CAS-management, CAS5.3.x, OIDC, what is JSON Web Keystore?

47 views
Skip to first unread message

Yan Zhou

unread,
Apr 3, 2019, 3:52:15 PM4/3/19
to CAS Community
Hello,

CAS 5.3.x,  CAS-management. I imported a OIDC service definition to UI.

Looks like this.  But the UI is asking me to provide JSON Web KeyStore, Encryption Algorithm, and Encryption Encoding Algorithm.  What are these?

On both cas.properties and management.properties, I have defined this.  Should not cas-management load this already?

cas.authn.oidc.jwksFile=file://....../my.jwks


Thx!
Yan

{
  "@class": "org.apereo.cas.services.OidcRegisteredService",
  "clientId": "demoOIDC",
  "clientSecret": "password",
  "serviceId": "^https://oidcdebugger.com/debug",
  "signIdToken": true,
  "implicit": true,
  "bypassApprovalPrompt": true,
  "name": "debugger app",
  "id": 207929965088748,
  "attributeReleasePolicy" : {
    "@class" : "org.apereo.cas.services.ReturnAllAttributeReleasePolicy"
  },  
  "evaluationOrder": 100,
  "encryptIdToken": false,
  "scopes": [ "java.util.HashSet",
    [ "openid", "email"]
  ],
  "keys": [
    {
      "kty": "RSA",
      "d": ".....",
      "e": "AQAB",
      "use": "sig",
      "alg": "RS256",
      "n": "....."
    }
  ]  
}
Reply all
Reply to author
Forward
0 new messages