Description

This is a follow-up of #39230 to remove deprecated RecoveryCodesWarningThresholdPasswordPolicyProviderFactory . The deprecation is also documented in 26.3 upgrading guide by the #39245 .

The tasks needed for this issue are:

• All the fields and classes deprecated in Avoid using password policy for configuration of recovery codes warni… #39230 might be removed

• Update in RecoveryAuthnCodesCredentialProvider.getWarningThreshold() to not doing fallback to password policy when required action not configured, but rather just fallback to use RecoveryAuthnCodesAction.RECOVERY_CODES_WARNING_THRESHOLD_DEFAULT

• Do we need to do DB migration and migration during JSON import and remove the password policy if present? Will be probably good. Not 100% sure, but maybe some small update might be needed in PasswordPolicy.Builder.build() as it currently checks if provider exists and that is done when realmModel.getPasswordPolicy() is called. Maybe something like "Ignored providers" could be added here to not create providers if policy like "warning threshold" is configured (as provider will not exists).

• Documentation should be updated (release notes, upgrading guide)