[keycloak-user] oidc token_type: "bearer" vs "Bearer"
Pedro Igor Silva
psilva at redhat.com
Tue Oct 1 10:18:30 EDT 2019
Hi,
You are right. IMO, it should be fixed ...
Both OAuth2 and OIDC specs (and I think most implementations) use "Bearer".
Regards.
Pedro Igor
On Thu, Sep 26, 2019 at 10:27 AM Christophe de Vienne <
christophe.devienne at orus.io> wrote:
> Hi everyone,
>
> While (unsuccessfully) attempting to connect a oidc service provider, I
> found out that the token_type set by keycloak is "bearer", while my
> service provider expects "Bearer".
>
> Digging the specifications it seems that "Bearer" is the right
> token_type (see
> https://openid.net/specs/openid-connect-core-1_0.html#TokenResponse and
> https://tools.ietf.org/html/rfc6750#section-6.1.1).
>
> Should we consider this a keycloak bug? Would a PR fixing this be accepted?
>
> Cheers,
>
> Christophe
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>
More information about the keycloak-user
mailing list