Yup... probably I configured something wrong, but I reviewed each step and couldn't find anything that seems not ok... Is there a way I can export the realm so you can see it?
I'm attaching some images from the keycloak admin console that maybe can help...

Imagem inline 2Imagem inline 1Imagem inline 3

Thank you.


PS: Mistakenly, I had sent this same message just for Mr. Burke.

Cordialmente.
Alex Gouvêa Vasconcelos
mailto:alexgv99@gmail.com
MSN: alexgv99@hotmail.com
http://about.me/alexgv99


2016-01-28 14:12 GMT-02:00 Bill Burke <bburke@redhat.com>:
Then you probably haven't set u the roles correctly for the user that is logging in.


On 1/28/2016 11:03 AM, Alex Gouvêa Vasconcelos wrote:
Sorry guys, I'm not sure weather the group receive the answer to Mr. Burke question about logs or not...
Do you can an exception stacktrace on app or auth server?
Anyway, there's no log to share, here... the server.log file (in Keycloak cluster - 2 instances) doesn't emit any line in the process... and the Wildfly (where the app is deployed) just say:
16:10:23,145 WARN [org.keycloak.adapters.OAuthRequestAuthenticator]
​ ​
(default task-66) No state cookie

​ So, I hope someone could help me here...

Thanks. ​


---------- Forwarded message ----------
From: Alex Gouvêa Vasconcelos <alexgv99@gmail.com>
Date: 2016-01-26 17:16 GMT-02:00
Subject: Fwd: Bad Request
To: keycloak-dev@lists.jboss.org


Hi guys. I'm running into some trouble here...

I have a very simple application which should authenticate against keycloak and return to the main page. This is triggered through the web.xml in my application.

version="3.0">

<module-name>teste</module-name>

<filter>
<filter-name>CORSFilter</filter-name>
<filter-class>br.com.test.tms.teste.util.CORSFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>CORSFilter</filter-name>
<url-pattern>/rest/*</url-pattern>
</filter-mapping>

<distributable />

<security-constraint>
<web-resource-collection>
<web-resource-name>teste</web-resource-name>
<url-pattern>/rest/exemploService/secure/*</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>*</role-name>
</auth-constraint>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>

<login-config>
<auth-method>KEYCLOAK</auth-method>
<realm-name>realmtest</realm-name>
</login-config>
<security-role>
<role-name>user</role-name>
</security-role>
<security-role>
<role-name>admin</role-name>
</security-role>

</web-app>

The server side has a REST API and the client side is an angular application. Everything very simple to just try the development environment. What happens is that, after filling the login page and return to the index.html (actually it's not returning), I receive a 400 BAD REQUEST for the uri: 


It seems to me, that the malformed URI is because of the ?code=... If I reload the page with the same URL, it just return the same 400... if I remove the ? portion, it reloads the page and again redirects to and from the keycloak server, and recovers the ? portion, repeating the same 400. 

I'm running everything in the same application under wildfly 10. Both the server and client sides in the same deployed WAR.

I'd appreciate any help.

Best regards.

Alex Gouvea Vasconcelos







Imagem inline 1












_______________________________________________
keycloak-dev mailing list
keycloak-dev@lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-dev

-- 
Bill Burke
JBoss, a division of Red Hat
http://bill.burkecentral.com

_______________________________________________
keycloak-dev mailing list
keycloak-dev@lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-dev