keycloak策略执行器春季启动

时间:2020-07-21 16:09:25

标签: java spring-boot spring-security keycloak keycloak-rest-api

Keycloak策略执行器不起作用,Sprint引导应用程序。

我将Spring Boot v 2.3.1与Keycloak版本10.0.2一起使用,我需要在我的应用中设置安装策略执行器,在带有keycloak工作的自动化部分,但是如果我在application.properties中添加策略执行器配置,则不会出现错误< / p>

===================> application.properties文件:

server.port = 8082
# keycloak config
keycloak.realm = my-realm
keycloak.auth-server-url = http://localhost:8080/auth
keycloak.resource = resource_server
keycloak.credentials.secret = 1adb9e31-cd6a-4eb5-95c5-6a45e972b64a
keycloak.ssl-required=external
keycloak.public-client = true
keycloak.bearer-only = true
#keycloak.verify-token-audience = true
keycloak.cors=true
keycloak.use-resource-role-mappings = true   
keycloak.confidential-port=0
keycloak.principal-attribute=preferred_username

keycloak.policy-enforcer-config.enforcement-mode= PERMISSIVE
keycloak.policy-enforcer-config.lazy-load-paths=true
keycloak.policy-enforcer-config.paths[0].name=page_resource
keycloak.policy-enforcer-config.paths[0].path=/uma-protected-resource
keycloak.policy-enforcer-config.paths[0].methods[0].method=GET
keycloak.policy-enforcer-config.paths[0].methods[0].scopes[0]= view

================> 在密钥斗篷中测试用户评估: 

Result 
    *PERMIT
Scopes 
    *view
    *edit
    *delete
Policies
    *edit_permission_resource(User-Managed Policy) 
        decision was PERMIT by AFFIRMATIVE decision. Granted Scopes: edit.
    *view_permission_resource(User-Managed Policy) 
        decision was PERMIT by AFFIRMATIVE decision. Granted Scopes: view.
    *delete_permission_resource(User-Managed Policy) 
        decision was PERMIT by AFFIRMATIVE decision. Granted Scopes: delete.

================> **错误日志**:

java.lang.RuntimeException:无法获取策略执行器

at org.keycloak.adapters.KeycloakDeployment.getPolicyEnforcer....
at org.keycloak.adapters.AuthenticatedActionsHandler.corsRequest...
at ...
at ...

原因: java.lang.RuntimeException:找不到资源

at ...
at ...

原因:原因:org.keycloak.authorization.client.util.HttpResponseException:来自服务器的意外响应:401 /未经授权

at ...
at ...

我使用具有正确权限的et用户令牌,但我不知道为什么它不起作用。 我认为,他在kaycloak上找不到资源,但是他在那里的权利正确

密钥隐藏中的客户端:resource_server https://i.stack.imgur.com/d3huA.png https://i.stack.imgur.com/o9xDc.png

密钥隐藏中的资源 https://i.stack.imgur.com/mslnu.png

感谢您的帮助:)

0 个答案:

没有答案
相关问题
最新问题