HTTP request to keycloak with insommia
I am creating a secured back-end for a new app with Keycloak and NestJS. I imported my realm with clients and user in it and I am trying to get the token and access protected data through Insomnia.
Trying to reach endpoint {{ _.baseUrl }}/protocol/openid-connect/auth with a POST request passing data through JSON is returning
keycloak-1 | 2024-03-11 16:01:56,436 WARN [org.keycloak.protocol.oidc.endpoints.request.AuthorizationEndpointRequestParserProcessor] (executor-thread-131) Parameter 'client_id' not present or present multiple times in the HTTP request parameters
keycloak-1 | 2024-03-11 16:01:56,437 WARN [org.keycloak.events] (executor-thread-131) type="LOGIN_ERROR", realmId="55542514-fc71-4e4e-be3e-42af869de2a7", clientId="null", userId="null", ipAddress="172.18.0.1", error="invalid_request"
in my Docker Keycloak logs and a 400 Bad request error in Insomnia response preview window.
At first I was only passing my credentials and the error made me rethink the whole thing and pass client_id and client_secret as well i the JSON data yet error i still the same.
I was following this tutorial but it does not seem suitable for a Keycloak environment
How to reach to my Keycloak endpoints via Insomnia and furthermore how to get more verbose logs in the future ?
Insomina is a little hard.
Overview
#0 Keycloak launching Detail in here
Access Token URL
POST "http://localhost:8180/realms/master/protocol/openid-connect/token"
How to find Token URL?
The token_endpoint should be match Insomnia URL PREVIEW
If not, 404 not Found Error
#1 Crete New Collection
#2 Name as Keycloak
#3 Click Gear Icon for setting
#4 Base Environment
{
"baseUrl": "http://localhost:8180",
"username": "admin",
"password": "admin",
"access-token": ""
}
#5 Add HTTP Request
#6-7 Create Get-Token by POST API
#8 CTRL + Space Can add get environment variable
detail in here
#9 Make URL with an environment variable
{{ _.baseUrl }}/realms/master/protocol/openid-connect/token
#10 Add Body key/value by Form URL Encoded
It is same as /x-www-form-urlencoded in Postman
#11~13 Add 4 keys/value
User name and password get from environmental variable
By CTRL + Space
#14 Get token Click Send
Result
Bonus
How to use an access-token?
Add Request Get user list
#1 Open Base Environment
In the access-token place cursor inside ""
CTRL+Space
Select f Response => Body Attribute
Result
#2 Click reponse 'body', '', '', 'never',60
Select: Request POST Get Token
Filter (JSONPath or XPath)
$.access_token
Result
Finally, get user list with access-token
- request to token url returning 400 bad request for google oauth2?
- Enabling and Configuring Password History on Cognito
- Where to store the refresh token on the Client?
- Keycloak-Remix integration: where should I place the checks?
- Using PHPMailer when already have an access token
- Why is the IDP responding with Invalid Signature for a client assertion JWT
- Securing an azure API with oauth: Able to retrieve a token but token is invalid
- Spring Security 5.2 Password Flow
- Why Doesn't my Authorization Header need "Bearer"?
- Add role based authentication using next-auth in NextJS
- No qualifying bean of type 'org.springframework.security.oauth2.client.registration.ClientRegistrationRepository' available
- JakartaEE 10 OpenIdAuthenticationMechanism failed with Auth0
- Aws Cognito Oauth2: Refresh token rotation
- How to securely store api credentials in a native appliaction in a cross-platform manner
- KeyCloak Java Service Account Create User
- Get Google business reviews server side
- SpringBoot OAuth2 with Keycloak not returning mapped Roles as Authorities
- What is the purpose of the "access_token=" parameter when downloading a file from Google Drive?
- java.lang.IllegalArgumentException: Unable to resolve the Configuration with the provided Issuer
- How do I implement social login with GitHub accounts?
- portainer keycloak 20 oauth login "unauthorized" / "Unable to login via OAuth"
- Google Oauth2 redirect_uri_mismatch when send request from localhost
- Google OAuth 2 authorization - Error: redirect_uri_mismatch
- Use Entra ID as Identity Provider for Client Credentials flow
- Should access tokens be refreshed automatically or manually?
- OIDC login flow breaks in react strict mode for react-admin v5
- M2M Client Credential Flow between NetSuite and Synapse
- LWA : Not able to exchange Authorization Code for AccessToken : invalid_grant
- How to authenticate resource owner with JWT when sending request to /oauth2/authorize?
- Google Cloud Function - Invalid login