-
-
Notifications
You must be signed in to change notification settings - Fork 1.2k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[BUG] Redirect loop when keycloak auth is enabled #604
Comments
This comment was marked as outdated.
This comment was marked as outdated.
Oh, I haven't starred the repo, my bad. |
No worries, I've reopened it :) Do you know what version of Keycloak you're running? If it's an older version (before v17.0.0), then this will be the same as #564. Otherwise, this issue is covered in Troubleshooting Docs --> Keycloak Redirect Error, I've pasted below
Similar questions have been raised before, and the users shared their solutions, so see also: |
I use keycloak 15 ! I upgrade it to the latest on my dev environment as soon as I can. I have to do it anyway. |
I just upgraded keycloak from v15 to v17. This new version breaks most of my other apps because the URI does not start with /auth anymore. So, I guess that's what #564 is about. But, unfortunately, there is still the same redirect loop. Here is a screenshot of my browser's console (up to date firefox). The home.something domain is dashy and auth.something is keycloak. |
To fix that, see the links in my comment above ⬆️ Specifically: |
This issue has gone 6 weeks without an update. To keep the ticket open, please indicate that it is still relevant in a comment below. Otherwise it will be closed in 5 working days. |
@Lissy93 @kafeinnet Hi!
This is a bad way for Keycloak, don't use this method! If we add such headers, we will get endless redirect loop. "Web Origins" tooltip: It's working for me (without adding headers on NGINX server). Keycloak 18.0.0 |
Worked for me too. Using keycloak 16 and Træfik. Thanks 😊 @PlusaN |
This issue has gone 6 weeks without an update. To keep the ticket open, please indicate that it is still relevant in a comment below. Otherwise it will be closed in 5 working days. |
This issue was automatically closed because it has been stalled for over 6 weeks with no activity. |
I forgot to say, but this issue was fixed in #663 |
Environment
Self-Hosted (Docker)
Version
2.0.7
Describe the problem
Hi,
Dashy cause a redirect loop when keycloak auth is enable and I'm not sure how I can debug that.
The app keeps redirecting to my keycloak server (
/auth/realms/myrealm/protocol/openid-connect/auth?client_id=...
and all the auth workflow).Then keycloak redirect to the app callback
https://fqdn/#state=...
.Then there is a POST request on /auth/realms/myrealm/protocol/openid-connect/token and keycloak returns a JSON objet which seems to be a valid bearer token.
And then the app refresh itself and everything starts again.
The keycloak session is OK, the returned token is OK, some other apps are using this keycloak instance without problem and dashy is working OK if I don't enable keycloak auth. Is there any way to be sure this a a dashy bug or to find out what is happening ?
\fab
Additional info
No response
Please tick the boxes
The text was updated successfully, but these errors were encountered: