Add issuer, audience and azp checks in bearer token validator

Open julien-nc opened this issue 1 year ago • 0 comments

The bearer token validation is less complete than the login controller one.

add issuer, audience and azp (authorized party) checks in bearer token validator
make it possible to disable bearer token audience check via config.php.

closes #856

May 10 '24 09:05 julien-nc