Hi There,
I am facing the following issue when using Azure AD as an identity provider and keycloak 21.1.1 as a broker for my java application running on Wildfly 20.0.1.Final. When I first navigate to my web application, I am correctly greeted with a redirect to authtenticate in azure ad. Once I do I am redirected to the endpoint of my keycloak (I get the same result when pointing simply at the realm) and get a message: We are sorry… Invalid Request.
With the following in the logs:
type=IDENTITY_PROVIDER_RESPONSE_ERROR, realmId=xxx, clientId=null, userId=null, ipAddress=xxx, error=invalid_logout_response, reason=missing_required_destination
If I resubmit on the page I am greeted with: You are already logged in
Clicking the link back to application does nothing but refresh the page.
Is this something you can help me with? I assume it is configuration issue.