[keycloak-user] Change JWT algorithm type for access token signature
Stian Thorgersen
sthorger at redhat.com
Thu Jan 21 03:43:16 EST 2016
I'd say there should be an option to configure the default for a realm,
then override for a client template or individual client.
It'll be needed once we start certifying with OpenID Connect and adding
more optional parts of the specs.
On 21 January 2016 at 09:23, Thomas Darimont <thomas.darimont at googlemail.com
> wrote:
> Hello,
>
> do you see that as a client only or also as a realm option?
>
> Cheers,
> Thomas
>
> 2016-01-21 8:51 GMT+01:00 Stian Thorgersen <sthorger at redhat.com>:
>
>> We don't currently support changing this. You can create a JIRA to
>> request this, but it'll be a while to we get time to do it.
>>
>> On 20 January 2016 at 21:31, Bruce Shaw <battery4cid at gmail.com> wrote:
>>
>>> Hello,
>>>
>>> Is there anyway to quickly change the algorithm type used for the JWT
>>> signatures in the Keycloak instance? For my OpenId Connect clients the
>>> access tokens are sent using RSA256 but I'd like to use one of the HMAC
>>> ones like HS256.
>>>
>>> thanks.
>>>
>>> _______________________________________________
>>> keycloak-user mailing list
>>> keycloak-user at lists.jboss.org
>>> https://lists.jboss.org/mailman/listinfo/keycloak-user
>>>
>>
>>
>> _______________________________________________
>> keycloak-user mailing list
>> keycloak-user at lists.jboss.org
>> https://lists.jboss.org/mailman/listinfo/keycloak-user
>>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20160121/0a8d0b8c/attachment.html
More information about the keycloak-user
mailing list