[keycloak-dev] Fwd: Bad Request

Bill Burke bburke at redhat.com
Thu Jan 28 11:12:58 EST 2016 

Then you probably haven't set u the roles correctly for the user that is 
logging in.

On 1/28/2016 11:03 AM, Alex Gouvêa Vasconcelos wrote:
> Sorry guys, I'm not sure weather the group receive the answer to Mr. 
> Burke question about logs or not...
>
>>     Do you can an exception stacktrace on app or auth server?​
>
> Anyway, there's no log to share, here... the server.log file (in 
> Keycloak cluster - 2 instances) doesn't emit any line in the 
> process... and the Wildfly (where the app is deployed) just say:
>
>>     16:10:23,145 WARN [org.keycloak.adapters.OAuthRequestAuthenticator]
>     ​ ​
>     (default task-66) No state cookie​
>
>
> ​ So, I hope someone could help me here...
>
> Thanks. ​
>
>
> ---------- Forwarded message ----------
> From: *Alex Gouvêa Vasconcelos* <alexgv99 at gmail.com 
> <mailto:alexgv99 at gmail.com>>
> Date: 2016-01-26 17:16 GMT-02:00
> Subject: Fwd: Bad Request
> To: keycloak-dev at lists.jboss.org <mailto:keycloak-dev at lists.jboss.org>
>
>
> Hi guys. I'm running into some trouble here...
>
> I have a very simple application which should authenticate against 
> keycloak and return to the main page. This is triggered through the 
> web.xml in my application.
>
>     <web-app xmlns="http://java.sun.com/xml/ns/javaee"
>     xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
>     xsi:schemaLocation="http://java.sun.com/xml/ns/javaee
>     http://java.sun.com/xml/ns/javaee/web-app_3_0.xsd"
>     version="3.0">
>
>     <module-name>teste</module-name>
>
>     <filter>
>     <filter-name>CORSFilter</filter-name>
>     <filter-class>br.com.test.tms.teste.util.CORSFilter</filter-class>
>     </filter>
>     <filter-mapping>
>     <filter-name>CORSFilter</filter-name>
>     <url-pattern>/rest/*</url-pattern>
>     </filter-mapping>
>
>     <distributable />
>
>     <security-constraint>
>     <web-resource-collection>
>     <web-resource-name>teste</web-resource-name>
>     <url-pattern>/rest/exemploService/secure/*</url-pattern>
>     </web-resource-collection>
>     <auth-constraint>
>     <role-name>*</role-name>
>     </auth-constraint>
>     <user-data-constraint>
>     <transport-guarantee>CONFIDENTIAL</transport-guarantee>
>     </user-data-constraint>
>     </security-constraint>
>
>     <login-config>
>     <auth-method>KEYCLOAK</auth-method>
>     <realm-name>realmtest</realm-name>
>     </login-config>
>     <security-role>
>     <role-name>user</role-name>
>     </security-role>
>     <security-role>
>     <role-name>admin</role-name>
>     </security-role>
>
>     </web-app>
>
>
> The server side has a REST API and the client side is an angular 
> application. Everything very simple to just try the development 
> environment. What happens is that, after filling the login page and 
> return to the index.html (actually it's not returning), I receive a 
> 400 BAD REQUEST for the uri:
>
>     http://localhost:8080/teste/?code=X8VlnUNxYzofJDHzkx1ZmMgO2BP0ZDJ-e2l7uB091Dk.bd5edab3-359b-4616-a403-34fffb427af9&state=67b87fd5-7cc0-4415-9b8b-fc16675229a1
>
>
> It seems to me, that the malformed URI is because of the ?code=... If 
> I reload the page with the same URL, it just return the same 400... if 
> I remove the ? portion, it reloads the page and again redirects to and 
> from the keycloak server, and recovers the ? portion, repeating the 
> same 400.
>
> I'm running everything in the same application under wildfly 10. Both 
> the server and client sides in the same deployed WAR.
>
> I'd appreciate any help.
>
> Best regards.
>
> Alex Gouvea Vasconcelos
>
>
>
>
>
>
>
> Imagem inline 1
>
>
>
>
>
>
>
>
>
>
>
>
> _______________________________________________
> keycloak-dev mailing list
> keycloak-dev at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-dev

-- 
Bill Burke
JBoss, a division of Red Hat
http://bill.burkecentral.com

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-dev/attachments/20160128/46f7aa86/attachment-0001.html 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: image/png
Size: 248184 bytes
Desc: not available
Url : http://lists.jboss.org/pipermail/keycloak-dev/attachments/20160128/46f7aa86/attachment-0001.png

More information about the keycloak-dev mailing list