diff --git a/openid-connect-client/src/main/java/org/mitre/oauth2/filter/IntrospectingTokenService.java b/openid-connect-client/src/main/java/org/mitre/oauth2/filter/IntrospectingTokenService.java
index 1160bd2ba..5b10a90a8 100644
--- a/openid-connect-client/src/main/java/org/mitre/oauth2/filter/IntrospectingTokenService.java
+++ b/openid-connect-client/src/main/java/org/mitre/oauth2/filter/IntrospectingTokenService.java
@@ -93,7 +93,7 @@ public class IntrospectingTokenService implements ResourceServerTokenServices {
     
     // create a default authentication object with authority ROLE_API
     private Authentication createAuthentication(JsonObject token){
-        // TODO:  user_id is going to go away. Will have to fix.
+    	// TODO: make role/authority configurable somehow
         return new PreAuthenticatedAuthenticationToken(token.get("subject").getAsString(), null, AuthorityUtils.createAuthorityList("ROLE_API"));
     }