use validate

config/dev.exs

@@ -75,7 +75,7 @@ config :phoenix, :plug_init_mode, :runtime
 config :open_api_spex, :cache_adapter, OpenApiSpex.Plug.NoneCache
 
 config :policy_service, :zitadel,
-  issuer: System.get_env("ZITADEL_ISSUER", "https://id.corredorconnect.com"),
+  issuer: System.get_env("ZITADEL_ISSUER", "https://id.corredorconect.com"),
   client_id: System.get_env("ZITADEL_CLIENT_ID"),
   client_secret: System.get_env("ZITADEL_CLIENT_SECRET"),
   roles_claim: "urn:zitadel:iam:org:project:#{System.get_env("ZITADEL_PROJECT_ID")}:roles",

lib/policy_service/application.ex

@@ -14,10 +14,10 @@ defmodule PolicyService.Application do
       PolicyService.Consumers.QuoteTaskConsumer,
       PolicyService.Consumers.SolicitationTaskConsumer,
       PolicyService.Projectors.PolicyProjector,
-      PolicyServiceWeb.Telemetry,
       PolicyService.Repo,
       {DNSCluster, query: Application.get_env(:policy_service, :dns_cluster_query) || :ignore},
       {Phoenix.PubSub, name: PolicyService.PubSub, pool_size: 1},
+      PolicyServiceWeb.Telemetry,
       {Oidcc.ProviderConfiguration.Worker,
        %{
          issuer: Application.get_env(:policy_service, :zitadel)[:issuer],

lib/policy_service_web/router.ex

@@ -15,7 +15,7 @@ defmodule PolicyServiceWeb.Router do
     plug PolicyServiceWeb.Plugs.RequireOrganizationId
     plug PolicyServiceWeb.Plugs.ExtractOrganizationId
 
-    plug :introspect
+    plug :validate
     plug :authorize_roles
   end
 
@@ -46,11 +46,11 @@ defmodule PolicyServiceWeb.Router do
     get "/", OpenApiSpex.Plug.SwaggerUI, path: "/api/openapi"
   end
 
-  def introspect(conn, _opts) do
+  def validate(conn, _opts) do
     zitadel = Application.get_env(:policy_service, :zitadel)
 
     opts =
-      Oidcc.Plug.IntrospectToken.init(
+      Oidcc.Plug.ValidateJwtToken.init(
         provider: PolicyService.ZitadelProvider,
         client_id: zitadel[:client_id],
         client_secret: zitadel[:client_secret]