SSO (Single Sign On): How to share keycloak session between two applications
I have a monolithic Spring Boot application generated by jhipster and microservice gateway also by jhipster. Both are secured with keycloak OpenID. I need both monolithic and microservice gateway work with same keycloak token.
Both apps are configured to use SSO in SecurityConfiguration and both use the same client on keycloak (named "web_app" in default jhipster-provided keycloak config) and I can authenticate with same credentials on both apps. But when I login in monolith it signs me out of gateway (miscroservice app) and visa versa.
How can I configure SSO (e.g. authentication in any of my applications and using same keycloak session on all of them) in my jhipster generated Spring Boot app?
Thank you :)
single-sign-on microservices jhipster openid-connect keycloak
add a comment |
I have a monolithic Spring Boot application generated by jhipster and microservice gateway also by jhipster. Both are secured with keycloak OpenID. I need both monolithic and microservice gateway work with same keycloak token.
Both apps are configured to use SSO in SecurityConfiguration and both use the same client on keycloak (named "web_app" in default jhipster-provided keycloak config) and I can authenticate with same credentials on both apps. But when I login in monolith it signs me out of gateway (miscroservice app) and visa versa.
How can I configure SSO (e.g. authentication in any of my applications and using same keycloak session on all of them) in my jhipster generated Spring Boot app?
Thank you :)
single-sign-on microservices jhipster openid-connect keycloak
add a comment |
I have a monolithic Spring Boot application generated by jhipster and microservice gateway also by jhipster. Both are secured with keycloak OpenID. I need both monolithic and microservice gateway work with same keycloak token.
Both apps are configured to use SSO in SecurityConfiguration and both use the same client on keycloak (named "web_app" in default jhipster-provided keycloak config) and I can authenticate with same credentials on both apps. But when I login in monolith it signs me out of gateway (miscroservice app) and visa versa.
How can I configure SSO (e.g. authentication in any of my applications and using same keycloak session on all of them) in my jhipster generated Spring Boot app?
Thank you :)
single-sign-on microservices jhipster openid-connect keycloak
I have a monolithic Spring Boot application generated by jhipster and microservice gateway also by jhipster. Both are secured with keycloak OpenID. I need both monolithic and microservice gateway work with same keycloak token.
Both apps are configured to use SSO in SecurityConfiguration and both use the same client on keycloak (named "web_app" in default jhipster-provided keycloak config) and I can authenticate with same credentials on both apps. But when I login in monolith it signs me out of gateway (miscroservice app) and visa versa.
How can I configure SSO (e.g. authentication in any of my applications and using same keycloak session on all of them) in my jhipster generated Spring Boot app?
Thank you :)
single-sign-on microservices jhipster openid-connect keycloak
single-sign-on microservices jhipster openid-connect keycloak
edited Nov 15 '18 at 7:46
John Salazar
asked Nov 14 '18 at 12:32
John SalazarJohn Salazar
5317
5317
add a comment |
add a comment |
0
active
oldest
votes
Your Answer
StackExchange.ifUsing("editor", function () {
StackExchange.using("externalEditor", function () {
StackExchange.using("snippets", function () {
StackExchange.snippets.init();
});
});
}, "code-snippets");
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "1"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53300341%2fsso-single-sign-on-how-to-share-keycloak-session-between-two-applications%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
0
active
oldest
votes
0
active
oldest
votes
active
oldest
votes
active
oldest
votes
Thanks for contributing an answer to Stack Overflow!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Some of your past answers have not been well-received, and you're in danger of being blocked from answering.
Please pay close attention to the following guidance:
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53300341%2fsso-single-sign-on-how-to-share-keycloak-session-between-two-applications%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown