We have a simple requirement: PS : https: / === https: //
When a user clicks https: /company_landing.company.com, they should be redirected to the login page in keycloak (on the page https: /ourcompany-keycloak.company.com). The user enters their credentials to enter keycloak. After successfully logging in to keyclay, they will be presented on the company_landing page.
Problem:
When user types are https: /company_landing.company.com
Keycloak tries to display the landing page, but gives a 500 Internal server error and says “Wrong uri redirect”, and in the browser I see this:
Https: /ourcompany-keycloak.company.com/auth/realms/realm1/tokens/login client_id = company_dev & status = aaaafffff-559d-4312-a8be-123412341234 & redirect_uri = HTTP% 3A% 2F? % 2Fcompany_landing.company.com% 3A8081% 2F% 3Fauth_callback% 3D1
If you observe the uri redirection above, I think the problem is that instead of https, uri redirection starts with http and http: /company-landing.company.com does not exist.
Settings: Keyboard Settings: -
Realm -> settings -> login: require SSL = all Requests (also verified with "external")
Applications → realm1 → settings → Redirect URI = https://company_landing.company.com/ *
AWS Load Balancer: Port Configuration: 443 (https) Forwarding to 8443
I'm confused, why does it strip SSL? The above works fine when testing in a local environment (possibly because its http: // localhost ), but it always gives the wrong redirect URL when trying to access any link, i.e. ssl is encrypted.
-mm
source share