Hi Folks,
Does Keycloak adhere to the JCA (Java Cryptography Architecture)? i.e. if I change the JVM's cryptography provider to a custom one, Keycloak should use that provider for all cryptography operations.
Some context for this:
In our use case, our entire JVM runs with a FIPS compliant Cryptography Provider being available. If code that is running, on it is using the JCA correctly, then that code will also be FIPS ready.