Around same context, here in the pain i go through
My rest war is spring boot which i want to protect it through keycloak
spring security adapter with no luck. I can see that keycloak filter gets
in first, authenticates fine bearer, but then spring sec gets in, it
redirects internally to the root context of my rest end point and starts
the dance getting into too many redirects. This is deployed on jboss eap
7, goa all the adapters installed.
Anyone here got a scenario like mine working, or are we saying spring sec
not working under jboss eap/ undertow?
thx
Hello there, I am using AngularJS client (fronted) and Spring Boot
with
Keycloak adapter (backend). In the backend, I am trying to expose a
unprotected (naked) API for the client to use, so I would like to make
sure
that keycloak doesn't try to protect it. So I have the following questions
related to using Keycloak with Spring Boot:
1) How the Keycloak intercepts incoming HTTP requests: do incoming
requests
come the Spring Boot and at what point the Keycloak comes into the play?
Also, how can I make sure that certain Rest applications are left
unprotected? From the documentation I can see a simple way of protecting
certain URLs, but this brings me to my second question...
2) Where can I find full documentation about all the configuration
possibilities for the Spring Boot Adapter? If I'll have to dive into the
code, could some one kindly point a correct starting point and give
instructions how to learn to extract all of the configuration properties
like "security collections" etc. (see below). The traditional
"web.xml" is
quite easy the read and understand, but it isn't one-to-one mapping with
"application.properties" file content. With further info it might be
possible to use Spring Boot's code based configuration methods too.
Thanks in advance, best regards, Jari
--- The current documentation ---
You also need to specify the J2EE security config that would normally go
in
the web.xml. Hereâs an example configuration:
keycloak.securityConstraints[0].securityCollections[0].name = insecure
stuff
keycloak.securityConstraints[0].securityCollections[0].authRoles[0] =
admin
keycloak.securityConstraints[0].securityCollections[0].authRoles[0] = user
keycloak.securityConstraints[0].securityCollections[0].patterns[0] =
/insecure
keycloak.securityConstraints[0].securityCollections[1].name = admin stuff
keycloak.securityConstraints[0].securityCollections[1].authRoles[0] =
admin
keycloak.securityConstraints[0].securityCollections[1].patterns[0] =
/admin
_______________________________________________
keycloak-user mailing list
keycloak-user(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user