chore(deps): update dependency keycloak-angular to v20

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
keycloak-angular	9.1.0 -> 20.0.0

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

mauriciovigolo/keycloak-angular (keycloak-angular)

v20.0.0

Compare Source

✨ Key Highlights

• Support for Angular v20: Added support for the latest Angular release, v20. [#​644, #​649]
• Documentation: Fixed incorrect references, added instructions for loading an external configuration file, and improved the AutoRefreshToken documentation. [#​614, #​629, #​638, #​639]
• Examples: Added a new example demonstrating how to load an external configuration file in fetch_config.
• Interceptor: Applied a security fix to properly evaluate asynchronous conditions in the custom bearer token interceptor. [#​619]

🙌 Special Thanks

This release was made possible with support from the following contributors. Thank you all for your great work and for helping improve the quality of this library!

• @​ArnaudFlaesch
• @​rammba
• @​lucagobbi
• @​bartvanb
• @​Tlepel

v19.0.2

Compare Source

Bug fixes ✨

• Solve issues #​600 and #​601, related to the Keycloak initialization and AuthGuardData values in createAuthGuard.

v19.0.1

Compare Source

✨ Key Highlights

• Documentation Update: Fixed broken links to the docs folder in the README.md file for improved navigation.

v19.0.0

Compare Source

✨ Key Highlights

• Functional Configuration: Simplify setup with provideKeycloak—no more KeycloakService or KeycloakAngularModule.
• Angular Signals: Reactive handling of Keycloak events for a cleaner, modern approach.
• Enhanced Interceptors: Add tokens with explicit configuration using includeBearerTokenInterceptor and customBearerTokenInterceptor.
• Role-Based Rendering: New *kaHasRoles directive for conditional rendering based on roles.
• Modular Features: Introduced withAutoRefreshToken for seamless token refresh and session management.
• Functional Route Guards: Create custom guards with createAuthGuard for streamlined route protection.

⚠️ Breaking Changes

• Deprecated KeycloakService, KeycloakAngularModule, KeycloakAuthGuard, and keycloakEvents$.
• Bearer tokens are no longer added automatically to all HTTP requests—explicit configuration required.

🛠️ Legacy Version Still Bundled

The legacy implementation of Keycloak-Angular (KeycloakService, KeycloakAngularModule, etc.) is still bundled in this release for backward compatibility. However, it is deprecated and will be removed in a future major version. We strongly encourage migrating to the new APIs.

🛠️ Migration Guide

See the migration guide. 🚀

v16.1.0

Compare Source

Features ✨

• Add support to Keycloak v26.

Contributors 🙏🏻

• Special thanks to @​tomaThomas for the Keycloak v26 update.

v16.0.1

Compare Source

Bug fixes ✨

• Fix version compatibility table in README.md, to update support to keycloak v.25.

v16.0.0

Compare Source

Features ✨

• Add support to Angular v18
• Add support to Keycloak v25

Contributors 🙏🏻

• Special thanks to @​giboow for the Angular v18 update and @​TDesjardins for fixing a typo in the README.

v15.3.0

Compare Source

Features ✨

• Add support to Keycloak v25

v15.2.1

Compare Source

Bug fixes ✨

• Solves issue #​550

v15.2.0

Compare Source

Features ✨

• Add support to Keycloak v24 #​545

Hint:
Please have a look into the keycloak-js@24 release notes. PKCE is enabled by default

Note
Version v15.2.0 signed as deprecated on npm due to the issue in the package.json keycloak-js@24 version. More info: https://github.com/mauriciovigolo/keycloak-angular/issues/550.
Please use instead v15.2.1.

v15.1.0

Compare Source

Features ✨

• Add support to Keycloak v23.

Contributors 🙏🏻

• Special thanks to @​FiReBlUe45 for contributing to the changes in #​529.

v15.0.0

Compare Source

Features ✨

• Add support to Angular v.17.
• Solve https://github.com/mauriciovigolo/keycloak-angular/issues/509: isLoggedIn doesn't return a promise anymore.
• Merged https://github.com/mauriciovigolo/keycloak-angular/pull/523, which gives the possibility to filter by resource name.
• Upgraded keycloak version in example and server in docker compose file to the latest v.22.0.5.

Breaking changes 💥

• Because of #​509, KeycloakService#isLoggedIn doesn't return a promise anymore. Please be aware to adapt your project if needed.

Contributors 🙏🏻

• Special thanks to @​daniel-shuy for contributing to the changes in getUserRoles #​523.

v14.4.0

Compare Source

Features ✨

• Add support to Keycloak v25

v14.3.0

Compare Source

Features ✨

• Add support to Keycloak v24.
• Introduce the changes done in #​523 into version 14.

Hint:
Please have a look into the keycloak-js@24 release notes. PKCE is enabled by default

v14.2.0

Compare Source

Features ✨

• Add support to Keycloak v23.

