This is an automated email from the ASF dual-hosted git repository. jamesnetherton pushed a commit to branch main in repository https://gitbox.apache.org/repos/asf/camel-quarkus.git
commit 1fd4bbeb165bf7ca74de55e7f22696a41cc705d7 Author: James Netherton <[email protected]> AuthorDate: Mon Jun 15 09:07:31 2026 +0100 Upgrade Quarkus to 3.37.0.CR1 --- docs/antora.yml | 2 +- .../keycloak/it/KeycloakSecurityPolicyTest.java | 22 +++++++++++++++++++++- pom.xml | 10 +++++----- poms/bom/src/main/generated/flattened-full-pom.xml | 10 +++++----- .../src/main/generated/flattened-reduced-pom.xml | 6 +++--- .../generated/flattened-reduced-verbose-pom.xml | 6 +++--- 6 files changed, 38 insertions(+), 18 deletions(-) diff --git a/docs/antora.yml b/docs/antora.yml index 4f5ad95428..f340fa5df1 100644 --- a/docs/antora.yml +++ b/docs/antora.yml @@ -31,7 +31,7 @@ asciidoc: camel-version: 4.20.0 # replace ${camel.version} camel-docs-version: next camel-quarkus-version: 3.37.0 # replace ${camel-quarkus.version} - quarkus-version: 3.36.1 # replace ${quarkus.version} + quarkus-version: 3.37.0.CR1 # replace ${quarkus.version} graalvm-version: 23.1.2 # replace ${graalvm.version} graalvm-docs-version: jdk21 # replace ${graalvm-docs.version} langchain4j-version: 1.16.2 # replace ${langchain4j.version} diff --git a/integration-tests/keycloak/src/test/java/org/apache/camel/quarkus/component/keycloak/it/KeycloakSecurityPolicyTest.java b/integration-tests/keycloak/src/test/java/org/apache/camel/quarkus/component/keycloak/it/KeycloakSecurityPolicyTest.java index 6f584b4d35..406afe22ab 100644 --- a/integration-tests/keycloak/src/test/java/org/apache/camel/quarkus/component/keycloak/it/KeycloakSecurityPolicyTest.java +++ b/integration-tests/keycloak/src/test/java/org/apache/camel/quarkus/component/keycloak/it/KeycloakSecurityPolicyTest.java @@ -16,7 +16,9 @@ */ package org.apache.camel.quarkus.component.keycloak.it; +import java.util.HashMap; import java.util.List; +import java.util.Map; import io.quarkus.test.common.QuarkusTestResource; import io.quarkus.test.junit.QuarkusTest; @@ -26,6 +28,7 @@ import org.junit.jupiter.api.Order; import org.junit.jupiter.api.Test; import org.junit.jupiter.api.TestMethodOrder; import org.keycloak.representations.idm.ClientRepresentation; +import org.keycloak.representations.idm.ProtocolMapperRepresentation; import org.keycloak.representations.idm.UserRepresentation; import static io.restassured.RestAssured.given; @@ -369,13 +372,30 @@ public class KeycloakSecurityPolicyTest extends KeycloakSecurityPolicyTestBase { } protected void createClient() { + String clientId = config("test.client.id"); + ClientRepresentation client = new ClientRepresentation(); - client.setClientId(config("test.client.id")); + client.setClientId(clientId); client.setSecret(TEST_CLIENT_SECRET); client.setPublicClient(false); + client.setClientAuthenticatorType("client-secret"); client.setDirectAccessGrantsEnabled(true); client.setStandardFlowEnabled(true); client.setFullScopeAllowed(true); + client.setServiceAccountsEnabled(true); + + // Add audience protocol mapper to include this client in the token's audience claim + // This is required for Keycloak 26.6.2+ which enforces audience validation for introspection (CVE-2026-37979) + ProtocolMapperRepresentation audienceMapper = new ProtocolMapperRepresentation(); + audienceMapper.setName("audience-mapper"); + audienceMapper.setProtocol("openid-connect"); + audienceMapper.setProtocolMapper("oidc-audience-mapper"); + Map<String, String> mapperConfig = new HashMap<>(); + mapperConfig.put("included.client.audience", clientId); + mapperConfig.put("id.token.claim", "false"); + mapperConfig.put("access.token.claim", "true"); + audienceMapper.setConfig(mapperConfig); + client.setProtocolMappers(List.of(audienceMapper)); given() .contentType(ContentType.JSON) diff --git a/pom.xml b/pom.xml index 8f7d5feb3e..29485ffb23 100644 --- a/pom.xml +++ b/pom.xml @@ -64,7 +64,7 @@ <quarkiverse-minio.version>3.8.6</quarkiverse-minio.version><!-- https://repo1.maven.org/maven2/io/quarkiverse/minio/quarkus-minio-parent/ --> <quarkiverse-mybatis.version>2.4.2</quarkiverse-mybatis.version><!-- https://repo1.maven.org/maven2/io/quarkiverse/mybatis/quarkus-mybatis-parent/ --> <quarkiverse-pooled-jms.version>2.12.0</quarkiverse-pooled-jms.version><!-- https://repo1.maven.org/maven2/io/quarkiverse/messaginghub/quarkus-pooled-jms-parent/ --> - <quarkus.version>3.36.1</quarkus.version><!-- https://repo1.maven.org/maven2/io/quarkus/quarkus-bom/ --> + <quarkus.version>3.37.0.CR1</quarkus.version><!-- https://repo1.maven.org/maven2/io/quarkus/quarkus-bom/ --> <quarkus-hazelcast-client.version>4.1.0</quarkus-hazelcast-client.version><!-- https://repo1.maven.org/maven2/com/hazelcast/quarkus-hazelcast-client-bom/ --> <quarkus-qpid-jms.version>2.12.0</quarkus-qpid-jms.version><!-- This should be in sync with quarkus-platform https://repo1.maven.org/maven2/org/amqphub/quarkus/quarkus-qpid-jms-bom/ --> @@ -139,10 +139,10 @@ <json-schema-validator.version>${networknt-json-schema-validator-version}</json-schema-validator.version> <json-smart.version>${json-smart-version}</json-smart.version> <jxmpp.version>1.1.0</jxmpp.version><!-- @sync org.apache.camel:camel-xmpp:${camel.version} dep:org.jxmpp:jxmpp-jid --> - <kafka.version>4.2.0</kafka.version><!-- @sync io.quarkus:quarkus-bom:${quarkus.version} dep:org.apache.kafka:kafka-clients --> - <keycloak.version>26.6.1</keycloak.version><!-- @sync io.quarkus:quarkus-build-parent:${quarkus.version} prop:keycloak.server.version --> + <kafka.version>4.2.1</kafka.version><!-- @sync io.quarkus:quarkus-bom:${quarkus.version} dep:org.apache.kafka:kafka-clients --> + <keycloak.version>26.6.2</keycloak.version><!-- @sync io.quarkus:quarkus-build-parent:${quarkus.version} prop:keycloak.server.version --> <kudu.version>${kudu-version}</kudu.version> - <kotlin.version>2.3.21</kotlin.version><!-- @sync io.quarkus:quarkus-bom:${quarkus.version} dep:org.jetbrains.kotlin:kotlin-stdlib --> + <kotlin.version>2.4.0</kotlin.version><!-- @sync io.quarkus:quarkus-bom:${quarkus.version} dep:org.jetbrains.kotlin:kotlin-stdlib --> <kotlinx.version>1.4.0</kotlinx.version><!--Used by com.squareup.wire:wire-compiler referenced from aws2:kinesis --> <kryo.version>2.24.0</kryo.version><!-- @sync org.apache.flink:flink-core:${flink-version} dep:com.esotericsoftware.kryo:kryo --> <langchain4j.version>1.16.2</langchain4j.version><!-- @sync io.quarkiverse.langchain4j:quarkus-langchain4j-parent:${quarkiverse-langchain4j.version} prop:langchain4j.version --> @@ -212,7 +212,7 @@ <formatter-maven-plugin.version>2.29.0</formatter-maven-plugin.version> <gmavenplus-maven-plugin.version>5.0.0</gmavenplus-maven-plugin.version> <impsort-maven-plugin.version>1.13.0</impsort-maven-plugin.version> - <jandex-maven-plugin.version>3.5.3</jandex-maven-plugin.version><!-- @sync io.quarkus:quarkus-build-parent:${quarkus.version} prop:jandex.version --> + <jandex-maven-plugin.version>3.6.0</jandex-maven-plugin.version><!-- @sync io.quarkus:quarkus-build-parent:${quarkus.version} prop:jandex.version --> <keytool-maven-plugin.version>2.0.2</keytool-maven-plugin.version> <license-maven-plugin.version>5.0.0</license-maven-plugin.version> <maven-antrun-plugin.version>3.2.0</maven-antrun-plugin.version> diff --git a/poms/bom/src/main/generated/flattened-full-pom.xml b/poms/bom/src/main/generated/flattened-full-pom.xml index 56708f41e5..e855503488 100644 --- a/poms/bom/src/main/generated/flattened-full-pom.xml +++ b/poms/bom/src/main/generated/flattened-full-pom.xml @@ -7935,7 +7935,7 @@ <dependency> <groupId>org.apache.kafka</groupId><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> <artifactId>connect-api</artifactId><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> - <version>4.2.0</version><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> + <version>4.2.1</version><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> <exclusions> <exclusion> <groupId>javax.ws.rs</groupId><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> @@ -7950,7 +7950,7 @@ <dependency> <groupId>org.apache.kafka</groupId><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> <artifactId>connect-json</artifactId><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> - <version>4.2.0</version><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> + <version>4.2.1</version><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> <exclusions> <exclusion> <groupId>org.lz4</groupId><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> @@ -7961,7 +7961,7 @@ <dependency> <groupId>org.apache.kafka</groupId><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> <artifactId>connect-runtime</artifactId><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> - <version>4.2.0</version><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> + <version>4.2.1</version><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> <exclusions> <exclusion> <groupId>io.swagger.core.v3</groupId><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> @@ -8126,12 +8126,12 @@ <dependency> <groupId>org.jetbrains.kotlin</groupId><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> <artifactId>kotlin-scripting-compiler-embeddable</artifactId><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> - <version>2.3.21</version><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> + <version>2.4.0</version><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> </dependency> <dependency> <groupId>org.jetbrains.kotlin</groupId><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> <artifactId>kotlin-scripting-compiler-impl-embeddable</artifactId><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> - <version>2.3.21</version><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> + <version>2.4.0</version><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> </dependency> <dependency> <groupId>org.jetbrains.kotlinx</groupId><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> diff --git a/poms/bom/src/main/generated/flattened-reduced-pom.xml b/poms/bom/src/main/generated/flattened-reduced-pom.xml index 808c469bb6..ff038a3eb4 100644 --- a/poms/bom/src/main/generated/flattened-reduced-pom.xml +++ b/poms/bom/src/main/generated/flattened-reduced-pom.xml @@ -7864,7 +7864,7 @@ <dependency> <groupId>org.apache.kafka</groupId> <artifactId>connect-api</artifactId> - <version>4.2.0</version> + <version>4.2.1</version> <exclusions> <exclusion> <groupId>javax.ws.rs</groupId> @@ -7879,7 +7879,7 @@ <dependency> <groupId>org.apache.kafka</groupId> <artifactId>connect-json</artifactId> - <version>4.2.0</version> + <version>4.2.1</version> <exclusions> <exclusion> <groupId>org.lz4</groupId> @@ -7890,7 +7890,7 @@ <dependency> <groupId>org.apache.kafka</groupId> <artifactId>connect-runtime</artifactId> - <version>4.2.0</version> + <version>4.2.1</version> <exclusions> <exclusion> <groupId>io.swagger.core.v3</groupId> diff --git a/poms/bom/src/main/generated/flattened-reduced-verbose-pom.xml b/poms/bom/src/main/generated/flattened-reduced-verbose-pom.xml index 4dd14d76b9..1d935d8dee 100644 --- a/poms/bom/src/main/generated/flattened-reduced-verbose-pom.xml +++ b/poms/bom/src/main/generated/flattened-reduced-verbose-pom.xml @@ -7864,7 +7864,7 @@ <dependency> <groupId>org.apache.kafka</groupId><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> <artifactId>connect-api</artifactId><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> - <version>4.2.0</version><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> + <version>4.2.1</version><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> <exclusions> <exclusion> <groupId>javax.ws.rs</groupId><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> @@ -7879,7 +7879,7 @@ <dependency> <groupId>org.apache.kafka</groupId><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> <artifactId>connect-json</artifactId><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> - <version>4.2.0</version><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> + <version>4.2.1</version><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> <exclusions> <exclusion> <groupId>org.lz4</groupId><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> @@ -7890,7 +7890,7 @@ <dependency> <groupId>org.apache.kafka</groupId><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> <artifactId>connect-runtime</artifactId><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> - <version>4.2.0</version><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> + <version>4.2.1</version><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} --> <exclusions> <exclusion> <groupId>io.swagger.core.v3</groupId><!-- org.apache.camel.quarkus:camel-quarkus-bom:${project.version} -->
