Release notes and upgrade notes to KEYCLOAK-11971

2019-11-08 06:26:34 -03:00 · 2019-11-08 06:26:34 -03:00 · b7a1806d51
commit b7a1806d51
parent 889e878649
2 changed files with 9 additions and 1 deletions
--- a/release_notes/topics/8_0_0.adoc
+++ b/release_notes/topics/8_0_0.adoc
@ -57,6 +57,10 @@ are supported now. Thanks to https://github.com/madgaet[madgaet] and https://git

 Thanks to https://github.com/jonkoops[jonkoops] now it's possible to enable or disable logging for the JS adapter.

+== Credentials support removed from the JavaScript adapter
+
+The option to provide client credentials in the JavaScript adapter was removed. Thanks to https://github.com/jonkoops[jonkoops] 
+
 == Updates for Gatekeeper 

 * Secure token and logout endpoint were included in Gatekeeper. Thanks to https://github.com/fredbi[fredbi]
--- a/upgrading/topics/keycloak/changes.adoc
+++ b/upgrading/topics/keycloak/changes.adoc
@ -26,6 +26,10 @@ through the RESTful Admin API.
 For now on, this capability is *disabled* by default and users should prefer to deploy scripts directly to the server. For more details,
 please take a look at link:{developerguide_jsproviders_link}[{developerguide_jsproviders_name}].

+==== Client Credentials in the JavaScript adapter
+
+In the previous releases, developers were allowed to provide client credentials to the JavaScript adapter. For now on, this capability was *removed*, because client-side apps are not safe to keep secrets.
+
 === Migrating to 7.0.0

 ==== Upgrade to Wildfly 17