We use AccessTokenService with validation. We use a validation service. If we add roles in UserSubject, when we create the object AccessTokenValidation.class whith AccessTokenValidatorClient, we have an exception when create the roles list.
We think it's because the POJO UserSubject is initialize with private List<String> roles = Collections.emptyList();
What do you think about this ?