I am trying to setup Flowable with a Keycloak integration.
When going to the root url of Flowable, i am being redirected to Keycloak, I can log in but when I am redirected to Flowable, I am seeing the following error message in the browser:
[invalid_user_info_response] An error occurred while attempting to retrieve the UserInfo Resource: 403 Forbidden: [no body]
I am running the .war file in a Tomcat Docker container. I have added the needed dependencies and added this in flowable-default.properties:
spring.security.oauth2.resourceserver.jwt.issuer-uri=https://DOMAIN/auth/realms/REALM
spring.security.oauth2.client.registration.keycloak.client-id=flowable
spring.security.oauth2.client.registration.keycloak.client-secret=SECRET
spring.security.oauth2.client.registration.keycloak.client-name=Flowable
spring.security.oauth2.client.registration.keycloak.scope=openid,profile,email
spring.security.oauth2.client.registration.keycloak.authorization-grant-type=authorization_code
spring.security.oauth2.client.provider.keycloak.issuer-uri=https://DOMAIN/auth/realms/REALM
spring.security.oauth2.client.provider.keycloak.user-name-attribute=email
flowable.common.app.security.type=oauth2
flowable.common.app.security.oauth2.authorities-attribute=groups
flowable.common.app.security.oauth2.groups-attribute=userGroups
flowable.common.app.security.oauth2.default-authorities=access-task
flowable.common.app.security.oauth2.default-groups=flowableUser
flowable.common.app.security.oauth2.full-name-attribute=name
flowable.common.app.security.oauth2.email-attribute=email
flowable.idm.app.keycloak.enabled=true
flowable.idm.app.keycloak.server=https://DOMAIN/
flowable.idm.app.keycloak.authentication-realm=master
flowable.idm.app.keycloak.authentication-user=USERNAME_IN_MASTER_REALM
flowable.idm.app.keycloak.authentication-password=PASSWORD_IN_MASTER_REALM
flowable.idm.app.keycloak.realm=REALM
What am I doing wrong in my configuration?