We are migrating the application which uses Keycloak 2.1.0. We need to use the latest Keycloak version which supports Java 1.8, please confirm which version is recommended.
Also, the current Keycloak version 2.1.0 is not having export setting as per Keycloak documentation. Requesting you to please share step using which we can export the existing settings and import it in newly created server.
It seems like 15.1 changed the JDK version to 11. So 15.0 should be the last one built against Java 8.
It still has CVEs, so please insert this into your risk analysis when considering to store any PII within that version of keycloak.
For the upgrade, maybe you can find an old version of the docs in the github repository when revertig the tag far enough. Otherwise I fear you are on your own. You might be able to just point a newer keycloak version against the old database and see if it migrates properly. Don’t forget to create a backup.
Either way, you should urgently figure out a way to get to Java 17 and a recent version of Keycloak.
1 Like
@ThoreKr thank you for the response and sharing details.
We installed Keycloak 15.0.2 and tried to manually create realms, clients, roles using console. While doing changes from console, we were checking what config files getting changed at backend in the linux server. But we observed that only .db files are getting modified and not config / property files. Is this right behavior? Are we missing anything?
Also, on the 2.1.0 folder, there is folder with name “standalone”. The same is not available for version 15.0.2. Seems the folder structure and UI console got changed.
I’m not familiar with the way keycloak handled configuration in the very early days. Nowadays it is all stored in the database and the other files just refer to the startup config (wildfly, infinispan, …).
As long as the changes persist across restarts you should be good.
1 Like
As @ThoreKr already mentioned, v15 is fairly old (approx. 2,5 years) and should (IMHO must) not be used anymore. Use the most recent version (currently as of today, 23.0.3).
Seems that you are using the built-in database, which is NOT recommended and supported for production usage. Always use an external RDBMS, like it is mentioned in the docs!
If using an external DB, you don’t have to export/import settings, but you can just use your existing database and upgrade Keycloak server. Keycloak will migrate/upgrade the database on its own.
There are not config files, the database is the state of the configuration!
1 Like