<div dir="ltr">We don't currently support this, nor is it on the road-map at the moment. We are planning on improving OIDC support over the next few months as we're hoping to pass the OIDC certification tests, but I don't think support encryption of tokens is required. We haven't had anyone else request this afaik.</div><div class="gmail_extra"><br><div class="gmail_quote">On 3 June 2016 at 17:25, Thomas Darimont <span dir="ltr"><<a href="mailto:thomas.darimont@googlemail.com" target="_blank">thomas.darimont@googlemail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr"><div>Hello,</div><div><br></div><div>does keycloak currently support to sign and encryption of issued JWT tokens?</div><a href="http://connect2id.com/products/nimbus-jose-jwt/examples/signed-and-encrypted-jwt" target="_blank">http://connect2id.com/products/nimbus-jose-jwt/examples/signed-and-encrypted-jwt</a><br><div><br></div><div>According to theĀ org.keycloak.protocol.oidc.TokenManager JWT tokens are only signed</div><div>but encryption seems to be not supported at the moment.</div><div><br></div><div>I couldn't find a JIRA issue for that so I'm wondering whether this is already on some agenda...</div><div><br></div><div>Cheers,</div><div>Thomas</div></div>
<br>_______________________________________________<br>
keycloak-dev mailing list<br>
<a href="mailto:keycloak-dev@lists.jboss.org">keycloak-dev@lists.jboss.org</a><br>
<a href="https://lists.jboss.org/mailman/listinfo/keycloak-dev" rel="noreferrer" target="_blank">https://lists.jboss.org/mailman/listinfo/keycloak-dev</a><br></blockquote></div><br></div>