<p dir="ltr">Keycloak server overlay installation only contains Keycloak server support, and accompanying keycloak-standalone.xml only contains server configuration. </p>
<p dir="ltr">What you need to secure your web app in the same container is Keycloak adapter download for WF9 to get the necessary adapter modules (that's the 'client' part that talks to the server).</p>
<p dir="ltr">Then you also need to add:</p>
<p dir="ltr"><extension module="org.keycloak.keycloak-adapter-subsystem"/></p>
<p dir="ltr">and</p>
<p dir="ltr"><subsystem xmlns="urn:jboss:domain:keycloak:1.1"/></p>
<p dir="ltr">to standalone.xml</p>
<div class="gmail_quote">On Sep 26, 2015 8:58 AM, "Hristo Stoyanov" <<a href="mailto:hr.stoyanov@peruncs.com">hr.stoyanov@peruncs.com</a>> wrote:<br type="attribution"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr"><div>Hi all</div><div>I am getting the below message with KeyCloak 1.5.0/WF9.0.1 overlay installation. My configuration file looks exactly the same as the stock one, e.g:</div><div><br></div><div><extensions></div><div> ...</div><div> <extension module="org.keycloak.keycloak-server-subsystem"/></div><div> ...</div><div></extensions></div><div>...</div><div><br></div><div><profile></div><div>...</div><div><span style="white-space:pre-wrap">        </span><subsystem xmlns="urn:jboss:domain:keycloak-server:1.1"></div><div><span style="white-space:pre-wrap">        </span> <web-context>auth</web-context></div><div><span style="white-space:pre-wrap">        </span></subsystem></div><div></profile></div><div><br></div><div>The module jars are properly put in the WF folders</div><div><br></div><div>My web.xml also seems right too:</div><div>=========================================</div><div><web-app xmlns="<a href="http://xmlns.jcp.org/xml/ns/javaee" target="_blank">http://xmlns.jcp.org/xml/ns/javaee</a>"</div><div> xmlns:xsi="<a href="http://www.w3.org/2001/XMLSchema-instance" target="_blank">http://www.w3.org/2001/XMLSchema-instance</a>"</div><div> xsi:schemaLocation="<a href="http://xmlns.jcp.org/xml/ns/javaee" target="_blank">http://xmlns.jcp.org/xml/ns/javaee</a> <a href="http://xmlns.jcp.org/xml/ns/javaee/web-app_3_1.xsd" target="_blank">http://xmlns.jcp.org/xml/ns/javaee/web-app_3_1.xsd</a>"</div><div> version="3.1"></div><div> </div><div> <!-- Default page to serve --></div><div> <welcome-file-list></div><div> <welcome-file>index.jsp</welcome-file></div><div> </welcome-file-list></div><div><br></div><div> <!-- This error page rule responds with the GWT Host page for pushstate Errai Navigation URLs --></div><div> <error-page></div><div> <error-code>404</error-code></div><div> <location>/</location></div><div> </error-page></div><div> </div><div><br></div><div> <!-- Erray Keycloak security --> </div><div> <filter></div><div> <filter-name>ErraiLoginRedirectFilter</filter-name></div><div> <init-param></div><div> <param-name>redirectLocation</param-name></div><div> <param-value>/index_draft.jsp</param-value></div><div> </init-param></div><div> </filter></div><div> </div><div> <!-- JAX-RS configuration--></div><div> <servlet-mapping></div><div> <servlet-name>javax.ws.rs.core.Application</servlet-name></div><div> <url-pattern>/rest/*</url-pattern></div><div> </servlet-mapping></div><div><br></div><div> <filter-mapping></div><div> <filter-name>ErraiUserCookieFilter</filter-name></div><div> <url-pattern>/index_draft.jsp</url-pattern></div><div> </filter-mapping></div><div><br></div><div> <filter-mapping></div><div> <filter-name>ErraiLoginRedirectFilter</filter-name></div><div> <url-pattern>/app-login</url-pattern></div><div> </filter-mapping></div><div> </div><div> <security-constraint></div><div> <web-resource-collection></div><div> <web-resource-name>Login</web-resource-name></div><div> <url-pattern>/app-login</url-pattern></div><div> </web-resource-collection></div><div> <auth-constraint></div><div> <role-name>*</role-name></div><div> </auth-constraint></div><div> </security-constraint></div><div> </div><div> <login-config></div><div> <auth-method>KEYCLOAK</auth-method></div><div> <realm-name>whatever</realm-name></div><div> </login-config></div><div> </div><div> <security-role></div><div> <role-name>user</role-name></div><div> </security-role></div><div> </div><div> <security-role></div><div> <role-name>admin</role-name></div><div> </security-role></div><div><br></div><div></web-app></div><div><br></div><div>I can access the KC admin console and configure realms/users/roles no problem in the WF 9.0.1 server.