Skip to content

Allow the dataset to generate users with a limited number of unique passwords #1238

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 6 commits into from
Nov 28, 2025
Merged

Allow the dataset to generate users with a limited number of unique passwords #1238

merged 6 commits into from
Nov 28, 2025
+111 −31

Conversation

@ryanemerson
Copy link
Contributor

@ryanemerson ryanemerson commented Nov 26, 2025
edited by ahus1
Loading

Closes #1237

I have kept it simple for now and only reused credentials per create-users invocation. The reason for this is that the unique-credential-count ultimately determines the password, so storing and reloading the credentials in the DB means that we then need to handle unique-credential-count changing.

Passwords can be calcuated using: password-$(i % unique-credential-count) where i is the user number.

Quick local benchmark:

4s ./dataset/dataset-import.sh -a create-users -u 10000 -U 100 -l http://localhost:8080/realms/master/dataset

vs

45s ./dataset/dataset-import.sh -a create-users -u 10000 -l http://localhost:8080/realms/master/dataset

I haven't added any docs yet, as I wasn't sure if this was functionality we want to advertise or are happy keeping it hidden for our own needs. Let me know if we require docs.

@ryanemerson ryanemerson force-pushed the 1237/configurable_unique_password_count branch from af93f47 to bc2782a Compare November 26, 2025 15:56
@ryanemerson ryanemerson marked this pull request as ready for review November 26, 2025 16:12
@ryanemerson ryanemerson requested review from ahus1 and pruivo November 26, 2025 16:12
ahus1
ahus1 reviewed Nov 26, 2025
View reviewed changes
Copy link
Contributor

@ahus1 ahus1 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thank you for the pull request, looks good to me.

+1 for adding a minimal set of docs. I think it will come in handy for those who want to test millions of users. It is open source, and we shouldn't hide this gem in the code but make it useful for everyone.

Would be updating Gatling be part if this issue, or a follow-up issue? I'm ok to make it a follow-up issue.

@ryanemerson
Copy link
Contributor Author

ryanemerson commented Nov 27, 2025

I have added the docs and gatling benchmark logic, I also updated the keycloak-create-dataset workflow to include an input for this configuration.

I didn't update any of the benchmark workflows as they already have the max number of inputs (10) and I figured if we do want to execute these tests (semi-)regularly, we probably would have a dedicated cron workflow.

@ahus1 ahus1 self-assigned this Nov 27, 2025
pruivo
pruivo approved these changes Nov 28, 2025
View reviewed changes
Copy link
Member

@pruivo pruivo left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM. Tested the create-realm and benchmark run with 1 unique password, and it worked.
I'll let @ahus1 review the docs :)

@ahus1
Review
8827d0b 
Signed-off-by: Alexander Schwartz <[email protected]>
ahus1
ahus1 approved these changes Nov 28, 2025
View reviewed changes
Copy link
Contributor

@ahus1 ahus1 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thank you for the code changes and the docs. Approving!

@ahus1 ahus1 merged commit f311058 into keycloak:main Nov 28, 2025
3 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@pruivo pruivo pruivo approved these changes

@ahus1 ahus1 ahus1 approved these changes

Assignees

@ahus1 ahus1

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Allow the dataset to generate users with a limited number of unique passwords

3 participants

@ryanemerson @pruivo @ahus1