Now, I STILL get invalid redirect uri unless I change the Valid Redirect URIs to “*” However, THEN, I get You’re not authorized…Reason: Signature validation failed. SAML Response rejected.
Provider certificate is the value of “dsig:X509Certificate” node in the XML configuration file
However in order to do this, I have to turn on Client Signature Required, get the value from the output of the install on Keycloak, and then turn it back off… because Client Signature Required has to be disabled?
@julienlancelot Two different systems I’m playing with… One I get the token error, the other I get the dreaded You’re not authorized to access this page. Please contact the administrator.
Ok, there’s a lot of information, I’ll try to clarify.
Do you confirm that all sonar.auth.* and sonar.core.serverBaseURL settings are set in the UI and not in the sonar.properties file ? If not, please remove them from the fil and set them in the UI.
I confirm that Client Signature Required must always be set to OFF.
For the Provider certificate, the best way is to go to Reaml Settings -> Keys -> Click on Certificate button, the certificate will be displayed in the popup.