Bug 58182 - startTls in conjunction with connectionPooling are incompatible default options for keycloak 26
Summary: startTls in conjunction with connectionPooling are incompatible default optio...
Status: CLOSED FIXED
Alias: None
Product: UCS
Classification: Unclassified
Component: Keycloak
Version: UCS 5.0
Hardware: Other Linux
: P5 normal
Target Milestone: UCS 5.0-10-errata
Assignee: Christian Castens
QA Contact: Felix Botner
URL:
Keywords:
Depends on:
Blocks: 58183
  Show dependency treegraph
 
Reported: 2025-04-07 18:32 CEST by Christian Castens
Modified: 2025-04-16 14:22 CEST (History)
0 users

See Also:
What kind of report is it?: ---
What type of bug is this?: ---
Who will be affected by this bug?: ---
How will those affected feel about the bug?: ---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Customer ID:
Max CVSS v3 score:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Christian Castens univentionstaff 2025-04-07 18:32:39 CEST 
startTls in conjunction with connectionPooling are incompatible default options for keycloak 26.

Currently, we set connectionPooling regardless of startTls in univention-keycloak.
Comment 1 Christian Castens univentionstaff 2025-04-07 20:38:34 CEST 
univention-keycloak.yaml
89e0529841ed | Bug #58182: deactivate connectionPooling while startTls is active

univention-keycloak (1.0.14-2)
89e0529841ed | Bug #58182: deactivate connectionPooling while startTls is active

As of this version, `connectionPooling` will only be enabled if `startTls` is disabled.
Comment 2 Felix Botner univentionstaff 2025-04-11 10:00:23 CEST 
OK 1.0.14-5 univention-keycloak.yaml
OK update disables connectionPooling
OK connectionPooling is disabled is startTLS is true for new installations
Comment 3 Arvid Requate univentionstaff 2025-04-16 14:22:53 CEST 
<https://errata.software-univention.de/#/?erratum=5.0x1248>