[keycloak-user] Token audience doesn't match domain

Dean Peterson peterson.dean at gmail.com
Wed May 4 00:57:50 EDT 2016


Yes, you'll find some more posts from me below.  Buried in one of them is
that I did figure this out.  I did have to use the extra filter.
On May 3, 2016 11:34 PM, "Stian Thorgersen" <sthorger at redhat.com> wrote:

> Follow the steps in:
>
> http://keycloak.github.io/docs/userguide/keycloak-server/html/server-installation.html#d4e409
>
> On 2 May 2016 at 04:56, Dean Peterson <peterson.dean at gmail.com> wrote:
>
>> I use openshift to apply a wildcard certificat to my routes to keycloak.
>> I can add https that way.  However, even though I can apply https to the
>> route and hard code https into keycloak.json files for the auth-server-url,
>> I get the Token audience doesn't match domain errors because some auto
>> generated url by keycloak thinks everything is http.  I really don't want
>> to have to go through the work of setting up a keystore and everything else
>> within wildfly when I really don't need it since my route in openshift
>> handles the https part.  Is there a way around this?
>>
>> _______________________________________________
>> keycloak-user mailing list
>> keycloak-user at lists.jboss.org
>> https://lists.jboss.org/mailman/listinfo/keycloak-user
>>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20160503/bc83c5dd/attachment.html 


More information about the keycloak-user mailing list