Uploaded image for project: 'Keycloak'
  1. Keycloak
  2. KEYCLOAK-19509

Invalid_grant - Session doesn't have required client

    XMLWordPrintable

Details

    • Bug
    • Status: Closed
    • Critical
    • Resolution: Duplicate
    • 15.0.2
    • None
    • Storage
    • None
    • This issue is security relevant
    • NEW
    • NEW

    Description

      After upgrading Keycloak directly from version 11 to version 15.0.2, we have encountered issues with our previously created offline tokens. For most of our offline tokens, we now get an "invalid_grant - session doesn't have required client" exception.

      It is also strange that not all existing offline user sessions / offline tokens are visible in the Keycloak UI. For example, in offline_user_session table there are 3 entries, but none is visible in Keycloak UI.

      Maybe it has something todo with this issue: KEYCLOAK-19290

      How is it possible to reuse existing offline tokens in Keycloak 15.0.2 created with Keycloak 11 without revoking them?

      Attachments

        Issue Links

          duplicates

          Bug - A problem which impairs or prevents the functions of the product. KEYCLOAK-19701 Offline client sessions is not loaded from db after evicted from cache

          • Minor - To be worked after urgent, high, and medium priorities are resolved. This term is chosen when the severity of the issue is low, or the complexity or effort to correct it may be higher, relatively speaking. For low priority issues, known workarounds exist or are not needed due to the trivial effort needed to address the issue.
          • Open

          Activity

            People

              Unassigned Unassigned
              webert_demuc Tom Weber (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: