[keycloak-user] Keycloak SAML response redirection stuck in loop after logging in

Mon Sep 10 03:21:33 EDT 2018

Hello Xj,

May I suggest you to add org.keycloak.level = ALL in
${CATALINA_BASE}/logging.properties in order to get some debug info in the
tomcat output?

You mention SAMLFilter adapter.but in the SO question you mention the
tomcat valve adapter. May I ask you to clarify this? There are a couple of
differences regarding the configuration [1]

Hope it helps,

Luis

[1]
https://www.keycloak.org/docs/latest/securing_apps/index.html#java-servlet-filter-adapter

El dom., 9 sept. 2018 a las 7:44, x (<wasedaxiao at gmail.com>) escribió:

> Hello
>
> I am using Keycloak as IdP integrated with my application(SP) by using
> SAMLFilter adapter. After authentication is successful by checking the SAML
> assertion response from Keycloak containing the expected username, the
> redirect visited Keycloak again which resulted "You are already logged in"
> on my Chrome screen.
>
> The same question was asked on stackoverflow and we have same phenomenon.
>
>
> https://stackoverflow.com/questions/50681822/keycloak-saml-redirection-stuck-in-loop-after-logging-in
>
> I see there is a Javascript code below with a response form together on my
> Chrome dev tool which likely redirects to Keycloak again instead of SP.
>
> <SCRIPT> if (typeof history.replaceState === 'function') {
> history.replaceState({}, "some title", "
>
> http://localhost:6161/auth/realms/UAAAltDemo/login-actions/authenticate?client_id=CCenter_SSOSAML&tab_id=CM4uq1MRqng
> ");
> }</SCRIPT>
>
> Could some please help how to fix the problem? Where I need to configure to
> workaround this.
>
> Best Regards,
> Xj
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>

-- 

"Ever tried. Ever failed. No matter. Try Again. Fail again. Fail better."

- Samuel Beckett