when making requests (e.g. exchanging code for token, getting certs), user agent header is not set

keycloak / keycloak-nodejs-connect

Apache License 2.0

676 stars 421 forks source link

when making requests (e.g. exchanging code for token, getting certs), user agent header is not set #423

Open zainulabideen87 opened 2 years ago

zainulabideen87 commented 2 years ago

Description

Certain servers (AWS: block nouseragent-header in Web ACLs ) block requests that are missing user-agent headers. Due to this, it's not possible to retrieve JWKs or exchange code with access tokens.

Discussion

No response

Motivation

Due to security policies of cloud providers e.g., AWS, Azure they can block requests which don't have user agent headers.

Details

I would like to add user agent headers wherever requests are sent to keycloak servers

RoopanV commented 3 months ago

Facing similar issues from my side too. For now whitelisted the ip address.