26.1.5
📦 keycloakView on GitHub →
✨ 2 features🐛 11 fixes🔧 2 symbols
Summary
This release upgrades Keycloak to Quarkus 3.15.4 and includes numerous bug fixes across UI, core, OTel configuration, and authentication flows. Users should review the migration guide before upgrading.
Migration Steps
- Refer to the migration guide for a complete list of changes: file:/home/runner/work/keycloak-rel/keycloak-rel/target/web/docs/latest/upgrading/#migration-changes
✨ New Features
- Upgrade to Quarkus 3.15.4 (dist/quarkus)
- Resolved issue preventing OTel sampling ratio from being set to 0.0 at runtime by fixing tracing-sampler-ratio validation (dist/quarkus).
🐛 Bug Fixes
- Suppressed root cause of errors during dependency building in KC 26 (#36482)
- Save Button is now correctly enabled when switching OTP Type from "Time Based" to "Counter Based" in the admin UI (#37792)
- ConditionalOtpFormAuthenticator now correctly sets CONFIGURE_TOTP required action for LDAP read-only users (#37869)
- Fixed Keycloak CI WebAuthn tests (#38041)
- Fixed issue in clearing offline sessions internally using ClearExpiredUserSessions Scheduled task (#38063)
- Fixed broken guides link on the reverseproxy page (docs) (#38152)
- Keycloak email message ID no longer contains the local host name or IP address (core) (#38353)
- Keycloak logo is now displayed in the account console (account/ui) (#38454)
- Defined a max expiration window for Signed JWT client authentication (oidc) (#38576)
- Recaptcha secret key configuration is no longer lost when migrating from 24.0.5 to 26.1.4 (authentication) (#38607)
- OTelHttpClientFactory is now configured properly when tracing is enabled (dist/quarkus) (#38740)