Stian Thorgersen

Not sure what's going on here, but I'm not able to reproduce this issue. Can someone provide steps to reproduce this?

> @stianst the RHEL UBI8 based images we use inherits host FIPS mode and enforces it within containers. > > https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/security_hardening/using-the-system-wide-cryptographic-policies_security-hardening (Section 5.4) Thanks, should be possible to easily reproduce...

Moving this issue to keycloak/keycloak as it is an issue with ZIP distribution as well, not limited to containers.

Updated the description and added a workaround for containers. I would highly suggest using the workaround rather than using old and unsupported versions of the container.

@jakub-moravec 17 is already out, not sure if this will make it into 18 or not, but there's a pretty simple workaround (see description). Does that not cover it for...

We believe this is fixed in https://github.com/keycloak/keycloak-ui/pull/3373 Could you please try the nightly release (quay.io/keycloak/keycloak:nightly) and check if that works?

@jfrantzius we don't rebuild older images as we no longer maintain them, and do not ship any fixes. Please see our security policy around this.

https://github.com/keycloak/keycloak/security/policy#supported-versions

@mposolda now that you are back could you take a look at this one again? I'm trying to clean-up the backlog of PRs and this is one of the PRs...

Nice one, thanks. Would you mind re-basing this one please?