On Tue, Jul 25, 2023 at 9:54 AM Praveen Tk <praveentk...@gmail.com> wrote: > > Hi Team, > > Issue: > Unable to access Guacamole when OIDC behind Reverse Proxy > Below is my configuration details, > guacamole version = 1.5.1 > OIDC = Keycloak > > Before bringing up we have set environment variables of reverse proxy in the > setup. > export http_proxy="http://[IPV6_ADDRESS]:<port>" > export https_proxy="http://[ IPV6_ADDRESS ]:<port>" > > we are able to resolve the OIDC address via proxy, but while accessing the > web application below errors are seen, > 08:41:27.745 [https-openssl-nio-8443-exec-1] INFO > o.a.g.a.o.t.TokenValidationService - Rejected invalid OpenID token: JWT > processing failed. Additional details: [[17] Unable to process JOSE object > (cause: org.jose4j.lang.UnresolvableKeyException: Unable to find a suitable > verification key for JWS w/ header {"alg":"RS256","typ" : "JWT","kid" : > "b_miyK9tDisD"} due to an unexpected exception > (java.net.UnknownHostException: <FQDN>) while obtaining or using keys from > JWKS endpoint at
You might check out this page: https://help.talend.com/r/en-US/8.0/installation-guide-linux/configuring-tomcat-to-use-proxy-server Looks like you need to set some options in the Tomcat startup files, particularly the setenv.sh file. -Nick --------------------------------------------------------------------- To unsubscribe, e-mail: user-unsubscr...@guacamole.apache.org For additional commands, e-mail: user-h...@guacamole.apache.org