user-1
(User 1)
June 10, 2024, 12:14pm
1
This topic was automatically generated from Slack. You can find the original thread here .
Hi everyone, we are trying to connect a Keycloak account in an pipeline to get a user. After countless tries we have been getting the same error message. Has anyone encountered the same problem?
user-1
(User 1)
June 10, 2024, 12:14pm
2
Het , could you share what have you input to the Pipedream Keycloak connection popup?
user-1
(User 1)
June 10, 2024, 12:14pm
3
Note that there’s an existing issue here for KeyCloak that the team is checking https://github.com/PipedreamHQ/pipedream/issues/12134 . Not sure if it related to yours
user-1
(User 1)
June 10, 2024, 12:14pm
4
Hey, We are unfortunately not allowed to share the private key because it is a client project but the client_id: nijiuko url: https://test.idprovider.ksc.de/
user-1
(User 1)
June 10, 2024, 12:14pm
5
does this help in any way?
user-1
(User 1)
June 10, 2024, 12:14pm
6
The #12134 Issue is not related. Our problem is concerning only the connection to the keycloak account. We did not get further
user-1
(User 1)
June 10, 2024, 12:14pm
7
, for my case, I follow 3 steps here to make sure my Client got configured properly:
Enable Client Authentication and Service Account Roles (1st image)
On Client Scopes, select the {client_id}-dedicated (2nd image)
Then add the Audience
mapping with security-admin-console
value
user-1
(User 1)
June 10, 2024, 12:14pm
8
@U03CXTHK4RF I believe I saw some connection errors for this app
user-1
(User 1)
June 10, 2024, 12:14pm
9
, can you retry without the trailing /
at the end of your URL?
user-1
(User 1)
June 10, 2024, 12:14pm
10
Danny, I believe it might come from my tests, I faced another issue for this app. I’ve created a ticket here: [BUG] Keycloak - Token inactivated after one operation · Issue #12134 · PipedreamHQ/pipedream · GitHub
user-1
(User 1)
June 10, 2024, 12:14pm
11
We made the authentication work but right now we are getting 401-unauthorized, now it seems like the ticket 12134.
user-1
(User 1)
June 10, 2024, 12:14pm
12
Thank you for the confirmation.
Kindly subscribe to the ticket to be notified when there’s any updates
user-1
(User 1)
June 10, 2024, 12:14pm
13
I commented in the ticket. I would guess the reason for this is the 1 minute validity of the token in Keycloak and it needs to be refreshed.
user-1
(User 1)
June 10, 2024, 12:14pm
14
Their access tokens expire after 1 minute?
user-1
(User 1)
June 10, 2024, 12:14pm
15
If we go to “Connected Accounts” and reconnect, it works for 1 minute again. Is there a way to reconnect a connected account in a workflow? Otherwise we probably need to create a script that does that for us and keeps the token refreshed