[keycloak-user] Keycloak 1.9.4 custom authenticator reference
Tech @ PSYND
tech at psynd.net
Thu May 19 02:01:14 EDT 2016
Hello Stian,
About the Java error appearing, I saw that keycloak is keeping still
some "no existing" dependencies, I had to re-deploy part of the code,
complete some workflows and after removing again the code, everything
was working.
What I'm worried about is I re-deployed again the authenticator in a
brand new keycloak, and the fact that I'm unable to change the order of
the flows using the arrows is surprising me.
I think today that this could be a bug of the product, I cannot find any
other explaination in this case.
May I send you the code to let you verify yourself what is happening?
I've the feeling that keycloak is writing the wrong order of execution
of flows in the database, but I'm not able to debug it.
Thanks!
On 2016-05-19 07:09, Stian Thorgersen wrote:
> On 12 May 2016 at 16:29, Tech @ PSYND <tech at psynd.net> wrote:
>
>> Dear experts,
>>
>> I'm working with keycloak 1.9.4.
>>
>> We ran some customization with the Authenticators: we implemented a
>> couple of authenticators in sequence, like provide an OTP token,
>> provide
>> an additional information etc.
>>
>> We are facing several issues:
>> 1) we create our custom Flow from the Authentication interface
>> 2) we add our 4 form (Add Execution)
>> 3) from the Flows Module we select the order in which they should
>> be
>> selected
>> 4) we define in the binding sour flow as Browser Flow
>> 5) we register and enable our executions from the Required Actions
>> module.
>>
>> About point 3): even if we change the order of the flows using the
>> priorities arrows, the forms doesn't show up in order.
>>
>> We tried to delete and to re-create, but we don't understand if we
>> should do something else to impose the order we need.
>
> The arrows should change the order
>
>> After creation, we decided to remove each single "Execution" and
>> then
>> remove the flow.
>>
>> We set again the "Browser Flow" to the standard "Browser", we
>> removed
>> the created jars from the provider/ directory, but every time that
>> we
>> try to authenticate we get an error saying that there is still an
>> existing reference to the old deployment, although the provider/
>> directory is currently empty.
>>
>> 16:00:40,199 ERROR [io.undertow.request] (default task-4) UT005023:
>> Exception handling request to
>> /auth/realms/etatvs/login-actions/required-action:
>> org.jboss.resteasy.spi.UnhandledException:
>> java.lang.RuntimeException:
>> Unable to find factory for Required Action: renew_password_config
>> did
>> you forget to declare it in a META-INF/services file?
>> at
>>
> io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
>> at
>>
> io.undertow.servlet.handlers.ServletInitialHandler.handleFirstRequest(ServletInitialHandler.java:284)
>> at
>>
> io.undertow.servlet.handlers.ServletInitialHandler.dispatchRequest(ServletInitialHandler.java:263)
>> at
>>
> io.undertow.servlet.handlers.ServletInitialHandler.access$000(ServletInitialHandler.java:81)
>> at
>>
> io.undertow.servlet.handlers.ServletInitialHandler$1.handleRequest(ServletInitialHandler.java:174)
>> at
>>
> io.undertow.server.Connectors.executeRootHandler(Connectors.java:202)
>> at
>>
> io.undertow.server.HttpServerExchange$1.run(HttpServerExchange.java:793)
>> Caused by: java.lang.RuntimeException: Unable to find factory for
>> Required Action: renew_password_config did you forget to declare it
>> in a
>> META-INF/services file?
>> at
>>
> org.keycloak.services.managers.AuthenticationManager.executionActions(AuthenticationManager.java:569)
>> at
>>
> org.keycloak.services.managers.AuthenticationManager.actionRequired(AuthenticationManager.java:504)
>> at
>>
> org.keycloak.services.managers.AuthenticationManager.nextActionAfterAuthentication(AuthenticationManager.java:426)
>> at
>>
> org.keycloak.services.resources.LoginActionsService$Checks.verifyRequiredAction(LoginActionsService.java:302)
>> at
>>
> org.keycloak.services.resources.LoginActionsService.processRequireAction(LoginActionsService.java:856)
>
> That's a required action that's missing "renew_password_config". Maybe
> a user that has had the action associated with it? Try checking the
> user through the admin console and see what required actions it has?
> Or maybe you've configured required actions as well as authenticators?
>
>> Could you support?
>>
>> Thanks
>>
>> _______________________________________________
>> keycloak-user mailing list
>> keycloak-user at lists.jboss.org
>> https://lists.jboss.org/mailman/listinfo/keycloak-user [1]
>
>
>
> Links:
> ------
> [1] https://lists.jboss.org/mailman/listinfo/keycloak-user
More information about the keycloak-user
mailing list