Open
Description
Before reporting an issue
- I have read and understood the above terms for submitting issues, and I understand that my issue may be closed without action if I do not follow them.
Area
No response
Describe the bug
Keycloak does not publish the HS512 secret key via the JWKS endpoint, but signs the email verification token with it.
I want to be able to set a secret to sign such a token, but it is not possible.
tried via realm import, tried via env KC_SPI_ACTION_TOKEN_HANDLER_DEFAULT_SECRET, tried via env KC_ACTION_TOKEN_SIGNING_KEY, tried via keycloak.conf...
I don't want the user to verify the email through the keylock interface, I want to receive a link to the email that leads from vue3 -> java backend where I will analyze the token and make an email confirmation.
Tell me if there is a working approach in the current version?
Version
26.2
Regression
- The issue is a regression
Expected behavior
can't set ACTION_TOKEN_KEY
Actual behavior
can't set ACTION_TOKEN_KEY
How to Reproduce?
can't set ACTION_TOKEN_KEY
Anything else?
No response