[keycloak-dev] Cross Client Use case
Raghu Prabhala
prabhalar at yahoo.com
Sun Apr 12 06:58:15 EDT 2015
We have a use case similar to the one listed in the below url - basically once a user is authenticated, a client application after receiving the tokens from the Provider, shares the tokens with a few other applications that are in a group. The other client applications should be able to verify the tokens without requiring any more user interaction. In the OIDC world, unfortunately, the aud parameter has the clientid of the first app only and it will fail validation by the other apps. So, is there any way this can be handled in KC?
https://developers.google.com/identity/protocols/CrossClientAuth
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-dev/attachments/20150412/867f8112/attachment.html
More information about the keycloak-dev
mailing list