Uploaded image for project: 'Cloud Enablement'
  1. Cloud Enablement
  2. CLOUD-3919

Include the latest RH-SSO 7.4 OIDC/SAML adapters jars into the EAP 7.3 for OpenShift image

    XMLWordPrintable

Details

    • Bug
    • Resolution: Unresolved
    • Major
    • None
    • EAP73 7.3.2.GA
    • EAP7, RH-SSO
    • None
    • False
    • False
    • Undefined

    Description

      The current EAP 7.3.x Openshift images seem to be bundling the older Keycloak/RH-SSO OIDC/SAML Adpater jars from the SSO 7.3.x versions level.

      This is what I can see on my OCP cluster where I have a deployed and running with EAP 7.3.2 image :

      # oc rsh <eap-POD_NAME>

sh-4.2$ cd /opt/eap/
sh-4.2$

sh-4.2$ cat version.txt
Red Hat JBoss Enterprise Application Platform - Version 7.3.2.GA
sh-4.2$

sh-4.2$ find . -name *keycloak*.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-adapter-core/main/keycloak-adapter-core-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-adapter-spi/main/keycloak-adapter-spi-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-adapter-spi/main/keycloak-undertow-adapter-spi-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-authz-client/main/keycloak-authz-client-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-common/main/keycloak-common-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-core/main/keycloak-core-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-jboss-adapter-core/main/keycloak-jboss-adapter-core-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-saml-adapter-api-public/main/keycloak-saml-adapter-api-public-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-saml-adapter-core/main/keycloak-saml-adapter-core-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-saml-core/main/keycloak-saml-core-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-saml-core-public/main/keycloak-saml-core-public-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-saml-undertow-adapter/main/keycloak-saml-undertow-adapter-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-saml-wildfly-adapter/main/keycloak-saml-wildfly-adapter-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-saml-wildfly-elytron-adapter/main/keycloak-saml-wildfly-elytron-adapter-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-saml-wildfly-subsystem/main/keycloak-saml-wildfly-subsystem-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-servlet-oauth-client/main/keycloak-servlet-oauth-client-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-undertow-adapter/main/keycloak-undertow-adapter-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-wildfly-adapter/main/keycloak-wildfly-adapter-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-wildfly-elytron-oidc-adapter/main/keycloak-wildfly-elytron-oidc-adapter-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-wildfly-subsystem/main/keycloak-wildfly-subsystem-4.8.7.Final-redhat-00001.jar
sh-4.2$

      From the above outputs, the Keycloak JAR files are with "4.8.7" version string label and that corresponds to the RH-SSO 7.3.1 patch update level for these OIDC/SAML Adapter jars as bundled in this EAP 7.3.2 Openshift image.

      I believe this is not good having EAP images running with outdated Adapters libraries. The current EAP 7.3.x Openshift images should ideally (or even must) be using the current Keycloak/RH-SSO OIDC/SAML Adpater jars from the 7.4.x versions level .

      Can the EAP 7.3.z image updated to include the latest RH-SSO 7.4.z OIDC/SAML Adapter jars ?

      Attachments

        Issue Links

          clones

          Bug - A problem that impairs or prevents the functions of the product. CLOUD-3842 Include the latest RH-SSO 7.4 OIDC/SAML adapters jars into the EAP 7.3 for OpenShift image

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • New

          Activity

            People

              kwills@redhat.com Ken Wills
              rhn-support-igueye Issa Gueye
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated: