Stack Overflow
Stack Overflow

Questions tagged [keycloak-gatekeeper]

Keycloak is an Open Source Identity and Access Management solution for modern Applications and Services. Gatekeeper is an application for use with OpenID Connect (OIDC) that supports both access tokens in a browser cookie or bearer tokens. Please use this tag for asking question regarding Keycloak Gatekeeper here. For more details please see documentation https://www.keycloak.org/docs/latest/securing_apps/index.html#_keycloak_generic_adapter

Links:

94 questions
3
votes
2 answers

Keycloak gatekeeper HTTP 502 / timeout after 10 seconds

I am using keycloak gatekeeper as a proxy connected to a keycloak instance to secure kibana. All tools run in a private kubernetes cluster. The keycloak gatekeeper was installed with the following helm chart…
Bate Stancho
  • 31
  • 1
  • 2
3
votes
1 answer

What is the purpose of redirection-url in keycloak gatekeeper?

I'm trying to set up Keycloak Gatekeeper as a reverse proxy in front of my service, but I don't know what the purpose is of the redirection-url. I figured I could just put Gatekeeper in front of my service, without my service needing to know…
Andrew DiNunzio
  • 143
  • 4
  • 17
3
votes
1 answer

Error when using keycloak-nodejs-connect - "Cannot exchange code for grant in bearer-only mode"

I am trying to implement a Node.js client application authenticating against Keycloak, and using an external IDP, using the keycloak-nodejs-connector. I have been following the documentation located here for using it. However, after authenticating,…
B. Jones
  • 31
  • 1
3
votes
1 answer

Keycloak terms.ftl file Url

I am working on Keycloak theme. Where we define urls like href="${url.loginUrl}". i want to define terms.ftl file url variable to send in href. I try to run href="${url.termsUrl}". but it is is not working
Danish Khan
  • 329
  • 2
  • 9
2
votes
0 answers

Setting a User Attribute in Event Listener SPI - Keycloak

I'm trying to set a user's attribute after they register in my custom Keycloak extension. My event listener implementation looks as follows: @AutoService(EventListenerProviderFactory.class) public class EventListener implements EventListenerProvider…
Twisted Tea
  • 49
  • 11
2
votes
0 answers

Alternative to Keycloak Gatekeeper/ Luketo Proxy

Keycloak Gatekeeper/ Luketo Proxy has recently become deprecated and I need an alternative. I need to have an alternative oAuth revers proxy solution that only authenticates on a particular path and when it does, it passes through users details as…
Jamie Nicholls
  • 55
  • 1
  • 10
2
votes
0 answers

Keycloak custom Authentication

I am new to Keycloak, now i trying to add a custom authenticator, i just get source from link this url and build the jar and deployed in keyclaok jboss deployment folder add tried to added under provider folder also. But keycloak server not showing…
Gomathivignesh Murugan
  • 21
  • 3
2
votes
0 answers

Traefik + Keycloak Gatekeeper Websocket authentication

We have a microservice deployed on EKS with Traefik Ingress controller. We have Keycloak Gatekeeper as sidecar for authentication purpose. This setup works well. We want to have websockets in our microservice. Now, the problem is that JavaScript…
NumeroUno
  • 1,100
  • 2
  • 14
  • 34
2
votes
1 answer

Keycloak gatekeeper updates token but does not add it to request

Where do I need to send a request to have access token updated? Because if I send a request to my resource service I have token expired exception even if gatekeeper updates the token. I want to update an access token using a refresh token. The…
Дмитрий Умецкий
  • 21
  • 1
2
votes
1 answer

How can I configure a containerized Keycloak-gatekeeper to act as a reverse proxy?

I'd like to accomplish the following configuration to provide authentication and authorization for a web server: Each server is a separate Docker container. In particular, I'm using the following docker-compose.yml: version: '3' volumes: …
espogian
  • 607
  • 8
  • 23
2
votes
0 answers

logout of keycloak gatekeeper using python requests sessions

using browser everything works find if i login and logout using the browser eg. i login using the keycloak form and i logout by pasting the following in the browser {}/oauth/logout?redirect={}/auth/realms/{}/protocol/openid-connect/logout when i…
Benjamin Hon
  • 143
  • 1
  • 11
2
votes
1 answer

Keycloak Custom message on user temporary lock

I am using Kyecloak:4.8.0, and have enabled Brute force attack for my realm. Now whenever user provides wrong credentials for 3 times user will be locked temporarily. But still user will see "Invalid username/password". According to this thread…
Sarang
  • 547
  • 8
  • 20
2
votes
0 answers

Overwriting Keycloak Authorisation Endpoint

I am configuring keycloak-gatekeeper to work with existing Keycloak server. Keycloak server is on the internal network and accessible from gatekeeper using an internal domain name and from outside using an external domain name (for end user…
Charles
  • 288
  • 1
  • 3
  • 14
2
votes
1 answer

keycloak gateway ERR_TOO_MANY_REDIRECTS after login

Using a basic setup with just keycloak + keycloak gateway + a basic hello world server in a docker-compose.yaml, i bind the ports to localhost. in the browser on hittint localhost:3000/app, it asks for login, after login it goes into a loop of 307's…
Benjamin Hon
  • 143
  • 1
  • 11
2
votes
1 answer

keycloak gatekeeper 404 after credentials

I have a backend hello world app, using the following ACLS match-claims: aud: appserver iss: http://192.168.1.132/auth/realms/master resources: - uri: /app methods: - GET roles: - user require-any-role: true causes…
Benjamin Hon
  • 143
  • 1
  • 11
1
2
3 4 5 6 7