...
The OAuth2.Introspection profile configuration bean enables support for the OAuth2 Token Introspection profile, living at /idp/profile/oauth2/introspection
Supported response parameters are: active, scope, client_id, username, token_type, exp, iat, sub and iss, iss, and aud.
This implementation requires client authentication and requires that the client_id match either the value in the token or one of the audiences of the token to allow an accurate response.
Configuration
The most typical options used are described in more detail below, but not every obscure option is discussed. See the javadoc for all of the possible configuration options for this profile (note that some of them are inherited from parent classes).
...
| Expand | ||||||
|---|---|---|---|---|---|---|
| ||||||
|
| Expand | ||||||
|---|---|---|---|---|---|---|
| ||||||
For convenience, this is also controllable globally via theĀ idp.oidc.dynreg.tokenEndpointAuthMethods property. |