keycloak/server/sso/fqdn/path is originally an app setting, but is evaluated by other components, so it's also used an an UCRv. This leads to problems in setting, syncing and evaluting the value. On a broader picture this shows the inconsistencies between UCRv, app settings and additional configurational objects.
product: ucs release: "5.0" version: [9] scope: ucs_5.0-0-errata5.0-9 src: univention-keycloak fix: 1.0.13-4 desc: | This update addresses the following issues: * The script `univention-keycloak-migration-status` has been adjusted to check the setting ucs/server/sso/uri, which will be used from UCS 5.2 onwards. bug: [57806]
OK - old sso objects only on primary OK - uri setting check on all machines OK - if no keycloak OK - creates policy on primary/local setting OK - yaml
<https://errata.software-univention.de/#/?erratum=5.0x1193>