oidc: id token signed with unsupported algorithm, expected ["RS256"] got "ES384"

thomseddon / traefik-forward-auth

Minimal forward authentication service that provides Google/OpenID oauth based login and authentication for the traefik reverse proxy

MIT License

2.18k stars 412 forks source link

oidc: id token signed with unsupported algorithm, expected ["RS256"] got "ES384" #358

Open TheLonelinessOfHS opened 1 year ago

TheLonelinessOfHS commented 1 year ago

Could you please add support for more algorithms? Thanks!

TheLonelinessOfHS commented 1 year ago

For those who are interested in this, in oidc.go use the following in lines 55-58:

    o.verifier = o.provider.Verifier(&oidc.Config{
        ClientID: o.ClientID,
        SupportedSigningAlgs: []string{"RS256", "ES384"},
    })

AdriDevelopsThings commented 6 months ago

You don't have to set the supported signing algorithms manually. The oidc configuration automatically provides the algorithms that are supported. But I got this error too but updating to the version 2.3.0 worked for me.