I am using an embedded Camunda engine with Sprinb Boot Application. I have enabled custom OAuth2 security to secure Camunda REST APIs and those are working fine. REST APIs as per expectation works with a valid JWT token (Bearer Token).
After securing the REST API all web applications of Camunda got locked. To exclude those UI paths I added the following paths to my application.yml
security: oauth2: unsecure: request-rules: - pattern: '/camunda/**' - pattern: '/camunda-welcome/**' - pattern: '**' http-method: OPTIONS
And now I am reaching the login page. But I am not able to see the Tasklist or Cockpit after providing the current login and passwords.
After providing the correct Admin username and password, it comes back to the login page itself.
Am I missing something in the configuration?