Does the latest keycloak image require HTTPS for the initial login and later?

Question

Does the latest keycloak image require HTTPS for the initial login and later?

nelsonjchen opened this issue 3 years ago · 4 comments

I'm working through the book right now but there seems to be some errors from the demo apps calling to keycloak because keycloak seems to require HTTPS at the moment out of the box. I found that you can disable the requirements by going into the realms (?) and unchecking a box.

Answer 1 · 2022-01-17T05:01:38.000Z

You also can't do the initial login without HTTPS.

Answer 2 · 2022-01-17T05:09:29.000Z

Hmm, odd, I guess it must only apply to my M1 Macbook's built from master image since the x86 one doesn't boot. This might be a sign of things to come though.

Answer 3 · 2022-01-18T07:58:10.000Z

There's not been any changes in this regard to Keycloak. It has always required SSL for external IP addresses by default, but not for internal. Are you opening Keycloak on "localhost", or on some other domain/IP?

Answer 4 · 2022-01-18T08:06:48.000Z

Hmm, the issue may have been my VPN. I rebuilt the image and it doesn't look like it's an issue anymore. How mysterious. Sorry for the bother.