[Question]: Keycloak login #3182
Replies: 9 comments 2 replies
-
There were a couple of people setting up keycloak recently: Let me know if these are helpful |
Beta Was this translation helpful? Give feedback.
-
Maybe you could share your LibreChat logs? |
Beta Was this translation helpful? Give feedback.
-
.env: OPENID_BUTTON_LABEL=JvM Login 2024-06-25T09:48:24.948Z info: [openidStrategy] verify login openidId: ************************* |
Beta Was this translation helpful? Give feedback.
-
I've tried it without userID before, still doesn't work. libregpt ist a realm roll and assigned to my user. I will check the Keycloak logs and update you |
Beta Was this translation helpful? Give feedback.
-
I don't really find anything. If setup a librechat.yaml file as well. Do I need to setup something inthere aswell? Configuration version (required)version: 1.1.4 Cache settings: Set to true to enable cachingcache: true Custom interface configurationinterface: Privacy policy settingsprivacyPolicy: Terms of servicetermsOfService: Example Registration Object Structure (optional)registration: Definition of custom endpointsendpoints: I also tried a different realm in my Keycloak |
Beta Was this translation helpful? Give feedback.
-
For me the issue was that the user in our keycloak setup got their role assigned as a client role and not a realm role so I had to change the OPENID_REQUIRED_ROLE_PARAMETER_PATH to "resource_access..roles" and then it started working. Hope it helps! |
Beta Was this translation helpful? Give feedback.
-
Nope, still the same issue. The role is setup as a realm roll aswell |
Beta Was this translation helpful? Give feedback.
-
Hi @MarcelRei, I was also struggeling to get it working with the same error. Tried tons of possibilities and finally it worked. In your Keycloak, Client Settings Only Home URL and Valid redirect URLs should be filled: Home URL: https://your-librechat-domain |
Beta Was this translation helpful? Give feedback.
-
I've given up on this and went for AD authentication instead |
Beta Was this translation helpful? Give feedback.
-
What is your question?
Hi,
I've setup Librechat on Debian12 and connected my Keycloak 23.0.6. I can login and I see a successful login in the debug log, but I just get redirected to the default login page. The Keycloakserver shows an active login aswell
Logging in with my local account, I get forwarded to the chat.
More Details
OpenID
OPENID_CLIENT_ID=librechat
OPENID_CLIENT_SECRET=******************
OPENID_ISSUER=https://keycloak.domain.com/realms/Realmname
OPENID_SESSION_SECRET=*********
OPENID_SCOPE="openid profile email"
OPENID_CALLBACK_URL=/oauth/openid/callback
#OPENID_REQUIRED_ROLE=
#OPENID_REQUIRED_ROLE_TOKEN_KIND=
#OPENID_REQUIRED_ROLE_PARAMETER_PATH=
OPENID_BUTTON_LABEL=JvM Login
OPENID_IMAGE_URL=
What is the main subject of your question?
No response
Screenshots
No response
Code of Conduct
Beta Was this translation helpful? Give feedback.
All reactions