-
Notifications
You must be signed in to change notification settings - Fork 25
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Deploying to main from @ 4296ee5f85b127dbb1d92b67a4e12e96bf30c6f2 🚀
- Loading branch information
1 parent
6400243
commit ac4f900
Showing
44 changed files
with
2,452 additions
and
580 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,144 @@ | ||
|
|
||
| <!doctype html> | ||
| <html lang="en"> | ||
| <head> | ||
| <meta charset="utf-8"/> | ||
| <title>Keycloak 26.0.6 released - Keycloak</title> | ||
| <meta name="viewport" content="width=device-width, initial-scale=1.0"> | ||
| <meta name="description" content="Keycloak is an open source identity and access management solution"> | ||
| <meta name="author" content="Keycloak Team"> | ||
| <meta name="keywords" content="sso,idm,openid connect,saml,kerberos,ldap"> | ||
| <link href="https://www.keycloak.org/resources/bootstrap/dist/css/bootstrap.min.css" rel="stylesheet"> | ||
| <link href="https://www.keycloak.org/resources/@fortawesome/fontawesome-free/css/all.min.css" rel="stylesheet"> | ||
| <link href="https://www.keycloak.org/resources/css/keycloak.css" rel="stylesheet"> | ||
| <link rel="canonical" href="https://www.keycloak.org/2024/11/keycloak-2606-released"> | ||
| <link rel="shortcut icon" href="https://www.keycloak.org/resources/favicon.ico"> | ||
| <script src="https://www.keycloak.org/resources/js/ga.js" type="text/javascript"></script> | ||
| <script src="https://www.keycloak.org/resources/bootstrap/dist/js/bootstrap.min.js" type="text/javascript"></script> | ||
| <script src="https://www.keycloak.org/resources/tocbot/dist/tocbot.min.js" type="text/javascript"></script> | ||
| <link rel="alternate" type="application/rss+xml" title="Keycloak's Blog" href="https://www.keycloak.org/rss.xml"></head> | ||
| <body> | ||
|
|
||
| <header class="navbar navbar-expand-md bg-light shadow-sm"> | ||
| <nav class="container-xxl flex-wrap flex-md-no-wrap navbar-light"> | ||
| <a class="navbar-brand me-3 me-md-4 me-lg-5" href="https://www.keycloak.org/"> | ||
| <img class="img-fluid" src="https://www.keycloak.org/resources/images/logo.svg" width="240" alt="Keycloak"/> | ||
| </a> | ||
| <a class="nav-link d-none d-sm-block d-md-none d-lg-block" href="https://github.com/keycloak/keycloak"><img src="https://img.shields.io/github/stars/keycloak/keycloak?label=GitHub%20Stars" style="height: 25px" alt="GitHub stars"/></a> | ||
| <a class="nav-link d-block d-sm-none d-md-block d-lg-none" href="https://github.com/keycloak/keycloak"><img src="https://img.shields.io/github/stars/keycloak/keycloak?label=" style="height: 25px" alt="GitHub stars"/></a> | ||
| <button class="navbar-toggler" type="button" data-bs-toggle="collapse" data-bs-target="#navbarCollapse" aria-controls="navbarCollapse" aria-expanded="false" aria-label="Toggle navigation"> | ||
| <span class="fa fa-bars fa-lg px-1 py-2"></span> | ||
| </button> | ||
| <div class="collapse navbar-collapse" id="navbarCollapse"> | ||
| <ul class="navbar-nav flex-row flex-wrap bd-navbar-nav pt-2 py-md-0"> | ||
| <li class="nav-item col-6 col-md-auto"> | ||
| <a class="nav-link " href="https://www.keycloak.org/guides">Guides</a> | ||
| </li> | ||
| <li class="nav-item col-6 col-md-auto"> | ||
| <a class="nav-link " href="https://www.keycloak.org/documentation">Docs</a> | ||
| </li> | ||
| <li class="nav-item col-6 col-md-auto"> | ||
| <a class="nav-link " href="https://www.keycloak.org/downloads">Downloads</a> | ||
| </li> | ||
| <li class="nav-item col-6 col-md-auto"> | ||
| <a class="nav-link " href="https://www.keycloak.org/community">Community</a> | ||
| </li> | ||
| <li class="nav-item col-6 col-md-auto"> | ||
| <a class="nav-link " href="https://www.keycloak.org/blog">Blog</a> | ||
| </li> | ||
| </ul> | ||
| </div> | ||
| </nav> | ||
| </header> | ||
|
|
||
|
|
||
| <div class="container mt-5 kc-article"> | ||
| <h1>Keycloak 26.0.6 released</h1> | ||
| <p class="blog-date text-muted">November 22 2024</p> | ||
|
|
||
|
|
||
| <p>To download the release go to <a href="https://www.keycloak.org/downloads.html">Keycloak downloads</a>.</p> | ||
|
|
||
| <h2>Highlights</h2> | ||
| <div class="sect2"> | ||
| <h3 id="_admin_events_might_include_now_additional_details_about_the_context_when_the_event_is_fired">Admin events might include now additional details about the context when the event is fired</h3> | ||
| <div class="paragraph"> | ||
| <p>In this release, admin events might hold additional details about the context when the event is fired. When upgrading you should | ||
| expect the database schema being updated to add a new column <code>DETAILS_JSON</code> to the <code>ADMIN_EVENT_ENTITY</code> table.</p> | ||
| </div> | ||
| </div> | ||
| <div class="sect2"> | ||
| <h3 id="_updates_to_documentation_of_x_509_client_certificate_lookup_via_proxy">Updates to documentation of X.509 client certificate lookup via proxy</h3> | ||
| <div class="paragraph"> | ||
| <p>Potential vulnerable configurations have been identified in the X.509 client certificate lookup when using a reverse proxy. | ||
| Additional configuration steps might be required depending on your current configuration. Make sure to review the updated | ||
| <a href="https://www.keycloak.org/server/reverseproxy#_enabling_client_certificate_lookup">reverse proxy guide</a> if you have configured | ||
| the client certificate lookup via a proxy header.</p> | ||
| </div> | ||
| </div> | ||
| <h2>Upgrading</h2> | ||
| <p>Before upgrading refer to <a href="https://www.keycloak.org/docs/latest/upgrading/index.html#migration-changes">the migration guide</a> for a complete list of changes.</p> | ||
|
|
||
| <h2>All resolved issues</h2> | ||
|
|
||
|
|
||
|
|
||
| <h3>Enhancements</h3> | ||
| <ul> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/34315">#34315</a> Update the Keycloak CPU and Memory sizing guide to reflect the new ec2 workder nodes </li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/34386">#34386</a> Some dynamic imported functions are also statically imported making bundling them in-efficient </li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/34570">#34570</a> Make documentation more clear that keycloak javascript adapter and node.js adapter are OIDC <span class="badge bg-secondary">docs</span></li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/34855">#34855</a> Add conditional text to Installation Locations </li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/34873">#34873</a> Update Leveraging JaKarta EE in Server Development guide </li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/34887">#34887</a> Apply QE edits to High Availability guide </li> | ||
| </ul> | ||
|
|
||
| <h3>Bugs</h3> | ||
| <ul> | ||
| <li><a href="https://github.com/keycloak/keycloak-quickstarts/issues/609">#609</a> Workflow failure - Jakarta - SAMLServiceProviderTest.testAccessAccountManagement <span class="badge bg-secondary">quickstarts</span></li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/11008">#11008</a> Incorrect get the members of a group imported from LDAP <span class="badge bg-secondary">ldap</span></li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/17593">#17593</a> Incorrect ldap-group-mapper chosen to sync changes to ActiveDirectory when several mappers with varying group paths used <span class="badge bg-secondary">ldap</span></li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/19652">#19652</a> Members are inhereted from LDAP group with the same name <span class="badge bg-secondary">ldap</span></li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/23732">#23732</a> JavascriptAdapterTest errors when running with strict cookies on Firefox <span class="badge bg-secondary">ci</span></li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/27856">#27856</a> Social login - Stack Overflow test fails <span class="badge bg-secondary">ci</span></li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/31456">#31456</a> Enabling/Disabling user does not work with Microsoft AD LDAP via Admin API/UI <span class="badge bg-secondary">ldap</span></li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/32786">#32786</a> Organization Domain not marked as a required field in the Admin UI <span class="badge bg-secondary">admin/ui</span></li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/33531">#33531</a> Previously entered translations should persist in the translation dialog for the attribute groups <span class="badge bg-secondary">admin/ui</span></li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/34013">#34013</a> Add More Info to Organization Events <span class="badge bg-secondary">organizations</span></li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/34065">#34065</a> Users without `view-realm` can't see user lockout state in Admin UI <span class="badge bg-secondary">admin/ui</span></li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/34201">#34201</a> OIDC IdP Unable to validate signatures using validatingPublicKey certificate <span class="badge bg-secondary">admin/ui</span></li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/34335">#34335</a> NPE in Organization(s)Resource when using Quarkus Rest Client <span class="badge bg-secondary">admin/api</span></li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/34401">#34401</a> Incorrect Content-Type Expectation for POST /admin/realms/{realm}/organizations/{id}/members in Keycloak API <span class="badge bg-secondary">admin/api</span></li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/34465">#34465</a> Missing help icons in Webauthn Policy and Webauthn Passwordless Policy missing in admin ui <span class="badge bg-secondary">admin/ui</span></li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/34519">#34519</a> Clicking on link to Keycloak documentation from Keycloak admin UI does nothing instead of opening documentation <span class="badge bg-secondary">admin/ui</span></li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/34549">#34549</a> Quarkus dev mode does not work <span class="badge bg-secondary">dist/quarkus</span></li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/34572">#34572</a> Text in "Choose a policy type" is not wrapping <span class="badge bg-secondary">admin/ui</span></li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/34603">#34603</a> NPE in InfinispanOrganizationProvider if userCache is disabled <span class="badge bg-secondary">infinispan</span></li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/34624">#34624</a> Securing apps guide breaks downstream <span class="badge bg-secondary">docs</span></li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/34634">#34634</a> Missing downstream explicit name for anchors <span class="badge bg-secondary">docs</span></li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/34644">#34644</a> KC_CACHE_EMBEDDED_MTLS_ENABLED is ignored <span class="badge bg-secondary">infinispan</span></li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/34671">#34671</a> `ClientConnection.getRemoteAddr` can return a hostname when behind a reverse proxy <span class="badge bg-secondary">core</span></li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/34687">#34687</a> New credential templates broken in KC26 <span class="badge bg-secondary">login/ui</span></li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/34905">#34905</a> [Keycloak CI] Outdated surefire artifacts names - Quarkus IT and UT <span class="badge bg-secondary">ci</span></li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/35213">#35213</a> CVE-2024-10451 Sensitive Data Exposure in Keycloak Build Process </li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/35214">#35214</a> CVE-2024-10270 Potential Denial of Service </li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/35215">#35215</a> CVE-2024-10492 Keycloak path trasversal </li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/35216">#35216</a> CVE-2024-9666 Keycloak proxy header handling Denial-of-Service (DoS) vulnerability </li> | ||
| <li><a href="https://github.com/keycloak/keycloak/issues/35217">#35217</a> CVE-2024-10039 Bypassing mTLS validation </li> | ||
| </ul> | ||
|
|
||
| </div> | ||
|
|
||
|
|
||
| <div class="container mt-5"> | ||
| <footer class="py-3 my-4 border-top"> | ||
| <p class="text-center text-muted">Keycloak is a Cloud Native Computing Foundation incubation project</p> | ||
| <div class="text-center"> | ||
| <img alt="Cloud Native Computing Foundation" src="https://www.keycloak.org/resources/images/cncf_logo.png"/> | ||
| </div> | ||
| <p class="mt-4 text-center small text-muted">© Keycloak Authors 2024. © 2024 The Linux Foundation. All rights reserved. The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see our <a href="https://www.linuxfoundation.org/trademark-usage">Trademark Usage page</a>.</p> | ||
| </footer> | ||
| </div> | ||
|
|
||
| </body> | ||
| </html> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.