Contributors 🙏🏻

• Special thanks to @​FiReBlUe45 for contributing to the changes in #​529.

v14.1.0

Compare Source

Features ✨

• Add support to Keycloak-js 22. Thank you to @​lachja for the update!

v14.0.0

Compare Source

Features ✨

• Add support to Angular 16

v13.1.0

Compare Source

Features ✨

• Add support to keycloak-js 21.
• Improvements in docs.
• Improvements in the CI and the addition of CodeQL.
• Improvements in the example, docker.
• Dev dependencies clean-up.

Many thanks to @​XhmikosR for most of the improvements included in the release and also to @​gmolaire for the keycloak-js@21 update!

v13.0.0

Compare Source

Features ✨

• Add support for Angular 15
• Support for keycloak-js 20.

v12.2.0

Compare Source

Features ✨

• Add support for Keycloak 20.

v12.1.0

Compare Source

Features ✨

• Add support for Keycloak 19.

v12.0.0

Compare Source

Features ✨

• Add support for Angular 14 (#​411)
• Support for keycloak-js 18.

Breaking changes 💥

• keycloak-js has two dependencies (base64-js and js-sha256) that generate warnings when building the app with Angular 14. As follows:

Warning: /.../oss/keycloak-angular/example/node_modules/keycloak-js/dist/keycloak.mjs depends on 'base64-js'. CommonJS or AMD dependencies can cause optimization bailouts.
For more info see: https://angular.io/guide/build#configuring-commonjs-dependencies

Warning: /.../oss/keycloak-angular/example/node_modules/keycloak-js/dist/keycloak.mjs depends on 'js-sha256'. CommonJS or AMD dependencies can cause optimization bailouts.
For more info see: https://angular.io/guide/build#configuring-commonjs-dependencies

To solve this issue, both dependencies need to be updated to be ESM, and after, the keycloak-js library needs to update to the recent versions.
Temporary, please follow the instructions of https://angular.io/guide/build#configuring-commonjs-dependencies.

v11.0.0

Compare Source

Features ✨

• Add support for Angular 14 (#​411)
• Keep the support of keycloak-js from version 10 to 17.

Breaking changes 💥

• keycloak-js has two dependencies (base64-js and js-sha256) that generate warnings when the building the app with Angular 14. As follows:

Warning: /.../oss/keycloak-angular/example/node_modules/keycloak-js/dist/keycloak.mjs depends on 'base64-js'. CommonJS or AMD dependencies can cause optimization bailouts.
For more info see: https://angular.io/guide/build#configuring-commonjs-dependencies

Warning: /.../oss/keycloak-angular/example/node_modules/keycloak-js/dist/keycloak.mjs depends on 'js-sha256'. CommonJS or AMD dependencies can cause optimization bailouts.
For more info see: https://angular.io/guide/build#configuring-commonjs-dependencies

To solve this issue, both dependencies need to be updated to be ESM and after, the keycloak-js library needs to update to the recent versions.
Temporary, please follow the instructions of https://angular.io/guide/build#configuring-commonjs-dependencies.

v10.0.2

Compare Source

Bug fixes ✨

• Solve issue #​414

v10.0.1

Compare Source

Bug fixes ✨

• Solve issue #​407
• Solve issue #​409

v10.0.0

Compare Source

Features ✨

• add support for Keycloak 18.

v9.3.2

Compare Source

Bug fixes ✨

• Solve issue #​414

v9.3.1

Compare Source

Bug fixes ✨

• Solve issue #​407
• Solve issue #​409

v9.3.0

Compare Source

Features ✨

• add support for Keycloak 17 (#​385). Thank you @​youssef-aouichaoui for the contribution!

v9.2.0

Compare Source

Features ✨

• Two new configuration options have been added to modify the add or update keycloak token functionality in the bearer authorization interceptor. More info about the shouldAddToken and shouldUpdateToken here. Thank you @​jeddai for the implementation of this functionality 🎉

Breaking changes 💥

• The bearerExcludedUrls configuration option has been deprecated and will be removed in a future version.

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: package-lock.json

npm ERR! code ERESOLVE
npm ERR! ERESOLVE unable to resolve dependency tree
npm ERR! 
npm ERR! While resolving: [email protected]
npm ERR! Found: @angular/[email protected]
npm ERR! node_modules/@angular/common
npm ERR!   @angular/common@"13.3.5" from the root project
npm ERR! 
npm ERR! Could not resolve dependency:
npm ERR! peer @angular/common@"^20" from [email protected]
npm ERR! node_modules/keycloak-angular
npm ERR!   keycloak-angular@"20.0.0" from the root project
npm ERR! 
npm ERR! Fix the upstream dependency conflict, or retry
npm ERR! this command with --force, or --legacy-peer-deps
npm ERR! to accept an incorrect (and potentially broken) dependency resolution.
npm ERR! 
npm ERR! See /runner/cache/others/npm/eresolve-report.txt for a full report.

npm ERR! A complete log of this run can be found in:
npm ERR!     /runner/cache/others/npm/_logs/2025-06-15T08_00_14_770Z-debug-0.log