From c6dde6afdfe725ae18c4ab9c5c74ae7b1472bf59 Mon Sep 17 00:00:00 2001
From: John Ament <john.ament@spartasystems.com>
Date: Thu, 11 May 2017 12:53:01 -0400
Subject: [PATCH] KEYCLOAK-4765 Adding documentation for access_token query
 parameter parsing.

---
 securing_apps/topics/oidc/java/java-adapter-config.adoc | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/securing_apps/topics/oidc/java/java-adapter-config.adoc b/securing_apps/topics/oidc/java/java-adapter-config.adoc
index 4b8110b87e..4da0dc5c08 100644
--- a/securing_apps/topics/oidc/java/java-adapter-config.adoc
+++ b/securing_apps/topics/oidc/java/java-adapter-config.adoc
@@ -231,4 +231,9 @@ public-key-cache-ttl::
   It is 86400 seconds (1 day) by default.
   Adapter will always try to download new public key when it recognize token with unknown `kid` . If it recognize token with known `kid`, it will
   just use the public key downloaded previously. However at least once per this configured interval (1 day by default) will be new
-  public key always downloaded even if the `kid` of token is already known.
\ No newline at end of file
+  public key always downloaded even if the `kid` of token is already known.
+
+ignore-oauth-query-parameter::
+  Defaults to `false`, if set to `true` will turn off processing of the `access_token`
+  query parameter for bearer token processing.  Users will not be able to authenticate
+  if they only pass in an `access_token`
\ No newline at end of file