Hi,
I have my own application and I need to control access based on URI, meaning, I want to have users that can connect to http://$APP_IP/rest but these users can NOT connect to http://$CDP_IP/ui, I have tried but it looks lile the keycloak.json file generated from the keycloak GUI is generating errors in my APP
keycloak.json file is as follows:
{
“realm”: “CDP”,
“auth-server-url”:“http://113.216.116.22:8665/auth”,
“ssl-required”: “none”,
“resource”: “CDP-UI”,
“credentials”: {
“secret”: “2043a0ef-03e1-460a-b218-24f8b0b6c1f4”
},
“confidential-port”: 0,
“policy-enforcer”: {}
}
and this is the error I am getting in my app when is getting deployed on top of jboss
2020-06-04 19:43:06,204 ERROR [org.apache.catalina.core] (ServerService Thread Pool – 64) [U:] [I:] [D:] [N:] [S:] [J:] [A:] [T:] JBWEB001097: Error starting context /ui: java.lang
.RuntimeException: Could not obtain configuration from server [http://113.216.116.22:8665/auth/realms/CDP/.well-known/uma2-configuration].
at org.keycloak.authorization.client.AuthzClient.(AuthzClient.java:242)
at org.keycloak.authorization.client.AuthzClient.create(AuthzClient.java:85)
at org.keycloak.adapters.authorization.PolicyEnforcer.(PolicyEnforcer.java:66)
at org.keycloak.adapters.KeycloakDeploymentBuilder.internalBuild(KeycloakDeploymentBuilder.java:143)
at org.keycloak.adapters.KeycloakDeploymentBuilder.build(KeycloakDeploymentBuilder.java:152)
at org.keycloak.adapters.tomcat.AbstractKeycloakAuthenticatorValve.keycloakInit(AbstractKeycloakAuthenticatorValve.java:128)
at org.keycloak.adapters.tomcat.AbstractKeycloakAuthenticatorValve.lifecycleEvent(AbstractKeycloakAuthenticatorValve.java:70)
at org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(LifecycleSupport.java:115)
at org.apache.catalina.core.StandardContext.start(StandardContext.java:3775)
at org.jboss.as.web.deployment.WebDeploymentService.doStart(WebDeploymentService.java:163)
at org.jboss.as.web.deployment.WebDeploymentService.access$000(WebDeploymentService.java:61)
at org.jboss.as.web.deployment.WebDeploymentService$1.run(WebDeploymentService.java:96)
at java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:511)
at java.util.concurrent.FutureTask.run(FutureTask.java:266)
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624)
at java.lang.Thread.run(Thread.java:748)
at org.jboss.threads.JBossThread.run(JBossThread.java:122)
Caused by: java.lang.RuntimeException: Error executing http method [org.apache.http.client.methods.RequestBuilder@7f51cf05]. Response : [B@46139af5
at org.keycloak.authorization.client.util.HttpMethod.execute(HttpMethod.java:106)
at org.keycloak.authorization.client.util.HttpMethodResponse$2.execute(HttpMethodResponse.java:50)
at org.keycloak.authorization.client.AuthzClient.<init>(AuthzClient.java:240)
… 17 more
Caused by: java.lang.RuntimeException: Error parsing JSON response.
at org.keycloak.authorization.client.util.HttpMethodResponse$2$1.process(HttpMethodResponse.java:56)
at org.keycloak.authorization.client.util.HttpMethod.execute(HttpMethod.java:102)
… 19 more
Caused by: com.fasterxml.jackson.databind.exc.UnrecognizedPropertyException: Unrecognized field “introspection_endpoint” (class org.keycloak.authorization.client.representation.Serv
erConfiguration), not marked as ignorable (27 known properties: “end_session_endpoint”, “check_session_iframe”, “grant_types_supported”, “scopes_supported”, “claims_parameter_suppor
ted”, “userinfo_signing_alg_values_supported”, “subject_types_supported”, “authorization_endpoint”, “request_object_signing_alg_values_supported”, “token_introspection_endpoint”, “r
esponse_modes_supported”, “jwks_uri”, “claim_types_supported”, “claims_supported”, “request_parameter_supported”, “response_types_supported”, “token_endpoint_auth_methods_supported”
, “id_token_signing_alg_values_supported”, “issuer”, “policy_endpoint”, “permission_endpoint”, “request_uri_parameter_supported”, “token_endpoint”, “token_endpoint_auth_signing_alg_
values_supported”, “resource_registration_endpoint”, “userinfo_endpoint”, “registration_endpoint”])
at [Source: [B@46139af5; line: 1, column: 1685] (through reference chain: org.keycloak.authorization.client.representation.ServerConfiguration[“introspection_endpoint”])
at com.fasterxml.jackson.databind.exc.UnrecognizedPropertyException.from(UnrecognizedPropertyException.java:62)
at com.fasterxml.jackson.databind.DeserializationContext.handleUnknownProperty(DeserializationContext.java:834)
at com.fasterxml.jackson.databind.deser.std.StdDeserializer.handleUnknownProperty(StdDeserializer.java:1093)
at com.fasterxml.jackson.databind.deser.BeanDeserializerBase.handleUnknownProperty(BeanDeserializerBase.java:1489)
at com.fasterxml.jackson.databind.deser.BeanDeserializerBase.handleUnknownVanilla(BeanDeserializerBase.java:1467)
at com.fasterxml.jackson.databind.deser.BeanDeserializer.vanillaDeserialize(BeanDeserializer.java:282)
at com.fasterxml.jackson.databind.deser.BeanDeserializer.deserialize(BeanDeserializer.java:140)
at com.fasterxml.jackson.databind.ObjectMapper._readMapAndClose(ObjectMapper.java:3814)
at com.fasterxml.jackson.databind.ObjectMapper.readValue(ObjectMapper.java:2945)
at org.keycloak.util.JsonSerialization.readValue(JsonSerialization.java:69)
at org.keycloak.authorization.client.util.HttpMethodResponse$2$1.process(HttpMethodResponse.java:54)
… 20 more
2020-06-04 19:43:06,204 ERROR [org.apache.catalina.core] (ServerService Thread Pool – 64) [U:] [I:] [D:] [N:] [S:] [J:] [A:] [T:] JBWEB001103: Error detected during context /ui start, will stop it
Any ideas why I am getting those errors?
Many thanks in advance!