I'm not sure how you even get to that point as Keycloak needs to be aware of the real request URL for several reasons (token validation, links in emails, etc, etc.). For this end if you have a proxy in front of Keycloak there's a few steps you need to take to make sure it works properly. Take a look at http://keycloak.github.io/docs/userguide/keycloak-server/html/server-installation.html#d4e409 and http://keycloak.github.io/docs/userguide/keycloak-server/html/server-installation.html#proxy-address-forwarding

On 2 June 2016 at 13:24, Pål Oliver Kristiansen <paal.oliver@gmail.com> wrote:

Hi!

We are trying to install Keycloak on a server behind a BigIP SSL terminator. Keycloak is running within a Docker container on a different server.

But trying to open the Administration Console fails because all the links within the markup are absolute links which is resolved to
http://localhost:9555/auth/...

So both the scheme and the hostname is wrong.

Questions:

Why are these links absolute? Is there a way to configure this to be relative links?
Or, if they must be absolute, is there a way to configure the links to become correct?

From what I can gather, this is the line where the absolute link is resolved:
https://github.com/keycloak/keycloak/blob/5c98b8c6ae7052b2d906156d8fc212ccd9dfd57d/services/src/main/java/org/keycloak/services/resources/admin/AdminConsole.java#L292

Thanks!

_______________________________________________
keycloak-user mailing list
keycloak-user@lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user