siddhartha chakraborty
Reputation: 475
Keycloak cookies : KEYCLOAK_SESSION,Oauth_token_request_state, KEYCLOAK_IDENTITY
Can someone please explain the cookies set by Keycloak: KEYCLOAK_SESSION,Oauth_token_request_state, KEYCLOAK_IDENTITY.
What is the relevance of each cookies?
Upvotes: 27
Views: 53660
Answers (1)
antoine
Reputation: 688
They are cookies for internal use of Keycloak.
KEYCLOAK_IDENTITY contains a token (JWT) with the user ids. You can view its content using jwt.io (for example). This cookie lives with your browser session and can also be refreshed with SSO. (for example, if you change some of your personal data in the "Manage my account")
KEYCLOAK_SESSION your session id associated to the concerned realm.
Oauth_token_request_state is part of the Oauth spec in order to avoid hacking of the redirect link after login
Upvotes: 40
Related Questions
- What are Keycloak's OAuth2 / OpenID Connect endpoints?
- Introspection Endpoint of KeyCloak server
- Can we set HttpOnly flag to KEYCLOAK_SESSION cookie?
- Keycloak: Session cookies are missing within the token request with the new Chrome SameSite/Secure cookie enforcement
- From Keycloak Login : How can I get the Bearer Token from KEYCLOAK_IDENTITY/KC_RESTART cookie
- How to get the last login session details of a user in Keycloak using Keycloak rest endpoints?
- Can I set KEYCLOAK_IDENTITY cookie by myself
- Keycloak Introspection Endpoint
- Keycloak creates an extra AUTH_SESSION_ID cookie with a path of "/auth" when logging in
- Session Management using keycloak