search

keycloak / keycloak-operator

ARCHIVED Kubernetes Operator for the no longer supported WildFly distribution of Keycloak
Apache License 2.0
432 stars 280 forks source link

User update conflicts with Password Policy #588

Closed snmohan83 closed 1 year ago

snmohan83 commented 2 years ago

Describe the bug

When trying to update user details without any change in the credentials (using the same password as earlier), if the PasswordPolicy is set to not use the last few passwords, keycloak returns a failure to update. This causes issues in the error handling chain in the operator. Work-arounds and hacks are difficult and unclean.

Version

16.1.0 - 19.0.0

Expected behavior

A clean fix could be for keycloak to set password only when there is a change or there is an explicit request to update password. Or keycloak can consider checking the PasswordPolicy only when there is an explicit password update is asked for.

Actual behavior

No response

How to Reproduce?

Anything else?

https://github.com/keycloak/keycloak-operator/issues/499 is relevant to this request

stianst commented 1 year ago

Thanks (again) for reporting this issue. Keycloak 19 was the last version that included this legacy Operator, and with the release of Keycloak 20 the Operator reached EOL and this repository will be archived, please see our blog post on this topic. If this issue is still valid for the Realm Operator, please re-open it there. Thanks for your understanding. And be sure to check out our new Operator!