1:38 p.m.
Version: 3.4.3
Hello everybody,
I am trying to use keycloak in my application. My structure is apache em front and one
server with my application e other server for keycloak
There is ssl in Apache.
When I open my application it is call the login page in keycloak, but when I put
login/password and click in log in button My browse is directed to the local address, the
same address that is configured in httpconf section virtual host
ProxyPass "/auth/" "http://localhost:8180/auth/
<http://localhost:8180/auth/>"
ProxyPassReverse "/auth/" "http://localhost:8180/auth
<http://localhost:8180/auth>/“
Anyone have idea about this problem? Maybe is configuration apache, maybe not.
6:56 a.m.
Hi!
You're almost there. You need to add a small thing to the configuration of your
Keycloak instance as described in the documentation. Look at the "X-Forwarded-For
HTTP Config" snippet. Assumingly you're missing: "
proxy-address-forwarding="true" " in your HTTP listener.
[1]
https://www.keycloak.org/docs/3.4/server_installation/index.html#identify...
-----Original Message-----
From: keycloak-user-bounces(a)lists.jboss.org <keycloak-user-bounces(a)lists.jboss.org>
On Behalf Of Haikal Rios
Sent: Tuesday, May 29, 2018 8:39 PM
To: keycloak-user(a)lists.jboss.org
Subject: [keycloak-user] Keycloak with apache in front
Version: 3.4.3
Hello everybody,
I am trying to use keycloak in my application. My structure is apache em front and one
server with my application e other server for keycloak
There is ssl in Apache.
When I open my application it is call the login page in keycloak, but when I put
login/password and click in log in button My browse is directed to the local address, the
same address that is configured in httpconf section virtual host
ProxyPass "/auth/" "http://localhost:8180/auth/
<http://localhost:8180/auth/>"
ProxyPassReverse "/auth/" "http://localhost:8180/auth
<http://localhost:8180/auth>/“
Anyone have idea about this problem? Maybe is configuration apache, maybe not.
_______________________________________________
keycloak-user mailing list
keycloak-user(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user
11:44 p.m.
Hello,
I can’t do work it.
Maybe you don't know what I mean. I will try explained better.
I am using apache in front by proxy mode. The request arrive in apache after this it send
for server responsible for request.
My application is running in a server and keycloak in other but both use apache.
When I open application its work. My app send request for keycloak that show the
authentication page, so good. But when a press login button the URL send the page is
server local, the same server in http.conf see below.
ProxyPass "/auth/" "http://localhost:8180/auth/
<http://localhost:8180/auth/>"
ProxyPassReverse "/auth/" "http://localhost:8180/auth
<http://localhost:8180/auth>/“\
Maybe this problem is in apache configuration, maybe not, anybody have opinion about whats
happing ?\
Haikal Rios
On May 29, 2018, at 2:38 PM, Haikal Rios <haikalrios(a)gmail.com>
wrote:
Version: 3.4.3
Hello everybody,
I am trying to use keycloak in my application. My structure is apache em front and one
server with my application e other server for keycloak
There is ssl in Apache.
When I open my application it is call the login page in keycloak, but when I put
login/password and click in log in button My browse is directed to the local address, the
same address that is configured in httpconf section virtual host
ProxyPass "/auth/" "http://localhost:8180/auth/
<http://localhost:8180/auth/>"
ProxyPassReverse "/auth/" "http://localhost:8180/auth
<http://localhost:8180/auth>/“
Anyone have idea about this problem? Maybe is configuration apache, maybe not.
3:21 a.m.
This apache2 vhost.conf (under debian 8) works for us:
<VirtualHost *:443>
ServerAdmin webmaster(a)company.com
ServerName keycloak.company.com
DocumentRoot /var/www/html
RewriteEngine On
RewriteCond %{REQUEST_URI} ^/$
RewriteRule ^/.*$ https://id.company.com/auth/realms/domain/account
ProxyPreserveHost On
ProxyVia Off
ProxyRequests Off
ProxyPass / "http://localhost:8080/"
ProxyPassReverse / "http://localhost:8080/"
RequestHeader set X-Forwarded-Proto "https"
RequestHeader set X-Forwarded-Port "443"
<Proxy *>
Order deny,allow
Allow from all
</Proxy>
# Available loglevels: trace8, ..., trace1, debug, info, notice, warn,
# error, crit, alert, emerg.
# It is also possible to configure the loglevel for particular
# modules, e.g.
LogLevel debug ssl:warn
ErrorLog ${APACHE_LOG_DIR}/keycloak-error.log
CustomLog ${APACHE_LOG_DIR}/keycloak-access.log combined
# SSL Engine Switch:
# Enable/Disable SSL for this virtual host.
SSLEngine on
SSLCertificateFile /etc/ssl/apache2/cert.pem
SSLCertificateKeyFile /etc/ssl/apache2/cert.key
SSLCertificateChainFile /etc/ssl/apache2/fullchain.pem
</VirtualHost>
Perhaps it will help you.
MJ
2414
days inactive
2416
days old
3 comments
3 participants
participants (3)
-
Haikal Rios -
Kevin Berendsen -
mj