[1.3.0]
Update keycloak to 26.3.0
Full Changelog
Account recovery with 2FA recovery codes, protecting users from lockout.
Simplified experiences for application developers with streamlined WebAuthn/Passkey registration and simplified account linking to identity providers via application initiated actions.
Broader connectivity with the ability to broker with any OAuth 2.0 compliant authorization server, and enhanced trusted email verification for OpenID Connect providers.
Asynchronous logging for higher throughput and lower latency, ensuring more efficient deployments.
For administrators, experimental rolling updates for patch releases mean minimized downtime and smoother upgrades.
The custom protocol, which was previously used for client-initiated account linking, is now deprecated.
#21995 Configurable probes in the Operator operator
#29116 Add supported config options for additional datasources dist/quarkus
#29596 Passkeys conditional UI: integration with username/password form authentication/webauthn
#38465 Name for OTP device should be unique account/api
#38985 Possibility to log details and representation to the jboss-logging listener