keycloak-gatekeeper

Keycloak Custom message on user temporary lock

十年热恋 提交于 2021-01-29 11:20:59
问题 I am using Kyecloak:4.8.0, and have enabled Brute force attack for my realm. Now whenever user provides wrong credentials for 3 times user will be locked temporarily. But still user will see "Invalid username/password". According to this thread Keycloak have done this intentionally: https://issues.jboss.org/browse/KEYCLOAK-5284 But still i want to show user that his account has been locked. Is there any way to customize this message? I tried doing this by adding message in custom keycloak

Zabbix HTTP authentication with Keycloak-proxy

孤街浪徒 提交于 2019-12-11 06:55:16
问题 I'm try to integrate Zabbix UI with Keycloak SSO, using keycloak-proxy. My setup is the following: Nginx is the entry point: it handles the "virtual host", forwarding the requests to keycloak-proxy. Keyclock-proxy is configured with client_id, client_secret, etc. to authenticate the users to Keycloak; Zabbix dashboard on Apache, default setup: I enable the HTTP authentication. I've created a test user both in Keycloak and Zabbix. The authentication flow is ok: I'm redirected to KeyCloak, I do

Keycloak-gatekeeper: 'aud' claim and 'client_id' do not match

不羁的心 提交于 2019-11-27 16:08:05
问题 What is the correct way to set the aud claim to avoid the error below? unable to verify the id token {"error": "oidc: JWT claims invalid: invalid claims, 'aud' claim and 'client_id' do not match, aud=account, client_id=webapp"} I kinda worked around this error message by hardcoding aud claim to be the same as my client_id . Is there any better way? Here is my docker-compose.yml : version: '3' services: keycloak-proxy: image: "keycloak/keycloak-gatekeeper" environment: - PROXY_LISTEN=0.0.0.0