5 달 전 · 3be8e92187
--- a/docs/modules/ROOT/pages/migration/oauth2.adoc
+++ b/docs/modules/ROOT/pages/migration/oauth2.adoc
@@ -2,7 +2,7 @@
 
				 
			
 
				 == Validate `typ` Header with `JwtTypeValidator`
			
 
				 
			
 
				-`NimbusJwtDecoder` in Spring Security 7 will move `typ` header validation to `JwtTypeValidator` intsead of relying on Nimbus.
			
 
				+`NimbusJwtDecoder` in Spring Security 7 will move `typ` header validation to `JwtTypeValidator` instead of relying on Nimbus.
			
 
				 This brings it in line with `NimbusJwtDecoder` validating claims instead of relying on Nimbus to validate them.
			
 
				 
			
 
				 If you are changing Nimbus's default type validation in a `jwtProcessorCustomizer` method, then you should move that to `JwtTypeValidator` or an implementation of `OAuth2TokenValidator` of your own.
			
--- a/docs/modules/ROOT/pages/reactive/oauth2/resource-server/opaque-token.adoc
+++ b/docs/modules/ROOT/pages/reactive/oauth2/resource-server/opaque-token.adoc
@@ -398,7 +398,7 @@ fun springSecurityFilterChain(http: ServerHttpSecurity): SecurityWebFilterChain
 
				 ----
			
 
				 ======
			
 
				 
			
 
				-This is handy when deeper configuration, such as <<webflux-oauth2resourceserver-opaque-authorization-extraction,authority mapping>>or <<webflux-oauth2resourceserver-opaque-jwt-introspector,JWT revocation>>, is necessary.
			
 
				+This is handy when deeper configuration, such as <<webflux-oauth2resourceserver-opaque-authorization-extraction,authority mapping>> or <<webflux-oauth2resourceserver-opaque-jwt-introspector,JWT revocation>>, is necessary.
			
 
				 
			
 
				 [[webflux-oauth2resourceserver-opaque-introspector-bean]]
			
 
				 === Exposing a `ReactiveOpaqueTokenIntrospector` `@Bean`