Ashwini A. Mutalik Desai

@aarongranick-okta - [#858](https://github.com/okta/okta-auth-js/pull/858) Doesn't seem to have fixed this. In fact there is a [test](https://github.com/okta/okta-auth-js/pull/858/files#diff-31248b8e227f0abc87cac139456eeafdfbbf0969406df60e9773b7c55e866843) which says "will always use issuer from well-known openid-configuration" in this PR. We are also...

@sdelamo - Is there any update on this? There is [another issue](https://github.com/micronaut-projects/micronaut-aws/issues/1308) on similar lines.

@jameskleeh Missed this thread earlier. Example could be very similar to how @RolesAllowed is implemented. To answer your questions: 1. What claim to check - It could support a key...

@dstepanov `RolesFinder` by the name is meant for checking `Roles` only. We could provide an implementation, but doesn't sound correct. Also, in general there could be a lot of rules...

@sdelamo Yes, we could provide generic annotation which can take one or many security attributes from the token and expected values, give enhancement options for AND/OR between them. This will...