Closed larsw closed 5 years ago
To answer my own question; seems like this project could need some better release management; the documentation presented in the README.md
that also acts as the landing page in the github repo states that the aforementioned headers (X-ID-Token
and X-Access-Token
) will be sent upstream - this is not true (yet), since it a new release with the feature has not been released! ...
oh...
thanks ^.^
the master branch not a release verison on luarocks.org
Hi,
Only the
X-Userinfo
header is sent upstream. I read through the code, and it seems that it checks whether the response fromresty-openidc.authenticate()
containsid_token
andaccess_token
. I tried to use set theconfig.response_type
parameter tocode id_token token
to instruct Keycloak to send the access_token, but it seems like resty-openidc has hard coded theresponse_type
tocode
. What is weird, is that I assumed that the query against the userinfo endpoint used the access token to retrieve the details.Any details on how I can fix this?