-
Terminally Deprecated ElementsElementDescriptionFor removal in Keycloak 27.use
ClusterProvider.notify(String, Collection, boolean)instead.ClusterProvider.DCNotifyis deprecated. For removal in Keycloak 27.org.keycloak.cluster.ClusterProvider.notify(String, ClusterEvent, boolean, ClusterProvider.DCNotify) useClusterProvider.notify(String, ClusterEvent, boolean)instead.ClusterProvider.DCNotifyis deprecated. For removal in Keycloak 27.
-
Deprecated ClassesClassDescriptionThe PBKDF2 provider with SHA1 and the recommended number of 1.300.000 iterations is known to be very slow. We recommend to use the PBKDF2 variants with SHA256 or SHA512 instead.Please use rather the recovery codes required action to configure warning threshold for recovery codes. This password policy may be removed in the future versions.
-
Deprecated Enum Classes
-
Deprecated Fields
-
Deprecated MethodsMethodDescriptionin favor of
RequiredActionProvider.getMaxAuthAge(KeycloakSession)to support individual configuration of max auth age for all required actions. This method has no effect anymore. Defines the max time after a user login, after which re-authentication is requested for an AIA. 0 means that re-authentication is always requested. On default uses configured max_auth_age value from the required action config. If not configured, it uses the default max_auth_age value from the KeycloakConstants class.useClusterProvider.notify(String, Collection, boolean)instead.ClusterProvider.DCNotifyis deprecated. For removal in Keycloak 27.org.keycloak.cluster.ClusterProvider.notify(String, ClusterEvent, boolean, ClusterProvider.DCNotify) useClusterProvider.notify(String, ClusterEvent, boolean)instead.ClusterProvider.DCNotifyis deprecated. For removal in Keycloak 27.For String content, useHttpClientProvider.getString(String), for binary data useHttpClientProvider.getInputStream(String). To be removed in Keycloak 27.Unused method. Currently, used only in the testsuiteUnused method. Currently, used only in the testsuiteThis method is problem from the performance perspective. Some storages can provide better way for doing this (e.g. entry lifespan in the Infinispan server, etc.). We need to leave solving event expiration to each storage provider separately using expiration field on entity level.
-
Deprecated Enum ConstantsEnum ConstantDescriptionsee KEYCLOAK-2266
RequiredActionProvider.getMaxAuthAge(KeycloakSession)to support individual configuration of max auth age for all required actions. This method has no effect anymore. Defines the max time after a user login, after which re-authentication is requested for an AIA. 0 means that re-authentication is always requested. On default uses configured max_auth_age value from the required action config. If not configured, it uses the default max_auth_age value from the KeycloakConstants class.