[keycloak-dev] POST method for OIDC Authorization End Point

Muein Muzamil shmuein+keycloak-dev at gmail.com
Thu May 17 17:38:47 EDT 2018


Thanks for confirming this. I have created the following ticket in JIRA.
https://issues.jboss.org/browse/KEYCLOAK-7371

Regards,
Muein

On Thu, May 17, 2018 at 2:39 PM, Marek Posolda <mposolda at redhat.com> wrote:

> Yes, the AuthorizationEndpoint currently supports just GET. This is not
> correct according to specs, we should add POST too. Could you please create
> JIRA?
>
> It seems that certification didn't have a test for this :)
>
> Marek
>
> Dne 17.5.2018 v 16:04 Bill Burke napsal(a):
>
> Marek will have to elaborate, but we passed oidc certification.
>>
>> On Wed, May 16, 2018 at 7:13 PM, Muein Muzamil
>> <shmuein+keycloak-dev at gmail.com> wrote:
>>
>>> Hi all,
>>>
>>> I have a quick question, does Keycloak support POST method for OIDC
>>> Authorization Request? I was trying to integration Keycloak with an SP,
>>> which is using POST for Auth request and Keycloak rejects the request
>>> with
>>> "405 Method Not Allowed" Error.
>>>
>>> I looked at the OIDC Specs and accordingly, to that both GET and POST
>>> should be supported for Authorization Request. Maybe I am missing
>>> something, can someone please shed some light on this.
>>>
>>> This also makes me wonder, is the Keycloak fully compliant with OIDC
>>> Specs?
>>> did we run any compliance tests to confirm this?
>>>
>>> Best regards,
>>> Muein
>>> _______________________________________________
>>> keycloak-dev mailing list
>>> keycloak-dev at lists.jboss.org
>>> https://lists.jboss.org/mailman/listinfo/keycloak-dev
>>>
>>
>>
>>
>


More information about the keycloak-dev mailing list