[keycloak-dev] Fwd: Bad Request
Bill Burke
bburke at redhat.com
Thu Jan 28 11:12:58 EST 2016
Then you probably haven't set u the roles correctly for the user that is
logging in.
On 1/28/2016 11:03 AM, Alex Gouvêa Vasconcelos wrote:
> Sorry guys, I'm not sure weather the group receive the answer to Mr.
> Burke question about logs or not...
>
>
> Do you can an exception stacktrace on app or auth server?
>
> Anyway, there's no log to share, here... the server.log file (in
> Keycloak cluster - 2 instances) doesn't emit any line in the
> process... and the Wildfly (where the app is deployed) just say:
>
>
> 16:10:23,145 WARN [org.keycloak.adapters.OAuthRequestAuthenticator]
>
> (default task-66) No state cookie
>
>
> So, I hope someone could help me here...
>
> Thanks.
>
>
> ---------- Forwarded message ----------
> From: *Alex Gouvêa Vasconcelos* <alexgv99 at gmail.com
> <mailto:alexgv99 at gmail.com>>
> Date: 2016-01-26 17:16 GMT-02:00
> Subject: Fwd: Bad Request
> To: keycloak-dev at lists.jboss.org <mailto:keycloak-dev at lists.jboss.org>
>
>
> Hi guys. I'm running into some trouble here...
>
> I have a very simple application which should authenticate against
> keycloak and return to the main page. This is triggered through the
> web.xml in my application.
>
> <web-app xmlns="http://java.sun.com/xml/ns/javaee"
> xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
> xsi:schemaLocation="http://java.sun.com/xml/ns/javaee
> http://java.sun.com/xml/ns/javaee/web-app_3_0.xsd"
> version="3.0">
>
> <module-name>teste</module-name>
>
> <filter>
> <filter-name>CORSFilter</filter-name>
> <filter-class>br.com.test.tms.teste.util.CORSFilter</filter-class>
> </filter>
> <filter-mapping>
> <filter-name>CORSFilter</filter-name>
> <url-pattern>/rest/*</url-pattern>
> </filter-mapping>
>
> <distributable />
>
> <security-constraint>
> <web-resource-collection>
> <web-resource-name>teste</web-resource-name>
> <url-pattern>/rest/exemploService/secure/*</url-pattern>
> </web-resource-collection>
> <auth-constraint>
> <role-name>*</role-name>
> </auth-constraint>
> <user-data-constraint>
> <transport-guarantee>CONFIDENTIAL</transport-guarantee>
> </user-data-constraint>
> </security-constraint>
>
> <login-config>
> <auth-method>KEYCLOAK</auth-method>
> <realm-name>realmtest</realm-name>
> </login-config>
> <security-role>
> <role-name>user</role-name>
> </security-role>
> <security-role>
> <role-name>admin</role-name>
> </security-role>
>
> </web-app>
>
>
> The server side has a REST API and the client side is an angular
> application. Everything very simple to just try the development
> environment. What happens is that, after filling the login page and
> return to the index.html (actually it's not returning), I receive a
> 400 BAD REQUEST for the uri:
>
> http://localhost:8080/teste/?code=X8VlnUNxYzofJDHzkx1ZmMgO2BP0ZDJ-e2l7uB091Dk.bd5edab3-359b-4616-a403-34fffb427af9&state=67b87fd5-7cc0-4415-9b8b-fc16675229a1
>
>
> It seems to me, that the malformed URI is because of the ?code=... If
> I reload the page with the same URL, it just return the same 400... if
> I remove the ? portion, it reloads the page and again redirects to and
> from the keycloak server, and recovers the ? portion, repeating the
> same 400.
>
> I'm running everything in the same application under wildfly 10. Both
> the server and client sides in the same deployed WAR.
>
> I'd appreciate any help.
>
> Best regards.
>
> Alex Gouvea Vasconcelos
>
>
>
>
>
>
>
> Imagem inline 1
>
>
>
>
>
>
>
>
>
>
>
>
> _______________________________________________
> keycloak-dev mailing list
> keycloak-dev at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-dev
--
Bill Burke
JBoss, a division of Red Hat
http://bill.burkecentral.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-dev/attachments/20160128/46f7aa86/attachment-0001.html
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: image/png
Size: 248184 bytes
Desc: not available
Url : http://lists.jboss.org/pipermail/keycloak-dev/attachments/20160128/46f7aa86/attachment-0001.png
More information about the keycloak-dev
mailing list