You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
However, some Identity Providers (Keycloak, at least), by default won't accept any authentication type, even ones which it nominaly supports. Instead, each client is configured with a particular authorization type. If I set the authorization type in Keycloak to client_secret_jwt then everything is fine. The default is client_secret_post, which fails out of the box.
Ideally, it would be possible to override the preferred authentication type, at least with the retrieve_token call.
The text was updated successfully, but these errors were encountered:
Description
Currently, the order is hard-coded here: https://github.com/erlef/oidcc/blob/main/src/oidcc_token.erl#L879-L886
However, some Identity Providers (Keycloak, at least), by default won't accept any authentication type, even ones which it nominaly supports. Instead, each client is configured with a particular authorization type. If I set the authorization type in Keycloak to
client_secret_jwt
then everything is fine. The default isclient_secret_post
, which fails out of the box.Ideally, it would be possible to override the preferred authentication type, at least with the
retrieve_token
call.The text was updated successfully, but these errors were encountered: