likid0 · March 11, 2024 10:55
diff --git a/gistfile1.txt b/gistfile1.txt
 # cat check_token.sh 
 USERNAME=$1
 PASSWORD=$2
 KC_CLIENT="ceph"
 KC_CLIENT_SECRET="XXXXXSECRETXXXX"
 KC_ACCESS_TOKEN="$(./get_web_token.sh $USERNAME $PASSWORD | jq -r '.access_token')"
 KC_SERVER="https://keycloak-sso.apps.example.local"
 KC_CONTEXT="auth"
 KC_REALM="ceph"
 curl -k -s -q \
     -X POST \
     -u "$KC_CLIENT:$KC_CLIENT_SECRET" \
 -d "token=$KC_ACCESS_TOKEN" \
 "$KC_SERVER/$KC_CONTEXT/realms/$KC_REALM/protocol/openid-connect/token/introspect" | jq .

 # cat get_web_token.sh
 curl -k -s -q -L -X POST "https://keycloak-sso.apps.example.local/auth/realms/ceph/protocol/openid-connect/token" \
 -H 'Content-Type: application/x-www-form-urlencoded' \
 --data-urlencode 'client_id=ceph' \
 --data-urlencode 'grant_type=password' \
 --data-urlencode 'client_secret=XXXsssXXXsssXXX' \
 --data-urlencode 'scope=openid' \
 --data-urlencode "username=$1" \
 --data-urlencode "password=$2"
	# cat check_token.sh
	USERNAME=$1
	PASSWORD=$2
	KC_CLIENT="ceph"
	KC_CLIENT_SECRET="XXXXXSECRETXXXX"
	KC_ACCESS_TOKEN="$(./get_web_token.sh $USERNAME $PASSWORD \| jq -r '.access_token')"
	KC_SERVER="https://keycloak-sso.apps.example.local"
	KC_CONTEXT="auth"
	KC_REALM="ceph"
	curl -k -s -q \
	-X POST \
	-u "$KC_CLIENT:$KC_CLIENT_SECRET" \
	-d "token=$KC_ACCESS_TOKEN" \
	"$KC_SERVER/$KC_CONTEXT/realms/$KC_REALM/protocol/openid-connect/token/introspect" \| jq .

	# cat get_web_token.sh
	curl -k -s -q -L -X POST "https://keycloak-sso.apps.example.local/auth/realms/ceph/protocol/openid-connect/token" \
	-H 'Content-Type: application/x-www-form-urlencoded' \
	--data-urlencode 'client_id=ceph' \
	--data-urlencode 'grant_type=password' \
	--data-urlencode 'client_secret=XXXsssXXXsssXXX' \
	--data-urlencode 'scope=openid' \
	--data-urlencode "username=$1" \
	--data-urlencode "password=$2"