Keycloak: Script Authenticator missing?

Question

In our system we have so far been using Keycloak 3.4.3 and the Script Authenticator authentication provider functionality as part of the browser based authentication. Now, after upgrading to Keycloak 4.6.0.Final, we noticed that the option for Script Authenticator has disappeared from the list.

This functionality was still there in Keycloak 4.5.0.Final. Due to functionality that's been fixed in Keycloak 4.6.0.Final, we don't have the option to use 4.5.0.

We used the Script Authenticator -functionality to "whitelist" our users based on LDAP attributes. Now since the script option was removed, we're no longer able to use Keycloak.

Any ideas why the Script Authenticator has been removed? Or could it be that it has been moved to another place within the Keycloak admin console?

Just to add some details:

• There has not been any mention about removing this functionality in the Keycloak release notes
• Script authenticator is still mentioned in the Keycloak documentation for Keycloak 4.6.0
• There is also now an issue reported for this in Keycloak issue tracker KEYCLOAK-8872.

Answer 1

You can enable this feature by start the server with:

-Dkeycloak.profile.feature.scripts=enabled

or you can set this permanently in the profile.properties file (in configuration folder) by adding:

feature.scripts=enabled