5 Replies Latest reply on May 19, 2015 6:13 PM by Hristo Stoyanov

    Errai 3.2.0-SNAPSHOT and Keycloack 1.2.0.RC1 - security demo failure and other questions

    Hristo Stoyanov Master

      Hi all,

      I tried to deploy the Errai security demo for Keycloack as described in the README.md file, When I click on the "or log in with Keycloak" link,

      I am jumping to KC, but there I see an error message:

      .....

      we are sorry

      Invalid parameter: redirect_url

      ....

       

      Is Errai 3.2.0-SNAPSHOT still dependent on an old version of KC (1.0.4), which will not  be supported? If so, are there any plans to upgrade? Or am I doing something wrong?

       

      Here is what I see when I open the network tab in Chrome:

       

      Request headers:

      GET /auth/realms/demo/protocol/openid-connect/auth?response_type=code&client_id=errai-security-demo&redirect_uri=http%3A%2F%2Flocalhost%3A8080%2Ferrai-security-demo%2Fapp-login&state=100%2Ffdc02daa-3fa9-4bee-8682-3b58f2f93769&login=true HTTP/1.1

      Host: localhost:8080

      Connection: keep-alive

      Pragma: no-cache

      Cache-Control: no-cache

      Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8

      User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.152 Safari/537.36

      Referer: http://localhost:8080/errai-security-demo/

      Accept-Encoding: gzip, deflate, sdch

      Accept-Language: en-US,en;q=0.8

      Cookie: KEYCLOAK_LOCALE=en

       

      Response headers:

      HTTP/1.1 500 Internal Server Error

      X-Powered-By: Undertow/1

      Set-Cookie: KEYCLOAK_LOCALE=en; Version=1; Path=/auth/realms/demo; Max-Age=31536000

      Server: WildFly/8

      X-Frame-Options: SAMEORIGIN

      Content-Security-Policy: frame-src 'self'

      Date: Fri, 15 May 2015 07:06:50 GMT

      Connection: keep-alive

      Content-Type: text/html

      Content-Length: 1924

       

      Response content:

      We're sorry ...

       

       

        • 1. Re: Errai 3.2.0-SNAPSHOT and Keycloack 1.2.0.RC1 - security demo failure and other questions
          Christian Sadilek Master

          Hi,

           

          The last version we tested this with successfully was KeyCloak 1.1.0.

           

          KC 1.2.0 has just been out for about a month. We'll try to upgrade, but for now you would have to use 1.1.0.

           

          Cheers,

          Christian

          • 3. Re: Errai 3.2.0-SNAPSHOT and Keycloack 1.2.0.RC1 - security demo failure and other questions
            Hristo Stoyanov Master

            Christian,

            I noticed that the security demo in 3.2.-SHNAPSHOT is compiled against KC 1.0.4, not even 1.1.0:

             

            [INFO]

            [INFO] --- maven-dependency-plugin:2.8:tree (default-cli) @ errai-security-demo ---

