Topics
This changelog describes changes after version 0.2.6.
- Update keycloak to 24.0.5 #241
- New parameter
keycloak_quarkus_download_path#239
- Add wait_for_port number parameter #237
Internal release, documentation or test changes only.
- Allow for custom providers hosted on maven repositories #223
- Restart handler strategy behaviour #231
- Add support for policy files #225
- Allow to add extra custom env vars in sysconfig file #229
- Download from alternate URL with optional http authentication #220
- Update Keycloak to version 24.0.4 #218
proxy-headerenhancement #227
kc.sh builduses configured jdk #211
- Copying of key material for TLS configuration #210
- Validate certs parameter for JDBC driver downloads #207
- Turn off controller privilege escalation #209
Internal release, documentation or test changes only.
- JDBC provider: fix clause in argument validation #204
- Support java keystore for configuration of sensitive options #189
- Add
wait_for_portandwait_for_logsystemd unit logic #199 - Customize jdbc driver downloads, optional authentication #202
- Keystore-based vault SPI configuration #196
- New
keycloak_quarkus_hostname_strict_httpsparameter #195 - Providers config and custom providers #201
- Remove administrator credentials from files once keycloak is bootstrapped #197
- Update keycloak to 24.0 #194
Internal release, documentation or test changes only.
- Add reverse
proxy_headersconfig, supersedesproxy_mode#187 - Debian/Ubuntu compatibility #178
- Use
keycloak_realmas default for sub-entities #180
- Fix permissions on controller-side downloaded artifacts #184
- JVM args moved to
JAVA_OPTSenvvar (instead of JAVA_OPTS_APPEND) #186 - Unrelax configuration file permissions #191
- Utilize comment filter for
ansible_managedannotations #176
- Implement infinispan TCPPING discovery protocol #159
- Set enable-recovery when xa transactions are enabled #167
- keycloak_quarkus: Allow configuring log rotate options in quarkus configuration #161
- keycloak_quarkus:
sticky-sessionfor infinispan routes #163
- keycloak_quarkus: renamed infinispan host list configuration #157
- keycloak_quarkus: fix custom JAVA_HOME parameter name #171
- keycloak_quarkus: Add support for sqlserver jdbc driver #148
- keycloak_quarkus: allow configuration of
hostname-strict-backchannel#152 - keycloak_quarkus: systemd restart behavior #145
- keycloak_quarkus: Use
keycloak_quarkus_java_opts#154 - keycloak_quarkus: allow ports <1024 (e.g. :443) in systemd unit #150
- keycloak_quarkus: add hostname-strict parameter #139
- keycloak_quarkus: update to version 23.0.1 #133
- keycloak_quarkus: template requires lowercase boolean values #138
- Add support for more http-related configs #115
- Update minimum ansible-core version > 2.14 #119
- keycloak_quarkus: enable config of key store and trust store #116
- Run service as
keycloak_service_user#106
- keycloak_quarkus: Update Keycloak to version 22.0.3 #112
- keycloak_quarkus: fix admin console redirect when running locally #111
- keycloak_quarkus: skip proxy config if
keycloak_quarkus_proxy_modeisnone#109
- keycloak_quarkus: fix validation failure upon port configuration change #113
- Fix incorrect checks for
keycloak_jgroups_subnet#98 - Undefine
keycloak_db_valid_conn_sqldefault #91 - Update bindep.txt package python3-devel to support RHEL9 #105
- Add profile features enabling/disabling #87
- Improve service restart behavior configuration #88
- Update default xa_datasource_class value for mariadb jdbc configuration #89
- Handle WFLYCTL0117 when background validation millis is 0 #90
- Add configuration for database connection pool validation #85
- Allow to configure administration endpoint URL #86
- Allow to force backend URLs to frontend URLs #84
- Introduce systemd unit restart behavior #81
- Allow to setup keycloak HA cluster without remote cache store #68
- Pass attributes to realm clients #69
- Provide config for multiple modcluster proxies #60
- Allow to configure TCPPING for cluster discovery #62
- Drop community.general from dependencies #61
- Switch middleware_automation.redhat_csp_download for middleware_automation.common #63
- Switch to middleware_automation.common for rh-sso patching #64
- keycloak-quarkus: fix
cache-config-filepath in keycloak.conf.j2 template #53
- Update keycloak to 18.0.2 - sso to 7.6.1 #46
- Variable
keycloak_no_logcontrols ansibleno_logparameter (for debugging purposes) #47 - Variables to override service start retries and delay #51
- keycloak_quarkus: variable to enable development mode #45
- Rename variables from
infinispan_prefix tokeycloak_infinispan_#42
- keycloak_quarkus: fix /var/log/keycloak symlink to keycloak log directory #44
- keycloak_quarkus: use absolute path for certificate files #39
- keycloak_quarkus: use become for tasks that will otherwise fail #38
- keycloak_quarkus: add selected java to PATH in systemd unit #34
- keycloak_quarkus: set logfile path correctly under keycloak home #35
- Update config options: keycloak and quarkus #32
Internal release, documentation or test changes only.
- New role for installing keycloak >= 17.0.0 (quarkus) #29
- Add
keycloak_config_override_templateparameter for passing a custom xml config template #30
- Make sure systemd unit starts with selected java JVM #31
- Make
keycloak_admin_passworda default with assert (was: role variable) #26 - Simplify dependency install logic and reduce play execution time #19
- Set
keycloak_frontend_urldefault according to other defaults #25
Minor enhancements, bug and documentation fixes.
- Apply latest cumulative patch of RH-SSO automatically when new parameter
keycloak_rhsso_apply_patchesistrue#18
- Clustered installs now perform database initialization on first node to avoid locking issues #17
This is the first stable release of the middleware_automation.keycloak collection.