Uploaded image for project: 'Keycloak'
  1. Keycloak
  2. KEYCLOAK-1881

Support keys and certificate rotation for SAML IdP

    XMLWordPrintable

Details

    • Feature Request
    • Status: Closed (View Workflow)
    • Major
    • Resolution: Done
    • None
    • 2.4.0.CR1
    • None
    • None

    Description

      We recently introduced support for key rotation for OIDC. Keycloak can have one active signing key and several passive keys for validation. This is also supported by OIDC adapters that can download certificates from Keycloak. We also support retrieving keys from external IdPs so we can obtain new keys. We need the same functionality added to SAML.

      Attachments

        Issue Links

          Activity

            People

              hmlnarik@redhat.com Hynek Mlnařík
              rhit_vkumar Vikas Kumar
              Votes:
              2 Vote for this issue
              Watchers:
              6 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: