Dear community,
we were setting up 2 Keycloak instances in domain mode with a (also doubled) proxy in front of. When I’m calling the endpoint information under
…/auth/realms/master/.well-known/openid-configuration
I’m getting this
|issuer|"https://keycloak_host_1:8445/auth/realms/master"|
|---|---|
|authorization_endpoint|"https://keycloak_host_1:8445/auth/realms/master/protocol/openid-connect/auth"|
|token_endpoint|"https://keycloak_host_1:8445/auth/realms/master/protocol/openid-connect/token"|
|token_introspection_endpoint|"https://keycloak_host_1:8445/auth/realms/master/protocol/openid-connect/token/introspect"|
|userinfo_endpoint|"https://keycloak_host_1:8445/auth/realms/master/protocol/openid-connect/userinfo"|
|end_session_endpoint|"https://keycloak_host_1:8445/auth/realms/master/protocol/openid-connect/logout"|
|jwks_uri|"https://keycloak_host_1:8445/auth/realms/master/protocol/openid-connect/certs"|
|check_session_iframe|"https://keycloak_host_1:8445/auth/realms/master/protocol/openid-connect/login-status-iframe.html"|
and
|issuer|"https://keycloak_host_2:8445/auth/realms/master"|
|---|---|
|authorization_endpoint|"https://keycloak_host_2:8445/auth/realms/master/protocol/openid-connect/auth"|
|token_endpoint|"https://keycloak_host_2:8445/auth/realms/master/protocol/openid-connect/token"|
|token_introspection_endpoint|"https://keycloak_host_2:8445/auth/realms/master/protocol/openid-connect/token/introspect"|
|userinfo_endpoint|"https://keycloak_host_2:8445/auth/realms/master/protocol/openid-connect/userinfo"|
|end_session_endpoint|"https://keycloak_host_2:8445/auth/realms/master/protocol/openid-connect/logout"|
|jwks_uri|"https://keycloak_host_2:8445/auth/realms/master/protocol/openid-connect/certs"|
|check_session_iframe|"https://keycloak_host_2:8445/auth/realms/master/protocol/openid-connect/login-status-iframe.html"|
for both servers. I’d like to replace the keycloak_host_1 and keycloak_host_2 with a common, external reachable DNS name.
What part of configuration I need to modify for this?
Best
Gerald