Does it makes sense to support DPoP in the keycloak.js adapter?
In theory, it can work as long as every page has dedicated public/private key, which means that the client (browser) itself will need somehow to generate public/private keypair and handle all the cryptography stuff. It should be possible to do this with Web cryptography API (See comment on this issue for some more reference to this API)...
I don't know if it is useful, so please upvote if you consider this as useful feature.
Does it makes sense to support DPoP in the keycloak.js adapter?
In theory, it can work as long as every page has dedicated public/private key, which means that the client (browser) itself will need somehow to generate public/private keypair and handle all the cryptography stuff. It should be possible to do this with Web cryptography API (See comment on this issue for some more reference to this API)...
I don't know if it is useful, so please upvote if you consider this as useful feature.