On November 21, we released the Alpha version of UCS 5.2. It is the harbinger for the first minor release since the release of UCS 5.0 in May 2021. The Alpha version is intended to give a first impression of the upcoming UCS 5.2, in particular the basic packages of the distribution have been updated; UCS 5.2 Alpha is therefore primarily aimed at app providers who want to test their app today. However, installation and updates are generally available to anyone who wants to get an idea of the next version today.
What Is New?
UCS 5.2 will be based on the latest stable Debian version: Debian 12 “Bookworm”. This includes new versions of PostgreSQL and MariaDB, Docker and OpenLDAP, among others. The Alpha version has already completed this step, all packages from Debian have been adopted and partially rebuilt with our enhancements. Especially for application providers it is worth to have a look already today. Early testing ensures that the app will be available in the App Center on the day UCS 5.2 is released.
UCS 5.2 now also comes with Keycloak as our single sign-on solution. We have already described the long road to this here. Keycloak is already functional in the Alpha version and will be even more integrated in the final version.
Where Is UCS 5.1?
It is true, UCS 5.0 is followed by UCS 5.2. As mentioned here, we skipped a complete, production-ready release of UCS 5.1 for technical reasons. Just like we skipped Debian 11 “Bullseye”. When upgrading from UCS 5.0 to UCS 5.2, this actually happens in two steps in the background; once to a “hidden” UCS 5.1 and immediately after that to UCS 5.2. We make sure that nobody gets stuck on UCS 5.1 during the update (after all, 5.1 will never become an official, supported release that should be used productively).
Where Do we Stand with UCS 5.2 and Keycloak?
In UCS 5.2, Keycloak will replace our current solutions for single sign-on (SimpleSAMLphp and the OpenID Connect Provider app) and support both protocols, SAML and OpenID Connect. The Keycloak app, which is already available for UCS 5.0, is pre-installed in the Alpha version. The app installation during the UCS installation will be revised again in the final version of 5.2. Our services (Univention Management Console and Univention Portal) have already been converted to Keycloak, but we will work on some rough edges. And just like the app providers, we will also convert our other apps to Keycloak as the new standard: the Microsoft 365 Connector and the Google Workspace Connector.
Before updating UCS 5.0, you will need to migrate to Keycloak – this can already be done today and is documented in the migration guide. The Alpha release of UCS 5.2 does not work properly without the Keycloak app; this will also be improved for the final release.
What Happens Next?
The final UCS 5.2 will be released in the course of next year, and we will start the final release phase with a beta version.
The Alpha version can already be tested now. We have described how to do this in an article here. There we also list known bugs and special features of the pre-release version. As always, we welcome questions and feedback on the Alpha version at Univention Help.