[keycloak-dev] /tokens/access/codes now uses Basic Auth

Marek Posolda mposolda at redhat.com
Fri Feb 21 03:18:10 EST 2014


On 20.2.2014 23:26, Bill Burke wrote:
> Since we're using client secret now to authenticate clients, I changed
> the protocol to use Basic Auth as per the OAuth and OpenId Connect
> specs.  I updated the javascript adapter to use basic auth (I think),
> but I don't have an app to test against.
>
>
> P.S.
>
> I hear Marek laughing and/or cursing at me in the background...
You say that:-)
For JS apps, we may also need to test cors, which I mentioned in 
https://issues.jboss.org/browse/KEYCLOAK-328

Isn't the app here 
https://github.com/keycloak/keycloak/tree/master/examples/demo-template/customer-app-js 
?

Marek


More information about the keycloak-dev mailing list