<div dir="ltr"><div>Hi, I'm trying to wrap Keycloak behind Nginx for a client and I can't work out how to</div><div>avoid the invalid parameter: redirect_uri problem.</div><div><br></div><div>Website is <a href="https://my-client.pibenchmark.com">https://my-client.pibenchmark.com</a></div><div><br></div><div>In nginx:</div><div>location /auth {</div><div> proxy_pass <a href="https://auth-service">https://auth-service</a>;</div><div>}</div><div><br></div><div>upstream auth-service {</div><div> server my-keycloak:8443;</div><div>}</div><div><br></div><div>Then in Keycloak I have valid redirect URIs set to https://*.<a href="http://pibenchmark.com/*">pibenchmark.com/*</a> ie my whole domain. Still getting invalid parameter: redirect_uri though. </div><div><br></div><div>What am I doing wrong? Can I do this this way? I like to have one point of contact with the internet for security reasons.</div><br clear="all"><div><div class="gmail_signature"><div dir="ltr"><div dir="ltr"><div><font color="#000000"><b>Kevin Thorpe<br></b></font></div>
<div>CTO, PI Limited</div></div></div></div></div>
</div>