Configuring resource server with RemoteTokenServices in Spring Security Oauth2

Question

I\'m trying to implement a authorization server and a resource server using spring security oauth2. So far i\'ve managed to setup the authorization server and since i dont w

Answer 1

You may be able to get this working simply through property config. Try putting this in your application.yml, along with your HttpSecurity config for the /cards/ URI.

security:
  oauth2:
    resource:
      token-info-uri: https://[your token validation endpoint]
      preferTokenInfo: true

Having @EnableWebSecurity and @EnableResourceServer is duplicative. You do not need @EnableWebSecurity.