修改应用程序的配置元数据以匹配所请求的发行者。具体来说,修改OAuth2ClientProperties配置文件中的issuer-uri属性,使其与实际的发行者URL匹配。例如:
spring:
security:
oauth2:
client:
registration:
keycloak:
provider: keycloak
client-id: my-client-id
client-secret: my-client-secret
authorization-grant-type: authorization_code
redirect-uri: '{baseUrl}/{action}/oauth2/code/{registrationId}'
scope: openid,profile,email
client-name: Keycloak
client-authentication-method: post
authorization-uri: ${my.keycloak.auth-server-url}/realms/${my.keycloak.realm}/protocol/openid-connect/auth
token-uri: ${my.keycloak.auth-server-url}/realms/${my.keycloak.realm}/protocol/openid-connect/token
user-info-uri: ${my.keycloak.auth-server-url}/realms/${my.keycloak.realm}/protocol/openid-connect/userinfo
jwk-set-uri: ${my.keycloak.auth-server-url}/realms/${my.keycloak.realm}/protocol/openid-connect/certs
issuer-uri: ${my.keycloak.auth-server-url}/realms/${my.keycloak.realm}
在这个示例中,修改issuer-uri属性的值以匹配实际的发行者URL:
issuer-uri: ${my.keycloak.auth-server-url}/realms/${my.keycloak.realm}