Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-9779

Allow client to authenticate using private_key_jwt when using OAuth2 OpenID connect authentication module

    Details

    • Type: New Feature
    • Status: Closed
    • Priority: Major
    • Resolution: Won't Do
    • Affects Version/s: 13.5.0, 5.5.1
    • Fix Version/s: None
    • Component/s: oauth2, OpenID Connect
    • Labels:
    • Rank:
      1|hzs8cv:
    • Support Ticket IDs:

      Description

      When using oauth2/openid connect authentication module, the client always authenticates to OpenID Connect provider using client_secret_post.

      It would be good if the authentication module could be configured so that the client uses private_key_jwt for authentication if required.
      The implementation should also define a URL to expose the client's public key.

      Note that the provider side of OpenAM allows clients to authenticate that way. It would make sense to have the corresponding feature on the client side.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                nathalie.hoet Nathalie Hoet
              • Votes:
                4 Vote for this issue
                Watchers:
                9 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: