keycloak/keycloak

OAuth2.1 Client-Policy prevents update of client

Open

#30.140 aperta il 4 giu 2024

Vedi su GitHub
 (4 commenti) (0 reazioni) (0 assegnatari)Java (8346 fork)batch import
area/authenticationhelp wantedkind/bugpriority/lowteam/core-clients

Metriche repository

Star
 (34.398 star)
Metriche merge PR
 (Merge medio 6g 19h) (384 PR mergiate in 30 g)

Descrizione

Before reporting an issue

  • I have read and understood the above terms for submitting issues, and I understand that my issue may be closed without action if I do not follow them.

Area

authentication

Describe the bug

I have a client policy with the condition "client-access-type=confidential" and the policy "oauth-2-1-for-confidential-client"

When I now open an affected client in the keycloak admin console, change its settings and try to safe, I get an error: {"error":"invalid_client_metadata","error_description":"Invalid client metadata: token_endpoint_auth_method"}

Version

24.0.4

Regression

  • The issue is a regression

Expected behavior

Client settings should be changeable in the keycloak admin console no matter the client policies.

Actual behavior

The client policy prevents an update of the client settings via the keycloak admin console.

How to Reproduce?

Create a confidential client. Create a client policy as described previously. Try to update the settings of the client.

Anything else?

No response

Guida contributor