Hi,

 

We set up a realm to use in conjunction with a JBoss login module – the BearerTokenLoginModule available here:

https://github.com/keycloak/keycloak/blob/master/integration/adapter-core/src/main/java/org/keycloak/adapters/jaas/BearerTokenLoginModule.java

 

Our application in question is a standalone Java app that invokes EJBs remotely on our JBoss server.  The JBoss EJB remoting subsystem is secured by the BearerTokenLoginModule.

 

This configuration worked well for us for several months, but last week we started to see issues.  Our client app could no longer authenticate against the JBoss server.  We generated a new realm public key (Settings -> Keys -> Generate new keys) and the issue was resolved.  Unfortunately, we were fire-fighting at the time and can’t provide you with much more information than that.

 

Anyway, my (hopefully easy) question is: do the realm keys expire after a certain period? 

 

Thanks,

Jamie Beznoski