search

nebari-dev / nebari

🪴 Nebari - your open source data science platform
https://nebari.dev
BSD 3-Clause "New" or "Revised" License
281 stars 93 forks source link

[ENH] - Upgrade Keycloak to 20.0.4 #2495

Open viniciusdc opened 5 months ago

viniciusdc commented 5 months ago

Feature description

We've been using Keycloak for a while now. However, we are still using the old version pinned to 15.0.2 , with the recent need for ARM builds and focusing on better support and reliability of Nebari, I suggest we start looking into the feasibility of this.

This might not be a straightforward move, as we can't yet guarantee that all those versions released so far are backward compatible or if the database would be the same. (Though, we could overcome this easily by developing further #1784 )

Value and/or benefit

Anything else?

No response

viniciusdc commented 4 months ago

As we use codecentric for the helm-chart provider of our keycloak images, the most available image right now is 18.4.4. There is a nice discussion around the available options (bitnami for example) here:

My opinion on this would be to first move to the latest available version in our current provider as testing (there are hints of a new maintainer to that repo as well), and then later, we will decide on other options. By then, we might have newer versions as well.

viniciusdc commented 4 months ago

also, it might be possible to use the override variable to manually update the installed version fo keycloak after we use the latest helm-chart by passing the image.tag.

Adam-D-Lewis commented 3 months ago

Currently, we download a jar file (https://github.com/nebari-dev/nebari/pull/2588). This jar file was necessary to export metrics for the keycloak dashboard. I'm not sure if it'll still be necessary after the upgrade. Something to check on.

viniciusdc commented 3 months ago

This is also something to keep in mind, even though not the focal point of this issue https://www.keycloak.org/2023/07/keycloak-2200-released.html