nginx-openid-connect icon indicating copy to clipboard operation
nginx-openid-connect copied to clipboard
verified publisher icon nginxinc

Add certificate‑bound access tokens support to this OIDC Reference Implementation

Open writemike opened this issue 3 years ago • 2 comments

Could mutual TLS (mTLS) client certificate‑bound access tokens (defined in RFC 8705) integration be added into NGINX's OIDC Reference implementation. An example of its implementation was provided in a recent NGINX Plus R25 Blog Post. The OIDC Reference implementation would just need to validate that the cnf claim and client cert exists before performing the validation or provide an option to enable the feature. Please let me know if anymore detail would be helpful.

writemike avatar Mar 25 '22 01:03 writemike

Hi @writemike , Is this issue still relevant for you?

route443 avatar Aug 22 '25 20:08 route443

Nope, this customer is long gone.

writemike avatar Aug 23 '25 01:08 writemike