We are using keycloak as our SSO integration solution.
When we receive entity descriptor metadata XML files from users, normally they are accepted by keycloak directly without incident but sometimes these files contain a field called KeyDescriptorType and its of type “encryption”. When it is of type “encryption” it seems Keycloak can no longer make use of the XML file.
In my research, I see that the KeyDescriptorType can be either “signing” or "encryption, and that “signing” seems to work fine. Is there some way to get Keycloak to accept the “encryption” type as well?
Best Regards,
Mark