Skip to content

Commit 3a6f26a

Browse files
mindmonkmindmonk
committed
Merge branch 'feature/recover' of https://github.com/cryptomator/hub into feature/recover
2 parents b3802d1 + 1b183c7 commit 3a6f26a

37 files changed

+942
-560
lines changed

.github/workflows/build.yml

Lines changed: 14 additions & 14 deletions
Original file line numberDiff line numberDiff line change
@@ -18,10 +18,10 @@ jobs:
1818
name: Run Tests
1919
runs-on: ubuntu-latest
2020
steps:
21-
- uses: actions/checkout@v4
21+
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
2222
with:
2323
fetch-depth: 0 # Shallow clones should be disabled for a better relevancy of analysis
24-
- uses: actions/setup-node@v4
24+
- uses: actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020 # v4.4.0
2525
with:
2626
node-version: ${{ env.NODE_VERSION }}
2727
cache: 'npm'
@@ -36,7 +36,7 @@ jobs:
3636
working-directory: frontend
3737
run: npm run dist
3838
- name: SonarCloud Scan Frontend
39-
uses: SonarSource/sonarqube-scan-action@v5
39+
uses: SonarSource/sonarqube-scan-action@fd88b7d7ccbaefd23d8f36f73b59db7a3d246602 # v6.0.0
4040
with:
4141
projectBaseDir: frontend
4242
args: >
@@ -49,13 +49,13 @@ jobs:
4949
env:
5050
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} # Needed to get PR information, if any
5151
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
52-
- uses: actions/setup-java@v4
52+
- uses: actions/setup-java@dded0888837ed1f317902acf8a20df0ad188d165 # v5.0.0
5353
with:
5454
distribution: 'temurin'
5555
java-version: ${{ env.JAVA_VERSION }}
5656
cache: 'maven'
5757
- name: Cache SonarCloud packages
58-
uses: actions/cache@v4
58+
uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4.3.0
5959
with:
6060
path: ~/.sonar/cache
6161
key: ${{ runner.os }}-sonar
@@ -95,8 +95,8 @@ jobs:
9595
contents: read
9696
packages: write
9797
steps:
98-
- uses: actions/checkout@v4
99-
- uses: actions/setup-node@v4
98+
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
99+
- uses: actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020 # v4.4.0
100100
with:
101101
node-version: ${{ env.NODE_VERSION }}
102102
cache: 'npm'
@@ -112,7 +112,7 @@ jobs:
112112
run: ./mvnw versions:set --file pom.xml -DnewVersion=${GITHUB_REF##*/}
113113
- name: Docker metadata
114114
id: meta
115-
uses: docker/metadata-action@v5
115+
uses: docker/metadata-action@c1e51972afc2121e065aed6d45c65596fe445f3f # v5.8.0
116116
with:
117117
images: ghcr.io/cryptomator/hub
118118
tags: |
@@ -123,16 +123,16 @@ jobs:
123123
org.opencontainers.image.title=Cryptomator Hub
124124
org.opencontainers.image.vendor=Skymatic GmbH
125125
- name: Set up Docker Buildx
126-
uses: docker/setup-buildx-action@v3
126+
uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435 # v3.11.1
127127
- name: Login to GHCR
128-
uses: docker/login-action@v3
128+
uses: docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef # v3.6.0
129129
with:
130130
registry: ghcr.io
131131
username: ${{ github.actor }}
132132
password: ${{ secrets.GITHUB_TOKEN }}
133133
- name: Build and Push Container Image
134134
id: push
135-
uses: docker/build-push-action@v6
135+
uses: docker/build-push-action@263435318d21b8e681c14492fe198d362a7d2c83 # v6.18.0
136136
with:
137137
context: backend
138138
file: backend/src/main/docker/Dockerfile.native
@@ -156,14 +156,14 @@ jobs:
156156
packages: write
157157
steps:
158158
- name: Set up Docker Buildx
159-
uses: docker/setup-buildx-action@v3
159+
uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435 # v3.11.1
160160
- name: Determine short Commit SHA
161161
id: sha
162162
run: echo "short_sha=${LONG_SHA:0:7}" >> "$GITHUB_OUTPUT"
163163
env:
164164
LONG_SHA: ${{ github.sha }}
165165
- name: Login to GHCR
166-
uses: docker/login-action@v3
166+
uses: docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef # v3.6.0
167167
with:
168168
registry: ghcr.io
169169
username: ${{ github.actor }}
@@ -179,7 +179,7 @@ jobs:
179179
DIGEST=$(docker buildx imagetools inspect ghcr.io/cryptomator/hub:${{ steps.sha.outputs.short_sha }} --format "{{json .Manifest}}" | jq -r .digest)
180180
echo "digest_multiarch=${DIGEST}" >> "$GITHUB_OUTPUT"
181181
- name: Generate artifact attestation
182-
uses: actions/attest-build-provenance@v2
182+
uses: actions/attest-build-provenance@977bb373ede98d70efdf65b84cb5f73e068dcc2a # v3.0.0
183183
with:
184184
subject-name: ghcr.io/cryptomator/hub
185185
subject-digest: ${{ steps.inspect.outputs.digest_multiarch }}

.github/workflows/keycloak.yml

Lines changed: 7 additions & 7 deletions
Original file line numberDiff line numberDiff line change
@@ -24,8 +24,8 @@ jobs:
2424
attestations: write
2525
packages: write
2626
steps:
27-
- uses: actions/checkout@v4
28-
- uses: actions/setup-node@v4
27+
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
28+
- uses: actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020 # v4.4.0
2929
with:
3030
node-version: ${{ env.NODE_VERSION }}
3131
cache: 'npm'
@@ -37,26 +37,26 @@ jobs:
3737
working-directory: keycloak/themes/cryptomator/common/resources
3838
run: npm run build
3939
- name: Set up QEMU
40-
uses: docker/setup-qemu-action@v3
40+
uses: docker/setup-qemu-action@29109295f81e9208d7d86ff1c6c12d2833863392 # v3.6.0
4141
- name: Set up Docker Buildx
42-
uses: docker/setup-buildx-action@v3
42+
uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435 # v3.11.1
4343
- name: Login to GHCR
44-
uses: docker/login-action@v3
44+
uses: docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef # v3.6.0
4545
with:
4646
registry: ghcr.io
4747
username: ${{ github.actor }}
4848
password: ${{ secrets.GITHUB_TOKEN }}
4949
- name: Build and Push Container Image
5050
id: push
51-
uses: docker/build-push-action@v6
51+
uses: docker/build-push-action@263435318d21b8e681c14492fe198d362a7d2c83 # v6.18.0
5252
with:
5353
context: keycloak
5454
platforms: linux/amd64,linux/arm64
5555
push: true
5656
tags: |
5757
ghcr.io/cryptomator/keycloak:${{ github.event.inputs.tag }}
5858
- name: Generate artifact attestation
59-
uses: actions/attest-build-provenance@v2
59+
uses: actions/attest-build-provenance@977bb373ede98d70efdf65b84cb5f73e068dcc2a # v3.0.0
6060
with:
6161
subject-name: ghcr.io/cryptomator/keycloak
6262
subject-digest: ${{ steps.push.outputs.digest }}

.github/workflows/tag.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -24,7 +24,7 @@ jobs:
2424
- name: Tag image in github registry
2525
run: docker tag ghcr.io/cryptomator/hub@${{ github.event.inputs.digest}} ghcr.io/cryptomator/hub:${{ github.event.inputs.tag }}
2626
- name: Login to GitHub Container Registry
27-
uses: docker/login-action@v3
27+
uses: docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef # v3.6.0
2828
with:
2929
registry: ghcr.io
3030
username: ${{ github.actor }}

CHANGELOG.md

Lines changed: 23 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -5,6 +5,29 @@ All notable changes to this project will be documented in this file.
55
The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/),
66
and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
77

8+
## [Unreleased](https://github.com/cryptomator/hub/compare/1.4.6...HEAD)
9+
10+
### Changed
11+
12+
- Updated Keycloak to 26.4.2
13+
14+
## [1.4.6](https://github.com/cryptomator/hub/compare/1.4.5...1.4.6)
15+
16+
### Changed
17+
18+
- Updated Keycloak to 26.4.1
19+
- Update Quarkus to 3.20.3 LTS
20+
21+
### Fixed
22+
23+
- Show admin section of Hub when Keycloak version is not available (#361)
24+
25+
## [1.4.5](https://github.com/cryptomator/hub/compare/1.4.4...1.4.5)
26+
27+
### Fixed
28+
29+
- Fix Session Expiration Not Enforced in Cryptomator Hub Web Client (GHSA-69fp-wc9g-5778)
30+
831
## [1.4.4](https://github.com/cryptomator/hub/compare/1.4.3...1.4.4)
932

1033
### Added

backend/pom.xml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -10,12 +10,12 @@
1010
<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
1111
<project.jdk.version>21</project.jdk.version>
1212
<project.reporting.outputEncoding>UTF-8</project.reporting.outputEncoding>
13-
<quarkus.platform.version>3.20.2</quarkus.platform.version>
13+
<quarkus.platform.version>3.20.3</quarkus.platform.version>
1414
<jwt.version>4.5.0</jwt.version>
15-
<compiler-plugin.version>3.14.0</compiler-plugin.version>
15+
<compiler-plugin.version>3.14.1</compiler-plugin.version>
1616
<dependency-plugin.version>3.8.1</dependency-plugin.version>
17-
<surefire-plugin.version>3.5.3</surefire-plugin.version>
18-
<failsafe-plugin.version>3.5.3</failsafe-plugin.version>
17+
<surefire-plugin.version>3.5.4</surefire-plugin.version>
18+
<failsafe-plugin.version>3.5.4</failsafe-plugin.version>
1919
<junit-tree-reporter.version>1.4.0</junit-tree-reporter.version>
2020
</properties>
2121

backend/src/main/java/org/cryptomator/hub/api/VersionResource.java

Lines changed: 5 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -25,7 +25,11 @@ public class VersionResource {
2525
@Operation(summary = "get version of hub and keycloak")
2626
@APIResponse(responseCode = "200")
2727
public VersionDto getVersion() {
28-
var keycloakVersion = keycloak.serverInfo().getInfo().getSystemInfo().getVersion();
28+
String keycloakVersion = null;
29+
var keycloakSystemInfo = keycloak.serverInfo().getInfo().getSystemInfo();
30+
if (keycloakSystemInfo != null) {
31+
keycloakVersion = keycloakSystemInfo.getVersion();
32+
}
2933
return new VersionDto(hubVersion, keycloakVersion);
3034
}
3135

backend/src/main/resources/application.properties

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -33,7 +33,7 @@ hub.keycloak.oidc.cryptomator-client-id=cryptomator
3333
%dev.quarkus.keycloak.devservices.start-command=start-dev
3434
%dev.quarkus.keycloak.devservices.port=8180
3535
%dev.quarkus.keycloak.devservices.service-name=quarkus-cryptomator-hub
36-
%dev.quarkus.keycloak.devservices.image-name=ghcr.io/cryptomator/keycloak:26.3.2.1
36+
%dev.quarkus.keycloak.devservices.image-name=ghcr.io/cryptomator/keycloak:26.4.2
3737
%dev.quarkus.oidc.devui.grant.type=code
3838
# OIDC will be mocked during unit tests. Use fake auth url to prevent dev services to start:
3939
%test.quarkus.oidc.auth-server-url=http://localhost:43210/dev/null

backend/src/main/resources/cryptomator-realm.json

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -160,7 +160,8 @@
160160
},
161161
"clientRoles": {
162162
"realm-management": [
163-
"realm-admin"
163+
"realm-admin",
164+
"view-system"
164165
]
165166
}
166167
},

0 commit comments

Comments
 (0)