cuzyoucant commented on issue #7952: URL: https://github.com/apache/pulsar/issues/7952#issuecomment-686508429
@zymap I can agree what @harissecic says. The problem is the line 100 in the DefaultMetadataResolver.java `return new URL(issuerUrl, "/.well-known/openid-configuration");` Because the URL constructor does not work as someone would expect. It does not concatenate the two inputs. You can read that up in the java documentation. It strips everything from the issuerURL after the `www.xyz.com` and adds the `"/.well-known/openid-configuration"`. So no matter what you pass in as issuerURL` www.xyz.com` or` www.xyz.com/auth/realms/myrealm/` (which we want to pass in, or rather what you need to pass in if you use keycloak) it always ends up as `www.xyz.com/.well-known/openid-configuration`. Thats why i just changed it the line to `return new URL(issuerUrl.toString() + "/.well-known/openid-configuration");` so it actually gets appended. Hope that helps! ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org
