27-Oct-2020 20:32
Hi
I've got an OAuth integration in place using APM as the OAuth client. It uses a clientID and clientSecret to authenticate and request the id token.
I have just been informed that the Authorization Server will soon be upgraded and will require the client authentication to be via private key JWT instead of the secret. As per the openid spec linked https://openid.net/specs/openid-connect-core-1_0.html#ClientAuthentication
Is this currently supported in APM? I'm running 14.1.2 at the moment and don't see any options like this in the GUI. Has it been added to v15 or 16?
Or would I have to try and do something using iLX?
Cheers,
Simon
10-Jul-2021 03:26
This wasn't supported when I was last looking last year. I'm not sure if/when it'll make it into APM.