Please add support for HS256

Question

Please add support for HS256

faxm0dem opened this issue 5 years ago · 3 comments

Hi,

First of all thanks for this project, and the excellent documentation. We're trying to use keycloak with this setup, and are having problems because of the default signing algorithm:

[debug] 328/151714 (32616) : RS256 supported. Incorrect alg in JWT: HS256
[debug] 328/151714 (32616) : Algorithm not valid.
[debug] 328/151714 (32616) : req.authorized = false

Would it be possible to support HS256 ?

Answer 1 · 2020-11-26T02:35:15.000Z

It should be possible, but I will need to read the luaossl docs to see how. https://raw.githubusercontent.com/wahern/luaossl/master/doc/luaossl.pdf

Answer 2 · 2020-11-26T06:41:45.000Z

@faxm0dem I've added logic to support HS256. You will need to add a line to your HAProxy config in the global section:

setenv OAUTH_HMAC_SECRET <your secret key here>

Please let me know if this works for you.

Answer 3 · 2020-11-26T09:41:16.000Z

I just tested it and it works as expected !
Thanks a bunch for your quick action !