hrm, not atm<div><br></div><div>perhaps wanna ask at keycloak list?<br><div><br><br>On Thursday, 19 May 2016, Philipp Koetz, mVISE AG <<a href="mailto:Philipp.Koetz@mvise.de">Philipp.Koetz@mvise.de</a>> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div dir="ltr" style="font-size:12pt;color:#000000;background-color:#ffffff;font-family:Calibri,Arial,Helvetica,sans-serif">
<p>Just to share my "fix" for this problem:</p>
<p>The server is embedded in a bigger infrastructure and is called though vpn tunnel. It looked like that it was not able to determine the realm public key through the tunnel. executing a wget from the vserver itself to /ag-push/index.html solved the problem
and the push server can be accessed through the tunnel, even after restart. Maybe AeroGear Dev Team knows why this was neccessary?</p>
<div style="color:rgb(33,33,33)">
<hr style="display:inline-block;width:98%">
<div dir="ltr"><font style="font-size:11pt" face="Calibri, sans-serif" color="#000000"><b>Von:</b> <a href="javascript:_e(%7B%7D,'cvml','aerogear-users-bounces@lists.jboss.org');" target="_blank">aerogear-users-bounces@lists.jboss.org</a> <<a href="javascript:_e(%7B%7D,'cvml','aerogear-users-bounces@lists.jboss.org');" target="_blank">aerogear-users-bounces@lists.jboss.org</a>> im Auftrag von Philipp Koetz, mVISE AG <<a href="javascript:_e(%7B%7D,'cvml','Philipp.Koetz@mvise.de');" target="_blank">Philipp.Koetz@mvise.de</a>><br>
<b>Gesendet:</b> Mittwoch, 18. Mai 2016 15:39<br>
<b>An:</b> <a href="javascript:_e(%7B%7D,'cvml','aerogear-users@lists.jboss.org');" target="_blank">aerogear-users@lists.jboss.org</a><br>
<b>Betreff:</b> Re: [Aerogear-users] Unable to resolve realm public key remotely</font>
<div> </div>
</div>
<div>
<div>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d" lang="EN-GB">Yes, auth-server.war is deployed and running:</span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d" lang="EN-GB"> </span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d" lang="EN-GB">2016-05-18 12:50:10,549 INFO [org.wildfly.extension.undertow] (MSC service thread 1-4) JBAS017534: Registered web context: /ag-push</span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d" lang="EN-GB">2016-05-18 12:50:10,748 INFO [org.keycloak.services.resources.KeycloakApplication] (MSC service thread 1-3) Not importing realm aerogear from
resource /WEB-INF/ups-realm.json. It already exists.</span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d" lang="EN-GB">2016-05-18 12:50:10,862 INFO [org.wildfly.extension.undertow] (MSC service thread 1-3) JBAS017534: Registered web context: /auth</span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d" lang="EN-GB">2016-05-18 12:50:11,013 INFO [org.jboss.as.server] (ServerService Thread Pool -- 31) JBAS018559: Deployed "unifiedpush-auth-server.war" (runtime-name
: "unifiedpush-auth-server.war")</span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d" lang="EN-GB">2016-05-18 12:50:11,013 INFO [org.jboss.as.server] (ServerService Thread Pool -- 31) JBAS018559: Deployed "unifiedpush-server-wildfly.war" (runtime-name
: "unifiedpush-server-wildfly.war")</span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d" lang="EN-GB"> </span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d" lang="EN-GB">When I call auth/ I get a redirect (with the according message) to ag-push/ and then receive “internatl server error” with the stack trace from
the first mail.</span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d" lang="EN-GB"> </span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d" lang="EN-GB">I will have a look in the dockerfiles.</span></p>
<p class="MsoNormal"><span lang="EN-GB"> </span></p>
<p class="MsoNormal"><b><span style="font-size:10.0pt;font-family:"Tahoma","sans-serif"">Von:</span></b><span style="font-size:10.0pt;font-family:"Tahoma","sans-serif""> <a href="javascript:_e(%7B%7D,'cvml','aerogear-users-bounces@lists.jboss.org');" target="_blank">aerogear-users-bounces@lists.jboss.org</a> [mailto:<a href="javascript:_e(%7B%7D,'cvml','aerogear-users-bounces@lists.jboss.org');" target="_blank">aerogear-users-bounces@lists.jboss.org</a>]
<b>Im Auftrag von </b>Matthias Wessendorf<br>
<b>Gesendet:</b> Mittwoch, 18. Mai 2016 15:33<br>
<b>An:</b> <a href="javascript:_e(%7B%7D,'cvml','aerogear-users@lists.jboss.org');" target="_blank">aerogear-users@lists.jboss.org</a><br>
<b>Betreff:</b> Re: [Aerogear-users] Unable to resolve realm public key remotely</span></p>
<p class="MsoNormal"> </p>
<div>
