Re: [Hawkular-dev] https and accounts/keycloak
On 10/12/2015 04:03 PM, John Mazzitelli wrote:
>> Anyway, about the error you are seeing: it seems like the
certificate is
>> missing from "some" keystore. Have you added the cert to the
>> keycloak.jks keystore? There are a few Keycloak-specific steps that are
>> required, documented here:
>>
>> http://keycloak.github.io/docs/userguide/html_single/index.html#d4e336
Ah, OK. I didn't do that "reverse proxy" stuff. Everything else I did. And
I see they are using the security-realm stuff. So it doesn't have to be called
"keycloak.jks", just as long as you point the <ssl> setting to the proper
keystore.
I had the impression it has to be named keycloak.jks , as Keycloak would
store other keys there than the cert, but if there's no such
requirement, then it's better :)
- Juca.