Re: [cas-user] CAS 6.4 OIDC JWKS missing key fields?

Fri, 17 Mar 2023 09:58:14 -0700 

Does your JWKS have "alg" field?  it does not seem to have that option.

This is what JWKS looks like in general, they do have "alg" field. I do not 
know how to get CAS JWKS to include it.

Yan

On Tuesday, March 7, 2023 at 10:29:12 AM UTC-5 waldbiec wrote:

> I noticed my JWKS was missing a kid and causing weird results in one of 
> the OIDC libraries I use for testing.
> I just added the kid to my key in the "keystore.jwks" manually.  I just 
> generated a uuid4, but you can use any ID unique to your keystore from what 
> I understand.
> The kid then appears on the endpoint.
>
> Thanks,
> Carl Waldbieser
> ITS
> Lafayette College
>
> On Tue, Mar 7, 2023 at 12:13 AM Yan Zhou <yana...@gmail.com> wrote:
>
>> Hi,,
>>
>> CAS 6.4  OIDC JWKS endpoint looks like this.  Our vendor has problem with 
>> its missing fields such as  alg, kid, and use. 
>>
>> Anyone knows how to show these fields in JWKS?  They showed us what Okta 
>> and Google OIDC provider presents, yes, they do have these fields.
>>
>> This probably affects OIDC JWT access token header attributes as well.
>>
>> Thanks,
>> Yan
>>
>> {
>>
>>     "keys": 
>>
>>         [
>>
>>             {
>>
>>                 "kty":"RSA",
>>
>>                 "n":"pwNNGZn0..............RW18eq6Asiw",
>>
>>                 "e":"AQAB"
>>
>>             }
>>
>>         ]
>>
>> }
>>
>> -- 
>> - Website: https://apereo.github.io/cas
>> - Gitter Chatroom: https://gitter.im/apereo/cas
>> - List Guidelines: https://goo.gl/1VRrw7
>> - Contributions: https://goo.gl/mh7qDG
>> --- 
>> You received this message because you are subscribed to the Google Groups 
>> "CAS Community" group.
>> To unsubscribe from this group and stop receiving emails from it, send an 
>> email to cas-user+u...@apereo.org.
>> To view this discussion on the web visit 
>> https://groups.google.com/a/apereo.org/d/msgid/cas-user/a816b9c5-662f-4a75-b87e-414f350df5d3n%40apereo.org
>>  
>> <https://groups.google.com/a/apereo.org/d/msgid/cas-user/a816b9c5-662f-4a75-b87e-414f350df5d3n%40apereo.org?utm_medium=email&utm_source=footer>
>> .
>>
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/449d95f3-714d-479a-84b8-caeb1db30c15n%40apereo.org.

Reply via email to