Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update Keycloak examples to Keycloak version 20.0. #441

Merged
merged 1 commit into from
Oct 26, 2023
Merged

Update Keycloak examples to Keycloak version 20.0. #441

merged 1 commit into from
Oct 26, 2023

Conversation

guicassolato
Copy link
Collaborator

  • Update all Keycloak examples and e2e tests to work with Keycloak version 20.0
  • Add some screenshots to a user guide that uses the new Keycloak version

Depends on Kuadrant/authorino-examples#35.

The following user guides are affected and have been re-tested:

  • OpenID Connect Discovery and authentication with JWTs
  • OAuth 2.0 token introspection (RFC 7662)
  • Token normalization
  • Edge Authentication Architecture (EAA)
  • OpenID Connect UserInfo
  • Resource-level authorization with User-Managed Access (UMA) resource registry
  • Simple pattern-matching authorization policies
  • OpenID Connect (OIDC) and Role-Based Access Control (RBAC) with Authorino and Keycloak
  • Authorization with Keycloak Authorization Services
  • Redirecting to a login page
  • Mixing Envoy built-in filter for auth and Authorino
  • Using Authorino as ValidatingWebhook service

@guicassolato
Update all Keycloak examples and e2e tests to work with Keycloak vers…
91d587e 
…ion 20.0

+ add some screenshots to a user guide that uses the new Keycloak version
@gitguardian
Copy link

gitguardian bot commented Oct 26, 2023

⚠️ GitGuardian has uncovered 3 secrets following the scan of your pull request.

Please consider investigating the findings and remediating the incidents. Failure to do so may lead to compromising the associated services or software components.

🔎 Detected hardcoded secrets in your pull request
GitGuardian id Secret Commit Filename
8184017 Keycloak Api Keys 91d587e docs/user-guides/observability.md View secret
8184017 Keycloak Api Keys 91d587e docs/user-guides/observability.md View secret
8184017 Keycloak Api Keys 91d587e docs/user-guides/observability.md View secret
🛠 Guidelines to remediate hardcoded secrets
  1. Understand the implications of revoking this secret by investigating where it is used in your code.
  2. Replace and store your secrets safely. Learn here the best practices.
  3. Revoke and rotate these secrets.
  4. If possible, rewrite git history. Rewriting git history is not a trivial act. You might completely break other contributing developers' workflow and you risk accidentally deleting legitimate data.

To avoid such incidents in the future consider

🦉 GitGuardian detects secrets in your source code to help developers and security teams secure the modern development process. You are seeing this because you or someone else with access to this repository has authorized GitGuardian to scan your pull request.

Our GitHub checks need improvements? Share your feedbacks!

@guicassolato guicassolato self-assigned this Oct 26, 2023
@guicassolato guicassolato requested a review from a team October 26, 2023 12:35
@guicassolato guicassolato merged commit dd8b4aa into main Oct 26, 2023
9 checks passed
@guicassolato guicassolato deleted the update-keycloak-examples branch October 26, 2023 14:56
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@guicassolato guicassolato

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@guicassolato