Closed Adrian-at-CrimsonAzure closed 3 years ago
Check readme
Keycloak authenticates the user and creates a one-time, very short lived, temporary code. Keycloak redirects back to the application using the callback URL provided earlier and additionally adds the temporary code as a query parameter in the callback URL.
AFAIK there's no way to override the callback URL on the Keycloak side just whitelisting for valid callbacks. Thanks for pointing out the overwriteprotocol
setting, don't know how I missed that.
I am using Keycloak for OpenID-Connect, and I kept getting invalid redirect_uri errors. Finally figured out that it hasn't been passing an HTTPS URI.
Social Login:
If I manually add the missing s, everything works. Is this a configuration issue or a bug? \ \ \ \ \ It's also using HTML character codes instead of regular characters which is strange IMO. Portainer example: