Keycloak Cookies #113

cprouveu · 2023-09-06T15:21:33Z

cprouveu
Sep 6, 2023

Hello,
I'm trying to test our keycloak provider. (keycloak 22.0.1)
So I tried your test container.
I included my target/classes.

Now : for our custom api call we used the keycloak cookies session.

But how found them in the keycloak container ?
I found :
Keycloak keycloakClient = keycloak.getKeycloakAdminClient();
AccessTokenResponse accessTokenResponse = keycloakClient.tokenManager().getAccessToken();
But I don't see cookies.

Thanks for your help.

cprouveu · 2023-09-07T17:26:23Z

cprouveu
Sep 7, 2023
Author

Update :
I found for cookies :
KEYCLOAK_XXXX
Keycloak keycloakClient = keycloak.getKeycloakAdminClient();
AccessTokenResponse accessTokenResponse = keycloakClient.tokenManager().getAccessToken();
TokenVerifier verifier = TokenVerifier.create(accessTokenResponse.getToken(), AccessToken.class);
AccessToken accessToken = verifier.getToken();
String sub = accessToken.getSubject();
String sessionState = accessToken.getSessionState();

So I have now :
String cookie = "KEYCLOAK_IDENTITY=" + accessTokenResponse.getToken();
cookie = cookie + "; KEYCLOAK_IDENTITY_LEGACY=" + accessTokenResponse.getToken();
cookie = cookie + "; KEYCLOAK_SESSION_LEGACY=master/" + sub + "/" + sessionState ;
cookie = cookie + "; KEYCLOAK_SESSION=master/" + sub + "/" + sessionState ;

But for AUTH_SESSION_ID and AUTH_SESSION_ID_LEGACY, I found in documentation the format : <session-id>.<owner-node-id>
I have the session-id but how found 'owner-node-id' for your keycloak container?

2 replies

dasniko Sep 10, 2023
Maintainer

This project just provides the default Keycloak Container as a Testcontainer and provides additionally the default Keycloak Admin Java Client.
There's nothing special in this project on how to use these components. Please refer to the official documentation of your desired components on how to use them properly.

cprouveu Oct 12, 2023
Author

I didn't pass by cookies so I used bearer token and it's working.

knighthedspi · 2023-11-08T02:25:12Z

knighthedspi
Nov 8, 2023

I think it is better to use the cookies response from the Keycloak than setting by yourself.
You can load the configuration at keycloak.getAuthServerUrl() + "/realms/" + realmName + "/.well-known/openid-configuration" then get the authorization_endpoint for the login url.
After that, access this url with query parameters as:

login = true
response_type = code
client_id = your client id
state = random UUID
redirect_uri = your client redirect uri
scope = openid

And use cookies get from the response for further requests

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Keycloak Cookies #113

{{title}}

{{editor}}'s edit

{{editor}}'s edit

Replies: 2 comments 2 replies

{{title}}

{{editor}}'s edit

{{editor}}'s edit

{{title}}

{{title}}

{{editor}}'s edit

{{editor}}'s edit

{{title}}

Select a reply

Keycloak Cookies #113

cprouveu Sep 6, 2023

Replies: 2 comments · 2 replies

cprouveu Sep 7, 2023 Author

dasniko Sep 10, 2023 Maintainer

cprouveu Oct 12, 2023 Author

knighthedspi Nov 8, 2023

cprouveu
Sep 6, 2023

Replies: 2 comments 2 replies

cprouveu
Sep 7, 2023
Author

dasniko Sep 10, 2023
Maintainer

cprouveu Oct 12, 2023
Author

knighthedspi
Nov 8, 2023