Details
-
Bug
-
Resolution: Unresolved
-
Major
-
None
-
26.0.1.Final
-
None
Description
There are multiple different ways to configure OIDC in Wildfly and a few of them result in:
ERROR [org.wildfly.security.http.oidc] (default task-1) ELY23013: Failed verification of token: ELY23019: Invalid ID token
For example including the provider-url directly inside the secure-deployment element of the standalone.xml in combination with a Keycloak configured with a different front end address vs back end. The scenario where the provider element is used separately from the secure-deployment element also causes this.