Not able to pass a client secret for OIDC KEYCLOAK #4495

abhi0698 · 2024-12-24T05:37:15Z

abhi0698
Dec 24, 2024

We need to enable client authentication in keycloak for controlling public access but after enabling that need to pass 'client secret' along with client id from dependency track ui but where can i get that variable...

valentijnscholten · 2025-01-01T16:11:42Z

valentijnscholten
Jan 1, 2025

DT uses a public client as it's all handled in the browser, so a secret would instantly become public which defeats the purpose of a secret. There's still protection in place by making sure only valid redirect urls are allowed by your IdP (Keycloak).

1 reply

abhi0698 Jan 4, 2025
Author

Thanks for the reply,

I'm trying to control the DT access to a specific group only. So, can you suggest any idea how we can achieve this using a keycloak as IDP.

Thanks.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Not able to pass a client secret for OIDC KEYCLOAK #4495

Uh oh!

{{title}}

Uh oh!

Replies: 1 comment 1 reply

Uh oh!

{{title}}

Uh oh!

Uh oh!

{{title}}

Uh oh!

Select a reply

Uh oh!

Uh oh!

Not able to pass a client secret for OIDC KEYCLOAK #4495

Uh oh!

abhi0698 Dec 24, 2024

Replies: 1 comment · 1 reply

Uh oh!

valentijnscholten Jan 1, 2025

Uh oh!

abhi0698 Jan 4, 2025 Author

abhi0698
Dec 24, 2024

Replies: 1 comment 1 reply

valentijnscholten
Jan 1, 2025

abhi0698 Jan 4, 2025
Author