chore(deps): bump org.keycloak.bom:keycloak-adapter-bom from 21.0.1 to 25.0.6 in /jans-keycloak-link #9549

dependabot · 2024-09-20T10:18:48Z

Bumps org.keycloak.bom:keycloak-adapter-bom from 21.0.1 to 25.0.6.

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

feat: add flag to disable logger timer #8788 Signed-off-by: jgomer2001 <[email protected]> Co-authored-by: Mohammad Abudayyeh <[email protected]>

* fix(jans-cli-tui): re-write date-time picker Signed-off-by: Mustafa Baser <[email protected]> * feat(jans-cli-tui): date picker month-year adjustment Signed-off-by: Mustafa Baser <[email protected]> --------- Signed-off-by: Mustafa Baser <[email protected]>

Signed-off-by: SafinWasi <[email protected]>

Signed-off-by: ossdhaval <[email protected]>

* docs: update the ldap conf detail * docs(ldap): add schema format and example Signed-off-by: ossdhaval <[email protected]> --------- Signed-off-by: ossdhaval <[email protected]>

Signed-off-by: ossdhaval <[email protected]>

…8801) Signed-off-by: Mustafa Baser <[email protected]>

Signed-off-by: Yuriy Movchan <[email protected]>

* chore(jans-cli-tui): more logging Signed-off-by: Mustafa Baser <[email protected]> * fix(jans-cli-tui): User Admin UI roles Signed-off-by: Mustafa Baser <[email protected]> --------- Signed-off-by: Mustafa Baser <[email protected]>

…nd cn #8776 (#8806) * fix(jans-linux-setup): improper scim configuration for jans kc #8210 * updated the keycloak configuration file to reflect the configuration for the storage-spi Signed-off-by: Rolain Djeumen <[email protected]> * chore(jans-keycloak-integration): bump kc version to 24.0.0 #8315 Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): keycloak protocol mapper Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): remove references to jans standalone persistence layer Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): experimental protocol mapper for kc #8614 * added persistence manager configuration for protocol mapper Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): added dependencies for protocol mapper #8614 Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): experimental protocol mapper #8614 * added dependencies to protocol mapper * added protocol mapper main class Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): experimental protocol mapper #8614 * added relevant models to fetch user attributes * refactored the db configuration classes Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): janssen spi bundle #8614 * created maven project for janssen spi bundle Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): janssen spi bundle #8614 * added dependencies xml Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): enhancements to job-scheduler #8614 * added support for new protocol mapper in job scheduler * fixed typo in application shutdown log message Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): keycloak integration enhancements #8614 * added support for the protocol-mapper in job-scheduler configuration * fixed issue in job-scheduler logging configuration that caused too many log files to be created Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): spi bundle #8614 * additions to the spi bundle pom file Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): keycloak integration enhancements #8614 * added protocol mapper implementation Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): enhancements to jans-keycloak-integration #8614 * added thin bridge spi provider * added models for thin bridge provider Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): enhancements to jans-keycloak-integration #8614 * moved authenticator spi to spi module * minor refactoring to the authenticator spi Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): enhancements to jans-keycloak-integration #8614 * moved authenticator rest service spi to spi module Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): enhancements to jans-keycloak-integration #8614 * added new storage provider implementation Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): enhancements to jans-keycloak-integration #8614 * added missing files to spi Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): enhancements to jans-keycloak-integration #8614 * added resource files to spi module Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): enhancements to jans-keycloak-integration #8614 * bump spi version to 1.1.3-SNAPSHOT * removed protocol-mapper PoC from build modules Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): enhancements to jans-keycloak-integration #8614 * minor bugfix to scheduler. did not show fatal startup errors in log file Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): enhancements to jans-keycloak-integration #8614 *fix for fatal errors which don't still appear in the logs Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): enhancements to jans-keycloak-integration #8614 * further housekeeping in job-scheduler Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): enhancements to jans-keycloak-integration #8614 * fixed bug in user storage spi preventing authentication in new version of keycloak Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): enhancements to jans-keycloak-integration #8614 * have scheduler create saml clients with document and assertion signing as default configuration Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): enhancement to jans-keycloak-integration #8614 * removed reference to protocol-mapper poc submodule Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): enhancements to jans-keycloak-integration #8614 * removed reference to storage-spi module * restored job-scheduler module in build pom Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): enhancements to jans-keycloak-integration #8614 * removed authenticator source as it was moved to spi Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): enhancements to jans-keycloak-integration #8614 * fixes suggested by static analyser Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): enhancements to jans-keycloak-integration #8614 Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): enhancements to jans-keycloak-integration #8614 Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): enhancements to jans-keycloak-integration #8614 Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): update kc-saml integration installation for ce and cn #8776 * marked jans authenticator in the kc authentication flow ALTERNATIVE * updated providerId for our custom user storage provider Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): update kc-saml integration installation for ce and cn #8776 * bump keycloak version in setup to 25.0.1 Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): update kc-saml integration installation for ce and cn #8776 * removed references to scim client configuration reference (used by former user storage provider) Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): update kc-saml integration installation for ce and cn #8776 * moved kc service configuration parameters from service file to keycloak configuration file Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): update kc-saml integration installation for ce and cn #8776 * added quarkus.properties * minor change to keycloak service file Signed-off-by: Rolain Djeumen <[email protected]> * fix(jans-keycloak-integration): fix build issue after bumping keycloak libs version #8776 Signed-off-by: Rolain Djeumen <[email protected]> --------- Signed-off-by: Rolain Djeumen <[email protected]>

