[keycloak-user] Proof Key For Code Exchange

Stian Thorgersen sthorger at redhat.com
Mon Mar 7 01:19:38 EST 2016


Sai,

Take a look at
https://github.com/keycloak/keycloak/blob/master/misc/HackingOnKeycloak.md.

For implementation on the server side the flows are implemented in
TokenEndpoint (
https://github.com/keycloak/keycloak/blob/master/services/src/main/java/org/keycloak/protocol/oidc/endpoints/TokenEndpoint.java).
We'd also need this added to the JavaScript adapter
https://github.com/keycloak/keycloak/blob/master/adapters/oidc/js/src/main/resources/keycloak.js
.

For testing we're in process of moving our tests to Arquillian so new tests
should be added to
https://github.com/keycloak/keycloak/tree/master/testsuite/integration-arquillian,
while currently most OpenID Connect/OAuth tests are in the old testsuite
(embedded server).

There's also a lack of documentation around OpenID Connect/OAuth, but we
aim to add a chapter that includes details about what we implement,
endpoints, etc..

A contribution around this would be great. One thing to clarify is that we
will not accept any PRs without proper testing or documentation.

If you have any further questions please ask, but you'll need to be a bit
more specific than "provide some guidance" ;)

On 4 March 2016 at 22:58, Kalidindi, Sai Soma Kala <
sai-soma-kala.kalidindi at hpe.com> wrote:

>
>
>
>
> Hi,
>
>
>
> I do mean RFC 7636:  https://tools.ietf.org/html/rfc7636. I would like to
> contribute PKCE feature to keycloak,. I would appreciate it if you can
> provide some guidance to get me started.
>
>
>
> Thanks,
>
> Sai.
>
>
>
> *From: *<keycloak-user-bounces at lists.jboss.org> on behalf of Stian
> Thorgersen <sthorger at redhat.com>
> *Reply-To: *"stian at redhat.com" <stian at redhat.com>
> *Date: *Friday, March 4, 2016 at 3:06 AM
> *To: *"Kalidindi, Sai Soma Kala" <sai-soma-kala.kalidindi at hpe.com>
> *Cc: *"keycloak-user at lists.jboss.org" <keycloak-user at lists.jboss.org>
> *Subject: *Re: [keycloak-user] Proof Key For Code Exchange
>
>
>
> Assuming you mean RFC 7637 Proof Key for Code Exchange by OAuth Public
> Clients we are considering adding it and it's on our road-map. It will be a
> while until we get around to implementing it though.
>
>
>
> If you'd like to contribute this feature to Keycloak it would be more than
> welcome assuming it came with tests and documentation.
>
>
>
> On 3 March 2016 at 17:06, Kalidindi, Sai Soma Kala <
> sai-soma-kala.kalidindi at hpe.com> wrote:
>
> Hi,
>
>
>
> I am a beginner in keycloak. We are trying to implement Proof Key For Code
> Exchange in the keycloak, which is deployed as a container in our
> production right now. I would appreciate If I can get any helpful links or
> advice to implement PKCE.
>
>
>
> Thanks,
>
> Sai.
>
>
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20160307/de25d5fa/attachment.html 


More information about the keycloak-user mailing list