Re: [keycloak-user] the page isn't redirecting properly when setup loadbalancer to access cluster of keycloak
887 views
Skip to first unread message
Message has been deleted
Juan Pablo Gardella
Apr 13, 2022, 8:12:58 AM4/13/22
to pham lan, Keycloak User
Try proxy=edge. Check https://www.keycloak.org/server/reverseproxy. It seems your load balancer is not officially supported.
On Wed, Apr 13, 2022 at 9:02 AM pham lan <pham...@gmail.com> wrote:
Hi,I am new to Keycloak. I just installed 3Vms of Keycloak v17.0.1. A Citrix Netscaler Loadbalancer is used in front.I setup the X-Forwarded-For and X-Forwarded-Proto HTTP headers, also preserve the original 'Host' HTTP header in the Loadbalancer.The communication between the LB and the KC servers is http. External access to LB is https.
I can open the administration console, after typing in the username/password, i get the error that: "The page isn’t redirecting properly
An error occurred during a connection to utm-accounts-test.dfs.de.
This problem can sometimes be caused by disabling or refusing to accept cookies."What I am doing wrong here?Here is my keycloak.configurationdb=postgres--
db-username=keycloak
db-password=xxxxxx
db-url=jdbc:postgresql://internal_postgres_IP:5432/keycloak_quarkus
hostname-strict-https=false
http-enabled=true
http-port=8080
hostname=xyz.test.com #(This is just one example, the real one in the my config file is the real DNS name which cen be resolved in internet)
hostname-strict-backchannel=false
proxy=passthrough
cache-stack=tcp
log-level=info
You received this message because you are subscribed to the Google Groups "Keycloak User" group.
To unsubscribe from this group and stop receiving emails from it, send an email to keycloak-use...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/keycloak-user/6cf8980a-33ab-49c0-834f-b7c907175df4n%40googlegroups.com.
pham lan
Apr 13, 2022, 8:39:56 AM4/13/22
to Juan Pablo Gardella, Keycloak User
Thanks. Unfortunately, it still doesn't work. I tried it before and also now again. Do you have any other idea?
Actually when I tried to set it up to have internally access also via another LB as http, it works, so should not be the problem with the LBJuan Pablo Gardella
Apr 13, 2022, 8:59:11 AM4/13/22
to pham lan, Keycloak User
How did you setup the realm? You have to configure properly the allowed URLs. Root URL, allowed redirect URLs, etc.
pham lan
Apr 13, 2022, 9:10:03 AM4/13/22
to Juan Pablo Gardella, Keycloak User
Hi,
Thanks for checking.
I set up the -persistenceType COOKIEINSERT in the Loadbalancer and it works now.
Thanks for checking.
I set up the -persistenceType COOKIEINSERT in the Loadbalancer and it works now.
Reply all
Reply to author
Forward
0 new messages