            [INFO] org.jboss.errai:errai-security-demo:war:3.2.0-SNAPSHOT

            [INFO] +- org.jboss.errai:errai-javaee-all:jar:3.2.0-SNAPSHOT:compile

            [INFO] |  +- org.jboss.errai:errai-bus:jar:3.2.0-SNAPSHOT:compile

            [INFO] |  |  +- org.jboss.errai:errai-config:jar:3.2.0-SNAPSHOT:compile

            [INFO] |  |  +- com.google.inject:guice:jar:3.0:compile

            [INFO] |  |  |  \- aopalliance:aopalliance:jar:1.0:compile

            [INFO] |  |  +- org.mvel:mvel2:jar:2.1.7.Final:compile

            [INFO] |  |  \- org.jgroups:jgroups:jar:3.2.13.Final:compile

            [INFO] |  +- org.jboss.errai:errai-ioc:jar:3.2.0-SNAPSHOT:compile

            [INFO] |  +- org.jboss.errai:errai-cdi-client:jar:3.2.0-SNAPSHOT:compile

            [INFO] |  +- org.jboss.errai:errai-jpa-datasync:jar:3.2.0-SNAPSHOT:compile

            [INFO] |  +- org.jboss.errai:errai-jaxrs-provider:jar:3.2.0-SNAPSHOT:compile

            [INFO] |  +- org.jboss.errai:errai-weld-integration:jar:3.2.0-SNAPSHOT:compile

            [INFO] |  +- org.jboss.errai:errai-marshalling:jar:3.2.0-SNAPSHOT:compile

            [INFO] |  +- org.jboss.errai:errai-validation:jar:3.2.0-SNAPSHOT:compile

            [INFO] |  +- javax.validation:validation-api:jar:sources:1.0.0.GA:compile

            [INFO] |  \- org.hibernate:hibernate-validator:jar:sources:4.1.0.Final:compile

            [INFO] +- org.jboss.spec:jboss-javaee-6.0:pom:3.0.1.Final:provided

            [INFO] |  +- javax.activation:activation:jar:1.1.1:provided

            [INFO] |  +- javax.jws:jsr181-api:jar:1.0-MR1:provided

            [INFO] |  +- javax.mail:mail:jar:1.4.5:provided

            [INFO] |  +- org.jboss.spec.javax.annotation:jboss-annotations-api_1.1_spec:jar:1.0.1.Final:provided

            [INFO] |  +- org.jboss.spec.javax.ejb:jboss-ejb-api_3.1_spec:jar:1.0.2.Final:provided

            [INFO] |  +- org.jboss.spec.javax.el:jboss-el-api_2.2_spec:jar:1.0.1.Final:provided

            [INFO] |  +- org.jboss.spec.javax.enterprise.deploy:jboss-jad-api_1.2_spec:jar:1.0.1.Final:provided

            [INFO] |  +- org.jboss.spec.javax.faces:jboss-jsf-api_2.1_spec:jar:2.0.2.Final:provided

            [INFO] |  +- org.jboss.spec.javax.interceptor:jboss-interceptors-api_1.1_spec:jar:1.0.1.Final:provided

            [INFO] |  +- org.jboss.spec.javax.management.j2ee:jboss-j2eemgmt-api_1.1_spec:jar:1.0.1.Final:provided

            [INFO] |  +- org.jboss.spec.javax.resource:jboss-connector-api_1.6_spec:jar:1.0.1.Final:provided

            [INFO] |  +- org.jboss.spec.javax.security.jacc:jboss-jacc-api_1.4_spec:jar:1.0.2.Final:provided

            [INFO] |  +- org.jboss.spec.javax.security.auth.message:jboss-jaspi-api_1.0_spec:jar:1.0.1.Final:provided

            [INFO] |  +- org.jboss.spec.javax.xml.registry:jboss-jaxr-api_1.0_spec:jar:1.0.2.Final:provided

            [INFO] |  +- org.jboss.spec.javax.jms:jboss-jms-api_1.1_spec:jar:1.0.1.Final:provided

            [INFO] |  +- org.jboss.spec.javax.servlet:jboss-servlet-api_3.0_spec:jar:1.0.0.Final:provided

            [INFO] |  +- org.jboss.spec.javax.servlet.jsp:jboss-jsp-api_2.2_spec:jar:1.0.1.Final:provided

            [INFO] |  +- org.jboss.spec.javax.servlet.jstl:jboss-jstl-api_1.2_spec:jar:1.1.2.Final:provided

            [INFO] |  |  +- org.jboss.spec.javax.el:jboss-el-api_3.0_spec:jar:1.0.4.Final:provided

            [INFO] |  |  +- org.jboss.spec.javax.servlet:jboss-servlet-api_3.1_spec:jar:1.0.0.Final:provided

            [INFO] |  |  \- org.jboss.spec.javax.servlet.jsp:jboss-jsp-api_2.3_spec:jar:1.0.1.Final:provided

            [INFO] |  +- org.jboss.spec.javax.transaction:jboss-transaction-api_1.1_spec:jar:1.0.1.Final:provided

            [INFO] |  +- org.jboss.spec.javax.ws.rs:jboss-jaxrs-api_1.1_spec:jar:1.0.1.Final:provided

            [INFO] |  +- org.jboss.spec.javax.xml.bind:jboss-jaxb-api_2.2_spec:jar:1.0.4.Final:provided

            [INFO] |  +- org.jboss.spec.javax.xml.rpc:jboss-jaxrpc-api_1.1_spec:jar:1.0.1.Final:provided

            [INFO] |  +- org.jboss.spec.javax.xml.soap:jboss-saaj-api_1.3_spec:jar:1.0.3.Final:provided

            [INFO] |  \- org.jboss.spec.javax.xml.ws:jboss-jaxws-api_2.2_spec:jar:2.0.2.Final:provided

            [INFO] +- org.jboss.errai:errai-security-client:jar:3.2.0-SNAPSHOT:provided

            [INFO] |  +- org.jboss.errai:errai-common:jar:3.2.0-SNAPSHOT:compile

            [INFO] |  |  +- org.jboss.errai.reflections:reflections:jar:3.2.0-SNAPSHOT:compile

            [INFO] |  |  \- commons-lang:commons-lang:jar:2.6:compile

            [INFO] |  +- javax.el:el-api:jar:2.2:provided

            [INFO] |  \- org.jboss.errai:errai-ioc-bus-support:jar:3.2.0-SNAPSHOT:compile

            [INFO] +- org.jboss.errai:errai-security-server:jar:3.2.0-SNAPSHOT:compile

            [INFO] |  +- org.apache.deltaspike.core:deltaspike-core-api:jar:1.2.1:compile

            [INFO] |  \- org.jsoup:jsoup:jar:1.7.1:compile

            [INFO] +- org.jboss.errai:errai-security-keycloak:jar:3.2.0-SNAPSHOT:compile

            [INFO] |  +- javax.servlet:javax.servlet-api:jar:3.0.1:compile

            [INFO] |  +- org.keycloak:keycloak-core:jar:1.0.4.Final:compile

            [INFO] |  +- org.keycloak:keycloak-adapter-core:jar:1.0.4.Final:compile

            [INFO] |  +- org.keycloak:keycloak-servlet-oauth-client:jar:1.0.4.Final:compile

            [INFO] |  \- org.apache.httpcomponents:httpclient:jar:4.3.6:compile

            [INFO] |     +- org.apache.httpcomponents:httpcore:jar:4.2.1:compile

            [INFO] |     +- commons-logging:commons-logging:jar:1.1.1:compile

            [INFO] |     \- commons-codec:commons-codec:jar:1.4:compile

            [INFO] +- org.jboss.errai:errai-security-picketlink:jar:3.2.0-SNAPSHOT:compile

            [INFO] |  +- org.picketlink:picketlink-api:jar:2.6.0.Final:compile

            [INFO] |  |  \- org.picketlink:picketlink-idm-api:jar:2.7.0.Beta1:compile

            [INFO] |  \- org.picketlink:picketlink-impl:jar:2.6.0.Final:compile

            [INFO] |     +- org.picketlink:picketlink-common:jar:2.7.0.Beta1:compile

            [INFO] |     \- org.picketlink:picketlink-idm-impl:jar:2.7.0.Beta1:compile

            [INFO] +- org.slf4j:slf4j-api:jar:1.7.2:compile

            [INFO] +- org.slf4j:slf4j-log4j12:jar:1.7.2:compile

            [INFO] |  \- log4j:log4j:jar:1.2.17:compile

            [INFO] +- com.google.gwt:gwt-user:jar:2.7.0:provided

            [INFO] +- org.jboss.errai:errai-cdi-jboss:jar:3.2.0-SNAPSHOT:provided

            [INFO] |  +- org.jboss.errai:errai-client-local-class-hider:jar:3.2.0-SNAPSHOT:provided

            [INFO] |  |  \- org.ow2.asm:asm:jar:5.0.3:provided

            [INFO] |  +- org.wildfly:wildfly-cli:jar:8.0.0.Final:provided

            [INFO] |  |  +- org.jboss.aesh:aesh:jar:0.33.11:provided

            [INFO] |  |  |  \- org.fusesource.jansi:jansi:jar:1.9:provided

            [INFO] |  |  +- org.jboss:staxmapper:jar:1.1.0.Final:provided

            [INFO] |  |  +- org.wildfly:wildfly-controller-client:jar:8.0.0.Final:provided

            [INFO] |  |  |  +- org.wildfly:wildfly-protocol:jar:8.0.0.Final:provided

            [INFO] |  |  |  +- org.jboss:jboss-dmr:jar:1.2.0.Final:provided

            [INFO] |  |  |  \- org.jboss.threads:jboss-threads:jar:2.1.1.Final:provided

            [INFO] |  |  +- org.wildfly.security:wildfly-security-manager:jar:1.0.0.Final:provided

            [INFO] |  |  +- org.jboss.sasl:jboss-sasl:jar:1.0.4.Final:provided

            [INFO] |  |  +- org.jboss.remoting:jboss-remoting:jar:4.0.0.Final:provided

            [INFO] |  |  |  \- org.jboss.xnio:xnio-api:jar:3.2.0.Final:provided

            [INFO] |  |  +- org.jboss.remotingjmx:remoting-jmx:jar:2.0.0.Final:provided

            [INFO] |  |  |  +- org.jboss.marshalling:jboss-marshalling:jar:1.4.2.Final:provided

            [INFO] |  |  |  +- org.jboss.marshalling:jboss-marshalling-river:jar:1.4.2.Final:provided

            [INFO] |  |  |  \- org.jboss.xnio:xnio-nio:jar:3.2.0.Final:provided

            [INFO] |  |  +- org.jboss:jboss-vfs:jar:3.0.1.GA:provided

            [INFO] |  |  +- org.picketbox:picketbox:jar:4.0.20.Final:provided

            [INFO] |  |  \- sun.jdk:jconsole:jar:jdk:system

            [INFO] |  +- org.wildfly:wildfly-embedded:jar:8.1.0.Final:provided

            [INFO] |  |  +- org.wildfly:wildfly-server:jar:8.1.0.Final:provided

            [INFO] |  |  |  +- org.wildfly:wildfly-controller:jar:8.1.0.Final:provided

            [INFO] |  |  |  |  \- org.wildfly:wildfly-core-security:jar:8.1.0.Final:provided

            [INFO] |  |  |  |     \- org.wildfly:wildfly-core-security-api:jar:8.1.0.Final:provided

            [INFO] |  |  |  +- org.wildfly:wildfly-domain-http-interface:jar:8.1.0.Final:provided

            [INFO] |  |  |  |  \- org.wildfly:wildfly-domain-management:jar:8.1.0.Final:provided

            [INFO] |  |  |  |     \- org.jboss:jboss-common-core:jar:2.2.17.GA:provided

            [INFO] |  |  |  +- org.wildfly:wildfly-deployment-repository:jar:8.1.0.Final:provided

            [INFO] |  |  |  +- org.wildfly:wildfly-patching:jar:8.1.0.Final:provided

            [INFO] |  |  |  +- org.wildfly:wildfly-platform-mbean:jar:8.1.0.Final:provided

            [INFO] |  |  |  +- org.wildfly:wildfly-process-controller:jar:8.1.0.Final:provided

            [INFO] |  |  |  +- org.wildfly:wildfly-remoting:jar:8.1.0.Final:provided

            [INFO] |  |  |  |  \- org.wildfly:wildfly-io:jar:8.1.0.Final:provided

            [INFO] |  |  |  +- org.wildfly:wildfly-network:jar:8.1.0.Final:provided

            [INFO] |  |  |  +- org.wildfly:wildfly-version:jar:8.1.0.Final:provided

            [INFO] |  |  |  +- org.jboss.invocation:jboss-invocation:jar:1.2.1.Final:provided

            [INFO] |  |  |  +- org.jboss.logmanager:jboss-logmanager:jar:1.5.2.Final:provided

            [INFO] |  |  |  +- org.jboss.msc:jboss-msc:jar:1.2.2.Final:provided

            [INFO] |  |  |  +- org.jboss.stdio:jboss-stdio:jar:1.0.2.GA:provided

            [INFO] |  |  |  \- io.undertow:undertow-core:jar:1.0.15.Final:provided

            [INFO] |  |  +- org.jboss:jandex:jar:1.1.0.Final:provided

            [INFO] |  |  +- org.jboss.modules:jboss-modules:jar:1.3.3.Final:provided

            [INFO] |  |  \- org.wildfly:wildfly-build-config:jar:8.1.0.Final:provided

            [INFO] |  \- org.jboss.as:jboss-as-dist:zip:7.1.1.Final:provided

            [INFO] |     \- org.jboss.as:jboss-as-build-config:jar:7.1.1.Final:provided

            [INFO] +- junit:junit:jar:4.11:provided

            [INFO] |  \- org.hamcrest:hamcrest-core:jar:1.3:provided

            [INFO] +- org.jboss.errai:errai-jboss-as-support:jar:3.2.0-SNAPSHOT:compile

            [INFO] +- org.jboss.errai:errai-ui:jar:3.2.0-SNAPSHOT:provided

            [INFO] |  +- org.codehaus.jackson:jackson-mapper-asl:jar:1.9.12:provided

            [INFO] |  |  \- org.codehaus.jackson:jackson-core-asl:jar:1.9.9:provided

            [INFO] |  +- org.apache.stanbol:org.apache.stanbol.enhancer.engines.htmlextractor:jar:0.10.0:provided

            [INFO] |  |  \- org.apache.clerezza:rdf.core:jar:0.12-incubating:provided

            [INFO] |  |     +- org.osgi:org.osgi.core:jar:4.2.0:provided

            [INFO] |  |     +- org.osgi:org.osgi.compendium:jar:4.2.0:provided

            [INFO] |  |     \- org.apache.clerezza:utils:jar:0.1-incubating:provided

            [INFO] |  |        \- org.wymiwyg:wymiwyg-commons-core:jar:0.7.6:provided

            [INFO] |  |           \- commons-logging:commons-logging-api:jar:1.1:provided

            [INFO] |  \- org.lesscss:lesscss:jar:1.3.3:provided

            [INFO] |     +- commons-io:commons-io:jar:2.1:provided

            [INFO] |     +- org.apache.commons:commons-lang3:jar:3.2.1:provided

            [INFO] |     \- org.mozilla:rhino:jar:1.7R4:provided

            [INFO] +- org.hibernate:hibernate-core:jar:4.2.0.Final:provided

            [INFO] |  +- antlr:antlr:jar:2.7.7:provided

            [INFO] |  +- dom4j:dom4j:jar:1.6.1:compile

            [INFO] |  \- org.javassist:javassist:jar:3.19.0-GA:compile

            [INFO] +- org.jboss.spec.javax.transaction:jboss-transaction-api_1.2_spec:jar:1.0.0.Final:provided

