[keycloak-dev] token_introspection_endpoint == introspection_endpoint ? in .well-known/openid-configuration

Thomas Darimont thomas.darimont at googlemail.com
Fri Jan 11 09:15:11 EST 2019


Hello,

I just noticed that the .well-known/openid-configuration contains 2 links
for the token_introspection_endpoint is this a bug?

Cheers,
Thomas

{
"issuer": "https://sso.example.com/auth/realms/master",
"authorization_endpoint": "
https://sso.example.com/auth/realms/master/protocol/openid-connect/auth",
"token_endpoint": "
https://sso.example.com/auth/realms/master/protocol/openid-connect/token",
* "token_introspection_endpoint": "
https://sso.example.com/auth/realms/master/protocol/openid-connect/token/introspect
",
"userinfo_endpoint": "
https://sso.example.com/auth/realms/master/protocol/openid-connect/userinfo
",
"end_session_endpoint": "
https://sso.example.com/auth/realms/master/protocol/openid-connect/logout",
"jwks_uri": "
https://sso.example.com/auth/realms/master/protocol/openid-connect/certs",
"check_session_iframe": "
https://sso.example.com/auth/realms/master/protocol/openid-connect/login-status-iframe.html
",
...
"tls_client_certificate_bound_access_tokens": true,
* "introspection_endpoint": "
https://sso.example.com/auth/realms/master/protocol/openid-connect/token/introspect
"
}


More information about the keycloak-dev mailing list