Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add Token authentication config to OpenID Connect configuration #57

Closed
robotdan opened this issue Feb 7, 2022 · 1 comment
Closed

Add Token authentication config to OpenID Connect configuration #57

robotdan opened this issue Feb 7, 2022 · 1 comment
Assignees
@robotdan
Labels
enhancement New feature or request
Projects
CleanSpeak Issues
Milestone
3.32.1

Comments

@robotdan
Copy link

robotdan commented Feb 7, 2022
edited

Add Token authentication config to OpenID Connect configuration

Description

Currently we always use the Authorization header when calling the Token endpoint which is the client_secret_basic method. However, we also add the client_id to the request body which is technically client_secret_post even though we aren't passing the client_secret in the body.

Some IdPs don't like this and will error. Here is an example from Okta

  {
    "error": "invalid_request",
    "error_description": "Cannot supply multiple client credentials. Use one of the following: credentials in the Authorization header, credentials in the post body, or a client_assertion in the post body."
  }

So as we have in FusionAuth, we need to add a configuration option to select which authentication method works with your IdP and then choose one or the other based upon this configuration.

Related
@asharafzwift
Copy link

Hello, do you guys know when this will be resolved?

@robotdan robotdan self-assigned this Feb 8, 2022
@robotdan robotdan added the enhancement New feature or request label Feb 8, 2022
@robotdan robotdan added this to Backlog in CleanSpeak via automation Feb 8, 2022
@robotdan robotdan added this to Code Complete in CleanSpeak Issues Feb 8, 2022
@robotdan robotdan removed this from Backlog in CleanSpeak Feb 8, 2022
@robotdan robotdan added this to the 3.32.1 milestone Feb 8, 2022
@robotdan robotdan mentioned this issue Feb 13, 2022
Closed
@robotdan robotdan closed this as completed Mar 2, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@robotdan robotdan

Labels
enhancement New feature or request
Projects
CleanSpeak Issues
Code Complete
Milestone
3.32.1
Development

No branches or pull requests
2 participants
@robotdan @asharafzwift