If I’ve been unclear, I’m sorry. I’ll try to specify:
- Both backend and keycloak require SSL/https, I’ve disabled the secure cookie setting for now because the app runs locally on my machine until I deploy it
- My frontend is a Nuxt/VueJS web application. One can consider this an SPA, but I do have server side possibilities if needed
- App / the service is a spring boot api service
- Keycloak runs on some server - I don’t know the details around the hosting, but I can access it to administrate it
- Not sure what you mean by “where is redirected browser”
- By OIDC client, you mean the Keycloak realm client? If so, theres a lot of settings. If theres any specific settings you wonder about, I’ll write them down. If you need it all - let me know and I’ll try to find some way to export it
I’ll try to remove the redirection-url and try to grab it from the browser network console for Keycloak whitelisting. I found it in some tutorial somewhere, and just assumed it had to be there since the Gatekeeper might not automatically know where it is located