[keycloak-dev] POST method for OIDC Authorization End Point

Marek Posolda mposolda at redhat.com
Thu May 17 15:39:37 EDT 2018

Yes, the AuthorizationEndpoint currently supports just GET. This is not 
correct according to specs, we should add POST too. Could you please 
create JIRA?

It seems that certification didn't have a test for this :)


Dne 17.5.2018 v 16:04 Bill Burke napsal(a):
> Marek will have to elaborate, but we passed oidc certification.
> On Wed, May 16, 2018 at 7:13 PM, Muein Muzamil
> <shmuein+keycloak-dev at gmail.com> wrote:
>> Hi all,
>> I have a quick question, does Keycloak support POST method for OIDC
>> Authorization Request? I was trying to integration Keycloak with an SP,
>> which is using POST for Auth request and Keycloak rejects the request with
>> "405 Method Not Allowed" Error.
>> I looked at the OIDC Specs and accordingly, to that both GET and POST
>> should be supported for Authorization Request. Maybe I am missing
>> something, can someone please shed some light on this.
>> This also makes me wonder, is the Keycloak fully compliant with OIDC Specs?
>> did we run any compliance tests to confirm this?
>> Best regards,
>> Muein
>> _______________________________________________
>> keycloak-dev mailing list
>> keycloak-dev at lists.jboss.org
>> https://lists.jboss.org/mailman/listinfo/keycloak-dev

More information about the keycloak-dev mailing list