serverUrl and issuer does not match?

[Stefan Beller]

Hello,

I have an instance of keycloak running under http://domain1:8080 and http://domain2:8080 (e.g. over docker network)

My vue based client on http://domain1:8081 accesses keycloak as a public client and receives an access token. Then the client wants to access the Server with the access token. 

The server is connected with keycloak as a confidential client. When I configure serverUrl as http://domain1:8080/auth it works.

When I configure serverUrl as http://domain2:8080/auth it does not work. 

Maybe it is because the serverUrl and the issuer are not matching?

To clearify the Situation i have drawn a Image:

How can I solve this issue?

In the end, i want to run my client application on a public domain and access keycloak on the serverside through an internal docker hostname.

For the client I am using the keycloak-js for Javascript

For the Server I am using keycloak-connect for node

If I have missed some details please ask :)

Thank you for your support!

[Lukas Gisi]

Hi

Take a look at https://www.keycloak.org/docs/latest/server_installation/#_hostname

Good luck!