RPMs
by Clifton Lee
Hi, I was wondering if there were any plans to release Keycloak as an rpm?
*******************************************************************************
The views, opinions, and judgments expressed in this message are solely those of the author. The message contents have not been reviewed or approved by the UFT Welfare Fund.
*******************************************************************************
9 years, 7 months
Opening Transactions
by Rodrigo Sasaki
Hello,
I have created some custom endpoints for my project, and in one of them I
need to use multiple transactions on a single request. I ran into some
issues, even though I call
session.getTransaction().begin()
It didn't work correctly saying that I didn't have an opened transaction. I
look a little deeper and saw that there are 2 lists of transactions inside
org.keycloak.services.DefaultKeycloakTransactionManager.
One is called *transactions* and the other is *afterCompletion*
when commit() is called, both lists are traversed committing every single
transaction in them, but when begin() is called, only the *transactions*
list is traversed, and the one I needed was inside *afterCompletion*, which
remained closed.
Is this supposed to be this way? I'm not sure what these lists do, but
maybe the other one should be opened too.
Is there a problem on opening the transactions on *afterCompletion* list as
well?
Thanks!
--
Rodrigo Sasaki
9 years, 7 months
Missing logo-example theme causes failure on 1.0.1.Final
by Patrick V. Madden
Hi,
I had keycloak-appliance-dist-all-1.0-final on a Debian VM. Haven't done much to it yet so decided to upgrade to 1.0.1.Final
I did a full install. Redid my SSL, datasource, driver changes to standalone.xml etc to support http + mysql. I did not modify my database at all. It is a mysql instance running on a remote server.
I got the following error which caused browser to show "server error":
22:56:05,063 ERROR [io.undertow.request] (default task-3) UT005023: Exception handling request to /auth/realms/master/tokens/login: java.lang.RuntimeException: request path: /auth/realms/master/tokens/login
at org.keycloak.services.filters.KeycloakSessionServletFilter.doFilter(KeycloakSessionServletFilter.java:54) [keycloak-services-1.0.1.Final.jar:]
at io.undertow.servlet.core.ManagedFilter.doFilter(ManagedFilter.java:60) [undertow-servlet-1.0.15.Final.jar:1.0.15.Final]
at io.undertow.servlet.handlers.FilterHandler$FilterChainImpl.doFilter(FilterHandler.java:132) [undertow-servlet-1.0.15.Final.jar:1.0.15.Final]
at io.undertow.servlet.handlers.FilterHandler.handleRequest(FilterHandler.java:85) [undertow-servlet-1.0.15.Final.jar:1.0.15.Final]
at io.undertow.servlet.handlers.security.ServletSecurityRoleHandler.handleRequest(ServletSecurityRoleHandler.java:61) [undertow-servlet-1.0.15.Final.jar:1.0.15.Final]
at io.undertow.servlet.handlers.ServletDispatchingHandler.handleRequest(ServletDispatchingHandler.java:36) [undertow-servlet-1.0.15.Final.jar:1.0.15.Final]
at org.wildfly.extension.undertow.security.SecurityContextAssociationHandler.handleRequest(SecurityContextAssociationHandler.java:78)
at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:25) [undertow-core-1.0.15.Final.jar:1.0.15.Final]
at io.undertow.servlet.handlers.security.SSLInformationAssociationHandler.handleRequest(SSLInformationAssociationHandler.java:113) [undertow-servlet-1.0.15.Final.jar:1.0.15.Final]
at io.undertow.servlet.handlers.security.ServletAuthenticationCallHandler.handleRequest(ServletAuthenticationCallHandler.java:56) [undertow-servlet-1.0.15.Final.jar:1.0.15.Final]
