Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Creating oidc_client application using private_key_jwt authentication method #523

Closed
mahimavuppuluri opened this issue Jan 29, 2021 · 5 comments · Fixed by #525
Closed

Creating oidc_client application using private_key_jwt authentication method #523

mahimavuppuluri opened this issue Jan 29, 2021 · 5 comments · Fixed by #525
Labels
bug openapi

Comments

@mahimavuppuluri
Copy link

mahimavuppuluri commented Jan 29, 2021
edited
Loading

We are trying to create an OIDC application with authentication method: private_key_jwt

  1. Is this a valid authentication method for OIDC application?
  2. We are creating this via OKTA SDK. Noticed that for tokenEndPointAuthMethod, this is the enum: OAuthEndpointAuthenticationMethod. This enum has: none, client_secret_post, client_secret_basic, client_secret_jwt, but not what we are looking for. Can this be added?
  3. We are also creating service client app with the same authentication method. If we do not have private_key_jwt as a part of OAuthEndpointAuthenticationMethod enum, we wont be able to use the application builders and interfaces.
@sergiishamrai-okta
Copy link
Contributor

Thank you for the question! Can you help me understand more about application you working on?

The private_key_jwt client authentication method is the only supported method for OAuth service apps.

More info about OpenID Connect authentication standard is here

@mahimavuppuluri
Copy link
Author

mahimavuppuluri commented Jan 29, 2021
edited
Loading

Hi @sergiishamrai-okta I'm trying to create an app using OIdCApplicationBuilder. Here I'm trying to set authentication method to private_key_jwt. setTokenEndpointAuthMethod takes an enum of type: OAuthEndpointAuthenticationMethod. Here I do not see a value for private_key_jwt. How can we set this value while creating an application through the OIdCApplicationBuilder?

We need to create a service app as well, via the SDK (https://developer.okta.com/docs/guides/implement-oauth-for-okta-serviceapp/create-serviceapp-grantscopes/#create-a-service-app) Here too authentication method is private_key_jwt. Using the application builder, how can we set this value if it is not available in OAuthEndpointAuthenticationMethod enum?

@arvindkrishnakumar-okta
Copy link
Contributor

arvindkrishnakumar-okta commented Jan 29, 2021
edited
Loading

@mahimavuppuluri Thanks for reporting this. We're missing the required field value private_key_jwt in our spec. We'll get that fixed.

This was referenced Jan 29, 2021
Closed
Merged
@praveenatluri-okta
Copy link

@arvindkrishnakumar-okta Is there an internal Jira for this issue?

@arvindkrishnakumar-okta
Copy link
Contributor

@praveenatluri-okta OKTA-367757

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug openapi
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Add private_key_jwt to OAuthEndpointAuthenticationMethod okta/okta-sdk-java
4 participants
@praveenatluri-okta @arvindkrishnakumar-okta @mahimavuppuluri @sergiishamrai-okta