[keycloak-user] SAML Setup

Marque Davis Marque.Davis at PremiseHealth.com
Wed Jun 1 11:08:48 EDT 2016


Hi,

I’m working on moving SAML auth in one app into Keycloak. Since we have many clients hitting our existing API, we don’t want to change the external API. Instead we need to proxy through to Keycloak. I have a SAML test harness that generates the SAML doc and redirects to KC, but I constantly get a staleCodeError int he logs and the following error on the page it redirects to.

WE'RE SORRY ...
This page is no longer valid, please go back to your application and login again

I’ve setup an Identity Provider named “saml” and pointed my test app to the Redirect URI (http://192.168.99.100:10080/auth/realms/demo/broker/saml/endpoint). Config screenshot attached (if it isn’t stripped from email)

Am I doing something wrong, or is this just not a use case Keycloak is designed for?


[cid:7826F03C-D253-46FA-904F-ADC09DFAA111]
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20160601/7f4f1674/attachment-0001.html 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 7826F03C-D253-46FA-904F-ADC09DFAA111.png
Type: image/png
Size: 108967 bytes
Desc: 7826F03C-D253-46FA-904F-ADC09DFAA111.png
Url : http://lists.jboss.org/pipermail/keycloak-user/attachments/20160601/7f4f1674/attachment-0001.png 


More information about the keycloak-user mailing list