在keycloak 中遇到redirect_uri 错误。发现 JIRA 记录了相同的问题KEYCLOAK-7237 https://issues.jboss.org/browse/KEYCLOAK-7237,只是想检查一下是否有解决办法?有人可以帮忙吗?先感谢您。
2018-06-30 11:34:13,996 警告 [org.keycloak.events] (默认任务 8) type=LOGIN_ERROR、realmId=Victz、clientId=portal、userId=null、ipAddress=、error=invalid_redirect_uri、redirect_uri=https://www.example.com:0/home https://www.example.com:0/home
我正在使用在 centos7、wildly 10、keycloak 3.4.3 上运行的 apache http 反向代理。也在以下环境中尝试过,但出现同样的错误。
尝试过
狂野 10、狂野 11、jboss 7.1、
Keycloak 3.4.3 以及 keycloak 4.0
还尝试关闭 apache http 并直接访问http://www.example.org:8080/home http://www.example.org:8080/home,但似乎 return_uri 自动转换为端口 0 的 https。
请参阅下面的standalone.xml,尝试删除下面的proxy-peer和request-dumper配置,但没有成功。
<subsystem xmlns="urn:jboss:domain:undertow:4.0">
<buffer-cache name="default"/>
<server name="default-server">
<http-listener name="default" socket-binding="http" proxy-address-forwarding="true" enable-http2="true"/>
<https-listener name="https" socket-binding="https" proxy-address-forwarding="true" security-realm="ApplicationRealm" enable-http2="true"/>
<host name="default-host" alias="localhost">
<location name="/" handler="welcome-content"/>
<location name="/drive" handler="drive"/>
<access-log pattern="%h %l %u %t "%r" %s %b "%{i,Referer}" "%{i,User-Agent}" "%{i,COOKIE}" "%{o,SET-COOKIE}" %S "%I %T"" prefix="access."/>
<filter-ref name="server-header"/>
<filter-ref name="x-powered-by-header"/>
<http-invoker security-realm="ApplicationRealm"/>
</host>
<host name="example1" alias="example.com1,www.example.com1" default-web-module=“example1-0.1.war">
<location name="/drive" handler="drive”/>
<filter-ref name="proxy-peer"/>
<filter-ref name="request-dumper" priority="30"/>
</host>
<host name="example2" alias="example.com2,www.example.com2" default-web-module="example2-0.1.war">
<location name="/drive" handler="drive"/>
<filter-ref name="proxy-peer"/>
<filter-ref name="request-dumper" priority="30"/>
</host>
<host name="example3" alias="example.com3,www.example.com3" default-web-module="example3-0.1.war">
<location name="/drive" handler="drive"/>
<filter-ref name="proxy-peer"/>
<filter-ref name="request-dumper" priority="30"/>
</host>
</server>
<servlet-container name="default">
<jsp-config/>
<websockets/>
</servlet-container>
<handlers>
<file name="welcome-content" path="${jboss.home.dir}/welcome-content"/>
<file name="drive" path="/app/drive"/>
</handlers>
<filters>
<response-header name="server-header" header-name="Server" header-value="JBoss-EAP/7"/>
<response-header name="x-powered-by-header" header-name="X-Powered-By" header-value="Undertow/1"/>
<filter name="proxy-peer" class-name="io.undertow.server.handlers.ProxyPeerAddressHandler" module="io.undertow.core"/>
<filter name="request-dumper" class-name="io.undertow.server.handlers.RequestDumpingHandler" module="io.undertow.core"/>
</filters>
</subsystem>