Re: [keycloak-user] help with bearer + basic auth
On 07/14/2015 10:49 AM, Juraci Paixão Kröhling wrote:
On 07/14/2015 05:32 PM, John Casey wrote:
> ...but it doesn't seem to have a javascript UI or anything using bearer
> tokens to verify that it works that way.
Not sure I understood your question, but removing the "bearer-only" and
adding "enable-basic-auth" should be enough to have your server adapter
to accept both bearer tokens and basic auth.
This is exactly what I'm trying to do. I've tried removing "bearer-only"
and replaced it with "enable-basic-auth"...which has two effects:
- basic auth via curl works (it didn't before the change)
- the UI (using javascript adapter + bearer token) gets 400 Bad Request
Are you using the javascript adapter to login for your UI, passing the
bearer token to the server? I guess what I'm asking is if your
application actually uses both methods (basic auth and bearer token)?
I'm not sure how to filter my realm json to pare out the unnecessary
stuff, but here's a gist containing the full file (it's on a test docker
container, so no worries about security):
https://gist.github.com/jdcasey/3f934fcd4967b99ebb05
--
John Casey
---
GitHub: https://github.com/jdcasey/
Twitter: http://twitter.com/buildchimp