keycloak

问题 I'm trying to make use of the angular-jwt but I get the follower cyclic dependency error: Cannot instantiate cyclic dependency! InjectionToken_JWT_OPTIONS at NgModuleProviderAnalyzer.parse (compiler.js:19550) at NgModuleCompiler.compile (compiler.js:20139) at JitCompiler._compileModule (compiler.js:34437) at eval (compiler.js:34368) at Object.then (compiler.js:474) at JitCompiler._compileModuleAndComponents (compiler.js:34366) at JitCompiler.compileModuleAsync (compiler.js:34260) at

问题 I'm trying to implement a custom keycloack Authenticator SPI for authenticating against an external Datasource. Spring boot Rest Service is also available, I can also use that. Use case I am trying to solve is User is presented keycloak login screen. Onsubmission User is validated against external Datasource. Retrieve some attributes from external datasource, map it to keycloak's id and access token. Also put in a condition of user restriction of same user logging in multiple times at the

问题 We are implementing Authentication using keycloak. Specifically for forgot password option: When user clicks on Forgot password option, and provides user name, an email will be sent to their id with the link to reset password. My Question is specifically on the link: The link sent out in email looks like below: https://:/auth/realms//login-actions/reset-credentials?code= But the mentioned is really an internal physical host name that can be found in /etc/hosts, but it is not accessible to

问题 I am working with wildfly undertow load balancer , and I added following configuration in standalone-load-balancer.xml but my request is not getting redirected? I added reverse proxy handler and host to the Undertow subsystem as : <handlers> <reverse-proxy name="keycloak-handler"> <host name="keycloak-host" outbound-socket-binding="remote-host" path="/auth"/> </reverse-proxy> </handlers> And then I defined outbound socket bindings for remote hosts as : <outbound-socket-binding name="remote

问题 I am new to Keycloak. I want create user using Keycloak admin REST API. I have managed to create a user. But the problem is I also want to assign admin role to the user. Attached is my JSON body. Can someone tell me what am I doing wrong here? { "username": "username", "email": "user@gmail.com", "firstName": "name1", "lastName": "name2", "realmRoles": [ "admin" ], "enabled": true, "credentials": [{ "type": "password", "value": "default", "temporary": false }] } Thank you in advance 来源： https:

问题 Can not log out from keycloak IDP from inside of Django app code. All stackoverflow answers did not work fo me (most are for older version of the components involved), the same goes for the keycloak documentation. Recently we have implemented keycloak-based athentication for our Django-based website. Works fine for auth. The app is build by docker, three containers: the website on port 8000, keycloak db (postgres image), keycloak (jboss/keycloak image) on port 8080. Now I have to add "Logout"

问题 I am using angularjs and keycloak on my portal to authenticate. The problem might be something I configurated wrong with keycloak or something that I am missing with angular that I should do. When I log in to the page for the first time I get something like http://localhost/index.html?code=dQ_OdChtwNj794waGS4JGXDkKPkZd5iOJ51B2KTGr-I.3d7dc148-1fc5-4d36-9bbf-a642c8d2a283&state=a8ab64ee-4296-4048-89e8-777bbf1f39b7 After I reload I get something like this http://localhost/index.html?code=dQ

问题 I'm currently trying to get Keycloak bearer only to work with a spring boot application. I've followed the docs but I continue to get a NoSuchMethodError when I try to hit any of my endpoints. It seems similar to this keycloak issue. Based on that it looks like it should be working in all of the latest builds. I've followed this tutorial for the most part. I have the project here for reference. (POM, KeycloakConfiguration) Starting the app using mvn spring-boot:run When hitting any route (in

问题 I have a configuration where I'm using Keycloak as an Identity Broker, and a custom Identity Provider (using Spring Security OAuth) to provide user information. What I observe is that when I attempt to log out (using frontchannel flow), Keycloak cookies including KEYCLOAK_IDENTITY remain. I expect to see Set-Cookie headers setting the expires to some date in the past. The implication of this is that if I then go to a protected endpoint/page, I am able to access that resource without logging

问题 I tried this with Keycloak 4.4.0.Final and 4.6.0.Final. I checked the keycloak server log and I saw the following warning messages in the console output. 10:33:22,882 WARN [org.keycloak.events] (default task-1) type=REFRESH_TOKEN_ERROR, realmId=master, clientId=security-admin-console, userId=null, ipAddress=127.0.0.1, error=invalid_token, grant_type=refresh_token, client_auth_method=client-secret 10:40:41,376 WARN [org.keycloak.events] (default task-5) type=LOGOUT_ERROR, realmId=demo,