Uploaded image for project: 'WildFly'
  1. WildFly
  2. WFLY-18288

Securing the WildFly Management Console with OIDC doesn't work with Keycloak 22 and later

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • Critical
    • None
    • None
    • Security, Web Console
    • None
    • ---
    • ---

    Description

      Securing the WildFly Management Console with OIDC currently works with Keycloak 21.1.2.

      However, this doesn't work with the recently released Keycloak 22 and later. In this case, after successfully logging into the console with the Keycloak OpenID provider, the user gets redirected to a blank page instead of to the WildFly Management Console.

      The Keycloak 22 JavaScript adapter was updated to remove the legacy Promise API. This means that calling .success() and .error() on promises returned from the adapter is no longer possible.

      Since HAL currently calls methods from the Keycloak JavaScript adapter's legacy promise API, HAL needs to be updated to use the standardized Promise methods, then() and catch() instead.

      More information about the changes in Keycloak 22 can also be found here.

      Attachments

        Issue Links

          is blocked by

          Task - Represents a small unit of work that is not end-user facing. HAL-1879 Upgrade Keycloak adapter to 22.x

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Resolved
          is related to

          Bug - A problem that impairs or prevents the functions of the product. JBEAP-25256 Blank page after login to web console when is used OIDC and Java 17

          • Blocker - To be worked above all other priorities. This term is chosen when the severity of the issue is very high, has no workaround, or the effort for the change is comparatively low. Issues that may be very publicly visible and could generate significant media attention may also drive a higher priority.
          • Closed

          Activity

            People

              hpehl@redhat.com Harald Pehl
              fjuma1@redhat.com Farah Juma
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: