1:16 p.m.
Hi guys. I'm running into some trouble here...
I have a very simple application which should authenticate against keycloak
and return to the main page. This is triggered through the web.xml in my
application.
<web-app xmlns="http://java.sun.com/xml/ns/javaee" xmlns:xsi="
http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://java.sun.com/xml/ns/javaee
http://java.sun.com/xml/ns/javaee/web-app_3_0.xsd"
version="3.0">
<module-name>teste</module-name>
<filter>
<filter-name>CORSFilter</filter-name>
<filter-class>br.com.test.tms.teste.util.CORSFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>CORSFilter</filter-name>
<url-pattern>/rest/*</url-pattern>
</filter-mapping>
<distributable />
<security-constraint>
<web-resource-collection>
<web-resource-name>teste</web-resource-name>
<url-pattern>/rest/exemploService/secure/*</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>*</role-name>
</auth-constraint>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>
<login-config>
<auth-method>KEYCLOAK</auth-method>
<realm-name>realmtest</realm-name>
</login-config>
<security-role>
<role-name>user</role-name>
</security-role>
<security-role>
<role-name>admin</role-name>
</security-role>
</web-app>
The server side has a REST API and the client side is an angular
application. Everything very simple to just try the development
environment. What happens is that, after filling the login page and return
to the index.html (actually it's not returning), I receive a 400 BAD
REQUEST for the uri:
http://localhost:8080/teste/?code=X8VlnUNxYzofJDHzkx1ZmMgO2BP0ZDJ-e2l7uB0...
It seems to me, that the malformed URI is because of the ?code=... If I
reload the page with the same URL, it just return the same 400... if I
remove the ? portion, it reloads the page and again redirects to and from
the keycloak server, and recovers the ? portion, repeating the same 400.
I'm running everything in the same application under wildfly 10. Both the
server and client sides in the same deployed WAR.
I'd appreciate any help.
Best regards.
Alex Gouvea Vasconcelos
[image: Imagem inline 1]
1:45 p.m.
Do you can an exception stacktrace on app or auth server?
On 1/26/2016 2:16 PM, Alex Gouvêa Vasconcelos wrote:
Hi guys. I'm running into some trouble here...
I have a very simple application which should authenticate against
keycloak and return to the main page. This is triggered through the
web.xml in my application.
<web-app xmlns="http://java.sun.com/xml/ns/javaee"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://java.sun.com/xml/ns/javaee
http://java.sun.com/xml/ns/javaee/web-app_3_0.xsd"
version="3.0">
<module-name>teste</module-name>
<filter>
<filter-name>CORSFilter</filter-name>
<filter-class>br.com.test.tms.teste.util.CORSFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>CORSFilter</filter-name>
<url-pattern>/rest/*</url-pattern>
</filter-mapping>
<distributable />
<security-constraint>
<web-resource-collection>
<web-resource-name>teste</web-resource-name>
<url-pattern>/rest/exemploService/secure/*</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>*</role-name>
</auth-constraint>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>
<login-config>
<auth-method>KEYCLOAK</auth-method>
<realm-name>realmtest</realm-name>
</login-config>
<security-role>
<role-name>user</role-name>
</security-role>
<security-role>
<role-name>admin</role-name>
</security-role>
</web-app>
The server side has a REST API and the client side is an angular
application. Everything very simple to just try the development
environment. What happens is that, after filling the login page and
return to the index.html (actually it's not returning), I receive a
400 BAD REQUEST for the uri:
http://localhost:8080/teste/?code=X8VlnUNxYzofJDHzkx1ZmMgO2BP0ZDJ-e2l7uB0...
It seems to me, that the malformed URI is because of the ?code=... If
I reload the page with the same URL, it just return the same 400... if
I remove the ? portion, it reloads the page and again redirects to and
from the keycloak server, and recovers the ? portion, repeating the
same 400.
I'm running everything in the same application under wildfly 10. Both
the server and client sides in the same deployed WAR.
I'd appreciate any help.
Best regards.
Alex Gouvea Vasconcelos
Imagem inline 1
_______________________________________________
keycloak-dev mailing list
keycloak-dev(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-dev
--
Bill Burke
JBoss, a division of Red Hat
http://bill.burkecentral.com
10:03 a.m.
Sorry guys, I'm not sure weather the group receive the answer to Mr. Burke
question about logs or not...
Do you can an exception stacktrace on app or auth server?
Anyway, there's no log to share, here... the server.log file (in Keycloak
cluster - 2 instances) doesn't emit any line in the process... and the
Wildfly (where the app is deployed) just say:
16:10:23,145 WARN [org.keycloak.adapters.OAuthRequestAuthenticator]
(default task-66) No state cookie
So, I hope someone could help me here...
Thanks.
---------- Forwarded message ----------
From: Alex Gouvêa Vasconcelos <alexgv99(a)gmail.com>
Date: 2016-01-26 17:16 GMT-02:00
Subject: Fwd: Bad Request
To: keycloak-dev(a)lists.jboss.org
Hi guys. I'm running into some trouble here...
I have a very simple application which should authenticate against keycloak
and return to the main page. This is triggered through the web.xml in my
application.
<web-app xmlns="http://java.sun.com/xml/ns/javaee" xmlns:xsi="
http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://java.sun.com/xml/ns/javaee
http://java.sun.com/xml/ns/javaee/web-app_3_0.xsd"
version="3.0">
<module-name>teste</module-name>
<filter>
<filter-name>CORSFilter</filter-name>
<filter-class>br.com.test.tms.teste.util.CORSFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>CORSFilter</filter-name>
<url-pattern>/rest/*</url-pattern>
</filter-mapping>
<distributable />
<security-constraint>
<web-resource-collection>
<web-resource-name>teste</web-resource-name>
<url-pattern>/rest/exemploService/secure/*</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>*</role-name>
</auth-constraint>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>
<login-config>
<auth-method>KEYCLOAK</auth-method>
<realm-name>realmtest</realm-name>
</login-config>
<security-role>
<role-name>user</role-name>
</security-role>
<security-role>
<role-name>admin</role-name>
</security-role>
</web-app>
The server side has a REST API and the client side is an angular
application. Everything very simple to just try the development
environment. What happens is that, after filling the login page and return
to the index.html (actually it's not returning), I receive a 400 BAD
REQUEST for the uri:
http://localhost:8080/teste/?code=X8VlnUNxYzofJDHzkx1ZmMgO2BP0ZDJ-e2l7uB0...
It seems to me, that the malformed URI is because of the ?code=... If I
reload the page with the same URL, it just return the same 400... if I
remove the ? portion, it reloads the page and again redirects to and from
the keycloak server, and recovers the ? portion, repeating the same 400.
I'm running everything in the same application under wildfly 10. Both the
server and client sides in the same deployed WAR.
I'd appreciate any help.
Best regards.
Alex Gouvea Vasconcelos
[image: Imagem inline 1]
10:12 a.m.
Then you probably haven't set u the roles correctly for the user that is
logging in.
On 1/28/2016 11:03 AM, Alex Gouvêa Vasconcelos wrote:
Sorry guys, I'm not sure weather the group receive the answer to
Mr.
Burke question about logs or not...
Do you can an exception stacktrace on app or auth server?
Anyway, there's no log to share, here... the server.log file (in
Keycloak cluster - 2 instances) doesn't emit any line in the
process... and the Wildfly (where the app is deployed) just say:
16:10:23,145 WARN [org.keycloak.adapters.OAuthRequestAuthenticator]
(default task-66) No state cookie
So, I hope someone could help me here...
Thanks.
---------- Forwarded message ----------
From: *Alex Gouvêa Vasconcelos* <alexgv99(a)gmail.com
<mailto:alexgv99@gmail.com>>
Date: 2016-01-26 17:16 GMT-02:00
Subject: Fwd: Bad Request
To: keycloak-dev(a)lists.jboss.org <mailto:keycloak-dev@lists.jboss.org>
Hi guys. I'm running into some trouble here...
I have a very simple application which should authenticate against
keycloak and return to the main page. This is triggered through the
web.xml in my application.
<web-app xmlns="http://java.sun.com/xml/ns/javaee"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://java.sun.com/xml/ns/javaee
http://java.sun.com/xml/ns/javaee/web-app_3_0.xsd"
version="3.0">
<module-name>teste</module-name>
<filter>
<filter-name>CORSFilter</filter-name>
<filter-class>br.com.test.tms.teste.util.CORSFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>CORSFilter</filter-name>
<url-pattern>/rest/*</url-pattern>
</filter-mapping>
<distributable />
<security-constraint>
<web-resource-collection>
<web-resource-name>teste</web-resource-name>
<url-pattern>/rest/exemploService/secure/*</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>*</role-name>
</auth-constraint>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>
<login-config>
<auth-method>KEYCLOAK</auth-method>
<realm-name>realmtest</realm-name>
</login-config>
<security-role>
<role-name>user</role-name>
</security-role>
<security-role>
<role-name>admin</role-name>
</security-role>
</web-app>
The server side has a REST API and the client side is an angular
application. Everything very simple to just try the development
environment. What happens is that, after filling the login page and
return to the index.html (actually it's not returning), I receive a
400 BAD REQUEST for the uri:
http://localhost:8080/teste/?code=X8VlnUNxYzofJDHzkx1ZmMgO2BP0ZDJ-e2l7uB0...
It seems to me, that the malformed URI is because of the ?code=... If
I reload the page with the same URL, it just return the same 400... if
I remove the ? portion, it reloads the page and again redirects to and
from the keycloak server, and recovers the ? portion, repeating the
same 400.
I'm running everything in the same application under wildfly 10. Both
the server and client sides in the same deployed WAR.
I'd appreciate any help.
Best regards.
Alex Gouvea Vasconcelos
Imagem inline 1
_______________________________________________
keycloak-dev mailing list
keycloak-dev(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-dev
--
Bill Burke
JBoss, a division of Red Hat
http://bill.burkecentral.com
6:18 a.m.
Yup... probably I configured something wrong, but I reviewed each step and
couldn't find anything that seems not ok... Is there a way I can export the
realm so you can see it?
I'm attaching some images from the keycloak admin console that maybe can
help...
[image: Imagem inline 2][image: Imagem inline 1][image: Imagem inline 3]
Thank you.
PS: Mistakenly, I had sent this same message just for Mr. Burke.
Cordialmente.
Alex Gouvêa Vasconcelos
mailto:alexgv99@gmail.com
MSN: alexgv99(a)hotmail.com
http://about.me/alexgv99
2016-01-28 14:12 GMT-02:00 Bill Burke <bburke(a)redhat.com>:
Then you probably haven't set u the roles correctly for the user
that is
logging in.
On 1/28/2016 11:03 AM, Alex Gouvêa Vasconcelos wrote:
Sorry guys, I'm not sure weather the group receive the answer to Mr. Burke
question about logs or not...
>
> Do you can an exception stacktrace on app or auth server?
Anyway, there's no log to share, here... the server.log file (in Keycloak
cluster - 2 instances) doesn't emit any line in the process... and the
Wildfly (where the app is deployed) just say:
>
> 16:10:23,145 WARN [org.keycloak.adapters.OAuthRequestAuthenticator]
>
> (default task-66) No state cookie
So, I hope someone could help me here...
Thanks.
---------- Forwarded message ----------
From: Alex Gouvêa Vasconcelos <alexgv99(a)gmail.com>
Date: 2016-01-26 17:16 GMT-02:00
Subject: Fwd: Bad Request
To: keycloak-dev(a)lists.jboss.org
Hi guys. I'm running into some trouble here...
I have a very simple application which should authenticate against
keycloak and return to the main page. This is triggered through the web.xml
in my application.
<web-app xmlns="http://java.sun.com/xml/ns/javaee" xmlns:xsi="
http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation=" <http://java.sun.com/xml/ns/javaee>
http://java.sun.com/xml/ns/javaee
http://java.sun.com/xml/ns/javaee/web-app_3_0.xsd"
version="3.0">
<module-name>teste</module-name>
<filter>
<filter-name>CORSFilter</filter-name>
<filter-class>br.com.test.tms.teste.util.CORSFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>CORSFilter</filter-name>
<url-pattern>/rest/*</url-pattern>
</filter-mapping>
<distributable />
<security-constraint>
<web-resource-collection>
<web-resource-name>teste</web-resource-name>
<url-pattern>/rest/exemploService/secure/*</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>*</role-name>
</auth-constraint>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>
<login-config>
<auth-method>KEYCLOAK</auth-method>
<realm-name>realmtest</realm-name>
</login-config>
<security-role>
<role-name>user</role-name>
</security-role>
<security-role>
<role-name>admin</role-name>
</security-role>
</web-app>
The server side has a REST API and the client side is an angular
application. Everything very simple to just try the development
environment. What happens is that, after filling the login page and return
to the index.html (actually it's not returning), I receive a 400 BAD
REQUEST for the uri:
<http://localhost:8080/teste/?code=X8VlnUNxYzofJDHzkx1ZmMgO2BP0ZDJ-e2l7uB0...
http://localhost:8080/teste/?code=X8VlnUNxYzofJDHzkx1ZmMgO2BP0ZDJ-e2l7uB0...
It seems to me, that the malformed URI is because of the ?code=... If I
reload the page with the same URL, it just return the same 400... if I
remove the ? portion, it reloads the page and again redirects to and from
the keycloak server, and recovers the ? portion, repeating the same 400.
I'm running everything in the same application under wildfly 10. Both the
server and client sides in the same deployed WAR.
I'd appreciate any help.
Best regards.
Alex Gouvea Vasconcelos
[image: Imagem inline 1]
_______________________________________________
keycloak-dev mailing
listkeycloak-dev@lists.jboss.orghttps://lists.jboss.org/mailman/listinfo/keycloak-dev
--
Bill Burke
JBoss, a division of Red Hathttp://bill.burkecentral.com
_______________________________________________
keycloak-dev mailing list
keycloak-dev(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-dev
5:12 a.m.
Do you have a JSON file configured? See:
https://github.com/keycloak/keycloak/blob/master/examples/demo-template/a...
?
What about your realm configuration file, looks like this
https://github.com/keycloak/keycloak/blob/master/examples/demo-template/t...
?
Not sure if it helps, but at first glance it looks like some
misconfiguration.
On Thu, Jan 28, 2016 at 2:03 PM, Alex Gouvêa Vasconcelos <alexgv99(a)gmail.com
wrote:
Sorry guys, I'm not sure weather the group receive the answer to
Mr. Burke
question about logs or not...
>
> Do you can an exception stacktrace on app or auth server?
Anyway, there's no log to share, here... the server.log file (in Keycloak
cluster - 2 instances) doesn't emit any line in the process... and the
Wildfly (where the app is deployed) just say:
>
> 16:10:23,145 WARN [org.keycloak.adapters.OAuthRequestAuthenticator]
>
> (default task-66) No state cookie
So, I hope someone could help me here...
Thanks.
---------- Forwarded message ----------
From: Alex Gouvêa Vasconcelos <alexgv99(a)gmail.com>
Date: 2016-01-26 17:16 GMT-02:00
Subject: Fwd: Bad Request
To: keycloak-dev(a)lists.jboss.org
Hi guys. I'm running into some trouble here...
I have a very simple application which should authenticate against
keycloak and return to the main page. This is triggered through the web.xml
in my application.
<web-app xmlns="http://java.sun.com/xml/ns/javaee" xmlns:xsi="
http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://java.sun.com/xml/ns/javaee
http://java.sun.com/xml/ns/javaee/web-app_3_0.xsd"
version="3.0">
<module-name>teste</module-name>
<filter>
<filter-name>CORSFilter</filter-name>
<filter-class>br.com.test.tms.teste.util.CORSFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>CORSFilter</filter-name>
<url-pattern>/rest/*</url-pattern>
</filter-mapping>
<distributable />
<security-constraint>
<web-resource-collection>
<web-resource-name>teste</web-resource-name>
<url-pattern>/rest/exemploService/secure/*</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>*</role-name>
</auth-constraint>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>
<login-config>
<auth-method>KEYCLOAK</auth-method>
<realm-name>realmtest</realm-name>
</login-config>
<security-role>
<role-name>user</role-name>
</security-role>
<security-role>
<role-name>admin</role-name>
</security-role>
</web-app>
The server side has a REST API and the client side is an angular
application. Everything very simple to just try the development
environment. What happens is that, after filling the login page and return
to the index.html (actually it's not returning), I receive a 400 BAD
REQUEST for the uri:
http://localhost:8080/teste/?code=X8VlnUNxYzofJDHzkx1ZmMgO2BP0ZDJ-e2l7uB0...
It seems to me, that the malformed URI is because of the ?code=... If I
reload the page with the same URL, it just return the same 400... if I
remove the ? portion, it reloads the page and again redirects to and from
the keycloak server, and recovers the ? portion, repeating the same 400.
I'm running everything in the same application under wildfly 10. Both the
server and client sides in the same deployed WAR.
I'd appreciate any help.
Best regards.
Alex Gouvea Vasconcelos
[image: Imagem inline 1]
_______________________________________________
keycloak-dev mailing list
keycloak-dev(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-dev
--
- abstractj
8:10 p.m.
Hi Bruno, thank you for the interest in help me...
My problem is exact the same as described here:
https://issues.jboss.org/browse/KEYCLOAK-1701
Except that my keycloak version is 1.6.1, not 1.3.1 as in the issue 1701.
In the comments area, of that issue,
Stian Thorgersen
<https://issues.jboss.org/secure/ViewProfile.jspa?name=stianst> added a
comment - 27/Jul/15 3:01 AM: This is caused by in-proper configuration.
Please use user mailing list for support questions.
________________________________
So, I'm trying my luck here.
I have an app angular using keycloak.js and a java app, rest api, under
protect of the same realm/client. Everything completely straightforward.
I do have a json file, downloaded from keycloak console admin, both in the
java app (WEB-INF Folder) and angular app, for the
new Keycloak("PATH_TO_keycloak.json_FILE");
javascript snippet of code.
Is this what you mean?
Cordialmente.
Alex Gouvêa Vasconcelos
mailto:alexgv99@gmail.com
MSN: alexgv99(a)hotmail.com
http://about.me/alexgv99
2016-02-03 9:12 GMT-02:00 Bruno Oliveira <bruno(a)abstractj.org>:
Do you have a JSON file configured? See:
https://github.com/keycloak/keycloak/blob/master/examples/demo-template/a...
?
What about your realm configuration file, looks like this
https://github.com/keycloak/keycloak/blob/master/examples/demo-template/t...
?
Not sure if it helps, but at first glance it looks like some
misconfiguration.
On Thu, Jan 28, 2016 at 2:03 PM, Alex Gouvêa Vasconcelos <
alexgv99(a)gmail.com> wrote:
> Sorry guys, I'm not sure weather the group receive the answer to Mr.
> Burke question about logs or not...
>
>>
>> Do you can an exception stacktrace on app or auth server?
>
> Anyway, there's no log to share, here... the server.log file (in Keycloak
> cluster - 2 instances) doesn't emit any line in the process... and the
> Wildfly (where the app is deployed) just say:
>
>>
>> 16:10:23,145 WARN [org.keycloak.adapters.OAuthRequestAuthenticator]
>>
>> (default task-66) No state cookie
>
>
> So, I hope someone could help me here...
>
> Thanks.
>
>
> ---------- Forwarded message ----------
> From: Alex Gouvêa Vasconcelos <alexgv99(a)gmail.com>
> Date: 2016-01-26 17:16 GMT-02:00
> Subject: Fwd: Bad Request
> To: keycloak-dev(a)lists.jboss.org
>
>
> Hi guys. I'm running into some trouble here...
>
> I have a very simple application which should authenticate against
> keycloak and return to the main page. This is triggered through the web.xml
> in my application.
>
> <web-app xmlns="http://java.sun.com/xml/ns/javaee" xmlns:xsi="
> http://www.w3.org/2001/XMLSchema-instance"
> xsi:schemaLocation="http://java.sun.com/xml/ns/javaee
> http://java.sun.com/xml/ns/javaee/web-app_3_0.xsd"
> version="3.0">
>
> <module-name>teste</module-name>
>
> <filter>
> <filter-name>CORSFilter</filter-name>
> <filter-class>br.com.test.tms.teste.util.CORSFilter</filter-class>
> </filter>
> <filter-mapping>
> <filter-name>CORSFilter</filter-name>
> <url-pattern>/rest/*</url-pattern>
> </filter-mapping>
>
> <distributable />
>
> <security-constraint>
> <web-resource-collection>
> <web-resource-name>teste</web-resource-name>
> <url-pattern>/rest/exemploService/secure/*</url-pattern>
> </web-resource-collection>
> <auth-constraint>
> <role-name>*</role-name>
> </auth-constraint>
> <user-data-constraint>
> <transport-guarantee>CONFIDENTIAL</transport-guarantee>
> </user-data-constraint>
> </security-constraint>
>
> <login-config>
> <auth-method>KEYCLOAK</auth-method>
> <realm-name>realmtest</realm-name>
> </login-config>
> <security-role>
> <role-name>user</role-name>
> </security-role>
> <security-role>
> <role-name>admin</role-name>
> </security-role>
>
> </web-app>
>
>
> The server side has a REST API and the client side is an angular
> application. Everything very simple to just try the development
> environment. What happens is that, after filling the login page and return
> to the index.html (actually it's not returning), I receive a 400 BAD
> REQUEST for the uri:
>
>
>
http://localhost:8080/teste/?code=X8VlnUNxYzofJDHzkx1ZmMgO2BP0ZDJ-e2l7uB0...
>
>
> It seems to me, that the malformed URI is because of the ?code=... If I
> reload the page with the same URL, it just return the same 400... if I
> remove the ? portion, it reloads the page and again redirects to and from
> the keycloak server, and recovers the ? portion, repeating the same 400.
>
> I'm running everything in the same application under wildfly 10. Both the
> server and client sides in the same deployed WAR.
>
> I'd appreciate any help.
>
> Best regards.
>
> Alex Gouvea Vasconcelos
>
>
>
>
>
>
>
> [image: Imagem inline 1]
>
>
>
>
>
>
>
>
>
>
>
> _______________________________________________
> keycloak-dev mailing list
> keycloak-dev(a)lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-dev
>
--
- abstractj
3232
days inactive
3257
days old
6 comments
3 participants
participants (3)
-
Alex Gouvêa Vasconcelos -
Bill Burke -
Bruno Oliveira