Client Authentication in HttpsJwks (2 way ssl)
Issue #102
on hold
While configuring HttpsJwks with an https url that does client authentication also, there is no way to configure client keystore. If an api is exposed that takes client keystore, truststore and passwords as input, it'll great. Or of there is any other way to use HttpsJwks with client auth?
Comments (2)
-
repo owner -
repo owner - changed status to on hold
putting this on hold for the time being
- Log in to comment
There's no out of the box support for client authentication with HttpsJwks. However you could do an implementation of SimpleGet that does mutual TLS client auth and set that implementation on the HttpsJwks instance.
org.jose4j.http.Get (see source) is the default implementation of SimpleGet that is used by HttpsJwks. You could copy and modify that or just see it as an example. If you are already using Apache's HttpClient or something, that could back the SimpleGet implementation too.