I have seen some related questions about token introspection but none solve my problem.
My infra configurations uses Kong + OIDC plugin + KeyCloak.
When the client is a browser everything works fine, but I would like to access protected resources behind Kong using tools as API Postam and curl, when I try using a token at request header the Kong return a html page asking to me do login.
Hello guys,
I have seen some related questions about token introspection but none solve my problem. My infra configurations uses Kong + OIDC plugin + KeyCloak. When the client is a browser everything works fine, but I would like to access protected resources behind Kong using tools as API Postam and
curl
, when I try using a token at request header the Kong return a html page asking to me do login.My OIDC plugin config: