[keycloak-user] Encryption of OIDC client secret
Bill Burke
bburke at redhat.com
Wed Apr 5 10:11:00 EDT 2017
Not right now. We'll eventually be implementing a vault to encrypt
secrets and private keys. We were kinda hoping that admins would just
make sure that their DB is secure.
Just as a general survey question, how would you expect it to work?
On 4/5/17 9:10 AM, Muein Muzamil wrote:
> Hi,
>
> I noticed KeyCloak stores OIDC client secret in plain text in Database. Is
> there a way to extend Keycloak so that we can encrypt OIDC secret before
> storing it in DB?
>
> Thanks,
> Muein
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
More information about the keycloak-user
mailing list