Closed ctriant closed 1 year ago
The following behavior was identified and resolved:
[client-a]
active: true
The expectation was to get active: false because the token was not intended to be used by Client-B.
active: false
With these changes the introspection endpoint will
The following behavior was identified and resolved:
[client-a]active: true, plus information about the token.The expectation was to get
active: falsebecause the token was not intended to be used by Client-B.With these changes the introspection endpoint will
active: falseif the token is sent by a client that is not within the audience of the token