[keycloak-dev] (no subject)

Stian Thorgersen stian at redhat.com
Fri Mar 6 00:51:04 EST 2015


Looks like there's a miss-match between the realms keys. Have you updated the keycloak.json with the correct realm public key?

----- Original Message -----
> From: "Juan Escot" <juan.escot at cdtec.es>
> To: keycloak-dev at lists.jboss.org
> Sent: Thursday, 5 March, 2015 8:04:53 PM
> Subject: [keycloak-dev] (no subject)
> 
> Hi,
> 
> I just updated my jboss eap 6.3 server to keycloak 1.10 final. When i try to
> make a call to a Rest service authenticated with keycloak, i get this
> exception:
> 
> "ERROR [org.keycloak.adapters.BearerTokenRequestAuthenticator]
> (http-/0.0.0.0:8080-1) Failed to verify token:
> org.keycloak.VerificationException: Invalid token signature."
> 
> I'm trying preconfigured demo project to test my server and, when I run
> 'angular product example' I take this error too when it calls a rest service
> on "database service" demo project.
> I have configured my realm, added the projects and updated keycloak.json file
> for each project.
> 
> I have revised all keycloak configuration and seems to be ok. The full stack
> trace for the exception is this:
> ERROR [org.keycloak.adapters.BearerTokenRequestAuthenticator]
> (http-/0.0.0.0:8080-1) Failed to verify token:
> org.keycloak.VerificationException: Invalid token signature.
> at org.keycloak.RSATokenVerifier.verifyToken(RSATokenVerifier.java:26)
> [keycloak-core-1.1.0.Final.jar:1.1.0.Final]
> at org.keycloak.RSATokenVerifier.verifyToken(RSATokenVerifier.java:16)
> [keycloak-core-1.1.0.Final.jar:1.1.0.Final]
> at
> org.keycloak.adapters.BearerTokenRequestAuthenticator.authenticateToken(BearerTokenRequestAuthenticator.java:67)
> [keycloak-adapter-core-1.1.0.Final.jar:1.1.0.Final]
> at
> org.keycloak.adapters.BearerTokenRequestAuthenticator.authenticate(BearerTokenRequestAuthenticator.java:62)
> [keycloak-adapter-core-1.1.0.Final.jar:1.1.0.Final]
> at
> org.keycloak.adapters.RequestAuthenticator.authenticate(RequestAuthenticator.java:45)
> [keycloak-adapter-core-1.1.0.Final.jar:1.1.0.Final]
> at
> org.keycloak.adapters.tomcat.AbstractKeycloakAuthenticatorValve.authenticateInternal(AbstractKeycloakAuthenticatorValve.java:192)
> [keycloak-tomcat-core-adapter-1.1.0.Final.jar:1.1.0.Final]
> at
> org.keycloak.adapters.jbossweb.KeycloakAuthenticatorValve.authenticate(KeycloakAuthenticatorValve.java:26)
> [keycloak-as7-adapter-1.1.0.Final.jar:1.1.0.Final]
> at
> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:478)
> [jbossweb-7.4.8.Final-redhat-4.jar:7.4.8.Final-redhat-4]
> at
> org.keycloak.adapters.tomcat.AbstractKeycloakAuthenticatorValve.invoke(AbstractKeycloakAuthenticatorValve.java:173)
> [keycloak-tomcat-core-adapter-1.1.0.Final.jar:1.1.0.Final]
> at
> org.jboss.as.web.security.SecurityContextAssociationValve.invoke(SecurityContextAssociationValve.java:169)
> [jboss-as-web-7.4.0.Final-redhat-19.jar:7.4.0.Final-redhat-19]
> at
> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:145)
> [jbossweb-7.4.8.Final-redhat-4.jar:7.4.8.Final-redhat-4]
> at
> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:97)
> [jbossweb-7.4.8.Final-redhat-4.jar:7.4.8.Final-redhat-4]
> at
> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:102)
> [jbossweb-7.4.8.Final-redhat-4.jar:7.4.8.Final-redhat-4]
> at
> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:344)
> [jbossweb-7.4.8.Final-redhat-4.jar:7.4.8.Final-redhat-4]
> at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:856)
> [jbossweb-7.4.8.Final-redhat-4.jar:7.4.8.Final-redhat-4]
> at
> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:653)
> [jbossweb-7.4.8.Final-redhat-4.jar:7.4.8.Final-redhat-4]
> at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:926)
> [jbossweb-7.4.8.Final-redhat-4.jar:7.4.8.Final-redhat-4]
> at java.lang.Thread.run(Thread.java:745) [rt.jar:1.7.0_75]
> 
> What's wrong?
> 
> Thanks in advance,
> Juan Escot
> 
> 
> 
> _______________________________________________
> keycloak-dev mailing list
> keycloak-dev at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-dev


More information about the keycloak-dev mailing list