In this release, the focus is on enhancements and operational security. For example, we now support the SCIM protocol as a SCIM server. In addition, all trusted certificates are now stored with their own prefix in a separate directory.
For environments with very old Kubernetes versions in which the automatic cleanup no longer works, we provide a script that removes obsolete container images that are no longer needed and thus reclaims storage space.
New functions and enhancements
ID 8249: Integrate SCIM server into Keycloak to synchronize users and groups
With this version, Keycloak has been optimized to support the SCIM protocol as a SCIM server. With the SCIM protocol, you can now synchronize users and groups from external identity providers such as Microsoft Entra ID.
Integration is done by the scim-for-keycloak plug-in, which is now included in the Keycloak image by default. The integrated plug-in enables simplified and standardized management of identities across different systems.
ID 18763: Save synchronized trusted certificates with their own prefix under "/usr/local/share/ca-certificates/"
All trusted certificates are now saved directly in the /usr/local/share/ca-certificates folder with a prefix.
ID 18973: Create script for cleaning up unused images
Due to an incompatibility between a very old Kubernetes version and a modern operating system, the automatic image cleanup does not work. A script has been added to clean up old images that are no longer used.
Bug fixes and improvements
No bugs were fixed in this release.