* docs: user password validation Signed-off-by: pujavs <[email protected]> * docs: user password validation Signed-off-by: pujavs <[email protected]> * docs: user password validation Signed-off-by: pujavs <[email protected]> * docs: user password validation doc Signed-off-by: pujavs <[email protected]> * docs: user password validation doc Signed-off-by: pujavs <[email protected]> * docs: user password validation doc Signed-off-by: pujavs <[email protected]> * docs: default acr script validation Signed-off-by: pujavs <[email protected]> * docs: default acr script validation Signed-off-by: pujavs <[email protected]> * docs: default acr script validation Signed-off-by: pujavs <[email protected]> * docs: default acr script validation Signed-off-by: pujavs <[email protected]> * docs: move the note about cust scripts and add link to docs * docs: add information about absence of default * docs: reword the note Signed-off-by: ossdhaval <[email protected]> * docs: remove the image from update section Signed-off-by: ossdhaval <[email protected]> --------- Signed-off-by: pujavs <[email protected]> Signed-off-by: ossdhaval <[email protected]> Co-authored-by: Dhaval D <[email protected]>

Signed-off-by: mmrraju <[email protected]>

* chore(jans-auth-server): renamed OXAUTH_UMA_TICKET -> UMA_TICKET Signed-off-by: YuriyZ <[email protected]> * feat(jans-auth-server): Token Status List support #8562 Signed-off-by: YuriyZ <[email protected]> * fix(jans-auth-server): corrected requestContext and azd decoding #8562 Signed-off-by: YuriyZ <[email protected]> * feat(jans-auth-server): added token status list endpoint and status claim with index. #8562 Signed-off-by: YuriyZ <[email protected]> * feat(jans-auth): new cluster beans and services Signed-off-by: Yuriy Movchan <[email protected]> * feat(jans-auth-server): added head index to list #8562 Signed-off-by: YuriyZ <[email protected]> * feat(jans-auth): move beans to core model Signed-off-by: Yuriy Movchan <[email protected]> * feat(jans-auth): add index range to TokenPool Signed-off-by: Yuriy Movchan <[email protected]> * feat(jans-auth-server): added application/statuslist+json support #8562 Signed-off-by: YuriyZ <[email protected]> * feat(jans-auth): add methods to allocate/release TokenPool Signed-off-by: Yuriy Movchan <[email protected]> * feat(jans-auth): fix TokenPool sort Signed-off-by: Yuriy Movchan <[email protected]> * feat(jans-auth): implement method to get nextIndex for token Signed-off-by: Yuriy Movchan <[email protected]> * feat(jans-auth): implement method to get nextIndex for token Signed-off-by: Yuriy Movchan <[email protected]> * feat(jans-auth): instead of using token list status use expiration date Signed-off-by: Yuriy Movchan <[email protected]> * fix(jans-auth-server): fixed index during list joins and npe on nextIndex. #8562 Signed-off-by: YuriyZ <[email protected]> * feat(jans-auth-server): populate statusListIndex in access and id tokens #8562 Signed-off-by: YuriyZ <[email protected]> * feat(jans-auth): add ClusterNode services Signed-off-by: Yuriy Movchan <[email protected]> * feat(jans-auth): add node base dn Signed-off-by: Yuriy Movchan <[email protected]> * feat(jans-auth-server): added status list update on revoke #8562 Signed-off-by: YuriyZ <[email protected]> * fix after merge Signed-off-by: YuriyZ <[email protected]> * feat(jans-auth): add schema for new entries Signed-off-by: Yuriy Movchan <[email protected]> * feat(jans-auth): fix allocate Signed-off-by: Yuriy Movchan <[email protected]> * feat(jans-auth): fix cluster nodes expiration Signed-off-by: Yuriy Movchan <[email protected]> * feat(jans-auth-server): added status list as jwt support #8562 Signed-off-by: YuriyZ <[email protected]> * feat(jans-auth): Deprecate TokenPoolStatus Signed-off-by: Yuriy Movchan <[email protected]> * feat(jans-auth): implement updateWithLock for concurent lock on revoke Signed-off-by: Yuriy Movchan <[email protected]> * feat(jans-auth-server): use updateWithLock during status update index #8562 Signed-off-by: YuriyZ <[email protected]> * feat(jans-auth-server): update status list on token revoke in separate thread #8562 Signed-off-by: YuriyZ <[email protected]> * feat(jans-auth-server): renamed TokenPool -> StatusTokenPool, TokenPoolService -> StatusTokenPoolService #8562 Signed-off-by: YuriyZ <[email protected]> * feat(jans-auth-server): removed token head index (we are using status token pools instead) #8562 Signed-off-by: YuriyZ <[email protected]> * feat(jans-auth-server): added status list to swagger #8562 Signed-off-by: YuriyZ <[email protected]> * feat(jans-auth-server): added ou=node,o=jans to config #8562 Signed-off-by: YuriyZ <[email protected]> * feat(jans-auth-server): throw configuration exception if node baseDn is missed #8562 Signed-off-by: YuriyZ <[email protected]> * feat(jans-auth-server): set status_list feature flag enabled by default #8562 Signed-off-by: YuriyZ <[email protected]> * fix(jans-auth-server): fixed node allocation #8562 Signed-off-by: YuriyZ <[email protected]> * fix(jans-auth-server): corrected bug in getClusterNodeLast #8562 Signed-off-by: YuriyZ <[email protected]> * feat(jans-auth-server): keep lockKey static and save in jansNode after locking #8562 Signed-off-by: YuriyZ <[email protected]> * fix(jans-auth-server): different fixes for cluster node management #8562 Signed-off-by: YuriyZ <[email protected]> * fix(jans-auth-server): fixed allocation of status index pools #8562 Signed-off-by: YuriyZ <[email protected]> * chore(jans-auth-server): added more logs for status index pool allocation #8562 Signed-off-by: YuriyZ <[email protected]> * feat(jans-auth): igore timezone when DB is PostgresSQL Signed-off-by: Yuriy Movchan <[email protected]> * feat(jans-auth): fetch all node entries if DB is LDAP Signed-off-by: Yuriy Movchan <[email protected]> * feat(jans-auth-server): added status list client #8562 Signed-off-by: YuriyZ <[email protected]> * fix(jans-auth-server): fixed pool allocation #8562 Signed-off-by: YuriyZ <[email protected]> * chore(jans-auth-server): renamed endpoint /token_status_list -> /status_list #8562 Signed-off-by: YuriyZ <[email protected]> * feat(jans-orm): resovle bean property name with AttributeName #8773 * chore(jans-auth-server): renamed token_status_list -> status_list #8562 Signed-off-by: YuriyZ <[email protected]> * chore(jans-auth-server): token statuses VALID - 0, INVALID - 1 #8562 Signed-off-by: YuriyZ <[email protected]> * chore(jans-auth-server): moved status list to model for re-using #8562 Signed-off-by: YuriyZ <[email protected]> * feat(jans-auth-server): added batch index update and fixed concurrent update issue #8562 Signed-off-by: YuriyZ <[email protected]> * feat(jans-auth-server): use new index update method in existing revoke code #8562 Signed-off-by: YuriyZ <[email protected]> * fix(jans-auth-server): fixed status pool index joining #8562 Signed-off-by: YuriyZ <[email protected]> * chore(jans-auth-server): code improvements #8562 Signed-off-by: YuriyZ <[email protected]> * test(jans-auth-server): added full integration test for status list #8562 Signed-off-by: YuriyZ <[email protected]> * test(jans-auth-server): added test for CN case #8562 Signed-off-by: YuriyZ <[email protected]> * feat(jans-auth-server): mark indexes which we are about to re-use as VALID #8562 Signed-off-by: YuriyZ <[email protected]> * code re-format Signed-off-by: YuriyZ <[email protected]> * docs(config-api): regenerating config swagger api Signed-off-by: pujavs <[email protected]> --------- Signed-off-by: YuriyZ <[email protected]> Signed-off-by: Yuriy Movchan <[email protected]> Signed-off-by: pujavs <[email protected]> Co-authored-by: Yuriy Movchan <[email protected]> Co-authored-by: pujavs <[email protected]> Co-authored-by: Mohammad Abudayyeh <[email protected]>

