Nonce not in access token

wombach · November 25, 2021, 12:24am

Hi,

I am trying to login with password and add a nonce value in the related access token
I am using the following parameters
data_call = {“grant_type” : “password”,
‘username’ : username,
‘password’:password,
‘client_id’:‘flask2’,
‘scope’:‘openid microprofile-jwt profile’,
‘state’: ‘state_AW0815’,
‘nonce’: 1234,
‘response_type’:‘code’
}
req3 = requests.post(KEYCLOAK_URL, data=data_call)
But the result does not contain the nonce value.
I am not able to find how and when the nonce value is added to the access token.
Any help or pointer is highly appreciated.

Thanks
Andrea

jangaraj · November 27, 2021, 5:08am

See doc Final: OpenID Connect Core 1.0 incorporating errata set 1 I would say that nonce should be returned in the ID token, not access token. Also nonce should be in the auth request and this should be request for token endpoint because it looks like direct access grant flow.
It looks like ditect access flow but then why response type is code? You are mixing a lot of variables from different flows. You should know which flow you are trying to use first and then use correct parameters accordingly.

Topic		Replies	Views
OpenID Provider [oidc] did not return a nonce Getting advice oidc	4	2237	February 1, 2021
Access token v Token ID Returned in Python Flask Tips and tricks	2	1156	September 8, 2022
Access token content and length Getting advice oidc	3	3337	July 23, 2021
I need an access token not in JWT format authentication , oidc	0	423	December 19, 2022
Implementing twitch OIDC flow gives No access_token from server Securing applications	4	3203	September 8, 2020

Nonce not in access token

Related topics