9 a.m.
Hello,
I am currently trying to integrate Celoxis into our SSO provided by keycloak. Celoxis is
configured to send SAML requests to our keycloak server. However, after initiating the
SAML exchange I get the following error:
* The web UI shows "Unknown login requester"
* In keycloak CLI, I can see the following "client_not_found" error:
15:53:03,293 DEBUG [io.undertow.request] (default I/O-2) Matched prefix path /auth for
path /auth/realms/Demo/protocol/saml
15:53:03,294 DEBUG [io.undertow.request.security] (default task-2) Attempting to
authenticate /auth/realms/Demo/protocol/saml, authentication required: false
15:53:03,294 DEBUG [io.undertow.request.security] (default task-2) Authentication outcome
was NOT_ATTEMPTED with method
io.undertow.security.impl.CachedAuthenticatedSessionMechanism@6c2221a0 for
/auth/realms/Demo/protocol/saml
15:53:03,294 DEBUG [io.undertow.request.security] (default task-2) Authentication result
was ATTEMPTED for /auth/realms/Demo/protocol/saml
15:53:03,294 DEBUG [org.keycloak.transaction.JtaTransactionWrapper] (default task-2) new
JtaTransactionWrapper
15:53:03,294 DEBUG [org.keycloak.transaction.JtaTransactionWrapper] (default task-2) was
existing? false
15:53:03,295 DEBUG [org.jboss.resteasy.resteasy_jaxrs.i18n] (default task-2)
RESTEASY002315: PathInfo: /realms/Demo/protocol/saml
15:53:03,295 DEBUG [org.keycloak.protocol.saml.SamlService] (default task-2) SAML GET
15:53:03,295 DEBUG [org.keycloak.saml.SAMLRequestParser] (default task-2) SAML Redirect
Binding
15:53:03,295 DEBUG [org.keycloak.saml.SAMLRequestParser] (default task-2)
<samlp:AuthnRequest xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"
xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
ID="ONELOGIN_c4606c22-dc34-44a9-86c0-b157a90c8691" Version="2.0"
IssueInstant="2019-04-08T13:53:03Z"
Destination="https://sso.netguardians.ch:64020/auth/realms/Demo/protocol/saml"
ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
AssertionConsumerServiceURL="https://app.celoxis.com/psa/person.Logi...
Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified"
AllowCreate="true" /></samlp:AuthnRequest>
15:53:03,296 DEBUG
[org.hibernate.resource.transaction.backend.jta.internal.JtaTransactionCoordinatorImpl]
(default task-2) Hibernate RegisteredSynchronization successfully registered with JTA
platform
15:53:03,296 DEBUG [org.hibernate.SQL] (default task-2)
select
cliententi0_.ID as col_0_0_
from
CLIENT cliententi0_
where
cliententi0_.CLIENT_ID=?
and cliententi0_.REALM_ID=?
15:53:03,297 DEBUG [org.hibernate.resource.jdbc.internal.LogicalConnectionManagedImpl]
(default task-2) Initiating JDBC connection release from afterStatement
15:53:03,297 WARN [org.keycloak.events] (default task-2) type=LOGIN_ERROR, realmId=Demo,
clientId=celoxis.com, userId=null, ipAddress=10.7.4.12, error=client_not_found
It seems that both the client ID and the realm ID are not found by keycloak.
I wonder if any of you has experienced this issue before
Thank you in advance
Kevin
[https://cdn.netguardians.ch/images/banner_new_web.jpg]<https://www.net...
![https://cdn.netguardians.ch/images/banner_new_web.jpg]<https://www.net...](https://cdn.netguardians.ch/images/banner_new_web.jpg]%3Chttps://www.netguardians.ch/%3E){kind=link}
9:27 a.m.
Hi,
The realm is found (Demo) but no the client, are you sure you have a client
configured and named "celoxis.com" in your "Demo" realm ?
On Mon, Apr 8, 2019 at 4:08 PM Kevin Perez Moreno <moreno(a)netguardians.ch>
wrote:
Hello,
I am currently trying to integrate Celoxis into our SSO provided by
keycloak. Celoxis is configured to send SAML requests to our keycloak
server. However, after initiating the SAML exchange I get the following
error:
* The web UI shows "Unknown login requester"
* In keycloak CLI, I can see the following "client_not_found" error:
15:53:03,293 DEBUG [io.undertow.request] (default I/O-2) Matched prefix
path /auth for path /auth/realms/Demo/protocol/saml
15:53:03,294 DEBUG [io.undertow.request.security] (default task-2)
Attempting to authenticate /auth/realms/Demo/protocol/saml, authentication
required: false
15:53:03,294 DEBUG [io.undertow.request.security] (default task-2)
Authentication outcome was NOT_ATTEMPTED with method
io.undertow.security.impl.CachedAuthenticatedSessionMechanism@6c2221a0
for /auth/realms/Demo/protocol/saml
15:53:03,294 DEBUG [io.undertow.request.security] (default task-2)
Authentication result was ATTEMPTED for /auth/realms/Demo/protocol/saml
15:53:03,294 DEBUG [org.keycloak.transaction.JtaTransactionWrapper]
(default task-2) new JtaTransactionWrapper
15:53:03,294 DEBUG [org.keycloak.transaction.JtaTransactionWrapper]
(default task-2) was existing? false
15:53:03,295 DEBUG [org.jboss.resteasy.resteasy_jaxrs.i18n] (default
task-2) RESTEASY002315: PathInfo: /realms/Demo/protocol/saml
15:53:03,295 DEBUG [org.keycloak.protocol.saml.SamlService] (default
task-2) SAML GET
15:53:03,295 DEBUG [org.keycloak.saml.SAMLRequestParser] (default task-2)
SAML Redirect Binding
15:53:03,295 DEBUG [org.keycloak.saml.SAMLRequestParser] (default task-2)
<samlp:AuthnRequest xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"
xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
ID="ONELOGIN_c4606c22-dc34-44a9-86c0-b157a90c8691" Version="2.0"
IssueInstant="2019-04-08T13:53:03Z" Destination="
https://sso.netguardians.ch:64020/auth/realms/Demo/protocol/saml"
ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
AssertionConsumerServiceURL="
https://app.celoxis.com/psa/person.Login.do?code=netguardians
"><saml:Issuer>celoxis.com</saml:Issuer><samlp:NameIDPolicy
Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified"
AllowCreate="true" /></samlp:AuthnRequest>
15:53:03,296 DEBUG
[org.hibernate.resource.transaction.backend.jta.internal.JtaTransactionCoordinatorImpl]
(default task-2) Hibernate RegisteredSynchronization successfully
registered with JTA platform
15:53:03,296 DEBUG [org.hibernate.SQL] (default task-2)
select
cliententi0_.ID as col_0_0_
from
CLIENT cliententi0_
where
cliententi0_.CLIENT_ID=?
and cliententi0_.REALM_ID=?
15:53:03,297 DEBUG
[org.hibernate.resource.jdbc.internal.LogicalConnectionManagedImpl]
(default task-2) Initiating JDBC connection release from afterStatement
15:53:03,297 WARN [org.keycloak.events] (default task-2)
type=LOGIN_ERROR, realmId=Demo, clientId=celoxis.com, userId=null,
ipAddress=10.7.4.12, error=client_not_found
It seems that both the client ID and the realm ID are not found by
keycloak.
I wonder if any of you has experienced this issue before
Thank you in advance
Kevin
[https://cdn.netguardians.ch/images/banner_new_web.jpg]<
https://www.netguardians.ch/>
_______________________________________________
keycloak-user mailing list
keycloak-user(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user
![https://cdn.netguardians.ch/images/banner_new_web.jpg]<](https://cdn.netguardians.ch/images/banner_new_web.jpg]%3C){kind=link}
2114
days inactive
2114
days old
1 comments
2 participants
participants (2)
-
Kevin Perez Moreno -
Sebastien Blanc