79241195

Date: 2024-12-01 08:51:43
Score: 0.5
Natty:
Report link

Try setting frontentUrl to loadbalancer's host and port in realm settings. In your case, https://scdf-01.aws.net/

Keycloak is very picky about URLs. It adds a backend URL to access token claims (the issuer claim IIRC), and if it doesn't match a hostname/port from request url, it will reject the token after successful authentication.

Reasons:
  • Whitelisted phrase (-1): In your case
  • Low length (0.5):
  • No code block (0.5):
  • Low reputation (0.5):
Posted by: Andrey M.