By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

JWT Authorizer | Keycloak | Invalid issuer

0

I am trying to configure keycloak as a JWT authorizer in HTTP API gateway but I am getting the below error.

The configured issuer URL is: https://ec2-52-210-8-38.eu-west-1.compute.amazonaws.com:8443/realms/DUS

Invalid issuer: https://ec2-52-210-8-38.eu-west-1.compute.amazonaws.com:8443/realms/DUS. Issuer must have a valid discovery endpoint ended with '/.well-known/openid-configuration'

Knowing that I can access the ".well-konwn" configuration normally

https://ec2-52-210-8-38.eu-west-1.compute.amazonaws.com:8443/realms/DUS/.well-known/openid-configuration

Topics
ServerlessFront-End Web & MobileNetworking & Content Delivery
Tags
Amazon API Gateway
Language
English
Nady
asked 6 months ago259 views
1 Answer
0

The issuer URL must include the '/.well-known/openid-configuration' at the end. https://auth0.com/blog/securing-aws-http-apis-with-jwt-authorizers/#:~:text=The-,Issuer%20URL,-is%20the%20base

AWS
vtjean
answered 6 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content