Deploying Keycloak1.9.8 on EAP 7.0.3/7.04 causes an "Invalid parameter: redirect_uri" error when accessing the admin console via HTTP over a proxy with:
<http-listener name="default" socket-binding="http" redirect-socket="proxy-https" proxy-address-forwarding="true"/>
proxy-address-forwarding="true" is in the load-balancer documentation so the assumption is that this is valid config:
HTTPS works correctly.
Keycloak on EAP7.0.0-7.0.2 works correctly. This is the suspected cause of the change in behavior:
HAProxy configuration is attached.