Uploaded image for project: 'JBoss Enterprise Application Platform'
  1. JBoss Enterprise Application Platform
  2. JBEAP-21566

URI working with RH-SSO 7.4.2 is rejected in 7.4.3

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Blocker Blocker
    • 7.4.0.GA
    • 7.3.3.GA, 7.4.0.Beta
    • OpenShift
    • None

      EAP 7.3.3 OpenShift image isn't able to register openid-connect clients in RH-SSO 7.4.3. It works correctly with RH-SSO 7.4.2.

      Both EAP and RH-SSO are deployed in OpenShift using templates:

      The reported error is

      WARN ERROR: Unable to register openid-connect client for module app-profile-jsp in realm eap-realm on "http://${HOSTNAME_HTTP}/app-profile-jsp/*","http://${HOSTNAME_HTTP}:80/app-profile-jsp/*","https://secure-eap-msimka-namespace.apps.pkremens-20uw.eapqe.psi.redhat.com/app-profile-jsp/*","https://secure-eap-msimka-namespace.apps.pkremens-20uw.eapqe.psi.redhat.com:443/app-profile-jsp/*": {"error":"invalid_input","error_description":"A redirect URI is not a valid URI"}

      The code in EAP image that fails is keycloak.sh#L953

      Logs from EAP pods with enabled script debug are attached, one successful running with RH-SSO 7.4.2 and the other failing with RH-SSO 7.4.3.

        1. eap_sso_script_debug_742.log
          718 kB
        2. eap_sso_script_debug.log
          720 kB

              msimka@redhat.com Martin Simka
              mchoma@redhat.com Martin Choma
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved: