New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Keycloak integration breaks on mixed https/http setup #2040
Comments
Hello @carlesarnal, |
No sorry, I haven't looked into this yet. Setting this kind of setup is always tricky, especially from a Keycloak POV. I'll update the issue as soon as I can. |
Thanks for looking into this @carlesarnal! Let me know if I can assist with more details or maybe a synchronous call for screen sharing |
Hello, I've just had a similar issue which I resolved by setting env variable |
Hi! Thanks for sharing your experience @syalioune |
Setting this variable also fixed the issue on our end. Thanks a lot @syalioune! |
No pb 👍 ! @carlesarnal would you be interested in a PR that set a sound default value for the different deployment method (compose, helm,...) ? |
For sure! Thanks @syalioune |
Hi everyone,
we are trying to run Apicurio Studio in Docker Swarm together with Traefik. We have managed to get everything up and running (apart from having to expose Websockets through a node port instead of DNS) but the Keycloak integration is still problematic.
These are our steps for reproduction:
redirect_uri
in the URL is the https URL - this is already wrong to begin withI would have expected the redirect_uri to be http.
This is how we currently work around this bug:
Comparison
We have another Docker Stack on another, similar machine. This stack works including Keycloak integration. We have diffed the Docker Stack manifests, and the only difference between the working stack and the broken stack (as described above) is that Keycloak runs on https.
For me, this feels a lot like Apicurio UI somewhere redefines its own URL to https when the Keycloak URL is https.
Keycloak Configuration
Docker Service
The following is the Apicurio UI service we currently deploy. All URLs have been anonymized.
Full Docker Stack
For reference, I am also posting the entire Docker Stack here. The only changes I have made to this:
Full Manifest
Possibly related issues
#2003
The text was updated successfully, but these errors were encountered: