Rolestack

Most people who want this feature are probably looking for integration with self-hosted SSO solutions like Keycloak, Authentik, or Authelia. I'm using Authentik myself.

It would be very nice to disable default login and have OIDC login automatically.

According to the [OpenID Connect Core 1.0](https://openid.net/specs/openid-connect-core-1_0.html#IDTokenValidation), ID token encryption is optional. That said, encryption is still a good idea. It helps keep the token's contents private and prevents sensitive...

Authentik added JWE support for OAuth in their [2024.10.0 release](https://docs.goauthentik.io/docs/releases/2024.10?utm_source=chatgpt.com#new-features). I'm not sure if other products have implemented this feature yet.