无法在 spring 启动应用程序中配置 Keycloak 17 - 元素 [keycloak.keycloak.bearer-only] 未绑定

Question

我需要在 Spring Boot 应用程序中禁用登录页面 Keycloak 重定向，这是我的配置：

应用.yml

server:
  port: 8091
  connection-timeout: 6000
keycloak:
  enabled: true
  bearer-only: true
  auth-server-url: http://localhost:8484/auth
  realm: test-realm
  resource: my-test-client
  keycloak.bearer-only: true
  use-resource-role-mappings: false

安全配置

@Configuration
@EnableWebSecurity
@EnableGlobalMethodSecurity(prePostEnabled = true)
@ComponentScan(basePackageClasses = KeycloakSecurityComponents.class)
public class SecurityConfig extends KeycloakWebSecurityConfigurerAdapter {
    @Override
    protected void configure(HttpSecurity http) throws Exception {
        super.configure(http);

        http.cors().and().csrf().disable().sessionManagement().

                sessionCreationPolicy(SessionCreationPolicy.STATELESS).and().authorizeRequests()
                .antMatchers("/users/unprotected-data").permitAll()
                .antMatchers("/users/create").permitAll()
                .antMatchers("/users/signin").permitAll()
                .anyRequest().authenticated();

    }
    @Autowired
    public void configureGlobal(AuthenticationManagerBuilder auth) throws Exception {
        KeycloakAuthenticationProvider keycloakAuthenticationProvider = keycloakAuthenticationProvider();
        keycloakAuthenticationProvider.setGrantedAuthoritiesMapper(new SimpleAuthorityMapper());
        auth.authenticationProvider(keycloakAuthenticationProvider);
    }

    @Bean
    public KeycloakConfigResolver keycloakConfigResolver() {
        return new KeycloakSpringBootConfigResolver();
    }

    @Bean
    @Override
    protected SessionAuthenticationStrategy sessionAuthenticationStrategy() {
        return new NullAuthenticatedSessionStrategy();
    }

    @Autowired
    public KeycloakClientRequestFactory keycloakClientRequestFactory;

    @Bean
    @Scope(ConfigurableBeanFactory.SCOPE_PROTOTYPE)
    public KeycloakRestTemplate keycloakRestTemplate(){
        return new KeycloakRestTemplate(keycloakClientRequestFactory);
    }
}

但我有一条错误配置消息，KeycloakSpringBootProperties 无法绑定到 ConfigurationProperties：

Description:

Binding to target [Bindable@7bb35cc6 type = org.keycloak.adapters.springboot.KeycloakSpringBootProperties, value = 'provided', annotations = array<Annotation>[@org.springframework.boot.context.properties.ConfigurationProperties(ignoreInvalidFields=false, ignoreUnknownFields=false, prefix=keycloak, value=keycloak)]] failed:

    Property: keycloak.keycloak.bearer-only
    Value: true
    Origin: class path resource [application.yml] - 10:25
    Reason: The elements [keycloak.keycloak.bearer-only] were left unbound.

Action:

Update your application's configuration

更新配置的正确方法是什么？

Answer 1

据我所知，

它要么是keycloak.bearer-only: true要么

keycloak:
bearer-only: true

两者相等。

但是您尝试做的是keycloak.keycloak.bearer-only: true这是不正确的。

这是一个可能有帮助的答案

Answer 2

keycloak v17 中的 auth 服务器 url 它是 http://localhost:${port number} 没有 /auth，你可以在这里检查 spring 引导适配器配置https://www.keycloak.org/docs/latest/securing_apps/ #_spring_boot_adapter也是keycloak.bearer-only=true而不是keycloak.keycloak.bearer-only=true