mirror of https://github.com/keycloak/keycloak.git synced 2026-06-25 09:18:56 -04:00

Gestion d'identité et SSO

Find a file

Ponshankar B 43b67c60c9 Some checks are pending Warm JS Wireit cache / Warm Wireit cache on main (push) Waiting to run Details Fix SAML client creation failing for client IDs containing special characters (#50198 ) Closes #50177 Signed-off-by: Ponshankar <mail4ponz@gmail.com>		2026-06-25 14:12:35 +02:00
.github	Add conformance tests to CI (#49866 )	2026-06-22 08:56:53 +02:00
.idea	Add Intellij project icon	2023-09-18 12:39:16 +02:00
.mvn	Update to Maven 3.9.16	2026-06-04 11:13:13 +02:00
.trivy	Trivy license ignore policy	2026-06-11 08:36:24 +02:00
adapters	Ensure that an encrypted assertion is signed if response is not signed (#355 ) (#46929 )	2026-03-09 10:25:27 +01:00
authz	Reject indefinite-length encoding in ASN1Decoder.readLength()	2026-06-03 14:39:21 -03:00
authzen	AuthZen Evaluations API	2026-05-07 15:27:59 -03:00
boms	Add Spotless plugin with removeUnusedImports check enabled	2025-10-13 13:32:01 +02:00
common	fix: normalizing logic when context is not available (#49138 )	2026-06-24 15:05:30 +02:00
core	reject sd-jwt disclosure whose claim name already exists (#50182 )	2026-06-23 09:03:27 +02:00
crypto	Fix SAML client creation failing for client IDs containing special characters (#50198 )	2026-06-25 14:12:35 +02:00
dependencies	Add missing artifact descriptions to allow Maven Central Portal Publisher pass validation process. (#40822 )	2025-08-12 16:50:17 +02:00
distribution	Add profile to enable deployment of keycloak-api-docs-dist pom	2026-06-08 14:20:12 +02:00
docs	docs(admin api v2): add release note for new experimental feature (#50187 )	2026-06-25 12:47:16 +02:00
federation	fix: include nested group members for recursive retrieve strategy	2026-06-25 08:05:19 -03:00
integration	Full user representation when querying organization members	2026-06-22 09:08:11 -03:00
js	Add sort parameters to Client Admin API v2 (#49872 )	2026-06-25 11:39:38 +02:00
misc	Bump com.fasterxml.jackson.core:jackson-databind in /misc/test-stability (#50290 )	2026-06-24 16:30:29 +00:00
model	Features/49336 add federated users support for issued verifiable credentials (#50293 )	2026-06-25 14:01:24 +02:00
operator	Fix typo "operatiorn" in KeycloakClientBaseController error message (#49798 )	2026-06-10 21:23:08 +00:00
quarkus	fix: refining the health check and exposing excluding the health check (#49273 )	2026-06-25 12:42:57 +02:00
rest	Add sort parameters to Client Admin API v2 (#49872 )	2026-06-25 11:39:38 +02:00
saml-core	Fix parsing SAML11 incorrect requests. (#609 ) (#49119 )	2026-05-19 16:44:10 +00:00
saml-core-api	Use MIME decoder instead of the default one to replace deprecated Base64 class	2026-01-09 16:38:09 +01:00
scim	Enforce organization groups not accessible from SCIM API	2026-06-24 20:42:52 +02:00
server-spi	use constant-time comparison when validating otp codes	2026-06-24 22:58:31 +02:00
server-spi-private	Removing unused variables (#50042 )	2026-06-25 10:41:49 +02:00
services	token exchange with lightweight access token	2026-06-25 11:43:05 +02:00
ssf	[SSF] Protect push delivery secret on stream admin endpoint	2026-06-18 15:31:40 -03:00
test-framework	fix: Identity providers should not be hidden from login page when the user goes back from the reset credentials page (#48814 )	2026-06-19 09:01:39 +02:00
tests	Features/49336 add federated users support for issued verifiable credentials (#50293 )	2026-06-25 14:01:24 +02:00
testsuite	fix: include nested group members for recursive retrieve strategy	2026-06-25 08:05:19 -03:00
themes	[OID4VCI] Enforce DID uniqueness and restrict DID updates to admins (#50112 )	2026-06-24 20:38:07 +02:00
util	Update dependencies of embedded-ldap	2026-06-04 07:26:35 -03:00
.editorconfig	Proposed import order (#43432 )	2025-11-14 09:34:49 +01:00
.gitattributes	enforce LF line endings on *.tsx files (#45997 )	2026-02-18 10:28:55 +00:00
.gitignore	[OID4VCI] Credential Offer must be created by Issuer not Holder (#44255 )	2025-11-27 16:07:10 +01:00
.gitleaks.toml	Updated .gitleaks.toml to ignore false positive in RedirectUtilsTest (#33346 )	2024-09-27 14:32:36 +02:00
ADOPTERS.md	Add Xata to ADOPTERS.md (#40802 )	2025-06-30 19:32:32 +02:00
CONTRIBUTING.md	Minor changed in the contributing.md file (#50214 )	2026-06-22 14:13:39 +02:00
get-version.sh	Make shebang in bash scripts consistent (#37369 )	2026-02-17 11:32:28 +01:00
GOVERNANCE.md	Update governance model around changes in maintainership (#29292 )	2024-05-22 08:24:10 +02:00
LICENSE.txt
MAINTAINERS.md	New maintainer - Ricardo Martin (#48672 )	2026-05-07 09:08:01 +02:00
maven-settings.xml	[KEYCLOAK-11764] Upgrade to Wildfly 19	2020-04-24 08:19:43 -03:00
mvnw	Handle special characters in mvnw.cmd Windows paths	2026-04-07 18:24:21 +02:00
mvnw.cmd	Handle special characters in mvnw.cmd Windows paths	2026-04-07 18:24:21 +02:00
pom.xml	Upgrade to Quarkus 3.33.2.1 (#50102 )	2026-06-19 07:15:01 +02:00
PR-CHECKLIST.md	Introduce CODEOWNERS (#16637 )	2023-01-30 13:05:45 +01:00
README.md	Add client libraries repository to README	2026-05-28 10:59:02 +02:00
SECURITY-INSIGHTS.yml	Provide an OpenSSF security insights manifest file	2024-02-15 11:02:33 -03:00
set-version.sh	Make shebang in bash scripts consistent (#37369 )	2026-02-17 11:32:28 +01:00

README.md

Open Source Identity and Access Management

Add authentication to applications and secure services with minimum effort. No need to deal with storing users or authenticating users.

Keycloak provides user federation, strong authentication, user management, fine-grained authorization, and more.

Help and Documentation

Documentation
User Mailing List - Mailing list for help and general questions about Keycloak
Join #keycloak for general questions, or #keycloak-dev on Slack for design and development discussions, by creating an account at https://slack.cncf.io/.

Reporting Security Vulnerabilities

If you have found a security vulnerability, please look at the instructions on how to properly report it.

Reporting an issue

If you believe you have discovered a defect in Keycloak, please open an issue. Please remember to provide a good summary, description as well as steps to reproduce the issue.

Getting started

To run Keycloak, download the distribution from our website. Unzip and run:

bin/kc.[sh|bat] start-dev

Alternatively, you can use the Docker image by running:

docker run quay.io/keycloak/keycloak start-dev

For more details refer to the Keycloak Documentation.

Building from Source

To build from source, refer to the building and working with the code base guide.

Testing

To run tests, refer to the running tests guide.

Writing Tests

To write tests, refer to the writing tests guide.

Contributing

Before contributing to Keycloak, please read our contributing guidelines. Participation in the Keycloak project is governed by the CNCF Code of Conduct.

Joining a community meeting is a great way to get involved and help shape the future of Keycloak.

Code of Conduct

We are committed to providing a safe, welcoming, and constructive environment for all Keycloak contributors and users. To protect this space, we actively enforce our Code of Conduct. If you wish to report an incident or appeal a moderation decision, please email keycloak-coc@googlegroups.com.

Other Keycloak Projects

Keycloak - Keycloak Server and Java adapters
Keycloak Client - Keycloak client libraries
Keycloak QuickStarts - QuickStarts for getting started with Keycloak
Keycloak Node.js Connect - Node.js adapter for Keycloak

License

Apache License, Version 2.0