matt
/
port-nimara-client-portal
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
162 Commits 1 Branch 0 Tags 2.5 MiB
TypeScript 51.5%
Vue 48.5%
Go to file
Matt a2e1067432 Fix Keycloak CORS and iframe issues for cross-domain authentication 
CRITICAL FIX: Resolve SSO login endless loading and CORS errors

## Issues Resolved:

### 1. CORS Policy Violations
- Disabled checkLoginIframe (causes cross-origin iframe errors)
- Removed silentCheckSsoRedirectUri (blocked by modern browsers)
- Disabled checkLoginIframeInterval to prevent 3rd party cookie checks

### 2. Cross-Domain Compatibility
- Set responseMode to 'query' for better proxy compatibility
- Configured standard flow instead of implicit
- Added proper timeout handling (messageReceiveTimeout: 10000)
- Enhanced debug logging for troubleshooting

### 3. Redirect URI Consistency
- Fixed login() to use proper baseUrl for redirect URIs
- Ensures HTTPS URLs in production environment
- Consistent URL generation across initialization and login

### 4. Browser Security Compliance
- Disabled enableLogging to reduce console noise
- Removed iframe-based features that modern browsers block
- Maintained PKCE (S256) for security while fixing compatibility

## Technical Details:

The previous errors were caused by Keycloak trying to use:
- /protocol/openid-connect/3p-cookies/step1.html
- /protocol/openid-connect/login-status-iframe.html

These are blocked by browsers' cross-origin policies when the app and
Keycloak are on different domains (client.portnimara.dev vs auth.portnimara.dev).

This fix disables these problematic features while maintaining full OAuth
functionality and security. The SSO login should now work without endless
loading issues.
 		2025-06-14 15:38:40 +02:00
.gitea/workflows build: add workflow 2025-02-16 20:32:34 +02:00
components Update logo references and email logo URL in configuration 2025-06-13 13:36:14 +02:00
composables Fix Keycloak CORS and iframe issues for cross-domain authentication 2025-06-14 15:38:40 +02:00
docs Implement Keycloak authentication integration and unify user management 2025-06-14 14:09:56 +02:00
middleware Implement Official Keycloak JS Adapter with Proxy-Aware Configuration 2025-06-14 15:26:26 +02:00
pages Implement Official Keycloak JS Adapter with Proxy-Aware Configuration 2025-06-14 15:26:26 +02:00
plugins feat: Implement comprehensive PWA functionality 2025-06-12 16:36:32 +02:00
public Feat: Complete EOI improvements and PWA implementation 2025-06-12 16:16:30 +02:00
server Implement Official Keycloak JS Adapter with Proxy-Aware Configuration 2025-06-14 15:26:26 +02:00
static feat: add files 2025-02-16 14:10:19 +02:00
utils fixes 2025-06-12 16:26:10 +02:00
.dockerignore feat: add files 2025-02-16 14:10:19 +02:00
.env.example Implement Keycloak authentication integration and unify user management 2025-06-14 14:09:56 +02:00
.gitignore feat: add files 2025-02-16 14:10:19 +02:00
Dockerfile REVERT Network Updates 2025-06-12 21:54:47 +02:00
README.md feat: add files 2025-02-16 14:10:19 +02:00
app.vue feat: add interest button 2025-06-03 22:04:22 +03:00
nuxt.config.ts Implement Official Keycloak JS Adapter with Proxy-Aware Configuration 2025-06-14 15:26:26 +02:00
package-lock.json MAJOR: Replace nuxt-openid-connect with official Keycloak JS adapter 2025-06-14 14:50:29 +02:00
package.json MAJOR: Replace nuxt-openid-connect with official Keycloak JS adapter 2025-06-14 14:50:29 +02:00
tsconfig.json feat: add files 2025-02-16 14:10:19 +02:00

README.md

Client Portal

Commands

  • npm run dev to start development

Tech Stack

  • Node.js
  • Nuxt
  • Directus
  • Vuetify