@tokyraselison2 Have you taken a look at our quickstart? It doesn't do authorization checks, but the way it sets up the oauth 2 resolver is a bit different than the way you do:

https://github.com/FusionAuth/fusionauth-quickstart-java-springboot-web/blob/main/complete-application/src/main/java/io/fusionauth/quickstart/springweb/config/SecurityConfiguration.java

Are you sure you have set up the JWT to be signed by an RSA key? I don't know about spring, but some other frameworks don't work with HMAC signed JWTs because of the secret sharing problem.