-
Notifications
You must be signed in to change notification settings - Fork 40
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
flow & required action resources issue with multiple realms #320
Comments
I think the first failure is a limitation of namevar handling in Puppet. I haven't yet deployed Puppet resources to multiple realms so there might be some improvements needed to better handle how naming works across realms. For second set of errors, is there anything in Keycloak logs to show what failed? The error returned from attempt to run commands seems limited. Also you could make the name be like |
For second set of errors there is no output in keycloak logs as far as i can see (at the flows i had errors because the database columns are limited and it failed doing the insert with "long" aliases. I'm still checking if i can somehow debug it but i guess it's related to alias field which might be read only / write once for Good to know that it might be a bug/issue, i hope i find more time tomorrow to deep dive into the issue :) |
I'm not very familiar with the required actions as I don't use them, they were a community contribution. It would not surprise me if the alias is read-only as I believe that's the case for Flows so likely the same for required actions. If the alias can't be modified, then I think some changes to how naming is handled would be required. |
Just documenting my findings so far: Seems like
So i check if i can disable that or change the code without (major) breaking change. |
Pull request for Would be nice if you could let me know if the solution is ok or if we directly should rename the attribute? Both implementations will be a breaking change at different degrees. I can also offer a (dirty) workaround for the current module version in case you want to manage more than one realm:
|
Sadly the workaround seems to break the admin ui: keycloak/keycloak#33309 |
Hi,
we currently try to setup another realm besides our existing realm in our keycloak instance and face some issues.
We require user to register an webauthn device (YubiKey) and deploy a custom flow. I will focus on the former one as it's the easier case but both seem so have simular issues:
Example 1:
Result:
Example 2 (this version worked for flows):
Result:
Now the question is just if it is a bug or if i am just holding it wrong? If somebody is already managing keycloak instances with multiply realms with same flows / configuration (required actions etc.) i would be greatful if you can share how i am supposed to do it.
The text was updated successfully, but these errors were encountered: