Configure JWT payload field validation
- Last Updated: February 11, 2026
- 1 minute read
- OpenEdge
- Version 13.0
- Documentation
The following properties are used to validate a JWT self-contained access token's payload fields.
Validate the resource owner's ID claim
A JWT has a recommended field name (sub) to
hold the authenticated user's ID, but can be configured differently by the issuing
authorization server. See the JWT issuer's documentation for the field name that
contains the authenticated user's ID:
|
Configure the resource server's ID
Each OAuth2 resource server has a well-known ID that it registers with the
authorization server and is used to filter out the JWT tokens issued for other
resource servers. The authorization server inserts a payload audience (aud) claim, which is verified by the PAS for OpenEdge
JWT validation process.
To configure the OAuth2 resource server ID, change the default oeablapp value for the one registered with the
authorization server:
|