[keycloak-dev] Wildcard for Valid Redirect URI Hostname
nielsbne at gmail.com
Wed Sep 21 02:39:48 EDT 2016
I actually share Stian's position. Using the same client credentials for a
wildcard selection of domain names (I assume different apps) looks like a
bad idea. When provisioning these wildcard "clients", are you not able to
provision them with a separate set of client credentials via the keycloak
On Tue, Sep 20, 2016 at 12:50 AM, Josh Cain <josh.cain at redhat.com> wrote:
> Per KEYCLOAK-3585: <https://issues.jboss.org/browse/KEYCLOAK-3585>
> Currently, valid redirect URI hostnames allow for wildcards at the end
> like so:
> I'm managing several environments where clients need 'n' number of
> available redirect URI's with different hostnames, I.E.
> Would really help to have the ability to wildcard hostnames too, I.E.:
> I've submitted #3241 <https://github.com/keycloak/keycloak/pull/3241> to
> address this issue, but there seem to be some concerns about allowing
> wildcards in other parts of the URL. See the PR for a more fleshed out
> discussion, but wanted to start a thread here on the mailing list.
> Particularly with respect to:
> - Does anyone have need of this feature or would find it useful?
> - Should this kind of wildcard be allowed as a configuration option by
> Josh Cain | Software Applications Engineer
> *Identity and Access Management*
> *Red Hat*
> +1 256-452-0150
> keycloak-dev mailing list
> keycloak-dev at lists.jboss.org
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the keycloak-dev