[keycloak-user] Keycloak redirect request URL form issue

Pavel Veremenyuk pavlik.v at gmail.com
Tue Dec 26 03:08:58 EST 2017


Hello community!

I'm almost new to keycloak. I was given an issue at some project to
investigate. We are using Keycloak to authenticate an openui5 app users.
Redirection to keycloak server works well for authentication, corresponding
URL looks ok:
http://host/auth/realms/ourrealm/protocol/openid-connect/auth?client_id=appname-web-app&redirect_uri=http://host/appname/&state=999c251a-b658-4cf0-a434-8706faca9a77&nonce=91e8f1f3-0d79-41d2-9d29-db7490bdbe6e&response_mode=fragment&response_type=code&scope=openid

So far only Chrome browser was considered in test. After authentication at
keycloak server at Chrome Network tab I can see resource appname/ getting
loaded with the "expected redirected" Request URL = http://host/appname/ and
the rest of application resources loaded ok.

But in FF (tried versions 56 and 57) after authentication (keycloak request
URL's straucture is the same =
http://host/auth/realms/ourrealm/protocol/openid-connect/auth?client_id=appname-web-app&redirect_uri=http://host/appname/&state=de7ae95b-12e2-4974-8c27-f18570d7d7b9&nonce=1f4fecd0-56d9-4f53-8ff4-20a8a8ff55ef&response_mode=fragment&response_type=code&scope=openid)
I can see at FF network monitor that resource appname/ is loading with not
expected (to me) Request URL =
http://host/appname/#state=de7ae95b-12e2-4974-8c27-f18570d7d7b9&code=uss.G4lUhJHTctqskN53RKNzrAL1sW8UlKjdRUTIG13B18I.421d89cb-0f85-4327-9e10-fdb044a785da.17291d73-0253-49e0-983f-9a18a1b760f8

With that additional hash app resources not loading well. What can be the
reason in FF Request URL looks different from Chrome? Appreciate any hints
how to get rid off that hash.


More information about the keycloak-user mailing list