This question already has an answer here:
How to disable HTTPS on Keycloak
(1 answer)
Closed 3 years ago.
I was facing issue while logging into keycloak from external IP. As soon as i tried to login using administrative console I was presented with a message "We're sorry HTTPS required" . I search for almost all stackoverflow post but only one post was useful .
To disable the ssl requirement we can do so by using the below command:
java -cp /opt/keycloak-4.8.3.Final/modules/system/layers/base/com/h2database/h2/main/h2-1.4.193.jar org.h2.tools.Shell -url "jdbc:h2:/opt/keycloak-4.8.3.Final/standalone/data/keycloak" -user sa -password sa -sql "update REALM set ssl_required='NONE' where id = 'master'"
Make sure you stop the keycloak service first, so that you can update the table.
Related
I am trying to connect drupal with keycloak for login. I have added client id, client secret and Keycloak realm , getting from keycloak server.
Using modules - https://www.drupal.org/project/keycloak
Link - http://localhost/drupal/user/login
After clicked on the 'Login Keycloak button' , getting error
The website encountered an unexpected error. Please try again later.
Log Message - Symfony\Component\Routing\Exception\MissingMandatoryParametersException: Some mandatory parameters are missing ("openid_connect_client") to generate a URL for route "openid_connect.redirect_controller_redirect". in Drupal\Core\Routing\UrlGenerator->doGenerate() (line 181 of C:\xampp\htdocs\drupal\core\lib\Drupal\Core\Routing\UrlGenerator.php).
Please suggest. Thank you.
Looks like you might have not added the valid redirect uri in your local keycloak server page under Clients > Settings which I believe should be "http://localhost/drupal/openid-connect/keycloak" for your project.
And also you need to provide Keycloak base URL in your drupal "Configuration > Web Service> Open ID Connect" web page which most of the times if you are using local keycloak server is http://localhost:8080
Openshift gives a login command for oc upon clicking copy login command but Eclipse asks for a server url and a token.
I tried putting server url and token from the copied command but it shows login error.
It shows "The server type, credentials, or auth scheme might be incorrect."
Openshift login
Where can I find these details for login?
Please help me login to openshift using eclipse.
if you look at what "Copy Login Command" in the Web-UI for OpenShift gives you you'll see something similar to this:
oc login https://192.168.64.39:8443 --token=XXXXXXXXXXXXXXXXXXXXXXXX
There are all informations that you need to connect via Eclipse. You have the server url https://192.168.64.39:8443 and the token that you can give Eclipse when switching the authentication to OAuth.
I'm struggling around and hope you can help me.
Scenario:
I wrote a web application on a test server and all works fine. I moved the finished application to the live system and I receive a HTTP 401 error if windows authentication is enabled on IIS. I solved this problem by setting an SPN on server name e.g.
setspn -a http/contoso contoso
But it needs to work with my service account.
I set spn for service account like:
setspn -a http/contoso.com mydomain\serviceaccount
setspn -a http/contoso mydomain\serviceaccount
Application pool is running as mydomain\serviceaccount. The Kerberos Delegation is set for this account in Active Directory. But still get a 401 error. For testing purposes, the service account has the Administrator role on this server.
This looks like a duplicate SPN issue. I believe you have done all the right things by adding SPN's for service account but there is one more step in IIS that you need to take to ensure that the application pool credentials are actually being used.
Click on the website and in the center panel, click on configuration editor. Navigate to "system.webServer/security/authentication/windowsAuthentication" and here set "useAppPoolCredentials" to true and "UsekernelMode" to false.
Follow this article for more info - https://blogs.msdn.microsoft.com/chiranth/2014/04/17/setting-up-kerberos-authentication-for-a-website-in-iis/
I have successfully created, configured and integrated SSO with my application at (https://console.bluemix.net). My project url is http://helloworldnew.mybluemix.net. I have created user Manoj while setting up SSO.
Details are as follows:
Username: Manoj
Password: welcome2ibm11
Once user is logging in to the application, it keeps on giving an "Authorization Failed" message.
Where and how to resolve the issue?
The same thing happens with other users created while configuring SSO, like
Username: Suruchi
Password: welcome2ibm
I was able to access this project successfully using username Manoj one day ago, but now it's throwing the authorization error.
It seems the application you provided above is working when signing in with user id and password you provided.
Are you still seeing errors? If so please provide more detailed information including error you are seeing.
Thanks,
Alex.
I've got pretty much the same question as: Jabber Openfire server v3.6.0a+ - how do I use Hybrid authentication?
But when I followed the instructions there, and I go into the Admin interface > Users and Groups > Create New User, I get the following message:
Not allowed: the user account system is read-only.
That tells me that the system is trying to add to the LDAP structure, and not to the database. Does anyone have a working config that allows both LDAP and Database users to login, and to be able to create Database Users?
I believe in the latest version of Openfire, settings are pulled from the database but not the openfire.xml file. Unfortunately, there's little documentation on their site.
OK... so I have been looking for how to do this for 6 months now. And not more than 15 mins after I post this question, I find the link here:
http://community.igniterealtime.org/message/204225
Also, the settings are now saved in the databsae, so the openfire.xml is irrelevant for these settings.