Uploaded image for project: 'Cloud Enablement'
  1. Cloud Enablement
  2. CLOUD-3919

Include the latest RH-SSO 7.4 OIDC/SAML adapters jars into the EAP 7.3 for OpenShift image

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Major Major
    • None
    • EAP73 7.3.2.GA
    • EAP7, RH-SSO
    • None
    • False
    • False
    • Undefined

      The current EAP 7.3.x Openshift images seem to be bundling the older Keycloak/RH-SSO OIDC/SAML Adpater jars from the SSO 7.3.x versions level.

      This is what I can see on my OCP cluster where I have a deployed and running with EAP 7.3.2 image :

      # oc rsh <eap-POD_NAME>

sh-4.2$ cd /opt/eap/
sh-4.2$

sh-4.2$ cat version.txt
Red Hat JBoss Enterprise Application Platform - Version 7.3.2.GA
sh-4.2$

sh-4.2$ find . -name *keycloak*.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-adapter-core/main/keycloak-adapter-core-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-adapter-spi/main/keycloak-adapter-spi-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-adapter-spi/main/keycloak-undertow-adapter-spi-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-authz-client/main/keycloak-authz-client-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-common/main/keycloak-common-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-core/main/keycloak-core-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-jboss-adapter-core/main/keycloak-jboss-adapter-core-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-saml-adapter-api-public/main/keycloak-saml-adapter-api-public-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-saml-adapter-core/main/keycloak-saml-adapter-core-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-saml-core/main/keycloak-saml-core-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-saml-core-public/main/keycloak-saml-core-public-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-saml-undertow-adapter/main/keycloak-saml-undertow-adapter-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-saml-wildfly-adapter/main/keycloak-saml-wildfly-adapter-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-saml-wildfly-elytron-adapter/main/keycloak-saml-wildfly-elytron-adapter-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-saml-wildfly-subsystem/main/keycloak-saml-wildfly-subsystem-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-servlet-oauth-client/main/keycloak-servlet-oauth-client-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-undertow-adapter/main/keycloak-undertow-adapter-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-wildfly-adapter/main/keycloak-wildfly-adapter-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-wildfly-elytron-oidc-adapter/main/keycloak-wildfly-elytron-oidc-adapter-4.8.7.Final-redhat-00001.jar
./modules/system/add-ons/keycloak/org/keycloak/keycloak-wildfly-subsystem/main/keycloak-wildfly-subsystem-4.8.7.Final-redhat-00001.jar
sh-4.2$

      From the above outputs, the Keycloak JAR files are with "4.8.7" version string label and that corresponds to the RH-SSO 7.3.1 patch update level for these OIDC/SAML Adapter jars as bundled in this EAP 7.3.2 Openshift image.

      I believe this is not good having EAP images running with outdated Adapters libraries. The current EAP 7.3.x Openshift images should ideally (or even must) be using the current Keycloak/RH-SSO OIDC/SAML Adpater jars from the 7.4.x versions level .

      Can the EAP 7.3.z image updated to include the latest RH-SSO 7.4.z OIDC/SAML Adapter jars ?

              kwills@redhat.com Ken Wills
              rhn-support-igueye Issa Gueye
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated: