Skip to content

Release next: Keycloak 26.6.1, dependency updates, location condition authenticator#216

Open
BenLad17 wants to merge 31 commits into
mainfrom
release/next
Open

Release next: Keycloak 26.6.1, dependency updates, location condition authenticator#216
BenLad17 wants to merge 31 commits into
mainfrom
release/next

Conversation

@BenLad17
Copy link
Copy Markdown
Member

@BenLad17 BenLad17 commented Apr 26, 2026

Summary

  • Bump Keycloak to 26.6.1 (pom.xml + Docker image)
  • Add location-based conditional authenticator (contributed by @Spechey)
  • Add Keycloak 26.6.1 to CI test matrix
  • Update CI actions (upload-pages-artifact v5, action-gh-release v3)
  • Update lombok to 1.18.46, Ruby to 4.0.3

Test plan

  • CI passes for all Keycloak versions in matrix (26.5.0–26.5.7, 26.6.1)
  • Location condition authenticator works in Keycloak admin flow
  • Existing conditional authenticators unaffected

mathieu-claudel-kns and others added 16 commits April 9, 2026 20:06
@mathieu-claudel-kns
feat: add a conditional geo information authenticator (country and co…
59bc7e8 
…ntinent)
@renovate
Update softprops/action-gh-release action to v3
63f828b
@renovate
Update actions/upload-pages-artifact action to v5
fa6cdc8
@renovate
Update quay.io/keycloak/keycloak Docker tag to v26.6.1
ed81e3e
@renovate
Update version.keycloak to v26.6.1
24aa548
@renovate
Update dependency ruby to v4.0.3
1d668c4
@renovate
Update dependency org.projectlombok:lombok to v1.18.46
663fc2e
@BenLad17
Fix bugs and align location condition with project/Keycloak conventions
ac29090 
- Use Constants.CFG_DELIMITER_PATTERN instead of hardcoded "##"
- Add null guard for missing authenticator config (fail-closed)
- Use getOrDefault for CONFIG_VALUES to prevent NPE
- Fix getRequirementChoices() to return [REQUIRED, DISABLED]
- Fix setDefaultValue(false) type mismatch on MULTIVALUED_STRING_TYPE
- Fix variable typo: reveseDecision -> reverseDecision
- Fix help text typo: "Revert de condition" -> "Revert the condition"
- Remove unused imports
- Clean up trailing \n in help text strings
@BenLad17
Merge renovate/version.lombok into release/next
0810186
@BenLad17
Merge renovate/ruby-4.x into release/next
b86e8fd
@BenLad17
Merge renovate/actions-upload-pages-artifact-5.x into release/next
8b0ddab
@BenLad17
Merge renovate/softprops-action-gh-release-3.x into release/next
e5b6e6c
@BenLad17
Merge renovate/quay.io-keycloak-keycloak-26.x into release/next
d5b8f14
@BenLad17
Merge renovate/version.keycloak into release/next
23560d5
@BenLad17
Merge fix/location-condition into release/next
6b04e48
@BenLad17
Add Keycloak 26.6.1 to test matrix
bcac0ef
@deepsource-io
Copy link
Copy Markdown
Contributor

deepsource-io Bot commented Apr 26, 2026
edited
Loading

DeepSource Code Review

We reviewed changes in 60ffb5a...92cee69 on this pull request. Below is the summary for the review, and you can see the individual issues we found as inline review comments.

See full review on DeepSource ↗

PR Report Card

Overall Grade   Security  

Reliability  

Complexity  

Hygiene  

Coverage  

Code Review Summary

Analyzer Status Updated (UTC) Details
Java Apr 27, 2026 4:43a.m. Review ↗
Code coverage Apr 27, 2026 4:43a.m. Review ↗

Code Coverage Summary

Language Line Coverage (Overall)
Aggregate
100%
Java
100%

➟ Additional coverage metrics may have been reported. See full coverage report ↗

Important

AI Review is run only on demand for your team. We're only showing results of static analysis review right now. To trigger AI Review, comment @deepsourcebot review on this thread.

BenLad17 added 13 commits April 26, 2026 21:25
@BenLad17
Replace removed Platform.getPlatform().getTmpDirectory() for Keycloak…
a3629c3 
… 26.6 compat
@BenLad17
fix: rename snake_case variables to camelCase in LocationConditionalA…
c6628d8 
…uthenticatorFactory
@BenLad17
ci: add Keycloak 26.6.0 to test matrix
058bad5
@BenLad17
fix: use Keycloak Environment.getDataDir() for temp directory in maxm…
bb74fba 
…ind update task
@BenLad17
fix: use kc.io.tmpdir system property for temp directory, matching Ke…
b433976 
…ycloakApplication.getTmpDirectory()
@BenLad17
fix: use KeycloakApplication.getTmpDirectory() for temp directory
20a0c93
@BenLad17
docs: add release notes for v1.1.0
c889c2b
@BenLad17
fix: use kc.io.tmpdir system property for cross-version Keycloak comp…
50c1f3f 
…atibility
@BenLad17
fix: use KeycloakApplication.getTmpDirectory() (requires Keycloak 26.6+)
f2a005b
@BenLad17
ci: drop Keycloak 26.5.x from test matrix, minimum is now 26.6
a436205
@BenLad17
docs: update v1.1.0 release notes to reflect Keycloak 26.6+ requirement
fedba3d
@BenLad17
fix: wait for async realm deletion before re-creating in test (Keyclo…
259adbf 
…ak 26.6 compat)
@BenLad17
fix: handle InterruptedException in realm deletion wait loop
1cceafa
BenLad17 added 2 commits April 26, 2026 23:16
@BenLad17
Fix async realm deletion race in testLoginHistoryIsDeletedOnRealmDele…
16f8bb5 
…tion

Save userId before realm deletion and wait for deletion to complete
before querying login records. Avoids NotFoundException from
user.getId() when the realm is already gone.
@BenLad17
Use throwaway realm in testLoginHistoryIsDeletedOnRealmDeletion
92cee69 
Deleting the framework-managed realm caused OAuthClient.close() to fail
in afterEach (re-created realm lacks the test OAuth client), aborting
the destroy loop and cascading 409s to all subsequent tests.

Fix: create a separate temp realm + user, insert a record directly via
JDBC, delete the temp realm, verify cascade. Framework realm untouched.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@BenLad17 @mathieu-claudel-kns