I have two separate dockers. Extended from official docker-hub images. One contains jbpm-console and the second kie-server.

I have configured keycloak authentication on both servers. When I try login with keycloak user to jbpm-console, it works alright. When I try to send REST request (via POSTMAN) to jbpm-console, it works too. When I try to send REST request to kie-server, it works too. So I think keycloak is configured correctly. The problem is, that from jbpm-console -> Process Management -> Process Definitions, I get the following error message.

Invalid credentials to load data from remote server. Contact your system administrator.

Given user has all the roles like admin, user, kie-server, rest-all.

If I turn off security in kie-server.war/.../web.xml, I can see the Process definitions. But this introduces additional problem with Tasks. Because users don't see assigned tasks, because kie-server does not get any user info ...