feat: token introspection, api clients and auth method private_key_jwt (#1276)

* introspect * testingapplication key * date * client keys * fix client keys * fix client keys * access tokens only for users * AuthMethodPrivateKeyJWT * client keys * set introspection info correctly * managae apis * update oidc pkg * cleanup * merge msater * set current sequence in migration * set current sequence in migration * set current sequence in migration * Apply suggestions from code review Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> * DeleteAuthNKeysByObjectID * ensure authn keys uptodate * update oidc version * merge master * merge master Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
2025-12-05 21:02:05 +00:00 · 2021-02-17 15:31:47 +01:00
parent 39eb172804
commit 744185449e
64 changed files with 2275 additions and 836 deletions
--- a/cmd/zitadel/startup.yaml
+++ b/cmd/zitadel/startup.yaml
@@ -194,6 +194,7 @@ API:
      Issuer: $ZITADEL_ISSUER
      DefaultLogoutRedirectURI: $ZITADEL_ACCOUNTS/logout/done
      CodeMethodS256: true
+      AuthMethodPrivateKeyJWT: true
    StorageConfig:
      DefaultLoginURL: $ZITADEL_ACCOUNTS/login?authRequestID=
      DefaultAccessTokenLifetime: 12h
@@ -215,6 +216,9 @@ API:
      Token:
        Path: 'token'
        URL: '$ZITADEL_OAUTH/token'
+      Introspection:
+        Path: 'introspect'
+        URL: '$ZITADEL_OAUTH/introspect'
      EndSession:
        Path: 'endsession'
        URL: '$ZITADEL_AUTHORIZE/endsession'
--- a/cmd/zitadel/system-defaults.yaml
+++ b/cmd/zitadel/system-defaults.yaml
@@ -45,6 +45,7 @@ SystemDefaults:
      IncludeDigits: true
      IncludeSymbols: false
    MachineKeySize: 2048
+    ClientKeySize: 2048
  Multifactors:
    OTP:
      Issuer: 'ZITADEL'