Hi all,
I have my Keycloak server and app server behind a firewall. The web client (in browser) is in front of the firewall.
Because of the firewall, web client and app server talk to Keycloak using different addresses. Webclient sees Keyloak as “fw1”, while app server sees as “kc1”
Access token obtained by web client has issuer as “fw1”. When app server sends this token to Keycloak for authorization, Keycloak says “Invalid bearer token”.
How does Keycloak supposed to work in this situation? Can/should I turn off issuer validation?
Thanks in advance,
Huy.