Passing Bearer token from kong to keycloak to be authenticated and then procceds to api call
I have set up keycloak-oidc on kong, and I have a protected API behind kong. I am able to call keycloak through kong because I added a filter /auth/*. Below is my oidc configuration for keycloak.
I configured my REALM and CLIENT_ID on keycloak as follows:
When I call the protected API with Bearer token acquired from keycloak, I am unable to reach the protcted API as Keycloak returns
{ "error": "invalid_request", "error_description": "Missing parameter: username" }
I have turned off the Standard Flow, yet I am unable to get authenticated by keyclaok and be passed on to the protected API.
Please what am I doing wrong?
First of all, I had to upgrade my kong-oidc from kong-oidc 1.0.1 to kong-oidc 1.1.0, then I simply just updated my introspection endpoint in the oidc plugin configuration as shown below, in the images I shared in the question above, the introspection endpoint field was not present and hence could not be set until after the upgrade
- Keycloak: REST url for custom endpoint
- Keycloak move from 23.0 to 24.0: Account is not fully set up [invalid_grant]
- Keycloak Add user's name in email theme template
- Refresh access_token via refresh_token in Keycloak
- What is the uma_authorization role in Keycloak?
- Do Keycloak Clients have a Client Secret?
- Keycloak empty h2 database
- Keycloak, not returning access token if update password action selected
- JWKS URI missing in JWT based on Keycloak Client
- Generate JWT Token in Keycloak and get public key to verify the JWT token on a third party platform
- Keycloak: Access token validation end point
- keycloak-angular with standalone components this._instance undefined causing TypeError on login()
- Keycloak-gatekeeper: 'aud' claim and 'client_id' do not match
- Iss claim not valid Keycloak
- React app navigation after authentication via keycloak
- How to load initial realm in keycloak server with docker?
- Keycloak lost admin password
- Second login with remote IdP through Keycloak fails, "Invalid username or password"
- Spring boot application won't start after adding keycloak integration
- Error "Session doesn't have required client" when using refresh token to renew an access token in Keycloak with React public client having useEffect
- React nextjs app with next-auth in docker: connection refused 127.0.0.1
- Use variable in Keycloak email subject
- Keycloak Account API returns Unauthorized 401 with token from user logged in via my spring client
- Best Practices for Associating userId (from JWT) with Google OAuth Tokens
- How to keep the realms, users and roles in Keycloak to be persisted when using docker and docker compose to run it
- Keycloak not accepting a/any custom LoginFormsProviders
- keycloak token introspection always fails with {"active":false}
- Enable "Extend to children" doesn't work - Keycloak UI
- Role-based authentication not working with Keycloak and Java Spring
- Keycloak error on console " violating Content Security Policy directive: "frame-ancestors 'self'"