oidc: id token signed with unsupported algorithm, expected ["RS256"] got "ES384"

thomseddon / traefik-forward-auth

Minimal forward authentication service that provides Google/OpenID oauth based login and authentication for the traefik reverse proxy

MIT License

2.12k stars 406 forks source link

oidc: id token signed with unsupported algorithm, expected ["RS256"] got "ES384" #358

Open TheLonelinessOfHS opened 10 months ago

TheLonelinessOfHS commented 10 months ago

Could you please add support for more algorithms? Thanks!

TheLonelinessOfHS commented 10 months ago

For those who are interested in this, in oidc.go use the following in lines 55-58:

    o.verifier = o.provider.Verifier(&oidc.Config{
        ClientID: o.ClientID,
        SupportedSigningAlgs: []string{"RS256", "ES384"},
    })

AdriDevelopsThings commented 4 months ago

You don't have to set the supported signing algorithms manually. The oidc configuration automatically provides the algorithms that are supported. But I got this error too but updating to the version 2.3.0 worked for me.