[keycloak-user] Not able to invoke keycloak admin REST apis from wildfly container

Nalyvayko, Peter pnalyvayko at agi.com
Sun Mar 12 23:01:39 EDT 2017


Hi Ganga,

I believe the problem is that the x.509 server cert your keycloak instance uses to secure SSL/HTTPS connections is not trusted, i.e. not signed by one of the  trusted CAs that exist in the Java trusted cert key store. You can either disable the PKIX cert path validation or add your x.509 server cert to the java keystore.

________________________________________
From: keycloak-user-bounces at lists.jboss.org [keycloak-user-bounces at lists.jboss.org] on behalf of Ganga Lakshmanasamy [lganga14 at gmail.com]
Sent: Saturday, March 11, 2017 11:23 AM
To: keycloak-user
Subject: [keycloak-user] Not able to invoke keycloak admin REST apis from       wildfly container

Hi,

I am not able to invoke keycloak admin REST apis from our wildfly
container. Both keycloak and wildfly are ssl enabled and our app is using
keycloak authentication.

We are getting SSLHandshakeFailure error while trying to invoke keycloak's
admin rest api to disable user. We are just making a client request.

Below is the error,

"javax.net.ssl.SSLHandshakeException:
sun.security.validator.ValidatorException: PKIX path building failed:
sun.security.provider.certpath.SunCertPathBuilderException: unable to find
valid certification path to requested target"

Regards,
Ganga Lakshmanasamy
_______________________________________________
keycloak-user mailing list
keycloak-user at lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user



More information about the keycloak-user mailing list