Skip to main content
Skip table of contents

Keycloak Configurations for OAuth2-Proxy Enablement

This document contains all the configurations required for the setup of Oauth2-Proxy for API Authentication in CX. Following configurations are the prerequisite before the enablement.

  • First go to your Keycloak instance and login, then go to the expertflow realm.

    Screenshot from 2025-04-10 13-17-06.png

  • Then click on clients option in left panel and then select cim.

    Screenshot from 2025-04-10 13-19-50.png

  • Now, go to the client scopes and click on cim-dedicated under Assigned client scope.

    Screenshot from 2025-04-10 13-20-02.png

  • Click on Add Mapper and then select By configuration.

    Screenshot from 2025-04-10 13-20-12.png

  • Click on Audience.

    Screenshot from 2025-04-10 13-20-20.png

  • Provide Name as “fix-audience”, select cim in Included Client Audience. Check “Add to ID Token” toggle as On and Save.

    Screenshot from 2025-04-10 13-21-00.png

Create a Customer User:

This user is responsible for creation of Access Token for each customer in Customer Widget.

  • Go to the Users tab in left Control Panel.

    Screenshot from 2025-04-10 13-21-09.png

  • Click on Add User and provide username as “customer” and enable Email Verified toggle to On and click save.

    Screenshot from 2025-04-10 13-21-26.png

  • Once user is created, go to Credentials and click on Set Password, provide credentials as customer and toggle temporary to false. Click save

    Screenshot from 2025-04-10 13-21-56.png

Email Verified toggle must be enabled in User info for each and every user in given keycloak instance for authentication with OAuth2-Proxy. It won’t work otherwise.

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close