A little tool for debugging claims contained in JSON Web Tokens (JWT) issued by Keycloak confidential clients
Project description
Keycloak JWT Checker
A little tool for debugging claims contained in JSON Web Tokens (JWT) issued by Keycloak confidential clients.
Keycloak configuration can be quite complex. So I found it useful to have a tool to look at the claims contained in JWTs. You can see quickly if they contain the values you need for your use case.
The CLI tool takes the credentials of the client you configured in Keycloak and uses some user's credentials to issue tokens for that user using OIDC endpoints. It then decodes the JWT and displays its claim content on stdout.
Install
pip install keycloak-jwt-checker
Usage
$ keycloak-jwt-checker --help
Usage: keycloak-jwt-checker [OPTIONS]
Keycloak JWT Checker.
A little tool for debugging claims contained in JSON Web Tokens (JWT) issued
by Keycloak confidential clients.
Options:
--server-url TEXT URL of the Keycloak server [required]
--client-id TEXT Client ID [required]
--client-secret TEXT Client secret [required]
--realm TEXT Realm [required]
--username TEXT Username of a Keycloak user you configured for this
client [required]
--password TEXT Password of a Keycloak user you configured for this
client [required]
--skip-tls-verification Set this flag if the TLS verification should be
skipped on OIDC endpoints
--help Show this message and exit.
Environment Variables
If you are concerned about security or just don't want to use the CLI options for secrets or passwords, you can also use the following environment variables to provide these values to Keycloak JWT Checker.
KEYCLOAK_JWT_CHECKER_SERVER_URL=http:localhost:8080
KEYCLOAK_JWT_CHECKER_CLIENT_ID=test
KEYCLOAK_JWT_CHECKER_CLIENT_SECRET=verysecretsecret
KEYCLOAK_JWT_CHECKER_REALM=myrealm
KEYCLOAK_JWT_CHECKER_USERNAME=testuser
KEYCLOAK_JWT_CHECKER_PASSWORD=testpassword
KEYCLOAK_JWT_CHECKER_SKIP_TLS_VERIFICATION=true
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file keycloak_jwt_checker-1.0.1.tar.gz.
File metadata
- Download URL: keycloak_jwt_checker-1.0.1.tar.gz
- Upload date:
- Size: 3.3 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: poetry/2.0.1 CPython/3.12.3 Linux/6.8.0-1020-azure
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
7ce15cb202b53a35ad9282a2d1b187a2af4591163d2dd8d52da3a90511129c2d
|
|
| MD5 |
2c72bc6f0a9e71c4b1ba1da8c48447c8
|
|
| BLAKE2b-256 |
7c7c22fe3a86e1c6d0c86b5efd438084cade77be46e561aa9cc6e11e2f1daec7
|
File details
Details for the file keycloak_jwt_checker-1.0.1-py3-none-any.whl.
File metadata
- Download URL: keycloak_jwt_checker-1.0.1-py3-none-any.whl
- Upload date:
- Size: 4.2 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: poetry/2.0.1 CPython/3.12.3 Linux/6.8.0-1020-azure
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
37d50ff00bef7bb7a26ef01d21d9674b9b39d2b0fc3c0afba9c671ec549c2e01
|
|
| MD5 |
41260fddafce781c72c60f0f482b3921
|
|
| BLAKE2b-256 |
d43812f89cb84b6da76f70e0346c44c16592414782f05f57e8afcf589adfa39c
|
