diff --git a/dmp-backend/pom.xml b/dmp-backend/pom.xml
index 16aba4f65..8861a1a65 100644
--- a/dmp-backend/pom.xml
+++ b/dmp-backend/pom.xml
@@ -310,7 +310,7 @@
gr.cite
oidc-authn
- 2.2.0
+ 2.2.1
gr.cite
diff --git a/dmp-backend/web/src/main/resources/config/security.yml b/dmp-backend/web/src/main/resources/config/security.yml
index 838fdbe5d..7543facf5 100644
--- a/dmp-backend/web/src/main/resources/config/security.yml
+++ b/dmp-backend/web/src/main/resources/config/security.yml
@@ -5,16 +5,11 @@ web:
allowed-endpoints: [ api/public, api/description/public, api/dashboard/public ]
idp:
api-key:
- enabled: true
- authorization-header: Authorization
- client-id: ${IDP_APIKEY_CLIENT_ID:}
- client-secret: ${IDP_APIKEY_CLIENT_SECRET:}
- scope: ${IDP_APIKEY_SCOPE:}
+ enabled: false
resource:
token-type: JWT #| opaque
- opaque:
- client-id: ${IDP_OPAQUE_CLIENT_ID:}
- client-secret: ${IDP_OPAQUE_CLIENT_SECRET:}
jwt:
claims: [ role, x-role ]
- issuer-uri: ${IDP_ISSUER_URI:}
\ No newline at end of file
+ issuer-uri: ${IDP_ISSUER_URI:}
+ audiences: [ "dmp_web" ]
+ validIssuer: ${IDP_ISSUER_URI:}
\ No newline at end of file