[keycloak-user] Signed JWT and Policy Enforcement
Pedro Igor Silva
psilva at redhat.com
Tue Apr 25 07:47:14 EDT 2017
Hi,
This is an known issue. We need to support whatever credential you have in
keycloak.json. I have created https://issues.jboss.org/browse/KEYCLOAK-4792.
WIll try to work on it before next release.
Regards.
Pedro Igor
On Tue, Apr 25, 2017 at 8:13 AM, Hübner, Bettina <Bettina.Huebner at kvbawue.de
> wrote:
> Hi,
>
> we use the Keycloak Spring Security Adapter and fine-grained authorization
> settings for a Spring Boot App and it works fine. I now tried to use signed
> JWT for client authentication instead of client secret but get an error
> message ("Client Secret not provided") when starting our app. It seems the
> AuthzClient expects to find a “secret”-entry in the keycloak.json. If I
> remove the policy enforcer claim, there is no error.
>
> Can anyone help?
>
> Thanks
> Bettina
>
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>
More information about the keycloak-user
mailing list