Don't work on KeyCloak 20.0.3

[Andrew140992]

Hello!
I am trying to set up extension and use it on version KeyCloak 20.0.3 but it doesn't work.

About server:

What I do step by step:

1. Building a jar with "mvn clean install"
   
2. I place the artifact at /opt/bitnami/keycloak/providers/test.jar. After launch Keycloak everything is displayed correctly:
   
3. I create realm (clear) and client (factor) with service accounts enable toggle
   
4. Using postman I make a request to the url "https://kk.local/admin/realms/clear/manage-2fa/"user-id"/generate-2fa" and get 404 error
   

Why does the api call not work and i get an error?
At what stage did I make a mistake when installing the extension?
Could you give me a more detailed manual?

Thank you!

[tozzi21]

Hi Parth Received this share from public, as we open sourced the two-factor auth. Might you have some guidance or visible configuration error? Regards Thorsten

…

On Mon, Apr 17, 2023 at 10:27 PM Andrew140992 ***@***.***> wrote: Hello! I am trying to set up extension and use it on version KeyCloak 20.0.3 but it doesn't work. About server: [image: image] <https://user-images.githubusercontent.com/130998222/232516016-9b172ea7-271c-47f9-8aa7-66419bb926d7.png> What I do step by step: 1. Building a jar with "mvn clean install" [image: image] <https://user-images.githubusercontent.com/130998222/232501850-11b302ad-56a7-46da-bd92-bd549f9cfdde.png> 2. I place the artifact at /opt/bitnami/keycloak/providers/test.jar. After launch Keycloak everything is displayed correctly: [image: image] <https://user-images.githubusercontent.com/130998222/232503771-aa1e055f-9756-4ff1-a490-b9dea12cfb2f.png> 3. I create realm (clear) and client (factor) with service accounts enable toggle [image: image] <https://user-images.githubusercontent.com/130998222/232511851-292cf3b3-b27a-458f-920e-60eca9acf1ef.png> 4. Using postman I make a request to the url " https://kk.local/admin/realms/clear/manage-2fa/"user-id"/generate-2fa" and get 404 error [image: image] <https://user-images.githubusercontent.com/130998222/232503573-2271250c-4299-4d1b-ab47-839aecffe120.png> Why does the api call not work and i get an error? At what stage did I make a mistake when installing the extension? Could you give me a more detailed manual? Thank you! — Reply to this email directly, view it on GitHub <#1>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/ABUH5IDE3QNLXA5GWVMRHTDXBVHNNANCNFSM6AAAAAAXBIUM4Q> . You are receiving this because you are subscribed to this thread.Message ID: ***@***.*** com>

[stale-vegait]

@Andrew140992
Before you are able to call the API you need to add a ream role "manage-2fa" and assign it to the "factor" client service account.

The url is also wrong. What you are missing is part of the url that represent the provider "two_factor_auth" in your case:
https://kk.local/**auth**/realms/clear/**two_factor_auth**/manage-2fa/userid/generate-2fa
also it's auth not admin.

Optionally:
In Keycloak 21 one of the API's is deprecated. So instead of:
final CredentialModel credentialModel = session.userCredentialManager().getStoredCredentialByNameAndType(realm, user, submission.getDeviceName(), OTPCredentialModel.TYPE);
put:
final CredentialModel credentialModel = user.credentialManager().getStoredCredentialByNameAndType(submission.getDeviceName(), OTPCredentialModel.TYPE);

Hope this helps.