Handle csrf_detected error with omniauth and Keycloak
I am currently trying to use keycloak with a rails app using omniauth but without devise.
So here is my configuration:
Keycloak v22.0.3
omniauth-keycloak v1.5.1
omniauth v2.1.1
I followed everything from the omniauth and the keycloak-strategie documentation but I am currently facing an issue.
When I try to login my user, I received this error:
I tried to implement the rack_csrf from the omniauth documentation but it still does not work.
https://github.com/omniauth/omniauth#rack_csrf
my config/initializers/omniauth.rb file look like:
Rails.application.config.middleware.use OmniAuth::Builder do
options = {
site: 'http://localhost:8080', # L'URL de base de Keycloak
realm: 'SecondRealm', # Le nom de votre realm Keycloak
base_url: ''
}
provider :keycloak_openid, 'localApp', Rails.application.credentials.keycloak.client_secret, client_options: options,
name: 'keycloak'
end
OmniAuth::AuthenticityTokenProtection.default_options(key: "csrf.token", authenticity_param: "_csrf")
but it still does not work
So I tried to change the session management still from the omniauth documentation:
https://github.com/omniauth/omniauth#rails-api
My config/application.rb file look like that:
require_relative "boot"
require "rails/all"
Bundler.require(*Rails.groups)
module PocRailsReactKeycloak
class Application < Rails::Application
config.load_defaults 7.0
config.session_store :cookie_store, key: '_interslice_session'
config.middleware.use ActionDispatch::Cookies # Required for all session management
config.middleware.use ActionDispatch::Session::CookieStore, config.session_options
end
end
But it is still not working...
So if anyone has any clue about what can I do in order to make it work?
I have implemented this in Rails 7 application. I have used below gems for this
gem 'keycloak-api-rails',
gem 'omniauth',
gem 'omniauth-keycloak',
gem 'omniauth-rails_csrf_protection'
I think you need to add omniauth-rails_csrf_protection gem. Additionally while generating the login URL I have created state using SecureRandom.hex and stored it to session['omniauth.state'] = state and passed same state to login URL of Keycloak as well.
- Create a Grouping Column/Variable from other Columns in R
- Specify the height of the bars in the gglikert function in R
- modelsummary modelplot: change linewidth
- How to create a conditional panel using a reactive object that is passed from another module?
- renderHighchart output not displaying in Shiny App
- How can I specify GeoTiff configuration of PixelIsPoint when exporting a raster using R package terra?
- Create a list from a dataframe in R
- Fast way of converting large list to dataframe
- rintrojs only shows first dialog in Safari
- Automatically read a column of lowercases True and False as logical
- How do I add counts to a stacked bar graph?
- Counting the number of rows between each pair of months?
- Plot multiple normalized stock charts from different dates into a single plot
- Select columns based on string match - dplyr::select
- Looking for a more efficient way to replace matrix elements
- custom R function with group argument does not work while using the filter
- ggsurvplot function, risk table alignment problem
- plot running average in ggplot2
- Calling variable in df within function
- How to find position of running minimum (runMin) in a vector in R?
- Using httr2::last_response() in conjunction with purrr::possibly()
- Cropping a raster using terra does not return the expected extent
- Can janitor::clean_names be used on only certain columns in a data frame?
- Efficient way of row binding time series in a data.table, with correctly sorted timestamps
- Defining optional arguments in R when more complex function
- Can I change the cursor in plotly only when hovering over points?
- Issue Loading RStoolbox: "Cannot find proj.db" Error
- Filter CSV files for specific value before importing
- Matching the same lines from 2 different files and 2 columns
- Conditional coloring and outer borders in pdf KableExtra table in R