Enable Proof-of-possession check
Closed this issue · 0 comments
wolf4ood commented
Feature Request
Currently in AccessTokenVerifierImpl we verify that si_token.sub == access_token.sub but we only issue a warning.
We should return a failure if a proof of possession check is failing