Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feature: OAuth public key based introspection for APISIX #1242

Closed
sshniro opened this issue Mar 13, 2020 · 0 comments · Fixed by #1266
Closed

Feature: OAuth public key based introspection for APISIX #1242

sshniro opened this issue Mar 13, 2020 · 0 comments · Fixed by #1266

Comments

@sshniro
Copy link
Member

sshniro commented Mar 13, 2020

Issue description

Currently, I'm using the introspection endpoint to verify the token with Keycloak. I would like to use the public key of the token to verify it locally instead of making an external request. The library used for OAuth also supports this functionality, but it is not exposed via the APISIX plugin.

https://github.com/zmartzone/lua-resty-openidc/blob/7d3cbe555f53a1a1378cdd9efdd4b7a6cda06d9f/lib/resty/openidc.lua#L1670

I would like to add support for this feature.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Adding support to public key based introspection for OAuth plugin sshniro/incubator-apisix
1 participant
@sshniro