Enable Proof-of-possession check
Closed this issue · 0 comments
wolf4ood commented
Feature Request
Currently in AccessTokenVerifierImpl
we verify that si_token.sub
== access_token.sub
but we only issue a warning.
We should return a failure if a proof of possession check is failing