at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:25) [undertow-core-1.0.15.Final.jar:1.0.15.Final]
at io.undertow.security.handlers.AuthenticationConstraintHandler.handleRequest(AuthenticationConstraintHandler.java:51) [undertow-core-1.0.15.Final.jar:1.0.15.Final]
at io.undertow.security.handlers.AbstractConfidentialityHandler.handleRequest(AbstractConfidentialityHandler.java:45) [undertow-core-1.0.15.Final.jar:1.0.15.Final]
at io.undertow.servlet.handlers.security.ServletConfidentialityConstraintHandler.handleRequest(ServletConfidentialityConstraintHandler.java:61) [undertow-servlet-1.0.15.Final.jar:1.0.15.Final]
at io.undertow.servlet.handlers.security.ServletSecurityConstraintHandler.handleRequest(ServletSecurityConstraintHandler.java:56) [undertow-servlet-1.0.15.Final.jar:1.0.15.Final]
at io.undertow.security.handlers.AuthenticationMechanismsHandler.handleRequest(AuthenticationMechanismsHandler.java:58) [undertow-core-1.0.15.Final.jar:1.0.15.Final]
at io.undertow.servlet.handlers.security.CachedAuthenticatedSessionHandler.handleRequest(CachedAuthenticatedSessionHandler.java:70) [undertow-servlet-1.0.15.Final.jar:1.0.15.Final]
at io.undertow.security.handlers.SecurityInitialHandler.handleRequest(SecurityInitialHandler.java:76) [undertow-core-1.0.15.Final.jar:1.0.15.Final]
at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:25) [undertow-core-1.0.15.Final.jar:1.0.15.Final]
at org.wildfly.extension.undertow.security.jacc.JACCContextIdHandler.handleRequest(JACCContextIdHandler.java:61)
at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:25) [undertow-core-1.0.15.Final.jar:1.0.15.Final]
at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:25) [undertow-core-1.0.15.Final.jar:1.0.15.Final]
at io.undertow.servlet.handlers.ServletInitialHandler.handleFirstRequest(ServletInitialHandler.java:240) [undertow-servlet-1.0.15.Final.jar:1.0.15.Final]
at io.undertow.servlet.handlers.ServletInitialHandler.dispatchRequest(ServletInitialHandler.java:227) [undertow-servlet-1.0.15.Final.jar:1.0.15.Final]
at io.undertow.servlet.handlers.ServletInitialHandler.access$000(ServletInitialHandler.java:73) [undertow-servlet-1.0.15.Final.jar:1.0.15.Final]
at io.undertow.servlet.handlers.ServletInitialHandler$1.handleRequest(ServletInitialHandler.java:146) [undertow-servlet-1.0.15.Final.jar:1.0.15.Final]
at io.undertow.server.Connectors.executeRootHandler(Connectors.java:177) [undertow-core-1.0.15.Final.jar:1.0.15.Final]
at io.undertow.server.HttpServerExchange$1.run(HttpServerExchange.java:727) [undertow-core-1.0.15.Final.jar:1.0.15.Final]
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145) [rt.jar:1.7.0_51]
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) [rt.jar:1.7.0_51]
at java.lang.Thread.run(Thread.java:744) [rt.jar:1.7.0_51]
Caused by: org.jboss.resteasy.spi.UnhandledException: java.lang.RuntimeException: login theme 'logo-example' not found
at org.jboss.resteasy.core.ExceptionHandler.handleApplicationException(ExceptionHandler.java:76) [resteasy-jaxrs-3.0.8.Final.jar:]
at org.jboss.resteasy.core.ExceptionHandler.handleException(ExceptionHandler.java:212) [resteasy-jaxrs-3.0.8.Final.jar:]
at org.jboss.resteasy.core.SynchronousDispatcher.writeException(SynchronousDispatcher.java:149) [resteasy-jaxrs-3.0.8.Final.jar:]
at org.jboss.resteasy.core.SynchronousDispatcher.invoke(SynchronousDispatcher.java:372) [resteasy-jaxrs-3.0.8.Final.jar:]
at org.jboss.resteasy.core.SynchronousDispatcher.invoke(SynchronousDispatcher.java:179) [resteasy-jaxrs-3.0.8.Final.jar:]
