iteratec / kcwarden

Keycloak Configuration Auditor
https://iteratec.github.io/kcwarden/
Apache License 2.0
11 stars 0 forks source link

Bug: exclude broker and realm-management from PKCE checks #27

Closed malexmave closed 1 month ago

malexmave commented 1 month ago

The two clients are internal clients that are for some reason showing up in the PKCE checker, even though they have no active flows.

malexmave commented 1 month ago

The clients show up because the config lists them as having standard flow enabled, which does not seem to be true - it is not shown in the UI, and they are also lacking redirect URIs, client secrets, etc.

Probably a bug / artifact in the config file. We should ignore these two clients in the relevant checks.