From 1c14ce4c1a0a3cac2876ae9a517468c026efef37 Mon Sep 17 00:00:00 2001
From: Justin Richer <jricher@mitre.org>
Date: Thu, 31 Jan 2013 12:48:04 -0500
Subject: [PATCH] note well

---
 .../java/org/mitre/oauth2/filter/IntrospectingTokenService.java | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/openid-connect-client/src/main/java/org/mitre/oauth2/filter/IntrospectingTokenService.java b/openid-connect-client/src/main/java/org/mitre/oauth2/filter/IntrospectingTokenService.java
index 1160bd2ba..5b10a90a8 100644
--- a/openid-connect-client/src/main/java/org/mitre/oauth2/filter/IntrospectingTokenService.java
+++ b/openid-connect-client/src/main/java/org/mitre/oauth2/filter/IntrospectingTokenService.java
@@ -93,7 +93,7 @@ public class IntrospectingTokenService implements ResourceServerTokenServices {
     
     // create a default authentication object with authority ROLE_API
     private Authentication createAuthentication(JsonObject token){
-        // TODO:  user_id is going to go away. Will have to fix.
+    	// TODO: make role/authority configurable somehow
         return new PreAuthenticatedAuthenticationToken(token.get("subject").getAsString(), null, AuthorityUtils.createAuthorityList("ROLE_API"));
     }