• caglararli@hotmail.com
  • 05386281520

How to encrypt REST body with openid connect OIDC

Çağlar Arlı      -    24 Views

How to encrypt REST body with openid connect OIDC

The big picture is:

  • an android application which authenticate user with an external openid provider (such as azure AD)

  • a Java EE server which expose rest endpoints securized with the validation of the jwt token generated by the openid provider and appendend by the android application on each request

What is the best way to encrypt each request?

I saw JWE but it seems that it encrypt only the JWT and it's not clear how to implement JWE with an openid external provider.