[keycloak-user] Failed to verify token
Juan Diego
juandiego83 at gmail.com
Mon Nov 21 19:11:17 EST 2016
Hi,
I havent done this in a while. I have keycloak 1.9.8 running in a
server. I created a front-end and backend, front with angularjs backend
with java and wildfly10.
The front-end works, but when I try to send requests to my back end I get
the following:
18:51:42,377 ERROR [org.keycloak.adapters.BearerTokenRequestAuthenticator]
(default task-38) Failed to verify token:
org.keycloak.common.VerificationException:
Invalid token signature.
at org.keycloak.RSATokenVerifier.toAccessToken(
RSATokenVerifier.java:73)
at org.keycloak.RSATokenVerifier.verifyToken(RSATokenVerifier.
java:39)
at org.keycloak.RSATokenVerifier.verifyToken(RSATokenVerifier.
java:35)
...
On my browser I get this
401 Unauthorized - http://localhost:8080/ramona-backend/configuracion/
grabarLista",
WWW-AuthenticateBearer realm="ramona", error="invalid_token",
error_description="Invalid token signature."x-powered-byUndertow/1
But I can see that a token is being sent
Accept application/json, text/plain, */*
Accept-Encoding gzip, deflateAccept-Languageen-US,en;q=0.5
Authorization Bearer eyJhbGciOiJSUzI1NiJ9.eyJqdGkiOiI1NmQxMTg2OS02M2ZiLT
QwZDEtYjllZS1jY2I0NDIxMzVlNWMiLCJleHAiOjE0Nzk3NzI4NzEsIm5iZi
I6MCwiaWF0IjoxNDc5NzcyNTcxLCJpc3MiOiJodHRwOi8vbG9jYWxob3N0Oj
gwODAvYXV0aC9yZWFsbXMvcmFtb25hIiwiYXVkIjoicmFtb25hLWZyb250ZW
5kIiwic3ViIjoiY2U1MTZiNmMtMjBmNS00NWQ2LTk2ZjctNTE5OTliNDEyMTZk
IiwidHlwIjoiQmVhcmVyIiwiYXpwIjoicmFtb25hLWZyb250ZW5kIiwibm
9uY2UiOiI4MTJhNTJmYy0xMjY4LTQwZGQtOWU0NC0wZGQ3OTE4NjQxYjYiLC
JzZXNzaW9uX3N0YXRlIjoiMzM2ZTczZWQtM2M4NS00MzZhLThmNDUtZTIzY2
Q1ZDdkYTM3IiwiY2xpZW50X3Nlc3Npb24iOiI3NmVjYjRlMS1jYjVmLTRkNj
YtOWU2Zi1jMTNiMTJlZGExMDAiLCJhbGxvd2VkLW9yaWdpbnMiOlsiaHR0cDov
L3JhbW9uYS5sb2NhbGRvbWFpbiIsImh0dHA6Ly9sb2NhbGhvc3Q6ODA4MC
IsImh0dHA6Ly9sb2NhbGhvc3QiXSwicmVhbG1fYWNjZXNzIjp7InJvbGVzIj
pbInVzdWFyaW9zIl19LCJyZXNvdXJjZV9hY2Nlc3MiOnsiYWNjb3VudCI6ey
Jyb2xlcyI6WyJtYW5hZ2UtYWNjb3VudCIsInZpZXctcHJvZmlsZSJdfX0sIm
5hbWUiOiJyYW1vbmEgIiwicHJlZmVycmVkX3VzZXJuYW1lIjoicmFtb25hIi
wiZ2l2ZW5fbmFtZSI6InJhbW9uYSIsImZhbWlseV9uYW1lIjoiIiwiZW1haW
wiOiJqdWFuZGllZ284M0BnbWFpbC5jb20ifQ.b1Fz1R3eVW22qO83mqn-
OSYxlA5pRYK-fQOPeW1TegD93_DrZXXJac7ZOlFv2yS58KWDixffVZz4
7QwmF_AtMrJTZ212zuTvf6tXQjja4EVMAfSN4ZOiXK6VvRyKkfElprwzqRkinjl5wDX-
8Thw3S2efLrroMcY1qtKxRFdXzH5Ms19-r2bW8zpxqG4V6QI7quvHGE2JlDY
EiI0Vuf9UiSMd1lCy2hdIhkNU5hryB8CX7ts2243M0kiG0KnJ6VQGZzNxfn0
HHUkY3EIhb07xgbnBqiCX-SgVwJOLBSxSmQ9_wVXyOAK6ZoZK-
59NaSDn7gDj5CNoXa9I4USGEXRyg
Host localhost:8080
Origin http://ramona.localdomain
Referer http://ramona.localdomain/configuracionUser-AgentMozilla/5.0 (X11;
Fedora; Linux x86_64; rv:49.0) Gecko/20100101 Firefox/49.0
the front end is public the backend is bearer only in the same realm Web
Origins is
http://ramona.localdomain
http://localhost:8080
http://localhost and valid redirect uris
Thanks,
JD
More information about the keycloak-user
mailing list