Keycloak links in action mail may break rfc5322

jame-developer · November 9, 2023, 10:53am

The action links generated by Keycloak, for reset credentials or update password for example, contain a token as string.
The resulting link can easily exceed the 998 character limit. This depends on e.g. the host URL, the email address in the token or the length of the client ID in the link. see RFC 5322: Internet Message Format

The result is that mails with those links can not be sent, at least by some providers.

Are there any tips to deal with this topic or are there plans to shorten the links generated by Keycloak?

dasniko · November 9, 2023, 1:46pm

This is a community forum and we are not aware of any plans other than publicly communicated through blog posts or issues.
If you think this is problematic and should be fixed/changed, I suggest to open an issue here: Issues · keycloak/keycloak · GitHub

jame-developer · November 9, 2023, 2:33pm

Thanks, for the fast reply.
I wanted to bring up this topic here, just in case someone already faced this issue, before I create an issue on github.

Topic		Replies	Views
Too long urls with Outlook Configuring the server	0	720	April 22, 2020
Keycloak Admin Console - Unable to update email if longer than 73 characters Configuring the server admin-console	1	610	November 3, 2021
Action token lifespan configuration bug(?) Configuring the server	2	698	April 13, 2023
Reset password email is blocked by some ogranizations as the reset password link is too long Securing applications authentication	1	65	March 11, 2024
Keycloak Action Token for Email Verification Extending the server	1	1286	April 8, 2021

Keycloak links in action mail may break rfc5322

Related Topics