Uploaded image for project: 'Apache Knox'
  1. Apache Knox
  2. KNOX-1355

Knox not honoring originalUrl when pac4j federation is used

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Open
    • Major
    • Resolution: Unresolved
    • None
    • 2.0.0
    • KnoxSSO
    • None

    Description

      I wanted to integrate Keycloak as the IdP provider for Knox using the pac4j federation. This is for an SSO scenario and not Knox Gateway proxy. So, requested to gateway/knoxsso/api/v1/websso?originalUrl=https://service.

      After, the redirection happens to Keycloak and successful authentication knox rather than returning to the requested original URL, it is redirecting to the original requestedURL (ie. gateway/knoxsso/api/v1/websso?originalUrl=https://service/)

      The complete Sequence diagram is attached. sequence_diagram.txt

      Also, knoxsso.xml is attached as an example. knoxsso.xml

      Attachments

        1. sequence_diagram.txt
          8 kB
          Kevin Risden
        2. knoxsso.xml
          3 kB
          Kevin Risden
        3. KNOX-1355.patch
          7 kB
          Kevin Risden
        4. knox_fix_for_dp_keycloak.patch
          6 kB
          DIPAYAN BHOWMICK

        Activity

          People

            Unassigned Unassigned
            dipayanb DIPAYAN BHOWMICK
            Votes:
            0 Vote for this issue
            Watchers:
            5 Start watching this issue

            Dates

              Created:
              Updated: