1

After configuring various realms, I'm trying to figure out if it's possible to customize the "/.well-known/openid-configuration" endpoint for each realm.

The goal is to modify fields such as:

  • grant_types_supported
  • ** _ alg_values_supported
  • ** _ auth_methods_supported and in general the fields present in the json.

I couldn't find anything in the official documentation or internet in general

HattoriHenzo
  • 11
  • 2
  • Why you need to modify that? That's for discovery, so service provider will know all available options and then it can decide which option will be used. – Jan Garaj Apr 03 '22 at 07:04
  • ok, those "well-known" are all the supported options keycloak's manage. But for example in my Realm for "grant_types_supported" field, I'll never have an "implicit" flow and I would filter it. Is this principle wrongs? – HattoriHenzo Apr 04 '22 at 09:52
  • Yes, that's wrong. Discovery is not to list what you have, but is there to list what your IDP can offer. You are not supposed to manage values in the discovery on your own. – Jan Garaj Apr 04 '22 at 12:13

0 Answers0