There is a NPE in OAuth 2.0 JCacheOAuthDataProvider with isStoreJwtTokenKeyOnly when revoking access tokens.