RSA-OAEP-256 support in RH SSO

Solution Unverified - Updated -

Issue

  • Does RHSSO have support for id token encryption or signing with RSA-OAEP-256 when RHSSO is acting as an identity broker with a 3rd party identity provider?

  • Under Realm settings -> Keys -> Providers -> Add keystore in RH SSO (compared to Keycloak 16.1.1 and up) an option for "rsa-enc-generated" provider which includes RSA-OAEP-256 for key encryption is missing.

  • Under Identity Provider settings (OpenID Connect v1.0 or Keycloak OpenID Connect) there is no option to configure key encryption, specifically we are looking for RSA-OAEP-256.

Environment

  • Red Hat Single Sign-On(RHSSO)
    • 7.5.x

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content