Keycloak 26.0.7 released

December 03 2024

To download the release go to Keycloak downloads.

Upgrading

Before upgrading refer to the migration guide for a complete list of changes.

All resolved issues

Enhancements

• #34882 Edits to Authorization Services guide
• #34916 Addresse QE comments on Server Administration guide
• #34931 Upgrade to ISPN 15.0.11.Final

Bugs

• #10233 Locale Setting for Update Password Mail admin/api
• #17233 the InfoPage after an ExecuteActionsEmail is not localized based on the user's locale authentication
• #30631 Upgrade to 25 throws: Statement violates GTID consistency core
• #32143 UserId too long to add Security Key WebauthN authentication/webauthn
• #32648 RP-Initiated logout using `POST` method fails in cross-origin setup oidc
• #32676 Flaky test: org.keycloak.testsuite.forms.BrowserButtonsTest#appInitiatedRegistrationWithBackButton ci
• #33071 RESTART_AUTHENTICATION_ERROR in Iphone devices (using safari and chrome browser) oidc
• #33195 Any one Client role mapping to user/group generating two events on admin events tab. core
• #33810 Stabilise my-resources.spec test account/ui
• #34233 Service accounts visible under user search in Admin console admin/api
• #34391 Error on "check a11y" tests on Cypress admin/ui
• #34560 Switching 'Email as Username' alters existing custom usernames to email addresses, causing LDAP sync issues core
• #34572 Text in "Choose a policy type" is not wrapping admin/ui
• #34590 Attributes missing in OrganizationRepresentation when using Admin REST API in Keycloak 26 admin/api
• #34678 [Admin UI] [Create resource-based permission] Resource input is disabled admin/ui
• #34858 Deprecated CLI options and new options are not stable in their sorting dist/quarkus
• #34864 On logout from admin console, a serverinfo call with 401 response in the logs admin/ui
• #34888 Authentication Link and IDP Fails with 400 Bad Request After Migrating to Version 26 and Delete Authentification authentication
• #34899 Upgrade 24 to 25 fails because db jpa changes drop nonexisting indexes. core
• #34930 Update Email doesn't update username when Email as Username and Attributes are enabled user-profile
• #34944 Adding "sub" claim to lightweight access token causes HTTP 403 Forbidden Error in Keycloak 26.0.5 oidc
• #34975 getAll() organization members only returns the first 10 members organizations
• #34987 KC25 Migration guide for caching options needs clarification
• #35006 Mis-formatted unordered list in the caching docs
• #35015 Flaky test: org.keycloak.testsuite.model.session.AuthenticationSessionTest#testConcurrentAuthenticationSessionsRemoval ci
• #35087 Flaky test: org.keycloak.testsuite.model.session.AuthenticationSessionTest#testConcurrentAuthenticationSessionsCreation ci
• #35229 Fix typo in v24 changelog: "longer" -> "no longer" docs
• #35232 reCAPTCHA v3 not working login/ui
• #35276 Your login attempt timed out authentication
• #35282 [Keycloak CI] - Test PoC failing on Keycloak 26.0 branch
• #35288 Upgrade 26.0.5 -> 26.0.6 completely breaks admin events in the admin UI admin/ui
• #35328 Error when creating a permission ticket when there are 2 or more Keycloak servers in a cluster authorization-services