Thank you,
I wish the docs were clearer, but you helped me solved the problem!
/Hristo Stoyanov
Keycloak server overlay installation only contains Keycloak server support, and accompanying keycloak-standalone.xml only contains server configuration.
What you need to secure your web app in the same container is Keycloak adapter download for WF9 to get the necessary adapter modules (that's the 'client' part that talks to the server).
Then you also need to add:
<extension module="org.keycloak.keycloak-adapter-subsystem"/>
and
<subsystem xmlns="urn:jboss:domain:keycloak:1.1"/>
to standalone.xml
On Sep 26, 2015 8:58 AM, "Hristo Stoyanov" <hr.stoyanov@peruncs.com> wrote:Hi allI am getting the below message with KeyCloak 1.5.0/WF9.0.1 overlay installation. My configuration file looks exactly the same as the stock one, e.g:<extensions>...<extension module="org.keycloak.keycloak-server-subsystem"/>...</extensions>...<profile>...<subsystem xmlns="urn:jboss:domain:keycloak-server:1.1"><web-context>auth</web-context></subsystem></profile>The module jars are properly put in the WF foldersMy web.xml also seems right too:=========================================<web-app xmlns="http://xmlns.jcp.org/xml/ns/javaee"xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"xsi:schemaLocation="http://xmlns.jcp.org/xml/ns/javaee http://xmlns.jcp.org/xml/ns/javaee/web-app_3_1.xsd"version="3.1"><!-- Default page to serve --><welcome-file-list><welcome-file>index.jsp</welcome-file></welcome-file-list><!-- This error page rule responds with the GWT Host page for pushstate Errai Navigation URLs --><error-page><error-code>404</error-code><location>/</location></error-page><!-- Erray Keycloak security --><filter><filter-name>ErraiLoginRedirectFilter</filter-name><init-param><param-name>redirectLocation</param-name><param-value>/index_draft.jsp</param-value></init-param></filter><!-- JAX-RS configuration--><servlet-mapping><servlet-name>javax.ws.rs.core.Application</servlet-name><url-pattern>/rest/*</url-pattern></servlet-mapping><filter-mapping><filter-name>ErraiUserCookieFilter</filter-name><url-pattern>/index_draft.jsp</url-pattern></filter-mapping><filter-mapping><filter-name>ErraiLoginRedirectFilter</filter-name><url-pattern>/app-login</url-pattern></filter-mapping><security-constraint><web-resource-collection><web-resource-name>Login</web-resource-name><url-pattern>/app-login</url-pattern></web-resource-collection><auth-constraint><role-name>*</role-name></auth-constraint></security-constraint><login-config><auth-method>KEYCLOAK</auth-method><realm-name>whatever</realm-name></login-config><security-role><role-name>user</role-name></security-role><security-role><role-name>admin</role-name></security-role></web-app>I can access the KC admin console and configure realms/users/roles no problem in the WF 9.0.1 server. I am out of ideas of what could be causing it. Any hints? Thanks=============================11:47:54,444 ERROR [org.jboss.msc.service.fail] (ServerService Thread Pool -- 78) MSC000001: Failed to start service jboss.undertow.deployment.default-server.default-host./draft: org.jboss.msc.service.StartException in service jboss.undertow.deployment.default-server.default-host./draft: java.lang.RuntimeException: java.lang.RuntimeException: UT010039: Unknown authentication mechanism KEYCLOAKat org.wildfly.extension.undertow.deployment.UndertowDeploymentService$1.run(UndertowDeploymentService.java:85)at java.util.concurrent.Executors$RunnableAdapter.call(Unknown Source)at java.util.concurrent.FutureTask.run(Unknown Source)at java.util.concurrent.ThreadPoolExecutor.runWorker(Unknown Source)at java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown Source)at java.lang.Thread.run(Unknown Source)at org.jboss.threads.JBossThread.run(JBossThread.java:320)Caused by: java.lang.RuntimeException: java.lang.RuntimeException: UT010039: Unknown authentication mechanism KEYCLOAKat io.undertow.servlet.core.DeploymentManagerImpl.deploy(DeploymentManagerImpl.java:224)at org.wildfly.extension.undertow.deployment.UndertowDeploymentService.startContext(UndertowDeploymentService.java:100)at org.wildfly.extension.undertow.deployment.UndertowDeploymentService$1.run(UndertowDeploymentService.java:82)... 6 moreCaused by: java.lang.RuntimeException: UT010039: Unknown authentication mechanism KEYCLOAKat io.undertow.servlet.core.DeploymentManagerImpl.setupSecurityHandlers(DeploymentManagerImpl.java:326)at io.undertow.servlet.core.DeploymentManagerImpl.deploy(DeploymentManagerImpl.java:200)... 8 more11:47:54,471 ERROR [org.jboss.as.controller.management-operation] (management-handler-thread - 2) WFLYCTL0013: Operation ("deploy") failed - address: ([("deployment" => "draft.war")]) - failure description: {"WFLYCTL0080: Failed services" => {"jboss.undertow.deployment.default-server.default-host./draft" => "org.jboss.msc.service.StartException in service jboss.undertow.deployment.default-server.default-host./draft: java.lang.RuntimeException: java.lang.RuntimeException: UT010039: Unknown authentication mechanism KEYCLOAKCaused by: java.lang.RuntimeException: java.lang.RuntimeException: UT010039: Unknown authentication mechanism KEYCLOAKCaused by: java.lang.RuntimeException: UT010039: Unknown authentication mechanism KEYCLOAK"}}11:47:54,478 ERROR [org.jboss.as.server] (management-handler-thread - 2) WFLYSRV0021: Deploy of deployment "draft.war" was rolled back with the following failure message:{"WFLYCTL0080: Failed services" => {"jboss.undertow.deployment.default-server.default-host./draft" => "org.jboss.msc.service.StartException in service jboss.undertow.deployment.default-server.default-host./draft: java.lang.RuntimeException: java.lang.RuntimeException: UT010039: Unknown authentication mechanism KEYCLOAKCaused by: java.lang.RuntimeException: java.lang.RuntimeException: UT010039: Unknown authentication mechanism KEYCLOAKCaused by: java.lang.RuntimeException: UT010039: Unknown authentication mechanism KEYCLOAK"}}11:47:54,488 INFO [org.jboss.as.jpa] (ServerService Thread Pool -- 79) WFLYJPA0011: Stopping Persistence Unit (phase 2 of 2) Service 'draft.war#s4g'
_______________________________________________
keycloak-user mailing list
keycloak-user@lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user