*What*
* Implement the function. It should be similar to the Android implementation
* It should have unit tests
* The example app should be updated to allow verify the implementation
Note: Keycloak is using RSA *Progress to sign the JWT tokens so we must use this algorithm when verifying. There doesn't seem to be a library that supports parsing of JWKs so we need to do this ourselves.
Date*
Another option was to contribute upstream to Keycloak to include
* Implemented the `x5c` property in the JWKS response from the JWKS endpoint but they have rejected these feature requests before. See -> https: JwksManager class which is responsible for saving / loading / issues.jboss.org/browse/KEYCLOAK-3166 removing JSON Web Ket Sets from local storage
It's possible to do JWT * The verification from part of this ticket can be done by following the example shown in this [PR|https://github.com/aerogear/aerogear-ios-sdk/pull/53#issuecomment-375631682]. We just This work is *blocked* as we need that the library used (JSONWebToken) to be published as the `git` reference is no longer supported in podspecs . An issue has been opened for this [here|https://github.com/kreactive/JSONWebToken/issues/9]
Another option was to contribute upstream to Keycloak to include the `x5c` property in the JWKS response from the JWKS endpoint but they have rejected these feature requests before. See [configure keycloak to give “x5t” key in JWK response|https://issues.jboss.org/browse/KEYCLOAK-3166]
|
|
