TLS Certificate verification failed

Support
1

TLS certificate verification failed when verifying the JWT: x509: certificate is valid for *, not pomerium

How do i resolve this error

2

please provide more details about which product / version you’re running, what is your configuration, exact log lines, and reprod steps.

are you trying to verify pomerium assertion JWT? you need make sure your Pomerium is serving correct certificates first.

Are you able to creata some test route and make it work (i.e. see our Verify quickstart)

3

config
authenticate_service_url: https://authenticate.localhost.pomerium.io

idp_provider: oidc
idp_client_id: ‘mynewclient’
idp_client_secret: ‘fgPNOe7q8dm9iLwM81w5Cv4oZlY3RLzI’
idp_provider_url: ‘http://keycloak.localhost.pomerium.io:8080/realms/Pomerium

signing_key: LS0tLS1CRUdJTiBFQyBQUklWQVRFIEtFWS0tLS0tCk1IY0NBUUVFSVA2TUN5UFI5OUNmSEVkU0s4cVdzbk51Q0RyMVZ3ay93RER1RVhyQitELzZvQW9HQ0NxR1NNNDkKQXdFSG9VUURRZ0FFQ0JTK3gyQnJRNVJqNHJFcU5PSEVsUFVESXJiRlNhRitoWEhEL1RYby9rQWVKU1lJSjJHVwpZMnE0a0NPNTU4RmdoYmxDTUplYVdjV1luT3JuZkpxeXRnPT0KLS0tLS1FTkQgRUMgUFJJVkFURSBLRVktLS0tLQo=

routes:

docker-compose
services:
mykeycloak:
image: Quay
command:
- start-dev
environment:
- KEYCLOAK_ADMIN=admin
- KEYCLOAK_ADMIN_PASSWORD=admin
ports:
- 8080:8080
networks:
default:
aliases:
- keycloak.localhost.pomerium.io
pomerium:
image: cr.pomerium.com/pomerium/pomerium:latest
volumes:
- ./config.yaml:/pomerium/config.yaml:ro
ports:
- 443:443
verify:
image: cr.pomerium.com/pomerium/verify:latest
environment:
JWKS_ENDPOINT: https://pomerium/.well-known/pomerium/jwks.json