07-17 15:27:09 +00:00
Alexander Schwartz	180745b65f	Fix em-dash in SPI options in the docs Closes #41152 Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Steven Hawkins <shawkins@redhat.com>	2025-07-16 12:18:09 -03:00
Pedro Igor	87f30a6285	Adding a config to the UPDATE_EMAIL action to force users to verify email Closes #32569 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-07-16 16:21:08 +02:00
mposolda	274afa88fa	Add option 'Requires short state parameter' to OIDC IDP closes #40237 Signed-off-by: mposolda <mposolda@gmail.com>	2025-07-11 16:17:03 +02:00
Pascal Knüppel	f39a37d8d1	[OID4VCI] Move realm attributes to clientScope and protocol-mappers (#39768 ) fixes #39527 Signed-off-by: Pascal Knüppel <pascal.knueppel@governikus.de> Signed-off-by: Captain-P-Goldfish <captain.p.goldfish@gmx.de>	2025-07-10 14:46:36 +02:00
Pedro Ruivo	9322d71d61	UserSession Offline removed from DB if not in cache Fixes #40754 Signed-off-by: Pedro Ruivo <pruivo@redhat.com> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>	2025-07-07 20:52:06 +02:00
Ricardo Martin	8624101701	Documentation changes for Passkeys (#40728 ) Closes #40705 Signed-off-by: rmartinc <rmartinc@redhat.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net> Signed-off-by: Ricardo Martin <rmartinc@redhat.com>	2025-06-27 14:59:46 +02:00
andymunro	e7b4f745ad	Clarify OpenShift instructions (#40488 ) Closes #40487 Signed-off-by: AndyMunro <amunro@redhat.com>	2025-06-20 17:07:48 +02:00
Henrik S.	c952cb66ad	Update authentication flows documentation to match new GUI Closes #40514 Signed-off-by: Henrik S. <henrik.strath@volvocars.com> Signed-off-by: Alexander Schwartz <aschwart@redhat.com> Co-authored-by: Alexander Schwartz <aschwart@redhat.com>	2025-06-16 08:24:43 +00:00
Steven Hawkins	76bc9fadcb	fix: adding a -- separator for spi options (#40005 ) * fix: adding a -- separator for spi options closes: #39063 Signed-off-by: Steve Hawkins <shawkins@redhat.com> * adding a warning for ambiguous spi options also adding a note about the change Signed-off-by: Steve Hawkins <shawkins@redhat.com> # Conflicts: # docs/documentation/upgrading/topics/changes/changes-26_3_0.adoc * updating docs to the new format Signed-off-by: Steve Hawkins <shawkins@redhat.com> # Conflicts: # docs/guides/high-availability/examples/generated/keycloak-ispn.yaml # docs/guides/high-availability/examples/generated/keycloak.yaml * internally using the new spi options also adding a deprecation notice Signed-off-by: Steve Hawkins <shawkins@redhat.com> * Apply suggestions from code review Co-authored-by: Martin Bartoš <mabartos@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> * correcting options output adding + + inlining where needed Signed-off-by: Steve Hawkins <shawkins@redhat.com> * adding test showing the env mapping with __ Signed-off-by: Steve Hawkins <shawkins@redhat.com> --------- Signed-off-by: Steve Hawkins <shawkins@redhat.com> Signed-off-by: Steven Hawkins <shawkins@redhat.com> Co-authored-by: Martin Bartoš <mabartos@redhat.com>	2025-06-13 16:13:53 +02:00
Ricardo Martin	b89f8a0225	Documentation changes for the 2FA additions Closes #40001 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-06-12 09:30:27 +02:00
mposolda	b03b9f9e3a	Improve documentation of service-accounts and make it more clear. Delete the unused file service-accounts.adoc closes #39748 Signed-off-by: mposolda <mposolda@gmail.com>	2025-06-05 08:45:12 +02:00
Pedro Igor	7cc055f8a6	Verify brokered user email based on the email_verified claim from the ID Token returned by the OP Closes #39885 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-05-29 10:45:18 -03:00
Pedro Igor	e6e6fa60fa	Adding OAuth2-based identity broker Closes #35266 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-05-27 12:07:01 -03:00
rmartinc	3c511635ba	Skip AIA for webauthn register if a crendential of teh correct type already exists Closes #39191 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-05-20 18:09:12 +02:00
Kai J. Witt	c76bb0683c	Make max auth age configurable for all required actions by default Moved the current configuration implementation for the update password Closes #39408 Signed-off-by: Kai Josef Witt <KWitt@vhv.de> Signed-off-by: Marek Posolda <mposolda@gmail.com> Co-authored-by: Kai Josef Witt <KWitt@vhv.de> Co-authored-by: Marek Posolda <mposolda@gmail.com>	2025-05-15 08:44:38 +02:00
Awambeng	ea4ef74917	Fix doc(oid4vc): Correct realm-attributes example and update HTTP method in docs (#39409 ) Closes #39264 Signed-off-by: Awambeng Rodrick <awambengrodrick@gmail.com>	2025-05-13 10:09:14 +02:00
rmartinc	4730dbdd8d	Make recovery codes supported Closes #38994 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-04-29 10:25:46 +02:00
mposolda	e9283ee71d	Documentation for recovery codes (deprecation of password policy and required action config) closes #39245 Signed-off-by: mposolda <mposolda@gmail.com>	2025-04-29 09:29:38 +02:00
Emmanuel Lécharny	a48469896e	Added a link to the ApacheDS doc for server side password hashing Closes #39136 Signed-off-by: Emmanuel Lécharny <elecharny@gmail.com>	2025-04-24 09:25:03 +00:00
Emmanuel Lécharny	1dc97d5d4d	Update ldap.adoc with ApacheDS details Added some precision about ApacheDS password management. Closes #39136 Signed-off-by: Emmanuel Lécharny <elecharny@apache.org> Signed-off-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>	2025-04-23 07:55:59 +02:00
Marek Posolda	f8a4a8da86	Unexpected AIA Cause Server Errors closes #37526 Signed-off-by: mposolda <mposolda@gmail.com>	2025-04-17 14:15:07 +00:00
Pedro Igor	1ba8fe16ac	Deprecate for removal Instagram Identity Broker (#38998 ) Closes #37967 Closes #36562 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-04-17 09:07:06 +02:00
Pedro Igor	288b6dae12	More information to docs Closes #38798 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-04-10 20:03:05 +02:00
Pedro Igor	ae88d7921f	Improvements to partial evaluation Closes #38732 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-04-09 18:15:28 +02:00
Pedro Igor	87430fc181	Add impersonate-members scope to group resource type Closes #38566 Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>	2025-04-07 14:56:27 +00:00
vramik	6488890585	[FGAP:V2] remove configure scope from Client resource type Closes #38567 Signed-off-by: vramik <vramik@redhat.com>	2025-04-07 07:05:02 -03:00
Stefan Guilhen	c4c3e2eee6	Allow redirection to idp when user email matches any of the org domains Signed-off-by: Stefan Guilhen <sguilhen@redhat.com> Co-authored-by: Martin Panzer <martin.panzer@active-logistics.com> Closes #33804	2025-04-04 11:28:04 -03:00
Vlasta Ramik	18c8308bb4	[FGAP] Remove redundant sentense from fine grained admin permissions docs Closes #38677 Signed-off-by: vramik <vramik@redhat.com>	2025-04-04 09:41:17 +02:00
vramik	f076b99407	FGAP documentation Closes #37245 Signed-off-by: vramik <vramik@redhat.com>	2025-04-03 09:44:32 -03:00
Marek Posolda	6654e56a7c	Polish documentation for audience and client scopes (#38484 ) closes #19127 Signed-off-by: mposolda <mposolda@gmail.com> Co-authored-by: Bruno Oliveira da Silva <bruno@abstractj.com> Signed-off-by: Marek Posolda <mposolda@gmail.com>	2025-04-03 08:43:06 +02:00
rmartinc	a10c8119d4	Define a max expiration window for Signed JWT client authentication Closes #38576 Signed-off-by: rmartinc <rmartinc@redhat.com>	2025-04-02 18:32:54 +02:00
Alexander Schwartz	e7474646ee	Explicit target for cross-reference 2FA in server admin guide (#38573 ) Closes #38572 Signed-off-by: Alexander Schwartz <aschwart@redhat.com>	2025-04-01 13:29:30 +02:00
mposolda	cd4e5bc784	Release notes for oid4vci docs closes #38485 Signed-off-by: mposolda <mposolda@gmail.com>	2025-03-29 19:25:24 +01:00
Stefan Guilhen	89d659ee36	Add section about support for federated members in the organization documentation Signed-off-by: Stefan Guilhen <sguilhen@redhat.com> Closes #38471	2025-03-27 08:03:35 -03:00
Ricardo Martin	a7e63837db	Recovery codes documentation (#38407 ) Closes #30702 Signed-off-by: rmartinc <rmartinc@redhat.com> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>	2025-03-27 09:59:14 +01:00
Awambeng	27a7a301e7	Add documentation for configuring Keycloak as a VC issuer closes #38256 Signed-off-by: Awambeng Rodrick <awambengrodrick@gmail.com>	2025-03-26 20:50:43 +01:00
Marek Posolda	db23d8e665	Clarify that XOAUTH2 configuration with Microsoft Office365 is community contributed Closes #38376 Signed-off-by: mposolda <mposolda@gmail.com> Signed-off-by: Marek Posolda <mposolda@gmail.com> Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net> Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>	2025-03-26 15:54:38 +01:00
Sebastian Rose	4fb1c41155	Sending Mails via SMTP and XOAUTH2 authentication mechanism Closes #17432 Signed-off-by: Sebastian Rose <sebastian.rose@gmail.com>	2025-03-21 10:12:18 +01:00

1 2 3 4 5 ...

369 commits