Hi, I have an app deployed on Keycloak, whenever I add a query parameter to any URL with the property name of “code", I get a 400 Bad Request (whether it's a static file or a servlet).

The same app on JBoss does not have the same issue. Is this a bug?

Here are two URLs to try out, both unsecure:

JBoss EAP:

http://jbosseap-test.apps.qatest.biz/v1/cloudproviders?code=100

Keycloak:

http://ec2-54-84-240-18.compute-1.amazonaws.com:8080/dsgapi/cloudproviders?code=123

Christina