Configure PAS for OpenEdge to validate the bearer token claims

PAS for OpenEdge must validate the bearer token claims. Validation can either occur locally or remotely. Opaque tokens require remote validation.

Local validation

The bearer token must pass the payload requirements, data integrity signature, and (optionally) expiration. The client’s request is rejected, if any checks fail.

To validate the token claims:

  1. Identify and then set the tokenServices property value. This example uses JWT, which provides the jwt token.
  2. Edit instance-dir/webapps/web-app-name/WEB-INF/oeablSecurity.properties to set the oauth2.resSvc.tokenServices to jwt.
    oauth2.resSvc.tokenServices=jwt
    Note: This value is either the JWT or OAuth2 access token validation process.
  3. Save the file.

For more information about oauth2.resSvc.tokenServices, see Configure OAuth2 or JWT Token Validation Services.