[keycloak-user] Client not found error in keycloak

Kevin Perez Moreno moreno at netguardians.ch
Mon Apr 8 10:00:09 EDT 2019 

Hello,

I am currently trying to integrate Celoxis into our SSO provided by keycloak. Celoxis is configured to send SAML requests to our keycloak server. However, after initiating the SAML exchange I get the following error:

  *   The web UI shows "Unknown login requester"
  *   In keycloak CLI, I can see the following "client_not_found" error:
15:53:03,293 DEBUG [io.undertow.request] (default I/O-2) Matched prefix path /auth for path /auth/realms/Demo/protocol/saml
15:53:03,294 DEBUG [io.undertow.request.security] (default task-2) Attempting to authenticate /auth/realms/Demo/protocol/saml, authentication required: false
15:53:03,294 DEBUG [io.undertow.request.security] (default task-2) Authentication outcome was NOT_ATTEMPTED with method io.undertow.security.impl.CachedAuthenticatedSessionMechanism at 6c2221a0 for /auth/realms/Demo/protocol/saml
15:53:03,294 DEBUG [io.undertow.request.security] (default task-2) Authentication result was ATTEMPTED for /auth/realms/Demo/protocol/saml
15:53:03,294 DEBUG [org.keycloak.transaction.JtaTransactionWrapper] (default task-2) new JtaTransactionWrapper
15:53:03,294 DEBUG [org.keycloak.transaction.JtaTransactionWrapper] (default task-2) was existing? false
15:53:03,295 DEBUG [org.jboss.resteasy.resteasy_jaxrs.i18n] (default task-2) RESTEASY002315: PathInfo: /realms/Demo/protocol/saml
15:53:03,295 DEBUG [org.keycloak.protocol.saml.SamlService] (default task-2) SAML GET
15:53:03,295 DEBUG [org.keycloak.saml.SAMLRequestParser] (default task-2) SAML Redirect Binding
15:53:03,295 DEBUG [org.keycloak.saml.SAMLRequestParser] (default task-2) <samlp:AuthnRequest xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="ONELOGIN_c4606c22-dc34-44a9-86c0-b157a90c8691" Version="2.0" IssueInstant="2019-04-08T13:53:03Z" Destination="https://sso.netguardians.ch:64020/auth/realms/Demo/protocol/saml" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" AssertionConsumerServiceURL="https://app.celoxis.com/psa/person.Login.do?code=netguardians"><saml:Issuer>celoxis.com</saml:Issuer><samlp:NameIDPolicy Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified" AllowCreate="true" /></samlp:AuthnRequest>
15:53:03,296 DEBUG [org.hibernate.resource.transaction.backend.jta.internal.JtaTransactionCoordinatorImpl] (default task-2) Hibernate RegisteredSynchronization successfully registered with JTA platform
15:53:03,296 DEBUG [org.hibernate.SQL] (default task-2)
    select
        cliententi0_.ID as col_0_0_
    from
        CLIENT cliententi0_
    where
        cliententi0_.CLIENT_ID=?
        and cliententi0_.REALM_ID=?
15:53:03,297 DEBUG [org.hibernate.resource.jdbc.internal.LogicalConnectionManagedImpl] (default task-2) Initiating JDBC connection release from afterStatement
15:53:03,297 WARN  [org.keycloak.events] (default task-2) type=LOGIN_ERROR, realmId=Demo, clientId=celoxis.com, userId=null, ipAddress=10.7.4.12, error=client_not_found
It seems that both the client ID and the realm ID are not found by keycloak.
I wonder if any of you has experienced this issue before
Thank you in advance

Kevin


[https://cdn.netguardians.ch/images/banner_new_web.jpg]<https://www.netguardians.ch/>

More information about the keycloak-user mailing list