Identity Config 0.5.0

These notes preserve manual upgrade steps from older UDS Identity Config versions. Use them when supporting an older UDS Core deployment that may have skipped a historical Keycloak realm change.

Note

These notes are not the source of truth for current supported releases. For current upgrade procedures, start with the Upgrade Overview, then review Release Notes and Upgrade Keycloak realm configuration.

Group authorization

UDS Identity Config v0.5.0 added a new authentication flow for group authorization.

To add group authorization to browser flows:

1. In the Keycloak admin portal, navigate to the uds realm.
2. Go to Authentication.
3. Add UDS Operator Group Authentication Validation at the base level and bottom of these flows:
   • UDS Authentication
   • UDS Registration
   • UDS Reset Credentials

If you use a SAML identity provider, create a dedicated Authorization flow:

1. Go to Authentication.
2. Click Create flow.
3. Set Name to Authorization.
4. Set Description to UDS Operator Group Authentication Validation.
5. Select Basic flow.
6. Click Create.
7. Click Add execution.
8. Add UDS Operator Group Authentication Validation.
9. Go to Identity providers and select the SAML provider.
10. In Advanced settings, set Post login flow to Authorization.

Related documentation

• Legacy upgrade notes - preserved manual steps for older Identity Config versions
• Upgrade Keycloak realm configuration - current guidance for manual Keycloak realm changes