The messages that I see in the command-line are these.
If I comment
registration.addInitParameter("keycloak.config.file",
"D:/OpenIDM/keycloak.json");
I see
15:13:03,404 WARN [org.keycloak.events] (default task-48) type=LOGIN_ERROR, rea
lmId=master, clientId=null, userId=null, ipAddress=127.0.0.1, error=invalid_code
If I don't comment that line I see this. I am assuming in this case the filter is
validating but don't know what this means.
13:37:34,896 WARN [org.keycloak.events] (default task-38) type=REFRESH_TOKEN_ER
ROR, realmId=master, clientId=Pearson, userId=f145fdaf-4c98-468f-bdd8-2a37e1e35b
b8, ipAddress=127.0.0.1, error=invalid_token, grant_type=refresh_token, refresh_
token_type=Refresh, refresh_token_id=48565291-f694-4961-8bc5-8f36910de464, clien
t_auth_method=client-secret
Thanks,
Mohan
From: Radhakrishnan, Mohan (Cognizant)
Sent: Friday, July 29, 2016 1:56 PM
To: 'keycloak-user(a)lists.jboss.org' <keycloak-user(a)lists.jboss.org>
Subject: Implicit flow test
Hi,
I am using keycloak-2.0.0.Final standalone server and I have enabled 'Implicit'
http://localhost:8080/auth/realms/Pearson/protocol/openid-connect/auth?re...
The URL shown above shows me the login page and redirects after obtaining the id_token and
I get the proper output in the b rowser.
http://localhost:8000/keycloak/greeting/#id_token=eyJhbGciOiJSUzI1NiJ9.ey...
My filter configuration is this.
@Bean
public FilterRegistrationBean someFilterRegistration() {
FilterRegistrationBean registration = new FilterRegistrationBean();
registration.setFilter(keycloakOIDCFilter());
registration.addUrlPatterns("/keycloak/*");
registration.addInitParameter("keycloak.config.file",
"D:/OpenIDM/keycloak.json");
registration.setName("keycloakOIDCFilter");
registration.setOrder(1);
return registration;
}
Is the id_token getting validated by the filter ? How do I know that it is ? Have I
misunderstood the validation ? Logging for the filter or keycloak should be enabled. How
?
Thanks,
Mohan
This e-mail and any files transmitted with it are for the sole use of the intended
recipient(s) and may contain confidential and privileged information. If you are not the
intended recipient(s), please reply to the sender and destroy all copies of the original
message. Any unauthorized review, use, disclosure, dissemination, forwarding, printing or
copying of this email, and/or any action taken in reliance on the contents of this e-mail
is strictly prohibited and may be unlawful. Where permitted by applicable law, this e-mail
and other e-mail communications sent to and from Cognizant e-mail addresses may be
monitored.