This software patch resolves a number of security defects and customer reported bugs in Red Hat Single Sign On 7.2. RH-SSO will deliver patches on a repeating schedule to resolve security defects and customer reported bugs. Fixes for RH-SSO 7.2 will continue until RH-SSO 7.3 is released, and at that time maintenance will be delivered on RH-SSO 7.3.
Updated client adapters are released as needed to resolve customer reported issues or security fixes. The adapters are released as needed so often a given cumulative patch version will not have an associated client adapter for all products.
For more information on which client adapters are tested and supported with Red Hat Single Sign-On versions see: Red Hat Single Sign-On adapter and server compatability
This update includes all fixes and changes from Red Hat Single Sign-On 7.2 Update 01.
This update includes the following bug fixes or changes:
| ID | Component | Summary |
|---|---|---|
| KEYCLOAK-6783 | Cross-dc setup with JDG server on real network doesn't work | |
| KEYCLOAK-6929 | Provide externalizer for AuthenticationSessionEntity | |
| KEYCLOAK-528 | Server | User with "manage-users" role can self-assign the "realm-admin" role to have full administrative control of the realm configuration |
| RHSSO-1353 | Maven repository is missing keycloak-wildfly-elytron-oidc-adapter artifact | |
| KEYCLOAK-6534 | Keycloak TypeError event.data.split is not a function | |
| KEYCLOAK-6732 | Adapter - Spring Boot | Remove unnecessary dependency to spring-security-adapter |
For instructions on applying Red Hat Single Sign-On cumulative patch (also referred to as a Micro Release) see Micro Upgrades in Red Hat Single Sign-On 7.2 Patching And Upgrading Guide.
The adapters are distributed as a full release which is intended to replace the existing adapter. Full details are available in Upgrading Red Hat Single Sign-On Adapters.