<p dir="ltr">Keycloak server overlay installation only contains Keycloak server support, and accompanying keycloak-standalone.xml only contains server configuration. </p>
<p dir="ltr">What you need to secure your web app in the same container is Keycloak adapter download for WF9 to get the necessary adapter modules (that&#39;s the &#39;client&#39; part that talks to the server).</p>
<p dir="ltr">Then you also need to add:</p>
<p dir="ltr">&lt;extension module=&quot;org.keycloak.keycloak-adapter-subsystem&quot;/&gt;</p>
<p dir="ltr">and</p>
<p dir="ltr">&lt;subsystem xmlns=&quot;urn:jboss:domain:keycloak:1.1&quot;/&gt;</p>
<p dir="ltr">to standalone.xml</p>
<div class="gmail_quote">On Sep 26, 2015 8:58 AM, &quot;Hristo Stoyanov&quot; &lt;<a href="mailto:hr.stoyanov@peruncs.com">hr.stoyanov@peruncs.com</a>&gt; wrote:<br type="attribution"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr"><div>Hi all</div><div>I am getting the below message with KeyCloak 1.5.0/WF9.0.1 overlay installation. My configuration file looks exactly the same as the stock one, e.g:</div><div><br></div><div>&lt;extensions&gt;</div><div>        ...</div><div>        &lt;extension module=&quot;org.keycloak.keycloak-server-subsystem&quot;/&gt;</div><div>        ...</div><div>&lt;/extensions&gt;</div><div>...</div><div><br></div><div>&lt;profile&gt;</div><div>...</div><div><span style="white-space:pre-wrap">        </span>&lt;subsystem xmlns=&quot;urn:jboss:domain:keycloak-server:1.1&quot;&gt;</div><div><span style="white-space:pre-wrap">        </span> &lt;web-context&gt;auth&lt;/web-context&gt;</div><div><span style="white-space:pre-wrap">        </span>&lt;/subsystem&gt;</div><div>&lt;/profile&gt;</div><div><br></div><div>The module jars are properly put in the WF folders</div><div><br></div><div>My web.xml also seems right too:</div><div>=========================================</div><div>&lt;web-app xmlns=&quot;<a href="http://xmlns.jcp.org/xml/ns/javaee" target="_blank">http://xmlns.jcp.org/xml/ns/javaee</a>&quot;</div><div>         xmlns:xsi=&quot;<a href="http://www.w3.org/2001/XMLSchema-instance" target="_blank">http://www.w3.org/2001/XMLSchema-instance</a>&quot;</div><div>         xsi:schemaLocation=&quot;<a href="http://xmlns.jcp.org/xml/ns/javaee" target="_blank">http://xmlns.jcp.org/xml/ns/javaee</a>      <a href="http://xmlns.jcp.org/xml/ns/javaee/web-app_3_1.xsd" target="_blank">http://xmlns.jcp.org/xml/ns/javaee/web-app_3_1.xsd</a>&quot;</div><div>         version=&quot;3.1&quot;&gt;</div><div>    </div><div>    &lt;!-- Default page to serve --&gt;</div><div>    &lt;welcome-file-list&gt;</div><div>        &lt;welcome-file&gt;index.jsp&lt;/welcome-file&gt;</div><div>    &lt;/welcome-file-list&gt;</div><div><br></div><div>    &lt;!--  This error page rule responds with the GWT Host page for pushstate Errai Navigation URLs --&gt;</div><div>    &lt;error-page&gt;</div><div>        &lt;error-code&gt;404&lt;/error-code&gt;</div><div>        &lt;location&gt;/&lt;/location&gt;</div><div>    &lt;/error-page&gt;</div><div>    </div><div><br></div><div>    &lt;!-- Erray Keycloak security --&gt;    </div><div>    &lt;filter&gt;</div><div>        &lt;filter-name&gt;ErraiLoginRedirectFilter&lt;/filter-name&gt;</div><div>        &lt;init-param&gt;</div><div>            &lt;param-name&gt;redirectLocation&lt;/param-name&gt;</div><div>            &lt;param-value&gt;/index_draft.jsp&lt;/param-value&gt;</div><div>        &lt;/init-param&gt;</div><div>    &lt;/filter&gt;</div><div>    </div><div>    &lt;!-- JAX-RS configuration--&gt;</div><div>    &lt;servlet-mapping&gt;</div><div>        &lt;servlet-name&gt;javax.ws.rs.core.Application&lt;/servlet-name&gt;</div><div>        &lt;url-pattern&gt;/rest/*&lt;/url-pattern&gt;</div><div>    &lt;/servlet-mapping&gt;</div><div><br></div><div>    &lt;filter-mapping&gt;</div><div>        &lt;filter-name&gt;ErraiUserCookieFilter&lt;/filter-name&gt;</div><div>        &lt;url-pattern&gt;/index_draft.jsp&lt;/url-pattern&gt;</div><div>    &lt;/filter-mapping&gt;</div><div><br></div><div>    &lt;filter-mapping&gt;</div><div>        &lt;filter-name&gt;ErraiLoginRedirectFilter&lt;/filter-name&gt;</div><div>        &lt;url-pattern&gt;/app-login&lt;/url-pattern&gt;</div><div>    &lt;/filter-mapping&gt;</div><div>            </div><div>    &lt;security-constraint&gt;</div><div>        &lt;web-resource-collection&gt;</div><div>            &lt;web-resource-name&gt;Login&lt;/web-resource-name&gt;</div><div>            &lt;url-pattern&gt;/app-login&lt;/url-pattern&gt;</div><div>        &lt;/web-resource-collection&gt;</div><div>        &lt;auth-constraint&gt;</div><div>            &lt;role-name&gt;*&lt;/role-name&gt;</div><div>        &lt;/auth-constraint&gt;</div><div>    &lt;/security-constraint&gt;</div><div>    </div><div>    &lt;login-config&gt;</div><div>        &lt;auth-method&gt;KEYCLOAK&lt;/auth-method&gt;</div><div>        &lt;realm-name&gt;whatever&lt;/realm-name&gt;</div><div>    &lt;/login-config&gt;</div><div>    </div><div>    &lt;security-role&gt;</div><div>        &lt;role-name&gt;user&lt;/role-name&gt;</div><div>    &lt;/security-role&gt;</div><div>    </div><div>    &lt;security-role&gt;</div><div>        &lt;role-name&gt;admin&lt;/role-name&gt;</div><div>    &lt;/security-role&gt;</div><div><br></div><div>&lt;/web-app&gt;</div><div><br></div><div>I can access the KC admin console and configure realms/users/roles no problem in the WF 9.0.1 server.<b> I am out of ideas of what could be causing it. Any hints? Thanks</b></div><div><br></div><div>=============================</div><div>11:47:54,444 ERROR [org.jboss.msc.service.fail] (ServerService Thread Pool -- 78) MSC000001: Failed to start service <a href="http://jboss.undertow.deployment.default-server.de" target="_blank">jboss.undertow.deployment.default-server.de</a></div><div>fault-host./draft: org.jboss.msc.service.StartException in service jboss.undertow.deployment.default-server.default-host./draft: java.lang.RuntimeException: jav</div><div>a.lang.RuntimeException: UT010039: Unknown authentication mechanism KEYCLOAK</div><div>        at org.wildfly.extension.undertow.deployment.UndertowDeploymentService$1.run(UndertowDeploymentService.java:85)</div><div>        at java.util.concurrent.Executors$RunnableAdapter.call(Unknown Source)</div><div>        at java.util.concurrent.FutureTask.run(Unknown Source)</div><div>        at java.util.concurrent.ThreadPoolExecutor.runWorker(Unknown Source)</div><div>        at java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown Source)</div><div>        at java.lang.Thread.run(Unknown Source)</div><div>        at org.jboss.threads.JBossThread.run(JBossThread.java:320)</div><div>Caused by: java.lang.RuntimeException: java.lang.RuntimeException: UT010039: Unknown authentication mechanism KEYCLOAK</div><div>        at io.undertow.servlet.core.DeploymentManagerImpl.deploy(DeploymentManagerImpl.java:224)</div><div>        at org.wildfly.extension.undertow.deployment.UndertowDeploymentService.startContext(UndertowDeploymentService.java:100)</div><div>        at org.wildfly.extension.undertow.deployment.UndertowDeploymentService$1.run(UndertowDeploymentService.java:82)</div><div>        ... 6 more</div><div>Caused by: java.lang.RuntimeException: UT010039: Unknown authentication mechanism KEYCLOAK</div><div>        at io.undertow.servlet.core.DeploymentManagerImpl.setupSecurityHandlers(DeploymentManagerImpl.java:326)</div><div>        at io.undertow.servlet.core.DeploymentManagerImpl.deploy(DeploymentManagerImpl.java:200)</div><div>        ... 8 more</div><div><br></div><div>11:47:54,471 ERROR [org.jboss.as.controller.management-operation] (management-handler-thread - 2) WFLYCTL0013: Operation (&quot;deploy&quot;) failed - address: ([(&quot;deploy</div><div>ment&quot; =&gt; &quot;draft.war&quot;)]) - failure description: {&quot;WFLYCTL0080: Failed services&quot; =&gt; {&quot;jboss.undertow.deployment.default-server.default-host./draft&quot; =&gt; &quot;org.jboss.</div><div>msc.service.StartException in service jboss.undertow.deployment.default-server.default-host./draft: java.lang.RuntimeException: java.lang.RuntimeException: UT01</div><div>0039: Unknown authentication mechanism KEYCLOAK</div><div>    Caused by: java.lang.RuntimeException: java.lang.RuntimeException: UT010039: Unknown authentication mechanism KEYCLOAK</div><div>    Caused by: java.lang.RuntimeException: UT010039: Unknown authentication mechanism KEYCLOAK&quot;}}</div><div>11:47:54,478 ERROR [org.jboss.as.server] (management-handler-thread - 2) WFLYSRV0021: Deploy of deployment &quot;draft.war&quot; was rolled back with the following failur</div><div>e message:</div><div>{&quot;WFLYCTL0080: Failed services&quot; =&gt; {&quot;jboss.undertow.deployment.default-server.default-host./draft&quot; =&gt; &quot;org.jboss.msc.service.StartException in service jboss.und</div><div>ertow.deployment.default-server.default-host./draft: java.lang.RuntimeException: java.lang.RuntimeException: UT010039: Unknown authentication mechanism KEYCLOAK</div><div><br></div><div>    Caused by: java.lang.RuntimeException: java.lang.RuntimeException: UT010039: Unknown authentication mechanism KEYCLOAK</div><div>    Caused by: java.lang.RuntimeException: UT010039: Unknown authentication mechanism KEYCLOAK&quot;}}</div><div>11:47:54,488 INFO  [org.jboss.as.jpa] (ServerService Thread Pool -- 79) WFLYJPA0011: Stopping Persistence Unit (phase 2 of 2) Service &#39;draft.war#s4g&#39;</div></div>
<br>_______________________________________________<br>
keycloak-user mailing list<br>
<a href="mailto:keycloak-user@lists.jboss.org">keycloak-user@lists.jboss.org</a><br>
<a href="https://lists.jboss.org/mailman/listinfo/keycloak-user" rel="noreferrer" target="_blank">https://lists.jboss.org/mailman/listinfo/keycloak-user</a><br></blockquote></div>