frontendURL breaks the admin console

Iv4ndi · May 8, 2020, 3:14pm

Hello,

I have successfully installed Keycloak in standalone mode using the TAR GZ archive available on the Keecloak official Webpage.

I’m trying to follow the security best practices described in the Keycloak admin guide.

The guide strongly encourage administrators to specify the frontendURL of Keycloak for security reason.

I have setup a DNS entry in my company for the Keycloak server :

When the server is running, I can access the admin console of Keycloak using the following URL :

h t t p://keycloak.mycompany.com:8080/auth/admin/

However, if I configure the frontendURL variable in order to secure my installation, I can no longer access the admin console of Keycloak.

standalone.xml file before the change :

“frontendUrl” value="${keycloak.frontendUrl:}"/> **

standalone.xml file after the change :

“frontendUrl” value=“h ttp://keycloak.mycompany.com”/>

The link to admin console has changed to :

Since the server is not configured to listen on port 80, the connection to this URL fails.

Why did Keycloak remove the default port 8080 from the link ?

Thank you very much.

sotirisk · November 1, 2021, 2:26pm

try adding fronturl in this format
h ttp://keycloak.mycompany.com:8443/auth

Topic		Replies	Views
Keycloak AdminURL infinite redirect loop Configuring the server admin-console	0	1532	August 18, 2021
frontendUrl and adminUrl - how to restrict admin console to internal IP only? Configuring the server	1	9311	May 14, 2020
HTTP in admin console urls instead of HTTPS Configuring the server admin-console	0	1053	April 26, 2021
Frontend URL Set, but "Page not found" Configuring the server	0	480	February 25, 2021
Regarding front end url in keycloak 20.0.2	0	319	January 13, 2023