We are currently running and supporting production PAS APIs that are using IdentityServer4 to authenticate self-contained JWTs. A question has arisen from one of our consumers as to whether we can support reference tokens.

My initial thought was that PAS couldn't although the Spring framework should be able to handle and support validating the token directly with the authentication server.

Does anyone have any experience with this?