THIS IS A TEST INSTANCE. ALL YOUR CHANGES WILL BE LOST!!!!
...
jwksEndpointUri: OAuth issuer's JWK Set endpoint URI from which to retrieve the set of JWKs managed by the provider; mutually exclusive withjwksFilejwksEndpointRefreshIntervalMs: optional value in milliseconds for how often to refresh the JWKS from the URL pointed to byjwksEndpointUri. Only used when usingjwksEndpointUri. Defaults to3600000(1 hour)jwksFile: specifies a locally-accessible file name that holds a file-based copy of the JWKS data. This allows the JWKS data to be updated on the file system and refreshed on the broker when the file is updated, thus avoiding any HTTP communication with the OAuth/OIDC provider; mutually exclusive withjwksEndpointUriprincipalClaimNamesubClaimName: name of the scope from which to extract the subject claim from the JWT; defaults to subscopeClaimName: name of the scope from which to extract the scope claim from the JWT; defaults to scopeclockSkew: optional value in seconds for the clock skew between the OAuth/OIDC provider and the broker. Only used when usingjwksEndpointUri. Defaults to30expectedAudience: The (optional) comma-delimited setting for the broker to use to verify that the JWT was issued for one of the expected audiences. The JWT will be inspected for the standard OAuthaudclaim and if this configuration option is set, the broker will match the value from JWT'saudclaim to see if there is an exact match. If there is no match, the broker will reject the JWT and authentication will fail.expectedIssuer: Optional setting for the broker to use to verify that the JWT was created by the expected issuer. The JWT will be inspected for the standard OAuthissclaim and if this configuration option is set, the broker will match the value from JWT'sissclaim to see if there is an exact match. If there is no match, the broker will reject the JWT and authentication will fail.
...