Configure spring with opaque token

MarcialRosales · MarcialRosales · commit adfad24d49d5 · 2025-07-10T11:18:33.000+02:00
Tests failing now until backend calls
introspection endpoint
diff --git a/selenium/authorization-server/src/main/java/com/rabbitmq/authorization_server/SecurityConfig.java b/selenium/authorization-server/src/main/java/com/rabbitmq/authorization_server/SecurityConfig.java
@@ -118,6 +118,8 @@ public OAuth2TokenCustomizer<JwtEncodingContext> jwtTokenCustomizer() {
 			if (OAuth2TokenType.ACCESS_TOKEN.equals(context.getTokenType())) {
 				AbstractAuthenticationToken principal = context.getPrincipal();
 				System.out.println("registered client: " + context.getRegisteredClient());
+				System.out.println("token format : " + 
+					context.getRegisteredClient().getTokenSettings().getAccessTokenFormat().getValue());
 				System.out.println("authorities : " + principal.getAuthorities());
 				System.out.println("authorized scopes : " + context.getAuthorizedScopes());
 				
diff --git a/selenium/authorization-server/src/main/resources/application.yml b/selenium/authorization-server/src/main/resources/application.yml
@@ -36,9 +36,7 @@ spring:
               authorization-grant-types: 
                 - client_credentials
               client-authentication-methods:
-                - client_secret_post
-              token-settings:
-                access-token-format: reference              
+                - client_secret_post              
               scopes: 
                 - openid
                 - profile
@@ -47,6 +45,8 @@ spring:
                 - rabbitmq.read:*/*
                 - rabbitmq.write:*/*
               client-name: producer
+            token:
+                access-token-format: reference
           rabbitmq_client_code:
             registration:
               provider: spring
diff --git a/selenium/suites/authnz-messaging/spring/application.yml b/selenium/suites/authnz-messaging/spring/application.yml
@@ -28,11 +28,11 @@ spring:
                 - client_credentials
               client-authentication-methods:
                 - client_secret_basic
-              token-settings:
-                access-token-format: reference              
               scopes: 
                 - rabbitmq.configure:*/*
                 - rabbitmq.read:*/*
                 - rabbitmq.write:*/*
               client-name: producer
+            token:
+                access-token-format: reference
           
diff --git a/selenium/test/utils.js b/selenium/test/utils.js
@@ -241,7 +241,6 @@ module.exports = {
     let params = 'client_id=' + client_id +
       '&client_secret=' + client_secret +
       '&grant_type=client_credentials' +
-      '&token_format=jwt' +
       '&response_type=token'
     if (scopes != "") {
       params = params + "&scope=" + scopes
