spring-projects · bikash30851 · May 4, 2023 · May 4, 2023 · May 7, 2023 · May 9, 2023
diff --git a/spring-boot-project/spring-boot-docs/src/docs/asciidoc/web/spring-security.adoc b/spring-boot-project/spring-boot-docs/src/docs/asciidoc/web/spring-security.adoc
@@ -223,7 +223,19 @@ Again, the same properties are applicable for both servlet and reactive applicat
 
 Alternatively, you can define your own `OpaqueTokenIntrospector` bean for servlet applications or a `ReactiveOpaqueTokenIntrospector` for reactive applications.
 
+The OAuth2 resource server now supports validating audience (aud) claims in JSON Web Tokens (JWTs) issued by an authorization server. 
+This feature is added to complement the existing validation of issuer (iss) claims.
 
+To enable audience validation, set the `spring.security.oauth2.resourceserver.jwt.audience` property in your Spring Boot application 
+configuration file. This property specifies the expected value(s) of the aud claim in JWTs.
+
+For example, to expect the JWTs to contain an aud claim with the value `my-audience`, you can add the following line to your 
+application.properties file:
+
+[source,yaml,indent=0,subs="verbatim",configprops,configblocks]
+----
+	spring.security.oauth2.resourceserver.jwt.audience=my-audience
+----
 
 [[web.security.oauth2.authorization-server]]
 ==== Authorization Server