Hey all, I have discovered what is the issue. Apparently the module doesn't recognize some of the token decryption algorithms, and I solved the issue by forcing RS256 on the client and including the realm-public-key for RS256 in the adapter config which is located in keycloak realm settings. This isn't mentioned in the documentation though. Any way to proceed with this?
Cheers, Nikola ________________________________ From: Nikola Jankovic <nikola.janko...@eodc.eu> Sent: 16 October 2019 13:54 To: geoserver-users@lists.sourceforge.net <geoserver-users@lists.sourceforge.net> Subject: [Geoserver-users] Keycloak with geoserver 403 error Hello all, I am trying to run keycloak & geoserver locally, but no matter what I try (also tried a bunch of other things besides using the guide here https://docs.geoserver.org/latest/en/user/community/keycloak/index.html) I always get 403 after logging in to geoserver from keycloak. A successful session & login are logged in keycloak, but I don't get access to the GUI which, at first, I am trying to protect. I know it is a community module and experimental, but has anyone had any success setting it up? Any help would be greatly appreciated. Not sure also whether this might be a bug. Specs: Geoserver 2.15.0 running in a docker Container openjdk version "1.8.0_212" OpenJDK Runtime Environment (build 1.8.0_212-8u212-b01-1~deb9u1-b01) OpenJDK 64-Bit Server VM (build 25.212-b01, mixed mode) I tried changing roles, mapping roles, disabling ssl fully, changing flows within keycloak & tried to replicate the user in geoserver but always 403. Thanks in advance. Cheers, Nikola
_______________________________________________ Geoserver-users mailing list Please make sure you read the following two resources before posting to this list: - Earning your support instead of buying it, but Ian Turton: http://www.ianturton.com/talks/foss4g.html#/ - The GeoServer user list posting guidelines: http://geoserver.org/comm/userlist-guidelines.html If you want to request a feature or an improvement, also see this: https://github.com/geoserver/geoserver/wiki/Successfully-requesting-and-integrating-new-features-and-improvements-in-GeoServer Geoserver-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/geoserver-users
