You can configure what goes into the token. There are two things you can do to reduce the size:

* Set the scope of your client to only include the roles the client requires
* Configure mappers for the client to control what other properties are included in the token

On 5 February 2016 at 10:27, Nangunoori, Srinivas <srinivas.nangunoori@hpe.com> wrote:

Thanks for the info. Stian.

Can we configure size of access_token? If yes, how we can do that.

 

 

From: Stian Thorgersen [mailto:sthorger@redhat.com]
Sent: Thursday, February 04, 2016 4:27 PM
To: Nangunoori, Srinivas
Cc: keycloak-user@lists.jboss.org
Subject: Re: [keycloak-user] Size of keyclaok_access_token

 

Size of the token depends on what goes into it. What roles, scope you have for users/clients as well as what mappers you have.

 

On 4 February 2016 at 11:24, Nangunoori, Srinivas <srinivas.nangunoori@hpe.com> wrote:

Hi,

 

We are seeing some strange behavior with access token size. Some keycloak servers are generating with 1308 character size and some others are generating with 2055 character size.

May I know what would be the correct size?

Environment details,

Server Version : 1.6.1.Final

Current working directory: /opt/jboss

Java Version: 1.7.0_85

Java Vendor: Oracle Corporation

Java Runtime: OpenJDK Runtime Environment

Java VM: OpenJDK 64-Bit Server VM

Java VM Version: 24.85-b03

Java Home: /usr/lib/jvm/java-1.7.0-openjdk-1.7.0.85-2.6.1.2.el7_1.x86_64/jre

System Encoding: ANSI_X3.4-1968

Operating System: Linux 3.10.0-123.9.3.el7.x86_64

OS Architecture: amd64

 

 

Regards,

Srinivas N

HPE, Bengaluru

 


_______________________________________________
keycloak-user mailing list
keycloak-user@lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user