<p dir="ltr">Yes, you'll find some more posts from me below. Buried in one of them is that I did figure this out. I did have to use the extra filter.</p>
<div class="gmail_quote">On May 3, 2016 11:34 PM, "Stian Thorgersen" <<a href="mailto:sthorger@redhat.com">sthorger@redhat.com</a>> wrote:<br type="attribution"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr"><div>Follow the steps in:</div><a href="http://keycloak.github.io/docs/userguide/keycloak-server/html/server-installation.html#d4e409" target="_blank">http://keycloak.github.io/docs/userguide/keycloak-server/html/server-installation.html#d4e409</a><br></div><div class="gmail_extra"><br><div class="gmail_quote">On 2 May 2016 at 04:56, Dean Peterson <span dir="ltr"><<a href="mailto:peterson.dean@gmail.com" target="_blank">peterson.dean@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">I use openshift to apply a wildcard certificat to my routes to keycloak. I can add https that way. However, even though I can apply https to the route and hard code https into keycloak.json files for the auth-server-url, I get the Token audience doesn't match domain errors because some auto generated url by keycloak thinks everything is http. I really don't want to have to go through the work of setting up a keystore and everything else within wildfly when I really don't need it since my route in openshift handles the https part. Is there a way around this?</div>
<br>_______________________________________________<br>
keycloak-user mailing list<br>
<a href="mailto:keycloak-user@lists.jboss.org" target="_blank">keycloak-user@lists.jboss.org</a><br>
<a href="https://lists.jboss.org/mailman/listinfo/keycloak-user" rel="noreferrer" target="_blank">https://lists.jboss.org/mailman/listinfo/keycloak-user</a><br></blockquote></div><br></div>
</blockquote></div>