Uploaded image for project: 'Keycloak'
  1. Keycloak
  2. KEYCLOAK-6771

Holder of Key mechanism: OAuth 2.0 Certificate Bound Access Tokens

    XMLWordPrintable

Details

    • Feature Request
    • Status: Closed
    • Major
    • Resolution: Done
    • None
    • 4.0.0.Final
    • OIDC

    Description

      Holder of Key mechanism support in OAuth 2.0 Mutual TLS Client Authentication and Certificate Bound Access Tokens, which is one of requirement of Financial API (FAPI) Read and Write API Security Profile (http://openid.net/specs/openid-financial-api-part-2.html#authorization-server).

      Attachments

        Issue Links

          is related to

          Feature Request - Feature requests from customers and/or users KEYCLOAK-7512 OAuth 2.0 Mutual TLS Client Authentication

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Feature Request - Feature requests from customers and/or users KEYCLOAK-7499 Holder of Key mechanism: HoK Token Verification on Wildfly/JBoss EAP Client Adapter operating as Resource Server

          • Minor - To be worked after urgent, high, and medium priorities are resolved. This term is chosen when the severity of the issue is low, or the complexity or effort to correct it may be higher, relatively speaking. For low priority issues, known workarounds exist or are not needed due to the trivial effort needed to address the issue.
          • Closed
          relates to

          Feature Request - Feature requests from customers and/or users KEYCLOAK-6767 FAPI (Financial API) Security Profile Support

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Enhancement - An enhancement or refactoring of existing functionality KEYCLOAK-7959 OAuth 2.0 Certificate Bound Access Tokens in Reverse Proxy Deployed Environment

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Activity

            People

              Unassigned Unassigned
              tnorimat Takashi Norimatsu (Inactive)
              Votes:
              2 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: