[Geoserver-devel] [JIRA] (GEOS-10536) OAUTH2 Open ID Connect Community module - doesn't support keycloak

Thu, 09 Jun 2022 11:31:02 -0700 

David Blasby ( 
https://osgeo-org.atlassian.net/secure/ViewProfile.jspa?accountId=5e5850b0e7724a0e726439a4
 ) *created* an issue

GeoServer ( 
https://osgeo-org.atlassian.net/browse/GEOS?atlOrigin=eyJpIjoiNzAzNWMyOGRhNmM5NGY3YzlkOTZlOWQyMTA3ZDdlOGMiLCJwIjoiaiJ9
 ) / Improvement ( 
https://osgeo-org.atlassian.net/browse/GEOS-10536?atlOrigin=eyJpIjoiNzAzNWMyOGRhNmM5NGY3YzlkOTZlOWQyMTA3ZDdlOGMiLCJwIjoiaiJ9
 ) GEOS-10536 ( 
https://osgeo-org.atlassian.net/browse/GEOS-10536?atlOrigin=eyJpIjoiNzAzNWMyOGRhNmM5NGY3YzlkOTZlOWQyMTA3ZDdlOGMiLCJwIjoiaiJ9
 ) OAUTH2 Open ID Connect Community module - doesn't support keycloak ( 
https://osgeo-org.atlassian.net/browse/GEOS-10536?atlOrigin=eyJpIjoiNzAzNWMyOGRhNmM5NGY3YzlkOTZlOWQyMTA3ZDdlOGMiLCJwIjoiaiJ9
 )

Issue Type: Improvement Affects Versions: 2.21.0 Assignee: Unassigned 
Components: Security Created: 09/Jun/22 8:30 PM Environment:

OAUTH2 Open ID Connect Community module doesn't support for keycloak.

There are two problems;

a) The tokens returned by keycloak (as an oidc server) cause an "enc (use) is 
currently not supported" error

b) Keycloak puts roles nested inside the ID token - and the module only 
supports one level to indicate where in the token the roles are.

I am creating a PR request for this.

Priority: Medium Reporter: David Blasby ( 
https://osgeo-org.atlassian.net/secure/ViewProfile.jspa?accountId=5e5850b0e7724a0e726439a4
 )

( 
https://osgeo-org.atlassian.net/browse/GEOS-10536#add-comment?atlOrigin=eyJpIjoiNzAzNWMyOGRhNmM5NGY3YzlkOTZlOWQyMTA3ZDdlOGMiLCJwIjoiaiJ9
 ) Add Comment ( 
https://osgeo-org.atlassian.net/browse/GEOS-10536#add-comment?atlOrigin=eyJpIjoiNzAzNWMyOGRhNmM5NGY3YzlkOTZlOWQyMTA3ZDdlOGMiLCJwIjoiaiJ9
 )

Get Jira notifications on your phone! Download the Jira Cloud app for Android ( 
https://play.google.com/store/apps/details?id=com.atlassian.android.jira.core&referrer=utm_source%3DNotificationLink%26utm_medium%3DEmail
 ) or iOS ( 
https://itunes.apple.com/app/apple-store/id1006972087?pt=696495&ct=EmailNotificationLink&mt=8
 ) This message was sent by Atlassian Jira (v1001.0.0-SNAPSHOT#100200- 
sha1:9199305 )
_______________________________________________
Geoserver-devel mailing list
Geoserver-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/geoserver-devel














    











					Reply via email to