Testing Keycloak OAuth2 introspection

Requirements

export KC_VERSION=3.0.0.Final
./setup.sh && ./test.sh && ./tear_down.sh

The keycloak.h2.db contains an introspection realm
The realm has a modified settings:
- 1 minute is the life of an access_token
- 2 minutes is the SSO Idle time
The setup.sh scripts downloads the Keycloak distribution, unpacks it and copies the keycloak.h2.db to the proper location. Then starts Keycloak server in the background, waiting 45secs
The test.sh script, makes token requests using curl and processing the responses with jq
- Request an offline token using direct grants
- Use the offline token to obtain an access token and use the introspection endpoint to verify it. It works as there is one active offline session.
- Wait more then 2min to the offline session expires
- Use the offline token to obtain a new access token
- Use the introspection endpoint to verify the new access token. This fails as there is no active session
The tear_down.sh stops the Keycloak server

Name		Name	Last commit message	Last commit date
Latest commit History 5 Commits
LICENSE		LICENSE
README.md		README.md
keycloak.h2.db		keycloak.h2.db
setup.sh		setup.sh
tear_down.sh		tear_down.sh
test.sh		test.sh