[keycloak-user] Client not found error in keycloak

Sebastien Blanc sblanc at redhat.com
Mon Apr 8 10:27:49 EDT 2019 

Hi,
The realm is found (Demo) but no the client, are you sure you have a client
configured and named "celoxis.com" in your "Demo" realm ?

On Mon, Apr 8, 2019 at 4:08 PM Kevin Perez Moreno <moreno at netguardians.ch>
wrote:

> Hello,
>
> I am currently trying to integrate Celoxis into our SSO provided by
> keycloak. Celoxis is configured to send SAML requests to our keycloak
> server. However, after initiating the SAML exchange I get the following
> error:
>
>   *   The web UI shows "Unknown login requester"
>   *   In keycloak CLI, I can see the following "client_not_found" error:
> 15:53:03,293 DEBUG [io.undertow.request] (default I/O-2) Matched prefix
> path /auth for path /auth/realms/Demo/protocol/saml
> 15:53:03,294 DEBUG [io.undertow.request.security] (default task-2)
> Attempting to authenticate /auth/realms/Demo/protocol/saml, authentication
> required: false
> 15:53:03,294 DEBUG [io.undertow.request.security] (default task-2)
> Authentication outcome was NOT_ATTEMPTED with method
> io.undertow.security.impl.CachedAuthenticatedSessionMechanism at 6c2221a0
> for /auth/realms/Demo/protocol/saml
> 15:53:03,294 DEBUG [io.undertow.request.security] (default task-2)
> Authentication result was ATTEMPTED for /auth/realms/Demo/protocol/saml
> 15:53:03,294 DEBUG [org.keycloak.transaction.JtaTransactionWrapper]
> (default task-2) new JtaTransactionWrapper
> 15:53:03,294 DEBUG [org.keycloak.transaction.JtaTransactionWrapper]
> (default task-2) was existing? false
> 15:53:03,295 DEBUG [org.jboss.resteasy.resteasy_jaxrs.i18n] (default
> task-2) RESTEASY002315: PathInfo: /realms/Demo/protocol/saml
> 15:53:03,295 DEBUG [org.keycloak.protocol.saml.SamlService] (default
> task-2) SAML GET
> 15:53:03,295 DEBUG [org.keycloak.saml.SAMLRequestParser] (default task-2)
> SAML Redirect Binding
> 15:53:03,295 DEBUG [org.keycloak.saml.SAMLRequestParser] (default task-2)
> <samlp:AuthnRequest xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"
> xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
> ID="ONELOGIN_c4606c22-dc34-44a9-86c0-b157a90c8691" Version="2.0"
> IssueInstant="2019-04-08T13:53:03Z" Destination="
> https://sso.netguardians.ch:64020/auth/realms/Demo/protocol/saml"
> ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
> AssertionConsumerServiceURL="
> https://app.celoxis.com/psa/person.Login.do?code=netguardians
> "><saml:Issuer>celoxis.com</saml:Issuer><samlp:NameIDPolicy
> Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified"
> AllowCreate="true" /></samlp:AuthnRequest>
> 15:53:03,296 DEBUG
> [org.hibernate.resource.transaction.backend.jta.internal.JtaTransactionCoordinatorImpl]
> (default task-2) Hibernate RegisteredSynchronization successfully
> registered with JTA platform
> 15:53:03,296 DEBUG [org.hibernate.SQL] (default task-2)
>     select
>         cliententi0_.ID as col_0_0_
>     from
>         CLIENT cliententi0_
>     where
>         cliententi0_.CLIENT_ID=?
>         and cliententi0_.REALM_ID=?
> 15:53:03,297 DEBUG
> [org.hibernate.resource.jdbc.internal.LogicalConnectionManagedImpl]
> (default task-2) Initiating JDBC connection release from afterStatement
> 15:53:03,297 WARN  [org.keycloak.events] (default task-2)
> type=LOGIN_ERROR, realmId=Demo, clientId=celoxis.com, userId=null,
> ipAddress=10.7.4.12, error=client_not_found
> It seems that both the client ID and the realm ID are not found by
> keycloak.
> I wonder if any of you has experienced this issue before
> Thank you in advance
>
> Kevin
>
>
> [https://cdn.netguardians.ch/images/banner_new_web.jpg]<
> https://www.netguardians.ch/>
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>

More information about the keycloak-user mailing list