Keycloak v12 | Unable to get "userinfo" using "service account" token


Calling <base_url>/auth/realms/<realm>/protocol/openid-connect/userinfo with the access_token of a service account throws 500 Internal Server Error. Therefore the adapter is not able to authenticate the client.

Note: This only happens in version 12.* but works fine in version 11.*

Is it a bug or an intentional change in version 12?


1 Like

Hi, I just noticed the same thing. Tips to fix the problem you can enable this option but Iā€™m not sure if this is a good practice? Personally I use a TokenReader on the client side to get around the problem.