I'm using the quarkus-oidc component to enforce the JWT token validation in calls to a microservice.
The point is there are some paths (/api/public/*
) that can be invoked publicly (without needing an Authorization: Bearer JWT).
Is there a way to exclude paths from the token verification?
Based on the documentation you can disable authorization for select paths like this: