From a78e5437a2cea63678ebf195984a834e12328f49 Mon Sep 17 00:00:00 2001 From: Rolfe Dlugy-Hegwer Date: Tue, 12 Aug 2025 17:31:15 -0400 Subject: [PATCH 1/2] Revisions for style and typos --- docs/src/main/asciidoc/security-keycloak-authorization.adoc | 6 ++---- 1 file changed, 2 insertions(+), 4 deletions(-) diff --git a/docs/src/main/asciidoc/security-keycloak-authorization.adoc b/docs/src/main/asciidoc/security-keycloak-authorization.adoc index 2f0675b12a404..22dfa11a18e35 100644 --- a/docs/src/main/asciidoc/security-keycloak-authorization.adoc +++ b/docs/src/main/asciidoc/security-keycloak-authorization.adoc @@ -525,8 +525,6 @@ public class ProtectedResource { } ---- -NOTE: If you want to use the `AuthzClient` directly, set `quarkus.keycloak.policy-enforcer.enable=true`; otherwise, no bean is available for injection. - [NOTE] ==== To use the `AuthzClient` directly, set `quarkus.keycloak.policy-enforcer.enable=true`. @@ -535,9 +533,9 @@ Otherwise, no bean is available for injection. == Mapping protected resources -By default, the extension fetches resources from Keycloak on demand, using their URI to identify and map the application resources that require protection. +By default, the extension uses lazy loading to fetch resources from Keycloak on demand. It uses the request URI to identify and map application resources that require protection. -To disable on-demand fetching and instead pre-load resources at startup, configure the following property: +To disable lazy loading and instead pre-load all resources at startup, configure the following property: [source,properties] ---- From 537d4a5f381ab297b34b6abeffe1c8e4c09b72b2 Mon Sep 17 00:00:00 2001 From: Rolfe Dlugy-Hegwer Date: Thu, 14 Aug 2025 10:58:12 -0400 Subject: [PATCH 2/2] Mention that leaving the value empty blocks all cross-origin requests. --- docs/src/main/asciidoc/security-cors.adoc | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/src/main/asciidoc/security-cors.adoc b/docs/src/main/asciidoc/security-cors.adoc index aa14789f707f2..04e7faa6ca54f 100644 --- a/docs/src/main/asciidoc/security-cors.adoc +++ b/docs/src/main/asciidoc/security-cors.adoc @@ -54,7 +54,7 @@ quarkus.http.cors.access-control-allow-credentials=true <7> ---- <1> Enables the CORS filter. -<2> Specifies allowed origins, including a regular expression. +<2> Specifies allowed origins, including a regular expression. When not specified, CORS is not permitted, and only same-origin requests are allowed. <3> Lists allowed HTTP methods for cross-origin requests. <4> Declares custom headers that clients can include in requests. <5> Identifies response headers that clients can access.