We are running Keycloak 3.4.3.Final.
It seems that opening reset password link in a different browser than the
browser it was created in results in a 400 Bad request
with the message 'Login requester not enabled’, and renders the user unable
to reset credentials.
This is an issue, especially for users on mobile that often uses sandboxed
Are anyone else seeing this?
Is this a known issue?
Good Day everyone,
well this is kind of a tricky problem, but maybe someone can help me.
I got two server-instances:
The fist instance is kind of a testing-stage and is secured by the
keycloak-oidc-filter, where the keycloak-server is accessd with the help of
The other one is kind of production and is secured by the
keycloak-oidc-filter, where the keycloak-server is accessed by a bought
Both of them work with the certificates. No Problem, but... when I wanna
reload some propertes and touch the production-war file per commandline. I
get following error:
So I need to restart the Production-Server to get this thing working again.
It seems to me that the KeycloakOIDC-Filter can't connect to my
HTTPS-Keycloak-Instance, the filter seems to go into an instable state, when
the touch occurs and the restart resets everything.
The strange thing is that my test-server with the self-signed-certs doesn't
have the same problem.
regards && tia
Sent from: http://keycloak-user.88327.x6.nabble.com/
I’m evaluating Keycloak as IAM for one open source project , so far, I’ve tested it successfully on a minikube (local) Kubernetes cluster and I want to run it in on a real cluster.
The real cluster (created by Gardener ) is running on AWS and the access to the Keycloak is exposed through an Ingress controller .
We’ve also installed “cert-manager” for automated certificates management of Let’s Encrypt issued certificates.
So far so good, but when I try to login to the “Admin Console” I get the following error:
“We're sorry... HTTPS required”
In the logs of the pod, there is the following warning:
“WARN [org.keycloak.events] (default task-12) type=LOGIN_ERROR, realmId=master, clientId=null, userId=null, ipAddress=100.96.0.6, error=ssl_required”
As far as I understand, the Let’s Encrypt certificated is trusted by the browsers and it appears to be trusted by the OpenJDK also .
Then what should be done in order to access the Admin Console?
Last but not least, we are using jboss/keycloak:latest image (I know that we should be using some stable version like 4.0.0, but it appears that the issue is not related to the image version).
 ProMART: https://github.com/promart-io | https://www.promart.io/
 Gardener: https://github.com/gardener
 Keycloak: https://kkk.ingress.promart.promart.shoot.canary.k8s-hana.ondemand.com
 DST Root CA X3: https://bugs.openjdk.java.net/browse/JDK-8154757