Dears,
I would dearly like Keycloak to put a full JWT in the Authorization header, for upstream APIs to inspect. Additionally it would be nice to have an X509 in x5c header for validation. Does anyone know how to do this please?
I am aware of the enable-token-header property, which should do something similar, but where to configure this?
Yours,
Michael