externalAuthServer: ..... #baseUrl: https://<keycloak-url>/auth/realms/<keycloak-realm> # Uncomment for keycloak #metadataUrl: .well-known/openid-configuration #Uncomment for keycloak
now opens a browser and gives me a success message on the
page, but back on the cli I get an error response with
. I can see the flytectl grpc request hit the
code = Unauthenticated desc = token parse error [JWT_VERIFICATION_FAILED] Could not retrieve id token from metadata, caused by: rpc error: code = Unauthenticated desc = Request unauthenticated with IDToken
server with what appears to be a valid JWT issued by Keycloak I'm hoping I haven't missed something else obvious in the docs!
setting along with the
values, and then you need to add an audience mapper in Keycloak so that it gets added to the access token