<b> I am out of ideas of what could be causing it. Any hints? Thanks</b></div><div><br></div><div>=============================</div><div>11:47:54,444 ERROR [org.jboss.msc.service.fail] (ServerService Thread Pool -- 78) MSC000001: Failed to start service <a href="http://jboss.undertow.deployment.default-server.de" target="_blank">jboss.undertow.deployment.default-server.de</a></div><div>fault-host./draft: org.jboss.msc.service.StartException in service jboss.undertow.deployment.default-server.default-host./draft: java.lang.RuntimeException: jav</div><div>a.lang.RuntimeException: UT010039: Unknown authentication mechanism KEYCLOAK</div><div> at org.wildfly.extension.undertow.deployment.UndertowDeploymentService$1.run(UndertowDeploymentService.java:85)</div><div> at java.util.concurrent.Executors$RunnableAdapter.call(Unknown Source)</div><div> at java.util.concurrent.FutureTask.run(Unknown Source)</div><div> at java.util.concurrent.ThreadPoolExecutor.runWorker(Unknown Source)</div><div> at java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown Source)</div><div> at java.lang.Thread.run(Unknown Source)</div><div> at org.jboss.threads.JBossThread.run(JBossThread.java:320)</div><div>Caused by: java.lang.RuntimeException: java.lang.RuntimeException: UT010039: Unknown authentication mechanism KEYCLOAK</div><div> at io.undertow.servlet.core.DeploymentManagerImpl.deploy(DeploymentManagerImpl.java:224)</div><div> at org.wildfly.extension.undertow.deployment.UndertowDeploymentService.startContext(UndertowDeploymentService.java:100)</div><div> at org.wildfly.extension.undertow.deployment.UndertowDeploymentService$1.run(UndertowDeploymentService.java:82)</div><div> ... 6 more</div><div>Caused by: java.lang.RuntimeException: UT010039: Unknown authentication mechanism KEYCLOAK</div><div> at io.undertow.servlet.core.DeploymentManagerImpl.setupSecurityHandlers(DeploymentManagerImpl.java:326)</div><div> at io.undertow.servlet.core.DeploymentManagerImpl.deploy(DeploymentManagerImpl.java:200)</div><div> ... 8 more</div><div><br></div><div>11:47:54,471 ERROR [org.jboss.as.controller.management-operation] (management-handler-thread - 2) WFLYCTL0013: Operation ("deploy") failed - address: ([("deploy</div><div>ment" => "draft.war")]) - failure description: {"WFLYCTL0080: Failed services" => {"jboss.undertow.deployment.default-server.default-host./draft" => "org.jboss.</div><div>msc.service.StartException in service jboss.undertow.deployment.default-server.default-host./draft: java.lang.RuntimeException: java.lang.RuntimeException: UT01</div><div>0039: Unknown authentication mechanism KEYCLOAK</div><div> Caused by: java.lang.RuntimeException: java.lang.RuntimeException: UT010039: Unknown authentication mechanism KEYCLOAK</div><div> Caused by: java.lang.RuntimeException: UT010039: Unknown authentication mechanism KEYCLOAK"}}</div><div>11:47:54,478 ERROR [org.jboss.as.server] (management-handler-thread - 2) WFLYSRV0021: Deploy of deployment "draft.war" was rolled back with the following failur</div><div>e message:</div><div>{"WFLYCTL0080: Failed services" => {"jboss.undertow.deployment.default-server.default-host./draft" => "org.jboss.msc.service.StartException in service jboss.und</div><div>ertow.deployment.default-server.default-host./draft: java.lang.RuntimeException: java.lang.RuntimeException: UT010039: Unknown authentication mechanism KEYCLOAK</div><div><br></div><div> Caused by: java.lang.RuntimeException: java.lang.RuntimeException: UT010039: Unknown authentication mechanism KEYCLOAK</div><div> Caused by: java.lang.RuntimeException: UT010039: Unknown authentication mechanism KEYCLOAK"}}</div><div>11:47:54,488 INFO [org.jboss.as.jpa] (ServerService Thread Pool -- 79) WFLYJPA0011: Stopping Persistence Unit (phase 2 of 2) Service 'draft.war#s4g'</div></div>
<br>_______________________________________________<br>
keycloak-user mailing list<br>
<a href="mailto:keycloak-user@lists.jboss.org">keycloak-user@lists.jboss.org</a><br>
<a href="https://lists.jboss.org/mailman/listinfo/keycloak-user" rel="noreferrer" target="_blank">https://lists.jboss.org/mailman/listinfo/keycloak-user</a><br></blockquote></div>