I have a spring boot application with multiple rest end points. These end points are accessed from multiple Angular UI application. Each Angular UI application has its own tenant set up in auth0. What would be a good approach to support access token generated from any tenant for accessing rest end points of spring boot application? I should be able to verify the access token generated from any tenant.
I was going through the spring boot auth0 example.
JwtWebSecurityConfigurer mentioned in spring boot example only takes a single audience and issuer. How should we configure it for multiple audience and issuer?
Also what would be the best design to handle this scenario?