[keycloak-user] Using urn:ietf:wg:oauth:2.0:oob
Frans van Niekerk
frans.vanniekerk at gmail.com
Wed Aug 21 06:35:29 EDT 2019
I am investigating the possibility to obtain the authorisation code from
another channel to hopefully remove the need to have the user log into
keycloak from a redirect the client initiated.
It does seem like section 2.4.5 Redirect URLs (specifically the use of
urn:ietf:wg:oauth:2.0:oob) allows for this.
Where in Keycloak can the the authorisation token be obtained in this case?
Can it be requested via API from another trusted application?
Is it possible for a user to setup consent beforehand, then when the client
asks for authorisation it is returned immediately instead of waiting for
user interaction?
More information about the keycloak-user
mailing list