External-Mirrors/keycloak
2
0
Fork 0
mirror of https://github.com/keycloak/keycloak.git synced 2026-01-10 15:32:05 -03:30
Code Issues Packages Projects Releases Wiki Activity

FAPI 2.0 Message Signing Final - Add FAPI 2.0 Final message singning as default profile of client policies

Browse Source 
closes #41312

Signed-off-by: Takashi Norimatsu <takashi.norimatsu.ws@hitachi.com>
This commit is contained in:
Takashi Norimatsu 2025-09-07 03:28:28 +09:00 committed by Marek Posolda
parent 91fa1fe6b1
commit cdced6ca0d
1 changed files with 12 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
services/src/main/resources/keycloak-default-client-profiles.json
View File

@ -213,7 +213,7 @@
},
{
"name": "fapi-2-message-signing",
"description": "Client profile, which enforce clients to conform 'FAPI 2.0 Message Signing' specification.",
"description": "Client profile, which enforce clients to conform 'FAPI 2.0 Message Signing Final' specification.",
"executors": [
{
"executor": "confidential-client",
@ -226,7 +226,7 @@
"client-jwt",
"client-x509"
],
"default-client-authenticator": "client-jwt"
"default-client-authenticator": "client-jwt"
}
},
{
@ -242,7 +242,7 @@
{
"executor": "secure-signature-algorithm-signed-jwt",
"configuration": {
"require-client-assertion": false
"require-client-assertion": false
}
},
{
@ -286,6 +286,10 @@
"available-period": "3600",
"encryption-required": false
}
},
{
"executor": "secure-client-authentication-assertion",
"configuration": {}
}
]
},
@ -457,7 +461,7 @@
},
{
"name": "fapi-2-dpop-message-signing",
"description": "Client profile, which enforce clients to conform 'FAPI 2.0 Message Signing' with DPoP specification.",
"description": "Client profile, which enforce clients to conform 'FAPI 2.0 Message Signing Final' with DPoP specification.",
"executors": [
{
"executor": "confidential-client",
@ -530,6 +534,10 @@
"configuration": {
"auto-configure": "true"
}
},
{
"executor": "secure-client-authentication-assertion",
"configuration": {}
}
]
},