[keycloak-user] My KEYCLOAK_SESSION cookie is always wrong

Stian Thorgersen sthorger at redhat.com
Tue Nov 15 06:27:11 EST 2016


Looks like your reverse proxy is for some reason messing with the cookies

On 14 November 2016 at 20:47, Colin Ritchie <colin.ritchie at tasktop.com>
wrote:

> Hello,
>
> I am running keycloak behind an reverse proxy.  After I log in, when
> visiting the keycloak admin, the page refreshes every 5 seconds.  It
> appears to be because my session cookie does not match the expected
> KEYCLOAK_SESSION value in the server response.
>
> When I monitor the traffic between the browser and keycloak, the cookie
> sent to keycloak matches the cookie in the response.
>
> When I put a breakpoint in the login.status.iframe.html getCookie() method,
> I see the desired cookie with the incorrect name
> "!Proxy!clusterProxyKEYCLOAK_SESSION", and I sometimes see a an invalid
> cookie with the correct name "KEYCLOAK_SESSION".
>
> example:
> "
> !Proxy!clusterProxyKEYCLOAK_SESSION=master/127ff890-6fde-
> 47f5-8a81-039c67d0a261/c7b9427b-eb59-4b2a-8b3c-f8436c130613"
>
> Does anyone know what is happening here?
>
> --
> *Colin Ritchie **|* *Engineering Manager* *|* *Tasktop Technologies*
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>


More information about the keycloak-user mailing list