Authorization services how to debug javascript policy using print

brian3791 · March 27, 2020, 8:06pm

Where do debug print statements in my JavaScript based policy output? I’m running keycloak on a Windows machine if that matters.

I created a new JS policy following this doc https://www.keycloak.org/docs/4.8/authorization_services/#_policy_js. But now I’d like to debug the policy and would like to see at runtime the context attributes but I can’t figure out where “print” is getting output. I looked in
KEYCLOAK_HOME\standalone\log\service-20200327.log and in server.log in the same folder but I don’t see my “print” output.

My JS policy is:
var context = $evaluation.getContext();
var contextAttributes = context.getAttributes();
print(‘testdebug’);
if (!contextAttributes.containsValue(‘kc.client.network.ip_address’, ‘127.0.0.1’)) {
$evaluation.grant();
}

brian3791 · March 31, 2020, 2:07pm

Misconfiguration. I was able to find the JS policy “print” output. It’s in server.log (or whatever is capturing keycloak’s stdout). The output wasn’t appearing originally because the authorization client lacked a permission using the newly created javascript-based policy.

Topic		Replies	Views
JavaScript policy : how to call external API Getting advice	4	1726	August 6, 2021
Quick tip: Logging Outgoing HTTP Requests in Keycloak Server Tips and tricks	1	3848	June 14, 2022
Keycloak using Context-based access control (CBAC) Getting advice	0	1702	June 4, 2020
Keycloak Policy Enforcement with Springboot App Getting advice authentication , oidc	0	468	May 17, 2022
Just can't get the Javascript Adapter to work Securing applications	0	710	November 14, 2022

Authorization services how to debug javascript policy using print

Related Topics