Re: [keycloak-user] keycloak configuration

Thursday, 17 March 2016

Hi,

In jenkins, I'm pasting the JSON configuration that it can found inside
"Installation" tab.

Instead of using keycloak client plugins, can I use a generic oauth plugin
in my apps? How can I configure my keycloak for this?
i.e. Instead of using google's oauth URL use my own pointing to keycloak.

On Wed, Mar 16, 2016 at 1:29 PM, Marko Strukelj <mstrukel(a)redhat.com&gt; wrote:

...
 In your jenkins realm - under Clients do you have a client called
'ci'?
 That's the client_id used in your request.

 AFAIK nothing changed in this part of the code since 1.8.1.
 On Mar 16, 2016 12:04 PM, "Pavlos Kleanthous" <parsectix(a)gmail.com&gt;
wrote:

> yes I can.
>
> Please note that this is a problem of version 1.9.1.
> I have tried now version 1.8.1 and it redirect me to keycloak.
>
> p.s. I'm using the official containers from docker hub.
>
> On Wed, Mar 16, 2016 at 10:56 AM, Marko Strukelj <mstrukel(a)redhat.com&gt;
> wrote:
>
>> Are you able to login into admin console at:
>> http://192.168.99.100:32786/auth
>>
>> And you see the realm called 'jenkins' there?
>> On Mar 16, 2016 11:32 AM, "Pavlos Kleanthous"
<parsectix(a)gmail.com&gt;
>> wrote:
>>
>>> Hi guys adding to this. Please see the HTTP requests and responses.
>>>
>>>
>>>    1. Request URL:
>>>       http://192.168.99.100:32769/securityRealm/commenceLogin?from=%2F
>>>       2. Request Method:
>>>       GET
>>>       3. Status Code:
>>>       302 Found
>>>       4. Remote Address:
>>>       192.168.99.100:32769
>>>       1. Response Headersview source
>>>       1. Content-Length:
>>>       0
>>>       2. Location:
>>>
>>>      
http://192.168.99.100:32786/auth/realms/jenkins/protocol/openid-connect/l...
>>>       3. Server:
>>>       Jetty(winstone-2.9)
>>>       4. X-Content-Type-Options:
>>>       nosniff
>>>
>>>
>>>
>>>    1. Request URL:
>>>
>>>      
http://192.168.99.100:32786/auth/realms/jenkins/protocol/openid-connect/l...
>>>       2. Request Method:
>>>       GET
>>>       3. Status Code:
>>>       *404 Not Found*
>>>       4. Remote Address:
>>>       192.168.99.100:32786
>>>       1. Response Headersview source
>>>       1. Connection:
>>>       keep-alive
>>>       2. Content-Length:
>>>       0
>>>       3. Date:
>>>       Wed, 16 Mar 2016 10:30:40 GMT
>>>       4. Server:
>>>       WildFly/10
>>>       5. X-Powered-By:
>>>       Undertow/1
>>>       2. Request Headersview source
>>>       1. Accept:
>>>
>>>      
text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
>>>       2. Accept-Encoding:
>>>       gzip, deflate, sdch
>>>       3. Accept-Language:
>>>       en-US,en;q=0.8,el;q=0.6
>>>       4. Connection:
>>>       keep-alive
>>>       5. Cookie:
>>>       KEYCLOAK_STATE_CHECKER=VJrM9jv37wPkh_NmI101cofXzDzfVqK-MNEmt9V5Hic;
>>>      
KC_RESTART=eyJhbGciOiJIUzI1NiJ9.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.QAucuHQLj_-5s3dgnFaxDenigQ9FnaP6DEyOvd8v2Yo;
>>>      
KEYCLOAK_IDENTITY=eyJhbGciOiJSUzI1NiJ9.eyJqdGkiOiJmYjc3NDc0NS1jNDA4LTQ5ODctYjE2My03NWFiNTc1YmYzYTMiLCJleHAiOjE0NTgxNTczNDcsIm5iZiI6MCwiaWF0IjoxNDU4MTIxMzQ3LCJpc3MiOiJodHRwOi8vMTkyLjE2OC45OS4xMDA6MzI3ODYvYXV0aC9yZWFsbXMvamVua2lucyIsInN1YiI6ImM1ZWU4OGQ2LTE1Y2MtNDMwOS1hMjdjLTBmYjAwMmI2NDA2YiIsInNlc3Npb25fc3RhdGUiOiJkMDkxYzNkMi04YzQ0LTQyMTEtYWEyNi1lM2Y3ZmRhY2I1YWUiLCJyZXNvdXJjZV9hY2Nlc3MiOnt9fQ.a2A3wZ6-VSAErHebIuV1maEEHYknzB7eiiogT03Ab6t_d95bj8FDNl5YrDrS6hoJqgJXQrGYdp5xurb8zcEQIUCnwxFs1Kh62UtMytYyyaDyJEfQeJf8o2QSZdyAs_OZHDtPeY8qVbVvJkttQ_umsiQMPUmi9ADKeLE-nqq5T9fuo29WMEf9SFiEwJJE4ya3-Ut8NPa5iG-TbxSmDrDRGJXNrCuN2stOuYNHXwWRVd7DckZS0ZOB-ReQQM9NBMw-gDjaEv_0_2oG-whv1dQKpGlrQObNL9sNqvV_PgIEUgRGB6sn2U1zFnwao-bwxYIYXbXqiIaiLC9ObnqYCuYVtg;
>>>      
KEYCLOAK_SESSION=jenkins/c5ee88d6-15cc-4309-a27c-0fb002b6406b/d091c3d2-8c44-4211-aa26-e3f7fdacb5ae;
>>>       JSESSIONID.96a98541=1a8t1iio7w9ol14h8gslmkjvr4;
screenResolution=1920x1080
>>>       6. DNT:
>>>       1
>>>       7. Host:
>>>       192.168.99.100:32786
>>>       8. Referer:
>>>       http://192.168.99.100:32769/
>>>       9. Save-Data:
>>>       on
>>>       10. Upgrade-Insecure-Requests:
>>>       1
>>>
>>>
>>> On Tue, Mar 15, 2016 at 4:26 PM, Pavlos Kleanthous <parsectix(a)gmail.com
>>> > wrote:
>>>
>>>> Thanks for pointing this out. I think it does not matter as the same
>>>> name can be found in "Installation" tab where
>>>> I copied the configuration.
>>>>
>>>> On Tue, Mar 15, 2016 at 4:21 PM, Marko Strukelj
<mstrukel(a)redhat.com&gt;
>>>> wrote:
>>>>
>>>>> Looks like you mistyped your client id: 'jenknis'.
>>>>> On Mar 15, 2016 5:19 PM, "Pavlos Kleanthous"
<parsectix(a)gmail.com&gt;
>>>>> wrote:
>>>>>
>>>>>> Hello,
>>>>>>
>>>>>>
>>>>>> I'm trying to configure keycloak for first time. My setup has
2
>>>>>> containers keycloak and jenkins.
>>>>>> Following the example how to integrate those two, I created a
realm
>>>>>> and a client called "jenkins".
>>>>>>
>>>>>> It seams that the realm configuration it's not correct as I
get the
>>>>>> following debug error.
>>>>>> "15:47:55,791 ERROR
[org.jboss.resteasy.resteasy_jaxrs.i18n]
>>>>>> (default task-12) RESTEASY002010: Failed to execute:
>>>>>> javax.ws.rs.NotFoundException: RESTEASY003210: Could not find
resource for
>>>>>> full path:
>>>>>>
http://192.168.99.100:32786/auth/realms/ci/protocol/openid-connect/login?...
>>>>>> "
>>>>>>
>>>>>> I noticed that  "
>>>>>>
http://192.168.99.100:32786/auth/realms/ci/protocol/openid-connect"
>>>>>> does not work generally. The URL ending with
"/auth/realms/ci/account" it
>>>>>> works.
>>>>>>
>>>>>> if I access the URL: http://192.168.99.100:32786/auth/realms/ci
>>>>>>
>>>>>>
{"realm":"ci","public_key":"MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj0IQoyEf8wt4ZkD0Jf6t8ppM4MVtiR+QJkaWctQvYRPeg9HGBHLDcsnQnpQ+zZ6Rl5sn5CArqcEygpALpglUiiGdSuH8X0VwfATpWB/0KBwylPJ7CJObDiKoBD7ZMjR67IRa9e8ySdbbCb/Ehapk9SkDfAU7dgHscEkVMuHWUilSpGrqUPPMX9dl6rpIZGX/87DxuHGi4e3d9RYrvKS6wliZF+Pvar5A48OmmklTIpPoPr4NXyQx7a1gsk3VjHLtK2NBLcbMVY+juJTCxa2reukl0eMGVITYFyQgQrXtCyDh18M3TTyFQsS3H2+dLcUdob8r1f973HHXaOUDiD7TrwIDAQAB","token-service":"http://192.168.99.100:32786/auth/realms/ci/protocol/openid-connect","account-service":"http://192.168.99.100:32786/auth/realms/ci/account","admin-api":"http://192.168.99.100:32786/auth/admin","tokens-not-before":0}
>>>>>>
>>>>>> Can you help how to find the problem ?
>>>>>>
>>>>>> p.s. is there any other way to find help on those matters? Tried
IRC
>>>>>> but nobody is replying there...
>>>>>>
>>>>>> Thank you
>>>>>>
>>>>>> _______________________________________________
>>>>>> keycloak-user mailing list
>>>>>> keycloak-user(a)lists.jboss.org
>>>>>> https://lists.jboss.org/mailman/listinfo/keycloak-user
>>>>>>
>>>>>
>>>>
>>>
> 

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

Re: [keycloak-user] keycloak configuration