            [INFO] +- org.jboss.errai:errai-jaxrs-client:jar:3.2.0-SNAPSHOT:provided

            [INFO] +- org.jboss.errai:errai-javax-enterprise:jar:3.2.0-SNAPSHOT:provided

            [INFO] +- com.google.guava:guava-gwt:jar:17.0:provided

            [INFO] |  +- com.google.code.findbugs:jsr305:jar:1.3.9:provided

            [INFO] |  \- com.google.guava:guava:jar:17.0:compile

            [INFO] +- org.hibernate.common:hibernate-commons-annotations:jar:4.0.1.Final:provided

            [INFO] +- javax.inject:javax.inject:jar:1:provided

            [INFO] +- de.benediktmeurer.gwt-slf4j:gwt-slf4j:jar:0.0.2:provided

            [INFO] +- org.hibernate:hibernate-entitymanager:jar:4.2.0.Final:provided

            [INFO] +- org.hibernate.javax.persistence:hibernate-jpa-2.0-api:jar:1.0.1.Final:provided

            [INFO] +- org.jboss.logging:jboss-logging:jar:3.1.4.GA:provided

            [INFO] +- org.jboss.errai:errai-data-binding:jar:3.2.0-SNAPSHOT:provided

            [INFO] +- hsqldb:hsqldb:jar:1.8.0.7:provided

            [INFO] +- org.mortbay.jetty:jetty-naming:jar:6.1.25:provided

            [INFO] +- org.jboss.errai:errai-codegen-gwt:jar:3.2.0-SNAPSHOT:provided

            [INFO] |  \- org.jboss.errai:errai-codegen:jar:3.2.0-SNAPSHOT:compile

            [INFO] +- org.hibernate:hibernate-validator:jar:4.1.0.Final:provided

            [INFO] +- org.jboss.errai:errai-tools:jar:3.2.0-SNAPSHOT:provided

            [INFO] |  \- org.hsqldb:hsqldb:jar:2.3.0:provided

            [INFO] +- org.jboss.errai:errai-jpa-client:jar:3.2.0-SNAPSHOT:provided

            [INFO] +- javax.enterprise:cdi-api:jar:1.2:provided

            [INFO] |  +- javax.el:javax.el-api:jar:3.0.0:provided

            [INFO] |  \- javax.interceptor:javax.interceptor-api:jar:1.2:provided

            [INFO] +- io.netty:netty-codec-http:jar:4.0.12.Final:provided

            [INFO] |  +- io.netty:netty-codec:jar:4.0.12.Final:provided

            [INFO] |  |  \- io.netty:netty-transport:jar:4.0.12.Final:provided

            [INFO] |  \- io.netty:netty-handler:jar:4.0.12.Final:provided

            [INFO] |     \- io.netty:netty-buffer:jar:4.0.12.Final:provided

            [INFO] |        \- io.netty:netty-common:jar:4.0.12.Final:provided

            [INFO] +- org.jboss.spec.javax.interceptor:jboss-interceptors-api_1.2_spec:jar:1.0.0.Alpha3:provided

            [INFO] +- javax.validation:validation-api:jar:1.0.0.GA:provided

            [INFO] +- xml-apis:xml-apis:jar:1.4.01:provided

            [INFO] +- org.jboss.resteasy:jaxrs-api:jar:2.3.7.Final:provided

            [INFO] +- org.jboss.errai:errai-navigation:jar:3.2.0-SNAPSHOT:provided

            [INFO] \- org.jboss.resteasy:resteasy-cdi:jar:2.3.7.Final:provided

            [INFO]    \- org.jboss.resteasy:resteasy-jaxrs:jar:2.3.7.Final:provided

            [INFO]       +- org.scannotation:scannotation:jar:1.0.3:provided

            [INFO]       |  \- javassist:javassist:jar:3.12.1.GA:provided

            [INFO]       +- javax.annotation:jsr250-api:jar:1.0:provided

            [INFO]       \- net.jcip:jcip-annotations:jar:1.0:provided

            [INFO] ------------------------------------------------------------------------

            [INFO] BUILD SUCCESS

            [INFO] ------------------------------------------------------------------------