[keycloak-user] token_type "bearer" vs "Bearer"
Iván Perdomo
ivan at akvo.org
Wed Sep 16 12:21:53 EDT 2015
Hi,
We're trying to integrate a Python/Django application using the
following module https://github.com/marcanpilami/django-oidc and
Keycloak 1.4.0.Final
After a successful user login the process fails because a simple check
in python:
if token.token_type == "Bearer" and method == "GET":
Right now Keycloak is returning `token_type` as "bearer" and not "Bearer"
Reading the OpenID Connect spec in the section "3.1.3.3. Successful
Token Response"
(https://openid.net/specs/openid-connect-core-1_0.html#TokenResponse)
> The OAuth 2.0 token_type response parameter value MUST be Bearer, as >
specified in OAuth 2.0 Bearer Token Usage [RFC6750], unless another
> Token Type has been negotiated with the Client.
I checked and the code sets token_type manually,
https://github.com/keycloak/keycloak/blob/master/services/src/main/java/org/keycloak/protocol/oidc/TokenManager.java#L472
Can this be considered a bug?
Thanks,
--
Iván
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
Url : http://lists.jboss.org/pipermail/keycloak-user/attachments/20150916/b9f186fd/attachment.bin
More information about the keycloak-user
mailing list