3:30 p.m.
Hi,
Can we disable SSL/TLS when we use Keycloak Oauth plugin to avoid this
message ""OAuth2 token was transmitted without required transport security
(TLS, SSL)." ?
Regards
Charles
6:05 a.m.
On 12 May 2016 at 22:30, Charles Moulliard <cmoullia(a)redhat.com> wrote:
Can we disable SSL/TLS when we use Keycloak Oauth plugin to avoid
this
message ""OAuth2 token was transmitted without required transport security
(TLS, SSL)." ?
Yes, you should be able to untick "require transport security" or edit
your policy's JSON config (see:
http://www.apiman.io/latest/user-guide.html#_oauth_policy_keycloak).
It's generally not a good idea to use OAuth2 without transport
security, however.
7:41 a.m.
Thx.
Remark : This is only required for a demo as currently the Apiman-gateway
Kubernetes App doesn't run as HTTPS Server but only as HTTP Server. I will
make the modifications next week to be able to use it as HTTP or HTTPS
Server by adding Openshift Route with TLS Termination passthrough
On Fri, May 13, 2016 at 1:05 PM, Marc Savy <marc.savy(a)redhat.com> wrote:
On 12 May 2016 at 22:30, Charles Moulliard
<cmoullia(a)redhat.com> wrote:
> Can we disable SSL/TLS when we use Keycloak Oauth plugin to avoid this
> message ""OAuth2 token was transmitted without required transport
security
> (TLS, SSL)." ?
Yes, you should be able to untick "require transport security" or edit
your policy's JSON config (see:
http://www.apiman.io/latest/user-guide.html#_oauth_policy_keycloak).
It's generally not a good idea to use OAuth2 without transport
security, however.
3626
days inactive
3627
days old
2 comments
2 participants
participants (2)
-
Charles Moulliard -
Marc Savy