[keycloak-user] Can't add OpenID (Auth0) provider

Scott Dunbar scott at xigole.com
Thu Apr 14 13:19:44 EDT 2016 

Sorry for the bad form in partially answering my own question but perhaps
someone else will run into this too.

There are two errors occurring here.  The first is the "undefined" at the
end of the URL.  This somehow had to do with LastPass.  Disabling LastPass
got rid of that.

The second is the "token signature validation failed".  While I was able to
import the OpenId configuration from Auth0, something must not be quite
right.  If I turn off "Validate Signatures" then I'm able to use Auth0 just
fine.  I'll have to dig into this a big more but it's at least a start.



On Wed, Apr 13, 2016 at 11:52 AM, Scott Dunbar <scott at xigole.com> wrote:

> Hello,
> I'm trying to add an OpenID provider to KeyCloak to use to log in with.  I
> am attempting to use Auth0's provider as that is what the company I'm
> working with has chosen as a authentication provider.  I can use the import
> feature to get the parameters into KeyCloak and have set my id and secret.
> Additionally, I changed the Default Scopes to "openid profile email".
>
> I'm trying to test with the KeyCloak console.  The first thing I see when
> going to http://localhost:8080/auth/admin/ is a 404 when the browser
> tries to get
> http://localhost:8080/auth/realms/master/protocol/openid-connect/undefined
>
> If I attempt to login anyway with the Auth0 provider I've created I see:
>
> RESTEASY002010: Failed to execute: javax.ws.rs.NotFoundException:
> RESTEASY003210: Could not find resource for full path:
> http://localhost:8080/auth/realms/master/protocol/openid-connect/undefined
>
> several times in the logs and, eventually,
>
> org.keycloak.broker.oidc.AbstractOAuth2IdentityProvider] (default task-9)
> Failed to make identity provider oauth callback:
> org.keycloak.broker.provider.IdentityBrokerException: token signature
> validation failed
>
> I'm using Wildfly 10.0.0.Final, and keycloak-overlay-1.9.1.Final.  This
> installation is pretty much "out of the box" - I've don't nothing more than
> extract Wildfly, extract KeyCloak, run keycloak-install.cli, and create a
> user.
>
> Any pointers of what I'm messing up?
>
> --
> Scott Dunbar
> Cell: 303 667 6343
>



-- 
Scott Dunbar
Cell: 303 667 6343
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20160414/33ba54c4/attachment-0001.html

More information about the keycloak-user mailing list