github
/
OpenID-Connect-Java-Spring-Server
mirror of https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Signing JWT based on the default keyId. Currently, it signs based on the first key which has the desired algorithm.

Browse Source
pull/1612/head
Dmytri Eck 6 months ago
parent d074573de0
commit 7fd5a4a2e3
1 changed files with 4 additions and 1 deletions
Show Stats Download Patch File Download Diff File

3
openid-connect-client/src/main/java/org/mitre/openid/connect/client/OIDCAuthenticationFilter.java
Unescape View File

@ -425,6 +425,9 @@ public class OIDCAuthenticationFilter extends AbstractAuthenticationProcessingFi
null, null); null, null);
SignedJWT jwt = new SignedJWT(header, claimsSet.build()); SignedJWT jwt = new SignedJWT(header, claimsSet.build());
if (signer.getDefaultSignerKeyId() != null)
signer.signJwt(jwt);
else
signer.signJwt(jwt, alg); signer.signJwt(jwt, alg);
form.add("client_assertion_type", "urn:ietf:params:oauth:client-assertion-type:jwt-bearer"); form.add("client_assertion_type", "urn:ietf:params:oauth:client-assertion-type:jwt-bearer");

Write Preview
Loading…
Cancel
Save