[JOC-1742] It should be possible to configure the relative part of Keycloak endpoints - SOS JIRA

XML

Word

Printable

Details

Type: Feature
Status: Released (View Workflow)
Priority: Minor
Resolution: Fixed
Affects Version/s: 2.5.8, 2.6.5
Fix Version/s: 2.5.9, 2.6.6, 2.7.0
Component/s: JOC Cockpit GUI, JOC Cockpit Web Service
Labels:
None

Description

Current Situation

The Keycloak identity service in JOC Cockpit makes uses of rest api calls to a Keycloak server.
With Keycloak version < 17 the endpoints start with a constant relative part "/auth"
With Keycloak version >= 17 the endpoints no longer do have the relative part.

Therefore authentication with Keycloak version >= 17 will show this error message in the JOC Cockpit log

com.sos.joc.exceptions.JocException:

{"error":"RESTEASY003210: Could not find resource for full path: https://host:port/auth/realms/JOC/protocol/openid-connect/token"}

: Could not login

Desired Behavior

It should be possible to configure the compatibility mode for Keycloak versions <17

Workaround

set KC_HTTP_RELAITVE_PATH=/auth

in the Keycloak environment.

Attachments

Activity

People

Assignee:: Uwe Risse

Reporter:: Uwe Risse

Approver:: Ajay Kumbhkar

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 20 February 2024 10:41

Updated:: 08 April 2024 17:03

Resolved:: 23 February 2024 12:48