Token validation using SharePoint

dtiwary · January 29, 2021, 3:01pm

Hi,

We have installed Keycloak 8.0.1 on Linux machine and configured two applications App1 (Java) and App2 (SharePoint) as clients.

we also configured Wsfed module in Keycloak for SharePoint, by following the below document.

	Protocol	Token Format
App1	openid-connect	JSON
App2	wsfed	SAML

While consuming API calls from APP1 to APP2 we are getting unauthorized response from APP2.

Please find below steps we have followed.

User login into APP1, authenticating from Keycloak server.
To make API call to APP2 from APP1, user gets new token(grant_type=token-exchange) from keycloak server by passing existing token (APP1 token).
User makes an API call to APP2 by sending this new token in Authorization header (where audience=APP2).

We need your support for below point.

How APP2(SharePoint) use this token to validate it with Keycloak?

is there any sample code available in dotnet to validate token in SharePoint through Keycloak?

Topic		Replies	Views
Sharepoint authentication from Keycloak Configuring the server	1	564	April 3, 2023
"Manual" validation of JWT in Java Securing applications	2	1216	March 19, 2020
Integrating Keycloak with a IT HIT webdav server + web client Securing applications adapter-javascript , authentication	0	689	August 9, 2021
Exisitng Symmetric HS512 secret key based Tokens Getting advice authentication	0	37	April 10, 2024
EJB to API call Securing applications	1	725	April 28, 2020