<p class="MsoNormal">Did you deploy the auth-server.war file?</p>
<div>
<p class="MsoNormal"> </p>
</div>
<div>
<p class="MsoNormal">In our Dockerfiles, we do have example for self-signed certs too (WF-9, based). Perhaps worth to check it out as well, as a pattern?</p>
</div>
<div>
<p class="MsoNormal"><a href="https://github.com/aerogear/dockerfiles/tree/1.1.x/wildfly" target="_blank">https://github.com/aerogear/dockerfiles/tree/1.1.x/wildfly</a></p>
</div>
<div>
<p class="MsoNormal"> </p>
</div>
<div>
<p class="MsoNormal">-M </p>
</div>
</div>
<div>
<p class="MsoNormal"> </p>
<div>
<p class="MsoNormal">On Wed, May 18, 2016 at 3:10 PM, Philipp Koetz, mVISE AG <<a href="javascript:_e(%7B%7D,'cvml','Philipp.Koetz@mvise.de');" target="_blank">Philipp.Koetz@mvise.de</a>> wrote:</p>
<div>
<div>
<p class="MsoNormal"><span lang="EN-GB">Hello,</span></p>
<p class="MsoNormal"><span lang="EN-GB"> </span></p>
<p class="MsoNormal"><span lang="EN-GB">i’ve set up the unified push server and run in this stack trace while trying to access /ag-push/</span></p>
<p class="MsoNormal"><span lang="EN-GB"> </span></p>
<p class="MsoNormal"><span lang="EN-GB">2016-05-18 12:51:24,969 ERROR [io.undertow.request] (default task-8) UT005023: Exception handling request to /ag-push/index.html: java.lang.RuntimeException: Unable to resolve realm public key remotely</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at org.keycloak.adapters.AdapterDeploymentContext.resolveRealmKey(AdapterDeploymentContext.java:134) [keycloak-adapter-core-1.3.1.Final.jar:1.3.1.Final]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at org.keycloak.adapters.AdapterDeploymentContext.resolveDeployment(AdapterDeploymentContext.java:83) [keycloak-adapter-core-1.3.1.Final.jar:1.3.1.Final]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at org.keycloak.adapters.PreAuthActionsHandler.preflightCors(PreAuthActionsHandler.java:71) [keycloak-adapter-core-1.3.1.Final.jar:1.3.1.Final]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at org.keycloak.adapters.PreAuthActionsHandler.handleRequest(PreAuthActionsHandler.java:47) [keycloak-adapter-core-1.3.1.Final.jar:1.3.1.Final]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at org.keycloak.adapters.undertow.ServletPreAuthActionsHandler.handleRequest(ServletPreAuthActionsHandler.java:68) [keycloak-undertow-adapter-1.3.1.Final.jar:1.3.1.Final]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43) [undertow-core-1.1.8.Final.jar:1.1.8.Final]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at io.undertow.servlet.handlers.ServletInitialHandler.handleFirstRequest(ServletInitialHandler.java:261) [undertow-servlet-1.1.8.Final.jar:1.1.8.Final]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at io.undertow.servlet.handlers.ServletInitialHandler.dispatchRequest(ServletInitialHandler.java:248) [undertow-servlet-1.1.8.Final.jar:1.1.8.Final]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at io.undertow.servlet.handlers.ServletInitialHandler.access$000(ServletInitialHandler.java:77) [undertow-servlet-1.1.8.Final.jar:1.1.8.Final]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at io.undertow.servlet.handlers.ServletInitialHandler$1.handleRequest(ServletInitialHandler.java:167) [undertow-servlet-1.1.8.Final.jar:1.1.8.Final]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at io.undertow.server.Connectors.executeRootHandler(Connectors.java:199) [undertow-core-1.1.8.Final.jar:1.1.8.Final]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at io.undertow.server.HttpServerExchange$1.run(HttpServerExchange.java:761) [undertow-core-1.1.8.Final.jar:1.1.8.Final]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142) [rt.jar:1.8.0_72-internal]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617) [rt.jar:1.8.0_72-internal]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at java.lang.Thread.run(Thread.java:745) [rt.jar:1.8.0_72-internal]</span></p>
<p class="MsoNormal"><span lang="EN-GB">Caused by: java.net.ConnectException: Connection refused</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at java.net.PlainSocketImpl.socketConnect(Native Method) [rt.jar:1.8.0_72-internal]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at java.net.AbstractPlainSocketImpl.doConnect(AbstractPlainSocketImpl.java:350) [rt.jar:1.8.0_72-internal]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at java.net.AbstractPlainSocketImpl.connectToAddress(AbstractPlainSocketImpl.java:206) [rt.jar:1.8.0_72-internal]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at java.net.AbstractPlainSocketImpl.connect(AbstractPlainSocketImpl.java:188) [rt.jar:1.8.0_72-internal]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at java.net.SocksSocketImpl.connect(SocksSocketImpl.java:392) [rt.jar:1.8.0_72-internal]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at java.net.Socket.connect(Socket.java:589) [rt.jar:1.8.0_72-internal]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at sun.security.ssl.SSLSocketImpl.connect(SSLSocketImpl.java:668) [jsse.jar:1.8.0_72-internal]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at org.apache.http.conn.ssl.SSLSocketFactory.connectSocket(SSLSocketFactory.java:524) [httpclient-4.3.6.jar:4.3.6]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at org.apache.http.conn.ssl.SSLSocketFactory.connectSocket(SSLSocketFactory.java:403) [httpclient-4.3.6.jar:4.3.6]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at org.apache.http.impl.conn.DefaultClientConnectionOperator.openConnection(DefaultClientConnectionOperator.java:177) [httpclient-4.3.6.jar:4.3.6]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at org.apache.http.impl.conn.AbstractPoolEntry.open(AbstractPoolEntry.java:144) [httpclient-4.3.6.jar:4.3.6]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at org.apache.http.impl.conn.AbstractPooledConnAdapter.open(AbstractPooledConnAdapter.java:131) [httpclient-4.3.6.jar:4.3.6]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at org.apache.http.impl.client.DefaultRequestDirector.tryConnect(DefaultRequestDirector.java:611) [httpclient-4.3.6.jar:4.3.6]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at org.apache.http.impl.client.DefaultRequestDirector.execute(DefaultRequestDirector.java:446) [httpclient-4.3.6.jar:4.3.6]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at org.apache.http.impl.client.AbstractHttpClient.doExecute(AbstractHttpClient.java:863) [httpclient-4.3.6.jar:4.3.6]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:82) [httpclient-4.3.6.jar:4.3.6]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:106) [httpclient-4.3.6.jar:4.3.6]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:57) [httpclient-4.3.6.jar:4.3.6]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> at org.keycloak.adapters.AdapterDeploymentContext.resolveRealmKey(AdapterDeploymentContext.java:105) [keycloak-adapter-core-1.3.1.Final.jar:1.3.1.Final]</span></p>
<p class="MsoNormal"><span lang="EN-GB"> </span>... 14 more</p>
<p class="MsoNormal"> </p>
<p class="MsoNormal"><span lang="EN-GB">SSL setup should be correct, with a self signed cert, till accessing the wildfly start page via https works correctly.</span></p>
<p class="MsoNormal"><span lang="EN-GB">If it helps I can also provide the standalone-full.xml.</span></p>
<p class="MsoNormal"><span lang="EN-GB"> </span></p>
<p class="MsoNormal"><span lang="EN-GB">I’m using version 1.13 on Wildfly 8.2.1. The error appears on http and https.</span></p>
<p class="MsoNormal"><span lang="EN-GB"> </span></p>
<table border="0" cellpadding="0" cellspacing="0">
<tbody>
<tr>
<td style="padding:3.75pt 3.75pt 3.75pt 3.75pt">
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Arial","sans-serif";color:#404040" lang="EN-GB">Regards,</span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Arial","sans-serif";color:#404040" lang="EN-GB">Philipp Koetz</span></p>
</td>
</tr>
</tbody>
</table>
<p class="MsoNormal"><span lang="EN-GB"> </span></p>
<p class="MsoNormal"><span lang="EN-GB"> </span></p>
</div>
</div>
<p class="MsoNormal" style="margin-bottom:12.0pt"><br>
_______________________________________________<br>
Aerogear-users mailing list<br>
<a href="javascript:_e(%7B%7D,'cvml','Aerogear-users@lists.jboss.org');" target="_blank">Aerogear-users@lists.jboss.org</a><br>
<a href="https://lists.jboss.org/mailman/listinfo/aerogear-users" target="_blank">https://lists.jboss.org/mailman/listinfo/aerogear-users</a></p>
</div>
<p class="MsoNormal"><br>
<br clear="all">
</p>
<div>
<p class="MsoNormal"> </p>
</div>
<p class="MsoNormal">-- </p>
<div>
<p class="MsoNormal">Matthias Wessendorf <br>
<br>
blog: <a href="http://matthiaswessendorf.wordpress.com/" target="_blank">http://matthiaswessendorf.wordpress.com/</a><br>
sessions: <a href="http://www.slideshare.net/mwessendorf" target="_blank">http://www.slideshare.net/mwessendorf</a><br>
twitter: <a href="http://twitter.com/mwessendorf" target="_blank">http://twitter.com/mwessendorf</a></p>
</div>
</div>
</div>
</div>
</div>
</div>
</blockquote></div></div><br><br>-- <br>Sent from Gmail Mobile<br>