We have a highly available deployment Keycloak in kubernetes cluster. We have created client with “service accounts roles” and “direct grant acces” which receives infomation users employyeID. After upgrade from 20.01 to 23.06 this process was broken.
If i do this request curl -X POST -u “TESTCLIENT:XXXXXXXXXXXXXXX” -d “grant_type=client_credentials” https://sso.mydomain.su/realms/myrealm/protocol/openid-connect/token
and i recived token after this a try to get infornation curl -H “Authorization: Bearer ACCESS_TOKEN” “https://sso.mydomain.su/admin/realms/myrealm/users?q=employeeID:1” -v
The request takes a very long time to process and the token expires and i get 401 error unauthorized.
I have checked requset to database and I see a lot of similar idle transactions without answer. Need help.