12:39 p.m.
I was looking at keykloak examples for client credentials flow examples,
and it looks like the everything required is located in adapter-core
module, especially AdapterRSATokenVerifier and ServerRequest classes.
But I wonder if it safe to use this module in terms of API stability and
documentation, or I should better stick to some 3rd party OpenID client,
that will do all the fancy things with token validation, key retrieval,
caching etc.
Best Regards,
Vitalii
1:41 p.m.
Just found an email in archives that is still seem to be outstanding
http://lists.jboss.org/pipermail/keycloak-user/2016-December/008544.html
I was also searching for a clean way to obtain token using client
credentials grant type and refresh it until it expired, I found bunch of
classes in keycloak doing this stuff (i.e admin-cli) but haven't found
anything in adapters, were there any updates in this area, I was not able
to find Jira ticket that was referenced in email
On Fri, Sep 29, 2017 at 8:39 PM Виталий Ищенко <betalb(a)gmail.com> wrote:
I was looking at keykloak examples for client credentials flow
examples,
and it looks like the everything required is located in adapter-core
module, especially AdapterRSATokenVerifier and ServerRequest classes.
But I wonder if it safe to use this module in terms of API stability and
documentation, or I should better stick to some 3rd party OpenID client,
that will do all the fancy things with token validation, key retrieval,
caching etc.
Best Regards,
Vitalii
2658
days inactive
2663
days old
1 comments
1 participants
participants (1)
-
Виталий Ищенко