[keycloak-user] "Failed to introspect token" problem
Holtgrewe, Manuel
manuel.holtgrewe at bihealth.de
Tue Jul 18 03:43:46 EDT 2017
Thanks, that did the trick!
--
Dr. Manuel Holtgrewe
Bioinformatician
Core Unit Bioinformatics – CUBI
Berlin Institute of Health / Max Delbrück Center for Molecular Medicine in the Helmholtz Association / Charité – Universitätsmedizin Berlin
Visiting Address: Invalidenstr. 80, 3rd Floor, Room 03 028, 10117 Berlin
Postal Address: Chariteplatz 1, 10117 Berlin
E-Mail: manuel.holtgrewe at bihealth.de
Phone: +49 30 450 543 607
Fax: +49 30 450 7 543 901
Web: cubi.bihealth.org www.bihealth.org www.mdc-berlin.de www.charite.de
________________________________________
From: keycloak-user-bounces at lists.jboss.org [keycloak-user-bounces at lists.jboss.org] on behalf of Iván Perdomo [ivan at akvo.org]
Sent: Tuesday, July 18, 2017 08:58
To: keycloak-user at lists.jboss.org
Subject: Re: [keycloak-user] "Failed to introspect token" problem
Hi,
On 07/17/2017 02:42 PM, Holtgrewe, Manuel wrote:
> OIDCOAuthIntrospectionEndpointParams token_type_hint=requesting_party_token
If you're doing a token introspection of an access token the
token_type_hint should be `access_token` as per RFC.
See the documentation:
https://github.com/keycloak/keycloak-documentation/blob/3.2.0.Final/securing_apps/topics/oidc/oidc-generic.adoc#introspection-endpoint
>From the RFC
> The following is a non-normative example request:
>
> POST /introspect HTTP/1.1
> Host: server.example.com
> Accept: application/json
> Content-Type: application/x-www-form-urlencoded
> Authorization: Basic czZCaGRSa3F0MzpnWDFmQmF0M2JW
>
> token=mF_9.B5f-4.1JqM&token_type_hint=access_token
I have a some sample code in a test case:
https://github.com/iperdomo/keycloak-oauth2-instrospection/blob/master/test.sh#L32-L39
I hope this helps.
--
Iván
_______________________________________________
keycloak-user mailing list
keycloak-user at lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user
More information about the keycloak-user
mailing list