OAUTH2 Open ID Connect Community module doesn't support for keycloak.
There are two problems;
a) The tokens returned by keycloak (as an oidc server) cause an "enc (use) is currently not supported" error
b) Keycloak puts roles nested inside the ID token - and the module only supports one level to indicate where in the token the roles are.
I am creating a PR request for this.
Thanks David, fixe is merged and backport to 2.21.x branch. Marking resolved.
OAUTH2 Open ID Connect Community module doesn't support for keycloak.
There are two problems;
a) The tokens returned by keycloak (as an oidc server) cause an "enc (use) is currently not supported" error
b) Keycloak puts roles nested inside the ID token - and the module only supports one level to indicate where in the token the roles are.
I am creating a PR request for this.