Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

KeyCloakConfig does not allow to configure trust for key fetching #514

Open
pardeike opened this issue Feb 19, 2024 · 1 comment
Open

KeyCloakConfig does not allow to configure trust for key fetching #514

pardeike opened this issue Feb 19, 2024 · 1 comment
Labels
kind/bug status/triage

Comments

@pardeike
Copy link

Describe the bug

We need to define CA trust for our adapter when it fetches new public keys. Currently this is possible in an arcane way using environment variables but requires detailed knowledge on how to do that.

A natural way to configure that would be with some sort of “ca:” property in KeyCloakConfig.

Version

15.0.2-redhat-00001

Expected behavior

It should be easy to supply trust for key fetch requests.

Actual behavior

We are using NODE_EXTRA_CA_CERTS instead. It is suboptimal and creates a few problems when running CI/CD and when the node process should have different trust roots for different endpoints.

How to Reproduce?

No response

Anything else?

No response
@jackjia-ibm
Copy link

Our team encountered similar issue. I'm happy to help on creating a pull request if needed.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
kind/bug status/triage
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@pardeike @jackjia-ibm