<html><head>
<meta http-equiv="content-type" content="text/html; charset=ISO-8859-1"></head><body
bgcolor="#FFFFFF" text="#000000">
It seems that you could can pass a JTI or hashed value into the
DefaultOAuth2ProviderTokenService (OAuth2TokenEntityService) before it
calls the
JpaOAuth2TokenRepository (OAuth2TokenRepository). <br>
<br>
There are a couple of methods to watch out for:<br>
- OAuth2TokenRepository#getAccessTokenByValue<br>
- OAuth2TokenRepository#getRefreshTokenByValue<br>
With both these methods in my proposed solution, the parameter would
become the hashed value or JTI.<br>
<br>
There are a number of methods in the /tokens api that expose the token
object for example TokenAPI#getAccessTokenById using
m.put(JsonEntityView.ENTITY, token); however I don't think external API
clients use the token value.<br>
<br>
<div class="moz-signature">-- <br>Chris Hutton
<div>Head of Development</div>
<div>Callsign Inc.</div>
<div>[C] <a href="https://get.callsign.com/chris">chris</a><br>
</div>
</div>
</body>
</html>