Saturday, August 24 2019
To download the release go to Keycloak downloads.
Keycloak server was upgraded to use WildFly 17 under the covers.
Java adapter for Apache Tomcat 8 and Apache Tomcat 9 was unified and now it serves for both of them.
A lot of work has been done on the new Account Console and Account REST API. It’s not quite ready yet, but it’s getting there and hopefully will be fully done for Keycloak 8.
Keycloak can support the signed and encrypted ID token according to the Json Web Encryption (JWE) specification. Thanks to tnorimat.
The Keycloak team has spent a significant amount of time on automation around testing and releases both for Keycloak and Red Hat Single Sign-On.
Oracle database support added to Keycloak container image. Thanks to nerdstep
Clock Skew support added to SAML adapter. Thanks to steevebtib
TypeScript support for Node.js adapter. Thanks to evanshortiss
Gatekeeper now allows to provide unencrypted token in header, while encrypting in cookie. There was also a bug on Gatekeeper when
Revoke Refresh Token is enabled on the Keycloak server. The issue was fixed. Thanks to fredbi
New tab in the Admin console to display the list of users for client roles. Thanks to unly
The full list of resolved issues are available in JIRA
Before you upgrade remember to backup your database and check the upgrade guide for anything that may have changed.