Reputation: 205
How to configure wso2is to generate signed and encrypted Openid Connect token?
Is it possible to configure wso2is to generate signed and encrypted Openid Connect token? And how can I validate these token on client?
Upvotes: 0
Views: 83
Answers (1)
Reputation: 3011
By default OpenID Connect Token is signed by WSO2 Identity Server. To verify the signature you can use a code snippet from this doc.
As of the current implementation, we do not support encrypting the id_token out of the box. You do have the liberty to extend the default id_token building logic by writing an extension to encrypt the id_token. (If you want more details I'll update the answer with more details)
Update: ID Token Encryption is supported OOTB with WSO2 Identity Server 5.5.0 onwards. Check https://docs.wso2.com/display/IS550/Testing+OIDC+Encrypted+ID+Token+with+IS
Upvotes: 1
Related Questions
- Adding WSO2 IS Oauth / OpenId Connect Service Provider using configuration files
- WSO2 Token generation without password
- Configuring Single Sign-on with OpenID Connect
- WSO2IS OAuth/OpenId Connect SSO Setup
- Validating OAuth2 token in WSO2
- WSO2 openID configuration
- WSO2 Identity Server JWT Bearer
- wso2is - Adding new keystore
- OpenID based SSO with WSO2 Identity Server
- Customized OAUTH2.0 with WSO2 API Manager