<html>
<head>
<meta content="text/html; charset=utf-8" http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<div class="moz-cite-prefix">Seems like my question wasn't clear
enough.<br>
<br>
I have the following config in my web.xml<br>
<br>
<security-constraint><br>
<web-resource-collection><br>
<web-resource-name>Protected</web-resource-name><br>
<url-pattern>/protected/*</url-pattern><br>
</web-resource-collection><br>
<auth-constraint><br>
<role-name>user</role-name><br>
</auth-constraint><br>
</security-constraint><br>
<br>
<login-config><br>
<auth-method>KEYCLOAK</auth-method><br>
<realm-name>portfolio-webapp</realm-name><br>
</login-config><br>
<br>
<security-role><br>
<role-name>user</role-name><br>
</security-role><br>
<br>
Now when I navigate to e.g. "/protected/index.xhtml" I get
redirected to the Keycloak login. Unfortunately, the cookie which
is set by the Keycloak adapters after a succesful login, has the
path "/protected" set. When I navigate to "/whatever.xhtml" I
obviously have no access to the cookie since the browser doesn't
send it.<br>
<br>
How am I supposed to access the logged in user outside of the
protected area?<br>
<pre wrap="">The session cookie (assuming you're talking about JSESSIONID) should be set to the context-path of your WAR not a specific protected resource.</pre>
Unfortunately I am experiencing that it is set to a different
path.<br>
<pre wrap="">Is your protected resources in the same WAR as the unprotected resources?</pre>
Yes, it's all in the same WAR.<br>
<div class="moz-signature"><br>
Mit freundlichen Grüßen,<br>
<hr>
<b>Christian Beikov</b><br>
</div>
Am 30.12.2014 um 13:38 schrieb Stian Thorgersen:<br>
</div>
<blockquote
cite="mid:349569894.2249184.1419943101421.JavaMail.zimbra@redhat.com"
type="cite">
<pre wrap="">The session cookie (assuming you're talking about JSESSIONID) should be set to the context-path of your WAR not a specific protected resource. Is your protected resources in the same WAR as the unprotected resources?
----- Original Message -----
</pre>
<blockquote type="cite">
<pre wrap="">From: "Christian Beikov" <a class="moz-txt-link-rfc2396E" href="mailto:christian.beikov@gmail.com"><christian.beikov@gmail.com></a>
To: <a class="moz-txt-link-abbreviated" href="mailto:keycloak-dev@lists.jboss.org">keycloak-dev@lists.jboss.org</a>
Sent: Sunday, 28 December, 2014 11:01:54 AM
Subject: [keycloak-dev] Access original session
Hello there!"
I have an application that has protected resources on the pattern
"/protected/*" and I receive a session cookie for the path "/protected",
which makes sense. Now my problem is, that I want the path of the cookie to
be "/" so I can access the user information even outside of the protected
resources.
Since I think this might introduce some problems, the only other way to
realize that I could think of is, to get access to the underlying servlet
session. Not only would that session have to be created properly, which I am
not sure is happening when browsing in the protected resources, I would also
need to access it on the server, so that I can save the currently logged in
user into it.
Is there a possibility to access the servlet session within the Keycloak
context? If so, could you please share some code or point me to an API?
--
Mit freundlichen Grüßen,
Christian Beikov
_______________________________________________
keycloak-dev mailing list
<a class="moz-txt-link-abbreviated" href="mailto:keycloak-dev@lists.jboss.org">keycloak-dev@lists.jboss.org</a>
<a class="moz-txt-link-freetext" href="https://lists.jboss.org/mailman/listinfo/keycloak-dev">https://lists.jboss.org/mailman/listinfo/keycloak-dev</a>
</pre>
</blockquote>
</blockquote>
<br>
</body>
</html>