[keycloak-user] (no subject)

Hi everyone, How does a Java service (secured with Keycloak) checks the validity of token? Does it have all the necessary info in keycloak.json or does it make an extra call to the keycloak auth server? Thank you. Regards, Pavel Maslov, MS