[keycloak-user] Issue Configuring HTTP Reverse Proxy to Keycloak
colin.ritchie at tasktop.com
Wed Nov 9 14:58:35 EST 2016
I am having trouble getting keycloak to work behind a reverse proxy.
I have installed Keycloak on the same server as our existing web
application running in Tomcat, with keycloak listening on 8081 and Tomcat
listening on 8080. I have configured an HTTP reverse proxy in Tomcat
using https://github.com/mitre/HTTP-Proxy-Servlet. I am forwarding /auth
to the reverse proxy, which in turns connects to keycloak (
When I visit "http://localhost:8080/auth", the first page in this scenario
works: the "Welcome to Keycloak" page appears. But when I click on the
"Administration Console" link, the first redirect works, to
"/auth/admin/master/console". But it then quickly redirects the browser
directly to the keycloak port:
The reverse proxy sets the X-Forwarded-For and X-Forwarded-Proto headers.
And I have configured keycloak according to https://keycloak.gitbooks.
clustering/load-balancer.html, setting the proxy-address-forwarding
I am also seeing, on the final redirected page, the error "Invalid
Any help would be very appreciated.
*Colin Ritchie **|* *Engineering Manager* *|* *Tasktop Technologies*
More information about the keycloak-user