That’s awesome, you should add a PR for this to the Guacamole GitHub so it can be reviewed and hopefully merged into the next release.
Regards, Justin ________________________________ From: Yang Yang <[email protected]> Sent: Thursday, May 30, 2019 2:09:30 AM To: [email protected] Cc: [email protected]; Justin Gauthier; Kevin Martin Subject: Re: Looping with Guacamole+Keycloak Hello, I solved this issue by making a small change to two files for the openid extension and rebuild it: ~/guacamole-client-1.0.0/extensions/guacamole-auth-openid/src/main/resources/config/openidConfig.js ~/guacamole-client-1.0.0/extensions/guacamole-auth-openid/target/classes/config/openidConfig.js /** * Config block which augments the existing routing, providing special handling * for the "id_token=" fragments provided by OpenID Connect. */ angular.module('index').config(['$routeProvider', function indexRouteConfig($routeProvider) { // Transform "/#/id_token=..." to "/#/?id_token=…" -- $routeProvider.when('/id_token=:response', { ++ $routeProvider.when(‘/&id_token=:response', { template : '', controller : ['$location', function reroute($location) { var params = $location.path().substring(1); $location.url('/'); $location.search(params); }] }); }]); On May 29, 2019, at 21:01, Yang Yang <[email protected]<mailto:[email protected]>> wrote: Hello, I am playing with Guacamole 1.0.0 and Keycloak 6.0.1. Following the configuration Justin posted in this thread http://apache-guacamole-general-user-mailing-list.2363388.n4.nabble.com/OpenID-KeyCloak-td5345.html, I ran into the same problem, can someone help? When accessing Guacamole, I will be redirected to Keycloak login page, and then will be in a loop after typing in valid username/password. Attached are two images presenting two HTTP requests captured from a typical loop. <image-1.png><image-2.png> Thanks, Yang
