那些遇到过的问题

Keycloak 重定向 URI 提供 https://localhost 而不是 http://localhost

Cec*_*uez 5 java jboss cordova wildfly keycloak

我正在尝试在 Keycloak 上验证 Cordova Android 应用程序。

我之前提出过一个关于它的问题,但我在这里将其简化为仅提供要点,因为我在过去 2-3 天中发现了很多东西。

Cordova Android 应用程序中的网页不可用

尽管理论上它应该传回http://localhost/x/y/z但我却得到了https://localhost/x/y/z

这导致身份验证失败。

keycloak.js 内部:

ref.addEventListener('loaderror', function(event) {
                    if (!completed) {
                        if (event.url.indexOf('http://localhost') == 0) {
                            var callback = parseCallback(event.url);
                            processCallback(callback, promise);
                            closeBrowser();
                            completed = true;
                        } else {
                            promise.setError();
                            closeBrowser();
                        }
                    }
                });
Run Code Online (Sandbox Code Playgroud)

由于我的本地主机将访问 https://,而不是 http://,因此引发此错误

这是返回示例:

https://localhost/#state=3bc5b8e8-ee17-4c78-861c-6fa62f5e353b&session_state=43d5518d-c278-4245-b181-899783fd2c6b&code=8e50a9c0-d1a6-4ecd-8e91-e85d92350900.43d5518d-c278-4245-b181-899783fd2c6b.863570ca-9c62-41a5-97bb-33880fe6c62d
Run Code Online (Sandbox Code Playgroud)

我正在尝试这个:

keycloak.init({ onLoad: "check-sso", redirectUri: "http://localhost" })
Run Code Online (Sandbox Code Playgroud)

我强烈猜测这可能是由于我的standalone.xml 设置造成的(我已经包含了完整的内容,因为我不知道可能导致问题的原因):

<?xml version='1.0' encoding='UTF-8'?> 

<server xmlns="urn:jboss:domain:8.0"> 
<extensions> 
<extension module="org.jboss.as.clustering.infinispan"/> 
<extension module="org.jboss.as.connector"/> 
<extension module="org.jboss.as.deployment-scanner"/> 
<extension module="org.jboss.as.ee"/> 
<extension module="org.jboss.as.ejb3"/> 
<extension module="org.jboss.as.jaxrs"/> 
<extension module="org.jboss.as.jmx"/> 
<extension module="org.jboss.as.jpa"/> 
<extension module="org.jboss.as.logging"/> 
<extension module="org.jboss.as.mail"/> 
<extension module="org.jboss.as.naming"/> 
<extension module="org.jboss.as.remoting"/> 
<extension module="org.jboss.as.security"/> 
<extension module="org.jboss.as.transactions"/> 
<extension module="org.keycloak.keycloak-server-subsystem"/> 
<extension module="org.wildfly.extension.bean-validation"/> 
<extension module="org.wildfly.extension.core-management"/> 
<extension module="org.wildfly.extension.elytron"/> 
<extension module="org.wildfly.extension.io"/> 
<extension module="org.wildfly.extension.request-controller"/> 
<extension module="org.wildfly.extension.security.manager"/> 
<extension module="org.wildfly.extension.undertow"/> 
</extensions> 
<management> 
<security-realms> 
<security-realm name="ManagementRealm"> 
<authentication> 
<local default-user="$local" skip-group-loading="true"/> 
<properties path="mgmt-users.properties" relative-to="jboss.server.config.dir"/> 
</authentication> 
<authorization map-groups-to-roles="false"> 
<properties path="mgmt-groups.properties" relative-to="jboss.server.config.dir"/> 
</authorization> 
</security-realm> 
<security-realm name="ApplicationRealm"> 
<server-identities> 
<ssl> 
<keystore path="application.keystore" relative-to="jboss.server.config.dir" keystore-password="password" alias="server" key-password="password" generate-self-signed-certificate-host="localhost"/> 
</ssl> 
</server-identities> 
<authentication> 
<local default-user="$local" allowed-users="*" skip-group-loading="true"/> 
<properties path="application-users.properties" relative-to="jboss.server.config.dir"/> 
</authentication> 
<authorization> 
<properties path="application-roles.properties" relative-to="jboss.server.config.dir"/> 
</authorization> 
</security-realm> 
</security-realms> 
<audit-log> 
<formatters> 
<json-formatter name="json-formatter"/> 
</formatters> 
<handlers> 
<file-handler name="file" formatter="json-formatter" path="audit-log.log" relative-to="jboss.server.data.dir"/> 
</handlers> 
<logger log-boot="true" log-read-only="false" enabled="false"> 
<handlers> 
<handler name="file"/> 
</handlers> 
</logger> 
</audit-log> 
<management-interfaces> 
<http-interface security-realm="ManagementRealm"> 
<http-upgrade enabled="true"/> 
<socket-binding http="management-http"/> 
</http-interface> 
</management-interfaces> 
<access-control provider="simple"> 
<role-mapping> 
<role name="SuperUser"> 
<include> 
<user name="$local"/> 
</include> 
</role> 
</role-mapping> 
</access-control> 
</management> 
<profile> 
<subsystem xmlns="urn:jboss:domain:logging:6.0"> 
<console-handler name="CONSOLE"> 
<level name="INFO"/> 
<formatter> 
<named-formatter name="COLOR-PATTERN"/> 
</formatter> 
</console-handler> 
<periodic-rotating-file-handler name="FILE" autoflush="true"> 
<formatter> 
<named-formatter name="PATTERN"/> 
</formatter> 
<file relative-to="jboss.server.log.dir" path="server.log"/> 
<suffix value=".yyyy-MM-dd"/> 
<append value="true"/> 
</periodic-rotating-file-handler> 
<logger category="com.arjuna"> 
<level name="WARN"/> 
</logger> 
<logger category="org.jboss.as.config"> 
<level name="DEBUG"/> 
</logger> 
<logger category="sun.rmi"> 
<level name="WARN"/> 
</logger> 
<root-logger> 
<level name="INFO"/> 
<handlers> 
<handler name="CONSOLE"/> 
<handler name="FILE"/> 
</handlers> 
</root-logger> 
<formatter name="PATTERN"> 
<pattern-formatter pattern="%d{yyyy-MM-dd HH:mm:ss,SSS} %-5p [%c] (%t) %s%e%n"/> 
</formatter> 
<formatter name="COLOR-PATTERN"> 
<pattern-formatter pattern="%K{level}%d{HH:mm:ss,SSS} %-5p [%c] (%t) %s%e%n"/> 
</formatter> 
</subsystem> 
<subsystem xmlns="urn:jboss:domain:bean-validation:1.0"/> 
<subsystem xmlns="urn:jboss:domain:core-management:1.0"/> 
<subsystem xmlns="urn:jboss:domain:datasources:5.0"> 
<datasources> 
<datasource jndi-name="java:jboss/datasources/KeycloakDS" pool-name="KeycloakDS" enabled="true" use-java-context="true"> 
<connection-url>jdbc:postgresql://cactus-stg-postgres.caxdkvuertc9.us-west-1.rds.amazonaws.com:5432/keycloak</connection-url> 
<driver>postgresql</driver> 
<pool> 
<flush-strategy>IdleConnections</flush-strategy> 
</pool> 
<security> 
<user-name>cactusmedia</user-name> 
<password>caCt1Bl0om</password> 
</security> 
<validation> 
<valid-connection-checker class-name="org.jboss.jca.adapters.jdbc.extensions.postgres.PostgreSQLValidConnectionChecker"/> 
<background-validation>true</background-validation> 
<exception-sorter class-name="org.jboss.jca.adapters.jdbc.extensions.postgres.PostgreSQLExceptionSorter"/> 
</validation> 
</datasource> 
<drivers> 
<driver name="postgresql" module="org.postgresql.jdbc"> 
<xa-datasource-class>org.postgresql.xa.PGXADataSource</xa-datasource-class> 
</driver> 
</drivers> 
</datasources> 
</subsystem> 
<subsystem xmlns="urn:jboss:domain:deployment-scanner:2.0"> 
<deployment-scanner path="deployments" relative-to="jboss.server.base.dir" scan-interval="5000" runtime-failure-causes-rollback="${jboss.deployment.scanner.rollback.on.failure:false}"/> 
</subsystem> 
<subsystem xmlns="urn:jboss:domain:ee:4.0"> 
<spec-descriptor-property-replacement>false</spec-descriptor-property-replacement> 
<concurrent> 
<context-services> 
<context-service name="default" jndi-name="java:jboss/ee/concurrency/context/default" use-transaction-setup-provider="true"/> 
</context-services> 
<managed-thread-factories> 
<managed-thread-factory name="default" jndi-name="java:jboss/ee/concurrency/factory/default" context-service="default"/> 
</managed-thread-factories> 
<managed-executor-services> 
<managed-executor-service name="default" jndi-name="java:jboss/ee/concurrency/executor/default" context-service="default" hung-task-threshold="60000" keepalive-time="5000"/> 
</managed-executor-services> 
<managed-scheduled-executor-services> 
<managed-scheduled-executor-service name="default" jndi-name="java:jboss/ee/concurrency/scheduler/default" context-service="default" hung-task-threshold="60000" keepalive-time="3000"/> 
</managed-scheduled-executor-services> 
</concurrent> 
<default-bindings context-service="java:jboss/ee/concurrency/context/default" datasource="java:jboss/datasources/KeycloakDS" managed-executor-service="java:jboss/ee/concurrency/executor/default" managed-scheduled-executor-service="java:jboss/ee/concurrency/scheduler/default" managed-thread-factory="java:jboss/ee/concurrency/factory/default"/> 
</subsystem> 
<subsystem xmlns="urn:jboss:domain:ejb3:5.0"> 
<session-bean> 
<stateless> 
<bean-instance-pool-ref pool-name="slsb-strict-max-pool"/> 
</stateless> 
<stateful default-access-timeout="5000" cache-ref="simple" passivation-disabled-cache-ref="simple"/> 
<singleton default-access-timeout="5000"/> 
</session-bean> 
<pools> 
<bean-instance-pools> 
<strict-max-pool name="slsb-strict-max-pool" derive-size="from-worker-pools" instance-acquisition-timeout="5" instance-acquisition-timeout-unit="MINUTES"/> 
<strict-max-pool name="mdb-strict-max-pool" derive-size="from-cpu-count" instance-acquisition-timeout="5" instance-acquisition-timeout-unit="MINUTES"/> 
</bean-instance-pools> 
</pools> 
<caches> 
<cache name="simple"/> 
<cache name="distributable" passivation-store-ref="infinispan" aliases="passivating clustered"/> 
</caches> 
<passivation-stores> 
<passivation-store name="infinispan" cache-container="ejb" max-size="10000"/> 
</passivation-stores> 
<async thread-pool-name="default"/> 
<timer-service thread-pool-name="default" default-data-store="default-file-store"> 
<data-stores> 
<file-data-store name="default-file-store" path="timer-service-data" relative-to="jboss.server.data.dir"/> 
</data-stores> 
</timer-service> 
<remote connector-ref="http-remoting-connector" thread-pool-name="default"> 
<channel-creation-options> 
<option name="READ_TIMEOUT" value="${prop.remoting-connector.read.timeout:20}" type="xnio"/> 
<option name="MAX_OUTBOUND_MESSAGES" value="1234" type="remoting"/> 
</channel-creation-options> 
</remote> 
<thread-pools> 
<thread-pool name="default"> 
<max-threads count="10"/> 
<keepalive-time time="100" unit="milliseconds"/> 
</thread-pool> 
</thread-pools> 
<default-security-domain value="other"/> 
<default-missing-method-permissions-deny-access value="true"/> 
<log-system-exceptions value="true"/> 
</subsystem> 
<subsystem xmlns="urn:wildfly:elytron:4.0" final-providers="combined-providers" disallowed-providers="OracleUcrypto"> 
<providers> 
<aggregate-providers name="combined-providers"> 
<providers name="elytron"/> 
<providers name="openssl"/> 
</aggregate-providers> 
<provider-loader name="elytron" module="org.wildfly.security.elytron"/> 
<provider-loader name="openssl" module="org.wildfly.openssl"/> 
</providers> 
<audit-logging> 
<file-audit-log name="local-audit" path="audit.log" relative-to="jboss.server.log.dir" format="JSON"/> 
</audit-logging> 
<security-domains> 
<security-domain name="ApplicationDomain" default-realm="ApplicationRealm" permission-mapper="default-permission-mapper"> 
<realm name="ApplicationRealm" role-decoder="groups-to-roles"/> 
<realm name="local"/> 
</security-domain> 
<security-domain name="ManagementDomain" default-realm="ManagementRealm" permission-mapper="default-permission-mapper"> 
<realm name="ManagementRealm" role-decoder="groups-to-roles"/> 
<realm name="local" role-mapper="super-user-mapper"/> 
</security-domain> 
</security-domains> 
<security-realms> 
<identity-realm name="local" identity="$local"/> 
<properties-realm name="ApplicationRealm"> 
<users-properties path="application-users.properties" relative-to="jboss.server.config.dir" digest-realm-name="ApplicationRealm"/> 
<groups-properties path="application-roles.properties" relative-to="jboss.server.config.dir"/> 
</properties-realm> 
<properties-realm name="ManagementRealm"> 
<users-properties path="mgmt-users.properties" relative-to="jboss.server.config.dir" digest-realm-name="ManagementRealm"/> 
<groups-properties path="mgmt-groups.properties" relative-to="jboss.server.config.dir"/> 
</properties-realm> 
</security-realms> 
<mappers> 
<simple-permission-mapper name="default-permission-mapper" mapping-mode="first"> 
<permission-mapping match-all="true"> 
<permission-set name="login-permission"/> 
<permission-set name="default-permissions"/> 
</permission-mapping> 
<permission-mapping> 
<principal name="anonymous"/> 
<permission-set name="default-permissions"/> 
</permission-mapping> 
</simple-permission-mapper> 
<constant-realm-mapper name="local" realm-name="local"/> 
<simple-role-decoder name="groups-to-roles" attribute="groups"/> 
<constant-role-mapper name="super-user-mapper"> 
<role name="SuperUser"/> 
</constant-role-mapper> 
</mappers> 
<permission-sets> 
<permission-set name="login-permission"> 
<permission class-name="org.wildfly.security.auth.permission.LoginPermission"/> 
</permission-set> 
<permission-set name="default-permissions"> 
<permission class-name="org.wildfly.extension.batch.jberet.deployment.BatchPermission" module="org.wildfly.extension.batch.jberet" target-name="*"/> 
<permission class-name="org.wildfly.transaction.client.RemoteTransactionPermission" module="org.wildfly.transaction.client"/> 
<permission class-name="org.jboss.ejb.client.RemoteEJBPermission" module="org.jboss.ejb-client"/> 
</permission-set> 
</permission-sets> 
<http> 
<http-authentication-factory name="management-http-authentication" security-domain="ManagementDomain" http-server-mechanism-factory="global"> 
<mechanism-configuration> 
<mechanism mechanism-name="DIGEST"> 
<mechanism-realm realm-name="ManagementRealm"/> 
</mechanism> 
</mechanism-configuration> 
</http-authentication-factory> 
<provider-http-server-mechanism-factory name="global"/> 
</http> 
<sasl> 
<sasl-authentication-factory name="management-sasl-authentication" sasl-server-factory="configured" security-domain="ManagementDomain"> 
<mechanism-configuration> 
<mechanism mechanism-name="JBOSS-LOCAL-USER" realm-mapper="local"/> 
<mechanism mechanism-name="DIGEST-MD5"> 
<mechanism-realm realm-name="ManagementRealm"/> 
</mechanism> 
</mechanism-configuration> 
</sasl-authentication-factory> 
<sasl-authentication-factory name="application-sasl-authentication" sasl-server-factory="configured" security-domain="ApplicationDomain">
<mechanism-configuration> 
<mechanism mechanism-name="JBOSS-LOCAL-USER" realm-mapper="local"/> 
<mechanism mechanism-name="DIGEST-MD5"> 
<mechanism-realm realm-name="ApplicationRealm"/> 
</mechanism> 
</mechanism-configuration> 
</sasl-authentication-factory> 
<configurable-sasl-server-factory name="configured" sasl-server-factory="elytron"> 
<properties> 
<property name="wildfly.sasl.local-user.default-user" value="$local"/> 
</properties> 
</configurable-sasl-server-factory> 
<mechanism-provider-filtering-sasl-server-factory name="elytron" sasl-server-factory="global"> 
<filters> 
<filter provider-name="WildFlyElytron"/> 
</filters> 
</mechanism-provider-filtering-sasl-server-factory> 
<provider-sasl-server-factory name="global"/> 
</sasl> 
</subsystem> 
<subsystem xmlns="urn:jboss:domain:infinispan:7.0"> 
<cache-container name="keycloak"> 
<local-cache name="realms"> 
<object-memory size="10000"/> 
</local-cache> 
<local-cache name="users"> 
<object-memory size="10000"/> 
</local-cache> 
<local-cache name="sessions"/> 
<local-cache name="offlineSessions"/> 
<local-cache name="loginFailures"/> 
<local-cache name="work"/> 
<local-cache name="authorization"> 
<object-memory size="10000"/> 
</local-cache> 
<local-cache name="keys"> 
<object-memory size="1000"/> 
<expiration max-idle="3600000"/> 
</local-cache> 
<local-cache name="authenticationSessions"/> 
<local-cache name="actionTokens"> 
<object-memory size="-1"/> 
<expiration interval="300000" max-idle="-1"/> 
</local-cache> 
<local-cache name="offlineClientSessions"/> 
<local-cache name="clientSessions"/> 
</cache-container> 
<cache-container name="server" default-cache="default" module="org.wildfly.clustering.server"> 
<local-cache name="default"> 
<transaction mode="BATCH"/> 
</local-cache> 
</cache-container> 
<cache-container name="web" default-cache="passivation" module="org.wildfly.clustering.web.infinispan"> 
<local-cache name="passivation"> 
<locking isolation="REPEATABLE_READ"/> 
<transaction mode="BATCH"/> 
<file-store passivation="true" purge="false"/> 
</local-cache> 
</cache-container> 
<cache-container name="ejb" aliases="sfsb" default-cache="passivation" module="org.wildfly.clustering.ejb.infinispan"> 
<local-cache name="passivation"> 
<locking isolation="REPEATABLE_READ"/> 
<transaction mode="BATCH"/> 
<file-store passivation="true" purge="false"/> 
</local-cache> 
</cache-container> 
<cache-container name="hibernate" module="org.infinispan.hibernate-cache"> 
<local-cache name="entity"> 
<transaction mode="NON_XA"/> 
<object-memory size="10000"/> 
<expiration max-idle="100000"/> 
</local-cache> 
<local-cache name="local-query"> 
<object-memory size="10000"/> 
<expiration max-idle="100000"/> 
</local-cache> 
<local-cache name="timestamps"/> 
</cache-container> 
</subsystem> 
<subsystem xmlns="urn:jboss:domain:io:3.0"> 
<worker name="default"/> 
<buffer-pool name="default"/> 
</subsystem> 
<subsystem xmlns="urn:jboss:domain:jaxrs:1.0"/> 
<subsystem xmlns="urn:jboss:domain:jca:5.0"> 
<archive-validation enabled="true" fail-on-error="true" fail-on-warn="false"/> 
<bean-validation enabled="true"/> 
<default-workmanager> 
<short-running-threads> 
<core-threads count="50"/> 
<queue-length count="50"/> 
<max-threads count="50"/> 
<keepalive-time time="10" unit="seconds"/> 
</short-running-threads> 
<long-running-threads> 
<core-th

