For questions and if you're running into trouble, first search our documentation and forums. If you can't find an answer there join our user mailing list and send us an email. We'll typically answer within a few days (excluding weekends of course).
When reporting a security vulnerability please do not disclose the details publicly. This includes our user mailing lists. Instead create a JIRA issue and mark it as security sensitive. The Keycloak team will then follow-up through the JIRA issue.
To report a security vulnerability:
Before reporting a bug or feature request please:
Once you've confirmed it's not already fixed or reported please create an issue in our JIRA.
If you'd like to contribute to the Keycloak project, please join our developer mailing list. This list is used to discuss new features and improvements to Keycloak.
The first step in contributing is usually sending an email to the developer mailing list to let others know what you're planning. For a simple bug fix this is obviously not necessary, but if you plan to add a new feature discussing it on the mailing list first may save you a lot of time.