| KEYCLOAK-13259 |
KEYCLOAK-13259 |
https://issues.redhat.com/browse/KEYCLOAK-13259 |
| KEYCLOAK-12986 |
KEYCLOAK-12986 BruteForceProtector does not log failures when login failure in PostBroker flow |
https://issues.redhat.com/browse/KEYCLOAK-12986 |
| KEYCLOAK-12156 |
KEYCLOAK-12156 LogoutEndpoint does not verify token type of id_token_hint |
https://issues.redhat.com/browse/KEYCLOAK-12156 |
| KEYCLOAK-13393 |
[KEYCLOAK-13393] Account2 marked as experimental |
https://issues.redhat.com/browse/KEYCLOAK-13393 |
| KEYCLOAK-13380 |
KEYCLOAK-13380 Validate alignment |
https://issues.redhat.com/browse/KEYCLOAK-13380 |
| KEYCLOAK-13390 |
KEYCLOAK-13390 license file update before 9.0.1 release |
https://issues.redhat.com/browse/KEYCLOAK-13390 |
| KEYCLOAK-13388 |
KEYCLOAK-13388 Trailing comma in tsconfig.json |
https://issues.redhat.com/browse/KEYCLOAK-13388 |
| KEYCLOAK-13386 |
[KEYCLOAK-13386] - SslRequired.EXTERNAL doesn't work for identity broker validations |
https://issues.redhat.com/browse/KEYCLOAK-13386 |
| KEYCLOAK-13379 |
KEYCLOAK-13379 added now excluded project files |
https://issues.redhat.com/browse/KEYCLOAK-13379 |
| KEYCLOAK-13369 |
KEYCLOAK-13369 Not possible to move groups in admin console |
https://issues.redhat.com/browse/KEYCLOAK-13369 |
| KEYCLOAK-13368 |
KEYCLOAK-13368 TestClassProvider undertow server not stopped after testsuite |
https://issues.redhat.com/browse/KEYCLOAK-13368 |
| KEYCLOAK-8372 |
KEYCLOAK-8372 - User Federation tests - fixing for different vendors (#6909) |
https://issues.redhat.com/browse/KEYCLOAK-8372 |
| KEYCLOAK-12870 |
KEYCLOAK-12870 - Allow to pick arbitrary user for IdP linking (#6828) |
https://issues.redhat.com/browse/KEYCLOAK-12870 |
| KEYCLOAK-13273 |
[KEYCLOAK-13273] - Remove group policy when group is removed |
https://issues.redhat.com/browse/KEYCLOAK-13273 |
| KEYCLOAK-13356 |
KEYCLOAK-13356 Update licenses for kerby-asn1 |
https://issues.redhat.com/browse/KEYCLOAK-13356 |
| KEYCLOAK-13348 |
KEYCLOAK-13348 license files updates - due to broken product build |
https://issues.redhat.com/browse/KEYCLOAK-13348 |
| KEYCLOAK-4923 |
KEYCLOAK-4923: Client Service Account Roles are not exported |
https://issues.redhat.com/browse/KEYCLOAK-4923 |
| KEYCLOAK-12696 |
KEYCLOAK-12696 license files updates |
https://issues.redhat.com/browse/KEYCLOAK-12696 |
| KEYCLOAK-13007 |
KEYCLOAK-13007 Add LDAPAccountTest |
https://issues.redhat.com/browse/KEYCLOAK-13007 |
| KEYCLOAK-12696 |
KEYCLOAK-12696 Upgrade to webauthn4j 0.10.2.RELEASE |
https://issues.redhat.com/browse/KEYCLOAK-12696 |
| KEYCLOAK-13249 |
KEYCLOAK-13249 jpa-changelog-8.0.0.xml contains whitespace character |
https://issues.redhat.com/browse/KEYCLOAK-13249 |
| KEYCLOAK-12768 |
KEYCLOAK-12768: Prevent reserved characters in URLs |
https://issues.redhat.com/browse/KEYCLOAK-12768 |
| KEYCLOAK-12844 |
KEYCLOAK-12844: keycloak.d.ts does not belong in new account console |
https://issues.redhat.com/browse/KEYCLOAK-12844 |
| KEYCLOAK-13257 |
KEYCLOAK-13257 Fix WelcomeScreenTest.accountSecurityTest |
https://issues.redhat.com/browse/KEYCLOAK-13257 |
| KEYCLOAK-13256 |
KEYCLOAK-13256 Fix WebAuthn in new Account Console tests |
https://issues.redhat.com/browse/KEYCLOAK-13256 |
| KEYCLOAK-13036 |
[KEYCLOAK-13036] Fix KeycloakElytronCSVaultTest failures on IBM JDK - credential store is generated on the fly for the test, avoiding incompatibilities between implementations of keystores |
https://issues.redhat.com/browse/KEYCLOAK-13036 |
| KEYCLOAK-5162 |
KEYCLOAK-5162 Add index to even table |
https://issues.redhat.com/browse/KEYCLOAK-5162 |
| KEYCLOAK-11282 |
[KEYCLOAK-11282] - Properly resolve config resolver |
https://issues.redhat.com/browse/KEYCLOAK-11282 |
| KEYCLOAK-11412 |
KEYCLOAK-11412 Display more nice error message when creating top level group with same name |
https://issues.redhat.com/browse/KEYCLOAK-11412 |
| KEYCLOAK-12869 |
KEYCLOAK-12869 REST sends credential type when no credential exists and credential disabled |
https://issues.redhat.com/browse/KEYCLOAK-12869 |
| KEYCLOAK-9782 |
KEYCLOAK-9782: Do not allow duplicate group name when updating |
https://issues.redhat.com/browse/KEYCLOAK-9782 |
| KEYCLOAK-12881 |
KEYCLOAK-12881 KEYCLOAK-13099 Update FederatedIdentities and Groups on POST |
https://issues.redhat.com/browse/KEYCLOAK-12881 |
| KEYCLOAK-12344 |
KEYCLOAK-12344 Update examples version |
https://issues.redhat.com/browse/KEYCLOAK-12344 |
| KEYCLOAK-13174 |
KEYCLOAK-13174 Not possible to delegate creating or deleting OTP credential to userStorage |
https://issues.redhat.com/browse/KEYCLOAK-13174 |
| KEYCLOAK-12876 |
KEYCLOAK-12876 KEYCLOAK-13148 KEYCLOAK-13149 KEYCLOAK-13151 Re-introduce some changes to preserve UserStorage SPI backwards compatibility. Added test for backwards compatibility of user storage |
https://issues.redhat.com/browse/KEYCLOAK-12876 |
| KEYCLOAK-13186 |
KEYCLOAK-13186 Remove role information from RefreshTokens |
https://issues.redhat.com/browse/KEYCLOAK-13186 |
| KEYCLOAK-12579 |
KEYCLOAK-12579: LDAP groups duplicated during UI listing of user groups |
https://issues.redhat.com/browse/KEYCLOAK-12579 |
| KEYCLOAK-10029 |
KEYCLOAK-10029 Offline token migration fix. Always test offline-token migration when run MigrationTest |
https://issues.redhat.com/browse/KEYCLOAK-10029 |
| KEYCLOAK-13237 |
KEYCLOAK-13237 Allow look ahead window set to 0 for otp policy |
https://issues.redhat.com/browse/KEYCLOAK-13237 |
| KEYCLOAK-11345 |
[KEYCLOAK-11345] - Test basic features of Keycloak.X with current tetsuite |
https://issues.redhat.com/browse/KEYCLOAK-11345 |
| KEYCLOAK-13233 |
KEYCLOAK-13233 Fix missing text-security files |
https://issues.redhat.com/browse/KEYCLOAK-13233 |
| KEYCLOAK-13253 |
KEYCLOAK-13253 read rpId from policy in WebAuthnAuthenticator |
https://issues.redhat.com/browse/KEYCLOAK-13253 |
| KEYCLOAK-11808 |
KEYCLOAK-11808 update testsuite to use current jdbc driver version for migration testing |
https://issues.redhat.com/browse/KEYCLOAK-11808 |
| KEYCLOAK-13163 |
KEYCLOAK-13163 Fixed searching for user with fine-grained permissions |
https://issues.redhat.com/browse/KEYCLOAK-13163 |
| KEYCLOAK-13069 |
KEYCLOAK-13069 Fix failing RH-SSO base tests |
https://issues.redhat.com/browse/KEYCLOAK-13069 |
| KEYCLOAK-13260 |
KEYCLOAK-13260 Fix "Test authentication" button for LDAP User Federation |
https://issues.redhat.com/browse/KEYCLOAK-13260 |
| KEYCLOAK-11424 |
KEYCLOAK-11424 DBAllocatorUnavailableException |
https://issues.redhat.com/browse/KEYCLOAK-11424 |
| KEYCLOAK-13074 |
KEYCLOAK-13074 Don't return LDAP group members if under IMPORT mode |
https://issues.redhat.com/browse/KEYCLOAK-13074 |
| KEYCLOAK-9851 |
KEYCLOAK-9851 Removed properties from realm json attributes that are included as fields |
https://issues.redhat.com/browse/KEYCLOAK-9851 |
| KEYCLOAK-13026 |
KEYCLOAK-13026 Set path of OAuth_Token_Request_State cookie to / |
https://issues.redhat.com/browse/KEYCLOAK-13026 |
| KEYCLOAK-12799 |
KEYCLOAK-12799 Missing Cancel button on The WebAuthn setup screen when using AIA |
https://issues.redhat.com/browse/KEYCLOAK-12799 |
| KEYCLOAK-10330 |
KEYCLOAK-10330 Force Jackson2 provider to be used by Keycloak admin client, to prevent json-b provider taking over |
https://issues.redhat.com/browse/KEYCLOAK-10330 |
| KEYCLOAK-12885 |
KEYCLOAK-12885 Make sure empty protocol in client scope doesn't result in NPE in well-known endpoint |
https://issues.redhat.com/browse/KEYCLOAK-12885 |
| KEYCLOAK-13056 |
[KEYCLOAK-13056] - Searching clients with reduced permissions results in 403 |
https://issues.redhat.com/browse/KEYCLOAK-13056 |
| KEYCLOAK-13175 |
[KEYCLOAK-13175] - Setting the enforcement mode when fetching lazily fetching resources |
https://issues.redhat.com/browse/KEYCLOAK-13175 |
| KEYCLOAK-10967 |
KEYCLOAK-10967 Add JSON body methods for test ldap and smtp connections. Deprecate old form based methods. |
https://issues.redhat.com/browse/KEYCLOAK-10967 |
| KEYCLOAK-13102 |
KEYCLOAK-13102 Remove error log message on invalid response_type |
https://issues.redhat.com/browse/KEYCLOAK-13102 |
| KEYCLOAK-12968 |
KEYCLOAK-12968 fix ClientTest.getAllClientsSearchAndPagination for postgresql |
https://issues.redhat.com/browse/KEYCLOAK-12968 |
| KEYCLOAK-12192 |
[KEYCLOAK-12192] - Missing Input Validation in IDP Authorization URLs |
https://issues.redhat.com/browse/KEYCLOAK-12192 |
| KEYCLOAK-13181 |
KEYCLOAK-13181 Fix NPE in EAP 6 adapter |
https://issues.redhat.com/browse/KEYCLOAK-13181 |
| KEYCLOAK-9346 |
KEYCLOAK-9346 Add new KeycloakPromise to support native promises |
https://issues.redhat.com/browse/KEYCLOAK-9346 |
| KEYCLOAK-13116 |
KEYCLOAK-13116 Fix backwards compatilbity changes in LocaleSelectorSPI |
https://issues.redhat.com/browse/KEYCLOAK-13116 |
| KEYCLOAK-12749 |
KEYCLOAK-12749 single worker/IO thread, use OAUTH2 constants |
https://issues.redhat.com/browse/KEYCLOAK-12749 |
| KEYCLOAK-12749 |
KEYCLOAK-12749 fix "invalid state" error due to IE requesting favicon |
https://issues.redhat.com/browse/KEYCLOAK-12749 |
| KEYCLOAK-12285 |
KEYCLOAK-12285 Add support for RestEasy 4 to admin client |
https://issues.redhat.com/browse/KEYCLOAK-12285 |
| KEYCLOAK-12980 |
[KEYCLOAK-12980] Username not updated when "Email as username" is enabled |
https://issues.redhat.com/browse/KEYCLOAK-12980 |
| KEYCLOAK-13119 |
KEYCLOAK-13119 Fixing migration to Keycloak 2.2.0+ to correctly preserve default identity provider |
https://issues.redhat.com/browse/KEYCLOAK-13119 |
| KEYCLOAK-11804 |
[KEYCLOAK-11804] - Block service accounts to authenticate or manage credentials |
https://issues.redhat.com/browse/KEYCLOAK-11804 |
| KEYCLOAK-12612 |
[KEYCLOAK-12612][KEYCLOAK-12944] Fix validation of SAML destination URLs - no longer compare them to the server absolutePath; instead use the base URI to build the validation URL |
https://issues.redhat.com/browse/KEYCLOAK-12612 |
| KEYCLOAK-11903 |
KEYCLOAK-11903 Test for XSW attacks |
https://issues.redhat.com/browse/KEYCLOAK-11903 |
| KEYCLOAK-13167 |
KEYCLOAK-13167 - JDBC resource leak in custom migrations |
https://issues.redhat.com/browse/KEYCLOAK-13167 |
| KEYCLOAK-12695 |
KEYCLOAK-12695 Upgrade to openshift-restclient-java 8.0.0.Final |
https://issues.redhat.com/browse/KEYCLOAK-12695 |
| KEYCLOAK-12606 |
KEYCLOAK-12606 Add test |
https://issues.redhat.com/browse/KEYCLOAK-12606 |
| KEYCLOAK-13085 |
KEYCLOAK-13085 minor fixes |
https://issues.redhat.com/browse/KEYCLOAK-13085 |
| KEYCLOAK-13085 |
KEYCLOAK-13085 pt_BR messages for login and email |
https://issues.redhat.com/browse/KEYCLOAK-13085 |
| KEYCLOAK-12450 |
KEYCLOAK-12450 Revert em.clear() call |
https://issues.redhat.com/browse/KEYCLOAK-12450 |
| KEYCLOAK-10898 |
KEYCLOAK-10898 WildFly Adapter CLI based installation scripts |
https://issues.redhat.com/browse/KEYCLOAK-10898 |
| KEYCLOAK-13161 |
KEYCLOAK-13161 Use iterator instead of for-each loop in ClientCredentialsProviderUtils |
https://issues.redhat.com/browse/KEYCLOAK-13161 |
| KEYCLOAK-12884 |
KEYCLOAK-12884 Add more tests for SameSite |
https://issues.redhat.com/browse/KEYCLOAK-12884 |
| KEYCLOAK-13113 |
KEYCLOAK-13113 Exclude tests for Tomcat |
https://issues.redhat.com/browse/KEYCLOAK-13113 |
| KEYCLOAK-12817 |
KEYCLOAK-12817: Password form is stretched if IdP is configured |
https://issues.redhat.com/browse/KEYCLOAK-12817 |
| KEYCLOAK-13070 |
KEYCLOAK-13070 UserConsentWithUserStorageModelTest failing with ModelDuplicateException |
https://issues.redhat.com/browse/KEYCLOAK-13070 |
| KEYCLOAK-12816 |
KEYCLOAK-12816 Fix representation to model conversion |
https://issues.redhat.com/browse/KEYCLOAK-12816 |
| KEYCLOAK-12640 |
[KEYCLOAK-12640] Client authorizationSettings.decisionStrategy value lost on realm import |
https://issues.redhat.com/browse/KEYCLOAK-12640 |
| KEYCLOAK-13111 |
KEYCLOAK-13111 Move execution of db-allocator-plugin to jpa profile |
https://issues.redhat.com/browse/KEYCLOAK-13111 |
| KEYCLOAK-13096 |
KEYCLOAK-13096 Add compile scope hamcrest dependency to springboot tests |
https://issues.redhat.com/browse/KEYCLOAK-13096 |
| KEYCLOAK-12979 |
KEYCLOAK-12979 Fix group-attribute parsing |
https://issues.redhat.com/browse/KEYCLOAK-12979 |
| KEYCLOAK-13097 |
KEYCLOAK-13097 fix UserStorageTest - add cleanup after test |
https://issues.redhat.com/browse/KEYCLOAK-13097 |
| KEYCLOAK-10673 |
KEYCLOAK-10673 updated text-security to 2.0 |
https://issues.redhat.com/browse/KEYCLOAK-10673 |
| KEYCLOAK-13060 |
KEYCLOAK-13060 - Use CDI transaction manager |
https://issues.redhat.com/browse/KEYCLOAK-13060 |
| KEYCLOAK-11335 |
KEYCLOAK-11335 - Use Agroal DataSource |
https://issues.redhat.com/browse/KEYCLOAK-11335 |
| KEYCLOAK-12794 |
[KEYCLOAK-12794] - Missing id token checks in oidc broker |
https://issues.redhat.com/browse/KEYCLOAK-12794 |
| KEYCLOAK-11155 |
KEYCLOAK-11155 split on first '=' instead of all |
https://issues.redhat.com/browse/KEYCLOAK-11155 |
| KEYCLOAK-11129 |
KEYCLOAK-11129 coalesce possible null values |
https://issues.redhat.com/browse/KEYCLOAK-11129 |
| KEYCLOAK-10953 |
KEYCLOAK-10953 Avoid NPE when Updating Clients via Admin REST API |
https://issues.redhat.com/browse/KEYCLOAK-10953 |
| KEYCLOAK-7961 |
KEYCLOAK-7961 Avoid sending back-channel logout requests to disabled clients |
https://issues.redhat.com/browse/KEYCLOAK-7961 |
| KEYCLOAK-12689 |
KEYCLOAK-12689 - (tests) |
https://issues.redhat.com/browse/KEYCLOAK-12689 |
| KEYCLOAK-12689 |
KEYCLOAK-12689 - Improvements for camelCase config properties |
https://issues.redhat.com/browse/KEYCLOAK-12689 |
| KEYCLOAK-13068 |
KEYCLOAK-13068 - Upgrade to Quarkus 1.2.1.Final |
https://issues.redhat.com/browse/KEYCLOAK-13068 |
| KEYCLOAK-11576 |
[KEYCLOAK-11576] - Properly handling redirect_uri parser errors |
https://issues.redhat.com/browse/KEYCLOAK-11576 |
| KEYCLOAK-13054 |
KEYCLOAK-13054 Unblock temporarily disabled user on password reset, and remove invalid error message |
https://issues.redhat.com/browse/KEYCLOAK-13054 |
| KEYCLOAK-12635 |
KEYCLOAK-12635 KEYCLOAK-12935 KEYCLOAK-13023 UI test fixes |
https://issues.redhat.com/browse/KEYCLOAK-12635 |
| KEYCLOAK-12958 |
KEYCLOAK-12958 Preview feature profile for WebAuthn (#6780) |
https://issues.redhat.com/browse/KEYCLOAK-12958 |
| KEYCLOAK-12962 |
KEYCLOAK-12962 Enforce 3.6.0 maven version for deploy phase |
https://issues.redhat.com/browse/KEYCLOAK-12962 |
| KEYCLOAK-12899 |
KEYCLOAK-12899 Fix incorrect exception message in JWE |
https://issues.redhat.com/browse/KEYCLOAK-12899 |
| KEYCLOAK-13041 |
KEYCLOAK-13041 Upgrade to EAP 7.3.0.CR4 |
https://issues.redhat.com/browse/KEYCLOAK-13041 |
| KEYCLOAK-12826 |
KEYCLOAK-12826 WebAuthn fails to login user when their security key supports "user handle" |
https://issues.redhat.com/browse/KEYCLOAK-12826 |
| KEYCLOAK-8044 |
KEYCLOAK-8044 Clear theme caches on hot-deploy |
https://issues.redhat.com/browse/KEYCLOAK-8044 |
| KEYCLOAK-12268 |
KEYCLOAK-12268 Show page not found for /account/log if events are disabled for the realm |
https://issues.redhat.com/browse/KEYCLOAK-12268 |
| KEYCLOAK-11700 |
KEYCLOAK-11700 Lower-case passwords before checking with password blacklist |
https://issues.redhat.com/browse/KEYCLOAK-11700 |
| KEYCLOAK-13032 |
KEYCLOAK-13032 Add no cache headers to account form service |
https://issues.redhat.com/browse/KEYCLOAK-13032 |
| KEYCLOAK-12597 |
KEYCLOAK-12597 Fix admin console with base theme |
https://issues.redhat.com/browse/KEYCLOAK-12597 |
| KEYCLOAK-12960 |
KEYCLOAK-12960 Use Long for time based values in JsonWebToken |
https://issues.redhat.com/browse/KEYCLOAK-12960 |
| KEYCLOAK-12969 |
KEYCLOAK-12969 Don't use GenericFilter in server-authz test application |
https://issues.redhat.com/browse/KEYCLOAK-12969 |
| KEYCLOAK-12612 |
[KEYCLOAK-12612][KEYCLOAK-12944] Fix validation of SAML destination URLs - no longer compare them to the server absolutePath; instead use the base URI to build the validation URL |
https://issues.redhat.com/browse/KEYCLOAK-12612 |
| KEYCLOAK-12858 |
KEYCLOAK-12858 Authenticator is sometimes required even when configured as alternative |
https://issues.redhat.com/browse/KEYCLOAK-12858 |
| KEYCLOAK-12926 |
KEYCLOAK-12926 Improve Locale based message lookup |
https://issues.redhat.com/browse/KEYCLOAK-12926 |
| KEYCLOAK-13003 |
KEYCLOAK-13003 Remove a mention about providers directory |
https://issues.redhat.com/browse/KEYCLOAK-13003 |