归档时间:

查看次数:

3553 次

最近记录:

4 年,9 月 前
相关归档
是什么原因导致我无法在Java中创建通用数组类型? 259
通过谓词限制流 179
更新到 Spring Security 6.0 - 替换已删除和已弃用的功能以保护请求 68
Java计算String的SHA-1摘要的十六进制表示 58
Java解析XML文档给出了"prolog中不允许的内容".错误 49
如何将String拆分为字符串流? 49
window.close等效于Phonegap与InAppBrowser 16
将Phonegap项目从3.0更新到3.1 7
在PhoneGap的情况下,HTML5 SQLite与本机数据库 6
Arquillian with Wildfly 8.0.0.Final Managed not working 3
难疑归档
如何从JavaScript对象中删除属性? 5813
如何在PHP中阻止SQL注入? 2776
在JavaScript中创建多行字符串 2412
Java中的"实现Runnable"与"扩展线程" 2023
如何使div 100%的浏览器窗口高度? 2016
你如何改变用matplotlib绘制的数字的大小? 1726
PowerShell说"在这个系统上禁用了脚本的执行." 1545
<meta charset ="utf-8"> vs <meta http-equiv ="Content-Type"> 1499
enctype ='multipart/form-data'是什么意思? 1290
创建将T限制为枚举的通用方法 1122