at org.jboss.resteasy.plugins.server.servlet.ServletContainerDispatcher.service(ServletContainerDispatcher.java:220) [resteasy-jaxrs-3.0.8.Final.jar:]
at org.jboss.resteasy.plugins.server.servlet.HttpServletDispatcher.service(HttpServletDispatcher.java:56) [resteasy-jaxrs-3.0.8.Final.jar:]
at org.jboss.resteasy.plugins.server.servlet.HttpServletDispatcher.service(HttpServletDispatcher.java:51) [resteasy-jaxrs-3.0.8.Final.jar:]
at javax.servlet.http.HttpServlet.service(HttpServlet.java:790) [jboss-servlet-api_3.1_spec-1.0.0.Final.jar:1.0.0.Final]
at io.undertow.servlet.handlers.ServletHandler.handleRequest(ServletHandler.java:85) [undertow-servlet-1.0.15.Final.jar:1.0.15.Final]
at io.undertow.servlet.handlers.FilterHandler$FilterChainImpl.doFilter(FilterHandler.java:130) [undertow-servlet-1.0.15.Final.jar:1.0.15.Final]
at org.keycloak.services.filters.ClientConnectionFilter.doFilter(ClientConnectionFilter.java:41) [keycloak-services-1.0.1.Final.jar:]
at io.undertow.servlet.core.ManagedFilter.doFilter(ManagedFilter.java:60) [undertow-servlet-1.0.15.Final.jar:1.0.15.Final]
at io.undertow.servlet.handlers.FilterHandler$FilterChainImpl.doFilter(FilterHandler.java:132) [undertow-servlet-1.0.15.Final.jar:1.0.15.Final]
at org.keycloak.services.filters.KeycloakSessionServletFilter.doFilter(KeycloakSessionServletFilter.java:40) [keycloak-services-1.0.1.Final.jar:]
... 30 more
Caused by: java.lang.RuntimeException: login theme 'logo-example' not found
at org.keycloak.freemarker.ExtendingThemeManager.findTheme(ExtendingThemeManager.java:151) [keycloak-forms-common-freemarker-1.0.1.Final.jar:]
at org.keycloak.freemarker.ExtendingThemeManager.loadTheme(ExtendingThemeManager.java:91) [keycloak-forms-common-freemarker-1.0.1.Final.jar:]
at org.keycloak.freemarker.ExtendingThemeManager.getTheme(ExtendingThemeManager.java:79) [keycloak-forms-common-freemarker-1.0.1.Final.jar:]
at org.keycloak.login.freemarker.FreeMarkerLoginFormsProvider.createResponse(FreeMarkerLoginFormsProvider.java:158) [keycloak-login-freemarker-1.0.1.Final.jar:]
at org.keycloak.login.freemarker.FreeMarkerLoginFormsProvider.createLogin(FreeMarkerLoginFormsProvider.java:230) [keycloak-login-freemarker-1.0.1.Final.jar:]
at org.keycloak.services.resources.TokenService.loginPage(TokenService.java:987) [keycloak-services-1.0.1.Final.jar:]
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [rt.jar:1.7.0_51]
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) [rt.jar:1.7.0_51]
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) [rt.jar:1.7.0_51]
at java.lang.reflect.Method.invoke(Method.java:606) [rt.jar:1.7.0_51]
at org.jboss.resteasy.core.MethodInjectorImpl.invoke(MethodInjectorImpl.java:137) [resteasy-jaxrs-3.0.8.Final.jar:]
at org.jboss.resteasy.core.ResourceMethodInvoker.invokeOnTarget(ResourceMethodInvoker.java:296) [resteasy-jaxrs-3.0.8.Final.jar:]
at org.jboss.resteasy.core.ResourceMethodInvoker.invoke(ResourceMethodInvoker.java:250) [resteasy-jaxrs-3.0.8.Final.jar:]
at org.jboss.resteasy.core.ResourceLocatorInvoker.invokeOnTargetObject(ResourceLocatorInvoker.java:140) [resteasy-jaxrs-3.0.8.Final.jar:]
at org.jboss.resteasy.core.ResourceLocatorInvoker.invoke(ResourceLocatorInvoker.java:103) [resteasy-jaxrs-3.0.8.Final.jar:]
at org.jboss.resteasy.core.SynchronousDispatcher.invoke(SynchronousDispatcher.java:356) [resteasy-jaxrs-3.0.8.Final.jar:]
... 41 more
Using MySQLWorkBench I modified my two realms LOGIN_THEME column to instead be "keycloak". Applied my changes and restarted wildfly service. All was well again!
