Hi,
I am using keycloak-spring-boot-starter (version 4.6.0.final) in a backend to validate the keycloak token obtained from a frontend web application but I am getting an “Invalid token issuer” error since the frontend app obtains the token using IP_B and the bakcend communicates with keycloak using IP_A.
org.keycloak.adapters.BearerTokenRequestAuthenticator - Failed to verify token
org.keycloak.common.VerificationException: Invalid token issuer. Expected (https://IP_A:8443/auth/realms/master%27), but was ‘[https://IP_B/auth/realms/master’]
at org.keycloak.TokenVerifier$RealmUrlCheck.test(TokenVerifier.java:110)
at org.keycloak.TokenVerifier.verify(TokenVerifier.java:466)
In keycloak standalone-ha.xml I have set the frontendUrl as
<property name="frontendUrl" value="https://IP_A:8443/auth/"/>
But it seems that the keycloak-spring-boot-starter adapter is rejecting the request without communicating with keycloak.
Is there an option to disable this from keycloak-spring-boot-starter adapter not to do any issuer validation and just forward the request to keycloak ?