[keycloak-dev] POST method for OIDC Authorization End Point
Marek Posolda
mposolda at redhat.com
Thu May 17 15:39:37 EDT 2018
Yes, the AuthorizationEndpoint currently supports just GET. This is not
correct according to specs, we should add POST too. Could you please
create JIRA?
It seems that certification didn't have a test for this :)
Marek
Dne 17.5.2018 v 16:04 Bill Burke napsal(a):
> Marek will have to elaborate, but we passed oidc certification.
>
> On Wed, May 16, 2018 at 7:13 PM, Muein Muzamil
> <shmuein+keycloak-dev at gmail.com> wrote:
>> Hi all,
>>
>> I have a quick question, does Keycloak support POST method for OIDC
>> Authorization Request? I was trying to integration Keycloak with an SP,
>> which is using POST for Auth request and Keycloak rejects the request with
>> "405 Method Not Allowed" Error.
>>
>> I looked at the OIDC Specs and accordingly, to that both GET and POST
>> should be supported for Authorization Request. Maybe I am missing
>> something, can someone please shed some light on this.
>>
>> This also makes me wonder, is the Keycloak fully compliant with OIDC Specs?
>> did we run any compliance tests to confirm this?
>>
>> Best regards,
>> Muein
>> _______________________________________________
>> keycloak-dev mailing list
>> keycloak-dev at lists.jboss.org
>> https://lists.jboss.org/mailman/listinfo/keycloak-dev
>
>
More information about the keycloak-dev
mailing list