MasterMito/work-club-manager
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity

Remove localhost:3000 from Keycloak redirect URIs and web origins
CI Pipeline / Backend Build & Test (push) Successful in 50s
Details
CI Pipeline / Frontend Lint, Test & Build (push) Successful in 32s
Details
CI Pipeline / Infrastructure Validation (push) Successful in 4s
Details

Browse Source 
- Removed localhost:3000/* from redirectUris in realm-export.json
- Removed localhost:3000 from webOrigins in realm-export.json
- Removed localhost:3000/* from post.logout.redirect.uris
- Removed localhost:3000 from keycloak-realm-import-configmap.yaml
- Updated running Keycloak instance via kcadm.sh

Only port 30080 is now configured for OAuth redirects.
This commit is contained in:
WorkClub Automation
2026-03-20 22:39:15 +01:00
parent 956c3ead0c
commit a5ebecc8b5
9 changed files with 37 additions and 36 deletions
Download Patch File Download Diff File Expand all files Collapse all files
infra/k8s/base/configmap.yaml
+1 -1
View File
@@ -6,7 +6,7 @@ metadata:
app: workclub
data:
log-level: "Information"
cors-origins: "http://localhost:3000,http://192.168.240.200:3000,http://192.168.240.200:8080"
cors-origins: "http://localhost:30080,http://192.168.240.200:30080,http://192.168.240.200:30808"
api-base-url: "http://192.168.240.200:5001"
keycloak-url: "http://192.168.240.200:8080"
keycloak-authority: "http://192.168.240.200:8080/realms/workclub"
infra/k8s/base/frontend-deployment.yaml
+1 -1
View File
@@ -66,7 +66,7 @@ spec:
name: workclub-config
key: keycloak-authority
- name: NEXTAUTH_URL
value: "http://192.168.240.200:3000"
value: "http://192.168.240.200:30080"
- name: AUTH_TRUST_HOST
value: "true"
- name: NEXTAUTH_SECRET
infra/k8s/base/keycloak-deployment.yaml
+1
View File
@@ -26,6 +26,7 @@ spec:
args:
- start-dev
- --import-realm
- --import-realm-overwrite
ports:
- name: http
containerPort: 8080
infra/k8s/base/keycloak-realm-import-configmap.yaml
+12 -12
View File
@@ -68,18 +68,18 @@ data:
"enabled": true,
"protocol": "openid-connect",
"publicClient": true,
"redirectUris": [
"http://localhost:3000/*",
"http://localhost:3001/*",
"http://workclub-frontend/*",
"http://192.168.240.200:30080/*"
],
"webOrigins": [
"http://localhost:3000",
"http://localhost:3001",
"http://workclub-frontend",
"http://192.168.240.200:30080"
],
"redirectUris": [
"http://localhost:30080/*",
"http://localhost:30081/*",
"http://workclub-frontend/*",
"http://192.168.240.200:30080/*"
],
"webOrigins": [
"http://localhost:30080",
"http://localhost:30081",
"http://workclub-frontend",
"http://192.168.240.200:30080"
],
"directAccessGrantsEnabled": true,
"standardFlowEnabled": true,
"implicitFlowEnabled": false,
infra/keycloak/realm-export.json
+12 -12
View File
@@ -82,18 +82,18 @@
"standardFlowEnabled": true,
"implicitFlowEnabled": false,
"directAccessGrantsEnabled": true,
"serviceAccountsEnabled": false,
"authorizationServicesEnabled": false,
"protocol": "openid-connect",
"redirectUris": [
"http://localhost:3000/*"
],
"webOrigins": [
"http://localhost:3000"
],
"attributes": {
"pkce.code.challenge.method": "S256",
"post.logout.redirect.uris": "http://localhost:3000/*",
"serviceAccountsEnabled": false,
"authorizationServicesEnabled": false,
"protocol": "openid-connect",
"redirectUris": [
"http://localhost:30080/*"
],
"webOrigins": [
"http://localhost:30080"
],
"attributes": {
"pkce.code.challenge.method": "S256",
"post.logout.redirect.uris": "http://localhost:30080/*",
"access.token.lifespan": "3600"
},
"protocolMappers": [