Signed-off-by: Mustafa Baser <[email protected]>

#8823 Signed-off-by: YuriyZ <[email protected]>

…BMS #8825 (#8826) #8825 Signed-off-by: YuriyZ <[email protected]>

* feat: ui improvement and fido authentication integration #5962 Signed-off-by: Arnab Dutta <[email protected]> * feat: adding loader Signed-off-by: Arnab Dutta <[email protected]> * feat: fix loading issue Signed-off-by: Arnab Dutta <[email protected]> * feat: fixing logout Signed-off-by: Arnab Dutta <[email protected]> * feat: fixing logout Signed-off-by: Arnab Dutta <[email protected]> * feat: adding docs Signed-off-by: Arnab Dutta <[email protected]> * feat: adding docs Signed-off-by: Arnab Dutta <[email protected]> * feat: adding docs Signed-off-by: Arnab Dutta <[email protected]> * feat: remove extra OP_config call Signed-off-by: Arnab Dutta <[email protected]> * feat: modify README Signed-off-by: Arnab Dutta <[email protected]> * feat: modify README Signed-off-by: Arnab Dutta <[email protected]> * feat: changing ReadMe Signed-off-by: Arnab Dutta <[email protected]> --------- Signed-off-by: Arnab Dutta <[email protected]>

Signed-off-by: Mustafa Baser <[email protected]>

* chore(docker-jans-auth-server): sync jans-lock assets Signed-off-by: iromli <[email protected]> * feat(cloud-native): add Token Status List support Signed-off-by: iromli <[email protected]> * chore(cloud-native): sync assets to OCI images Signed-off-by: iromli <[email protected]> * feat(docker-jans-saml): update kc-saml integration installation Signed-off-by: iromli <[email protected]> * fix: migrate jans storage Signed-off-by: iromli <[email protected]> * chore: remove unused client Signed-off-by: iromli <[email protected]> --------- Signed-off-by: iromli <[email protected]>

* docs: update fido2 configuration document Signed-off-by: ossdhaval <[email protected]> * fido2 : add schema format and example Signed-off-by: ossdhaval <[email protected]> * docs: update file names Signed-off-by: ossdhaval <[email protected]> * docs: remove old files Signed-off-by: ossdhaval <[email protected]> * docs(fido2): update the instructions for update conf section Signed-off-by: ossdhaval <[email protected]> * docs(fido2): proofreading Signed-off-by: ossdhaval <[email protected]> --------- Signed-off-by: ossdhaval <[email protected]> Co-authored-by: Devrim <[email protected]>

#8839) #8838 Signed-off-by: YuriyZ <[email protected]>

* docs: update JWKS conf * jwks : add schema format and example Signed-off-by: ossdhaval <[email protected]> * docs(jwks): add schema format and example Signed-off-by: ossdhaval <[email protected]> * docs(jwk): Add tui section and add schema Signed-off-by: ossdhaval <[email protected]> * docs(jwks): fix update instructions Signed-off-by: ossdhaval <[email protected]> * docs(jwk): rephrase and proofread Signed-off-by: ossdhaval <[email protected]> --------- Signed-off-by: ossdhaval <[email protected]> Co-authored-by: Devrim <[email protected]>

Signed-off-by: moabu <[email protected]>

Signed-off-by: Mustafa Baser <[email protected]>

…8857) * feat(cloud-native): add ingress for jans-lock as jans-auth service Signed-off-by: iromli <[email protected]> * fix(docker-jans-all-in-one): remove unused KC_PROXY env Signed-off-by: iromli <[email protected]> * docs(charts): add ingress for jans-lock config Signed-off-by: iromli <[email protected]> --------- Signed-off-by: iromli <[email protected]> Co-authored-by: Mohammad Abudayyeh <[email protected]>

* chore(docker-jans-saml): sync asset for OCI image Signed-off-by: iromli <[email protected]> * chore(all-in-one): update JANS_SOURCE_VERSION Signed-off-by: iromli <[email protected]> --------- Signed-off-by: iromli <[email protected]>

Signed-off-by: moabu <[email protected]>

#8863 (#8865) * fix(jans-linux-setup): improper scim configuration for jans kc #8210 * updated the keycloak configuration file to reflect the configuration for the storage-spi Signed-off-by: Rolain Djeumen <[email protected]> * chore(jans-keycloak-integration): bump kc version to 24.0.0 #8315 Signed-off-by: Rolain Djeumen <[email protected]> * feat(jans-keycloak-integration): disable keycloak required action verify_profile #8863 Signed-off-by: Rolain Djeumen <[email protected]> --------- Signed-off-by: Rolain Djeumen <[email protected]>

* feat(jans-config-api): allow bulk audit data upload Signed-off-by: Yuriy Movchan <[email protected]> * feat(jans-config-api): add lock bulk audit endpoints Signed-off-by: Yuriy Movchan <[email protected]> * feat(jans-lock): use JsonNode instead of JSONObject Signed-off-by: Yuriy Movchan <[email protected]> * feat(jans-config-api): merge from main Signed-off-by: Yuriy Movchan <[email protected]> * feat(jans-config-api): merge from main Signed-off-by: Yuriy Movchan <[email protected]> --------- Signed-off-by: Yuriy Movchan <[email protected]>

Signed-off-by: Yuriy Movchan <[email protected]>

* fix(terraform-provider-jans): update terraform provider Signed-off-by: moabu <[email protected]> * fix: fix references for acr and app configuration Signed-off-by: moabu <[email protected]> --------- Signed-off-by: moabu <[email protected]>

…y and maintainance (#9493) * feat!(jans-lock): remove cedarling code Signed-off-by: Oleh Bohzok <[email protected]> * chore(jans-lock): created empty cedarling crate, with default parameters Signed-off-by: Oleh Bohzok <[email protected]> * chore(jans-lock): add auth module Signed-off-by: Oleh Bohzok <[email protected]> * chore(jans-lock): add init module Signed-off-by: Oleh Bohzok <[email protected]> * chore(jans-lock): add jwt module Signed-off-by: Oleh Bohzok <[email protected]> * docs(jans-lock): added readme file Signed-off-by: Oleh Bohzok <[email protected]> * chore(jans-lock): added license notice Signed-off-by: Oleh Bohzok <[email protected]> * chore(jans-lock): add test module Signed-off-by: Oleh Bohzok <[email protected]> * chore(jans-lock): add lock module Signed-off-by: Oleh Bohzok <[email protected]> * chore(jans-lock): add models module Signed-off-by: Oleh Bohzok <[email protected]> * chore(jans-lock): add log module Signed-off-by: Oleh Bohzok <[email protected]> --------- Signed-off-by: Oleh Bohzok <[email protected]>

* chore: sync assets for OCI images Signed-off-by: iromli <[email protected]> * chore(docker-jans-casa): cleanup code --------- Signed-off-by: iromli <[email protected]> Co-authored-by: Mohammad Abudayyeh <[email protected]>

* chore(release): release 1.1.5 Signed-off-by: moabu <[email protected]> * chore(release): update Dockerfile source version Signed-off-by: moabu <[email protected]> * chore: update Dockerfile * fix: missing pip package Signed-off-by: moabu <[email protected]> --------- Signed-off-by: moabu <[email protected]>

chore: release 1.1.6 SNAPSHOT Signed-off-by: moabu <[email protected]>

…operty #7010 (#9513) Signed-off-by: YuriyZ <[email protected]>

Updated README - Jans Lock and intro edit. Co-authored-by: Dhaval D <[email protected]>

* docs(loggin): logging config update changes Signed-off-by: ossdhaval <[email protected]> * docs(logging): fix loggin document format Signed-off-by: ossdhaval <[email protected]> * docs(logging): update detail of TUI Signed-off-by: ossdhaval <[email protected]> --------- Signed-off-by: ossdhaval <[email protected]>

…e review profile step in the first broker login flow (#9522) Signed-off-by: Mustafa Baser <[email protected]>

…e of client_name #9415 (#9523) Signed-off-by: YuriyZ <[email protected]>

Signed-off-by: Yuriy Movchan <[email protected]>

* fix(jans-cli-tui): hide realm in idp setup Signed-off-by: Mustafa Baser <[email protected]> * docs(jans-cli-tui): update IDP for TUI Signed-off-by: Mustafa Baser <[email protected]> --------- Signed-off-by: Mustafa Baser <[email protected]>

Bumps org.keycloak.bom:keycloak-adapter-bom from 21.0.1 to 25.0.6. --- updated-dependencies: - dependency-name: org.keycloak.bom:keycloak-adapter-bom dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>

dryrunsecurity · 2024-09-20T10:19:01Z

DryRun Security Summary

The provided code change updates the jans-keycloak-link project's pom.xml file to use a newer version of the keycloak-adapter-bom dependency, which is generally a positive change from an application security perspective, but requires thorough testing to ensure compatibility and the absence of regressions or new security issues.

Expand for full summary

Summary:

The provided code change is an update to the pom.xml file of the jans-keycloak-link project, which involves updating the version of the keycloak-adapter-bom dependency from 21.0.1 to 25.0.6. From an application security perspective, this update is generally a positive change, as it likely addresses security vulnerabilities and bugs that were present in the previous version of the Keycloak adapter. Keeping dependencies up-to-date is an important security practice, as it helps to ensure that the application is running on the latest versions of libraries and frameworks, which typically include security fixes and improvements.

However, it's important to thoroughly test the application after the update to ensure that the new version of the Keycloak adapter is compatible with the existing codebase and does not introduce any regressions or new security issues. Additionally, it's a good practice to review the release notes or change logs for the new version of the Keycloak adapter to understand any significant changes or security-related updates that may impact the application.

Files Changed:

jans-keycloak-link/pom.xml: This file has been updated to change the version of the keycloak-adapter-bom dependency from 21.0.1 to 25.0.6. This is a routine dependency update, which is a common and necessary practice in software development. From an application security perspective, the update is a positive step, but it's important to follow best practices for managing dependencies and ensuring the continued security and stability of the application.

Code Analysis

We ran 9 analyzers against 1 file and 1 analyzer had findings. 8 analyzers had no findings.

Analyzer	Findings
Sensitive Files Analyzer	1 finding

Riskiness

🟢 Risk threshold not exceeded.

View PR in the DryRun Dashboard.

jgomer2001 and others added 30 commits June 27, 2024 12:01

feat: add flag to disable logger timer (#8789)

95ead7c

feat: add flag to disable logger timer #8788 Signed-off-by: jgomer2001 <[email protected]> Co-authored-by: Mohammad Abudayyeh <[email protected]>

docs(jans-lock): add swagger reference (#8775)

d334eb4

Signed-off-by: SafinWasi <[email protected]>

docs(default-auth): add schema format and example (#8794)

4fe2d23

Signed-off-by: ossdhaval <[email protected]>

docs(ldap-conf): LDAP config doc updates (#8797)

cd435f9

* docs: update the ldap conf detail * docs(ldap): add schema format and example Signed-off-by: ossdhaval <[email protected]> --------- Signed-off-by: ossdhaval <[email protected]>

docs(logging): add schema format and example (#8796)

14bf29d

Signed-off-by: ossdhaval <[email protected]>

fix(jans-cli-tui): scim configuration skipDefinedPasswordValidation (#…

435ba39

…8801) Signed-off-by: Mustafa Baser <[email protected]>

feat(jans-core): do log4j reconfigure only on log level change (#8802)

2269019

Signed-off-by: Yuriy Movchan <[email protected]>

fix(jans-cli-tui): Admin UI roles (#8780)

8a88d6f

* chore(jans-cli-tui): more logging Signed-off-by: Mustafa Baser <[email protected]> * fix(jans-cli-tui): User Admin UI roles Signed-off-by: Mustafa Baser <[email protected]> --------- Signed-off-by: Mustafa Baser <[email protected]>

docs(scim): adding custom attribute using scim (#7151)

1e2a4b0

Signed-off-by: mmrraju <[email protected]>

fix(jans-linux-setup): dummy values for KC db options (#8821)

dfbf29e

Signed-off-by: Mustafa Baser <[email protected]>

test(jans-auth-server): fixed StatusListHttpTest failure #8823 (#8824)

4ab1bde

#8823 Signed-off-by: YuriyZ <[email protected]>

feat(jans-auth-server): stat RDN must have date to be unique under RD…

4b4e618

…BMS #8825 (#8826) #8825 Signed-off-by: YuriyZ <[email protected]>

fix(jans-cli-tui): scim config disableLoggerTimer (#8835)

e104077

Signed-off-by: Mustafa Baser <[email protected]>

fix(jans-cli-tui): SSA expire date should be greater than now (#8837)

07674e6

Signed-off-by: Mustafa Baser <[email protected]>

First draft of new cedar Lock docs. (#8832)

fdea2b2

feat(jans-linux-setup): status list must be enabled during tests #8838 (

ca7e04c

#8839) #8838 Signed-off-by: YuriyZ <[email protected]>

ci: add docs check to make sure every PR is doc checked (#8842)

c0154b3

Signed-off-by: moabu <[email protected]>

fix(jans-linux-setup): typo (#8845)

8a9340a

Signed-off-by: Mustafa Baser <[email protected]>

ci: fix catching the docs commit (#8861)

364ca5c

Signed-off-by: moabu <[email protected]>

yurem and others added 16 commits September 13, 2024 15:31

feat(jans-config-api): update schema to conform code (#9490)

0f3838b

Signed-off-by: Yuriy Movchan <[email protected]>

feat(jans-conf-api): evaluationTimeNs should be integer (#9492)

5b911a7

Signed-off-by: Yuriy Movchan <[email protected]>

chore: sync assets for OCI images (#9497)

4b07e84

* chore: sync assets for OCI images Signed-off-by: iromli <[email protected]> * chore(docker-jans-casa): cleanup code --------- Signed-off-by: iromli <[email protected]> Co-authored-by: Mohammad Abudayyeh <[email protected]>

chore(release): prep work for 1.1.6-SNAPSHOT and dev (#9516)

2cbfeed

chore: release 1.1.6 SNAPSHOT Signed-off-by: moabu <[email protected]>

feat(jans-auth-server): added dedicated deviceSessionLifetime conf pr…

df0fb3d

…operty #7010 (#9513) Signed-off-by: YuriyZ <[email protected]>

docs: update README.md for Lock changes (#9509)

016bf37

Updated README - Jans Lock and intro edit. Co-authored-by: Dhaval D <[email protected]>

feat(jans-linux-setup): turn off update profile on first login for th…

9b4f5cf

…e review profile step in the first broker login flow (#9522) Signed-off-by: Mustafa Baser <[email protected]>

fix(jans-auth-server): new jans server installation show null in plac…

23ef80c

…e of client_name #9415 (#9523) Signed-off-by: YuriyZ <[email protected]>

feat(jans-auth): update SG script to conform API (#9541)

dc7afcd

Signed-off-by: Yuriy Movchan <[email protected]>

dependabot bot requested a review from shekhar16 as a code owner September 20, 2024 10:18

dependabot bot added java Pull requests that update Java code kind-dependencies Pull requests that update a dependency file labels Sep 20, 2024

dependabot bot mentioned this pull request Sep 20, 2024

chore(deps): bump org.keycloak.bom:keycloak-adapter-bom from 21.0.1 to 25.0.5 in /jans-keycloak-link #9444

Closed

moabu force-pushed the main branch from cdfd022 to 04af3b4 Compare November 6, 2024 15:30

moabu requested review from duttarnab, jgomer2001, devrimyatar, yuriyz, yurem, yuriyzz, moabu and iromli as code owners November 6, 2024 15:30

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump org.keycloak.bom:keycloak-adapter-bom from 21.0.1 to 25.0.6 in /jans-keycloak-link #9549

chore(deps): bump org.keycloak.bom:keycloak-adapter-bom from 21.0.1 to 25.0.6 in /jans-keycloak-link #9549

dependabot bot commented on behalf of github Sep 20, 2024 •

edited

Loading

dryrunsecurity bot commented Sep 20, 2024

chore(deps): bump org.keycloak.bom:keycloak-adapter-bom from 21.0.1 to 25.0.6 in /jans-keycloak-link #9549

Are you sure you want to change the base?

chore(deps): bump org.keycloak.bom:keycloak-adapter-bom from 21.0.1 to 25.0.6 in /jans-keycloak-link #9549

Conversation

dependabot bot commented on behalf of github Sep 20, 2024 • edited Loading

dryrunsecurity bot commented Sep 20, 2024

DryRun Security Summary

Code Analysis

Riskiness

dependabot bot commented on behalf of github Sep 20, 2024 •

edited

Loading