0

我在特定服务器中设置了一个 keyclock。我正在使用服务器 IP 从我的节点应用程序进行令牌验证,甚至只使用服务器 IP 获取令牌。当我从服务器本身获取令牌并在本地设置中使用该令牌时,它被拒绝访问。

***Example shown below:***

curl --location --request POST 'http://localhost:8180/auth/realms/XREALM/protocol/openid-connect/token' \
--header 'Content-Type: application/x-www-form-urlencoded' \
--data-urlencode 'client_id=XCLID' \
--data-urlencode 'grant_type=password' \
--data-urlencode 'client_secret=6aba27b4-40bc-4bd9-bf72-5aa6b04d48d09a' \
--data-urlencode 'scope=openid' \
--data-urlencode 'username=XXX@XXX.co.in' \
--data-urlencode 'password=XXX@123'

This URL i was hit in server.

curl --location --request POST 'http://10.0.10.75:8180/auth/realms/XREALM/protocol/openid-connect/token' \
--header 'Content-Type: application/x-www-form-urlencoded' \
--data-urlencode 'client_id=XCLID' \
--data-urlencode 'grant_type=password' \
--data-urlencode 'client_secret=6aba27b4-40bc-4bd9-bf72-5aa6b04d48d09a' \
--data-urlencode 'scope=openid' \
--data-urlencode 'username=XXX@XXX.co.in' \
--data-urlencode 'password=XXX@123'

This URL I was hitting from my local machine.

here setup is same hitting requests from different machines.

I was getting access denied.
4

0 回答 0