You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I’m running into a problem and am not sure if there is a solution.
The current problem:
Website 1 (no-sso)
Website 2 (openid, managed by keycloak instance)
What I’m trying to do:
User access website 1 then is authenticated and authorized to website 2 using the browser flow and pass thru without seeing a keycloak login page.
It should be seamless (no keycloak login pages of any kind)
I’m able to generate an access_token using the rest api, but when I redirect to website 2 I get kicked back to the keycloak login page.
From the keycloak logs it looks at first the login is successful but after the webapp redirects then I’m presented with the keycloak login screen.
Is there an alternative browser flow that would allow me to do this?
Yes I understand that password grants are an anti-pattern.
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
Uh oh!
There was an error while loading. Please reload this page.
-
I’m running into a problem and am not sure if there is a solution.
The current problem:
Website 1 (no-sso)
Website 2 (openid, managed by keycloak instance)
What I’m trying to do:
User access website 1 then is authenticated and authorized to website 2 using the browser flow and pass thru without seeing a keycloak login page.
It should be seamless (no keycloak login pages of any kind)
I’m able to generate an access_token using the rest api, but when I redirect to website 2 I get kicked back to the keycloak login page.
From the keycloak logs it looks at first the login is successful but after the webapp redirects then I’m presented with the keycloak login screen.
Is there an alternative browser flow that would allow me to do this?
Yes I understand that password grants are an anti-pattern.
Beta Was this translation helpful? Give feedback.
All reactions