Failure to secure a simple .war

I am trying to secure a simple .war application on WildFly using KeyCloak. I have run through the keycloak getting started tutorial and created a “demo” realm and successfully deployed to vanilla app with keycloak authentication. I am trying to add KeyCloak to a sample WildFly webapp (quickstart/helloworld-rf at master · wildfly/quickstart · GitHub)

I’ve added the webapp as a client in the keycloak admin console.

I have added security-constraint to the application web.xml

And I have added the webapp to the keycloak adapter subsystem in standalone.xml

My understanding from reading the documentation is that this should work but when I access the URL no keycloak auth comes up. What am I missing?