Uploaded image for project: 'HawtIO'
  1. HawtIO
  2. HAWNG-1398

[AMQ 7.13.x] Problems with console auth & RHBK/Keycloak - OCP usage

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Critical Critical
    • 4.3.0
    • None
    • hawtio
    • None

      There seems to be some problem with redirection uri and incorrect parameters there after login to broker console /hawtio/, which uses bearerToken and is talking with Keycloak.

      1) Redirection URI is wrong -> change of prompt to basic
      2) Probably issues with role mapping (need to figure that one out myself)

      I am not sure, if this is the correct URI (probably not!), but ggrzybek debugged this extensively today with me 

      https://keycloak-svc-rte-kc-ldap-tests.apps.mt-419.clusters.amq-broker.xyz/realms/master/protocol/openid-connect/auth?client_id=security-admin-console&redirect_uri=https%3A%2F%2Fkeycloak-svc-rte-kc-ldap-tests.apps.mt-419.clusters.amq-broker.xyz%2Fadmin%2Fmaster%2Fconsole%2F%23%2Famq-broker-ldap%2Fclients%2F1789ea48-9db4-421f-9da8-5f959ef71410%2FclientScopes&state=e21be6a9-1945-4209-ad80-85a8a7226722&response_mode=fragment&response_type=code&scope=openid&nonce=436a9ba5-ef2f-4d46-8da8-3eb1c9059292&code_challenge=7kRZt05ihX1Xb6zD2E3TaGahkUnQyzzVFNoa25eVI5g&code_challenge_method=S256

              ggrzybek Grzegorz Grzybek
              mtoth@redhat.com Michal Toth
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated:
                Resolved: