Formed in 2009, the Archive Team (not to be confused with the archive.org Archive-It Team) is a rogue archivist collective dedicated to saving copies of rapidly dying or deleted websites for the sake of history and digital heritage. The group is 100% composed of volunteers and interested parties, and has expanded into a large amount of related projects for saving online and digital history.
Join GitHub today
GitHub is home to over 50 million developers working together to host and review code, manage projects, and build software together.
Sign upMaking nonce settable even if response_type is not equal to 'id_token' #709
Conversation
Keycloak required nonce but there was no way I was able to set nonce for response_type=token.
gagandeep
changed the title
gagandeep
changed the title
|
@pi0 & @JoaoPedroAS51 Please review this. |
jkupcho
commented
Jun 15, 2020
|
You can enforce a nonce being sent by setting the See: |
|
@jkupcho I agree with you. But, If I need to set we are extracting However, we are setting nonce only if My expectation was setting nonce through params however because of above-explained logic nonce cannot be set through params unless Let me know, if you agree with me or not. |
jkupcho
commented
Jun 20, 2020
|
Yeah I think that makes sense. Are you seeing flows where the nonce is necessary outside of |
|
Keycloak has nonce enabled for
|
gagandeep commentedMay 29, 2020
Keycloak required nonce for response_type=token but there was no way I was able to set nonce.