A small note, on my 1.0.final install, I had changed the logo image on the logo-example theme for login to use my companies logo. I fully intend to implement my own but this was just for demonstration purposes to management.
However, should a missing theme really cause such a catastrophic failure? Or should it drop to keycloak by default? In hindsight, I realize I could have just copied it in from previous install. Just thought you might like to know about it.
Again, love the work you all have done.
9 years, 7 months
Building K
by Jérôme BATON - DRiMS
Hi,
As I'm facing an issue with creating a user via Java API, I wanted to modify a unit test before to file a bug.
I'm trying to build K on my desktop but all modules refer to a parent pom in upper folder (the root of K). The pom is missing.
So, could you kindly point me to a way to build K.
Sorry if its more of a Maven question but I think that something is missing there.
Thank you
9 years, 7 months
Re: [keycloak-user] Keycloak integration with Tomcat
by Kamal Jagadevan
Hello Bill,
As our application is running in Tomcat,I would like to run the adapter/client in Tomcat.
Thanks
Kamal
You need to run the server on tomcat? Or the adapter/client?
On 9/18/2014 12:02 PM, Kamal Jagadevan wrote:
>Hello Keycloak dev team, >Congratulations to you guys with your 1.0 final release and glad to >see lot of great features & fixes made to this release. >All these while I was trying Keycloak with Jboss but now I have a >requirement to use keycloak with Tomcat. From the Reference guide it was >mentioned it is just maven pom work. Looking for some directions from >you guys to make Tomcat integration possible. >>Please advise. >>Best >Kamal >>>>>>_______________________________________________ >keycloak-user mailing list >keycloak-user at lists.jboss.org >https://lists.jboss.org/mailman/listinfo/keycloak-user > --
Bill Burke
JBoss, a division of Red Hat Bill the Plumber
Bill the Plumber
Software plumbing using middleware wrenches
View on bill.burkecentral.com Preview by Yahoo
9 years, 7 months
Authentication Provider
by Rodrigo Sasaki
Hello,
I was asked again to look into the AuthenticationProvider and I noticed
that it doesn't exist anymore, is that correct?
Is there a new way now to implement a custom authenticator?
--
Rodrigo Sasaki
9 years, 7 months
Keycloak integration with Tomcat
by Kamal Jagadevan
Hello Keycloak dev team,
Congratulations to you guys with your 1.0 final release and glad to see lot of great features & fixes made to this release.
All these while I was trying Keycloak with Jboss but now I have a requirement to use keycloak with Tomcat. From the Reference guide it was mentioned it is just maven pom work. Looking for some directions from you guys to make Tomcat integration possible.
Please advise.
Best
Kamal
9 years, 7 months
Send parameter back after registration
by Rodrigo Sasaki
Hello,
I was wondering if there is a way for me to send a parameter back to my
server after a new user registers in Keycloak.
For example, we have a checkbox that the user can check if he wants to
receive newsletter from our website, and I wanted to send that value back
to us.
I tried setting it as a query parameter on the redirect_uri param, it gets
sent on the request, but it isn't posted back to us.
Is there a defined way to accomplish this?
Thank you again!
--
Rodrigo Sasaki
9 years, 7 months
SSO Session Max Lifespan Secret Maximum Value
by Alarik Myrin
I was playing with the SSO Session Max Lifespan, and noticed that if I set
it to a very large value, like 10000 Days, that I could no longer log in to
the realm, but the admin console did not validate the input in any way, so
I don't know what the secret maximum value is. 1000 Days seems to be OK.
10000 Days is not.
Should I book something in Jira for this?
9 years, 7 months
