[keycloak-user] implicit flow response_type url parameter
Ramon Rockx
ramon at iqnomy.com
Mon Jan 18 07:29:54 EST 2016
Hi all,
I was trying to configure Swagger UI (http://swagger.io/swagger-ui/) so it
will use Keycloak for OAuth2 authorization.
Swagger UI supports the 'Authorization Code Grant' flow and the 'Implicit
Grant' flow. I managed to configure Swagger UI to use the 'Authorization
Code Grant' flow, but I did not succeed with the implicit flow.
I think this is because Keycloak expects the response_type url parameter to
be 'id_token token', while Swagger UI uses the url parameter
response_type=token.
rfc6749 also states (https://tools.ietf.org/html/rfc6749#section-4.2.1)
that the response_type parameter should be 'token'. So why is it that
Keycloak requires the value 'id_token token'?
Is it possible to configure Keycloak, so it will accept 'token' as
response_type?
Thank you!
Ramon Rockx
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20160118/2e02e7a2/attachment-0001.html
More information about the keycloak-user
mailing list