[keycloak-user] Token validation and public client

Helio Frota 00hf11 at gmail.com
Tue Apr 26 17:28:57 EDT 2016


Hi Bruno,

Thanks !

But and about the users of keycloak-nodejs-auth-utils ?

( https://github.com/keycloak/keycloak-nodejs-auth-utils )

We are going with a mix of "public client" and "confidential" approaches ?




On Tue, Apr 26, 2016 at 6:22 PM, Bruno Oliveira <bruno at abstractj.org> wrote:

> Try this:
> https://gist.github.com/abstractj/4cd2231a472069d8b6f63b4008c74061
>
> On 2016-04-25, Helio Frota wrote:
> > Hi,
> >
> > I found a shell script to use the new introspection path to do token
> > validation:
> > http://lists.jboss.org/pipermail/keycloak-user/2016-April/005869.html
> >
> > I'm using public client and by removing :
> >
> > KC_CLIENT_SECRET=a-test-client-credental
> >
> > The result is:
> >
> > {"error_description":"Authentication failed.","error":"invalid_request"}
> >
> > It is possible to use validation token for public clients ?
> >
> > Thanks!
>
> > _______________________________________________
> > keycloak-user mailing list
> > keycloak-user at lists.jboss.org
> > https://lists.jboss.org/mailman/listinfo/keycloak-user
>
>
> --
>
> abstractj
> PGP: 0x84DC9914
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20160426/d085d5ab/attachment.html 


More information about the keycloak-user mailing list