Keycloak 20.0.3 released

January 12 2023

To download the release go to Keycloak downloads.

Migration from 19.0

Before you upgrade remember to backup your database. If you are not on the previous release refer to the documentation for a complete list of migration changes.

All resolved issues

Bugs

• #3404 User role mapping tab: Show effective client roles for a user keycloak-ui section/users
• #3604 ProviderConfigProperty.MAP_TYPE error in new UI keycloak-ui section/identity providers
• #3714 Unable to turn on "Bypass identity confirmation" keycloak-ui section/authentication
• #3727 Adding Form sub-flow broken on admin v2 keycloak-ui section/authentication
• #3738 Custom User Provider SPI: There are no settings to configure the periodically synchronization of users keycloak-ui section/user federation
• #3740 Assign roles to account - paging doesn't work keycloak-ui section/users
• #3742 Realm selector requires two clicks to select something keycloak-ui section/realms
• #3903 User management -> User in 2 subgroups with the same group name assignment does not work keycloak-ui section/users
• #3911 Invalid language tag error when changing realm localization settings keycloak-ui section/realm settings
• #3969 `Missing ":type" param` in the Events page when there are Client Scope events keycloak-ui section/events
• #4048 Import client broken keycloak-ui section/clients
• #4116 New Admin Console only, unable to add client profile in the first client policy keycloak-ui section/realm settings
• #15287 Disabling hostname strict in prod doesn't disable https keycloak dist/quarkus
• #15339 snakeyaml vulnerability GHSA-3mc7-4q67-w48m impacting CLI keycloak admin/cli
• #15866 The redirect URI cannot be verified during logout in the case when client was removed keycloak oidc
• #16252 Wrong auth session id being used when validating auth session id cookies keycloak core
• #16276 Update XStream to 1.4.20 to fix CVE-2022-40151 & CVE-2022-41966 keycloak
• #16287 Timeout when executing command PutMapCommand keycloak storage
• #16380 Set OkHttp to 4.10.0 in parent pom keycloak
• #16388 Lack of validation of access token on client registrations endpoint keycloak oidc

Upgrading

Before you upgrade remember to backup your database and check the upgrade guide for anything that may have changed.