[英]Can not configure Keycloak 17 in spring boot app - elements [keycloak.keycloak.bearer-only] were left unbound
我需要在 Spring Boot 应用程序中禁用登录页面 Keycloak 重定向,这是我的配置:
应用.yml
server:
port: 8091
connection-timeout: 6000
keycloak:
enabled: true
bearer-only: true
auth-server-url: http://localhost:8484/auth
realm: test-realm
resource: my-test-client
keycloak.bearer-only: true
use-resource-role-mappings: false
安全配置
@Configuration
@EnableWebSecurity
@EnableGlobalMethodSecurity(prePostEnabled = true)
@ComponentScan(basePackageClasses = KeycloakSecurityComponents.class)
public class SecurityConfig extends KeycloakWebSecurityConfigurerAdapter {
@Override
protected void configure(HttpSecurity http) throws Exception {
super.configure(http);
http.cors().and().csrf().disable().sessionManagement().
sessionCreationPolicy(SessionCreationPolicy.STATELESS).and().authorizeRequests()
.antMatchers("/users/unprotected-data").permitAll()
.antMatchers("/users/create").permitAll()
.antMatchers("/users/signin").permitAll()
.anyRequest().authenticated();
}
@Autowired
public void configureGlobal(AuthenticationManagerBuilder auth) throws Exception {
KeycloakAuthenticationProvider keycloakAuthenticationProvider = keycloakAuthenticationProvider();
keycloakAuthenticationProvider.setGrantedAuthoritiesMapper(new SimpleAuthorityMapper());
auth.authenticationProvider(keycloakAuthenticationProvider);
}
@Bean
public KeycloakConfigResolver keycloakConfigResolver() {
return new KeycloakSpringBootConfigResolver();
}
@Bean
@Override
protected SessionAuthenticationStrategy sessionAuthenticationStrategy() {
return new NullAuthenticatedSessionStrategy();
}
@Autowired
public KeycloakClientRequestFactory keycloakClientRequestFactory;
@Bean
@Scope(ConfigurableBeanFactory.SCOPE_PROTOTYPE)
public KeycloakRestTemplate keycloakRestTemplate(){
return new KeycloakRestTemplate(keycloakClientRequestFactory);
}
}
但我有一条错误配置消息,KeycloakSpringBootProperties 无法绑定到 ConfigurationProperties:
Description:
Binding to target [Bindable@7bb35cc6 type = org.keycloak.adapters.springboot.KeycloakSpringBootProperties, value = 'provided', annotations = array<Annotation>[@org.springframework.boot.context.properties.ConfigurationProperties(ignoreInvalidFields=false, ignoreUnknownFields=false, prefix=keycloak, value=keycloak)]] failed:
Property: keycloak.keycloak.bearer-only
Value: true
Origin: class path resource [application.yml] - 10:25
Reason: The elements [keycloak.keycloak.bearer-only] were left unbound.
Action:
Update your application's configuration
更新配置的正确方法是什么?
据我所知,
它要么是keycloak.bearer-only: true
要么
keycloak:
bearer-only: true
两者相等。
但是您尝试做的是keycloak.keycloak.bearer-only: true
这是不正确的。
这是一个可能有帮助的答案
keycloak v17 中的 auth 服务器 url 它是 http://localhost:${port number} 没有 /auth,你可以在这里检查 spring 引导适配器配置https://www.keycloak.org/docs/latest/securing_apps/ #_spring_boot_adapter也是keycloak.bearer-only=true
而不是keycloak.keycloak.bearer-only=true
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.